1

我有一个 ASP.net 应用程序,并且正在使用以下连接字符串:

<configuration>
<connectionStrings>
    <add name="CAF" connectionString="Data Source=pxx-sql2;Initial Catalog=mydb;User ID=DBUser;Password=mypass;Persist Security Info=False;Trusted_Connection=False;"  providerName="System.Data.SqlClient"/>
</connectionStrings>
</configuration>

当我在应用程序中阅读时,一切正常。但是当我写的时候,我收到了这个错误:“对 OLE DB 提供程序 'ADSDSOObject' 的临时访问已被拒绝。您必须通过链接服务器访问此提供程序。”

堆栈跟踪提供:

[SqlException (0x80131904): Ad hoc access to OLE DB provider 'ADSDSOObject' has been denied. You must access this provider through a linked server.]
   System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection) +404
   System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning() +412
   System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj) +1363
   System.Data.SqlClient.SqlCommand.FinishExecuteReader(SqlDataReader ds, RunBehavior runBehavior, String resetOptionsString) +6387805
   System.Data.SqlClient.SqlCommand.RunExecuteReaderTds(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, Boolean async) +6389506
   System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method, DbAsyncResult result) +538
   System.Data.SqlClient.SqlCommand.InternalExecuteNonQuery(DbAsyncResult result, String methodName, Boolean sendToPipe) +689
   System.Data.SqlClient.SqlCommand.ExecuteNonQuery() +327
   MyDBData.Reconcile(HttpRequest req, User u, String assignee) in c:\websites\MyDB\App_Code\MyDBDataReconciler.cs:99

[Exception: Ad hoc access to OLE DB provider 'ADSDSOObject' has been denied. You must access this provider through a linked server.]
   MyDBData.Reconcile(HttpRequest req, User u, String assignee) in c:\websites\MyDB\App_Code\MyDBDataReconciler.cs:112
   EntryEditView.Page_Load(Object sender, EventArgs e) in c:\websites\MyDB\EntryEditView.aspx.cs:50
   System.Web.Util.CalliHelper.EventArgFunctionCaller(IntPtr fp, Object o, Object t, EventArgs e) +25
   BasePage.OnLoad(EventArgs e) in c:\websites\MyDB\App_Code\BasePage.cs:19
   System.Web.UI.Control.LoadRecursive() +71
   System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +3064

除了我不认为我在这个项目的任何地方都使用了“ADSDSOObject”。我正在打开与标准 SqlData 句柄的连接。

真正奇怪的是,这是四次中的第四次插入,并且是ExecuteNonQuery我提交事务之前的最后一次(插入时)。

这是完整的功能。

public void Reconcile(HttpRequest req, User u, string assignee)
{
    SqlConnection conn = new SqlConnection(Config.ConnString);
    conn.Open();
    SqlTransaction transaction = conn.BeginTransaction("UpdateMyDB");

    this.master.MyDBMasterID = int.Parse(req.Params["MyDB"]);
    MyDBLayout MyDBL = new MyDBLayout(this.master.MyDBMasterID);
    this.master.bexMasterID = int.Parse(req.Params["bex"]);
    MyDBLayout bexL = null;
    if (this.master.bexMasterID > 0)
        bexL = new MyDBLayout(this.master.bexMasterID);
    SqlCommand cmd = new SqlCommand();
    cmd.Transaction = transaction;
    cmd.Connection = conn;

    try
    {
        int bexForm;
        if (this.MyDBID == -1)
        {
            // Create the blank MyDB
            cmd.CommandText = @"
                insert into MyDB_Master(created, branch, client, clientName, submitter, specialist, MyDBDate, MyDBMasterID, bexMasterID)
                    values (getdate(), '', '', '', @submitter, '', getdate(), @MyDBMasterID, @bexMasterID); select @@IDENTITY";
            cmd.Parameters.AddWithValue("@MyDBMasterID", req.Params["MyDB"].Trim());
            cmd.Parameters.AddWithValue("@submitter", u.LoginName);
            bexForm = int.Parse(req.Params["bex"].Trim());
            if (bexForm != -1)
                cmd.Parameters.AddWithValue("@bexMasterID", bexForm);
            else
                cmd.Parameters.AddWithValue("@bexMasterID", DBNull.Value);
            MyDBID = (int)((decimal)cmd.ExecuteScalar());
        }
        // Populate the master
        cmd.CommandText = @"
                update MyDB_MASTER set branch = @branch, client = @client, clientName = @clientName,
                    specialist = @specialist, MyDBDate = @MyDBDate,
                    MyDBMasterID = @MyDBMasterID, bexMasterID = @bexMasterID, payDate = @MyDBPayDate, method = @method
                where MyDBID = @MyDBID;";
        cmd.Parameters.Clear();
        cmd.Parameters.AddWithValue("@MyDBID", MyDBID);
        cmd.Parameters.AddWithValue("@branch", req.Params["MyDBBranch"].Trim());
        cmd.Parameters.AddWithValue("@client", req.Params["MyDBClient"].Trim());
        cmd.Parameters.AddWithValue("@clientName", req.Params["MyDBName"].Trim());
        cmd.Parameters.AddWithValue("@specialist", req.Params["MyDBSpecialist"].Trim());
        cmd.Parameters.AddWithValue("@method", req.Params["MyDBMethod"].Trim());

        DateTime MyDBDate = DateTime.MinValue;
        if (DateTime.TryParseExact(req.Params["MyDBDate"], "MM/dd/yyyy", enUS, DateTimeStyles.AllowWhiteSpaces, out MyDBDate))
            cmd.Parameters.AddWithValue("@MyDBDate", MyDBDate);
        else
            cmd.Parameters.AddWithValue("@MyDBDate", DateTime.Now);

        DateTime MyDBPayDate = DateTime.MinValue;
        if (DateTime.TryParseExact(req.Params["MyDBPayDate"], "MM/dd/yyyy", enUS, DateTimeStyles.AllowWhiteSpaces, out MyDBPayDate))
            cmd.Parameters.AddWithValue("@MyDBPayDate", MyDBPayDate);
        else
            cmd.Parameters.AddWithValue("@MyDBPayDate", DBNull.Value);

        cmd.Parameters.AddWithValue("@MyDBMasterID", req.Params["MyDB"].Trim());
        bexForm = int.Parse(req.Params["bex"].Trim());
        if (bexForm != -1)
            cmd.Parameters.AddWithValue("@bexMasterID", bexForm);
        else
            cmd.Parameters.AddWithValue("@bexMasterID", DBNull.Value);
        cmd.ExecuteNonQuery();

        // Remove old detail
        cmd.Parameters.Clear();
        cmd.CommandText = @"delete from MyDB_detail where MyDBID = @MyDBID";
        cmd.Parameters.AddWithValue("@MyDBID", MyDBID);
        cmd.ExecuteNonQuery();

        FixNotes(MyDBID, req, cmd);

        AddDetail(MyDBID, MyDBL, req, cmd);
        if ( bexL != null )
            AddDetail(MyDBID, bexL, req, cmd);

        cmd.Parameters.Clear(); 
        cmd.CommandText = @"insert into MyDB_history (MyDBID, alteredBy, assignedTo, status) values (@MyDBID, @alteredBy, @assignedTo, @status)";
        cmd.Parameters.AddWithValue("@MyDBID", MyDBID);
        cmd.Parameters.AddWithValue("@alteredBy", u.LoginName);
        cmd.Parameters.AddWithValue("@assignedTo", assignee);
        cmd.Parameters.AddWithValue("@status", req.Params["MyDBStatus"]);
        this.master.assignedTo = assignee;
        cmd.ExecuteNonQuery();     // <--- Fails here.

        transaction.Commit();
    }
    catch (System.Exception e)
    {
        try
        {
            transaction.Rollback();
        }
        catch { }
        throw new Exception(e.Message, e);
    }
}

什么可能导致此特定错误?

4

1 回答 1

1

ADSDSOObject 用于查询 Active Directory。

该错误似乎是在 SQL 服务器中生成的,而不是在您的应用程序中。我怀疑可能存在使用 ADSDSOObject 针对 Active Directory 验证传递的 LoginName (@alteredBy) 或受让人 (@assignedTo) 的约束或触发器。

于 2013-01-14T15:59:49.063 回答