Skip to main content
BuyLog In
Cross-Platform Class Library
Search in…
Docs > API Reference > DevExpress.Utils > UrlAccessSecurityLevelSetting > Properties > SecurityLevel
All docs
V24.1
Cross-Platform Core Libraries
Core Library Assemblies
DevExpress Data Library
DevExpress.Drawing Graphics Library
DevExpress Pivot Grid Core Library
Miscellaneous
API Reference
DevExpress.Charts.Heatmap
DevExpress.Charts.Sankey
DevExpress.DashboardCommon
DevExpress.DashboardCommon.Diagnostics
DevExpress.DashboardWeb
DevExpress.Data
DevExpress.Data.Browsing
DevExpress.Data.Browsing.Design
DevExpress.Data.Camera
DevExpress.Data.Controls
DevExpress.Data.Controls.ExpressionEditor
DevExpress.Data.Entity
DevExpress.Data.Filtering
DevExpress.Data.Filtering.Exceptions
DevExpress.Data.Filtering.Helpers
DevExpress.Data.Linq
DevExpress.Data.Mask
DevExpress.Data.ODataLinq
DevExpress.Data.PivotGrid
DevExpress.Data.PLinq
DevExpress.Data.TreeList
DevExpress.Data.Utils
DevExpress.Data.Utils.ServiceModel
DevExpress.Data.WcfLinq
DevExpress.Data.WizardFramework
DevExpress.Data.XtraReports.DataProviders
DevExpress.DataAccess
DevExpress.DataAccess.ConnectionParameters
DevExpress.DataAccess.DataFederation
DevExpress.DataAccess.EntityFramework
DevExpress.DataAccess.Excel
DevExpress.DataAccess.ExpressionEditor
DevExpress.DataAccess.Json
DevExpress.DataAccess.Localization
DevExpress.DataAccess.MongoDB
DevExpress.DataAccess.ObjectBinding
DevExpress.DataAccess.Sql
DevExpress.DataAccess.Sql.DataApi
DevExpress.DataAccess.UI.Localization
DevExpress.DataAccess.Web
DevExpress.DataAccess.Web.QueryBuilder
DevExpress.DataAccess.Web.QueryBuilder.DataContracts
DevExpress.DataAccess.Wizard
DevExpress.DataAccess.Wizard.Model
DevExpress.DataAccess.Wizard.Presenters
DevExpress.DataAccess.Wizard.Services
DevExpress.DataAccess.Wizard.Views
DevExpress.DataProcessing.Criteria
DevExpress.Diagram.Core
DevExpress.Diagram.Core.Layout
DevExpress.Diagram.Core.Localization
DevExpress.Diagram.Core.Native
DevExpress.Diagram.Core.Serialization
DevExpress.Diagram.Core.Shapes
DevExpress.Diagram.Core.Themes
DevExpress.DocumentServices.ServiceModel
DevExpress.DocumentServices.ServiceModel.Client
DevExpress.DocumentServices.ServiceModel.DataContracts
DevExpress.DocumentView
DevExpress.Drawing
DevExpress.Drawing.Extensions
DevExpress.Drawing.Printing
DevExpress.Entity.Model
DevExpress.Entity.ProjectModel
DevExpress.Export
DevExpress.Export.Xl
DevExpress.Map
DevExpress.Mvvm
DevExpress.Mvvm.DataAnnotations
DevExpress.Mvvm.DataModel
DevExpress.Mvvm.Gantt
DevExpress.Mvvm.ModuleInjection
DevExpress.Mvvm.UI
DevExpress.Mvvm.Utils
DevExpress.Mvvm.ViewModel
DevExpress.Mvvm.Xpf
DevExpress.Office.Crypto
DevExpress.PivotGrid.DataBinding
DevExpress.PivotGrid.Printing
DevExpress.Printing
DevExpress.Printing.ExportHelpers
DevExpress.ReportServer.Printing
DevExpress.ReportServer.Printing.Services
DevExpress.ReportServer.ServiceModel.Client
DevExpress.ReportServer.ServiceModel.ConnectionProviders
DevExpress.ReportServer.ServiceModel.DataContracts
DevExpress.Schedule
DevExpress.Security.Resources
DevExpress.Services
DevExpress.Sparkline
DevExpress.TreeMap
DevExpress.Utils
AzureCompatibility
BindToTypePolicy
BindToTypePolicy.BindToTypeBaseQueryArgs
BindToTypePolicy.LoadLevel
BindToTypePolicy.QueryAssemblyLoadEventArgs
BindToTypePolicy.QueryBindToTypeEventArgs
BindToTypePolicy.QueryLevel
BindToTypePolicy.QueryNonTrustedTypeValidationEventArgs
BindToTypePolicy.WeakEventHandler<TEventArgs>
DefaultBoolean
DeserializationSettings
DXCollection<T>
DXCollectionBase<T>
FormatInfo
FormatType
HorzAlignment
LayoutAllowEventArgs
LayoutAllowEventHandler
LayoutUpgradeEventArgs
LayoutUpgradeEventHandler
NotificationCollection<T>
OptionsColumnLayout
OptionsLayoutBase
OptionsLayoutGrid
PointFloat
PropertyAllowEventArgs
UrlAccessSecurityLevel
UrlAccessSecurityLevelSetting
Members
Constructors
Properties
SecurityLevel
Methods
UrlResolver
VertAlignment
WordWrap
DevExpress.Utils.Commands
DevExpress.Utils.Controls
DevExpress.Utils.Filtering
DevExpress.Utils.Filtering.Internal
DevExpress.Utils.Html
DevExpress.Utils.IoC
DevExpress.Utils.Localization
DevExpress.Utils.Serializing
DevExpress.Utils.Serializing.Helpers
DevExpress.Utils.Svg
DevExpress.WebUtils
DevExpress.Xpf.Core
DevExpress.Xpf.Data
DevExpress.Xpf.Printing
DevExpress.Xpo
DevExpress.Xpo.DB
DevExpress.Xpo.DB.Exceptions
DevExpress.Xpo.DB.Helpers
DevExpress.Xpo.Helpers
DevExpress.XtraCharts
DevExpress.XtraCharts.Heatmap
DevExpress.XtraCharts.Heatmap.Printing
DevExpress.XtraCharts.Localization
DevExpress.XtraCharts.Printing
DevExpress.XtraCharts.Sankey
DevExpress.XtraCharts.Sankey.Printing
DevExpress.XtraEditors
DevExpress.XtraEditors.DXErrorProvider
DevExpress.XtraEditors.Filtering
DevExpress.XtraExport.Csv
DevExpress.XtraGauges.Base
DevExpress.XtraGauges.Core
DevExpress.XtraGauges.Core.Base
DevExpress.XtraGauges.Core.Drawing
DevExpress.XtraGauges.Core.Localization
DevExpress.XtraGauges.Core.Model
DevExpress.XtraGauges.Core.Primitive
DevExpress.XtraGrid
DevExpress.XtraPivotGrid
DevExpress.XtraPivotGrid.Customization
DevExpress.XtraPivotGrid.Data
DevExpress.XtraPivotGrid.Localization
DevExpress.XtraPivotGrid.Selection
DevExpress.XtraPrinting
DevExpress.XtraPrinting.BarCode
DevExpress.XtraPrinting.BarCode.EPC
DevExpress.XtraPrinting.Caching
DevExpress.XtraPrinting.DataNodes
DevExpress.XtraPrinting.Drawing
DevExpress.XtraPrinting.Export
DevExpress.XtraPrinting.Export.Web
DevExpress.XtraPrinting.Localization
DevExpress.XtraPrinting.Native
DevExpress.XtraPrinting.Shape
DevExpress.XtraPrinting.Shape.Native
DevExpress.XtraPrinting.WebClientUIControl.DataContracts
DevExpress.XtraPrintingLinks
DevExpress.XtraReports
DevExpress.XtraReports.Configuration
DevExpress.XtraReports.Design
DevExpress.XtraReports.Expressions
DevExpress.XtraReports.Expressions.Native
DevExpress.XtraReports.Parameters
DevExpress.XtraReports.Parameters.ViewModels
DevExpress.XtraReports.ReportGeneration
DevExpress.XtraReports.UI
DevExpress.XtraReports.Web.ReportDesigner
DevExpress.XtraReports.Web.ReportDesigner.DataContracts
DevExpress.XtraReports.Web.WebDocumentViewer
DevExpress.XtraReports.Web.WebDocumentViewer.DataContracts
DevExpress.XtraScheduler
DevExpress.XtraScheduler.Compatibility
DevExpress.XtraScheduler.Drawing
DevExpress.XtraScheduler.Exchange
DevExpress.XtraScheduler.iCalendar
DevExpress.XtraScheduler.iCalendar.Components
DevExpress.XtraScheduler.Localization
DevExpress.XtraScheduler.Native
DevExpress.XtraScheduler.Outlook
DevExpress.XtraScheduler.Outlook.Interop
DevExpress.XtraScheduler.Reporting
DevExpress.XtraScheduler.Services
DevExpress.XtraScheduler.Services.Implementation
DevExpress.XtraScheduler.Tools
DevExpress.XtraScheduler.UI
DevExpress.XtraScheduler.Xml
DevExpress.XtraSpellChecker
DevExpress.XtraSpellChecker.Rules
Download CHM

UrlAccessSecurityLevelSetting.SecurityLevel Property

OBSOLETE

Use the DevExpress.Security.Resources.AccessSettings.StaticResources.TrySetRules method instead.

Specifies whether a report control allows loading images using the “file://“ protocol.

Namespace: DevExpress.Utils

Assembly: DevExpress.Data.v24.1.dll

NuGet Package: DevExpress.Data

Declaration

[Obsolete("Use the DevExpress.Security.Resources.AccessSettings.StaticResources.TrySetRules method instead.")]
public static UrlAccessSecurityLevel SecurityLevel { get; set; }

Property Value

Type Description
UrlAccessSecurityLevel

A UrlAccessSecurityLevel enumeration value.

Available values:

Name Description
Restricted
WebUrlsOnly

Forbids loading images using the “file://“ protocol (only the “http://“, “https://“ and “ftp://“ protocols are supported).
FilesFromBaseDirectory

Enables loading of images from an application’s working directory (defined by the AppDomain.CurrentDomain.BaseDirectory property).
FilesFromDirectories
Custom

Enables loading of images from custom directories (defined using the UrlAccessSecurityLevelSetting.RegisterCustomBaseDirectories or UrlAccessSecurityLevelSetting.RegisterCustomCallback method).
Unrestricted

Enables loading of any image from any directory.

Remarks

The XRPictureBox.ImageUrl property of the XRPictureBox report control does not accept the “file://“ protocol by default to prevent unauthorized access to images on the server (e.g., BMP, PNG and JPG files). The same applies to the XRRichText report control when images are added using the IncludePicture field. For security reasons, both these controls only support the “http://“, “https://“ and “ftp://“ protocols by default.

To enable using the “file://“ protocol for loading images, use the corresponding methods (UrlAccessSecurityLevelSetting.RegisterCustomBaseDirectories and UrlAccessSecurityLevelSetting.RegisterCustomCallback) or set the SecurityLevel property to one of the following UrlAccessSecurityLevel enumeration values.

See Also