2.1 - August 23, 2008
<location> nodes may now have the isPattern attribute set to "true" and the
path attribute will be interpreted as a regular expression. Allows classes of URLs
to be ignored instead of having to specify each one individually.
Resolved security error when trying to watch the SiteUrls.config file for changes
when full trust is not enabled for a web site.
2.0 - April 6, 2008
SubdomainModule targets Community Server 2007 and ASP.NET 2.0, not compatible with
GoToModifiedUrlAction web control added to compensate for the native Community Server
version of this class, which redirects a user to a true url.
BlogContent web control added which retrieves blog-specific content from a database
New property ErrorMessageTimeout of the Captcha web control controls the text displayed
when time runs out to submit a CAPTCHA.
New properties ReloadText and ReloadImageUrl of the Captcha web control support
a "get new image" link to retrieve an updated CAPTCHA image without reloading the
page. A HyperLink with the ID of "linkReload" can be used in a template to represent
New property DisplayErrorMessage of the Captcha web control to control display of
The SubdomainModule treats <location> elements in SiteUrls.config differently.
Any <location> element listed will be treated as though it should be excluded
from redirection, except for ones with only "/" as the path. This reduces the frequency
of misdirections occurring. A side effect of this is that the subdomainExclude attribute
is no longer used nor needed.
The SubdomainModule now watches the SiteUrls.config file for changes and updates
itself accordingly. Going to the ~/subdomains.axd url still works to force an update.
Replay attacks against the Captcha web control are now mitigated in one of two ways.
One, if sessionState is enabled the code will be stored in session and cleared upon
successful validation. Two, if sessionState is disabled cookies will still be used
but a timeout will be in effect, preventing validation of the same cookie passed
a certain point. The timeout attribute of the <sessionState> element in the
web.config file controls this, even if sessions are disabled.
The text in the Captcha web control is now distorted per character rather than the
entire string. The characters can now slightly touch each other. Should bring a
little more defense to OCR attacks.
When not explicitly set the default text for the Message property of the Captcha
web control changes to match the CaptchaType.
When not using a template the Captcha web control's image has a CSS class of "captchaImage"
and the reload link has a CSS class of "captchaReload" to allow styling of these
- The Community Server CaptchaRule spam rule has been removed.
- The Captcha web control's EnforceValidation property has been removed.
1.3 - August 23, 2006
- Added support for regular expressions to the SubdomainModule.
1.2 - May 13, 2006
- Added CAPTCHA functionality.
1.1.2312.37117 - May 1, 2006
Added support for subdomainExclude attribute on <subdomain> elements. This is now the
preferred way to indicate to the SubdomainModule class to exclude a url from rewriting
as it cannot interfere with Community Server.
- Fixed handling of query string parameters when rewriting; should actually work now.
1.0.2278.2446 - March 28, 2006