What are the typical reasons for a .net access denied error on attempting to log in to Sitecore?

2
votes

Using a valid Sitecore account, no roles associated but marked as Administrator, I got the error below when trying to log in.

  1. The site is running OK
  2. I was able to log in with a similar account.
  3. Attempting to log in with an incorrect password returns the correct "Access denied" message on the login page.
  4. The login worked OK again a short while later (roughly an hour)

What would the typical reasons be for Sitecore to fail in this way?

Error details:

Server Error in '/' Application.

Application access denied. Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details:

Sitecore.Exceptions.AccessDeniedException: Application access denied.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:

[AccessDeniedException: Application access denied.] Sitecore.Diagnostics.Assert.HasAccess(Boolean accessAllowed, String message) +158 Sitecore.Shell.Applications.ShellForm.OnLoad(EventArgs e) +68

[TargetInvocationException: Exception has been thrown by the target of an invocation.] System.RuntimeMethodHandle._InvokeMethodFast(IRuntimeMethodInfo method, Object target, Object[] arguments, SignatureStruct& sig, MethodAttributes methodAttributes, RuntimeType typeOwner) +0 System.Reflection.RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture, Boolean skipVisibilityChecks) +640 System.Reflection.RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture) +38 System.Reflection.MethodBase.Invoke(Object obj, Object[] parameters) +35 Sitecore.Reflection.ReflectionUtil.CallMethod(Type type, Object obj, String methodName, Boolean includeNonPublic, Boolean includeInherited, Object[] parameters) +37 Sitecore.Reflection.ReflectionUtil.CallMethod(Object obj, String methodName, Boolean includeNonPublic, Boolean includeInherited, Object[] parameters) +66 Sitecore.Web.UI.Sheer.ClientPage.OnLoad(EventArgs e) +420 System.Web.UI.Control.LoadRecursive() +71 System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +3064

Version Information: Microsoft .NET Framework Version:4.0.30319; ASP.NET Version:4.0.30319.237

2
.netsitecoresitecore6

2 Answers

2
votes

I had a similar problem where I locked all my users out after trying to define some custom roles.

The problem was that users no longer belonged to the magic role sitecore\Sitecore Client Authoring.

The other sitecore\Sitecore Client XXX roles are also special. For example, belonging to sitecore\Sitecore Client Publishing shows the publishing ribbon.

0
votes

Really strange thing. Having Administrator check box enabled disables all security checks in Sitecore. Tried this on 6.5