Skip to main content
BuyLog In
.NET Reporting Tools
Search in…
Docs > API Reference > DevExpress.XtraReports.Configuration > UserDesignerOptions > Properties > ReportLoadingRestrictionLevel
All docs
V23.2
Reporting
Product Information
.NET / .NET Core Support
Get Started with DevExpress Reporting
Create Different Report Types (Walkthroughs)
Detailed Guide to DevExpress Reporting
Localize Reporting Applications
Security Considerations
Visual Studio Report Designer
VS Code Report Designer
Reporting for Desktop
Reporting for .NET MAUI
Reporting for Web
Cloud Integration
Cross-Platform .NET App UI
Backend Web API Service / REST API for Reporting
WCF Report Service
End-User Documentation
Redistribution and Deployment
API Reference
DevExpress.XtraCharts
DevExpress.XtraPrinting.Caching
DevExpress.XtraPrinting.Diagnostics
DevExpress.XtraReports
DevExpress.XtraReports.CodeCompletion
DevExpress.XtraReports.CodeCompletion.Storages
DevExpress.XtraReports.Configuration
ChartDesignOptions
DesignAnalyzerOptions
DesignSettings
PivotGridDesignOptions
PreviewOptions
Settings
StorageOptions
UserDesignerOptions
Members
Constructors
Properties
ConvertBindingsToExpressions
DataBindingMode
DefaultCrossTabControl
FieldListMaxExpandLevelOnSearch
ReportLoadingRestrictionLevel
ShowDesignAnalyzerNotificationPopup
ShowUserFriendlyNames
Methods
DevExpress.XtraReports.Data
DevExpress.XtraReports.Design
DevExpress.XtraReports.Expressions
DevExpress.XtraReports.Extensions
DevExpress.XtraReports.FavoriteProperties
DevExpress.XtraReports.Import
DevExpress.XtraReports.Interactivity
DevExpress.XtraReports.Localization
DevExpress.XtraReports.Native
DevExpress.XtraReports.Parameters
DevExpress.XtraReports.ReportGallery
DevExpress.XtraReports.ReportGeneration
DevExpress.XtraReports.Scripting
DevExpress.XtraReports.Security
DevExpress.XtraReports.Serialization
DevExpress.XtraReports.Service
DevExpress.XtraReports.Service.Extensions
DevExpress.XtraReports.Services
DevExpress.XtraReports.Templates
DevExpress.XtraReports.UI
DevExpress.XtraReports.UI.CrossTab
DevExpress.XtraReports.UI.PivotGrid
DevExpress.XtraReports.UserDesigner
DevExpress.XtraReports.Web
DevExpress.XtraReports.Web.Azure.ReportDesigner
DevExpress.XtraReports.Web.Azure.WebDocumentViewer
DevExpress.XtraReports.Web.ClientControls
DevExpress.XtraReports.Web.ClientControls.DataContracts
DevExpress.XtraReports.Web.DocumentViewer
DevExpress.XtraReports.Web.DocumentViewer.Ribbon
DevExpress.XtraReports.Web.Extensions
DevExpress.XtraReports.Web.Localization
DevExpress.XtraReports.Web.QueryBuilder
DevExpress.XtraReports.Web.QueryBuilder.Native
DevExpress.XtraReports.Web.QueryBuilder.Services
DevExpress.XtraReports.Web.ReportDesigner
DevExpress.XtraReports.Web.ReportDesigner.DataContracts
DevExpress.XtraReports.Web.ReportDesigner.Native
DevExpress.XtraReports.Web.ReportDesigner.Services
DevExpress.XtraReports.Web.WebDocumentViewer
DevExpress.XtraReports.Web.WebDocumentViewer.DataContracts
DevExpress.XtraReports.Web.WebDocumentViewer.Native
DevExpress.XtraReports.Wizards
DevExpress.XtraReports.Wizards.Builder
DevExpress.XtraReports.Wizards.ColorSchemes
DevExpress.XtraReports.Wizards.CrossTab
DevExpress.XtraReports.Wizards.Labels
DevExpress.XtraReports.Wizards.Presenters
DevExpress.XtraReports.Wizards.Templates
DevExpress.XtraReports.Wizards.Views
ASP.NET Core API Reference
Blazor API Reference
Client API Reference
Client API Reference (Web Forms & MVC)
Download CHM

UserDesignerOptions.ReportLoadingRestrictionLevel Property

Specifies whether end-users are allowed to load untrusted reports with potentially dangerous content in a desktop reporting application.

Namespace: DevExpress.XtraReports.Configuration

Assembly: DevExpress.XtraReports.v23.2.dll

NuGet Package: DevExpress.Reporting.Core

Declaration

public RestrictionLevel ReportLoadingRestrictionLevel { get; set; }

Property Value

Type Description
RestrictionLevel

A RestrictionLevel enumeration value.

Property Paths

You can access this nested property as listed below:

Object Type Path to ReportLoadingRestrictionLevel
ReportingSettings
.UserDesignerOptions .ReportLoadingRestrictionLevel
Settings
.UserDesignerOptions .ReportLoadingRestrictionLevel

Remarks

End-User Report Designer (WinForms and WPF) displays the following warning when a user attempts to load a potentially unsafe report:

report-designer-load-report-warning

A report is considered unsafe if it or any of its subreports contain any of the following:

The following code prevents users from loading unsafe reports:

static class Program {
    static void Main() {
        DevExpress.XtraReports.Configuration.Settings.Default.UserDesignerOptions.ReportLoadingRestrictionLevel =
    DevExpress.XtraReports.UI.RestrictionLevel.Disable;
    }
}

The code above displays the error message when the user attempts to load a potentially unsafe report.

report-designer-load-report-disabled-warning

In a restricted environment where all reports are guaranteed to be safe, you can disable this warning and allow users to load any report by setting the UserDesignerOptions.ReportLoadingRestrictionLevel property to RestrictionLevel.Enable.

The following code lets you determine whether a report is considered unsafe, and displays detected security warnings in the Output window:

var traceSource = DevExpress.XtraPrinting.Tracer.GetSource("DXperience.Reporting", 
    System.Diagnostics.SourceLevels.Error | System.Diagnostics.SourceLevels.Warning);
var listener = new System.Diagnostics.DefaultTraceListener();
traceSource.Listeners.Add(listener);
try {
    new XtraReport1().ShowRibbonDesignerDialog();
} finally {
    traceSource.Listeners.Remove(listener);
}
See Also