tags:

views:

3154

answers:

3
Q: 

How do I run a Full Trust XBAP on intranet?

I've made a WPF Browser Application that hosts old WinForms controls (I haven't migrated fully to WPF yet). Using WindowsFormsHost means my Browser App requires Full Trust to run. This is not a problem for me since this app is only meant to be run on the intranet at my company. However, after I deploy the xbap to a network share, it refuses to run, saying "Trust not granted".

What are the methods I can use to grant Full Trust to XBAP applications stored on my companies intranet?

A: 

Although I haven't tried this, is the path to the XBAP added as a trusted site?

Quintin Robinson  2009-03-17 16:40:23
+3  A: 

So far, I've found 2 ways to do this. Through a really complicated method of installing certificates on the target machine.

Or through a simpler method, which is only suitable for intranets here:

Deploy a custom CLR Security policy that modifies the default permissionset for the given zone

So I did just that, and it works. Here's the detailed steps how I got it to work:

  1. Open Control Panel > Administrative Tools > .NET Framework 2.0 Configuration
  2. Expand Runtime Security Policy > Machine > Code Groups > All_Code
  3. Right Click All_Code and click New…
  4. Create a new code group, I named mine MyProject_FullTrust_Zone
  5. Choose the URL condition type and specify the path on the network where the apps will be deployed.
  6. Choose Use Existing permission set, and set it to Full Trust.

Now the only problem with this method, is that I have to deploy this change to hundreds of machines. So maybe there's still a simpler way to do this?

Anthony Brien  2009-03-17 16:55:59
In a managed desktop environment, I've seen a deployment of a batch script that modifies CasPol via the command line. eg:C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CasPol -q -machine -addgroup All_Code -url http://xbapserver/xbapvirtualdir/* FullTrust -n XBAPSecurity -polchgprompt off
David H  2009-06-05 14:27:12
@David this is what we've been using but it seems pretty clunky - there really ought to be a way to provide the user with an "Accept/Deny" option. What is the advantage of a web application that requires installation?
Jake  2010-03-07 03:25:34
A: 

It will be possible in .Net 4.0 planning to be released in the first half of 2010. It is now in a beta phase, but it comes with a go live license which allows you to 'go live' even with a beta version of the .Net framework.

Lars Truijens  2010-01-02 20:37:12

related questions

Can someone point me to some guides for WPF
WPF Listbox style with a button
So what am I missing with this here WPF?
When is NavigationService initialized?
WPF Anti aliasing workaround
WPF Image UriSource and Data Binding
How to stop an animation in C# / WPF?
Rich GUI OS X Frameworks?
What is the correct way to create a single instance application?
Enabling a button in WPF depending on ListBox.SelectedIndex
How to apply multiple styles in WPF
How to get list of installed BitmapEncoders/Decoders (the WPF world)?
Preventing Memory Leaks with Attached Behaviours
Variable Bindings in WPF
How to host a WPF form in a MFC application
WPF - Sorting a composite collection
WPF: How to style or disable the default ContextMenu of a TextBox
What WPF books would you recommend?
I don't grok the WPF command pattern
Instrumenting a UI
What real world WPF applications are out there?
What is the value-binding syntax in xaml?
WPF Databinding
Numeric Data Entry in WPF
Hiding inherited members in C#