No joy implementing IInternetSecurityManager -- any sample code?

[DavidB]

Having (laboriously) implemented IInternetSecurityManager in response to
WebBrowser.WebBrowserSite.IServiceProvider.QueryService, I now find that (a)
only GetSecurityID() and MapUrlToZone() get called, and (b) nothing they
return does anything useful. Return bad stuff and the WebBrowser control can
no longer navigate anywhere. Return anything valid and what you actually
return seems to be totally ignored.

In particular, ProcessUrlAction() is not called. It's like the real security
is happening somewhere else entirely.

So I'm doing something wrong. Any suggestions or sample code appreciated.
It's a bit long to post here.

DavidB

 

[Igor Tandetnik]

Having (laboriously) implemented IInternetSecurityManager in response
to WebBrowser.WebBrowserSite.IServiceProvider.QueryService, I now
find that (a) only GetSecurityID() and MapUrlToZone() get called, and
(b) nothing they return does anything useful. Return bad stuff and
the WebBrowser control can no longer navigate anywhere. Return
anything valid and what you actually return seems to be totally
ignored.
In particular, ProcessUrlAction() is not called. It's like the real
security is happening somewhere else entirely.

ProcessUrlAction works for me. Either your pages don't do anything that
would require a security decision, or you have an interop problem.

What notifications specifically do you expect? What are you trying to
achieve?
--
With best wishes,
Igor Tandetnik

With sufficient thrust, pigs fly just fine. However, this is not
necessarily a good idea. It is hard to be sure where they are going to
land, and it could be dangerous sitting under them as they fly
overhead. -- RFC 1925