Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Does 7.3.3 fix the "Password Reset Question and Answer" issue submitted in JIRA?Does 7.3.3 fix the "Password Reset Question and Answer" issue submitted in JIRA?
Previous
 
Next
New Post
10/23/2014 7:00 PM
 
cathal connolly


cathal connolly's Avatar

www.cathal.co.uk
Joined: 4/9/2003
Posts: 9676
I should have mentioned that if someone has a solution they can submit a pull request (http://www.dnnsoftware.com/wiki/page/...) - as that reduces our level of effort to just QA and documentation, we merge those changes ASAP.
Buy the new Professional DNN7: Open Source .NET CMS Platform book Amazon US
 
New Post
10/23/2014 7:47 PM
 
James Hall

Joined: 11/3/2003
Posts: 226
cathal connolly wrote:

Version numbers are how we have always worked...This has been the process we have used for 10+ years. 

I'm familiar with process, but surely you understand that means squat to the non-developer client. So will you venture a guess at a date?

As to why the feature doesn't work, it's a relatively rarely used feature so hasn't been logged before. The breaking change was introduced in 7.1.0 which came out on July 9th 2013, but the bug was not logged until Aug 27th 2014, more than a year later.

So, what are you saying... that only commonly used features are regression tested?
 
New Post
10/23/2014 8:13 PM
 
James Hall

Joined: 11/3/2003
Posts: 226
cathal connolly wrote:
I should have mentioned that if someone has a solution they can submit a pull request (http://www.dnnsoftware.com/wiki/page/...) - as that reduces our level of effort to just QA and documentation, we merge those changes ASAP.

It may not be apparent based on my reaction to this particular issue, but I'm a strong advocate for DNN and its hybrid profit/nonprofit open source model, that has evolved over that last decade+. However, I generally can't bring my self to fix what some else broke at my own expense.

BUT... I'm willing to consider it if someone can provide info on whats wrong with the code. If you know definitively that it worked prior to 7.1 surely someone also has a pretty good guess what the problem is. Who was closest to the change?
 
New Post
10/24/2014 12:08 PM
 
cathal connolly


cathal connolly's Avatar

www.cathal.co.uk
Joined: 4/9/2003
Posts: 9676
James Hall wrote:
cathal connolly wrote:

Version numbers are how we have always worked...This has been the process we have used for 10+ years. 

I'm familiar with process, but surely you understand that means squat to the non-developer client. So will you venture a guess at a date?

As to why the feature doesn't work, it's a relatively rarely used feature so hasn't been logged before. The breaking change was introduced in 7.1.0 which came out on July 9th 2013, but the bug was not logged until Aug 27th 2014, more than a year later.

So, what are you saying... that only commonly used features are regression tested?

Sorry if it wasn't clear, as a developer I work on the release, the date and scope of the release is set by the program manager. When those are set, the details are forwarded to the community team who keep the public roadmap up to date http://www.dnnsoftware.com/community/...

As to testing, we have a huge amount of tests. Some of these are automated regression test which occur each night - these target areas of the code that we can test via unit tests. However there are various areas of code we cannot test well with unit tests primarily as they contain dependencies on httpcontext and cannot be mocked well - whilst some of this is code within our control, others are in 3rd party dependencies such as the Microsoft memberrole provider (which underpins much of the login/membership logic such as Q&A password resets). As such we have separate tests for those, both automated webtests and manual tests that QA run through with their regression - these are always growing but it's challenging to test every single function that DNN supports.

Note: we hope in future to move to a more modern membership architecture that is easier to extend and support non-web scenarios (e.g. OAuth for mobile clients) - we will also ensure this is unit-testable so that any breaking changes are picked up on the nightly builds

Buy the new Professional DNN7: Open Source .NET CMS Platform book Amazon US
 
New Post
10/24/2014 12:12 PM
 
cathal connolly


cathal connolly's Avatar

www.cathal.co.uk
Joined: 4/9/2003
Posts: 9676
James Hall wrote:
cathal connolly wrote:
I should have mentioned that if someone has a solution they can submit a pull request (http://www.dnnsoftware.com/wiki/page/...) - as that reduces our level of effort to just QA and documentation, we merge those changes ASAP.

It may not be apparent based on my reaction to this particular issue, but I'm a strong advocate for DNN and its hybrid profit/nonprofit open source model, that has evolved over that last decade+. However, I generally can't bring my self to fix what some else broke at my own expense.

BUT... I'm willing to consider it if someone can provide info on whats wrong with the code. If you know definitively that it worked prior to 7.1 surely someone also has a pretty good guess what the problem is. Who was closest to the change?

 I haven't had a chance to look into this, but the issue is likely to be based on the change of password format. Prior to 7.1.0 the default format was encryption, from 7.1.0 on the default is hashing. The main difference here is that hashing is a 1 way operation, so passwords cannot be determined (meaning any GetPassword(user) logic fails)- this meant that some pieces of functionality had to be changed e.g. the old change password function didn't work as it requires the user to enter the "old" and "new" passwords, but as the system could not read the "old" password, this did not work. We worked around this with the password reset logic. I suspect Q&A may be something similar i.e. somewhere in there it may contain some GetPassword(user) logic, but have not had time to look into this. It may even be that Q&A cannot work in a hashed environment and that we have to add code to determine if hashing is used and disable this function, but until I get some time (or someone else gets time) I cant say for sure.

Buy the new Professional DNN7: Open Source .NET CMS Platform book Amazon US
 
 Page 3 of 5
Previous12345Next 
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Does 7.3.3 fix the "Password Reset Question and Answer" issue submitted in JIRA?Does 7.3.3 fix the "Password Reset Question and Answer" issue submitted in JIRA?


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out