From the add-on's troubleshooting section - "100% of support requests I've resolved involve mis-configured web servers. If the target web server does not deliver ClickOnce applications and manifests as their proper MIME types, FxClickOnce will assume the server does not want to deliver those files as ClickOnce applications and treat them like any other file. This is a security precaution and is entirely by design. Please contact the server administrator and have them fix their server configuration." So... what if the server administrator is HPE and i prefer using the .NET client for iLO which doesn't launch? It would be really nice If I could disable this security feature for specific domains or IP ranges.
You have a service contract with HPE, not me. I'm not introducing a security vulnerability to my software because HPE can't be bothered to fix a lazy bug in theirs.
Whole bunch of possible solutions:
- Live with the extra click of saving the ClickOnce application to disk.
- Use a different ClickOnce supporting plugin.
- Use a different browser, such as one that is supported by the .NET client for iLO (hint: it's not Fx).
- If you don't mind glaring security vulnerabilities, feel free to remove the check from the code yourself. It's open-source and very easy to modify. Just download it, unzip it, and remove the offending line.
- Hire somebody to do the above, or to write a pass-through service that cleans up the iLO headers, if saving the extra click is really that important to your business process.
I use this extension dozens of times each day and it's annoying to have to click the confirmation box every time.
I understand that you don't want to bother with a configuration window and preferences - but could you just remove the dialog box altogether? And have it automatically just install (and run) the app? That would make it even *more* streamlined! :-)
I'm pretty sure 99.999% of the time, the users just want to run the app. They never want to download and save the application file.
Otherwise - is this an open source app? Or would you be prepared to release it as open source? And would you mind me forking it and creating a new version?
Yes, there is a minor inconvenience that once you click to open the app, the dialogue then prompts you to install (even if you already have the app installed), but really, if it gets you away from IE, its a win.
People who write reviews and give low star ratings - when they don't have a clue what is required bug me - this would be a 4.5 star review if possible, but because of the idiot reviewer who gave 1 I've rolled it up to 5.
What issue are you actually having? As far as I can tell, you're the only person having any issues. Cheers, Danny.
EDIT: Based on your edit, at a guess, it sounds like the server you're downloading from is misconfigured. Whilst IE can presumably guess it is a manifest even without the server telling it this add-on will only work if the server reports the .application file is actually a ClickOnce manifest (as it's supposed to work). Do you get this behaviour with all sites? What version of IE are you testing against? What OS? Email me at opensource a@t rushyo.com with the details. Thanks!
I'm sure it's possible, I'm just not sure whether it's necessary. Unless a bunch of people have a strong use case I'd like to avoid anything 'automatic' because then I need to add preferences and, doh, it's no longer micro and streamlined :)