+2010-06-19 Marek Habersack <mhabersack@novell.com>
+
+ * FormsAuthentication.cs: Authenticate must compare stored and
+ newly hashed passwords case-insensitively. Fixes bug #601727
+
+2010-04-29 Marek Habersack <mhabersack@novell.com>
+
+ * FormsAuthentication.cs: set authentication/expiry cookie
+ domain. Fixes bug #600740. Patch from Stuart Siegrist
+ <stuart@cbtnuggets.com>, thanks!
+
+2010-04-28 Marek Habersack <mhabersack@novell.com>
+
+ * RolePrincipal.cs: class is not sealed in 4.0
+
+ * MembershipUser.cs: type forwarded to
+ System.Web.ApplicationServices in 4.0.
+ In the 4.0 profile, a MembershipHelper instance is created using
+ reflection, so that the Membership class and password
+ encryption/decryption services can be accessed without referencing
+ System.Web
+
+ * MembershipProvider.cs: type forwarded to
+ System.Web.ApplicationServices in 4.0.
+ {Encrypt,Decrypt}Password implementations moved to
+ MembershipHelper.
+ Added new EncryptPassword overload for 4.0
+
+ * MembershipHelper.cs: a helper class to handle password
+ encryption/decryption and to forward requests for certain
+ Membership properties in 4.0. It is used also in 2.0 to keep code
+ cleaner. System.Web.ApplicationServices uses it to access the
+ Membership class without having to reference System.Web
+
+ * MembershipCreateStatus.cs, MembershipCreateUserException.cs,
+ MembershipPasswordException.cs, MembershipPasswordFormat.cs,
+ MembershipProviderCollection.cs, MembershipUserCollection.cs,
+ MembershipValidatePasswordEventHandler.cs, RoleProvider.cs,
+ ValidatePasswordEventArgs.cs:
+ types forwarded to System.Web.ApplicationServices in 4.0
+
+ * FormsIdentity.cs: class is not sealed in 4.0
+
+2010-02-11 Marek Habersack <mhabersack@novell.com>
+
+ * Roles.cs: IsUserInRole checks if username is null or empty
+ before attempting to use it. Patch from Tiaan Geldenhuys
+ <tagdev@gmail.com>. thanks!
+
+2009-09-22 Sebastien Pouliot <sebastien@ximian.com>
+
+ * MembershipProvider.cs: Ensure password decryption is always
+ possible.
+ [Fix bug #538406]
+
+2009-07-09 Gonzalo Paniagua Javier <gonzalo@novell.com>
+
+ * SqliteMembershipProvider.cs:
+ * UrlAuthorizationModule.cs: use GetSection instead of
+ OpenWebConfiguration+GetSection.
+
+2009-05-28 Marek Habersack <mhabersack@novell.com>
+
+ * FormsAuthenticationModule.cs: if forms authentication login URL
+ is not rooted, make it relative to the application root, so that
+ MapPath maps it correctly.
+ Use String.Compare for checking whether requested URL matches the
+ login URL - be case-insensitive when running on Windows or with
+ IOMAP in effect.
+
+2009-03-10 Marek Habersack <mhabersack@novell.com>
+
+ * UrlAuthorizationModule.cs: OnAuthorizeRequest must use the
+ configuration from <location> elements in the config. Fixes bug
+ #467221
+
+2009-02-28 Gonzalo Paniagua Javier <gonzalo@novell.com>
+
+ * FormsAuthentication.cs: use GetWebApplication instead of GetSection
+ for application level configuration.
+
2009-01-12 Marek Habersack <mhabersack@novell.com>
* MembershipUserCollection.cs: CopyTo overloads use store.Values
as the copy source. Fixes bug #464783. Patch from Christian
Prochnow <cproch@seculogix.de>
+2008-12-25 Gonzalo Paniagua Javier <gonzalo@novell.com>
+
+ * SqlRoleProvider.cs:
+ * SqlMembershipProvider.cs: use IndexOf (char) instead of
+ IndexOf (string).
+
2008-08-20 Marek Habersack <mhabersack@novell.com>
* Membership.cs: implemented the HashAlgorithmType property. Fixes