Products

Solutions

Resources

Partners

Community

Blog

About

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen

HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationUpgrade 4.4.1 to 4.5.3 to 4.6.2 - Authentication Errors Solved but...Upgrade 4.4.1 to 4.5.3 to 4.6.2 - Authentication Errors Solved but...
Previous
 
Next
New Post
10/19/2007 2:43 PM
 

Hoping someone can shed some light on this.  After I upgraded my site from 4.4.1 to 4.5.3 to 4.6.2, it would no longer build (compile) without errors in Visual Web Developer and all of the errors were associated with Authentication files and supporting authentication files such as signin.ascx, WindowsSignin.aspx, etc.

To troubleshoot, I did a fresh install of 4.6.2 and the site built without any errors in VWD.  I then compared all the files in the clean 4.6.2 install with the files from my upgraded site and found many files in my upgraded site that were no longer included in the 4.6.2 clean install. Specifically:

AuthenticationSettings.ascx and the associated code behind file
loggoff.aspx and the associated code behind file
signin.ascx and the associated code behind file
WindowsSignin.aspx and the associated code behind file

All these files were located in my admin/security directory in my upgraded site.  As a test, I simply removed the files and the upgraded site built without errors and all normal forms of authentication are working for the site without any problems.

Were these files just leftover from stripping out the AD component and moving it to the provider model?

Also, many of these  AD post make reference to a signin.ascx.vb file for certain tips, tricks, or modifications.  Under the clean install scenario, this file is not there.  Has the name and location changed?

Have I done any harm to present or future functionality by removing the above mentioned files.

Thanks,

 

Paul

 
New Post
10/19/2007 3:13 PM
 

With the release of 4.6.0 there was a separation of Authentication providers from the core. Some of the files were moved from Admin/Security to Admin/Authentication and the rest were moved to DesktopModules/AuthenticationServices/[provider]. So, yes, the files were left over from the separation of all the provider code including the default DNN login provider and you haven't done any harm by removing them.

As for tips pointing to signin.ascx.vb or signin.ascx, all of those relating to the DNN AD Fix have been incorporated into the provider and any that pointed to signin.ascx can now be used in DesktopModules/AuthenticationServices/ActiveDirectory/login.ascx. If there are any others that you're interested in post back and I'll let you know where the files are.

 
New Post
10/19/2007 5:26 PM
 

Hi Mike,

In a perfect world, should these files have been removed by the upgrade package? I'm not to comfortable with rogue files floating around in my production install and truthfully, I'm not so intimately aquainted with DNN as to know exactly what files should or should not be there. I only discovered these by trial and error.

mikeh wrote

As for tips pointing to signin.ascx.vb or signin.ascx, all of those relating to the DNN AD Fix have been incorporated into the provider and any that pointed to signin.ascx can now be used in DesktopModules/AuthenticationServices/ActiveDirectory/login.ascx. If there are any others that you're interested in post back and I'll let you know where the files are.

 From another post here:

[QUOTE]sconard wrote

It seems by my testing that mikeh is right and it is not possible to have autologin work in mixed mode.  I did however modifiy the httpmodule.authentication authenticationmodule.vb to test for local address prior to redirect

This is from 3.3.5 in the OnAuthenticateRequest sub.

                If (AuthenticationController.GetStatus(_portalSettings.PortalId) = AuthenticationStatus.Undefined) Then  'OrElse (blnWinLogon) Then
                    AuthenticationController.SetStatus(_portalSettings.PortalId, AuthenticationStatus.WinProcess)
                    Dim url As String
                    'mod check if local address*****************************************
                    'this allows for mixed mode with auto login
                    If Not InStr(Left(Request.ServerVariables("remote_addr"), 3), "11.") = 0 Then
                        If Request.ApplicationPath = "/" Then
                            url = "/Admin/Security/WindowsSignin.aspx?tabid=" & _portalSettings.ActiveTab.TabID.ToString
                        Else
                            url = Request.ApplicationPath & "/Admin/Security/WindowsSignin.aspx?tabid=" & _portalSettings.ActiveTab.TabID.ToString
                        End If
                        Response.Redirect(url)
                    ElseIf (Not AuthenticationController.GetStatus(_portalSettings.PortalId) = AuthenticationStatus.WinLogoff) AndAlso blnWinLogoff Then
                        Dim objAuthentication As New AuthenticationController
                        objAuthentication.AuthenticationLogoff()
                    ElseIf (AuthenticationController.GetStatus(_portalSettings.PortalId) = AuthenticationStatus.WinLogoff) AndAlso blnWinLogon Then ' has been logoff before
                        AuthenticationController.SetStatus(_portalSettings.PortalId, AuthenticationStatus.Undefined)
                        Response.Redirect(Request.RawUrl)
                    End If
                    'old dnn code
                    'If Request.ApplicationPath = "/" Then
                    '    url = "/Admin/Security/WindowsSignin.aspx?tabid=" & _portalSettings.ActiveTab.TabID.ToString
                    'Else
                    '    url = Request.ApplicationPath & "/Admin/Security/WindowsSignin.aspx?tabid=" & _portalSettings.ActiveTab.TabID.ToString
                    'End If
                    'Response.Redirect(url)

                    '***********************************************

And a few other quotes from this same thread:

 

jacob_miw wrote

So let me get this straight. If I do the following:

1) Enable Windows authentication in Admin > Authentication
2) Make the above edit to authenticationmodule.vb.

Then I will allow my intranet-users to automatically logon, if they add the site to the Trusted- or the Intranetzone. And I will still have the Logon-form? Or will I have the windows-popup-logon-box?

 

sconard wrote

You must also remove anonymous access to windowssignin.aspx via IIS.  Using DNN 3.3.5 my Intranet users autologin and any remote addresses are presented with login link.  Network users can still use network authentication if they use their network credentials in the login fields.  I also highly suggest Stuarts AD fix.  http://www.dotnetnuke.com/DotNetNukeProjects/CoreActiveDirectory/Forums/tabid/912/forumid/89/threadid/73435/threadpage/21/scope/posts/Default.aspx 

Another key is at the end of this bit of instruction.  Did not function until added to trusted sites.
http://www.dotnetnuke.com/Community/ForumsDotNetNuke/tabid/795/forumid/89/threadid/53005/scope/posts/Default.aspx

This is not code incorporated into the new provider right? Because of the unknown of the internal IP scheme of the host? I guess I'm still after having Intranet users automatically logged in and external anonymous users not presented with the WindowsSignin prompt.  I know this things been beat to death in the forums here but when I came across this post it looked like a viable solution if I chose to make the above modification to my code.

What file and what code changes would need to be made to the new provider to accomplish the above fix and does this fix indeed overcome the autologin conundrum?

Thanks,

Paul

 

 
New Post
10/19/2007 5:55 PM
 

Automatic login that sconard talks about requires the source and a recompile. The source code is going through the Release Tracker and just needs someone higher up to make it available for download. That should happen soon I believe. However, that functionality will we in the next release of the AD Provider (just working on some bug fixes and waiting for the current version to be released). If you're in a hurry for it contact me offline (mhorton@telus.net) and I'll see what I can do about sending you the source.

 
New Post
10/19/2007 9:19 PM
 

Are you saying that we could see another quick release after this first release gets out of the tracker? If so, I can be patient and wait for that release Mike.  Judging by the number of post related to this functionality, I think many folks will be very pleased with this added feature to the AD provider.

Once again...thanks for all the hard work. If I can be of any assistance in anyway, please let me know.

Paul

 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationUpgrade 4.4.1 to 4.5.3 to 4.6.2 - Authentication Errors Solved but...Upgrade 4.4.1 to 4.5.3 to 4.6.2 - Authentication Errors Solved but...


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out