V9: Fix for migration of non-default configurated users/members (#11684)

* https://github.com/umbraco/Umbraco-CMS/issues/11366 Fallback to try login using super legacy HMACSHA1 even when the algorithm is stated as being HMACSHA256. The issue is that v8 saves HMACSHA256 on the user, but when configured to use legacy encoding it actually uses HMACSHA1 * Support migration of members with: UseLegacyEncoding+Clear UseLegacyEncoding+Encrypted (Requires machine key) UseLegacyEncoding+Hashed * Fixes unit tests * Avoid exceptions + unit tests * Save unknown algorithm if we dont know it, instead of persisting a wrong algorithm. * Added setting to enable clear text password rehashes. * Removed support for migration of clear text passwords * Fixed unit test
2021-12-02 11:54:24 +01:00
parent fce97314bd
commit 915f1cb34c
12 changed files with 224 additions and 65 deletions
--- a/src/Umbraco.Core/DependencyInjection/UmbracoBuilder.Configuration.cs
+++ b/src/Umbraco.Core/DependencyInjection/UmbracoBuilder.Configuration.cs
@@ -73,6 +73,7 @@ namespace Umbraco.Cms.Core.DependencyInjection
                .AddUmbracoOptions<RichTextEditorSettings>()
                .AddUmbracoOptions<BasicAuthSettings>()
                .AddUmbracoOptions<RuntimeMinificationSettings>()
+                .AddUmbracoOptions<LegacyPasswordMigrationSettings>()
                .AddUmbracoOptions<PackageMigrationSettings>();

            return builder;