protected override void Render(HtmlTextWriter writer)
{
IterateControls(Controls, _localizedControls, LocalResourceFile);
RemoveKeyAttribute(_localizedControls);
AJAX.RemoveScriptManager(this);
base.Render(writer);
}
protected override void Render(HtmlTextWriter writer)
{
LogDnnTrace("PageBase.Render", "Start", $"{Page.Request.Url.AbsoluteUri}");
IterateControls(Controls, _localizedControls, LocalResourceFile);
RemoveKeyAttribute(_localizedControls);
AJAX.RemoveScriptManager(this);
base.Render(writer);
LogDnnTrace("PageBase.Render", "End", $"{Page.Request.Url.AbsoluteUri}");
}
protected override void OnInit(EventArgs e)
{
if (!HttpContext.Current.Request.Url.LocalPath.ToLower().EndsWith("installwizard.aspx"))
{
Localization.SetThreadCultures(PageCulture, PortalSettings);
}
AJAX.AddScriptManager(this);
var dnncoreFilePath = HttpContext.Current.IsDebuggingEnabled
? "~/js/Debug/dnncore.js"
: "~/js/dnncore.js";
ClientResourceManager.RegisterScript(this, dnncoreFilePath);
base.OnInit(e);
}
/// <inheritdoc/>
protected override void OnInit(EventArgs e)
{
var isInstallPage = HttpContext.Current.Request.Url.LocalPath.ToLowerInvariant().Contains("installwizard.aspx");
if (ScriptManager.GetCurrent(this) == null)
{
AJAX.AddScriptManager(this, !isInstallPage);
}
var dnncoreFilePath = HttpContext.Current.IsDebuggingEnabled
? "~/js/Debug/dnncore.js"
: "~/js/dnncore.js";
ClientResourceManager.RegisterScript(this, dnncoreFilePath);
base.OnInit(e);
}
/// -----------------------------------------------------------------------------
/// <summary>
/// Contains the functionality to populate the Root aspx page with controls
/// </summary>
/// <param name="e"></param>
/// <remarks>
/// - obtain PortalSettings from Current Context
/// - set global page settings.
/// - initialise reference paths to load the cascading style sheets
/// - add skin control placeholder. This holds all the modules and content of the page.
/// </remarks>
/// -----------------------------------------------------------------------------
protected override void OnInit(EventArgs e)
{
base.OnInit(e);
//set global page settings
InitializePage();
//load skin control and register UI js
UI.Skins.Skin ctlSkin;
if (PortalSettings.EnablePopUps)
{
ctlSkin = IsPopUp ? UI.Skins.Skin.GetPopUpSkin(this) : UI.Skins.Skin.GetSkin(this);
//register popup js
jQuery.RegisterJQueryUI(Page);
var popupFilePath = HttpContext.Current.IsDebuggingEnabled
? "~/js/Debug/dnn.modalpopup.js"
: "~/js/dnn.modalpopup.js";
ClientResourceManager.RegisterScript(this, popupFilePath, FileOrder.Js.DnnModalPopup);
}
else
{
ctlSkin = UI.Skins.Skin.GetSkin(this);
}
// DataBind common paths for the client resource loader
ClientResourceLoader.DataBind();
//check for and read skin package level doctype
SetSkinDoctype();
//Manage disabled pages
if (PortalSettings.ActiveTab.DisableLink)
{
if (TabPermissionController.CanAdminPage())
{
var heading = Localization.GetString("PageDisabled.Header");
var message = Localization.GetString("PageDisabled.Text");
UI.Skins.Skin.AddPageMessage(ctlSkin, heading, message,
ModuleMessage.ModuleMessageType.YellowWarning);
}
else
{
if (PortalSettings.HomeTabId > 0)
{
Response.Redirect(Globals.NavigateURL(PortalSettings.HomeTabId), true);
}
else
{
Response.Redirect(Globals.GetPortalDomainName(PortalSettings.PortalAlias.HTTPAlias, Request, true), true);
}
}
}
//Manage canonical urls
if (PortalSettings.PortalAliasMappingMode == PortalSettings.PortalAliasMapping.CanonicalUrl)
{
string primaryHttpAlias = null;
if (Config.GetFriendlyUrlProvider() == "advanced") //advanced mode compares on the primary alias as set during alias identification
{
if (PortalSettings.PrimaryAlias != null && PortalSettings.PortalAlias != null)
{
if (string.Compare(PortalSettings.PrimaryAlias.HTTPAlias, PortalSettings.PortalAlias.HTTPAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = PortalSettings.PrimaryAlias.HTTPAlias;
}
}
}
else //other modes just depend on the default alias
{
if (string.Compare(PortalSettings.PortalAlias.HTTPAlias, PortalSettings.DefaultPortalAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = PortalSettings.DefaultPortalAlias;
}
}
if (primaryHttpAlias != null)//a primary http alias was identified
{
var originalurl = Context.Items["UrlRewrite:OriginalUrl"].ToString();
//Add Canonical <link> using the primary alias
var canonicalLink = new HtmlLink();
canonicalLink.Href = originalurl.Replace(PortalSettings.PortalAlias.HTTPAlias, primaryHttpAlias);
canonicalLink.Attributes.Add("rel", "canonical");
// Add the HtmlLink to the Head section of the page.
Page.Header.Controls.Add(canonicalLink);
}
}
//check if running with known account defaults
var messageText = "";
if (Request.IsAuthenticated && string.IsNullOrEmpty(Request.QueryString["runningDefault"]) == false)
{
var userInfo = HttpContext.Current.Items["UserInfo"] as UserInfo;
//only show message to default users
if ((userInfo.Username.ToLower() == "admin") || (userInfo.Username.ToLower() == "host"))
{
messageText = RenderDefaultsWarning();
var messageTitle = Localization.GetString("InsecureDefaults.Title", Localization.GlobalResourceFile);
UI.Skins.Skin.AddPageMessage(ctlSkin, messageTitle, messageText, ModuleMessage.ModuleMessageType.RedError);
}
}
//add CSS links
ClientResourceManager.RegisterDefaultStylesheet(this, Globals.HostPath + "default.css");
ClientResourceManager.RegisterIEStylesheet(this, Globals.HostPath + "ie.css");
ClientResourceManager.RegisterStyleSheet(this, ctlSkin.SkinPath + "skin.css", FileOrder.Css.SkinCss);
ClientResourceManager.RegisterStyleSheet(this, ctlSkin.SkinSrc.Replace(".ascx", ".css"), FileOrder.Css.SpecificSkinCss);
//add skin to page
SkinPlaceHolder.Controls.Add(ctlSkin);
ClientResourceManager.RegisterStyleSheet(this, PortalSettings.HomeDirectory + "portal.css", FileOrder.Css.PortalCss);
//add Favicon
ManageFavicon();
//ClientCallback Logic
ClientAPI.HandleClientAPICallbackEvent(this);
//add viewstateuserkey to protect against CSRF attacks
if (User.Identity.IsAuthenticated)
{
ViewStateUserKey = User.Identity.Name;
}
//set the async postback timeout.
if (AJAX.IsEnabled())
{
AJAX.GetScriptManager(this).AsyncPostBackTimeout = Host.AsyncTimeout;
}
}
/// -----------------------------------------------------------------------------
/// <summary>
/// Contains the functionality to populate the Root aspx page with controls.
/// </summary>
/// <param name="e"></param>
/// <remarks>
/// - obtain PortalSettings from Current Context
/// - set global page settings.
/// - initialise reference paths to load the cascading style sheets
/// - add skin control placeholder. This holds all the modules and content of the page.
/// </remarks>
/// -----------------------------------------------------------------------------
protected override void OnInit(EventArgs e)
{
base.OnInit(e);
// set global page settings
this.InitializePage();
// load skin control and register UI js
UI.Skins.Skin ctlSkin;
if (this.PortalSettings.EnablePopUps)
{
ctlSkin = UrlUtils.InPopUp() ? UI.Skins.Skin.GetPopUpSkin(this) : UI.Skins.Skin.GetSkin(this);
// register popup js
JavaScript.RequestRegistration(CommonJs.jQueryUI);
var popupFilePath = HttpContext.Current.IsDebuggingEnabled
? "~/js/Debug/dnn.modalpopup.js"
: "~/js/dnn.modalpopup.js";
ClientResourceManager.RegisterScript(this, popupFilePath, FileOrder.Js.DnnModalPopup);
}
else
{
ctlSkin = UI.Skins.Skin.GetSkin(this);
}
// DataBind common paths for the client resource loader
this.ClientResourceLoader.DataBind();
this.ClientResourceLoader.PreRender += (sender, args) => JavaScript.Register(this.Page);
// check for and read skin package level doctype
this.SetSkinDoctype();
// Manage disabled pages
if (this.PortalSettings.ActiveTab.DisableLink)
{
if (TabPermissionController.CanAdminPage())
{
var heading = Localization.GetString("PageDisabled.Header");
var message = Localization.GetString("PageDisabled.Text");
UI.Skins.Skin.AddPageMessage(ctlSkin, heading, message,
ModuleMessage.ModuleMessageType.YellowWarning);
}
else
{
if (this.PortalSettings.HomeTabId > 0)
{
this.Response.Redirect(this.NavigationManager.NavigateURL(this.PortalSettings.HomeTabId), true);
}
else
{
this.Response.Redirect(Globals.GetPortalDomainName(this.PortalSettings.PortalAlias.HTTPAlias, this.Request, true), true);
}
}
}
// Manage canonical urls
if (this.PortalSettings.PortalAliasMappingMode == PortalSettings.PortalAliasMapping.CanonicalUrl)
{
string primaryHttpAlias = null;
if (Config.GetFriendlyUrlProvider() == "advanced") // advanced mode compares on the primary alias as set during alias identification
{
if (this.PortalSettings.PrimaryAlias != null && this.PortalSettings.PortalAlias != null)
{
if (string.Compare(this.PortalSettings.PrimaryAlias.HTTPAlias, this.PortalSettings.PortalAlias.HTTPAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = this.PortalSettings.PrimaryAlias.HTTPAlias;
}
}
}
else // other modes just depend on the default alias
{
if (string.Compare(this.PortalSettings.PortalAlias.HTTPAlias, this.PortalSettings.DefaultPortalAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = this.PortalSettings.DefaultPortalAlias;
}
}
if (primaryHttpAlias != null && string.IsNullOrEmpty(this.CanonicalLinkUrl)) // a primary http alias was identified
{
var originalurl = this.Context.Items["UrlRewrite:OriginalUrl"].ToString();
this.CanonicalLinkUrl = originalurl.Replace(this.PortalSettings.PortalAlias.HTTPAlias, primaryHttpAlias);
if (UrlUtils.IsSecureConnectionOrSslOffload(this.Request))
{
this.CanonicalLinkUrl = this.CanonicalLinkUrl.Replace("http://", "https://");
}
}
}
// check if running with known account defaults
if (this.Request.IsAuthenticated && string.IsNullOrEmpty(this.Request.QueryString["runningDefault"]) == false)
{
var userInfo = HttpContext.Current.Items["UserInfo"] as UserInfo;
var usernameLower = userInfo?.Username?.ToLowerInvariant();
// only show message to default users
if ("admin".Equals(usernameLower) || "host".Equals(usernameLower))
{
var messageText = this.RenderDefaultsWarning();
var messageTitle = Localization.GetString("InsecureDefaults.Title", Localization.GlobalResourceFile);
UI.Skins.Skin.AddPageMessage(ctlSkin, messageTitle, messageText, ModuleMessage.ModuleMessageType.RedError);
}
}
// add CSS links
ClientResourceManager.RegisterDefaultStylesheet(this, string.Concat(Globals.ApplicationPath, "/Resources/Shared/stylesheets/dnndefault/7.0.0/default.css"));
ClientResourceManager.RegisterIEStylesheet(this, string.Concat(Globals.HostPath, "ie.css"));
ClientResourceManager.RegisterStyleSheet(this, string.Concat(ctlSkin.SkinPath, "skin.css"), FileOrder.Css.SkinCss);
ClientResourceManager.RegisterStyleSheet(this, ctlSkin.SkinSrc.Replace(".ascx", ".css"), FileOrder.Css.SpecificSkinCss);
// add skin to page
this.SkinPlaceHolder.Controls.Add(ctlSkin);
ClientResourceManager.RegisterStyleSheet(this, string.Concat(this.PortalSettings.HomeDirectory, "portal.css"), FileOrder.Css.PortalCss);
// add Favicon
this.ManageFavicon();
// ClientCallback Logic
ClientAPI.HandleClientAPICallbackEvent(this);
// add viewstateuserkey to protect against CSRF attacks
if (this.User.Identity.IsAuthenticated)
{
this.ViewStateUserKey = this.User.Identity.Name;
}
// set the async postback timeout.
if (AJAX.IsEnabled())
{
AJAX.GetScriptManager(this).AsyncPostBackTimeout = Host.AsyncTimeout;
}
}
protected override void OnInit(EventArgs e)
{
base.OnInit(e);
//First, check for the existence of the Anti-XSS cookie
var requestCookie = Request.Cookies[AntiXsrfTokenKey];
Guid requestCookieGuidValue;
//If the CSRF cookie is found, parse the token from the cookie.
//Then, set the global page variable and view state user
//key. The global variable will be used to validate that it matches
//in the view state form field in the Page.PreLoad method.
if (requestCookie != null &&
Guid.TryParse(requestCookie.Value, out requestCookieGuidValue))
{
//Set the global token variable so the cookie value can be
//validated against the value in the view state form field in
//the Page.PreLoad method.
_antiXsrfTokenValue = requestCookie.Value;
//Set the view state user key, which will be validated by the
//framework during each request
Page.ViewStateUserKey = _antiXsrfTokenValue;
}
//If the CSRF cookie is not found, then this is a new session.
else
{
//Generate a new Anti-XSRF token
_antiXsrfTokenValue = Guid.NewGuid().ToString("N");
//Set the view state user key, which will be validated by the
//framework during each request
Page.ViewStateUserKey = _antiXsrfTokenValue;
//Create the non-persistent CSRF cookie
var responseCookie = new HttpCookie(AntiXsrfTokenKey)
{
//Set the HttpOnly property to prevent the cookie from
//being accessed by client side script
HttpOnly = true,
//Add the Anti-XSRF token to the cookie value
Value = _antiXsrfTokenValue
};
//If we are using SSL, the cookie should be set to secure to
//prevent it from being sent over HTTP connections
if (System.Web.Security.FormsAuthentication.RequireSSL &&
Request.IsSecureConnection)
{
responseCookie.Secure = true;
}
//Add the CSRF cookie to the response
Response.Cookies.Set(responseCookie);
Page.PreLoad += master_Page_PreLoad;
}
//set global page settings
InitializePage();
//load skin control and register UI js
UI.Skins.Skin ctlSkin;
if (PortalSettings.EnablePopUps)
{
ctlSkin = UrlUtils.InPopUp() ? UI.Skins.Skin.GetPopUpSkin(this) : UI.Skins.Skin.GetSkin(this);
//register popup js
JavaScript.RequestRegistration(CommonJs.jQueryUI);
var popupFilePath = HttpContext.Current.IsDebuggingEnabled
? "~/js/Debug/dnn.modalpopup.js"
: "~/js/dnn.modalpopup.js";
ClientResourceManager.RegisterScript(this, popupFilePath, FileOrder.Js.DnnModalPopup);
}
else
{
ctlSkin = UI.Skins.Skin.GetSkin(this);
}
// DataBind common paths for the client resource loader
ClientResourceLoader.DataBind();
//check for and read skin package level doctype
SetSkinDoctype();
//Manage disabled pages
if (PortalSettings.ActiveTab.DisableLink)
{
if (TabPermissionController.CanAdminPage())
{
var heading = Localization.GetString("PageDisabled.Header");
var message = Localization.GetString("PageDisabled.Text");
UI.Skins.Skin.AddPageMessage(ctlSkin, heading, message,
ModuleMessage.ModuleMessageType.YellowWarning);
}
else
{
if (PortalSettings.HomeTabId > 0)
{
Response.Redirect(Globals.NavigateURL(PortalSettings.HomeTabId), true);
}
else
{
Response.Redirect(Globals.GetPortalDomainName(PortalSettings.PortalAlias.HTTPAlias, Request, true), true);
}
}
}
//Manage canonical urls
if (PortalSettings.PortalAliasMappingMode == PortalSettings.PortalAliasMapping.CanonicalUrl)
{
string primaryHttpAlias = null;
if (Config.GetFriendlyUrlProvider() == "advanced") //advanced mode compares on the primary alias as set during alias identification
{
if (PortalSettings.PrimaryAlias != null && PortalSettings.PortalAlias != null)
{
if (string.Compare(PortalSettings.PrimaryAlias.HTTPAlias, PortalSettings.PortalAlias.HTTPAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = PortalSettings.PrimaryAlias.HTTPAlias;
}
}
}
else //other modes just depend on the default alias
{
if (string.Compare(PortalSettings.PortalAlias.HTTPAlias, PortalSettings.DefaultPortalAlias, StringComparison.InvariantCulture) != 0)
{
primaryHttpAlias = PortalSettings.DefaultPortalAlias;
}
}
if (primaryHttpAlias != null && string.IsNullOrEmpty(CanonicalLinkUrl))//a primary http alias was identified
{
var originalurl = Context.Items["UrlRewrite:OriginalUrl"].ToString();
CanonicalLinkUrl = originalurl.Replace(PortalSettings.PortalAlias.HTTPAlias, primaryHttpAlias);
}
}
//check if running with known account defaults
if (Request.IsAuthenticated && string.IsNullOrEmpty(Request.QueryString["runningDefault"]) == false)
{
var userInfo = HttpContext.Current.Items["UserInfo"] as UserInfo;
//only show message to default users
if ((userInfo.Username.ToLower() == "admin") || (userInfo.Username.ToLower() == "host"))
{
var messageText = RenderDefaultsWarning();
var messageTitle = Localization.GetString("InsecureDefaults.Title", Localization.GlobalResourceFile);
UI.Skins.Skin.AddPageMessage(ctlSkin, messageTitle, messageText, ModuleMessage.ModuleMessageType.RedError);
}
}
//add CSS links
ClientResourceManager.RegisterDefaultStylesheet(this, string.Concat(Globals.HostPath, "default.css"));
ClientResourceManager.RegisterIEStylesheet(this, string.Concat(Globals.HostPath, "ie.css"));
ClientResourceManager.RegisterStyleSheet(this, string.Concat(ctlSkin.SkinPath, "skin.css"), FileOrder.Css.SkinCss);
ClientResourceManager.RegisterStyleSheet(this, ctlSkin.SkinSrc.Replace(".ascx", ".css"), FileOrder.Css.SpecificSkinCss);
//add skin to page
SkinPlaceHolder.Controls.Add(ctlSkin);
ClientResourceManager.RegisterStyleSheet(this, string.Concat(PortalSettings.HomeDirectory, "portal.css"), FileOrder.Css.PortalCss);
//add Favicon
ManageFavicon();
//ClientCallback Logic
ClientAPI.HandleClientAPICallbackEvent(this);
//add viewstateuserkey to protect against CSRF attacks
if (User.Identity.IsAuthenticated)
{
ViewStateUserKey = User.Identity.Name;
}
//set the async postback timeout.
if (AJAX.IsEnabled())
{
AJAX.GetScriptManager(this).AsyncPostBackTimeout = Host.AsyncTimeout;
}
}