1 2006-05-01 Chris Toshok <toshok@ximian.com>
3 * MembershipProvider.cs (GetAlg): switch from Exception to
4 ProviderException to match MS behavior (and fix the unit test.)
6 * Membership.cs (GeneratePassword): implement.
8 2006-05-01 Chris Toshok <toshok@ximian.com>
10 * SqlMembershipProvider.cs: lots more work. checking this in in
11 its present state because I don't want to lose it. It still needs
14 * Membership.cs (.cctor): remove the fallback.
15 (ValidatingPassword): remove the MonoTODO.
17 * MembershipProvider.cs (DecryptPassword): implement.
18 (EncryptPassword): implement.
19 (GetAlg): helper function for Decrypt/EncryptPassword.
22 2006-04-27 Chris Toshok <toshok@ximian.com>
24 * SqlMembershipProvider.cs (GeneratePassword): call
25 Membership.GeneratePassword with the configured minimum strength
28 2006-04-27 Chris Toshok <toshok@ximian.com>
30 * SqlMembershipProvider.cs (UnlockUser): fix sql query, and move
31 the CheckPararm call to the top of the method.
33 2006-04-12 Chris Toshok <toshok@ximian.com>
35 * SqlMembershipProvider.cs: commit initial pass at
36 SqlMembershipProvider work. lots of stuff untested in here.
38 2006-04-11 Chris Toshok <toshok@ximian.com>
40 * MembershipUser.cs (.ctor): per Shackow's book, all DateTime's
41 are converted using ToUniversalTime when passed into this class.
42 (UpdateSelf): update ourselves from the passed in MembershipUser,
43 swallowing NotSupportedExceptions.
44 (UpdateUser): fetch a new MembershipUser from the db and call
46 (ChangePassword): call UpdateUser after changing the password.
47 (ChangePasswordQuestionAndAnswer): same.
48 (ResetPassword): same.
49 (UnlockUser): same. Also, don't explicitly set isLockedOut.
50 It'll be updated in UpdateSelf.
51 (CreationDate): getter calls ToLocalTime, setter calls
53 (LastActivityDate): same.
54 (LastLoginDate): same.
55 (LastPasswordChangedDate): same.
56 (LastLockoutDate): same.
58 * Membership.cs (.cctor): use
59 ProvidersHelper.InstantitateProviders, and remove some unnecessary
62 2006-03-29 Chris Toshok <toshok@ximian.com>
64 * SqlRoleProvider.cs: do the LOWER's in SQL, not in C#.
66 2006-03-23 Chris Toshok <toshok@ximian.com>
68 * Roles.cs: make this 2.0 configuration aware.
70 * SqlRoleProvider.cs: flesh out all the operations. the only
71 things that need dealing with are the Initialize method's handling
72 of a few parameters, and the ApplicationName property.
74 2006-03-23 Chris Toshok <toshok@ximian.com>
76 * DefaultAuthenticationModule.cs (OnDefaultAuthentication): always
77 set Thread.CurrentPrincipal, not just if we set it to the
80 2006-03-22 Chris Toshok <toshok@ximian.com>
82 * RoleManagerModule.cs: implement using info in Shackow's book.
84 * RolePrincipal.cs: flesh this out a bit more.
86 * DefaultAuthenticationModule.cs (OnDefaultAuthentication):
87 according to Shackow's book, this sets Thread.CurrentPrincipal as
88 well as HttpContext.Current.User.
90 2006-02-28 Chris Toshok <toshok@ximian.com>
92 * FormsAuthentication.cs: corcompare work.
94 * MembershipCreateUserException.cs: same.
96 * MembershipPasswordException.cs: same.
98 * AnonymousIdentificationModule.cs: same.
100 2006-02-01 Chris Toshok <toshok@ximian.com>
102 * FormsAuthentication.cs, Membership.cs,
103 FormsAuthenticationModule.cs, UrlAuthorizationModule.cs: oops,
104 replace GetWebApplicationSection with GetSection.
106 2006-02-01 Chris Toshok <toshok@ximian.com>
108 * FormsAuthentication.cs: CONFIGURATION_2_0 => NET_2_0.
109 simplifies the ifdef mess quite a bit.
111 * Membership.cs: same.
113 * FormsAuthenticationModule.cs: same.
115 * UrlAuthorizationModule.cs: same.
117 2006-01-04 Chris Toshok <toshok@ximian.com>
119 * FormsAuthentication.cs (Authenticate): add CONFIGURATION_2_0
126 2006-01-04 Chris Toshok <toshok@ximian.com>
128 * Membership.cs (.cctor): enable the code here under
131 2006-01-03 Chris Toshok <toshok@ximian.com>
133 * UrlAuthorizationModule.cs (OnAuthorizeRequest): add
134 CONFIGURATION_2_0 code here.
136 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
138 * FormsAuthentication.cs: don't end the request in
139 RedirectFromLoginPage.
141 2005-12-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
143 * FormsAuthenticationModule.cs: expire the cookie. Fixes bug #77043.
144 Patch by Cyrille Colin.
146 2005-12-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
148 * FormsAuthenticationModule.cs: ignore any exception thrown when mapping
149 the provided virtual path to the physical one. Patch by Cyrille Colin.
151 2005-11-28 Chris Toshok <toshok@ximian.com>
153 * FormsAuthenticationModule.cs (OnAuthenticateRequest):
154 CONFIGURATION_2_0 work.
155 (OnEndRequest): same.
157 2005-09-09 Sebastien Pouliot <sebastien@ximian.com>
159 * DefaultAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
160 * DefaultAuthenticationModule.cs: Added LinkDemand for Minimal. Added
161 Demand for UnmanagedCode on constructor.
162 * FileAuthorizationModule.cs: Added LinkDemand for Minimal. Added
163 Demand for UnmanagedCode on constructor.
164 * FormsAuthentication.cs: Added LinkDemand for Minimal.
165 * FormsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
166 * FormsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
167 Demand for UnmanagedCode on constructor.
168 * FormsAuthenticationTicket.cs: Added LinkDemand for Minimal.
169 * FormsIdentity.cs: Added LinkDemand for Minimal.
170 * PassportAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
171 * PassportAuthenticationModule.cs: Added LinkDemand for Minimal. Added
172 Demand for UnmanagedCode on constructor.
173 * PassportIdentity.cs: Added LinkDemand for Minimal. Added Demand for
174 UnmanagedCode on constructor.
175 * UrlAuthorizationModule.cs: Added LinkDemand for Minimal. Added
176 Demand for UnmanagedCode on constructor.
177 * WindowsAuthenticationEventArgs.cs: Added LinkDemand for Minimal.
178 * WindowsAuthenticationModule.cs: Added LinkDemand for Minimal. Added
179 Demand for UnmanagedCode on constructor.
181 2005-09-01 Sebastien Pouliot <sebastien@ximian.com>
183 * FormsAuthenticationEventArgs.cs: Ensure the setter for User is
184 protected by a demand for ControlPrincipal.
185 * PassportAuthenticationEventArgs.cs: Ensure the setter for User is
186 protected by a demand for ControlPrincipal.
187 * WindowsAuthenticationEventArgs.cs: Ensure the setter for User is
188 protected by a demand for ControlPrincipal.
190 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
192 * FormsAuthentication.cs: With 2.0 we can get the default properties
193 and call Initialize without a NRE.
195 2005-08-25 Sebastien Pouliot <sebastien@ximian.com>
197 * ActiveDirectoryConnectionProtection.cs: New (2.0) enum.
198 * ActiveDirectoryMembershipProvider.cs: Fixed 2.0 API.
199 * AnonymousIdentificationEventArgs.cs: Fixed AnonymousID property case.
200 * AnonymousIdentificationModule.cs: Fixed 2.0 API.
201 * FileAuthorizationModule.cs: Added static CheckFileAccessForUser in
203 * FormsAuthentication.cs: Added missing 2.0 properties with their
205 * MembershipCreateStatus.cs: Fixed enum values/names.
206 * MembershipProvider.cs: Added stub for [Decrypt|Encrypt]Password. Both
207 methods don't seems to work without an active provider.
208 * PassportIdentity.cs: Added IDispose for 2.0 profile.
209 * Roles.cs: Added missing beta2 bits and default values (which are the
210 only things working without a role provider (web.config).
211 * RolePrincipal.cs: Fixed 2.0 API. Implemented a few bits.
212 * SqlRoleProvider.cs: Fixed 2.0 API.
213 * UrlAuthorizationModule.cs: Added static CheckUrlAccessForPrincipal in
216 2005-08-24 Sebastien Pouliot <sebastien@ximian.com>
218 * MembershipUserCollection.cs: Fix exceptions.
220 2005-08-22 Sebastien Pouliot <sebastien@ximian.com>
222 * FormsAuthentication.cs: Add some 2.0 stuff required for Login*
225 2005-08-18 Sebastien Pouliot <sebastien@ximian.com>
227 * Membership.cs: Commented unworking parts of the .cctor to allow
228 testing the Login control.
229 * MembershipProviderCollection.cs: Fixed exception handling.
230 * SqlMembershipProvider.cs: Don't throw NotImplementedException
231 everywhere so Membership's .cctor (somewhat) works. Removed
232 Description property (not in beta2).
234 2005-07-28 Gonzalo Paniagua Javier <gonzalo@ximian.com>
236 * FormsAuthentication.cs: allow hardware acceleration support if
237 available. Sebastien dixit.
239 2005-07-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
241 * FormsAuthentication.cs: the init_vector must be the same accross
242 restarts, otherwise the cookie does not work even when a decryption
243 key is provided. Initialize it to the bytes of the cookie name. Fixes
246 2005-07-25 Eyal Alaluf <eyala@mainsoft.com>
248 * FormsAuthenticationModule.cs: Check for null config
250 2005-07-25 Miguel de Icaza <miguel@novell.com>
252 * FormsAuthentication.cs (SignOut): Force the cookie to have it
255 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
257 * FormsAuthentication.cs: my previous patch missed a "small" detail: it
258 didn't include the verification key when computing/checking the
259 validation hash. Now this is really a MAC or HMAC or...
261 2005-07-25 Gonzalo Paniagua Javier <gonzalo@ximian.com>
263 * FormsAuthentication.cs:
264 * FormsAuthenticationTicket.cs: added support for validation and
265 encryption of the auth. cookie and improved serialization of the ticket.
267 2005-07-01 Lluis Sanchez Gual <lluis@novell.com>
269 * Membership.cs: Read provider info from the config file.
271 2005-06-10 Lluis Sanchez Gual <lluis@novell.com>
273 * MembershipUserCollection.cs:
274 * MembershipPasswordException.cs:
275 * RoleProviderCollection.cs:
276 * ActiveDirectoryMembershipProvider.cs:
277 * SqlMembershipProvider.cs:
278 * MembershipProvider.cs:
279 * SqlRoleProvider.cs:
282 * MembershipProviderCollection.cs:
284 * RoleProvider.cs: Track api changes in ASP.NET 2.0. Implemented
285 some missing methods.
287 * AccessRoleProvider.cs:
288 * AccessMembershipProvider.cs: Removed.
290 * MembershipCreateUserException.cs:
291 * MembershipValidatePasswordEventHandler.cs:
292 * ValidatePasswordEventArgs.cs: Implemented.
294 2005-05-21 Sebastien Pouliot <sebastien@ximian.com>
296 * FormsAuthentication.cs: Hash the UTF8 representation of the password
297 strings (to be compatible with Microsoft implementation).
299 2005-04-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
301 * FormsAuthentication.cs:
302 * PassportAuthenticationModule.cs:
303 * WindowsAuthenticationModule.cs: removed warnings.
305 2005-03-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
307 * FormsAuthenticationModule.cs: fix for bug 73545, which caused
308 authentication not to work when the cookie was not persistent.
309 Patch by Ilya Kharmatsky (Mainsoft).
311 2005-02-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
313 * FormsAuthentication.cs: make the string to be stored in a config.
314 file uppercase... See bug #72557.
316 2005-02-06 Gonzalo Paniagua Javier <gonzalo@ximian.com>
318 * FormsAuthentication.cs: fixed typo when getting the hash for the
319 password in SHA1 and MD5. Thanks to Tadas Dailyda.
320 Lock on a static object instead of typeof(FormsAuthentication).
322 2004-11-18 Lluis Sanchez Gual <lluis@novell.com>
324 * RoleProvider.cs, Roles.cs, SqlRoleProvider.cs, RoleProviderCollection.cs,
325 AccessRoleProvider.cs: IRoleProvider has been renamed to ProviderBase.
326 * IMembershipProvider.cs: Deleted.
327 * MembershipProvider.cs, AccessMembershipProvider.cs, MembershipUser.cs,
328 Membership.cs, ADMembershipProvider.cs, SqlMembershipProvider.cs
329 MembershipProviderCollection.cs: MembershipProvider has been deleted
330 and replaced by the abstract class MembershipProvider.
331 * MembershipProviderCollection.cs: Minor fixes.
332 * ADMembershipProvider.cs: Renamed to ActiveDirectoryMembershipProvider.cs.
334 2004-11-15 Lluis Sanchez Gual <lluis@novell.com>
336 * RoleProviderCollection.cs, MembershipProviderCollection.cs:
339 2004-08-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
341 * FormsAuthentication.cs: patch by Jim Pease to fix the date on renewal.
343 2004-08-22 Gonzalo Paniagua Javier <gonzalo@ximian.com>
345 * FormsAuthenticationModule.cs: don't renew expired cookies. Only renew
346 the cookie if SlidingExpiration is set. Thanks to Jim Pease.
348 2004-08-03 Sanjay Gupta <gsanjay@novell.com>
350 * MembershipSortOptions.cs:
351 * MembershipPasswordFormat.cs:
352 * MembershipOnlineStatus.cs:
353 * MembershipCreateStatus.cs:
354 * CookieProtection.cs: minor modifications.
356 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
358 * FormsAuthentication.cs: Undo last change.
360 2004-06-12 Pedro Martnez Juli <yoros@wanadoo.es>
362 * FormsAuthentication.cs: go to loginUrl from web.config settings
363 before try with the default ones.
365 2004-06-11 Gonzalo Paniagua Javier <gonzalo@ximian.com>
367 * DefaultAuthenticationModule.cs: set the IPrincipal for this thread
368 once we have a user. Fixes bug #59683.
370 2004-04-21 Gonzalo Paniagua Javier <gonzalo@ximian.com>
372 * FormsAuthenticationModule.cs: re-read configuration files if needed
373 when determining if forms auth. is used.
375 2004-01-23 Gonzalo Paniagua Javier <gonzalo@ximian.com>
377 * FormsAuthentication.cs: added RequireSSL and SlidingExpiration.
379 2004-01-11 Andreas Nahr <ClassDevelopment@A-SoftTech.com>
381 * PassportIdentity.cs: Added v 1.1 members
383 2003-11-25 Ben Maurer <bmaurer@users.sourceforge.net>
385 * AccessMembershipProvider.cs: New v2 file
386 * AccessRoleProvider.cs: New v2 file
387 * ADMembershipProvider.cs: New v2 file
388 * AnonymousIdentificationEventArgs.cs: New v2 file
389 * AnonymousIdentificationEventHandler.cs: New v2 file
390 * AnonymousIdentificationModule.cs: New v2 file
391 * CookieProtection.cs: New v2 file
392 * IMembershipProvider.cs: New v2 file
393 * IRoleProvider.cs: New v2 file
394 * Membership.cs: New v2 file
395 * MembershipCreateStatus.cs: New v2 file
396 * MembershipCreateUserException.cs: New v2 file
397 * MembershipOnlineStatus.cs: New v2 file
398 * MembershipPasswordException.cs: New v2 file
399 * MembershipPasswordFormat.cs: New v2 file
400 * MembershipProviderCollection.cs: New v2 file
401 * MembershipSortOptions.cs: New v2 file
402 * MembershipUser.cs: New v2 file
403 * MembershipUserCollection.cs: New v2 file
404 * RoleManagerEventArgs.cs: New v2 file
405 * RoleManagerEventHandler.cs: New v2 file
406 * RoleManagerModule.cs: New v2 file
407 * RolePrincipal.cs: New v2 file
408 * RoleProviderCollection.cs: New v2 file
409 * Roles.cs: New v2 file
410 * SqlMembershipProvider.cs: New v2 file
411 * SqlRoleProvider.cs: New v2 file
413 2003-11-05 Gonzalo Paniagua Javier <gonzalo@ximian.com>
415 * FormsAuthentication.cs: encoding updates.
417 2003-10-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
419 * FormsAuthenticationModule.cs: fixed for applications other than /.
421 2003-08-27 Gonzalo Paniagua Javier <gonzalo@ximian.com>
423 * UrlAuthorizationModule.cs: fixed description for status code.
425 2003-07-31 Gonzalo Paniagua Javier <gonzalo@ximian.com>
427 * FormsAuthenticationModule.cs: really renew the ticket. Thanks to
428 Jens Thiel <Jens@Thiel.DE>.
430 2003-02-13 Gonzalo Paniagua Javier <gonzalo@ximian.com>
432 * UrlAuthorizationModule.cs: tell the application not to run any other
433 step apart from EndRequest.
435 2003-02-12 Gonzalo Paniagua Javier <gonzalo@ximian.com>
437 * FormsAuthentication.cs: implemented RedirectFromLoginPage and
440 * FormsAuthenticationModule.cs: redirect to the login page when a 401
443 * UrlAuthorizationModule.cs: check for valid user or render error page.
445 2003-01-04 Gonzalo Paniagua Javier <gonzalo@ximian.com>
447 * DefaultAuthenticationModule.cs: implemented. It just create a default
448 unauthenticated user when no one else provided one.
450 * FormsAuthenticationModule.cs: removed debug output.
452 2002-12-20 Gonzalo Paniagua Javier <gonzalo@ximian.com>
454 * FormsAuthenticationModule.cs: remove debug lines.
456 2002-12-19 Gonzalo Paniagua Javier <gonzalo@ximian.com>
458 * FormsAuthentication.cs: return a null ticket when an exception is
459 thrown creating it. Implemented RenewTicketIfOld.
461 * FormsAuthenticationModule.cs: implemented event handlers for
462 AuthenticateRequest and EndRequest.
464 * FormsAuthenticationTicket.cs: implemented SetDates and Clone methods.
466 2002-12-18 Gonzalo Paniagua Javier <gonzalo@ximian.com>
468 * FormsAuthentication.cs: implemented GetAuthCookie, SetAuthCookie,
469 SignOut, FormsCookieName and FormsCookiePath.
471 2002-12-17 Gonzalo Paniagua Javier <gonzalo@ximian.com>
473 * FormsAuthentication.cs: implemented Authenticate, unencrypted Encrypt
474 and Decrypt, HashPasswordForStoringInConfigFile and Initialize.
476 * FormsAuthenticationTicket.cs: set cookiePath to the default when no
479 2002-08-26 Gonzalo Paniagua Javier <gonzalo@ximian.com>
481 * DefaultAuthenticationEventHandler.cs:
482 * DefaultAuthenticationModule.cs:
483 * FileAuthorizationModule.cs:
484 * FormsAuthentication.cs:
485 * FormsAuthenticationEventArgs.cs:
486 * FormsAuthenticationEventHandler.cs:
487 * FormsAuthenticationModule.cs:
488 * FormsAuthenticationTicket.cs:
490 * PassportAuthenticationEventArgs.cs:
491 * PassportAuthenticationEventHandler.cs:
492 * PassportAuthenticationModule.cs:
493 * PassportIdentity.cs:
494 * UrlAuthorizationModule.cs:
495 * WindowsAuthenticationEventArgs.cs:
496 * WindowsAuthenticationEventHandler.cs:
497 * WindowsAuthenticationModule.cs: new files. Some of them implemented,
498 some others stubbed out.
500 2002-06-03 Gonzalo Paniagua Javier <gonzalo@ximian.com>
502 * DefaultAuthenticationEventArgs.cs: added file.