Posted by: Shantha Kumar | March 9, 2009

The security validation for this page is invalid. Click Back in your Web browser, refresh the page, and try your operation again.

The security validation for this page is invalid. Click Back in your Web browser, refresh the page, and try your operation again.

The above error will be thrown at the time of updating Library or Lists items due to authentication problem, or We didn’t have the rights to update the items.
By using the follwoing code, We can overcome this issue,

Web.AllowUnsafeUpdates = true;
item["Title"]=”Sample”;
item.Update();

or we can also use the follwoing code to overcome the above error, this will affect the WebApplication. This will change the Security settings of a Web Application to allow the anonymous user to update item.

web.Site.WebApplication.FormDigestSettings.Enabled = false;
item["Title"]=”Sample”;
item.Update();
web.Site.WebApplication.FormDigestSettings.Enabled = true;

or we can change the settings in Central Administration to anonymously update the items. But this method will be dangerous.

  • Central Administration > Application Management > Web Application General Settings
  • Choose the WebApplication to overwrite the settings
  • Select the option Off in Web Page Security Validation as follows,

securitysettings1

Read more…

Posted in SharePoint | Tags: , ,

«
»

Responses

  1. Hi Shantha Kumar,
    I am currently facing the same issue, while debugging my code I can able to access the sharepoint sites & lists from my custom page. But when I host that website on IIS it’s giving me the same error
    “The security validation for this page is invalid. Click Back in your Web browser, refresh the page, and try your operation again.”
    I had tried out all the options you have mentioned as well as few others.
    1. Set AllowUnsafeUpdates property of SPWeb / SPSite to true
    2. Set web.Site.WebApplication.FormDigestSettings.Enabled to false
    3. writing code inside SPSecurity.RunWithElevatedPrivileges()
    4. using WindowsImpersonationContext wic = WindowsIdentity.GetCurrent().Impersonate()
    5. Changing authentication provider in Central Administration
    • Central Administration > Application Management > Authentication Providers
    • Select “Zone”
    • Check “Enable Anonymous Access”
    6. Turn off Web Page Security Validation in Central Administration
    • Central Administration > Application Management > Web Application General Settings
    • Select the option Off in Web Page Security Validation
    But none of them working for me except turn off the security validation from Central Administration, but it’s not the safe way to do it.
    Please guide me,
    Anand

    By: Anand Malli on October 1, 2009
    at 11:37 am

    Reply


Leave a response






Your response:

Categories