1 2008-02-23 Vladimir Krasnov <vladimirk@mainsoft.com>
3 * SqlMembershipProvider.cs: exception on empty connection string
5 2007-12-30 Vladimir Krasnov <vladimirk@mainsoft.com>
7 * SqliteMembershipProvider.cs, SqlRoleProvider.cs: added chema checking
8 * added AspNetDBSchemaChecker.cs: schema checker helper class
10 2007-12-11 Vladimir Krasnov <vladimirk@mainsoft.com>
12 * Roles.cs: fixed Providers property to be thread safe
14 2007-12-08 Marek Habersack <mhabersack@novell.com>
16 * SqliteRoleProvider.cs: added - a Role Provider for
17 Sqlite, based on PostgreSQL Role Provider code from Daniel
18 Nauck <dna@informatik.uni-kiel.de>
20 * SqliteMembershipProvider.cs: added - a Membership Provider for
21 Sqlite, based on PostgreSQL Membership Provider code from Daniel
22 Nauck <dna@informatik.uni-kiel.de>
24 2007-11-28 Marek Habersack <mhabersack@novell.com>
26 * SqlMembershipProvider.cs: handle situation when there is no
27 connection string configured for the SQL Membership Provider.
29 2007-11-01 Marek Habersack <mhabersack@novell.com>
31 * RolePrincipal.cs, MembershipProvider.cs: use the new
32 MachineKeySectionUtils class wherever necessary.
34 * FormsAuthentication.cs: use the new MachineKeySectionUtils class
36 GetHexString is a private method again.
38 2007-10-31 Marek Habersack <mhabersack@novell.com>
40 * FormsAuthentication.cs: made GetHexString an internal method -
41 it is used in the AssemblyResourceLoader.cs
43 2007-08-14 Marek Habersack <mhabersack@novell.com>
45 * Roles.cs: remove unused field.
47 * SqlMembershipProvider.cs: remove unused variable.
49 2007-08-13 Vladimir Krasnov <vladimirk@mainsoft.com>
51 * SqlRoleProvider.cs: fixed ApplicationName initialization
53 2007-06-24 Vladimir Krasnov <vladimirk@mainsoft.com>
55 * FormsAuthentication.cs: improved performance of GetHexString()
57 2007-05-17 Vladimir Krasnov <vladimirk@mainsoft.com>
59 * SqlMembershipProvider.cs: fixed DeleteUser, fixed parameter name
61 2007-05-14 Igor Zelmanovich <igorz@mainsoft.com>
63 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
65 2007-05-09 Igor Zelmanovich <igorz@mainsoft.com>
67 * PassportIdentity.cs:
68 added MonoNotSupported attribute.
70 2007-05-02 Marek Habersack <mhabersack@novell.com>
72 * FormsAuthentication.cs: user names are stored in lowercase in
73 the credentials database.
75 2007-04-29 Igor Zelmanovich <igorz@mainsoft.com>
77 * FormsAuthenticationModule.cs:
78 Redirect to login page doesn't cause thread abort.
80 2007-04-19 Igor Zelmanovich <igorz@mainsoft.com>
82 * SqlMembershipProvider.cs:
83 ChangePassword throws exception if new password has invalid format.
85 2007-04-17 Igor Zelmanovich <igorz@mainsoft.com>
89 if default provider was not found ConfigurationErrorsException is thrown.
91 2007-04-12 Marek Habersack <mhabersack@novell.com>
93 * RoleManagerModule.cs: do not try to decrypt encryption tickets
94 from cookies with empty values.
96 2007-04-04 Juraj Skripsky <js@hotfeet.ch>
98 * FormsAuthenticationModule.cs: Move initialization of _config out
99 of Init() as app.Context is null in that method when a session is
100 about to be terminated.
102 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
104 * AnonymousIdentificationModule.cs: optimized Config property
106 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
108 * AnonymousIdentificationModule.cs: added configuration section caching
109 to AppDomain for TARGET_JVM
110 * RoleManagerModule.cs:
111 * UrlAuthorizationModule.cs:
112 * FormsAuthenticationModule.cs: refactored configuration section to be
115 2007-03-20 Marek Habersack <mhabersack@novell.com>
117 * FormsAuthentication.cs, Roles.cs: remove roles cookie on sign
118 out. Fixes bug #81195. Patch from Mike Morano <mmorano@mikeandwan.us>.
120 2007-03-12 Marek Habersack <mhabersack@novell.com>
122 * RolePrincipal.cs: decrypt the roles ticket properly. Makes role
123 caching in cookies work. Fixes bug #81117. Patch from Mike Morano
124 <mmorano@mikeandwan.us>
126 2007-03-02 Marek Habersack <mhabersack@novell.com>
128 * SqlMembershipProvider.cs: cast PasswordFormat to int, so that
129 the parameter code can infer the sql type. Makes user creation,
130 password reset etc. work.
132 2007-02-28 Andreia Gaita <avidigal@novell.com>
134 * SqlRoleProvider.cs: Fix parameter binding to stored procedures.
135 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
136 CreateUser() doesn't use transactions in MS asp.net, so removed the
139 2007-02-19 Vladimir Krasnov <vladimirk@mainsoft.com>
141 * RoleManagerModule.cs: fixed role chaching in OnEndRequest and
142 OnPostAuthenticateRequest
143 * RolePrincipal.cs: implemented ToEncryptedTicket, implemented caching
145 * Roles.cs: implemented DeleteCookie, fixed CookieProtectionValue to
146 get it's value from configuration
148 2007-02-08 Marek Habersack <grendello@gmail.com>
150 * FormsAuthenticationModule.cs: Expire auth tickets properly.
152 * MembershipProvider.cs: Do not clear the password before
155 2007-01-20 Miguel de Icaza <miguel@novell.com>
157 * SqlRoleProvider.cs: comment out unused code.
159 * SqlMembershipProvider.cs: Removed unused variables.
160 Remove unused variable.
162 * AnonymousIdentificationModule.cs (ClearAnonymousIdentifier):
163 remove unused variable. This might be a real bug.
165 2007-01-16 Vladimir Krasnov <vladimirk@mainsoft.com>
167 * RoleManagerModule.cs: fixed OnPostAuthenticateRequest,
168 CacheRolesInCookie not supported yet
169 * Roles.cs: fixed DeleteCookie, CacheRolesInCookie not supported yet
171 2007-01-11 Adar Wesley <adarw@mainsoft.com>
173 * MembershipProvider.cs: fixed EncryptPassword to use password buffer length
175 2007-01-04 Vladimir Krasnov <vladimirk@mainsoft.com>
177 * AnonymousIdentificationModule.cs: fixed OnEnter, fixed failure on
178 incorrect cookie value that browser may hold
180 2006-12-27 Vladimir Krasnov <vladimirk@mainsoft.com>
182 * FormsAuthentication.cs: added internal ReturnUrl property,
183 GetRedirectUrl added usage of ReturnUrl
185 2006-12-12 Vladimir Krasnov <vladimirk@mainsoft.com>
187 * FormsAuthentication.cs: TARGET_J2EE define for static members
189 2006-12-06 Vladimir Krasnov <vladimirk@mainsoft.com>
191 * FormsAuthenticationModule.cs: fixed OnAuthenticateRequest, suppress
192 exception on wrong ticket
194 2006-12-03 Igor Zelmanovich <igorz@mainsoft.com>
196 * FormsAuthenticationModule.cs:
197 set SkipAuthorization=true for WebResource.axd
199 2006-11-27 Vladimir Krasnov <vladimirk@mainsoft.com>
201 * SqlMembershipProvider.cs: typo bug
203 2006-11-21 Vladimir Krasnov <vladimirk@mainsoft.com>
205 * SqlMembershipProvider.cs: fixed fixed exception type in GetPassword
208 2006-11-20 Igor Zelmanovich <igorz@mainsoft.com>
210 * SqlMembershipProvider.cs: fixed: UpdateUser works properly.
212 2006-11-15 Igor Zelmanovich <igorz@mainsoft.com>
214 * SqlMembershipProvider.cs: fixed: name is used for ReturnValue parameter.
216 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
218 * AnonymousIdentificationModule.cs: fixed anonymous id cookie
220 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
222 * MembershipProvider.cs, SqlMembershipProvider.cs:
223 refactoring of DecryptPassword and EncryptPassword methods according
226 2006-09-10 Konstantin Triger <kostat@mainsoft.com>
228 * SqlRoleProvider.cs: throw on empty connection string.
230 2006-09-26 Vladimir Krasnov <vladimirk@mainsoft.com>
232 * Membership.cs: fixed GetAllUsers, typo bug
233 * SqlRoleProvider.cs, SqlMembershipProvider.cs: refactored to use
234 aspnetdb built in stored procedures,
235 fixed application name and membership relation,
236 improved exception handling
238 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
240 * RolePrincipal.cs: refactoring: instance can be serialized.
242 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
244 * SqlMembershipProvider.cs: fixed GetUser,
245 when username is String.Empty methods returns null.
247 2006-08-31 Konstantin Triger <kostat@mainsoft.com>
249 * SqlRoleProvider.cs: fixed initialization.
251 2006-08-31 Igor Zelmanovich <igorz@mainsoft.com>
253 * SqlMembershipProvider.cs: fixed CreateUser,
254 password is checked, properties MinRequiredPasswordLength and
255 MinRequiredNonAlphanumericCharacters are considered.
257 2006-08-29 Konstantin Triger <kostat@mainsoft.com>
259 * SqlMembershipProvider.cs: fix dispose order of reader vs connection.
261 2006-08-28 Igor Zelmanovich <igorz@mainsoft.com>
263 * SqlMembershipProvider.cs: fixed CreateUser, parameter isApproved is
266 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
268 * SqlMembershipProvider.cs: ensure GetUser() returns null if it cannot
269 retrieve user information.
271 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
273 * SqlRoleProvider.cs, SqlMembershipProvider.cs:
274 "use SqlClientFactory in case the ProviderName is not specified.
276 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
278 * SqlRoleProvider.cs: enable concurrent usage, refactoring.
280 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
282 * SqlMembershipProvider.cs: enable concurrent usage, refactoring.
284 2006-08-27 Vladimir Krasnov <vladimirk@mainsoft.com>
286 * SqlMembershipProvider.cs: fixed ValidateUser, bug when user
289 2006-08-14 Gonzalo Paniagua Javier <gonzalo@ximian.com>
291 * FormsAuthentication.cs: set the Secure attribute of the authentication
292 cookie when required.
294 2006-07-06 Konstantin Triger <kostat@mainsoft.com>
296 * FormsAuthentication.cs: Ensure initialized, fix url mapping.
298 2006-05-03 Chris Toshok <toshok@ximian.com>
300 * SqlMembershipProvider.cs (GetAlg): move this here for the time
301 being, as it's the only class that uses it.
302 (HashAndBase64Encode): nuke.
303 (EncryptAndBase64Encode): nuke.
304 (Base64DecodeAndDecrypt): nuke.
305 (DecryptPassword): new function.
306 (EncryptPassword): new function.
307 (ChangePassword): replace the switch with a call to
309 (ChangePasswordQuestionAndAnswer): same.
311 (ResetPassword): same.
312 (ValidateUsingPassword): same.
313 (ValidateUsingPasswordAnswer): same.
314 (GetPassword): same, and throw MembershipPasswordException if the
315 password answer is incorrect.
317 * MembershipProvider.cs (InitVector): nuke this. it's actually
318 the salt from the database (for the sql provider, anyway).
319 (EncodePassword): based on the password format, password, and
320 salt, encode it. Makes use of EncryptPassword.
321 (DecodePassword): likewise for decoding, makes use of
323 (DecryptPassword): revert this to throwing
324 NotImplementedException, as the sql provideroverrides it to
325 perform the actual decryption.
326 (EncryptPassword): same.
328 2006-05-02 Chris Toshok <toshok@ximian.com>
330 * SqlMembershipProvider.cs: 85% complete, maybe more. The major
331 functionality should work. Password retrieval (and encrypted
332 passwords in general) is untested.
334 2006-05-01 Chris Toshok <toshok@ximian.com>
336 * Membership.cs (GeneratePassword): don't include quotes (',",`)
337 in the set of characters in the generated passwords.
339 2006-05-01 Chris Toshok <toshok@ximian.com>
341 * MembershipProvider.cs (GetAlg): switch from Exception to
342 ProviderException to match MS behavior (and fix the unit test.)
344 * Membership.cs (GeneratePassword): implement.
346 2006-05-01 Chris Toshok <toshok@ximian.com>
348 * SqlMembershipProvider.cs: lots more work. checking this in in
349 its present state because I don't want to lose it. It still needs
352 * Membership.cs (.cctor): remove the fallback.
353 (ValidatingPassword): remove the MonoTODO.
355 * MembershipProvider.cs (DecryptPassword): implement.
356 (EncryptPassword): implement.
357 (GetAlg): helper function for Decrypt/EncryptPassword.
360 2006-04-27 Chris Toshok <toshok@ximian.com>
362 * SqlMembershipProvider.cs (GeneratePassword): call
363 Membership.GeneratePassword with the configured minimum strength
366 2006-04-27 Chris Toshok <toshok@ximian.com>
368 * SqlMembershipProvider.cs (UnlockUser): fix sql query, and move
369 the CheckPararm call to the top of the method.
371 2006-04-12 Chris Toshok <toshok@ximian.com>
373 * SqlMembershipProvider.cs: commit initial pass at
374 SqlMembershipProvider work. lots of stuff untested in here.
376 2006-04-11 Chris Toshok <toshok@ximian.com>
378 * MembershipUser.cs (.ctor): per Shackow's book, all DateTime's
379 are converted using ToUniversalTime when passed into this class.
380 (UpdateSelf): update ourselves from the passed in MembershipUser,
381 swallowing NotSupportedExceptions.
382 (UpdateUser): fetch a new MembershipUser from the db and call
384 (ChangePassword): call UpdateUser after changing the password.
385 (ChangePasswordQuestionAndAnswer): same.
386 (ResetPassword): same.
387 (UnlockUser): same. Also, don't explicitly set isLockedOut.
388 It'll be updated in UpdateSelf.
389 (CreationDate): getter calls ToLocalTime, setter calls
391 (LastActivityDate): same.
392 (LastLoginDate): same.
393 (LastPasswordChangedDate): same.
394 (LastLockoutDate): same.
396 * Membership.cs (.cctor): use
397 ProvidersHelper.InstantitateProviders, and remove some unnecessary
400 2006-03-29 Chris Toshok <toshok@ximian.com>
402 * SqlRoleProvider.cs: do the LOWER's in SQL, not in C#.
404 2006-03-23 Chris Toshok <toshok@ximian.com>
406 * Roles.cs: make this 2.0 configuration aware.
408 * SqlRoleProvider.cs: flesh out all the operations. the only
409 things that need dealing with are the Initialize method's handling
410 of a few parameters, and the ApplicationName property.
412 2006-03-23 Chris Toshok <toshok@ximian.com>
414 * DefaultAuthenticationModule.cs (OnDefaultAuthentication): always
415 set Thread.CurrentPrincipal, not just if we set it to the
418 2006-03-22 Chris Toshok <toshok@ximian.com>
420 * RoleManagerModule.cs: implement using info in Shackow's book.
422 * RolePrincipal.cs: flesh this out a bit more.
424 * DefaultAuthenticationModule.cs (OnDefaultAuthentication):
425 according to Shackow's book, this sets Thread.CurrentPrincipal as
426 well as HttpContext.Current.User.
428 2006-02-28 Chris Toshok <toshok@ximian.com>
430 * FormsAuthentication.cs: corcompare work.
432 * MembershipCreateUserException.cs: same.
434 * MembershipPasswordException.cs: same.
436 * AnonymousIdentificationModule.cs: same.
438 2006-02-01 Chris Toshok <toshok@ximian.com>
440 * FormsAuthentication.cs, Membership.cs,
441 FormsAuthenticationModule.cs, UrlAuthorizationModule.cs: oops,
442 replace GetWebApplicationSection with GetSection.
444 2006-02-01 Chris Toshok <toshok@ximian.com>
446 * FormsAuthentication.cs: CONFIGURATION_2_0 => NET_2_0.
447 simplifies the ifdef mess quite a bit.
449 * Membership.cs: same.
451 * FormsAuthenticationModule.cs: same.
453 * UrlAuthorizationModule.cs: same.
455 2006-01-04 Chris Toshok <toshok@ximian.com>
457 * FormsAuthentication.cs (Authenticate): add CONFIGURATION_2_0
464 2006-01-04 Chris Toshok <toshok@ximian.com>
466 * Membership.cs (.cctor): enable the code here under
469 2006-01-03 Chris Toshok <toshok@ximian.com>
471 * UrlAuthorizationModule.cs (OnAuthorizeRequest): add
472 CONFIGURATION_2_0 code here.
474 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
476 * FormsAuthentication.cs: don't end the request in
477 RedirectFromLoginPage.
479 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
481 * FormsAuthenticationModule.cs: expire the cookie. Fixes bug #77043.
482 Patch by Cyrille Colin.
484 2005-12-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
486 * FormsAuthenticationModule.cs: ignore any exception thrown when mapping
487 the provided virtual path to the physical one. Patch by Cyrille Colin.
489 2005-11-28 Chris Toshok <toshok@ximian.com>
491 * FormsAuthenticationModule.cs (OnAuthenticateRequest):
492 CONFIGURATION_2_0 work.
493 (OnEndRequest): same.
495 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
497 * DefaultAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
498 * DefaultAuthenticationModule.cs: Added LinkDemand for Minimal. Added
499 Demand for UnmanagedCode on constructor.
500 * FileAuthorizationModule.cs: Added LinkDemand for Minimal. Added
501 Demand for UnmanagedCode on constructor.
502 * FormsAuthentication.cs: Added LinkDemand for Minimal.
503 * FormsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
504 * FormsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
505 Demand for UnmanagedCode on constructor.
506 * FormsAuthenticationTicket.cs: Added LinkDemand for Minimal.
507 * FormsIdentity.cs: Added LinkDemand for Minimal.
508 * PassportAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
509 * PassportAuthenticationModule.cs: Added LinkDemand for Minimal. Added
510 Demand for UnmanagedCode on constructor.
511 * PassportIdentity.cs: Added LinkDemand for Minimal. Added Demand for
512 UnmanagedCode on constructor.
513 * UrlAuthorizationModule.cs: Added LinkDemand for Minimal. Added
514 Demand for UnmanagedCode on constructor.
515 * WindowsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
516 * WindowsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
517 Demand for UnmanagedCode on constructor.
519 2005-09-01 Sebastien Pouliot <sebastien@ximian.com>
521 * FormsAuthenticationEventArgs.cs: Ensure the setter for User is
522 protected by a demand for ControlPrincipal.
523 * PassportAuthenticationEventArgs.cs: Ensure the setter for User is
524 protected by a demand for ControlPrincipal.
525 * WindowsAuthenticationEventArgs.cs: Ensure the setter for User is
526 protected by a demand for ControlPrincipal.
528 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
530 * FormsAuthentication.cs: With 2.0 we can get the default properties
531 and call Initialize without a NRE.
533 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
535 * ActiveDirectoryConnectionProtection.cs: New (2.0) enum.
536 * ActiveDirectoryMembershipProvider.cs: Fixed 2.0 API.
537 * AnonymousIdentificationEventArgs.cs: Fixed AnonymousID property case.
538 * AnonymousIdentificationModule.cs: Fixed 2.0 API.
539 * FileAuthorizationModule.cs: Added static CheckFileAccessForUser in
541 * FormsAuthentication.cs: Added missing 2.0 properties with their
543 * MembershipCreateStatus.cs: Fixed enum values/names.
544 * MembershipProvider.cs: Added stub for [Decrypt|Encrypt]Password. Both
545 methods don't seems to work without an active provider.
546 * PassportIdentity.cs: Added IDispose for 2.0 profile.
547 * Roles.cs: Added missing beta2 bits and default values (which are the
548 only things working without a role provider (web.config).
549 * RolePrincipal.cs: Fixed 2.0 API. Implemented a few bits.
550 * SqlRoleProvider.cs: Fixed 2.0 API.
551 * UrlAuthorizationModule.cs: Added static CheckUrlAccessForPrincipal in
554 2005-08-24 Sebastien Pouliot <sebastien@ximian.com>
556 * MembershipUserCollection.cs: Fix exceptions.
558 2005-08-22 Sebastien Pouliot <sebastien@ximian.com>
560 * FormsAuthentication.cs: Add some 2.0 stuff required for Login*
563 2005-08-18 Sebastien Pouliot <sebastien@ximian.com>
565 * Membership.cs: Commented unworking parts of the .cctor to allow
566 testing the Login control.
567 * MembershipProviderCollection.cs: Fixed exception handling.
568 * SqlMembershipProvider.cs: Don't throw NotImplementedException
569 everywhere so Membership's .cctor (somewhat) works. Removed
570 Description property (not in beta2).
572 2005-07-28 Gonzalo Paniagua Javier <gonzalo@ximian.com>
574 * FormsAuthentication.cs: allow hardware acceleration support if
575 available. Sebastien dixit.
577 2005-07-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
579 * FormsAuthentication.cs: the init_vector must be the same accross
580 restarts, otherwise the cookie does not work even when a decryption
581 key is provided. Initialize it to the bytes of the cookie name. Fixes
584 2005-07-25 Eyal Alaluf <eyala@mainsoft.com>
586 * FormsAuthenticationModule.cs: Check for null config
588 2005-07-25 Miguel de Icaza <miguel@novell.com>
590 * FormsAuthentication.cs (SignOut): Force the cookie to have it
593 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
595 * FormsAuthentication.cs: my previous patch missed a "small" detail: it
596 didn't include the verification key when computing/checking the
597 validation hash. Now this is really a MAC or HMAC or...
599 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
601 * FormsAuthentication.cs:
602 * FormsAuthenticationTicket.cs: added support for validation and
603 encryption of the auth. cookie and improved serialization of the ticket.
605 2005-07-01 Lluis Sanchez Gual <lluis@novell.com>
607 * Membership.cs: Read provider info from the config file.
609 2005-06-10 Lluis Sanchez Gual <lluis@novell.com>
611 * MembershipUserCollection.cs:
612 * MembershipPasswordException.cs:
613 * RoleProviderCollection.cs:
614 * ActiveDirectoryMembershipProvider.cs:
615 * SqlMembershipProvider.cs:
616 * MembershipProvider.cs:
617 * SqlRoleProvider.cs:
620 * MembershipProviderCollection.cs:
622 * RoleProvider.cs: Track api changes in ASP.NET 2.0. Implemented
623 some missing methods.
625 * AccessRoleProvider.cs:
626 * AccessMembershipProvider.cs: Removed.
628 * MembershipCreateUserException.cs:
629 * MembershipValidatePasswordEventHandler.cs:
630 * ValidatePasswordEventArgs.cs: Implemented.
632 2005-05-21 Sebastien Pouliot <sebastien@ximian.com>
634 * FormsAuthentication.cs: Hash the UTF8 representation of the password
635 strings (to be compatible with Microsoft implementation).
637 2005-04-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
639 * FormsAuthentication.cs:
640 * PassportAuthenticationModule.cs:
641 * WindowsAuthenticationModule.cs: removed warnings.
643 2005-03-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
645 * FormsAuthenticationModule.cs: fix for bug 73545, which caused
646 authentication not to work when the cookie was not persistent.
647 Patch by Ilya Kharmatsky (Mainsoft).
649 2005-02-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
651 * FormsAuthentication.cs: make the string to be stored in a config.
652 file uppercase... See bug #72557.
654 2005-02-06 Gonzalo Paniagua Javier <gonzalo@ximian.com>
656 * FormsAuthentication.cs: fixed typo when getting the hash for the
657 password in SHA1 and MD5. Thanks to Tadas Dailyda.
658 Lock on a static object instead of typeof(FormsAuthentication).
660 2004-11-18 Lluis Sanchez Gual <lluis@novell.com>
662 * RoleProvider.cs, Roles.cs, SqlRoleProvider.cs, RoleProviderCollection.cs,
663 AccessRoleProvider.cs: IRoleProvider has been renamed to ProviderBase.
664 * IMembershipProvider.cs: Deleted.
665 * MembershipProvider.cs, AccessMembershipProvider.cs, MembershipUser.cs,
666 Membership.cs, ADMembershipProvider.cs, SqlMembershipProvider.cs
667 MembershipProviderCollection.cs: MembershipProvider has been deleted
668 and replaced by the abstract class MembershipProvider.
669 * MembershipProviderCollection.cs: Minor fixes.
670 * ADMembershipProvider.cs: Renamed to ActiveDirectoryMembershipProvider.cs.
672 2004-11-15 Lluis Sanchez Gual <lluis@novell.com>
674 * RoleProviderCollection.cs, MembershipProviderCollection.cs:
677 2004-08-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
679 * FormsAuthentication.cs: patch by Jim Pease to fix the date on renewal.
681 2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
683 * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
684 the cookie if SlidingExpiration is set. Thanks to Jim Pease.
686 2004-08-03 Sanjay Gupta <gsanjay@novell.com>
688 * MembershipSortOptions.cs:
689 * MembershipPasswordFormat.cs:
690 * MembershipOnlineStatus.cs:
691 * MembershipCreateStatus.cs:
692 * CookieProtection.cs: minor modifications.
694 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
696 * FormsAuthentication.cs: Undo last change.
698 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
700 * FormsAuthentication.cs: go to loginUrl from web.config settings
701 before try with the default ones.
703 2004-06-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
705 * DefaultAuthenticationModule.cs: set the IPrincipal for this thread
706 once we have a user. Fixes bug #59683.
708 2004-04-21 Gonzalo Paniagua Javier <gonzalo@ximian.com>
710 * FormsAuthenticationModule.cs: re-read configuration files if needed
711 when determining if forms auth. is used.
713 2004-01-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
715 * FormsAuthentication.cs: added RequireSSL and SlidingExpiration.
717 2004-01-11 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
719 * PassportIdentity.cs: Added v 1.1 members
721 2003-11-25 Ben Maurer <bmaurer@users.sourceforge.net>
723 * AccessMembershipProvider.cs: New v2 file
724 * AccessRoleProvider.cs: New v2 file
725 * ADMembershipProvider.cs: New v2 file
726 * AnonymousIdentificationEventArgs.cs: New v2 file
727 * AnonymousIdentificationEventHandler.cs: New v2 file
728 * AnonymousIdentificationModule.cs: New v2 file
729 * CookieProtection.cs: New v2 file
730 * IMembershipProvider.cs: New v2 file
731 * IRoleProvider.cs: New v2 file
732 * Membership.cs: New v2 file
733 * MembershipCreateStatus.cs: New v2 file
734 * MembershipCreateUserException.cs: New v2 file
735 * MembershipOnlineStatus.cs: New v2 file
736 * MembershipPasswordException.cs: New v2 file
737 * MembershipPasswordFormat.cs: New v2 file
738 * MembershipProviderCollection.cs: New v2 file
739 * MembershipSortOptions.cs: New v2 file
740 * MembershipUser.cs: New v2 file
741 * MembershipUserCollection.cs: New v2 file
742 * RoleManagerEventArgs.cs: New v2 file
743 * RoleManagerEventHandler.cs: New v2 file
744 * RoleManagerModule.cs: New v2 file
745 * RolePrincipal.cs: New v2 file
746 * RoleProviderCollection.cs: New v2 file
747 * Roles.cs: New v2 file
748 * SqlMembershipProvider.cs: New v2 file
749 * SqlRoleProvider.cs: New v2 file
751 2003-11-05 Gonzalo Paniagua Javier <gonzalo@ximian.com>
753 * FormsAuthentication.cs: encoding updates.
755 2003-10-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
757 * FormsAuthenticationModule.cs: fixed for applications other than /.
759 2003-08-27 Gonzalo Paniagua Javier <gonzalo@ximian.com>
761 * UrlAuthorizationModule.cs: fixed description for status code.
763 2003-07-31 Gonzalo Paniagua Javier <gonzalo@ximian.com>
765 * FormsAuthenticationModule.cs: really renew the ticket. Thanks to
766 Jens Thiel <Jens@Thiel.DE>.
768 2003-02-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
770 * UrlAuthorizationModule.cs: tell the application not to run any other
771 step apart from EndRequest.
773 2003-02-12 Gonzalo Paniagua Javier <gonzalo@ximian.com>
775 * FormsAuthentication.cs: implemented RedirectFromLoginPage and
778 * FormsAuthenticationModule.cs: redirect to the login page when a 401
781 * UrlAuthorizationModule.cs: check for valid user or render error page.
783 2003-01-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
785 * DefaultAuthenticationModule.cs: implemented. It just create a default
786 unauthenticated user when no one else provided one.
788 * FormsAuthenticationModule.cs: removed debug output.
790 2002-12-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
792 * FormsAuthenticationModule.cs: remove debug lines.
794 2002-12-19 Gonzalo Paniagua Javier <gonzalo@ximian.com>
796 * FormsAuthentication.cs: return a null ticket when an exception is
797 thrown creating it. Implemented RenewTicketIfOld.
799 * FormsAuthenticationModule.cs: implemented event handlers for
800 AuthenticateRequest and EndRequest.
802 * FormsAuthenticationTicket.cs: implemented SetDates and Clone methods.
804 2002-12-18 Gonzalo Paniagua Javier <gonzalo@ximian.com>
806 * FormsAuthentication.cs: implemented GetAuthCookie, SetAuthCookie,
807 SignOut, FormsCookieName and FormsCookiePath.
809 2002-12-17 Gonzalo Paniagua Javier <gonzalo@ximian.com>
811 * FormsAuthentication.cs: implemented Authenticate, unencrypted Encrypt
812 and Decrypt, HashPasswordForStoringInConfigFile and Initialize.
814 * FormsAuthenticationTicket.cs: set cookiePath to the default when no
817 2002-08-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
819 * DefaultAuthenticationEventHandler.cs:
820 * DefaultAuthenticationModule.cs:
821 * FileAuthorizationModule.cs:
822 * FormsAuthentication.cs:
823 * FormsAuthenticationEventArgs.cs:
824 * FormsAuthenticationEventHandler.cs:
825 * FormsAuthenticationModule.cs:
826 * FormsAuthenticationTicket.cs:
828 * PassportAuthenticationEventArgs.cs:
829 * PassportAuthenticationEventHandler.cs:
830 * PassportAuthenticationModule.cs:
831 * PassportIdentity.cs:
832 * UrlAuthorizationModule.cs:
833 * WindowsAuthenticationEventArgs.cs:
834 * WindowsAuthenticationEventHandler.cs:
835 * WindowsAuthenticationModule.cs: new files. Some of them implemented,
836 some others stubbed out.
838 2002-06-03 Gonzalo Paniagua Javier <gonzalo@ximian.com>
840 * DefaultAuthenticationEventArgs.cs: added file.