Skip to main content
BuyLog In
Business Intelligence Dashboard
Search in…
Docs > Create the Designer and Viewer Applications > WPF Viewer > Security Considerations
A newer version of this page is available. .
All docs
V19.1
Dashboard
Get Started
Basic Concepts and Terminology
Common Features
Create the Designer and Viewer Applications
WinForms Designer
WinForms Viewer
Web Dashboard
WPF Viewer
Prerequisites
Adding DashboardControl
Creating and Loading a Dashboard
Providing Data
Manage Dashboard Layout
Title and Item Captions
Printing and Exporting
Manage Interactivity Capabilities
Underlying and Displayed Data
Manage Dashboard State
Manage Dashboard Parameters
Styles and Templates
Security Considerations
Create Dashboards
Visual Studio Integration
End-User Documentation
Localization
Redistribution and Deployment
Video Tutorials
Migration Guides
Examples
Member Tables
.NET Framework API Reference
.NET Core API Reference
HTML JS Control API Reference
ASP.NET Client API Reference
Download CHM

Security Considerations

  • 2 minutes to read

This document describes how to avoid possible security risks when deploying a WPF application containing the DashboardControl and consists of the following sections:

Data Connection Security

Handle the DashboardControl.ConfigureDataConnection event to provide the required connection parameters at runtime.

Data Source Security

  • Entity Framework Data Source - Restricting Access to Unauthorized Assemblies

    Entity Framework Data Source (DashboardEFDataSource) does not allow loading of custom assemblies by default.

    To permit loading a specific assembly, handle the DashboardControl.CustomAssemblyLoading event. An unauthorized attempt to load a custom assembly results in a CustomAssemblyLoadingProhibitedException.

  • Object Data Source - Data Validation

    If an end-user opens the dashboard containing the DashboardObjectDataSource, the following message displays before data loading:

    Loading the data sources referenced in this file may harm your computer. Was this file obtained from a trusted source?

    This dialog allows end-users to select whether to trust the object data sources available in the application. You can change this default logic using the DashboardControl.ObjectDataSourceLoadingBehavior property. You can allow loading any object data sources, or you can load object data sources in a safe mode when their data member and data source settings are cleared.

    You can also provide a custom data source validation by handling the ObjectDataSource.BeforeFill event for the specified data source. The corresponding static ObjectDataSource.BeforeFillGlobal event allows you to validate all object data sources in your application.

See Also