about

This is the code related blog of John Dyer. I develop web applications in ASP.NET, Flash, and JavaScript for Dallas Theological Seminary and personally as Refresh Development, Inc.

connect

feedback

FTB 3.0 Image Gallery

by John Dyer

I'm rebuilding the image gallery for FTB 3.0. It was a part of FTB 1.x, but in 2.x I took it out due to security concerns. Anyone could type in the URL http://www.mysite.com/ftb.gallery.aspx?cid=/images/ and upload malicious content or delete important images (this happened on freetextbox.com several times).

For 3.0 I'm encapsulating the image gallery into a control and including some properties for setting the permissions of the gallery based on roles. This way, the gallery can be controlled not only by the on the given form, but programmatically on the gallery.aspx page based on whatever application is employing it. ASP.NET Forums, DNN, and other apps can setup their own permissions controls.

This is really the last task for 3.0 release, so wish me luck.

Tags:
Categories: ASP.NET

Permalink | Comments (5) | Post RSS RSS comment feed

FTB Image Gallery DemoI put up a demo of FreeTextBox 3.0's image gallery control (it's the image button on the last toolba...FTB 3.0 release candidateLast night I put up a FreeTextBox 3.0 preview release. Here's the explanation from the front page: ...Dynamic Text Replacement with JavaScript and C# ASP.NETWhat it Does You write some basic markup and include a JavaScript file and some code which replaces...

Comments

October 28. 2004 16:38

Awesome! As Joe commented in your previous blog entry, I've been checking literally every day since v2.1 for the next release. I'm so much looking forward to the image gallery!!

Unresolvable

October 28. 2004 17:33

Me too!!! Are you using Stardust's image gallery (modified for your product) or are you just starting yours from scratch again? I've worked in Khaos', but it's not exactly what I was looking for.

Any ETA on release ;) ???

Unresolvable

October 29. 2004 16:28

Looking forward to it Keep up the great work.

Unresolvable

October 29. 2004 21:04

Demo on the last row of buttons at http://dev.freetextbox.com/sample01a.aspx

Unresolvable

October 31. 2004 21:03

I use FTB in dasBlog and any code that tries to access any of those pages fails unless you are logged in as the admin, so this isn't a security issue if you have control over the integration.

I never upgraded dasBlog to FTB 2.0 because the image gallery was removed :-(. Good to know it will be back in 3.0 so I can move to that.

Another thing I added was a code formatting button... which is usefull for blog posts from geeks.

Unresolvable

Add comment

Name*
E-mail* (Will show your Gravatar icon)
Website
Country Country flag

b i u quote

Comment
Preview

Notify me when new comments are added

John Dyer

FTB 3.0 Image Gallery

Related posts

Comments

Add comment