Hi Experts, I have this problem the "System.UnauthorizedAccessException" problem for my code, how can I solve it? It is only the btnExport_click function have prolem, others are good.
using System;
using System.Collections.Generic;
using System.Data;
using System.Data.SqlClient;
using System.Linq;
using System.Text;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
public partial class Contact : System.Web.UI.Page
{
SqlConnection sqlCon = new SqlConnection(@"Data Source= DESKTOP-25V3I8O;Initial Catalog=ASPCRUD;Integrated Security=true");
DataTable dtbl = new DataTable();
protected void Page_Load(object sender, EventArgs e)
{
if (!IsPostBack)
{
btnDelete.Enabled = false;
FillGridView();
}
}
protected void btnClear_Click(object sender, EventArgs e)
{
Clear();
}
public void Clear()
{
hfContactID.Value = "";
txtName.Text = txtMobile.Text = txtAddress.Text = txtPostcode.Text = "";
lblSuccessMessage.Text = lblErrorMessage.Text = "";
btnSave.Text = "Save";
btnDelete.Enabled = false;
}
protected void btnSave_Click(object sender, EventArgs e)
{
if (sqlCon.State == ConnectionState.Closed)
sqlCon.Open();
SqlCommand sqlCmd = new SqlCommand("ContactCreateOrUpdate", sqlCon);
sqlCmd.CommandType = CommandType.StoredProcedure;
sqlCmd.Parameters.AddWithValue("@ContactID",(hfContactID.Value==""?0:Convert.ToInt32(hfContactID.Value)));
sqlCmd.Parameters.AddWithValue("@Name", txtName.Text.Trim());
sqlCmd.Parameters.AddWithValue("@Mobile", txtMobile.Text.Trim());
sqlCmd.Parameters.AddWithValue("@Address", txtAddress.Text.Trim());
sqlCmd.Parameters.AddWithValue("@Postcode", txtPostcode.Text.Trim());
sqlCmd.ExecuteNonQuery();
sqlCon.Close();
string ContactID = hfContactID.Value;
Clear();
if (ContactID=="")
lblSuccessMessage.Text = "Saved Successfully";
else
lblSuccessMessage.Text = "Updated Successfully";
FillGridView();
}
void FillGridView()
{
if (sqlCon.State == ConnectionState.Closed)
sqlCon.Open();
SqlDataAdapter sqlData = new SqlDataAdapter("ContactViewAll", sqlCon);
sqlData.SelectCommand.CommandType = CommandType.StoredProcedure;
sqlData.Fill(dtbl);
sqlCon.Close();
gvContact.DataSource = dtbl;
gvContact.DataBind();
}
protected void lnk_OnClick(object sender, EventArgs e)
{
int ContactID = Convert.ToInt32((sender as LinkButton).CommandArgument);
if (sqlCon.State == ConnectionState.Closed)
sqlCon.Open();
SqlDataAdapter sqlData = new SqlDataAdapter("ContactViewByID", sqlCon);
sqlData.SelectCommand.CommandType = CommandType.StoredProcedure;
sqlData.SelectCommand.Parameters.AddWithValue("@ContactID", ContactID);
sqlData.Fill(dtbl);
sqlCon.Close();
hfContactID.Value = ContactID.ToString();
txtName.Text = dtbl.Rows[0]["Name"].ToString();
txtMobile.Text = dtbl.Rows[0]["Mobile"].ToString();
txtAddress.Text = dtbl.Rows[0]["Address"].ToString();
txtPostcode.Text = dtbl.Rows[0]["Postcode"].ToString();
btnSave.Text = "Update";
btnDelete.Enabled = true;
}
protected void btnDelete_Click(object sender, EventArgs e)
{
if (sqlCon.State == ConnectionState.Closed)
sqlCon.Open();
SqlCommand sqlCmd = new SqlCommand("ContactDeleteByID", sqlCon);
sqlCmd.CommandType = CommandType.StoredProcedure;
sqlCmd.Parameters.AddWithValue("ContactID", Convert.ToInt32(hfContactID.Value));
sqlCmd.ExecuteNonQuery();
sqlCon.Close();
Clear();
FillGridView();
lblSuccessMessage.Text = "Deleted Successfully";
}
protected void ExportDataTableToCSV()
{
Response.Clear();
Response.ContentType = "text/csv";
Response.AddHeader("content-disposition", "attachment;filename=UserDetails.csv");
Response.ContentType = "application/octet-stream";
Response.WriteFile(filename:dtbl.ToString());
Response.Flush();
Response.End();
}
protected void btnExport_Click(object sender, EventArgs e)
{
ExportDataTableToCSV();
}
}
System.UnauthorizedAccessException
"Vote as helpful" button of that post. By marking a post as Answered or Helpful, you help others find the answer faster. ]
