1 2008-08-20 Marek Habersack <mhabersack@novell.com>
3 * Membership.cs: implemented the HashAlgorithmType property. Fixes
6 2008-06-30 Marek Habersack <mhabersack@novell.com>
8 * SqliteMembershipProvider.cs, SqliteRoleProvider.cs: remove
11 * SqlRoleProvider.cs, AspNetDBSchemaChecker.cs: hush the warnings
13 2008-05-30 Marek Habersack <mhabersack@novell.com>
15 * AnonymousIdentificationModule.cs, FormsAuthenticationModule.cs,
16 DefaultAuthenticationModule.cs, MembershipProvider.cs,
17 WindowsAuthenticationModule.cs, PassportAuthenticationModule.cs,
18 RoleManagerModule.cs: do not use synthetized event accessors (to
21 2008-05-07 Marek Habersack <mhabersack@novell.com>
23 * RolePrincipal.cs: fix:
24 - Reloading the roles cache from the provider when expired
25 - Update issue & expiry date for expired tickets
26 - Incrementing the cookie expiry date
27 - Obey Roles.MaxCachedResults
28 Fixes bug #385877. Patch from Ivan Hamilton
29 <ivan@chimerical.com.au>, thanks!
31 2008-03-10 Marek Habersack <mhabersack@novell.com>
33 * RoleManagerModule.cs: initialize _config before adding event
34 handlers and account for the fact that _config might still be null
35 in the methods that use it.
37 2007-12-30 Vladimir Krasnov <vladimirk@mainsoft.com>
39 * SqliteMembershipProvider.cs, SqlRoleProvider.cs: added chema checking
40 * added AspNetDBSchemaChecker.cs: schema checker helper class
42 2007-12-11 Vladimir Krasnov <vladimirk@mainsoft.com>
44 * Roles.cs: fixed Providers property to be thread safe
46 2007-12-08 Marek Habersack <mhabersack@novell.com>
48 * SqliteRoleProvider.cs: added - a Role Provider for
49 Sqlite, based on PostgreSQL Role Provider code from Daniel
50 Nauck <dna@informatik.uni-kiel.de>
52 * SqliteMembershipProvider.cs: added - a Membership Provider for
53 Sqlite, based on PostgreSQL Membership Provider code from Daniel
54 Nauck <dna@informatik.uni-kiel.de>
56 2007-11-28 Marek Habersack <mhabersack@novell.com>
58 * SqlMembershipProvider.cs: handle situation when there is no
59 connection string configured for the SQL Membership Provider.
61 2007-11-01 Marek Habersack <mhabersack@novell.com>
63 * RolePrincipal.cs, MembershipProvider.cs: use the new
64 MachineKeySectionUtils class wherever necessary.
66 * FormsAuthentication.cs: use the new MachineKeySectionUtils class
68 GetHexString is a private method again.
70 2007-10-31 Marek Habersack <mhabersack@novell.com>
72 * FormsAuthentication.cs: made GetHexString an internal method -
73 it is used in the AssemblyResourceLoader.cs
75 2007-08-14 Marek Habersack <mhabersack@novell.com>
77 * Roles.cs: remove unused field.
79 * SqlMembershipProvider.cs: remove unused variable.
81 2007-08-13 Vladimir Krasnov <vladimirk@mainsoft.com>
83 * SqlRoleProvider.cs: fixed ApplicationName initialization
85 2007-06-24 Vladimir Krasnov <vladimirk@mainsoft.com>
87 * FormsAuthentication.cs: improved performance of GetHexString()
89 2007-05-17 Vladimir Krasnov <vladimirk@mainsoft.com>
91 * SqlMembershipProvider.cs: fixed DeleteUser, fixed parameter name
93 2007-05-14 Igor Zelmanovich <igorz@mainsoft.com>
95 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
97 2007-05-09 Igor Zelmanovich <igorz@mainsoft.com>
99 * PassportIdentity.cs:
100 added MonoNotSupported attribute.
102 2007-05-02 Marek Habersack <mhabersack@novell.com>
104 * FormsAuthentication.cs: user names are stored in lowercase in
105 the credentials database.
107 2007-04-29 Igor Zelmanovich <igorz@mainsoft.com>
109 * FormsAuthenticationModule.cs:
110 Redirect to login page doesn't cause thread abort.
112 2007-04-19 Igor Zelmanovich <igorz@mainsoft.com>
114 * SqlMembershipProvider.cs:
115 ChangePassword throws exception if new password has invalid format.
117 2007-04-17 Igor Zelmanovich <igorz@mainsoft.com>
121 if default provider was not found ConfigurationErrorsException is thrown.
123 2007-04-12 Marek Habersack <mhabersack@novell.com>
125 * RoleManagerModule.cs: do not try to decrypt encryption tickets
126 from cookies with empty values.
128 2007-04-04 Juraj Skripsky <js@hotfeet.ch>
130 * FormsAuthenticationModule.cs: Move initialization of _config out
131 of Init() as app.Context is null in that method when a session is
132 about to be terminated.
134 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
136 * AnonymousIdentificationModule.cs: optimized Config property
138 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
140 * AnonymousIdentificationModule.cs: added configuration section caching
141 to AppDomain for TARGET_JVM
142 * RoleManagerModule.cs:
143 * UrlAuthorizationModule.cs:
144 * FormsAuthenticationModule.cs: refactored configuration section to be
147 2007-03-20 Marek Habersack <mhabersack@novell.com>
149 * FormsAuthentication.cs, Roles.cs: remove roles cookie on sign
150 out. Fixes bug #81195. Patch from Mike Morano <mmorano@mikeandwan.us>.
152 2007-03-12 Marek Habersack <mhabersack@novell.com>
154 * RolePrincipal.cs: decrypt the roles ticket properly. Makes role
155 caching in cookies work. Fixes bug #81117. Patch from Mike Morano
156 <mmorano@mikeandwan.us>
158 2007-03-02 Marek Habersack <mhabersack@novell.com>
160 * SqlMembershipProvider.cs: cast PasswordFormat to int, so that
161 the parameter code can infer the sql type. Makes user creation,
162 password reset etc. work.
164 2007-02-28 Andreia Gaita <avidigal@novell.com>
166 * SqlRoleProvider.cs: Fix parameter binding to stored procedures.
167 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
168 CreateUser() doesn't use transactions in MS asp.net, so removed the
171 2007-02-19 Vladimir Krasnov <vladimirk@mainsoft.com>
173 * RoleManagerModule.cs: fixed role chaching in OnEndRequest and
174 OnPostAuthenticateRequest
175 * RolePrincipal.cs: implemented ToEncryptedTicket, implemented caching
177 * Roles.cs: implemented DeleteCookie, fixed CookieProtectionValue to
178 get it's value from configuration
180 2007-02-08 Marek Habersack <grendello@gmail.com>
182 * FormsAuthenticationModule.cs: Expire auth tickets properly.
184 * MembershipProvider.cs: Do not clear the password before
187 2007-01-20 Miguel de Icaza <miguel@novell.com>
189 * SqlRoleProvider.cs: comment out unused code.
191 * SqlMembershipProvider.cs: Removed unused variables.
192 Remove unused variable.
194 * AnonymousIdentificationModule.cs (ClearAnonymousIdentifier):
195 remove unused variable. This might be a real bug.
197 2007-01-16 Vladimir Krasnov <vladimirk@mainsoft.com>
199 * RoleManagerModule.cs: fixed OnPostAuthenticateRequest,
200 CacheRolesInCookie not supported yet
201 * Roles.cs: fixed DeleteCookie, CacheRolesInCookie not supported yet
203 2007-01-11 Adar Wesley <adarw@mainsoft.com>
205 * MembershipProvider.cs: fixed EncryptPassword to use password buffer length
207 2007-01-04 Vladimir Krasnov <vladimirk@mainsoft.com>
209 * AnonymousIdentificationModule.cs: fixed OnEnter, fixed failure on
210 incorrect cookie value that browser may hold
212 2006-12-27 Vladimir Krasnov <vladimirk@mainsoft.com>
214 * FormsAuthentication.cs: added internal ReturnUrl property,
215 GetRedirectUrl added usage of ReturnUrl
217 2006-12-12 Vladimir Krasnov <vladimirk@mainsoft.com>
219 * FormsAuthentication.cs: TARGET_J2EE define for static members
221 2006-12-06 Vladimir Krasnov <vladimirk@mainsoft.com>
223 * FormsAuthenticationModule.cs: fixed OnAuthenticateRequest, suppress
224 exception on wrong ticket
226 2006-12-03 Igor Zelmanovich <igorz@mainsoft.com>
228 * FormsAuthenticationModule.cs:
229 set SkipAuthorization=true for WebResource.axd
231 2006-11-27 Vladimir Krasnov <vladimirk@mainsoft.com>
233 * SqlMembershipProvider.cs: typo bug
235 2006-11-21 Vladimir Krasnov <vladimirk@mainsoft.com>
237 * SqlMembershipProvider.cs: fixed fixed exception type in GetPassword
240 2006-11-20 Igor Zelmanovich <igorz@mainsoft.com>
242 * SqlMembershipProvider.cs: fixed: UpdateUser works properly.
244 2006-11-15 Igor Zelmanovich <igorz@mainsoft.com>
246 * SqlMembershipProvider.cs: fixed: name is used for ReturnValue parameter.
248 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
250 * AnonymousIdentificationModule.cs: fixed anonymous id cookie
252 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
254 * MembershipProvider.cs, SqlMembershipProvider.cs:
255 refactoring of DecryptPassword and EncryptPassword methods according
258 2006-09-10 Konstantin Triger <kostat@mainsoft.com>
260 * SqlRoleProvider.cs: throw on empty connection string.
262 2006-09-26 Vladimir Krasnov <vladimirk@mainsoft.com>
264 * Membership.cs: fixed GetAllUsers, typo bug
265 * SqlRoleProvider.cs, SqlMembershipProvider.cs: refactored to use
266 aspnetdb built in stored procedures,
267 fixed application name and membership relation,
268 improved exception handling
270 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
272 * RolePrincipal.cs: refactoring: instance can be serialized.
274 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
276 * SqlMembershipProvider.cs: fixed GetUser,
277 when username is String.Empty methods returns null.
279 2006-08-31 Konstantin Triger <kostat@mainsoft.com>
281 * SqlRoleProvider.cs: fixed initialization.
283 2006-08-31 Igor Zelmanovich <igorz@mainsoft.com>
285 * SqlMembershipProvider.cs: fixed CreateUser,
286 password is checked, properties MinRequiredPasswordLength and
287 MinRequiredNonAlphanumericCharacters are considered.
289 2006-08-29 Konstantin Triger <kostat@mainsoft.com>
291 * SqlMembershipProvider.cs: fix dispose order of reader vs connection.
293 2006-08-28 Igor Zelmanovich <igorz@mainsoft.com>
295 * SqlMembershipProvider.cs: fixed CreateUser, parameter isApproved is
298 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
300 * SqlMembershipProvider.cs: ensure GetUser() returns null if it cannot
301 retrieve user information.
303 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
305 * SqlRoleProvider.cs, SqlMembershipProvider.cs:
306 "use SqlClientFactory in case the ProviderName is not specified.
308 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
310 * SqlRoleProvider.cs: enable concurrent usage, refactoring.
312 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
314 * SqlMembershipProvider.cs: enable concurrent usage, refactoring.
316 2006-08-27 Vladimir Krasnov <vladimirk@mainsoft.com>
318 * SqlMembershipProvider.cs: fixed ValidateUser, bug when user
321 2006-08-14 Gonzalo Paniagua Javier <gonzalo@ximian.com>
323 * FormsAuthentication.cs: set the Secure attribute of the authentication
324 cookie when required.
326 2006-07-06 Konstantin Triger <kostat@mainsoft.com>
328 * FormsAuthentication.cs: Ensure initialized, fix url mapping.
330 2006-05-03 Chris Toshok <toshok@ximian.com>
332 * SqlMembershipProvider.cs (GetAlg): move this here for the time
333 being, as it's the only class that uses it.
334 (HashAndBase64Encode): nuke.
335 (EncryptAndBase64Encode): nuke.
336 (Base64DecodeAndDecrypt): nuke.
337 (DecryptPassword): new function.
338 (EncryptPassword): new function.
339 (ChangePassword): replace the switch with a call to
341 (ChangePasswordQuestionAndAnswer): same.
343 (ResetPassword): same.
344 (ValidateUsingPassword): same.
345 (ValidateUsingPasswordAnswer): same.
346 (GetPassword): same, and throw MembershipPasswordException if the
347 password answer is incorrect.
349 * MembershipProvider.cs (InitVector): nuke this. it's actually
350 the salt from the database (for the sql provider, anyway).
351 (EncodePassword): based on the password format, password, and
352 salt, encode it. Makes use of EncryptPassword.
353 (DecodePassword): likewise for decoding, makes use of
355 (DecryptPassword): revert this to throwing
356 NotImplementedException, as the sql provideroverrides it to
357 perform the actual decryption.
358 (EncryptPassword): same.
360 2006-05-02 Chris Toshok <toshok@ximian.com>
362 * SqlMembershipProvider.cs: 85% complete, maybe more. The major
363 functionality should work. Password retrieval (and encrypted
364 passwords in general) is untested.
366 2006-05-01 Chris Toshok <toshok@ximian.com>
368 * Membership.cs (GeneratePassword): don't include quotes (',",`)
369 in the set of characters in the generated passwords.
371 2006-05-01 Chris Toshok <toshok@ximian.com>
373 * MembershipProvider.cs (GetAlg): switch from Exception to
374 ProviderException to match MS behavior (and fix the unit test.)
376 * Membership.cs (GeneratePassword): implement.
378 2006-05-01 Chris Toshok <toshok@ximian.com>
380 * SqlMembershipProvider.cs: lots more work. checking this in in
381 its present state because I don't want to lose it. It still needs
384 * Membership.cs (.cctor): remove the fallback.
385 (ValidatingPassword): remove the MonoTODO.
387 * MembershipProvider.cs (DecryptPassword): implement.
388 (EncryptPassword): implement.
389 (GetAlg): helper function for Decrypt/EncryptPassword.
392 2006-04-27 Chris Toshok <toshok@ximian.com>
394 * SqlMembershipProvider.cs (GeneratePassword): call
395 Membership.GeneratePassword with the configured minimum strength
398 2006-04-27 Chris Toshok <toshok@ximian.com>
400 * SqlMembershipProvider.cs (UnlockUser): fix sql query, and move
401 the CheckPararm call to the top of the method.
403 2006-04-12 Chris Toshok <toshok@ximian.com>
405 * SqlMembershipProvider.cs: commit initial pass at
406 SqlMembershipProvider work. lots of stuff untested in here.
408 2006-04-11 Chris Toshok <toshok@ximian.com>
410 * MembershipUser.cs (.ctor): per Shackow's book, all DateTime's
411 are converted using ToUniversalTime when passed into this class.
412 (UpdateSelf): update ourselves from the passed in MembershipUser,
413 swallowing NotSupportedExceptions.
414 (UpdateUser): fetch a new MembershipUser from the db and call
416 (ChangePassword): call UpdateUser after changing the password.
417 (ChangePasswordQuestionAndAnswer): same.
418 (ResetPassword): same.
419 (UnlockUser): same. Also, don't explicitly set isLockedOut.
420 It'll be updated in UpdateSelf.
421 (CreationDate): getter calls ToLocalTime, setter calls
423 (LastActivityDate): same.
424 (LastLoginDate): same.
425 (LastPasswordChangedDate): same.
426 (LastLockoutDate): same.
428 * Membership.cs (.cctor): use
429 ProvidersHelper.InstantitateProviders, and remove some unnecessary
432 2006-03-29 Chris Toshok <toshok@ximian.com>
434 * SqlRoleProvider.cs: do the LOWER's in SQL, not in C#.
436 2006-03-23 Chris Toshok <toshok@ximian.com>
438 * Roles.cs: make this 2.0 configuration aware.
440 * SqlRoleProvider.cs: flesh out all the operations. the only
441 things that need dealing with are the Initialize method's handling
442 of a few parameters, and the ApplicationName property.
444 2006-03-23 Chris Toshok <toshok@ximian.com>
446 * DefaultAuthenticationModule.cs (OnDefaultAuthentication): always
447 set Thread.CurrentPrincipal, not just if we set it to the
450 2006-03-22 Chris Toshok <toshok@ximian.com>
452 * RoleManagerModule.cs: implement using info in Shackow's book.
454 * RolePrincipal.cs: flesh this out a bit more.
456 * DefaultAuthenticationModule.cs (OnDefaultAuthentication):
457 according to Shackow's book, this sets Thread.CurrentPrincipal as
458 well as HttpContext.Current.User.
460 2006-02-28 Chris Toshok <toshok@ximian.com>
462 * FormsAuthentication.cs: corcompare work.
464 * MembershipCreateUserException.cs: same.
466 * MembershipPasswordException.cs: same.
468 * AnonymousIdentificationModule.cs: same.
470 2006-02-01 Chris Toshok <toshok@ximian.com>
472 * FormsAuthentication.cs, Membership.cs,
473 FormsAuthenticationModule.cs, UrlAuthorizationModule.cs: oops,
474 replace GetWebApplicationSection with GetSection.
476 2006-02-01 Chris Toshok <toshok@ximian.com>
478 * FormsAuthentication.cs: CONFIGURATION_2_0 => NET_2_0.
479 simplifies the ifdef mess quite a bit.
481 * Membership.cs: same.
483 * FormsAuthenticationModule.cs: same.
485 * UrlAuthorizationModule.cs: same.
487 2006-01-04 Chris Toshok <toshok@ximian.com>
489 * FormsAuthentication.cs (Authenticate): add CONFIGURATION_2_0
496 2006-01-04 Chris Toshok <toshok@ximian.com>
498 * Membership.cs (.cctor): enable the code here under
501 2006-01-03 Chris Toshok <toshok@ximian.com>
503 * UrlAuthorizationModule.cs (OnAuthorizeRequest): add
504 CONFIGURATION_2_0 code here.
506 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
508 * FormsAuthentication.cs: don't end the request in
509 RedirectFromLoginPage.
511 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
513 * FormsAuthenticationModule.cs: expire the cookie. Fixes bug #77043.
514 Patch by Cyrille Colin.
516 2005-12-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
518 * FormsAuthenticationModule.cs: ignore any exception thrown when mapping
519 the provided virtual path to the physical one. Patch by Cyrille Colin.
521 2005-11-28 Chris Toshok <toshok@ximian.com>
523 * FormsAuthenticationModule.cs (OnAuthenticateRequest):
524 CONFIGURATION_2_0 work.
525 (OnEndRequest): same.
527 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
529 * DefaultAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
530 * DefaultAuthenticationModule.cs: Added LinkDemand for Minimal. Added
531 Demand for UnmanagedCode on constructor.
532 * FileAuthorizationModule.cs: Added LinkDemand for Minimal. Added
533 Demand for UnmanagedCode on constructor.
534 * FormsAuthentication.cs: Added LinkDemand for Minimal.
535 * FormsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
536 * FormsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
537 Demand for UnmanagedCode on constructor.
538 * FormsAuthenticationTicket.cs: Added LinkDemand for Minimal.
539 * FormsIdentity.cs: Added LinkDemand for Minimal.
540 * PassportAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
541 * PassportAuthenticationModule.cs: Added LinkDemand for Minimal. Added
542 Demand for UnmanagedCode on constructor.
543 * PassportIdentity.cs: Added LinkDemand for Minimal. Added Demand for
544 UnmanagedCode on constructor.
545 * UrlAuthorizationModule.cs: Added LinkDemand for Minimal. Added
546 Demand for UnmanagedCode on constructor.
547 * WindowsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
548 * WindowsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
549 Demand for UnmanagedCode on constructor.
551 2005-09-01 Sebastien Pouliot <sebastien@ximian.com>
553 * FormsAuthenticationEventArgs.cs: Ensure the setter for User is
554 protected by a demand for ControlPrincipal.
555 * PassportAuthenticationEventArgs.cs: Ensure the setter for User is
556 protected by a demand for ControlPrincipal.
557 * WindowsAuthenticationEventArgs.cs: Ensure the setter for User is
558 protected by a demand for ControlPrincipal.
560 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
562 * FormsAuthentication.cs: With 2.0 we can get the default properties
563 and call Initialize without a NRE.
565 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
567 * ActiveDirectoryConnectionProtection.cs: New (2.0) enum.
568 * ActiveDirectoryMembershipProvider.cs: Fixed 2.0 API.
569 * AnonymousIdentificationEventArgs.cs: Fixed AnonymousID property case.
570 * AnonymousIdentificationModule.cs: Fixed 2.0 API.
571 * FileAuthorizationModule.cs: Added static CheckFileAccessForUser in
573 * FormsAuthentication.cs: Added missing 2.0 properties with their
575 * MembershipCreateStatus.cs: Fixed enum values/names.
576 * MembershipProvider.cs: Added stub for [Decrypt|Encrypt]Password. Both
577 methods don't seems to work without an active provider.
578 * PassportIdentity.cs: Added IDispose for 2.0 profile.
579 * Roles.cs: Added missing beta2 bits and default values (which are the
580 only things working without a role provider (web.config).
581 * RolePrincipal.cs: Fixed 2.0 API. Implemented a few bits.
582 * SqlRoleProvider.cs: Fixed 2.0 API.
583 * UrlAuthorizationModule.cs: Added static CheckUrlAccessForPrincipal in
586 2005-08-24 Sebastien Pouliot <sebastien@ximian.com>
588 * MembershipUserCollection.cs: Fix exceptions.
590 2005-08-22 Sebastien Pouliot <sebastien@ximian.com>
592 * FormsAuthentication.cs: Add some 2.0 stuff required for Login*
595 2005-08-18 Sebastien Pouliot <sebastien@ximian.com>
597 * Membership.cs: Commented unworking parts of the .cctor to allow
598 testing the Login control.
599 * MembershipProviderCollection.cs: Fixed exception handling.
600 * SqlMembershipProvider.cs: Don't throw NotImplementedException
601 everywhere so Membership's .cctor (somewhat) works. Removed
602 Description property (not in beta2).
604 2005-07-28 Gonzalo Paniagua Javier <gonzalo@ximian.com>
606 * FormsAuthentication.cs: allow hardware acceleration support if
607 available. Sebastien dixit.
609 2005-07-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
611 * FormsAuthentication.cs: the init_vector must be the same accross
612 restarts, otherwise the cookie does not work even when a decryption
613 key is provided. Initialize it to the bytes of the cookie name. Fixes
616 2005-07-25 Eyal Alaluf <eyala@mainsoft.com>
618 * FormsAuthenticationModule.cs: Check for null config
620 2005-07-25 Miguel de Icaza <miguel@novell.com>
622 * FormsAuthentication.cs (SignOut): Force the cookie to have it
625 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
627 * FormsAuthentication.cs: my previous patch missed a "small" detail: it
628 didn't include the verification key when computing/checking the
629 validation hash. Now this is really a MAC or HMAC or...
631 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
633 * FormsAuthentication.cs:
634 * FormsAuthenticationTicket.cs: added support for validation and
635 encryption of the auth. cookie and improved serialization of the ticket.
637 2005-07-01 Lluis Sanchez Gual <lluis@novell.com>
639 * Membership.cs: Read provider info from the config file.
641 2005-06-10 Lluis Sanchez Gual <lluis@novell.com>
643 * MembershipUserCollection.cs:
644 * MembershipPasswordException.cs:
645 * RoleProviderCollection.cs:
646 * ActiveDirectoryMembershipProvider.cs:
647 * SqlMembershipProvider.cs:
648 * MembershipProvider.cs:
649 * SqlRoleProvider.cs:
652 * MembershipProviderCollection.cs:
654 * RoleProvider.cs: Track api changes in ASP.NET 2.0. Implemented
655 some missing methods.
657 * AccessRoleProvider.cs:
658 * AccessMembershipProvider.cs: Removed.
660 * MembershipCreateUserException.cs:
661 * MembershipValidatePasswordEventHandler.cs:
662 * ValidatePasswordEventArgs.cs: Implemented.
664 2005-05-21 Sebastien Pouliot <sebastien@ximian.com>
666 * FormsAuthentication.cs: Hash the UTF8 representation of the password
667 strings (to be compatible with Microsoft implementation).
669 2005-04-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
671 * FormsAuthentication.cs:
672 * PassportAuthenticationModule.cs:
673 * WindowsAuthenticationModule.cs: removed warnings.
675 2005-03-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
677 * FormsAuthenticationModule.cs: fix for bug 73545, which caused
678 authentication not to work when the cookie was not persistent.
679 Patch by Ilya Kharmatsky (Mainsoft).
681 2005-02-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
683 * FormsAuthentication.cs: make the string to be stored in a config.
684 file uppercase... See bug #72557.
686 2005-02-06 Gonzalo Paniagua Javier <gonzalo@ximian.com>
688 * FormsAuthentication.cs: fixed typo when getting the hash for the
689 password in SHA1 and MD5. Thanks to Tadas Dailyda.
690 Lock on a static object instead of typeof(FormsAuthentication).
692 2004-11-18 Lluis Sanchez Gual <lluis@novell.com>
694 * RoleProvider.cs, Roles.cs, SqlRoleProvider.cs, RoleProviderCollection.cs,
695 AccessRoleProvider.cs: IRoleProvider has been renamed to ProviderBase.
696 * IMembershipProvider.cs: Deleted.
697 * MembershipProvider.cs, AccessMembershipProvider.cs, MembershipUser.cs,
698 Membership.cs, ADMembershipProvider.cs, SqlMembershipProvider.cs
699 MembershipProviderCollection.cs: MembershipProvider has been deleted
700 and replaced by the abstract class MembershipProvider.
701 * MembershipProviderCollection.cs: Minor fixes.
702 * ADMembershipProvider.cs: Renamed to ActiveDirectoryMembershipProvider.cs.
704 2004-11-15 Lluis Sanchez Gual <lluis@novell.com>
706 * RoleProviderCollection.cs, MembershipProviderCollection.cs:
709 2004-08-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
711 * FormsAuthentication.cs: patch by Jim Pease to fix the date on renewal.
713 2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
715 * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
716 the cookie if SlidingExpiration is set. Thanks to Jim Pease.
718 2004-08-03 Sanjay Gupta <gsanjay@novell.com>
720 * MembershipSortOptions.cs:
721 * MembershipPasswordFormat.cs:
722 * MembershipOnlineStatus.cs:
723 * MembershipCreateStatus.cs:
724 * CookieProtection.cs: minor modifications.
726 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
728 * FormsAuthentication.cs: Undo last change.
730 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
732 * FormsAuthentication.cs: go to loginUrl from web.config settings
733 before try with the default ones.
735 2004-06-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
737 * DefaultAuthenticationModule.cs: set the IPrincipal for this thread
738 once we have a user. Fixes bug #59683.
740 2004-04-21 Gonzalo Paniagua Javier <gonzalo@ximian.com>
742 * FormsAuthenticationModule.cs: re-read configuration files if needed
743 when determining if forms auth. is used.
745 2004-01-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
747 * FormsAuthentication.cs: added RequireSSL and SlidingExpiration.
749 2004-01-11 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
751 * PassportIdentity.cs: Added v 1.1 members
753 2003-11-25 Ben Maurer <bmaurer@users.sourceforge.net>
755 * AccessMembershipProvider.cs: New v2 file
756 * AccessRoleProvider.cs: New v2 file
757 * ADMembershipProvider.cs: New v2 file
758 * AnonymousIdentificationEventArgs.cs: New v2 file
759 * AnonymousIdentificationEventHandler.cs: New v2 file
760 * AnonymousIdentificationModule.cs: New v2 file
761 * CookieProtection.cs: New v2 file
762 * IMembershipProvider.cs: New v2 file
763 * IRoleProvider.cs: New v2 file
764 * Membership.cs: New v2 file
765 * MembershipCreateStatus.cs: New v2 file
766 * MembershipCreateUserException.cs: New v2 file
767 * MembershipOnlineStatus.cs: New v2 file
768 * MembershipPasswordException.cs: New v2 file
769 * MembershipPasswordFormat.cs: New v2 file
770 * MembershipProviderCollection.cs: New v2 file
771 * MembershipSortOptions.cs: New v2 file
772 * MembershipUser.cs: New v2 file
773 * MembershipUserCollection.cs: New v2 file
774 * RoleManagerEventArgs.cs: New v2 file
775 * RoleManagerEventHandler.cs: New v2 file
776 * RoleManagerModule.cs: New v2 file
777 * RolePrincipal.cs: New v2 file
778 * RoleProviderCollection.cs: New v2 file
779 * Roles.cs: New v2 file
780 * SqlMembershipProvider.cs: New v2 file
781 * SqlRoleProvider.cs: New v2 file
783 2003-11-05 Gonzalo Paniagua Javier <gonzalo@ximian.com>
785 * FormsAuthentication.cs: encoding updates.
787 2003-10-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
789 * FormsAuthenticationModule.cs: fixed for applications other than /.
791 2003-08-27 Gonzalo Paniagua Javier <gonzalo@ximian.com>
793 * UrlAuthorizationModule.cs: fixed description for status code.
795 2003-07-31 Gonzalo Paniagua Javier <gonzalo@ximian.com>
797 * FormsAuthenticationModule.cs: really renew the ticket. Thanks to
798 Jens Thiel <Jens@Thiel.DE>.
800 2003-02-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
802 * UrlAuthorizationModule.cs: tell the application not to run any other
803 step apart from EndRequest.
805 2003-02-12 Gonzalo Paniagua Javier <gonzalo@ximian.com>
807 * FormsAuthentication.cs: implemented RedirectFromLoginPage and
810 * FormsAuthenticationModule.cs: redirect to the login page when a 401
813 * UrlAuthorizationModule.cs: check for valid user or render error page.
815 2003-01-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
817 * DefaultAuthenticationModule.cs: implemented. It just create a default
818 unauthenticated user when no one else provided one.
820 * FormsAuthenticationModule.cs: removed debug output.
822 2002-12-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
824 * FormsAuthenticationModule.cs: remove debug lines.
826 2002-12-19 Gonzalo Paniagua Javier <gonzalo@ximian.com>
828 * FormsAuthentication.cs: return a null ticket when an exception is
829 thrown creating it. Implemented RenewTicketIfOld.
831 * FormsAuthenticationModule.cs: implemented event handlers for
832 AuthenticateRequest and EndRequest.
834 * FormsAuthenticationTicket.cs: implemented SetDates and Clone methods.
836 2002-12-18 Gonzalo Paniagua Javier <gonzalo@ximian.com>
838 * FormsAuthentication.cs: implemented GetAuthCookie, SetAuthCookie,
839 SignOut, FormsCookieName and FormsCookiePath.
841 2002-12-17 Gonzalo Paniagua Javier <gonzalo@ximian.com>
843 * FormsAuthentication.cs: implemented Authenticate, unencrypted Encrypt
844 and Decrypt, HashPasswordForStoringInConfigFile and Initialize.
846 * FormsAuthenticationTicket.cs: set cookiePath to the default when no
849 2002-08-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
851 * DefaultAuthenticationEventHandler.cs:
852 * DefaultAuthenticationModule.cs:
853 * FileAuthorizationModule.cs:
854 * FormsAuthentication.cs:
855 * FormsAuthenticationEventArgs.cs:
856 * FormsAuthenticationEventHandler.cs:
857 * FormsAuthenticationModule.cs:
858 * FormsAuthenticationTicket.cs:
860 * PassportAuthenticationEventArgs.cs:
861 * PassportAuthenticationEventHandler.cs:
862 * PassportAuthenticationModule.cs:
863 * PassportIdentity.cs:
864 * UrlAuthorizationModule.cs:
865 * WindowsAuthenticationEventArgs.cs:
866 * WindowsAuthenticationEventHandler.cs:
867 * WindowsAuthenticationModule.cs: new files. Some of them implemented,
868 some others stubbed out.
870 2002-06-03 Gonzalo Paniagua Javier <gonzalo@ximian.com>
872 * DefaultAuthenticationEventArgs.cs: added file.