1 2007-12-11 Vladimir Krasnov <vladimirk@mainsoft.com>
3 * Roles.cs: fixed Providers property to be thread safe
5 2007-12-08 Marek Habersack <mhabersack@novell.com>
7 * SqliteRoleProvider.cs: added - a Role Provider for
8 Sqlite, based on PostgreSQL Role Provider code from Daniel
9 Nauck <dna@informatik.uni-kiel.de>
11 * SqliteMembershipProvider.cs: added - a Membership Provider for
12 Sqlite, based on PostgreSQL Membership Provider code from Daniel
13 Nauck <dna@informatik.uni-kiel.de>
15 2007-11-28 Marek Habersack <mhabersack@novell.com>
17 * SqlMembershipProvider.cs: handle situation when there is no
18 connection string configured for the SQL Membership Provider.
20 2007-11-01 Marek Habersack <mhabersack@novell.com>
22 * RolePrincipal.cs, MembershipProvider.cs: use the new
23 MachineKeySectionUtils class wherever necessary.
25 * FormsAuthentication.cs: use the new MachineKeySectionUtils class
27 GetHexString is a private method again.
29 2007-10-31 Marek Habersack <mhabersack@novell.com>
31 * FormsAuthentication.cs: made GetHexString an internal method -
32 it is used in the AssemblyResourceLoader.cs
34 2007-08-14 Marek Habersack <mhabersack@novell.com>
36 * Roles.cs: remove unused field.
38 * SqlMembershipProvider.cs: remove unused variable.
40 2007-08-13 Vladimir Krasnov <vladimirk@mainsoft.com>
42 * SqlRoleProvider.cs: fixed ApplicationName initialization
44 2007-06-24 Vladimir Krasnov <vladimirk@mainsoft.com>
46 * FormsAuthentication.cs: improved performance of GetHexString()
48 2007-05-17 Vladimir Krasnov <vladimirk@mainsoft.com>
50 * SqlMembershipProvider.cs: fixed DeleteUser, fixed parameter name
52 2007-05-14 Igor Zelmanovich <igorz@mainsoft.com>
54 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
56 2007-05-09 Igor Zelmanovich <igorz@mainsoft.com>
58 * PassportIdentity.cs:
59 added MonoNotSupported attribute.
61 2007-05-02 Marek Habersack <mhabersack@novell.com>
63 * FormsAuthentication.cs: user names are stored in lowercase in
64 the credentials database.
66 2007-04-29 Igor Zelmanovich <igorz@mainsoft.com>
68 * FormsAuthenticationModule.cs:
69 Redirect to login page doesn't cause thread abort.
71 2007-04-19 Igor Zelmanovich <igorz@mainsoft.com>
73 * SqlMembershipProvider.cs:
74 ChangePassword throws exception if new password has invalid format.
76 2007-04-17 Igor Zelmanovich <igorz@mainsoft.com>
80 if default provider was not found ConfigurationErrorsException is thrown.
82 2007-04-12 Marek Habersack <mhabersack@novell.com>
84 * RoleManagerModule.cs: do not try to decrypt encryption tickets
85 from cookies with empty values.
87 2007-04-04 Juraj Skripsky <js@hotfeet.ch>
89 * FormsAuthenticationModule.cs: Move initialization of _config out
90 of Init() as app.Context is null in that method when a session is
91 about to be terminated.
93 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
95 * AnonymousIdentificationModule.cs: optimized Config property
97 2007-03-21 Vladimir Krasnov <vladimirk@mainsoft.com>
99 * AnonymousIdentificationModule.cs: added configuration section caching
100 to AppDomain for TARGET_JVM
101 * RoleManagerModule.cs:
102 * UrlAuthorizationModule.cs:
103 * FormsAuthenticationModule.cs: refactored configuration section to be
106 2007-03-20 Marek Habersack <mhabersack@novell.com>
108 * FormsAuthentication.cs, Roles.cs: remove roles cookie on sign
109 out. Fixes bug #81195. Patch from Mike Morano <mmorano@mikeandwan.us>.
111 2007-03-12 Marek Habersack <mhabersack@novell.com>
113 * RolePrincipal.cs: decrypt the roles ticket properly. Makes role
114 caching in cookies work. Fixes bug #81117. Patch from Mike Morano
115 <mmorano@mikeandwan.us>
117 2007-03-02 Marek Habersack <mhabersack@novell.com>
119 * SqlMembershipProvider.cs: cast PasswordFormat to int, so that
120 the parameter code can infer the sql type. Makes user creation,
121 password reset etc. work.
123 2007-02-28 Andreia Gaita <avidigal@novell.com>
125 * SqlRoleProvider.cs: Fix parameter binding to stored procedures.
126 * SqlMembershipProvider.cs: Fix parameter binding to stored procedures.
127 CreateUser() doesn't use transactions in MS asp.net, so removed the
130 2007-02-19 Vladimir Krasnov <vladimirk@mainsoft.com>
132 * RoleManagerModule.cs: fixed role chaching in OnEndRequest and
133 OnPostAuthenticateRequest
134 * RolePrincipal.cs: implemented ToEncryptedTicket, implemented caching
136 * Roles.cs: implemented DeleteCookie, fixed CookieProtectionValue to
137 get it's value from configuration
139 2007-02-08 Marek Habersack <grendello@gmail.com>
141 * FormsAuthenticationModule.cs: Expire auth tickets properly.
143 * MembershipProvider.cs: Do not clear the password before
146 2007-01-20 Miguel de Icaza <miguel@novell.com>
148 * SqlRoleProvider.cs: comment out unused code.
150 * SqlMembershipProvider.cs: Removed unused variables.
151 Remove unused variable.
153 * AnonymousIdentificationModule.cs (ClearAnonymousIdentifier):
154 remove unused variable. This might be a real bug.
156 2007-01-16 Vladimir Krasnov <vladimirk@mainsoft.com>
158 * RoleManagerModule.cs: fixed OnPostAuthenticateRequest,
159 CacheRolesInCookie not supported yet
160 * Roles.cs: fixed DeleteCookie, CacheRolesInCookie not supported yet
162 2007-01-11 Adar Wesley <adarw@mainsoft.com>
164 * MembershipProvider.cs: fixed EncryptPassword to use password buffer length
166 2007-01-04 Vladimir Krasnov <vladimirk@mainsoft.com>
168 * AnonymousIdentificationModule.cs: fixed OnEnter, fixed failure on
169 incorrect cookie value that browser may hold
171 2006-12-27 Vladimir Krasnov <vladimirk@mainsoft.com>
173 * FormsAuthentication.cs: added internal ReturnUrl property,
174 GetRedirectUrl added usage of ReturnUrl
176 2006-12-12 Vladimir Krasnov <vladimirk@mainsoft.com>
178 * FormsAuthentication.cs: TARGET_J2EE define for static members
180 2006-12-06 Vladimir Krasnov <vladimirk@mainsoft.com>
182 * FormsAuthenticationModule.cs: fixed OnAuthenticateRequest, suppress
183 exception on wrong ticket
185 2006-12-03 Igor Zelmanovich <igorz@mainsoft.com>
187 * FormsAuthenticationModule.cs:
188 set SkipAuthorization=true for WebResource.axd
190 2006-11-27 Vladimir Krasnov <vladimirk@mainsoft.com>
192 * SqlMembershipProvider.cs: typo bug
194 2006-11-21 Vladimir Krasnov <vladimirk@mainsoft.com>
196 * SqlMembershipProvider.cs: fixed fixed exception type in GetPassword
199 2006-11-20 Igor Zelmanovich <igorz@mainsoft.com>
201 * SqlMembershipProvider.cs: fixed: UpdateUser works properly.
203 2006-11-15 Igor Zelmanovich <igorz@mainsoft.com>
205 * SqlMembershipProvider.cs: fixed: name is used for ReturnValue parameter.
207 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
209 * AnonymousIdentificationModule.cs: fixed anonymous id cookie
211 2006-11-05 Vladimir Krasnov <vladimirk@mainsoft.com>
213 * MembershipProvider.cs, SqlMembershipProvider.cs:
214 refactoring of DecryptPassword and EncryptPassword methods according
217 2006-09-10 Konstantin Triger <kostat@mainsoft.com>
219 * SqlRoleProvider.cs: throw on empty connection string.
221 2006-09-26 Vladimir Krasnov <vladimirk@mainsoft.com>
223 * Membership.cs: fixed GetAllUsers, typo bug
224 * SqlRoleProvider.cs, SqlMembershipProvider.cs: refactored to use
225 aspnetdb built in stored procedures,
226 fixed application name and membership relation,
227 improved exception handling
229 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
231 * RolePrincipal.cs: refactoring: instance can be serialized.
233 2006-09-03 Igor Zelmanovich <igorz@mainsoft.com>
235 * SqlMembershipProvider.cs: fixed GetUser,
236 when username is String.Empty methods returns null.
238 2006-08-31 Konstantin Triger <kostat@mainsoft.com>
240 * SqlRoleProvider.cs: fixed initialization.
242 2006-08-31 Igor Zelmanovich <igorz@mainsoft.com>
244 * SqlMembershipProvider.cs: fixed CreateUser,
245 password is checked, properties MinRequiredPasswordLength and
246 MinRequiredNonAlphanumericCharacters are considered.
248 2006-08-29 Konstantin Triger <kostat@mainsoft.com>
250 * SqlMembershipProvider.cs: fix dispose order of reader vs connection.
252 2006-08-28 Igor Zelmanovich <igorz@mainsoft.com>
254 * SqlMembershipProvider.cs: fixed CreateUser, parameter isApproved is
257 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
259 * SqlMembershipProvider.cs: ensure GetUser() returns null if it cannot
260 retrieve user information.
262 2006-08-28 Konstantin Triger <kostat@mainsoft.com>
264 * SqlRoleProvider.cs, SqlMembershipProvider.cs:
265 "use SqlClientFactory in case the ProviderName is not specified.
267 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
269 * SqlRoleProvider.cs: enable concurrent usage, refactoring.
271 2006-08-27 Konstantin Triger <kostat@mainsoft.com>
273 * SqlMembershipProvider.cs: enable concurrent usage, refactoring.
275 2006-08-27 Vladimir Krasnov <vladimirk@mainsoft.com>
277 * SqlMembershipProvider.cs: fixed ValidateUser, bug when user
280 2006-08-14 Gonzalo Paniagua Javier <gonzalo@ximian.com>
282 * FormsAuthentication.cs: set the Secure attribute of the authentication
283 cookie when required.
285 2006-07-06 Konstantin Triger <kostat@mainsoft.com>
287 * FormsAuthentication.cs: Ensure initialized, fix url mapping.
289 2006-05-03 Chris Toshok <toshok@ximian.com>
291 * SqlMembershipProvider.cs (GetAlg): move this here for the time
292 being, as it's the only class that uses it.
293 (HashAndBase64Encode): nuke.
294 (EncryptAndBase64Encode): nuke.
295 (Base64DecodeAndDecrypt): nuke.
296 (DecryptPassword): new function.
297 (EncryptPassword): new function.
298 (ChangePassword): replace the switch with a call to
300 (ChangePasswordQuestionAndAnswer): same.
302 (ResetPassword): same.
303 (ValidateUsingPassword): same.
304 (ValidateUsingPasswordAnswer): same.
305 (GetPassword): same, and throw MembershipPasswordException if the
306 password answer is incorrect.
308 * MembershipProvider.cs (InitVector): nuke this. it's actually
309 the salt from the database (for the sql provider, anyway).
310 (EncodePassword): based on the password format, password, and
311 salt, encode it. Makes use of EncryptPassword.
312 (DecodePassword): likewise for decoding, makes use of
314 (DecryptPassword): revert this to throwing
315 NotImplementedException, as the sql provideroverrides it to
316 perform the actual decryption.
317 (EncryptPassword): same.
319 2006-05-02 Chris Toshok <toshok@ximian.com>
321 * SqlMembershipProvider.cs: 85% complete, maybe more. The major
322 functionality should work. Password retrieval (and encrypted
323 passwords in general) is untested.
325 2006-05-01 Chris Toshok <toshok@ximian.com>
327 * Membership.cs (GeneratePassword): don't include quotes (',",`)
328 in the set of characters in the generated passwords.
330 2006-05-01 Chris Toshok <toshok@ximian.com>
332 * MembershipProvider.cs (GetAlg): switch from Exception to
333 ProviderException to match MS behavior (and fix the unit test.)
335 * Membership.cs (GeneratePassword): implement.
337 2006-05-01 Chris Toshok <toshok@ximian.com>
339 * SqlMembershipProvider.cs: lots more work. checking this in in
340 its present state because I don't want to lose it. It still needs
343 * Membership.cs (.cctor): remove the fallback.
344 (ValidatingPassword): remove the MonoTODO.
346 * MembershipProvider.cs (DecryptPassword): implement.
347 (EncryptPassword): implement.
348 (GetAlg): helper function for Decrypt/EncryptPassword.
351 2006-04-27 Chris Toshok <toshok@ximian.com>
353 * SqlMembershipProvider.cs (GeneratePassword): call
354 Membership.GeneratePassword with the configured minimum strength
357 2006-04-27 Chris Toshok <toshok@ximian.com>
359 * SqlMembershipProvider.cs (UnlockUser): fix sql query, and move
360 the CheckPararm call to the top of the method.
362 2006-04-12 Chris Toshok <toshok@ximian.com>
364 * SqlMembershipProvider.cs: commit initial pass at
365 SqlMembershipProvider work. lots of stuff untested in here.
367 2006-04-11 Chris Toshok <toshok@ximian.com>
369 * MembershipUser.cs (.ctor): per Shackow's book, all DateTime's
370 are converted using ToUniversalTime when passed into this class.
371 (UpdateSelf): update ourselves from the passed in MembershipUser,
372 swallowing NotSupportedExceptions.
373 (UpdateUser): fetch a new MembershipUser from the db and call
375 (ChangePassword): call UpdateUser after changing the password.
376 (ChangePasswordQuestionAndAnswer): same.
377 (ResetPassword): same.
378 (UnlockUser): same. Also, don't explicitly set isLockedOut.
379 It'll be updated in UpdateSelf.
380 (CreationDate): getter calls ToLocalTime, setter calls
382 (LastActivityDate): same.
383 (LastLoginDate): same.
384 (LastPasswordChangedDate): same.
385 (LastLockoutDate): same.
387 * Membership.cs (.cctor): use
388 ProvidersHelper.InstantitateProviders, and remove some unnecessary
391 2006-03-29 Chris Toshok <toshok@ximian.com>
393 * SqlRoleProvider.cs: do the LOWER's in SQL, not in C#.
395 2006-03-23 Chris Toshok <toshok@ximian.com>
397 * Roles.cs: make this 2.0 configuration aware.
399 * SqlRoleProvider.cs: flesh out all the operations. the only
400 things that need dealing with are the Initialize method's handling
401 of a few parameters, and the ApplicationName property.
403 2006-03-23 Chris Toshok <toshok@ximian.com>
405 * DefaultAuthenticationModule.cs (OnDefaultAuthentication): always
406 set Thread.CurrentPrincipal, not just if we set it to the
409 2006-03-22 Chris Toshok <toshok@ximian.com>
411 * RoleManagerModule.cs: implement using info in Shackow's book.
413 * RolePrincipal.cs: flesh this out a bit more.
415 * DefaultAuthenticationModule.cs (OnDefaultAuthentication):
416 according to Shackow's book, this sets Thread.CurrentPrincipal as
417 well as HttpContext.Current.User.
419 2006-02-28 Chris Toshok <toshok@ximian.com>
421 * FormsAuthentication.cs: corcompare work.
423 * MembershipCreateUserException.cs: same.
425 * MembershipPasswordException.cs: same.
427 * AnonymousIdentificationModule.cs: same.
429 2006-02-01 Chris Toshok <toshok@ximian.com>
431 * FormsAuthentication.cs, Membership.cs,
432 FormsAuthenticationModule.cs, UrlAuthorizationModule.cs: oops,
433 replace GetWebApplicationSection with GetSection.
435 2006-02-01 Chris Toshok <toshok@ximian.com>
437 * FormsAuthentication.cs: CONFIGURATION_2_0 => NET_2_0.
438 simplifies the ifdef mess quite a bit.
440 * Membership.cs: same.
442 * FormsAuthenticationModule.cs: same.
444 * UrlAuthorizationModule.cs: same.
446 2006-01-04 Chris Toshok <toshok@ximian.com>
448 * FormsAuthentication.cs (Authenticate): add CONFIGURATION_2_0
455 2006-01-04 Chris Toshok <toshok@ximian.com>
457 * Membership.cs (.cctor): enable the code here under
460 2006-01-03 Chris Toshok <toshok@ximian.com>
462 * UrlAuthorizationModule.cs (OnAuthorizeRequest): add
463 CONFIGURATION_2_0 code here.
465 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
467 * FormsAuthentication.cs: don't end the request in
468 RedirectFromLoginPage.
470 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
472 * FormsAuthenticationModule.cs: expire the cookie. Fixes bug #77043.
473 Patch by Cyrille Colin.
475 2005-12-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
477 * FormsAuthenticationModule.cs: ignore any exception thrown when mapping
478 the provided virtual path to the physical one. Patch by Cyrille Colin.
480 2005-11-28 Chris Toshok <toshok@ximian.com>
482 * FormsAuthenticationModule.cs (OnAuthenticateRequest):
483 CONFIGURATION_2_0 work.
484 (OnEndRequest): same.
486 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
488 * DefaultAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
489 * DefaultAuthenticationModule.cs: Added LinkDemand for Minimal. Added
490 Demand for UnmanagedCode on constructor.
491 * FileAuthorizationModule.cs: Added LinkDemand for Minimal. Added
492 Demand for UnmanagedCode on constructor.
493 * FormsAuthentication.cs: Added LinkDemand for Minimal.
494 * FormsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
495 * FormsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
496 Demand for UnmanagedCode on constructor.
497 * FormsAuthenticationTicket.cs: Added LinkDemand for Minimal.
498 * FormsIdentity.cs: Added LinkDemand for Minimal.
499 * PassportAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
500 * PassportAuthenticationModule.cs: Added LinkDemand for Minimal. Added
501 Demand for UnmanagedCode on constructor.
502 * PassportIdentity.cs: Added LinkDemand for Minimal. Added Demand for
503 UnmanagedCode on constructor.
504 * UrlAuthorizationModule.cs: Added LinkDemand for Minimal. Added
505 Demand for UnmanagedCode on constructor.
506 * WindowsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
507 * WindowsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
508 Demand for UnmanagedCode on constructor.
510 2005-09-01 Sebastien Pouliot <sebastien@ximian.com>
512 * FormsAuthenticationEventArgs.cs: Ensure the setter for User is
513 protected by a demand for ControlPrincipal.
514 * PassportAuthenticationEventArgs.cs: Ensure the setter for User is
515 protected by a demand for ControlPrincipal.
516 * WindowsAuthenticationEventArgs.cs: Ensure the setter for User is
517 protected by a demand for ControlPrincipal.
519 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
521 * FormsAuthentication.cs: With 2.0 we can get the default properties
522 and call Initialize without a NRE.
524 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
526 * ActiveDirectoryConnectionProtection.cs: New (2.0) enum.
527 * ActiveDirectoryMembershipProvider.cs: Fixed 2.0 API.
528 * AnonymousIdentificationEventArgs.cs: Fixed AnonymousID property case.
529 * AnonymousIdentificationModule.cs: Fixed 2.0 API.
530 * FileAuthorizationModule.cs: Added static CheckFileAccessForUser in
532 * FormsAuthentication.cs: Added missing 2.0 properties with their
534 * MembershipCreateStatus.cs: Fixed enum values/names.
535 * MembershipProvider.cs: Added stub for [Decrypt|Encrypt]Password. Both
536 methods don't seems to work without an active provider.
537 * PassportIdentity.cs: Added IDispose for 2.0 profile.
538 * Roles.cs: Added missing beta2 bits and default values (which are the
539 only things working without a role provider (web.config).
540 * RolePrincipal.cs: Fixed 2.0 API. Implemented a few bits.
541 * SqlRoleProvider.cs: Fixed 2.0 API.
542 * UrlAuthorizationModule.cs: Added static CheckUrlAccessForPrincipal in
545 2005-08-24 Sebastien Pouliot <sebastien@ximian.com>
547 * MembershipUserCollection.cs: Fix exceptions.
549 2005-08-22 Sebastien Pouliot <sebastien@ximian.com>
551 * FormsAuthentication.cs: Add some 2.0 stuff required for Login*
554 2005-08-18 Sebastien Pouliot <sebastien@ximian.com>
556 * Membership.cs: Commented unworking parts of the .cctor to allow
557 testing the Login control.
558 * MembershipProviderCollection.cs: Fixed exception handling.
559 * SqlMembershipProvider.cs: Don't throw NotImplementedException
560 everywhere so Membership's .cctor (somewhat) works. Removed
561 Description property (not in beta2).
563 2005-07-28 Gonzalo Paniagua Javier <gonzalo@ximian.com>
565 * FormsAuthentication.cs: allow hardware acceleration support if
566 available. Sebastien dixit.
568 2005-07-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
570 * FormsAuthentication.cs: the init_vector must be the same accross
571 restarts, otherwise the cookie does not work even when a decryption
572 key is provided. Initialize it to the bytes of the cookie name. Fixes
575 2005-07-25 Eyal Alaluf <eyala@mainsoft.com>
577 * FormsAuthenticationModule.cs: Check for null config
579 2005-07-25 Miguel de Icaza <miguel@novell.com>
581 * FormsAuthentication.cs (SignOut): Force the cookie to have it
584 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
586 * FormsAuthentication.cs: my previous patch missed a "small" detail: it
587 didn't include the verification key when computing/checking the
588 validation hash. Now this is really a MAC or HMAC or...
590 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
592 * FormsAuthentication.cs:
593 * FormsAuthenticationTicket.cs: added support for validation and
594 encryption of the auth. cookie and improved serialization of the ticket.
596 2005-07-01 Lluis Sanchez Gual <lluis@novell.com>
598 * Membership.cs: Read provider info from the config file.
600 2005-06-10 Lluis Sanchez Gual <lluis@novell.com>
602 * MembershipUserCollection.cs:
603 * MembershipPasswordException.cs:
604 * RoleProviderCollection.cs:
605 * ActiveDirectoryMembershipProvider.cs:
606 * SqlMembershipProvider.cs:
607 * MembershipProvider.cs:
608 * SqlRoleProvider.cs:
611 * MembershipProviderCollection.cs:
613 * RoleProvider.cs: Track api changes in ASP.NET 2.0. Implemented
614 some missing methods.
616 * AccessRoleProvider.cs:
617 * AccessMembershipProvider.cs: Removed.
619 * MembershipCreateUserException.cs:
620 * MembershipValidatePasswordEventHandler.cs:
621 * ValidatePasswordEventArgs.cs: Implemented.
623 2005-05-21 Sebastien Pouliot <sebastien@ximian.com>
625 * FormsAuthentication.cs: Hash the UTF8 representation of the password
626 strings (to be compatible with Microsoft implementation).
628 2005-04-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
630 * FormsAuthentication.cs:
631 * PassportAuthenticationModule.cs:
632 * WindowsAuthenticationModule.cs: removed warnings.
634 2005-03-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
636 * FormsAuthenticationModule.cs: fix for bug 73545, which caused
637 authentication not to work when the cookie was not persistent.
638 Patch by Ilya Kharmatsky (Mainsoft).
640 2005-02-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
642 * FormsAuthentication.cs: make the string to be stored in a config.
643 file uppercase... See bug #72557.
645 2005-02-06 Gonzalo Paniagua Javier <gonzalo@ximian.com>
647 * FormsAuthentication.cs: fixed typo when getting the hash for the
648 password in SHA1 and MD5. Thanks to Tadas Dailyda.
649 Lock on a static object instead of typeof(FormsAuthentication).
651 2004-11-18 Lluis Sanchez Gual <lluis@novell.com>
653 * RoleProvider.cs, Roles.cs, SqlRoleProvider.cs, RoleProviderCollection.cs,
654 AccessRoleProvider.cs: IRoleProvider has been renamed to ProviderBase.
655 * IMembershipProvider.cs: Deleted.
656 * MembershipProvider.cs, AccessMembershipProvider.cs, MembershipUser.cs,
657 Membership.cs, ADMembershipProvider.cs, SqlMembershipProvider.cs
658 MembershipProviderCollection.cs: MembershipProvider has been deleted
659 and replaced by the abstract class MembershipProvider.
660 * MembershipProviderCollection.cs: Minor fixes.
661 * ADMembershipProvider.cs: Renamed to ActiveDirectoryMembershipProvider.cs.
663 2004-11-15 Lluis Sanchez Gual <lluis@novell.com>
665 * RoleProviderCollection.cs, MembershipProviderCollection.cs:
668 2004-08-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
670 * FormsAuthentication.cs: patch by Jim Pease to fix the date on renewal.
672 2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
674 * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
675 the cookie if SlidingExpiration is set. Thanks to Jim Pease.
677 2004-08-03 Sanjay Gupta <gsanjay@novell.com>
679 * MembershipSortOptions.cs:
680 * MembershipPasswordFormat.cs:
681 * MembershipOnlineStatus.cs:
682 * MembershipCreateStatus.cs:
683 * CookieProtection.cs: minor modifications.
685 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
687 * FormsAuthentication.cs: Undo last change.
689 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
691 * FormsAuthentication.cs: go to loginUrl from web.config settings
692 before try with the default ones.
694 2004-06-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
696 * DefaultAuthenticationModule.cs: set the IPrincipal for this thread
697 once we have a user. Fixes bug #59683.
699 2004-04-21 Gonzalo Paniagua Javier <gonzalo@ximian.com>
701 * FormsAuthenticationModule.cs: re-read configuration files if needed
702 when determining if forms auth. is used.
704 2004-01-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
706 * FormsAuthentication.cs: added RequireSSL and SlidingExpiration.
708 2004-01-11 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
710 * PassportIdentity.cs: Added v 1.1 members
712 2003-11-25 Ben Maurer <bmaurer@users.sourceforge.net>
714 * AccessMembershipProvider.cs: New v2 file
715 * AccessRoleProvider.cs: New v2 file
716 * ADMembershipProvider.cs: New v2 file
717 * AnonymousIdentificationEventArgs.cs: New v2 file
718 * AnonymousIdentificationEventHandler.cs: New v2 file
719 * AnonymousIdentificationModule.cs: New v2 file
720 * CookieProtection.cs: New v2 file
721 * IMembershipProvider.cs: New v2 file
722 * IRoleProvider.cs: New v2 file
723 * Membership.cs: New v2 file
724 * MembershipCreateStatus.cs: New v2 file
725 * MembershipCreateUserException.cs: New v2 file
726 * MembershipOnlineStatus.cs: New v2 file
727 * MembershipPasswordException.cs: New v2 file
728 * MembershipPasswordFormat.cs: New v2 file
729 * MembershipProviderCollection.cs: New v2 file
730 * MembershipSortOptions.cs: New v2 file
731 * MembershipUser.cs: New v2 file
732 * MembershipUserCollection.cs: New v2 file
733 * RoleManagerEventArgs.cs: New v2 file
734 * RoleManagerEventHandler.cs: New v2 file
735 * RoleManagerModule.cs: New v2 file
736 * RolePrincipal.cs: New v2 file
737 * RoleProviderCollection.cs: New v2 file
738 * Roles.cs: New v2 file
739 * SqlMembershipProvider.cs: New v2 file
740 * SqlRoleProvider.cs: New v2 file
742 2003-11-05 Gonzalo Paniagua Javier <gonzalo@ximian.com>
744 * FormsAuthentication.cs: encoding updates.
746 2003-10-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
748 * FormsAuthenticationModule.cs: fixed for applications other than /.
750 2003-08-27 Gonzalo Paniagua Javier <gonzalo@ximian.com>
752 * UrlAuthorizationModule.cs: fixed description for status code.
754 2003-07-31 Gonzalo Paniagua Javier <gonzalo@ximian.com>
756 * FormsAuthenticationModule.cs: really renew the ticket. Thanks to
757 Jens Thiel <Jens@Thiel.DE>.
759 2003-02-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
761 * UrlAuthorizationModule.cs: tell the application not to run any other
762 step apart from EndRequest.
764 2003-02-12 Gonzalo Paniagua Javier <gonzalo@ximian.com>
766 * FormsAuthentication.cs: implemented RedirectFromLoginPage and
769 * FormsAuthenticationModule.cs: redirect to the login page when a 401
772 * UrlAuthorizationModule.cs: check for valid user or render error page.
774 2003-01-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
776 * DefaultAuthenticationModule.cs: implemented. It just create a default
777 unauthenticated user when no one else provided one.
779 * FormsAuthenticationModule.cs: removed debug output.
781 2002-12-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
783 * FormsAuthenticationModule.cs: remove debug lines.
785 2002-12-19 Gonzalo Paniagua Javier <gonzalo@ximian.com>
787 * FormsAuthentication.cs: return a null ticket when an exception is
788 thrown creating it. Implemented RenewTicketIfOld.
790 * FormsAuthenticationModule.cs: implemented event handlers for
791 AuthenticateRequest and EndRequest.
793 * FormsAuthenticationTicket.cs: implemented SetDates and Clone methods.
795 2002-12-18 Gonzalo Paniagua Javier <gonzalo@ximian.com>
797 * FormsAuthentication.cs: implemented GetAuthCookie, SetAuthCookie,
798 SignOut, FormsCookieName and FormsCookiePath.
800 2002-12-17 Gonzalo Paniagua Javier <gonzalo@ximian.com>
802 * FormsAuthentication.cs: implemented Authenticate, unencrypted Encrypt
803 and Decrypt, HashPasswordForStoringInConfigFile and Initialize.
805 * FormsAuthenticationTicket.cs: set cookiePath to the default when no
808 2002-08-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
810 * DefaultAuthenticationEventHandler.cs:
811 * DefaultAuthenticationModule.cs:
812 * FileAuthorizationModule.cs:
813 * FormsAuthentication.cs:
814 * FormsAuthenticationEventArgs.cs:
815 * FormsAuthenticationEventHandler.cs:
816 * FormsAuthenticationModule.cs:
817 * FormsAuthenticationTicket.cs:
819 * PassportAuthenticationEventArgs.cs:
820 * PassportAuthenticationEventHandler.cs:
821 * PassportAuthenticationModule.cs:
822 * PassportIdentity.cs:
823 * UrlAuthorizationModule.cs:
824 * WindowsAuthenticationEventArgs.cs:
825 * WindowsAuthenticationEventHandler.cs:
826 * WindowsAuthenticationModule.cs: new files. Some of them implemented,
827 some others stubbed out.
829 2002-06-03 Gonzalo Paniagua Javier <gonzalo@ximian.com>
831 * DefaultAuthenticationEventArgs.cs: added file.