Skip to main content

UploadControlValidationSettings.AllowedContentTypes Property


Use the AllowedFileExtensions property instead. Note, it accepts file extensions instead of content types.

Gets or sets the allowed content types of the uploaded file.

Namespace: DevExpress.Web

Assembly: DevExpress.Web.v23.1.dll

NuGet Package: DevExpress.Web


[Obsolete("Use the AllowedFileExtensions property instead. Note, it accepts file extensions instead of content types.")]
public string[] AllowedContentTypes { get; set; }

Property Value

Type Description

An array of MIME content-type string values that contains the allowed content types.

Property Paths

You can access this nested property as listed below:

Library Object Type Path to AllowedContentTypes
ASP.NET Web Forms Controls ASPxUploadControl
.ValidationSettings .AllowedContentTypes
ASP.NET MVC Extensions UploadControlBinderSettings
.ValidationSettings .AllowedContentTypes
.ValidationSettings .AllowedContentTypes


Use the AllowedContentTypes property to allow end-users to only upload files with the specified content types. If the uploaded file’s content type is not allowed (it’s not listed by the AllowedContentTypes property), the ASPxUploadControl‘s validation fails and the UploadControlValidationSettings.NotAllowedContentTypeErrorText property’s value is displayed within the control’s specific error frame. If the ASPxUploadControl validation fails, the FileUploadCompleteEventArgs.IsValid, ASPxUploadControl.IsValid and ASPxClientUploadControlFileUploadCompleteEventArgs.isValid properties are set to false.


Members of an array provided by the AllowedContentTypes property are standard MIME types. For a list of possible values, search for MIME in the Microsoft Documentation.

Note that setting just the AllowedContentTypes property is not sufficient to prevent any potentially harmful attack to a web site. Setting the UploadControlValidationSettings.AllowedFileExtensions property as well, is recommended.

See the Allowed File Extensions topic to learn more.


The following sample code demonstrates how to save the file specified within the ASPxUploadControl on the client. Before file saving, the FileUploadCompleteEventArgs.IsValid property is tested to verify whether the file passes the validation criteria defined via the ASPxUploadControl.ValidationSettings property. Note, that in order to compose the ASPxUploadControl.SaveAs method’s parameter value, the HostingEnvironment.MapPath(String) method and ASPxUploadControl.FileName property are used to specify the web application’s Image folder as a location where the file should be saved, and define the file’s name, respectively.

<%@ Page Language="C#" AutoEventWireup="true"  CodeFile="Default.aspx.cs" Inherits="_Default" %>
<%@ Register Assembly="DevExpress.Web.v10.2, Version=, Culture=neutral, 
PublicKeyToken=b88d1754d700e49a" Namespace="DevExpress.Web.ASPxUploadControl" TagPrefix="dxuc" %>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 

<script runat="server">
protected void Page_Load(object sender, EventArgs e){
protected void ASPxUploadControl1_FileUploadComplete(object sender, 
DevExpress.Web.FileUploadCompleteEventArgs e) {
        if (e.IsValid) {
            ASPxUploadControl1.SaveAs(MapPath("Images/" + ASPxUploadControl1.FileName));

<html xmlns="" >
<head id="Head1" runat="server">
    <title>How to use the ASPxUploadControl's Validation Settings</title>
    <form id="form2" runat="server">
                FileDoesNotExistErrorText="This file can't be found." 
                GeneralErrorText="Custom file uploading fails due to an external error that 
                    doesn't relate to the ASPxUploadControl's functionality" 
                MaxFileSizeErrorText="Size of the uploaded file exceeds maximum file size" 
                NotAllowedContentTypeErrorText="The uploaded file's content type isn't allowed">
                <ErrorStyle BackColor="Yellow" ForeColor="Black" />

See Also