Execute a Client side executable using JQuery

Question

1.00/5 (1 vote)

See more:

I want to read registry and run an executable on client side from server.Is there a way of achieving this ???

I have Server side content management application running on PHP in a browser of every client.From the same browser when it runs on client, I want launch our application directly from browser.

Thanks in Advance

Posted 11-Nov-13 20:44pm

shyamnguitar

Updated 12-Nov-13 1:15am

v2

Add a Solution

Comments

Sergey Alexandrovich Kryukov 12-Nov-13 3:04am

Why?
—SA

[no name] 12-Nov-13 7:15am

I have Server side content management application running on PHP in a browser of every client.From the same browser when it runs on client, I want launch our application directly from browser.

3 solutions

Solution 1

Short answer is: you cannot. Web applications don't have access to client-side system and are not allowed to do such things, by obvious security reasons. And you should not do it.

There is one dirty work-around, ActiveX control used in browser via JavaScript. My best advice would be: never go this way. Anyway, ActiveX use is not supported by all browsers and systems. More importantly, it would break security feature which I mentioned above. Actually, many computer-savvy users will never use your site if they learn that you use such dirty tricks. It would mean that you ignore very basic security considerations.

—SA

Posted 11-Nov-13 21:04pm

Sergey Alexandrovich Kryukov

Comments

[no name] 12-Nov-13 7:16am

I have Server side content management application running on PHP in a browser of every client.From the same browser when it runs on client, I want launch our application directly from browser.

Sergey Alexandrovich Kryukov 12-Nov-13 10:47am

Do you understand why it is unacceptable due to security reasons? Why a client can trust your site such things. Anyone can inject any malicious code and execute it...
You did not explain any valid reason why would you need to run such application...
—SA

[no name] 12-Nov-13 23:33pm

Thats what I have explained.We have developed an application for a client.Its an intranet network so the malicious intent is ruled out. Now we have developed content management solution for the client and at the end of content creation user is supposed to launch a dekstop application.

Now I have solved it myself very safely. At the end of it user will create a DB entry in a table and process running on client would check for the DB entry and automatically launches the client application.

Problem solved safely in a neat and clean method.

Sergey Alexandrovich Kryukov 13-Nov-13 0:23am

Well, yes, intranet tool is one of the rare cases where ActiveX can be used. I would advise to avoid using ActiveX even in intranet development unless it is really unavoidable. Unfortunately, the real problem is the lack of standardization of certain inherently safe features, which leads to unsafe solutions. One such example is such a simple thing as a multiselect file dialog, which is badly needed to post multiple files. Standardization of such feature would immediately create a possibility to implement it in perfectly safe way (no different from what is possible with currently used Web forms), but available implementation use ActiveX...
—SA

[no name] 13-Nov-13 1:53am

As I said there no Active X..we are handling it through database flag and process thread.Its a intranet where both the browser , application being launched are designed by us as per the requirement of the customer.Thankyou...

Sergey Alexandrovich Kryukov 13-Nov-13 2:07am

Ah, this is really good. I just did not yet check your solution when I was writing the comment above. It requires installation on the client part on client computers, but this is a legitimate solution.
—SA

Dylan Hunt 4-Feb-16 2:06am

There needs to be more related content to the OP and NOT judging security holes. There's reasons for everything in the world of IT, and I can see a use for it 100% -- a local HTML5 skinned Windows shell for internal use only, where if security were to break, then it's no big deal - and that's a big if, locked down by chromium embedded framework security settings.

Less trolling WHY someone wants it, and more answers HOW, if you plan to reply. Keep it to the point.

Sergey Alexandrovich Kryukov 4-Feb-16 2:26am

Thank you for the advice, but I cannot totally agree with that. First of all, "why" is basically more important than "how". Often, the best solution of a problem is not solving it. Anyway, I choose not to answer or not do something if I don't have satisfactory answer to the question "why". And calling "why" "trolling" is somewhat outraging, isn't it? :-)

It also hard to agree with "not judging security holes". How so? If you have a chance to reduce risk of security problem with your advice, you always should use this change. Security is way too important to ignore, but the final choice is up to the inquirer. Isn't that fair?

As to this particular case, I understand your reasons. Perhaps I should not say my "should not do it", as it may have certain exclusions. But I would consider such solution as the last resort at best and would be far from happy.

Anyway, the inquirer can listen to your opinion; and it should be enough.

—SA

Solution 2

Here is the solution..

What I am doing is when I click to launch an application , am setting a flag and IP in the DB residing on the server.

A process thread running in the client.It continuously checks the DB table for flag and launches the application if the flag is set to true and then also deletes the entry in the table.So that the user can actually launch the multiple times.

Posted 12-Nov-13 3:21am

shyamnguitar

Comments

Alexandru Lungu 12-Nov-13 13:43pm

By "A process thread running in the client", you mean in your client app, not in the browser; which means that the your app must be already open...

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

shyamnguitar · Accepted Answer · 2013-11-12T19:54:00

Thats what I have explained.We have developed an application for a client.Its an intranet network so the malicious intent is ruled out. Now we have developed content management solution for the client and at the end of content creation user is supposed to launch a dekstop application.

Now I have solved it myself very safely. At the end of it user will create a DB entry in a table and process running on client would check for the DB entry and automatically launches the client application.

Problem solved safely in a neat and clean method.

As I said there no Active X..we are handling it through database flag and process thread.Its a intranet where both the browser , application being launched are designed by us as per the requirement of the customer.Thankyou...all for your valuable inputs...

anyone wants to know i can share more info on this.

Execute a Client side executable using JQuery

3 solutions

Solution 1

Solution 2

Solution 3

Add your solution here

Preview 0

Existing Members

...or Join us