1 2008-03-10 Marek Habersack <mhabersack@novell.com>
3 * RoleManagerModule.cs: initialize _config before adding event
4 handlers and account for the fact that _config might still be null
5 in the methods that use it.
7 2007-12-30 Vladimir Krasnov <vladimirk@mainsoft.com>
9 * SqliteMembershipProvider.cs, SqlRoleProvider.cs: added chema checking
10 * added AspNetDBSchemaChecker.cs: schema checker helper class
12 2007-12-11 Vladimir Krasnov <vladimirk@mainsoft.com>
14 * Roles.cs: fixed Providers property to be thread safe
16 2007-12-08 Marek Habersack <mhabersack@novell.com>
18 * SqliteRoleProvider.cs: added - a Role Provider for
19 Sqlite, based on PostgreSQL Role Provider code from Daniel
20 Nauck <dna@informatik.uni-kiel.de>
22 * SqliteMembershipProvider.cs: added - a Membership Provider for
23 Sqlite, based on PostgreSQL Membership Provider code from Daniel
24 Nauck <dna@informatik.uni-kiel.de>
26 2007-11-28 Marek Habersack <mhabersack@novell.com>
28 * SqlMembershipProvider.cs: handle situation when there is no
29 connection string configured for the SQL Membership Provider.
31 2007-11-01 Marek Habersack <mhabersack@novell.com>
33 * RolePrincipal.cs, MembershipProvider.cs: use the new
34 MachineKeySectionUtils class wherever necessary.
36 * FormsAuthentication.cs: use the new MachineKeySectionUtils class
38 GetHexString is a private method again.
40 2007-10-31 Marek Habersack <mhabersack@novell.com>
42 * FormsAuthentication.cs: made GetHexString an internal method -
43 it is used in the AssemblyResourceLoader.cs
45 2007-08-14 Marek Habersack <mhabersack@novell.com>
47 * Roles.cs: remove unused field.
49 * SqlMembershipProvider.cs: remove unused variable.
51 2007-08-13 Vladimir Krasnov <vladimirk@mainsoft.com>
53 * SqlRoleProvider.cs: fixed ApplicationName initialization
55 2007-06-24 Vladimir Krasnov <vladimirk@mainsoft.com>
57 * FormsAuthentication.cs: improved performance of GetHexString()
59 2007-05-17 Vladimir Krasnov <vladimirk@mainsoft.com>
61 * SqlMembershipProvider.cs: fixed DeleteUser, fixed parameter name
63 2007-05-14 Igor Zelmanovich <igorz@mainsoft.com>
65 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
67 2007-05-09 Igor Zelmanovich <igorz@mainsoft.com>
69 * PassportIdentity.cs:
70 added MonoNotSupported attribute.
72 2007-05-02 Marek Habersack <mhabersack@novell.com>
74 * FormsAuthentication.cs: user names are stored in lowercase in
75 the credentials database.
77 2007-04-29 Igor Zelmanovich <igorz@mainsoft.com>
79 * FormsAuthenticationModule.cs:
80 Redirect to login page doesn't cause thread abort.
82 2007-04-19 Igor Zelmanovich <igorz@mainsoft.com>
84 * SqlMembershipProvider.cs:
85 ChangePassword throws exception if new password has invalid format.
87 2007-04-17 Igor Zelmanovich <igorz@mainsoft.com>
91 if default provider was not found ConfigurationErrorsException is thrown.
93 2007-04-12 Marek Habersack <mhabersack@novell.com>
95 * RoleManagerModule.cs: do not try to decrypt encryption tickets
96 from cookies with empty values.
98 2007-04-04 Juraj Skripsky <js@hotfeet.ch>
100 * FormsAuthenticationModule.cs: Move initialization of _config out
101 of Init() as app.Context is null in that method when a session is
102 about to be terminated.
104 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
106 * AnonymousIdentificationModule.cs: optimized Config property
108 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
110 * AnonymousIdentificationModule.cs: added configuration section caching
111 to AppDomain for TARGET_JVM
112 * RoleManagerModule.cs:
113 * UrlAuthorizationModule.cs:
114 * FormsAuthenticationModule.cs: refactored configuration section to be
117 2007-03-20 Marek Habersack <mhabersack@novell.com>
119 * FormsAuthentication.cs, Roles.cs: remove roles cookie on sign
120 out. Fixes bug #81195. Patch from Mike Morano <mmorano@mikeandwan.us>.
122 2007-03-12 Marek Habersack <mhabersack@novell.com>
124 * RolePrincipal.cs: decrypt the roles ticket properly. Makes role
125 caching in cookies work. Fixes bug #81117. Patch from Mike Morano
126 <mmorano@mikeandwan.us>
128 2007-03-02 Marek Habersack <mhabersack@novell.com>
130 * SqlMembershipProvider.cs: cast PasswordFormat to int, so that
131 the parameter code can infer the sql type. Makes user creation,
132 password reset etc. work.
134 2007-02-28 Andreia Gaita <avidigal@novell.com>
136 * SqlRoleProvider.cs: Fix parameter binding to stored procedures.
137 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
138 CreateUser() doesn't use transactions in MS asp.net, so removed the
141 2007-02-19 Vladimir Krasnov <vladimirk@mainsoft.com>
143 * RoleManagerModule.cs: fixed role chaching in OnEndRequest and
144 OnPostAuthenticateRequest
145 * RolePrincipal.cs: implemented ToEncryptedTicket, implemented caching
147 * Roles.cs: implemented DeleteCookie, fixed CookieProtectionValue to
148 get it's value from configuration
150 2007-02-08 Marek Habersack <grendello@gmail.com>
152 * FormsAuthenticationModule.cs: Expire auth tickets properly.
154 * MembershipProvider.cs: Do not clear the password before
157 2007-01-20 Miguel de Icaza <miguel@novell.com>
159 * SqlRoleProvider.cs: comment out unused code.
161 * SqlMembershipProvider.cs: Removed unused variables.
162 Remove unused variable.
164 * AnonymousIdentificationModule.cs (ClearAnonymousIdentifier):
165 remove unused variable. This might be a real bug.
167 2007-01-16 Vladimir Krasnov <vladimirk@mainsoft.com>
169 * RoleManagerModule.cs: fixed OnPostAuthenticateRequest,
170 CacheRolesInCookie not supported yet
171 * Roles.cs: fixed DeleteCookie, CacheRolesInCookie not supported yet
173 2007-01-11 Adar Wesley <adarw@mainsoft.com>
175 * MembershipProvider.cs: fixed EncryptPassword to use password buffer length
177 2007-01-04 Vladimir Krasnov <vladimirk@mainsoft.com>
179 * AnonymousIdentificationModule.cs: fixed OnEnter, fixed failure on
180 incorrect cookie value that browser may hold
182 2006-12-27 Vladimir Krasnov <vladimirk@mainsoft.com>
184 * FormsAuthentication.cs: added internal ReturnUrl property,
185 GetRedirectUrl added usage of ReturnUrl
187 2006-12-12 Vladimir Krasnov <vladimirk@mainsoft.com>
189 * FormsAuthentication.cs: TARGET_J2EE define for static members
191 2006-12-06 Vladimir Krasnov <vladimirk@mainsoft.com>
193 * FormsAuthenticationModule.cs: fixed OnAuthenticateRequest, suppress
194 exception on wrong ticket
196 2006-12-03 Igor Zelmanovich <igorz@mainsoft.com>
198 * FormsAuthenticationModule.cs:
199 set SkipAuthorization=true for WebResource.axd
201 2006-11-27 Vladimir Krasnov <vladimirk@mainsoft.com>
203 * SqlMembershipProvider.cs: typo bug
205 2006-11-21 Vladimir Krasnov <vladimirk@mainsoft.com>
207 * SqlMembershipProvider.cs: fixed fixed exception type in GetPassword
210 2006-11-20 Igor Zelmanovich <igorz@mainsoft.com>
212 * SqlMembershipProvider.cs: fixed: UpdateUser works properly.
214 2006-11-15 Igor Zelmanovich <igorz@mainsoft.com>
216 * SqlMembershipProvider.cs: fixed: name is used for ReturnValue parameter.
218 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
220 * AnonymousIdentificationModule.cs: fixed anonymous id cookie
222 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
224 * MembershipProvider.cs, SqlMembershipProvider.cs:
225 refactoring of DecryptPassword and EncryptPassword methods according
228 2006-09-10 Konstantin Triger <kostat@mainsoft.com>
230 * SqlRoleProvider.cs: throw on empty connection string.
232 2006-09-26 Vladimir Krasnov <vladimirk@mainsoft.com>
234 * Membership.cs: fixed GetAllUsers, typo bug
235 * SqlRoleProvider.cs, SqlMembershipProvider.cs: refactored to use
236 aspnetdb built in stored procedures,
237 fixed application name and membership relation,
238 improved exception handling
240 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
242 * RolePrincipal.cs: refactoring: instance can be serialized.
244 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
246 * SqlMembershipProvider.cs: fixed GetUser,
247 when username is String.Empty methods returns null.
249 2006-08-31 Konstantin Triger <kostat@mainsoft.com>
251 * SqlRoleProvider.cs: fixed initialization.
253 2006-08-31 Igor Zelmanovich <igorz@mainsoft.com>
255 * SqlMembershipProvider.cs: fixed CreateUser,
256 password is checked, properties MinRequiredPasswordLength and
257 MinRequiredNonAlphanumericCharacters are considered.
259 2006-08-29 Konstantin Triger <kostat@mainsoft.com>
261 * SqlMembershipProvider.cs: fix dispose order of reader vs connection.
263 2006-08-28 Igor Zelmanovich <igorz@mainsoft.com>
265 * SqlMembershipProvider.cs: fixed CreateUser, parameter isApproved is
268 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
270 * SqlMembershipProvider.cs: ensure GetUser() returns null if it cannot
271 retrieve user information.
273 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
275 * SqlRoleProvider.cs, SqlMembershipProvider.cs:
276 "use SqlClientFactory in case the ProviderName is not specified.
278 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
280 * SqlRoleProvider.cs: enable concurrent usage, refactoring.
282 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
284 * SqlMembershipProvider.cs: enable concurrent usage, refactoring.
286 2006-08-27 Vladimir Krasnov <vladimirk@mainsoft.com>
288 * SqlMembershipProvider.cs: fixed ValidateUser, bug when user
291 2006-08-14 Gonzalo Paniagua Javier <gonzalo@ximian.com>
293 * FormsAuthentication.cs: set the Secure attribute of the authentication
294 cookie when required.
296 2006-07-06 Konstantin Triger <kostat@mainsoft.com>
298 * FormsAuthentication.cs: Ensure initialized, fix url mapping.
300 2006-05-03 Chris Toshok <toshok@ximian.com>
302 * SqlMembershipProvider.cs (GetAlg): move this here for the time
303 being, as it's the only class that uses it.
304 (HashAndBase64Encode): nuke.
305 (EncryptAndBase64Encode): nuke.
306 (Base64DecodeAndDecrypt): nuke.
307 (DecryptPassword): new function.
308 (EncryptPassword): new function.
309 (ChangePassword): replace the switch with a call to
311 (ChangePasswordQuestionAndAnswer): same.
313 (ResetPassword): same.
314 (ValidateUsingPassword): same.
315 (ValidateUsingPasswordAnswer): same.
316 (GetPassword): same, and throw MembershipPasswordException if the
317 password answer is incorrect.
319 * MembershipProvider.cs (InitVector): nuke this. it's actually
320 the salt from the database (for the sql provider, anyway).
321 (EncodePassword): based on the password format, password, and
322 salt, encode it. Makes use of EncryptPassword.
323 (DecodePassword): likewise for decoding, makes use of
325 (DecryptPassword): revert this to throwing
326 NotImplementedException, as the sql provideroverrides it to
327 perform the actual decryption.
328 (EncryptPassword): same.
330 2006-05-02 Chris Toshok <toshok@ximian.com>
332 * SqlMembershipProvider.cs: 85% complete, maybe more. The major
333 functionality should work. Password retrieval (and encrypted
334 passwords in general) is untested.
336 2006-05-01 Chris Toshok <toshok@ximian.com>
338 * Membership.cs (GeneratePassword): don't include quotes (',",`)
339 in the set of characters in the generated passwords.
341 2006-05-01 Chris Toshok <toshok@ximian.com>
343 * MembershipProvider.cs (GetAlg): switch from Exception to
344 ProviderException to match MS behavior (and fix the unit test.)
346 * Membership.cs (GeneratePassword): implement.
348 2006-05-01 Chris Toshok <toshok@ximian.com>
350 * SqlMembershipProvider.cs: lots more work. checking this in in
351 its present state because I don't want to lose it. It still needs
354 * Membership.cs (.cctor): remove the fallback.
355 (ValidatingPassword): remove the MonoTODO.
357 * MembershipProvider.cs (DecryptPassword): implement.
358 (EncryptPassword): implement.
359 (GetAlg): helper function for Decrypt/EncryptPassword.
362 2006-04-27 Chris Toshok <toshok@ximian.com>
364 * SqlMembershipProvider.cs (GeneratePassword): call
365 Membership.GeneratePassword with the configured minimum strength
368 2006-04-27 Chris Toshok <toshok@ximian.com>
370 * SqlMembershipProvider.cs (UnlockUser): fix sql query, and move
371 the CheckPararm call to the top of the method.
373 2006-04-12 Chris Toshok <toshok@ximian.com>
375 * SqlMembershipProvider.cs: commit initial pass at
376 SqlMembershipProvider work. lots of stuff untested in here.
378 2006-04-11 Chris Toshok <toshok@ximian.com>
380 * MembershipUser.cs (.ctor): per Shackow's book, all DateTime's
381 are converted using ToUniversalTime when passed into this class.
382 (UpdateSelf): update ourselves from the passed in MembershipUser,
383 swallowing NotSupportedExceptions.
384 (UpdateUser): fetch a new MembershipUser from the db and call
386 (ChangePassword): call UpdateUser after changing the password.
387 (ChangePasswordQuestionAndAnswer): same.
388 (ResetPassword): same.
389 (UnlockUser): same. Also, don't explicitly set isLockedOut.
390 It'll be updated in UpdateSelf.
391 (CreationDate): getter calls ToLocalTime, setter calls
393 (LastActivityDate): same.
394 (LastLoginDate): same.
395 (LastPasswordChangedDate): same.
396 (LastLockoutDate): same.
398 * Membership.cs (.cctor): use
399 ProvidersHelper.InstantitateProviders, and remove some unnecessary
402 2006-03-29 Chris Toshok <toshok@ximian.com>
404 * SqlRoleProvider.cs: do the LOWER's in SQL, not in C#.
406 2006-03-23 Chris Toshok <toshok@ximian.com>
408 * Roles.cs: make this 2.0 configuration aware.
410 * SqlRoleProvider.cs: flesh out all the operations. the only
411 things that need dealing with are the Initialize method's handling
412 of a few parameters, and the ApplicationName property.
414 2006-03-23 Chris Toshok <toshok@ximian.com>
416 * DefaultAuthenticationModule.cs (OnDefaultAuthentication): always
417 set Thread.CurrentPrincipal, not just if we set it to the
420 2006-03-22 Chris Toshok <toshok@ximian.com>
422 * RoleManagerModule.cs: implement using info in Shackow's book.
424 * RolePrincipal.cs: flesh this out a bit more.
426 * DefaultAuthenticationModule.cs (OnDefaultAuthentication):
427 according to Shackow's book, this sets Thread.CurrentPrincipal as
428 well as HttpContext.Current.User.
430 2006-02-28 Chris Toshok <toshok@ximian.com>
432 * FormsAuthentication.cs: corcompare work.
434 * MembershipCreateUserException.cs: same.
436 * MembershipPasswordException.cs: same.
438 * AnonymousIdentificationModule.cs: same.
440 2006-02-01 Chris Toshok <toshok@ximian.com>
442 * FormsAuthentication.cs, Membership.cs,
443 FormsAuthenticationModule.cs, UrlAuthorizationModule.cs: oops,
444 replace GetWebApplicationSection with GetSection.
446 2006-02-01 Chris Toshok <toshok@ximian.com>
448 * FormsAuthentication.cs: CONFIGURATION_2_0 => NET_2_0.
449 simplifies the ifdef mess quite a bit.
451 * Membership.cs: same.
453 * FormsAuthenticationModule.cs: same.
455 * UrlAuthorizationModule.cs: same.
457 2006-01-04 Chris Toshok <toshok@ximian.com>
459 * FormsAuthentication.cs (Authenticate): add CONFIGURATION_2_0
466 2006-01-04 Chris Toshok <toshok@ximian.com>
468 * Membership.cs (.cctor): enable the code here under
471 2006-01-03 Chris Toshok <toshok@ximian.com>
473 * UrlAuthorizationModule.cs (OnAuthorizeRequest): add
474 CONFIGURATION_2_0 code here.
476 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
478 * FormsAuthentication.cs: don't end the request in
479 RedirectFromLoginPage.
481 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
483 * FormsAuthenticationModule.cs: expire the cookie. Fixes bug #77043.
484 Patch by Cyrille Colin.
486 2005-12-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
488 * FormsAuthenticationModule.cs: ignore any exception thrown when mapping
489 the provided virtual path to the physical one. Patch by Cyrille Colin.
491 2005-11-28 Chris Toshok <toshok@ximian.com>
493 * FormsAuthenticationModule.cs (OnAuthenticateRequest):
494 CONFIGURATION_2_0 work.
495 (OnEndRequest): same.
497 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
499 * DefaultAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
500 * DefaultAuthenticationModule.cs: Added LinkDemand for Minimal. Added
501 Demand for UnmanagedCode on constructor.
502 * FileAuthorizationModule.cs: Added LinkDemand for Minimal. Added
503 Demand for UnmanagedCode on constructor.
504 * FormsAuthentication.cs: Added LinkDemand for Minimal.
505 * FormsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
506 * FormsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
507 Demand for UnmanagedCode on constructor.
508 * FormsAuthenticationTicket.cs: Added LinkDemand for Minimal.
509 * FormsIdentity.cs: Added LinkDemand for Minimal.
510 * PassportAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
511 * PassportAuthenticationModule.cs: Added LinkDemand for Minimal. Added
512 Demand for UnmanagedCode on constructor.
513 * PassportIdentity.cs: Added LinkDemand for Minimal. Added Demand for
514 UnmanagedCode on constructor.
515 * UrlAuthorizationModule.cs: Added LinkDemand for Minimal. Added
516 Demand for UnmanagedCode on constructor.
517 * WindowsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
518 * WindowsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
519 Demand for UnmanagedCode on constructor.
521 2005-09-01 Sebastien Pouliot <sebastien@ximian.com>
523 * FormsAuthenticationEventArgs.cs: Ensure the setter for User is
524 protected by a demand for ControlPrincipal.
525 * PassportAuthenticationEventArgs.cs: Ensure the setter for User is
526 protected by a demand for ControlPrincipal.
527 * WindowsAuthenticationEventArgs.cs: Ensure the setter for User is
528 protected by a demand for ControlPrincipal.
530 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
532 * FormsAuthentication.cs: With 2.0 we can get the default properties
533 and call Initialize without a NRE.
535 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
537 * ActiveDirectoryConnectionProtection.cs: New (2.0) enum.
538 * ActiveDirectoryMembershipProvider.cs: Fixed 2.0 API.
539 * AnonymousIdentificationEventArgs.cs: Fixed AnonymousID property case.
540 * AnonymousIdentificationModule.cs: Fixed 2.0 API.
541 * FileAuthorizationModule.cs: Added static CheckFileAccessForUser in
543 * FormsAuthentication.cs: Added missing 2.0 properties with their
545 * MembershipCreateStatus.cs: Fixed enum values/names.
546 * MembershipProvider.cs: Added stub for [Decrypt|Encrypt]Password. Both
547 methods don't seems to work without an active provider.
548 * PassportIdentity.cs: Added IDispose for 2.0 profile.
549 * Roles.cs: Added missing beta2 bits and default values (which are the
550 only things working without a role provider (web.config).
551 * RolePrincipal.cs: Fixed 2.0 API. Implemented a few bits.
552 * SqlRoleProvider.cs: Fixed 2.0 API.
553 * UrlAuthorizationModule.cs: Added static CheckUrlAccessForPrincipal in
556 2005-08-24 Sebastien Pouliot <sebastien@ximian.com>
558 * MembershipUserCollection.cs: Fix exceptions.
560 2005-08-22 Sebastien Pouliot <sebastien@ximian.com>
562 * FormsAuthentication.cs: Add some 2.0 stuff required for Login*
565 2005-08-18 Sebastien Pouliot <sebastien@ximian.com>
567 * Membership.cs: Commented unworking parts of the .cctor to allow
568 testing the Login control.
569 * MembershipProviderCollection.cs: Fixed exception handling.
570 * SqlMembershipProvider.cs: Don't throw NotImplementedException
571 everywhere so Membership's .cctor (somewhat) works. Removed
572 Description property (not in beta2).
574 2005-07-28 Gonzalo Paniagua Javier <gonzalo@ximian.com>
576 * FormsAuthentication.cs: allow hardware acceleration support if
577 available. Sebastien dixit.
579 2005-07-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
581 * FormsAuthentication.cs: the init_vector must be the same accross
582 restarts, otherwise the cookie does not work even when a decryption
583 key is provided. Initialize it to the bytes of the cookie name. Fixes
586 2005-07-25 Eyal Alaluf <eyala@mainsoft.com>
588 * FormsAuthenticationModule.cs: Check for null config
590 2005-07-25 Miguel de Icaza <miguel@novell.com>
592 * FormsAuthentication.cs (SignOut): Force the cookie to have it
595 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
597 * FormsAuthentication.cs: my previous patch missed a "small" detail: it
598 didn't include the verification key when computing/checking the
599 validation hash. Now this is really a MAC or HMAC or...
601 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
603 * FormsAuthentication.cs:
604 * FormsAuthenticationTicket.cs: added support for validation and
605 encryption of the auth. cookie and improved serialization of the ticket.
607 2005-07-01 Lluis Sanchez Gual <lluis@novell.com>
609 * Membership.cs: Read provider info from the config file.
611 2005-06-10 Lluis Sanchez Gual <lluis@novell.com>
613 * MembershipUserCollection.cs:
614 * MembershipPasswordException.cs:
615 * RoleProviderCollection.cs:
616 * ActiveDirectoryMembershipProvider.cs:
617 * SqlMembershipProvider.cs:
618 * MembershipProvider.cs:
619 * SqlRoleProvider.cs:
622 * MembershipProviderCollection.cs:
624 * RoleProvider.cs: Track api changes in ASP.NET 2.0. Implemented
625 some missing methods.
627 * AccessRoleProvider.cs:
628 * AccessMembershipProvider.cs: Removed.
630 * MembershipCreateUserException.cs:
631 * MembershipValidatePasswordEventHandler.cs:
632 * ValidatePasswordEventArgs.cs: Implemented.
634 2005-05-21 Sebastien Pouliot <sebastien@ximian.com>
636 * FormsAuthentication.cs: Hash the UTF8 representation of the password
637 strings (to be compatible with Microsoft implementation).
639 2005-04-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
641 * FormsAuthentication.cs:
642 * PassportAuthenticationModule.cs:
643 * WindowsAuthenticationModule.cs: removed warnings.
645 2005-03-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
647 * FormsAuthenticationModule.cs: fix for bug 73545, which caused
648 authentication not to work when the cookie was not persistent.
649 Patch by Ilya Kharmatsky (Mainsoft).
651 2005-02-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
653 * FormsAuthentication.cs: make the string to be stored in a config.
654 file uppercase... See bug #72557.
656 2005-02-06 Gonzalo Paniagua Javier <gonzalo@ximian.com>
658 * FormsAuthentication.cs: fixed typo when getting the hash for the
659 password in SHA1 and MD5. Thanks to Tadas Dailyda.
660 Lock on a static object instead of typeof(FormsAuthentication).
662 2004-11-18 Lluis Sanchez Gual <lluis@novell.com>
664 * RoleProvider.cs, Roles.cs, SqlRoleProvider.cs, RoleProviderCollection.cs,
665 AccessRoleProvider.cs: IRoleProvider has been renamed to ProviderBase.
666 * IMembershipProvider.cs: Deleted.
667 * MembershipProvider.cs, AccessMembershipProvider.cs, MembershipUser.cs,
668 Membership.cs, ADMembershipProvider.cs, SqlMembershipProvider.cs
669 MembershipProviderCollection.cs: MembershipProvider has been deleted
670 and replaced by the abstract class MembershipProvider.
671 * MembershipProviderCollection.cs: Minor fixes.
672 * ADMembershipProvider.cs: Renamed to ActiveDirectoryMembershipProvider.cs.
674 2004-11-15 Lluis Sanchez Gual <lluis@novell.com>
676 * RoleProviderCollection.cs, MembershipProviderCollection.cs:
679 2004-08-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
681 * FormsAuthentication.cs: patch by Jim Pease to fix the date on renewal.
683 2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
685 * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
686 the cookie if SlidingExpiration is set. Thanks to Jim Pease.
688 2004-08-03 Sanjay Gupta <gsanjay@novell.com>
690 * MembershipSortOptions.cs:
691 * MembershipPasswordFormat.cs:
692 * MembershipOnlineStatus.cs:
693 * MembershipCreateStatus.cs:
694 * CookieProtection.cs: minor modifications.
696 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
698 * FormsAuthentication.cs: Undo last change.
700 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
702 * FormsAuthentication.cs: go to loginUrl from web.config settings
703 before try with the default ones.
705 2004-06-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
707 * DefaultAuthenticationModule.cs: set the IPrincipal for this thread
708 once we have a user. Fixes bug #59683.
710 2004-04-21 Gonzalo Paniagua Javier <gonzalo@ximian.com>
712 * FormsAuthenticationModule.cs: re-read configuration files if needed
713 when determining if forms auth. is used.
715 2004-01-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
717 * FormsAuthentication.cs: added RequireSSL and SlidingExpiration.
719 2004-01-11 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
721 * PassportIdentity.cs: Added v 1.1 members
723 2003-11-25 Ben Maurer <bmaurer@users.sourceforge.net>
725 * AccessMembershipProvider.cs: New v2 file
726 * AccessRoleProvider.cs: New v2 file
727 * ADMembershipProvider.cs: New v2 file
728 * AnonymousIdentificationEventArgs.cs: New v2 file
729 * AnonymousIdentificationEventHandler.cs: New v2 file
730 * AnonymousIdentificationModule.cs: New v2 file
731 * CookieProtection.cs: New v2 file
732 * IMembershipProvider.cs: New v2 file
733 * IRoleProvider.cs: New v2 file
734 * Membership.cs: New v2 file
735 * MembershipCreateStatus.cs: New v2 file
736 * MembershipCreateUserException.cs: New v2 file
737 * MembershipOnlineStatus.cs: New v2 file
738 * MembershipPasswordException.cs: New v2 file
739 * MembershipPasswordFormat.cs: New v2 file
740 * MembershipProviderCollection.cs: New v2 file
741 * MembershipSortOptions.cs: New v2 file
742 * MembershipUser.cs: New v2 file
743 * MembershipUserCollection.cs: New v2 file
744 * RoleManagerEventArgs.cs: New v2 file
745 * RoleManagerEventHandler.cs: New v2 file
746 * RoleManagerModule.cs: New v2 file
747 * RolePrincipal.cs: New v2 file
748 * RoleProviderCollection.cs: New v2 file
749 * Roles.cs: New v2 file
750 * SqlMembershipProvider.cs: New v2 file
751 * SqlRoleProvider.cs: New v2 file
753 2003-11-05 Gonzalo Paniagua Javier <gonzalo@ximian.com>
755 * FormsAuthentication.cs: encoding updates.
757 2003-10-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
759 * FormsAuthenticationModule.cs: fixed for applications other than /.
761 2003-08-27 Gonzalo Paniagua Javier <gonzalo@ximian.com>
763 * UrlAuthorizationModule.cs: fixed description for status code.
765 2003-07-31 Gonzalo Paniagua Javier <gonzalo@ximian.com>
767 * FormsAuthenticationModule.cs: really renew the ticket. Thanks to
768 Jens Thiel <Jens@Thiel.DE>.
770 2003-02-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
772 * UrlAuthorizationModule.cs: tell the application not to run any other
773 step apart from EndRequest.
775 2003-02-12 Gonzalo Paniagua Javier <gonzalo@ximian.com>
777 * FormsAuthentication.cs: implemented RedirectFromLoginPage and
780 * FormsAuthenticationModule.cs: redirect to the login page when a 401
783 * UrlAuthorizationModule.cs: check for valid user or render error page.
785 2003-01-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
787 * DefaultAuthenticationModule.cs: implemented. It just create a default
788 unauthenticated user when no one else provided one.
790 * FormsAuthenticationModule.cs: removed debug output.
792 2002-12-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
794 * FormsAuthenticationModule.cs: remove debug lines.
796 2002-12-19 Gonzalo Paniagua Javier <gonzalo@ximian.com>
798 * FormsAuthentication.cs: return a null ticket when an exception is
799 thrown creating it. Implemented RenewTicketIfOld.
801 * FormsAuthenticationModule.cs: implemented event handlers for
802 AuthenticateRequest and EndRequest.
804 * FormsAuthenticationTicket.cs: implemented SetDates and Clone methods.
806 2002-12-18 Gonzalo Paniagua Javier <gonzalo@ximian.com>
808 * FormsAuthentication.cs: implemented GetAuthCookie, SetAuthCookie,
809 SignOut, FormsCookieName and FormsCookiePath.
811 2002-12-17 Gonzalo Paniagua Javier <gonzalo@ximian.com>
813 * FormsAuthentication.cs: implemented Authenticate, unencrypted Encrypt
814 and Decrypt, HashPasswordForStoringInConfigFile and Initialize.
816 * FormsAuthenticationTicket.cs: set cookiePath to the default when no
819 2002-08-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
821 * DefaultAuthenticationEventHandler.cs:
822 * DefaultAuthenticationModule.cs:
823 * FileAuthorizationModule.cs:
824 * FormsAuthentication.cs:
825 * FormsAuthenticationEventArgs.cs:
826 * FormsAuthenticationEventHandler.cs:
827 * FormsAuthenticationModule.cs:
828 * FormsAuthenticationTicket.cs:
830 * PassportAuthenticationEventArgs.cs:
831 * PassportAuthenticationEventHandler.cs:
832 * PassportAuthenticationModule.cs:
833 * PassportIdentity.cs:
834 * UrlAuthorizationModule.cs:
835 * WindowsAuthenticationEventArgs.cs:
836 * WindowsAuthenticationEventHandler.cs:
837 * WindowsAuthenticationModule.cs: new files. Some of them implemented,
838 some others stubbed out.
840 2002-06-03 Gonzalo Paniagua Javier <gonzalo@ximian.com>
842 * DefaultAuthenticationEventArgs.cs: added file.