- 01. April 2008 22:25
-
Tags:
.NET,
ASP .NET
All ASP .NET developers propably know about the trace feature in ASP .NET. Provided you have enabled tracing in web.config, (using <trace enabled="true" /> in the system.web element; requesting the url /trace.axd will provide you with a nice list of trace information for the previous requests.
I have often thought about putting the wealth of information to better use; perhaps making more detailed reports based on the trace information. This could be useful during testing. Unfortunately, as far as I can tell, there is no other way to get the information, than requesting Trace.axd. There seems to be no supported programmatic way of doing this.
So I set about finding out, how this could be done. At first I thought about creating a screen-scraper for requesting trace.axd and collecting the information. But this would be impractical; especially when large amounts of data should be collected.
A better approach seemed to be to find out how ASP .NET actually stores this information. Since trace.axd is actually an IHttpHandler (System.Web.TraceHandlers.TraceHttpHandler), the natural starting point was using Reflector to view the internals of this class. It did not take long to figure out, that the HttpRuntime class has a static internal property named Profile of the type System.Web.Util.Profiler, which is internal. This is the class responsible for collecting the Trace information, and has a GetData method. This method returns the current trace information as an IList containing DataSets.
Armed with this information, I wrote a small class that uses reflection to obtain the profiling data. The class looks like this:
1: using System;
2: using System.Collections;
3: using System.Collections.Generic;
4: using System.Data;
5: using System.Linq;
6: using System.Reflection;
7: using System.Web;
8:
9: namespace dr.TraceAnalyzer
10: { 11: ///
12: /// Proof-of-concept class for accessing trace data using reflection.
13: ///
14: public class TraceData
15: { 16: ///
17: /// Data
18: ///
19: private IList data = null;
20: ///
21: /// Gets the trace data in its raw list-of-datasets representation.
22: ///
23: public IList Data
24: { 25: get
26: { 27: if (data == null)
28: GetCurrentData();
29: return data;
30: }
31: }
32:
33: ///
34: /// Returns the response time for each request stored in the trace data.
35: ///
36: public IEnumerabledouble>double> RequestResponseTimes
37: { 38: get
39: { 40: GetCurrentData();
41: var sets = from d in Data.Cast()
42: select d;
43: return from set in sets
44: let traceTable = set.Tables["Trace_Trace_Information"]
45: where traceTable != null && traceTable.Rows.Count > 0
46: select (double) traceTable.Rows[traceTable.Rows.Count - 1]["Trace_From_First"];
47: }
48: }
49:
50: ///
51: /// Gets the current data from the Profiler instance's GetData method.
52: ///
53: ///
54: public IList GetCurrentData()
55: { 56: var profiler = GetProfiler();
57: Type profilerType = profiler.GetType();
58: MethodInfo method = profilerType.GetMethod("GetData", BindingFlags.Instance | BindingFlags.NonPublic); 59: return data = (IList) method.Invoke(profiler, null);
60: }
61:
62: ///
63: /// Use reflection to get the Profiler instance.
64: ///
65: ///
66: private object GetProfiler()
67: { 68: Type runtimeType = typeof (HttpRuntime);
69: PropertyInfo profileProperty = runtimeType.GetProperty("Profile", 70: BindingFlags.NonPublic | BindingFlags.Static);
71: if (profileProperty != null)
72: { 73: return profileProperty.GetValue(null, null);
74: }
75:
76: throw new ApplicationException("Reflection to get profiler instance failed."); 77: }
78: }
79: }
I have yet to decide what I am going to use the trace data for. But an obvious way to use it would be to represent some of the performance data that is collected, as a graph. For now, I have added a property, RequestResponseTimes, that returns a list of the total time taken for each request stored in the trace data.
And, please remember to disable tracing when putting your site into production ;-)
- 30. March 2008 20:12
-
Tags:
.NET
I've been hit by comment spam. Suddenly, one of the posts on this site had _a lot_ of comments, all with advertisements for some suspect sites. Needless to say, I've removed those comments.
So, what to do about that ? I decided to implement a CAPTCHA on the site. It is a pretty standard one, requiring you to repeat a word, that is shown as an image and garbled, so that image recognition software has a hard time interpreting it. I could have found a complete control for it in a few minutes just by searching Google; but I implemented it myself as an ASP .NET control, just for fun. Also, I believe that the security in a unique CAPTCHA algorithm is much better. If spammers develop software to defeat CAPTCHA's, naturally they are only going to target big sites to maximize their profits, and not bother trying to break a CAPTCHA, that is only used on my little site.
A nice example on this is the fact that Jeff Atwood's blog is using one of the simplest CAPTCHAs conceivable, a static image containing the same word each time, that the user must repeat in a textbox. Apparently, that is enough to stop most of the spam on his blog. Another example of a really simple CAPTCHA is to simply include a hidden field on the page. If the field gets filled out on postback, it is most likely a spam-bot posting it, since the average user would never notice, let alone filling out, the hidden field. I like that idea particularly, because it does not require the user to think or do anything. (So why did I go for the image approach in implementing my own CAPTCHA ? Probably because I wanted to try out implementing one ;-))
I am probably going to blog about the techniques going into developing a CAPTCHA in ASP .NET in the near future. In the meanwhile, dear reader, please try out the comments feature, and let me know if you find the CAPTCHA image easy enough, or too easy, to read.