Umbraco-CMS

Author	SHA1	Message	Date
Bjarke Berg	02e87233c1	Merge remote-tracking branch 'origin/v10/dev' into v11/dev # Conflicts: # src/Umbraco.Web.BackOffice/Controllers/MediaController.cs # src/Umbraco.Web.UI.Client/src/common/services/tinymce.service.js	2023-07-07 08:34:15 +02:00
Maarten	3f196a9de4	Fix broken CookieAuthenticationRedirect caused by PR #14036 for non-api requests (#14399 ) * Fix broken CookieAuthenticationRedirect caused by PR #14036 when not in an API controller * Added Integration Tests for the MemberAuthorizationFilter * Fix merge conflict --------- Co-authored-by: Elitsa <elm@umbraco.dk> (cherry picked from commit `1d239a30ca`)	2023-07-04 11:10:58 +02:00
Bjarke Berg	f24ff4918e	Merge remote-tracking branch 'origin/v10/dev' into v11/dev	2023-06-12 10:03:26 +02:00
Nikolaj Geisle	89d670372d	Update security stamps on logout (#14362 ) Co-authored-by: Zeegaan <nge@umbraco.dk>	2023-06-12 09:56:04 +02:00
Bjarke Berg	4521c881db	Merge remote-tracking branch 'origin/v10/dev' into v11/dev # Conflicts: # version.json	2023-04-14 10:04:35 +02:00
Elitsa Marinovska	22328598db	Adding dedicated Forbidden and Unauthorized handling for members (#14036 )	2023-04-11 15:41:55 +02:00
Jeroen Breuer	815eb5b9c8	Make methods virtual so they can be redefined in derived classes. (cherry picked from commit `ff3d8c1c6c`)	2023-03-16 11:06:19 +01:00
Bjarke Berg	acbf937534	Merge remote-tracking branch 'origin/v10/dev' into v11/dev	2023-02-15 14:10:30 +01:00
Kenn Jacobsen	e529818560	Make the default lockout time configurable for users and members (#13808 ) * Make the default lock timeout configurable for users and members * Update obsoletion to V13	2023-02-10 10:56:55 +01:00
Jeroen Breuer	ff3d8c1c6c	Make methods virtual so they can be redefined in derived classes.	2023-01-31 19:43:24 +01:00
Callum Whyte	5ef43cb4f0	Rename StaticServiceProvider namespace Umbraco.Cms.Core.DependencyInjection (#13239 )	2022-11-29 12:22:57 +01:00
Zeegaan	9243c59ce9	Merge branch 'v10/dev' into v11/merge/merge-v10-to-v11 # Conflicts: # .github/workflows/codeql-analysis.yml # .gitignore # Directory.Build.props # build/azure-pipelines.yml # src/JsonSchema/Options.cs # src/JsonSchema/UmbracoJsonSchemaGenerator.cs # src/Umbraco.Cms.ManagementApi/DependencyInjection/FactoryBuilderExtensions.cs # src/Umbraco.Cms.ManagementApi/ManagementApiComposer.cs # src/Umbraco.Cms.ManagementApi/OpenApi.json # src/Umbraco.Core/Models/Mapping/DictionaryMapDefinition.cs # src/Umbraco.Infrastructure/Security/UmbracoUserManager.cs # tests/Directory.Build.props # tests/Umbraco.Tests.AcceptanceTest/package-lock.json # tests/Umbraco.Tests.AcceptanceTest/package.json # tests/Umbraco.Tests.AcceptanceTest/tests/DefaultConfig/Packages/packages.spec.ts # tests/Umbraco.Tests.AcceptanceTest/tests/DefaultConfig/Tabs/tabs.spec.ts # tests/Umbraco.Tests.Integration/TestServerTest/UmbracoTestServerTestBase.cs	2022-10-05 14:29:41 +02:00
Nikolaj Geisle	ae6bee7b0b	V10: Dont delete member on failed autolink (#12996 ) * Disapprove member instead of delete if failed autolink * Update to not disable the member when external login fails, but move the logic to protected method, to make it easy to extend. Co-authored-by: Zeegaan <nge@umbraco.dk> Co-authored-by: Bjarke Berg <mail@bergmania.dk>	2022-10-05 08:19:22 +02:00
Sebastiaan Janssen	db5d05d641	Revert files that shouldn't change back in v11	2022-09-19 16:37:24 +02:00
Sebastiaan Janssen	87c06f5f98	Back to 10.2.0-ish	2022-09-19 16:14:16 +02:00
Bjarke Berg	74c45ee60d	Merge remote-tracking branch 'origin/v10/dev' into v11/dev # Conflicts: # src/Umbraco.Core/DependencyInjection/UmbracoBuilder.Configuration.cs # src/Umbraco.Core/Models/Mapping/DictionaryMapDefinition.cs # src/Umbraco.Web.BackOffice/Install/InstallApiController.cs # version.json	2022-09-12 16:47:20 +02:00
Mole	f3a1c89066	Add ClaimsPrincipalFactory and ensure that claims are flowed from the MemberIdentityUser (#12877 )	2022-08-23 14:12:05 +02:00
Nikolaj Geisle	1b5225f4cd	V11/feature/update to dotnet 7 (#12712 ) * Update projects to .NET 7 * Fix nullability errors * Fix up pipelines to run 7.0 * Update langversion to preview * Revert "Fix up pipelines to run 7.0" This reverts commit d0fa8d01b8126a4eaa59832a3814a567705419ae. * Fix up pipelines again, this time without indentation changes * Include preview versions * Versions not Version * Fix ModelTypeTests * Fix MemberPasswordHasherTests Microsoft wants to use SHA512 instead of SHA256, so our old hashes will return SuccessRehashNeeded now * Use dotnet cli instead of nuget restore * Update src/Umbraco.Web.UI/Umbraco.Web.UI.csproj * Update dependencies * Fix nullability issues * Fix unit test * Fix nullability in ChangingPasswordModel OldPassword can be null, if we're changing the password with password reset enabled. Additionally, we might as well use the new required keyword instead of supressing null. * Use required keyword instead of supressing null * Fix up pipelines again * fix up spelling-error * Use dotnet cli instead of nuget restore * Fix up another NuGet command * Use dotnet version 7 before building * Include preview versions * Remove condition * Use dotnet 7 before running powershell script * Update templates to .net 7 * Download version 7 before running linux container * Move use dotnet 7 even earlier in E2E process * Remove dotnet 7 * Reintroduce .NET 7 task * Update linux docker container and remove dotnet 7 from yml * Fix up dockerfile with ARG * Fix up docker file with nightly builds of dotnet 7 * Reintroduce dotnet 7 so windows can use it * Use aspnet 7 in docker Co-authored-by: Nikolaj <nikolajlauridsen@protonmail.ch> Co-authored-by: Zeegaan <nge@umbraco.dk>	2022-08-23 11:31:05 +02:00
Bjarke Berg	e9f9b8aee1	merge v10 to v11	2022-08-18 14:38:49 +02:00
Nikolaj Geisle	b4fbad14c7	V11: cleanup obsoletes (#12481 ) * Remove IExternalLoginService.cs * Remove UmbracoApplicationComponentsInstallingNotification.cs * Remove UmbracoApplicationMainDomAcquiredNotification.cs * Merge IContentTypeWithHistoryCleanup with IContentType.cs * Remove obsolete ctors from notifications * Remove obsolete methods * Remove obsolete method from RequestHandlerSettings.cs * Fix UmbracoBuilder.Repositories.cs * RemoveRemove obsolete constants * Remove obsolete method from IRuntimeMinifier * Remove SetLastLogin from IMemberRepository * Revert "RemoveRemove obsolete constants" This reverts commit cddb8ad1cf3d02bd9949d52bed91b45c8d2d66a9. * Remove obsoleted Constants-Conventions.cs * Remove obsolete ctors * Make ContentData properties immutable * remove obsolete static property from TestOptionAttributeBase * Merge IMacroWithAliasService into IMacroService * Remove IUserComposer * remove obsolete AddOEmbedProvider method * remove obsolete static EmbedProvidersCollectionBuilder * remove obsolete HasFlagAll<T> method * Remove obsolete LocalizedTextService property from BaseHttpHeaderCheck * Remove obsolete GetDefaultFIleContent method from ViewHelper * Remove more obsolete ctors and methods * Remove obsolete ctor from RelationType * Remove more obsolete methods * Remove IExternalLoginRepository * merge IMacroWithAliasRepository with IMacroRepository * Remove obsolete methods from ExternalLoginRepository * Remove obsolete method from IUserRepository * Remove obsolete SetLastLogin, as it was NoOp * Remove wierd SetLastLogin method from UserService * Remove GetLogLevel from ILogViewer * Remove more obsolete methods and ctors * Remove more obsoletes * Use other method in BackOfficeServerVariables.cs since GetAllTypes is now removed * Remove obsolete ctor * Remove ConfigureIISServerOptions * Remove more obsolete methods * Merge ITwoFactorLoginService2 with ITwoFactorLoginService * Re-introduce GetCustomGenericProperties in MemberTabsAndPropertiesMapper.cs Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk>	2022-06-07 11:16:30 +02:00
Bjarke Berg	ad6ef2688d	Changed back Attempt<int?> to Attempt<int> (#12468 )	2022-05-24 13:36:31 +02:00
Andy Butland	e6320a12ba	Fixed null check in external login. (cherry picked from commit `9981907532`)	2022-05-23 08:27:41 +02:00
Nikolaj Geisle	c576bbea03	v10: Fix build warnings in Web.Common (#12349 ) * Run code cleanup * Run dotnet format * Start manual cleanup in Web.Common * Finish up manual cleanup * Fix tests * Fix up InMemoryModelFactory.cs * Inject proper macroRenderer * Update src/Umbraco.Web.Common/Filters/JsonDateTimeFormatAttribute.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update src/Umbraco.Web.Common/Filters/ValidateUmbracoFormRouteStringAttribute.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fix based on review Co-authored-by: Nikolaj Geisle <niko737@edu.ucl.dk> Co-authored-by: Mole <nikolajlauridsen@protonmail.ch>	2022-05-09 09:39:46 +02:00
Bjarke Berg	4bc5d31dfe	Merged IMemberSignInManagerExternalLogins into IMemberSignInManager	2022-05-02 12:32:25 +02:00
Nikolaj Geisle	060e0181a7	Merge remote-tracking branch 'origin/v10/dev' into v10/feature/nullable-reference-types-in-Umbraco.Web.Backoffice # Conflicts: # src/Umbraco.Core/DependencyInjection/UmbracoBuilder.Collections.cs # src/Umbraco.Core/Extensions/PublishedContentExtensions.cs # src/Umbraco.Core/Telemetry/Models/TelemetryReportData.cs # src/Umbraco.Infrastructure/PropertyEditors/ValueConverters/MultiUrlPickerValueConverter.cs # src/Umbraco.PublishedCache.NuCache/ContentStore.cs # src/Umbraco.Web.BackOffice/Trees/MemberTypeTreeController.cs # src/Umbraco.Web.Common/ModelsBuilder/InMemoryModelFactory.cs # src/Umbraco.Web.Common/Security/MemberManager.cs # src/Umbraco.Web.Website/Routing/ControllerActionSearcher.cs # src/Umbraco.Web.Website/Routing/IControllerActionSearcher.cs # src/Umbraco.Web.Website/Routing/UmbracoRouteValueTransformer.cs	2022-04-21 10:26:51 +02:00
Bjarke Berg	23a49161d6	Merge remote-tracking branch 'origin/v9/dev' into v10/dev # Conflicts: # build/build.ps1 # build/templates/UmbracoPackage/.template.config/template.json # build/templates/UmbracoProject/.template.config/dotnetcli.host.json # build/templates/UmbracoProject/.template.config/ide.host.json # build/templates/UmbracoProject/.template.config/template.json # src/Umbraco.Core/Constants-System.cs # src/Umbraco.Infrastructure/DependencyInjection/UmbracoBuilder.Services.cs # src/Umbraco.Infrastructure/Security/BackOfficeUserStore.cs # src/Umbraco.Web.BackOffice/Controllers/AuthenticationController.cs # umbraco-netcore-only.sln	2022-04-20 11:09:28 +02:00
Bjarke Berg	852305b7d1	Simplified setup of 2FA for users (#12142 ) * Added functionality to enable 2FA for users.. * Do not use the obsolete ctor in tests * cleanup * Cleanup * Convert User view from overlay to infinite editor * Add support for having additional editors on top of the user (2fa) which overlay does not support * Add controllerAs syntax in the template * Remove unused dependencies * Adjustments to 2fa login view * organize elements * add translations * add a11y helpers * add autocompletion = one-time-code * change to controllerAs syntax * add callback to cancel 2fa and fix error where submit button was not reset when all other validations were * add a cancel/go back button to the 2fa view * replace header with something less obstrusive * move logout button to the footer in the new editor view * change 'edit profile' to an umb-box and move ng-if for password fields out to reduce amount of checks * Add umb-box to external login provider section * add umb-box to user history section * bug: fix bug where notificationsService would not allow new notifications if removeAll had been called * add styling and a11y to configureTwoFactor view - also ensure that the view reloads when changes happen in the custom user view to enable 2fa - ensure that view updates when disabling 2fa - add extra button to show options (disable) for each 2fa provider * add notification when 2fa is disabled * add data-element to support the intro tour also changed a minor selector in the cypress test * correct usage of umb-box with umb-box-content * do not use the .form class twice to prevent double box-shadow * make tranlastion for 2fa placeholder shorter * ensure that field with 2fa provider is always visible when more than 1 provider * move error state of 2fa field to token field * update translation of multiple 2fa providers * move CTA buttons to right side to follow general UI practices * rename options to disable * add disabled state * add helper folders to gitignore so you can work with plugins and custom code without committing it accidentally * move the disable functionality to its own infinite editor view * use properties from umb-control-group correctly * add 'track by' to repeater * make use of umb-control-group * remove unused functions * clean up translations * add Danish translations * copy translations to english * Only return enabled 2fa providers as expected Co-authored-by: Jacob Overgaard <752371+iOvergaard@users.noreply.github.com>	2022-04-19 08:33:03 +02:00
Nikolaj Geisle	7994f5c326	Add nullability to Web.Website, Sqlite & SqlServer	2022-04-04 14:47:54 +02:00
Nikolaj Geisle	70a00901b4	Finish up Web.Backoffice	2022-04-01 14:35:18 +02:00
Nikolaj Geisle	4571ecb0e3	More work on nullable reference types	2022-03-31 14:35:23 +02:00
Nikolaj Geisle	2460c82e02	Fix trees	2022-03-31 12:52:26 +02:00
Nikolaj Geisle	57ed0b7b4d	start work on the backoffice project	2022-03-30 15:58:46 +02:00
Nikolaj Geisle	b52c4e50cf	Add nullability to web.common	2022-03-29 13:44:21 +02:00
Nikolaj Geisle	4ebd20bb66	Merge remote-tracking branch 'origin/v10/dev' into v10/feature/nullable-reference-types-in-Umbraco-Core # Conflicts: # build/build.ps1 # src/Umbraco.Core/Configuration/ConfigConnectionString.cs # src/Umbraco.Core/Configuration/Models/ConnectionStrings.cs # src/Umbraco.Core/Install/InstallSteps/TelemetryIdentifierStep.cs # src/Umbraco.Core/Models/ContentType.cs # src/Umbraco.Infrastructure/Migrations/Install/DatabaseBuilder.cs # tests/Umbraco.Tests.AcceptanceTest/package.json	2022-03-16 13:00:38 +01:00
Bjarke Berg	981e66a673	Merge remote-tracking branch 'origin/v9/dev' into v10/dev # Conflicts: # src/Umbraco.Core/Telemetry/TelemetryService.cs # src/Umbraco.Infrastructure/DependencyInjection/UmbracoBuilder.CoreServices.cs # src/Umbraco.Infrastructure/DependencyInjection/UmbracoBuilder.Services.cs # src/Umbraco.Infrastructure/HostedServices/ScheduledPublishing.cs # src/Umbraco.Infrastructure/Migrations/Upgrade/UmbracoPlan.cs # src/Umbraco.Infrastructure/Runtime/SqlMainDomLock.cs # src/Umbraco.Web.BackOffice/Controllers/ContentController.cs # src/Umbraco.Web.BackOffice/Controllers/DashboardController.cs # tests/Umbraco.Tests.UnitTests/Umbraco.Infrastructure/HostedServices/ScheduledPublishingTests.cs	2022-03-10 14:36:30 +01:00
Mole	4f0a837e20	V9: Fix login timeout (#12029 ) * Turn SlidingExpiration off and only renew cookie of not RemainingSeconds request Also adds the TicketExpiresClaim before validating the the security stamp, otherwise the claim won't be merged and "dissappear", leading to the user being instantly logged out Also only EnsureValidSessionId if not RemainingSeconds request, otherwise the session will always be valid, since the remaining seconds request renews it. * Don't ignore SessionIdClaimType and Cookiepath when merging claims Besides what the comment used to state these claims are only issued when logging in, leading you to be logged out once the claims are merged, furthermore when we check the session ID we verify that you session has not expired. * Manually specify Issued and Expires when renewing token If we don't we lose 30 minutes of our ExpireTimeSpan every time the principal refreshes * Re-add ignored claims And use MergeAllClaims on refreshing principal instead. * EnsureValidSessionId before updating IssuedUtc * Fix comment * Update src/Umbraco.Web.BackOffice/Security/ConfigureBackOfficeCookieOptions.cs Co-authored-by: nikolajlauridsen <nel@umbraco.dk> Co-authored-by: Bjarke Berg <mail@bergmania.dk>	2022-02-22 08:29:27 +01:00
Sebastiaan Janssen	ab870347ed	Merge branch 'v9/dev' into v9/contrib # Conflicts: # src/Umbraco.Web.UI.Client/src/less/pages/login.less	2022-02-21 10:06:08 +01:00
Nikolaj Geisle	224341a533	Merge remote-tracking branch 'origin/v10/dev' into v10/feature/nullable-reference-types-in-Umbraco-Core # Conflicts: # src/Umbraco.Core/Configuration/Models/SecuritySettings.cs # src/Umbraco.Core/Events/DeleteEventArgs.cs # src/Umbraco.Core/Events/IEventDispatcher.cs # src/Umbraco.Core/Events/PassThroughEventDispatcher.cs # src/Umbraco.Core/Events/QueuingEventDispatcherBase.cs # src/Umbraco.Core/IO/MediaFileManager.cs # src/Umbraco.Core/Models/Mapping/MemberTabsAndPropertiesMapper.cs # src/Umbraco.Core/PropertyEditors/DataValueEditor.cs # src/Umbraco.Core/Routing/DefaultUrlProvider.cs	2022-02-15 09:29:58 +01:00
Sebastiaan Janssen	7f9b143e1a	Fix items found in PVS-Studio analysis	2022-02-14 08:08:42 +10:00
Bjarke Berg	a228f4e941	Merge remote-tracking branch 'origin/v9/dev' into v10/dev # Conflicts: # build/templates/UmbracoPackage/.template.config/template.json # build/templates/UmbracoProject/.template.config/template.json # src/Directory.Build.props # src/Umbraco.Core/DependencyInjection/UmbracoBuilder.cs # src/Umbraco.Infrastructure/HostedServices/ServerRegistration/TouchServerTask.cs # tests/Umbraco.Tests.UnitTests/Umbraco.Infrastructure/HostedServices/ServerRegistration/TouchServerTaskTests.cs	2022-02-13 13:39:13 +01:00
Nikolaj Geisle	83baba696c	Fixed build errors after turning nullability errors off	2022-02-10 10:32:45 +01:00
Bjarke Berg	23803a44b7	Fixed minor issues and added xml docs (#11943 )	2022-02-07 14:32:58 +01:00
Bjarke Berg	e92abf7d51	Merge remote-tracking branch 'origin/v9/dev' into v10/dev # Conflicts: # .github/workflows/codeql-analysis.yml # build/templates/UmbracoPackage/.template.config/template.json # build/templates/UmbracoProject/.template.config/template.json # src/Directory.Build.props # src/Umbraco.Infrastructure/Security/BackOfficeUserStore.cs	2022-01-23 13:46:10 +01:00
Bjarke Berg	12abd883a9	Member 2FA (#11889 ) * Bugfix - Take ufprt from form data if the request has form content type, otherwise fallback to use the query * External linking for members * Changed migration to reuse old table * removed unnecessary web.config files * Cleanup * Extracted class to own file * Clean up * Rollback changes to Umbraco.Web.UI.csproj * Fixed migration for SqlCE * Added 2fa for members * Change notification handler to be on deleted * Update src/Umbraco.Infrastructure/Security/MemberUserStore.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * updated snippets * Fixed issue with errors not shown on member linking * fixed issue with errors * clean up * Fix issue where external logins could not be used to upgrade Umbraco, because the externalLogin table was expected to look different. (Like after the migration) * Fixed issue in Ignore legacy column now using result column. * Updated 2fa for members + publish notification when 2fa is requested. * Changed so only Members out of box supports 2fa * Cleanup * rollback of csproj file, that should not have been changed * Removed confirmed flag from db. It was not used. Handle case where a user is signed up for 2fa, but the provider do not exist anymore. Then it is just ignored until it shows up again Reintroduced ProviderName on interface, to ensure the class can be renamed safely * Bugfix * Registering DeleteTwoFactorLoginsOnMemberDeletedHandler * Rollback nuget packages added by mistake * Update src/Umbraco.Infrastructure/Services/Implement/TwoFactorLoginService.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Update src/Umbraco.Infrastructure/Persistence/Repositories/Implement/TwoFactorLoginRepository.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Added providername to snippet Co-authored-by: Mole <nikolajlauridsen@protonmail.ch>	2022-01-21 13:10:34 +01:00
Bjarke Berg	029a261476	Improve functionality for external member logins (#11855 ) * Bugfix - Take ufprt from form data if the request has form content type, otherwise fallback to use the query * External linking for members * Changed migration to reuse old table * removed unnecessary web.config files * Cleanup * Extracted class to own file * Clean up * Rollback changes to Umbraco.Web.UI.csproj * Fixed migration for SqlCE * Change notification handler to be on deleted * Update src/Umbraco.Infrastructure/Security/MemberUserStore.cs Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Fixed issue with errors not shown on member linking * fixed issue with errors * clean up * Fix issue where external logins could not be used to upgrade Umbraco, because the externalLogin table was expected to look different. (Like after the migration) * Fixed issue in Ignore legacy column now using result column. Co-authored-by: Mole <nikolajlauridsen@protonmail.ch>	2022-01-19 09:21:50 +01:00
Paul Johnson	235918ecfc	Merge branch 'v9/dev' into v10/feature/merge-v9-dev # Conflicts: # build/templates/UmbracoPackage/.template.config/template.json # build/templates/UmbracoProject/.template.config/template.json # src/Directory.Build.props # src/Umbraco.Core/Actions/ActionAssignDomain.cs # src/Umbraco.Infrastructure/DependencyInjection/UmbracoBuilder.Services.cs # src/Umbraco.Web.BackOffice/Controllers/AuthenticationController.cs # src/Umbraco.Web.BackOffice/DependencyInjection/UmbracoBuilderExtensions.cs # src/Umbraco.Web.Common/Extensions/ApplicationBuilderExtensions.cs	2022-01-18 11:37:43 +00:00
Nikolaj Geisle	18a3133536	v9: Fix max allowed content length on iis & kestrel (#11802 ) * Update web.config * Change web.config to align with v8 default values * Adjust kestrel options to align with v8 * Add better comment * added web.config to root * change web.config to 30mb * delete obsolete comment * No reason to have web.config to just have it default * Add back ConfigureIISServerOptions.cs * Add obsolete comment, can't link to documentation yet as it doesn't exist * Apply suggestions from code review Co-authored-by: Mole <nikolajlauridsen@protonmail.ch> * Add link to documentation Co-authored-by: Mole <nikolajlauridsen@protonmail.ch>	2022-01-12 12:32:53 +01:00
Bjarke Berg	7ba221be98	Merge remote-tracking branch 'origin/v9/dev' into v10/dev	2021-10-18 06:44:48 +02:00
Bjarke Berg	9b6421947a	Fixed to not use remember me type	2021-10-05 21:57:02 +02:00
Bjarke Berg	223e8661dc	Fixed bug where the wrong schema was signed in.	2021-10-05 21:25:15 +02:00

1 2 3 4

164 Commits