Merge remote-tracking branch 'origin/netcore/netcore' into netcore/feature/migrate-logging

# Conflicts:
#	src/Umbraco.Infrastructure/Scheduling/ScheduledPublishing.cs
#	src/Umbraco.Infrastructure/Scheduling/SchedulerComponent.cs
#	src/Umbraco.Tests.Integration/Umbraco.Web.BackOffice/Filters/ContentModelValidatorTests.cs
#	src/Umbraco.Web.BackOffice/Controllers/BackOfficeController.cs
#	src/Umbraco.Web.BackOffice/Controllers/CurrentUserController.cs
#	src/Umbraco.Web.BackOffice/Controllers/MacrosController.cs
#	src/Umbraco.Web.BackOffice/Controllers/PackageInstallController.cs
#	src/Umbraco.Web.BackOffice/Controllers/RedirectUrlManagementController.cs
#	src/Umbraco.Web.BackOffice/Controllers/UsersController.cs
#	src/Umbraco.Web.BackOffice/Filters/ContentModelValidator.cs
#	src/Umbraco.Web.BackOffice/Filters/ContentSaveModelValidator.cs
#	src/Umbraco.Web.BackOffice/Filters/ContentSaveValidationAttribute.cs
#	src/Umbraco.Web.BackOffice/Filters/MediaItemSaveValidationAttribute.cs
#	src/Umbraco.Web.BackOffice/Filters/MediaSaveModelValidator.cs
#	src/Umbraco.Web.BackOffice/Filters/MemberSaveModelValidator.cs
#	src/Umbraco.Web.BackOffice/Filters/MemberSaveValidationAttribute.cs
#	src/Umbraco.Web.BackOffice/Trees/ContentTreeController.cs
#	src/Umbraco.Web.BackOffice/Trees/ContentTreeControllerBase.cs
#	src/Umbraco.Web.BackOffice/Trees/MediaTreeController.cs
#	src/Umbraco.Web.Common/Install/InstallController.cs

src/Umbraco.Web.BackOffice/Controllers/UsersController.cs

@@ -24,8 +24,12 @@ using Umbraco.Core.Media;
 using Umbraco.Core.Models;
 using Umbraco.Core.Models.Membership;
 using Umbraco.Core.Persistence;
+using Umbraco.Core.Security;
 using Umbraco.Core.Services;
 using Umbraco.Core.Strings;
+using Umbraco.Web.Models;
+using Umbraco.Web.Models.ContentEditing;
+using Umbraco.Web.WebApi.Filters;
 using Umbraco.Extensions;
 using Umbraco.Web.BackOffice.Filters;
 using Umbraco.Web.BackOffice.ModelBinders;
@@ -58,7 +62,7 @@ namespace Umbraco.Web.BackOffice.Controllers
         private readonly SecuritySettings _securitySettings;
         private readonly IRequestAccessor _requestAccessor;
         private readonly IEmailSender _emailSender;
-        private readonly IWebSecurity _webSecurity;
+        private readonly IBackofficeSecurityAccessor _backofficeSecurityAccessor;
         private readonly AppCaches _appCaches;
         private readonly IShortStringHelper _shortStringHelper;
         private readonly IUserService _userService;
@@ -81,7 +85,7 @@ namespace Umbraco.Web.BackOffice.Controllers
             IOptions<SecuritySettings> securitySettings,
             IRequestAccessor requestAccessor,
             IEmailSender emailSender,
-            IWebSecurity webSecurity,
+            IBackofficeSecurityAccessor backofficeSecurityAccessor,
             AppCaches appCaches,
             IShortStringHelper shortStringHelper,
             IUserService userService,
@@ -103,7 +107,7 @@ namespace Umbraco.Web.BackOffice.Controllers
             _securitySettings = securitySettings.Value;
             _requestAccessor = requestAccessor;
             _emailSender = emailSender;
-            _webSecurity = webSecurity;
+            _backofficeSecurityAccessor = backofficeSecurityAccessor;
             _appCaches = appCaches;
             _shortStringHelper = shortStringHelper;
             _userService = userService;
@@ -124,7 +128,7 @@ namespace Umbraco.Web.BackOffice.Controllers
         /// <returns></returns>
         public string[] GetCurrentUserAvatarUrls()
         {
-            var urls = _webSecurity.CurrentUser.GetUserAvatarUrls(_appCaches.RuntimeCache, _mediaFileSystem, _imageUrlGenerator);
+            var urls = _backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.GetUserAvatarUrls(_appCaches.RuntimeCache, _mediaFileSystem, _imageUrlGenerator);
             if (urls == null)
                 throw new HttpResponseException(HttpStatusCode.BadRequest, "Could not access Gravatar endpoint");
 
@@ -290,7 +294,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             var hideDisabledUsers = _securitySettings.HideDisabledUsersInBackoffice;
             var excludeUserGroups = new string[0];
-            var isAdmin = _webSecurity.CurrentUser.IsAdmin();
+            var isAdmin = _backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.IsAdmin();
             if (isAdmin == false)
             {
                 //this user is not an admin so in that case we need to exclude all admin users
@@ -299,7 +303,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             var filterQuery = _sqlContext.Query<IUser>();
 
-            if (!_webSecurity.CurrentUser.IsSuper())
+            if (!_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.IsSuper())
             {
                 // only super can see super - but don't use IsSuper, cannot be mapped to SQL
                 //filterQuery.Where(x => !x.IsSuper());
@@ -360,7 +364,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             //Perform authorization here to see if the current user can actually save this user with the info being requested
             var authHelper = new UserEditorAuthorizationHelper(_contentService,_mediaService, _userService, _entityService);
-            var canSaveUser = authHelper.IsAuthorized(_webSecurity.CurrentUser, null, null, null, userSave.UserGroups);
+            var canSaveUser = authHelper.IsAuthorized(_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser, null, null, null, userSave.UserGroups);
             if (canSaveUser == false)
             {
                 throw new HttpResponseException(HttpStatusCode.Unauthorized, canSaveUser.Result);
@@ -444,7 +448,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             //Perform authorization here to see if the current user can actually save this user with the info being requested
             var authHelper = new UserEditorAuthorizationHelper(_contentService,_mediaService, _userService, _entityService);
-            var canSaveUser = authHelper.IsAuthorized(_webSecurity.CurrentUser, user, null, null, userSave.UserGroups);
+            var canSaveUser = authHelper.IsAuthorized(_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser, user, null, null, userSave.UserGroups);
             if (canSaveUser == false)
             {
                 throw new HttpResponseException(HttpStatusCode.Unauthorized, canSaveUser.Result);
@@ -479,7 +483,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             //send the email
 
-            await SendUserInviteEmailAsync(display, _webSecurity.CurrentUser.Name, _webSecurity.CurrentUser.Email, user, userSave.Message);
+            await SendUserInviteEmailAsync(display, _backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.Name, _backofficeSecurityAccessor.BackofficeSecurity.CurrentUser.Email, user, userSave.Message);
 
             display.AddSuccessNotification(_localizedTextService.Localize("speechBubbles/resendInviteHeader"), _localizedTextService.Localize("speechBubbles/resendInviteSuccess", new[] { user.Name }));
 
@@ -575,7 +579,7 @@ namespace Umbraco.Web.BackOffice.Controllers
 
             //Perform authorization here to see if the current user can actually save this user with the info being requested
             var authHelper = new UserEditorAuthorizationHelper(_contentService,_mediaService, _userService, _entityService);
-            var canSaveUser = authHelper.IsAuthorized(_webSecurity.CurrentUser, found, userSave.StartContentIds, userSave.StartMediaIds, userSave.UserGroups);
+            var canSaveUser = authHelper.IsAuthorized(_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser, found, userSave.StartContentIds, userSave.StartMediaIds, userSave.UserGroups);
             if (canSaveUser == false)
             {
                 throw new HttpResponseException(HttpStatusCode.Unauthorized, canSaveUser.Result);
@@ -658,7 +662,7 @@ namespace Umbraco.Web.BackOffice.Controllers
             }
 
             var passwordChanger = new PasswordChanger(_loggerFactory.CreateLogger<PasswordChanger>());
-            var passwordChangeResult = await passwordChanger.ChangePasswordWithIdentityAsync(_webSecurity.CurrentUser, found, changingPasswordModel, _backOfficeUserManager);
+            var passwordChangeResult = await passwordChanger.ChangePasswordWithIdentityAsync(_backofficeSecurityAccessor.BackofficeSecurity.CurrentUser, found, changingPasswordModel, _backOfficeUserManager);
 
             if (passwordChangeResult.Success)
             {
@@ -683,7 +687,7 @@ namespace Umbraco.Web.BackOffice.Controllers
         [AdminUsersAuthorize("userIds")]
         public IActionResult PostDisableUsers([FromQuery]int[] userIds)
         {
-            var tryGetCurrentUserId = _webSecurity.GetUserId();
+            var tryGetCurrentUserId = _backofficeSecurityAccessor.BackofficeSecurity.GetUserId();
             if (tryGetCurrentUserId && userIds.Contains(tryGetCurrentUserId.Result))
             {
                 throw HttpResponseException.CreateNotificationValidationErrorResponse("The current user cannot disable itself");