Summary:
I'm in the process of trying to create my BV 5 site on a test url I have.

-the asp.net 2 is setup
-sql 2005 database established, and 3 scripts run.
-web.config updated for connection string
-the host said they set the 3 permissions

When I go the test url, I receive a "Server Error in '/' Application" error. :shocked:


I wrote my webhost and the responded with the following email. Any ideas?

---

Here's my hosting company's email:

looking at your site locally shows us this error below. All the file permissions are set as needed but we are not sure if maybe some .dll or files could be missing from this application.

Hope this helps. Speaking with BV Software before they told us that the permission required is the same as our configuration for shared hosting using Custom Medium Trust for ASP.NET 2.0.

---

Required permissions cannot be acquired.

Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.Security.Policy.PolicyException: Required permissions cannot be acquired.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:


[PolicyException: Required permissions cannot be acquired.]
System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& denied, Boolean checkExecutionPermission) +2738101
System.Security.SecurityManager.ResolvePolicy(Evidence evidence, PermissionSet reqdPset, PermissionSet optPset, PermissionSet denyPset, PermissionSet& denied, Int32& securitySpecialFlags, Boolean checkExecutionPermission) +57

[FileLoadException: Could not load file or assembly 'nsoftware.IBizPayWeb, Version=3.1.2286.0, Culture=neutral, PublicKeyToken=cdc168f89cffe9cf' or one of its dependencies. Failed to grant minimum permission requests. (Exception from HRESULT: 0x80131417)]
System.Reflection.Assembly.nLoad(AssemblyName fileName, String codeBase, Evidence assemblySecurity, Assembly locationHint, StackCrawlMark& stackMark, Boolean throwOnFileNotFound, Boolean forIntrospection) +0
System.Reflection.Assembly.InternalLoad(AssemblyName assemblyRef, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +211
System.Reflection.Assembly.InternalLoad(String assemblyString, Evidence assemblySecurity, StackCrawlMark& stackMark, Boolean forIntrospection) +141
System.Reflection.Assembly.Load(String assemblyString) +25
System.Web.Configuration.CompilationSection.LoadAssemblyHelper(String assemblyName, Boolean starDirective) +32

[ConfigurationErrorsException: Could not load file or assembly 'nsoftware.IBizPayWeb, Version=3.1.2286.0, Culture=neutral, PublicKeyToken=cdc168f89cffe9cf' or one of its dependencies. Failed to grant minimum permission requests. (Exception from HRESULT: 0x80131417)]
System.Web.Configuration.CompilationSection.LoadAssemblyHelper(String assemblyName, Boolean starDirective) +596
System.Web.Configuration.CompilationSection.LoadAllAssembliesFromAppDomainBinDirectory() +3479065
System.Web.Configuration.CompilationSection.LoadAssembly(AssemblyInfo ai) +46
System.Web.Compilation.BuildManager.GetReferencedAssemblies(CompilationSection compConfig) +177
System.Web.Compilation.BuildProvidersCompiler..ctor(VirtualPath configPath, Boolean supportLocalization, String outputAssemblyName) +180
System.Web.Compilation.CodeDirectoryCompiler.GetCodeDirectoryAssembly(VirtualPath virtualDir, CodeDirectoryType dirType, String assemblyName, StringSet excludedSubdirectories, Boolean isDirectoryAllowed) +347
System.Web.Compilation.BuildManager.CompileCodeDirectory(VirtualPath virtualDir, CodeDirectoryType dirType, String assemblyName, StringSet excludedSubdirectories) +125
System.Web.Compilation.BuildManager.CompileCodeDirectories() +525
System.Web.Compilation.BuildManager.EnsureTopLevelFilesCompiled() +448

[HttpException (0x80004005): Could not load file or assembly 'nsoftware.IBizPayWeb, Version=3.1.2286.0, Culture=neutral, PublicKeyToken=cdc168f89cffe9cf' or one of its dependencies. Failed to grant minimum permission requests. (Exception from HRESULT: 0x80131417)]
System.Web.Compilation.BuildManager.ReportTopLevelCompilationException() +57
System.Web.Compilation.BuildManager.EnsureTopLevelFilesCompiled() +612
System.Web.Hosting.HostingEnvironment.Initialize(ApplicationManager appManager, IApplicationHost appHost, IConfigMapPathFactory configMapPathFactory, HostingEnvironmentParameters hostingParameters) +456

[HttpException (0x80004005): Could not load file or assembly 'nsoftware.IBizPayWeb, Version=3.1.2286.0, Culture=neutral, PublicKeyToken=cdc168f89cffe9cf' or one of its dependencies. Failed to grant minimum permission requests. (Exception from HRESULT: 0x80131417)]
System.Web.HttpRuntime.FirstRequestInit(HttpContext context) +3426871
System.Web.HttpRuntime.EnsureFirstRequestInit(HttpContext context) +88
System.Web.HttpRuntime.ProcessRequestInternal(HttpWorkerRequest wr) +149

Marcus,

thanks for your message. Below is my hosting company's response. I have an email out to them inquiring as to what the differences are between the two environments they discuss. Price, performance, other, etc. Here's their reply:

Hi Rene,

we are not able to get BV Commerce working in a Medium Trust environment as it should according to their site, we have been able to get it working in a Full Trust environment. We have a test site running of your website at http://www.aspxresource.com . This is meant for testing, only a way to show you it working. We can offer your site to be moved over to this new server that is running in Full Trust or contact BV Software to see if they can assist further with this issue.

Best regards,

Technical Support

Andy,
Thank you for your post. I relayed your suggestion and he responded



"permissions are setup already this way for the Temporary ASP.NET Files directory, on both version of .NET and the Windows temp directory but using Network Services, as we only run IIS6 and the ASP.NET group isn't used on this version".



Based on what they have explained to me they can get BV 5 to work on a "Full Trust" server so we're planning to move my sites to a different server to solve this issue.



Thanks to all.

Rene'

I should have checked before I wrote my post above. I added this to the web.config file:


And now I get the same "Required permissions cannot be acquired" for both nsoftware.IBizPayWeb and CyberSource.


I have granted ASPNET read/write/modify permission to both C:\Windows\Temp (in case they are trying to create web service proxies) and C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files.



Does anyone have a list of the specific permissions that those assemblies are demanding?

The problem appears to be that nsoftware.IBizPayWeb.dll is a strong named assembly in the private assembly directory. This combination apparently resolves to a trust level that does not meet the permission demand.


For those of you that already have nsoftware.IBizPayWeb.dll in your GAC you will need to remove it and clear out the Temporary ASP.NET Files folder for your site to recreate the problem. If you don't perform both steps than the previous permissions will be honored.



I have found two ways to solve it: 1) install nsoftware.IBizPayWeb.dll in the GAC, or 2) modify the policy file (i.e. web_mediumtrust.config) to grant the assembly special permission.



Granting the Assembly Special Permission



Find this CodeGroup in the policy file (i.e. web_mediumtrust.config),







Insert this new CodeGroup in front of the one shown above,



This new code group will grant any assembly signed with the nsoftware key (or at least the key that was used to sign nsoftware.IBizPayWeb.dll) FullTrust. I have not investigated if something less than FullTrust will work for this assembly or if a custom permission set would work because I do not know what custom permissions it requires. Regardless, this seems like a pretty good compromise to granting the entire application FullTrust.



Update: I just read that installing an assembly in the GAC grants it FullTrust, so the modification above grants the equivalent trust level.

CyberSource is actually a stand alone provider - meaning it's not using nsoftware. That DLL is provided directly from CyberSource.

Nice digging on the permissions Andy, we should definately add these to a BV KB as well. Also, if users are not using a certain gateway they can go into the Task Loader file and comment it/them out.