After upgrade to db version v4.12, the group auths are not effective any more (but still set up).

Following text will be HtmlEncoded but it already HTML

            <div>
                <h1>Signware<br><!-- initial text -->
                    <img border="0" hspace="0" src="images/h1_line.gif" width="343" height="1"></h1>
                <h2 style="margin-top: 0">Kommunikation &amp; Werbung</h2>
            </div>
            <div>
				<ul>
                    <li><a href="#" target="_blank">File 1</a></li>
					<li><a href="#" target="_blank">File 2</a></li>
                </ul>
            </div>

in preview mode:

As soon as I add some text in the very first position, the whole text is handled correctly for proper HTML encoding:

will lead to

As by my tests: starting with 0 to 3 leading space chars has got another logic as there are 4 or more leading space chars

Nice tool for quick editor: http://yabwe.github.io/medium-editor/

Reproduction steps:

• successfull user login with ASP.NET and classic ASP enabled on server
• ASP.NET and ASP stay logged in for several hours/days
• but at some point, ASP sessions won't be refreshed any more, some hours later, the user is not logged on at classic ASP (while still everything stays okay with ASP.NET)

• embedded images (mime embedding, using ContentID)
• alternative plain text
• attachments
• free for open source (e.g. MIT, LGPL, not GPL), if possible standard .NET solution for .NET 2 or higher

System.Exception: Unexpected error while creating file system object
bei CompuMaster.camm.WebManager.Tools.IO.Junctions.Create(String ExistingFileSystemObject, String NewLinkingFileSystemObject, LinkTypeDirectives LinkType) in G:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CompuMaster.camm.WebManager.Tools.IO.Junctions.vb:Zeile 200.
bei CompuMaster.camm.WebManager.DownloadHandler.GetDataToRecordAndProcess(DownloadLocations downloadLocation, String pathInDownloadLocation, Boolean overwrite, Boolean zipFilesFirst, String zipArchiveName, Boolean enforceDownload) in G:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\DownloadHandler.vb:Zeile 1505.

On 1st time creation (by CWX app), this exception is thrown, on 2nd CWX page access, the app (and/or CWM DH) can continue.

Probably a bug of CWM DH or from Win system/NTFS volume/...?

required for dropping requirement of sysdata/config.vb and custom_internationalizations.vb

• admin/user_clone.aspx: override for AdditionalFlagAllowCopy (requires maybe RegEx)
• Configuration.UserCloneExludedAdditionalFlags / WMSystem.UserCloneExludedAdditionalFlags
• WMPasswordSeverities
• WMNotifications
• Internationalizations

Major improvements shall be

• improved data integrity after deleting items sometimes left over some foreign-key-items
• performance, especially for
  • navigation data lookup
  • IsUserAuthorized checks
• Allow and Deny rules for memberships
• Allow and Deny rules for authorizations
• pave the way for (multiple) membership inheritance
  • inheritance of completely calculated membership sets, so that inheriting from a 2nd group with a deny rule for user A doesn't automatically deny user A being Allow-member of 1st group
• pave the way for (multiple) authorizations inheritance
  • inheritance of all Allow and Deny rules, so that inheriting from a 2nd security object with a deny rule for user A does automatically deny user A being authorized of 1st security object
• pave the way for splitting application objects into security objects + 0...n navigation items

1. Registration form: blank salutation should be possible by default
2. Every required field should be configurable by global config in DB instead of requirement for customized code

Sometimes the user doesn't know how to edit a page content correctly completely, because the user forget's/doesn't know that the same content must be edited in/for another additional market or server group, too.

That's why there should be an optional editor note visible in edit mode with a customizable text.
The editor note should be an attribute of the SmartEditor tag, e.g.

<... editornote="Please always update in all languages and on intranet+extranet" ...>

Display of securityobjects currently:

• Instead of "application ID" better show "security object ID"
• Be able to display 0 or 1..n security objects from which can be inherited (if DB version supports that)
• be able to add inheritions from additional security objects also if already 1 inherition setup is configured
  
• be able to remove the desired inherition setup also if 2 or more inherition setups are configured
  

After a user registers, he should receive an email containing a link to activate his account.

Status quo

Currently, there is just the following:

• No-Opt
• removal only via responsible security administrator

Further development

In any case, the following setting must be configurable in administration section

• Settings page/entry for user confirmation type (None/Double-Opt-In/Double-Opt-Out)
• Confirmation type and step with timestamp must be stored in user profile

Bear in mind

• already existing user accounts won't be validated/confirmed without explicit re-validation (administration feature might be another separate feature request)
• Imported user accounts (see administration pages >> users >> import users) never start a validation process

Double-Opt-In

• Send E-Mail containing removal link
• After logging in, provide a delete account for the user in navigation >> Your Profile

Double-Opt-Out

(Possible) Todos

• Create/Adjust email templates
• Send E-Mail containing activation link
• Account should remain deactivated until the user opens the activation link
  • Indicate in the Administration UI whether a user is deactivated or pending registration.
• Cleanup of accounts that have not been activated within a certian period (e. g. 24 hours)
• Administrator should be able to choose whether to use the current system (account is immediatly activated ) or the new system (activation link).

(To be expanded, also see/review email of KH)

Required for

• SmartPlainTextEditor
• CommonMarkEditor
• RadEditor

• introduce group NavItemOperators
• administration UI
• GetNavigationItems in its several variants
• updates on triggers and view
• update database tables
• review code for milestone checks

There might be deadlock situations when running the asynchronous webcron cleanup tasks:

CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider+DataException:   Data layer exception 

System.Data.SqlClient.SqlException: Die   Transaktion (Prozess-ID 52) befand sich auf Sperre Ressourcen aufgrund eines   anderen Prozesses in einer Deadlocksituation und wurde als Deadlockopfer   ausgewählt. Führen Sie die Transaktion erneut aus. 
at   System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean   breakConnection, Action`1 wrapCloseInAction) 
at   System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject   stateObj, Boolean callerHasConnectionLock, Boolean asyncClose) 
at   System.Data.SqlClient.TdsParser.TryRun(RunBehavior runBehavior, SqlCommand   cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler,   TdsParserStateObject stateObj, Boolean& dataReady) 
at   System.Data.SqlClient.SqlDataReader.TryConsumeMetaData() 
at   System.Data.SqlClient.SqlDataReader.get_MetaData() 
at   System.Data.SqlClient.SqlCommand.FinishExecuteReader(SqlDataReader ds, RunBehavior   runBehavior, String resetOptionsString, Boolean isInternal, Boolean   forDescribeParameterEncryption) 
at   System.Data.SqlClient.SqlCommand.RunExecuteReaderTds(CommandBehavior   cmdBehavior, RunBehavior runBehavior, Boolean returnStream, Boolean async,   Int32 timeout, Task& task, Boolean asyncWrite, Boolean inRetry,   SqlDataReader ds, Boolean describeParameterEncryptionRequest) 
at   System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior   cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method,   TaskCompletionSource`1 completion, Int32 timeout, Task& task,   Boolean& usedCache, Boolean asyncWrite, Boolean inRetry) 
at   System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior   cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method) 
at   System.Data.SqlClient.SqlCommand.ExecuteScalar() 
at   CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider.ExecuteScalar(IDbCommand   dbCommand, Automations automations) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CommonTools\Tools.Data.vb:line   317 
--- End of inner exception stack trace --- 
at   CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider.ExecuteScalar(IDbCommand   dbCommand, Automations automations) in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CommonTools\Tools.Data.vb:line   319 
at CompuMaster.camm.WebManager.Log.DeleteExpiredEntries(Int32   maxNumberOfDeletedRows) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:line   1887 
at CompuMaster.camm.WebManager.Log.CleanUpLogTableInternal() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:line   1915 
at CompuMaster.camm.WebManager.Log.CleanUpLogTable() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:line   1898 
at   CompuMaster.camm.WebManager.WebServices.CoreWebCronJobRunner.RunCleanups() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WebServices\CoreWebCronJobs.vb:line   256 
at   CompuMaster.camm.WebManager.WebServices.CoreWebCronJobRunner.ExecutePendingProcesses(DateTime   requestStartTime, Int32 maxTotalSecondsTimeout) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WebServices\CoreWebCronJobs.vb:line   153 

CommandType: Text 
CommandText: DELETE FROM [dbo].[Log] WHERE ID IN (   SELECT TOP 500 ID FROM dbo.Log INNER JOIN (SELECT ValueInt as ConflictTypeID,   ValueDecimal as RetentionDays FROM dbo.System_GlobalProperties WHERE   PropertyName='ConflictTypeAge') AS RetentionConfig ON Log.ConflictType =   RetentionConfig.ConflictTypeID WHERE LoginDate < DateAdd(dd,   -COALESCE(RetentionDays, @DefaultRetentionDays), GETDATE()) ) SELECT @@ROWCOUNT   
Parameters: Parameter 0: @DefaultRetentionDays: 1460   
System.Data.SqlClient.SqlException detail data: HelpLink.ProdName=Microsoft   SQL Server 
System.Data.SqlClient.SqlException detail data:   HelpLink.ProdVer=10.50.6220 
System.Data.SqlClient.SqlException detail data:   HelpLink.EvtSrc=MSSQLServer 
System.Data.SqlClient.SqlException detail data:   HelpLink.EvtID=1205 
System.Data.SqlClient.SqlException detail data:   HelpLink.BaseHelpUrl=http://go.microsoft.com/fwlink   
System.Data.SqlClient.SqlException detail data: HelpLink.LinkId=20476

will be shown in preview as

and when going back to edit mode, content is modified to

(two space chars still available, but the plus char (+) ist missing, see yellow mark above)

Data protection cleanup should keep a minimal amount of data, because some applications might refer to those user accounts: in case data protection is very aggressive and removes absolutely all user account data, an application might get a UserNotFoundException, but it must be e.g. a UserHasBeenDeletedException or empty user name/data (depending on lookup/search methods/arguments)

For this, there is the need to save some minimal data for all user accounts in log_users:

• exiting+removed user accounts (e.g. by patch-sql: IsDeletedUser="0")
• on-remove of user account: IsDeletedUser="1"
• data protection setup page: never provide flag "IsDeletedUser" with a checkbox

This is more errors in current CWX oder zumindest auf PoliciesCWX:

1. Download handler FAILED to create a hard link: possibly already fixed in latest CWM version - maybe related to #38
2. Text editor on save/quit with loaded HTML content (e.g. home.htm): ASP.NET RequestValidation fails, therefore encoding required BEFORE submitting of editor content - possibly see similar mechanism implemented in SmartPlainTextHtmlEditor
3. Upload button leads to errror because upload DLL not available (any more) and/or required changes in web.config
4. update CWM version and remove obsolete dependencies (Rad*, etc.)
5. navigation component obsolete - to be replaced for browser compatibility

Exception details to point 1:

System.Exception: Win32 Fehlermeldung: 'System.ComponentModel.Win32Exception (0x80004005): Eine Datei kann nicht erstellt werden, wenn sie bereits vorhanden ist'
Hardlink-Sourcefile: 'C:\inetdata\...file_transfer\abc_03_15 x3.pdf'
Hardlink-Targetfile: 'C:\inetpub\...\system\downloads\3Z_l2vCEttYKt4NrqaxQqQtt\cache\cwx\aS5qZs4w_WfwwCWUZYKSYQtt\abc_03_15 x3.pdf'
bei CompuMaster.camm.WebManager.Tools.IO.Junctions.Create(String ExistingFileSystemObject, String NewLinkingFileSystemObject, LinkTypeDirectives LinkType) in G:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CompuMaster.camm.WebManager.Tools.IO.Junctions.vb:Zeile 142.
bei CompuMaster.camm.WebManager.DownloadHandler.GetDataToRecordAndProcess(DownloadLocations downloadLocation, String pathInDownloadLocation, Boolean overwrite, Boolean zipFilesFirst, String zipArchiveName, Boolean enforceDownload) in G:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\DownloadHandler.vb:Zeile 1505.

Maybe CIP could be separated into separately installable modules - to be installed using tools like nuget, bower, npm, browserify or similar

CIP

• cammWM.dll
• cammWM.Admin.dll
• CIP4.Core
  • cammWM.dll
• CIP4.Web.Core
  • CIP.Core
  • /system/cammWebManager.ascx
• CIP4.Web.RootWeb
  • CIP.Web.Core
  • /sysdata/config.vb
  • /sysdata/custom_internationalization.vb
  • /system/* w/o admin/, install/install.aspx
  • /sysdata/* w/o admin/, install/install.aspx
• CIP4.Web.AdminArea
  • CIP.Web.RootWeb
  • cammWM.Admin.dll
  • /system/admin/, install/install.aspx
  • /sysdata/admin/, install/install.aspx
• CIP4.Web.Install
  • CIP.Web.RootWeb
  • /system/admin/install/install.aspx
  • /sysdata/admin/install/install.aspx
• CIP4.Web.Samples.MiniModules
  • CIP.Web.RootWeb
  • /modulesamples
• CIP4.Web.Upload
  • CIP.Web.RootWeb
  • /system/...upload.aspx & Co.
• CIP4.Web.PlainTextEditor & CommonMarkupEditor
  • DLL
  • CIP4.Web.Upload
• CIP4.Web.RootWeb.Asp
  • /sysdata/*.asp
  • /system/*.asp
• CIP4.Web.RootWeb.Php5
  • /sysdata/.php
  • /system/.php
• CIP4.LdapServer
  • CIP.Core
  • ...

Following exception is thrown:

CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider+DataException:   Data layer exception ---> System.Data.SqlClient.SqlException: Die   Transaktion (Prozess-ID 59) befand sich auf Sperre Ressourcen aufgrund eines   anderen Prozesses in einer Deadlocksituation und wurde als Deadlockopfer   ausgewählt. Führen Sie die Transaktion erneut aus. 
bei System.Data.SqlClient.SqlConnection.OnError(...
bei CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider.ExecuteScalar(IDbCommand   dbCommand, Automations automations) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CommonTools\Tools.Data.vb:Zeile   317. 
--- Ende der internen Ausnahmestapelüberwachung --- 
bei   CompuMaster.camm.WebManager.Tools.Data.DataQuery.AnyIDataProvider.ExecuteScalar(IDbCommand   dbCommand, Automations automations) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\CommonTools\Tools.Data.vb:Zeile   319. 
bei CompuMaster.camm.WebManager.Log.DeleteExpiredEntries(Int32   maxNumberOfDeletedRows) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:Zeile   1887. 
bei CompuMaster.camm.WebManager.Log.CleanUpLogTableInternal() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:Zeile   1915. 
bei CompuMaster.camm.WebManager.Log.CleanUpLogTable() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\SubClasses\log.vb:Zeile   1898. 
bei   CompuMaster.camm.WebManager.WebServices.CoreWebCronJobRunner.RunCleanups() in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WebServices\CoreWebCronJobs.vb:Zeile   256. 
bei   CompuMaster.camm.WebManager.WebServices.CoreWebCronJobRunner.ExecutePendingProcesses(DateTime   requestStartTime, Int32 maxTotalSecondsTimeout) in   D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WebServices\CoreWebCronJobs.vb:Zeile   153. 

CommandText:

DELETE 
FROM [dbo].[Log] 
WHERE ID IN ( 
  SELECT TOP 500 ID 
  FROM dbo.Log 
  INNER JOIN (
      SELECT ValueInt as ConflictTypeID, ValueDecimal as RetentionDays 
      FROM dbo.System_GlobalProperties 
      WHERE PropertyName='ConflictTypeAge'
    ) AS RetentionConfig 
    ON Log.ConflictType = RetentionConfig.ConflictTypeID 
    WHERE LoginDate < DateAdd(dd, -COALESCE(RetentionDays, @DefaultRetentionDays), GETDATE()) 
  ) 
SELECT @@ROWCOUNT 

In following screenshot, there are several issues visible:

Editor tag is configured as follows:

<cammWebEdit:SmartCommonMarkEditor marketlookupmode="0" 
	Images="images" Docs="docs"
	ImagesAllowedFileExtensions="*.jpg,*.gif"
	DocumentsAllowedFileExtensions="*.pdf,*.txt,*.doc,*.docx,*.rtf,*.xls,*.xlsx,*.ppt,*.pptx"
	...

1. loremipsum.txt can't be uploaded, error message appears (alternative of ImagesAllowedFileExtensions="jpg,gif" DocumentsAllowedFileExtensions="pdf,txt,doc,docx,rtf,xls,xlsx,ppt,pptx" doesn't work, too)
2. error message shows quotation marks in between
3. documents list is empty, but 2 files .pdf are in the docs directory

If web.config has one of the following settings, a daily warning mail should be sent on ApplicationInit or even better on EndOfFirstRequest

• for root web app
• for all web apps

Watch out for settings

• compilation debug=true
• customErrors=Off
• appSetting NotifyOnApplicationException<2 (as long as there is no setting for NotifyOnMissingExceptionHandling=Off (default: On))
• missing CwmHttpApplication (as long as there is no setting for NotifyOnMissingExceptionHandling=Off (default: On))

The document insertion form shows as follows

There are 2 general options available

1. Hide the line with the dropdown box for the target attribute
2. CommonMark must support the syntax for adding additional link attributes

For option 1

The data referenced by the token must transport additional details on which properties are supported/unsupported (e.g. in this case, target is NOT supported)

For option 2, one or both of these points must see progress

• Further development is required, see Knagis/CommonMark.NET#101
• Maybe additional work on CommonMark specs is required, see
  • https://talk.commonmark.org/t/links-with-attributes-like-target-class-etc/2246
  • https://talk.commonmark.org/t/multimarkdown-link-and-reference-image-attributes/1916
  • http://fletcher.github.io/MultiMarkdown-5/syntax.html#linkandimageattributes
  • http://stackoverflow.com/questions/4425198/markdown-target-blank
  • https://talk.commonmark.org/t/consistent-attribute-syntax/272/104

Given is a editor as following:

    <cammWebEdit:SmartCommonMarkEditor id="editor" runat="server" DocumentsUploadPath="docs" ImagesUploadPath="images" 
        DocumentsAllowedFileExtensions=".txt,.doc,.rtf,.pdf,.xls,.ppt" ImagesUploadSizeMax="1512000"
        DocumentsUploadSizeMax="1512000" marketlookupmode="Language" securityobjecteditmode="@@Supervisors">{enter here...}</cammWebEdit:SmartCommonMarkEditor>
some text
</cammWebEdit:SmartCommonMarkEditor>        

No content versions have been created into the database, yet.

Reproduction

1. OK: The current UI market was 2 when initially opening the editor control
2. OK: the editor control loads from DB, sees there is no data for it and loads default content "some text"
3. WARNING: the editor control has already created
   • market 0 / Neutral / All -> empty content
   • market 2 / German -> loaded with default text
4. WARNING: the author typically sees everything is okay and saves and activates - but don't realize there is a neutral market with empty content!!

Suggestion

if the default text is loaded, the default market should not be the current market in every situation

• OK: market lookup mode None/SingleMarket: the single market 0
• OK: market lookup mode Language+Market: the current UI market
• OK: forced language/market (see control property and/or configuration setting): the forced language/market
• TODO: market lookup mode BestMatchingLanguage: push the default text into market 0 instead of current UI market and don't create the current UI market as data automatically (the user should choose if he wants to)

Following tag (no versions have been created, yet)

<cammWebEdit:SmartCommonMarkEditor marketlookupmode="0" 
			ID="MainEditor" runat="server">
<!-- initial text -->
<div>some text</div>

will be shown in client HTML encoded (But expected correct behaviour: HTML should be considered as HTML (not being encoded))

<!-- initial text -->
<div>some text</div>

The deployed page source at client is as follows:

<!-- initial text -->
<div>some text</div>

in a customer 'V' instance, delete by SQL fails with following command/error:

Action "Delete" is provided, but should not be deletable and marked as "Auto-Rule"

Following control declaration is without any property setup for images/docs and no upload script url:

<cammWebEdit:SmartCommonMarkEditor id="testeditor" runat="server" 
    NoteForEditor="<em>Test for no upload support</em>"
    marketlookupmode="Language" securityobjecteditmode="@@Supervisors">{enter here...}
</cammWebEdit:SmartCommonMarkEditor>

But the img/doc insert/upload buttons are available (and should not be there)

To reduce file dependency of the many apps of a typical portal / application farm, JIT configuration should be reduced to the max to static-only customization in files, everything else into database

• Custom internationalization
• Custom password policies
• Dynamic/Alternative ServerHost setup
• Dynamic/Special URLs

Usually, the action buttons are available:

But if all members have been dropped, the title bar with the action buttons completely disappears :-(

At http://server/sysdata/admin/apprights_delete_transmission.aspx:

and click on "Yes, delete it, but keep a copy of all inherited authorizations", following error appears:

Environment:

Feature request for configuration and displaying of administration subsecuritydelegation "ViewRelations"

• for Groups/Memberships
• for SecurityObjects/Authorizations

When editing the document in a first language, the author might somes want to switch over to another language/market/version and check a few things. Coming back to the first language, the content is reset to the last saved status:

Before the user looses any data by using the 2 drop down lists for market/language or version and if there is any unsaved data, there might be a javascript popup asking if the user really wants to proceed without saving

(Another option would be to save those changes into the user session - when the user comes back to the very same market/version, the data from the session can be reloaded
Disadvantage: if the user closes the session, all changes (the user might think they are done and saved) are not saved and so are permanently lost.)

Readme.MD should contain some samples on how to provide a custom upload script URL
(and the wiki should contain additional info on how to provide functionality of upload mechanism)

The user profile sometimes contains sensitive data in defined flags, that's why a central setup must ensure that no security administrator, supervisor, etc. can view/read that sensitive data.

Suggested is a general property declaring extended properties for additional flags (by flag name), e.g.

• sensitive data (bool)
• data type (int, bool, etc.)
• maybe more in future

Subjects of change are:

• API: UserInfo object requires new AdditionalFlag collection which provides access to the extended data (see above list + optionally: Is(Hidden)SystemFlag)
• Admin area: UI for setup of extended properties of additional flags

Several customizings might be to be removed after enabling this feature.

The user will see following error at website:

When enabling debug output, the following error details appear:

Serverfehler in der Anwendung /corporate_policies.

Database has a newer build no. than this application. Access denied to prevent data corruption.

Beschreibung: Unbehandelte Ausnahme beim Ausführen der aktuellen Webanforderung. Überprüfen Sie die Stapelüberwachung, um weitere Informationen über diesen Fehler anzuzeigen und festzustellen, wo der Fehler im Code verursacht wurde. 

Ausnahmedetails: System.Exception: Database has a newer build no. than this application. Access denied to prevent data corruption.

Quellfehler: 

Beim Ausführen der aktuellen Webanforderung wurde einen unbehandelte Ausnahme generiert. Informationen über den Ursprung und die Position der Ausnahme können mit der Ausnahmestapelüberwachung angezeigt werden.

Stapelüberwachung: 


[Exception: Database has a newer build no. than this application. Access denied to prevent data corruption.]
   CompuMaster.camm.WebManager.WMSystem.CheckCompatibilityToDatabaseByBuildNumber() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\WMSystem.vb:1528
   CompuMaster.camm.WebManager.WMSystem.get_ConnectionString() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\WMSystem.vb:1484
   CompuMaster.camm.WebManager.WMSystem.InitializeEnvironment() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\WMSystem.vb:1373
   CompuMaster.camm.WebManager.WMSystem.set_CurrentServerIdentString(String Value) in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\WMSystem.vb:1325
   CompuMaster.camm.WebManager.Controls.cammWebManager._LoadConfiguration() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\Controls\cammWebManager.vb:97
   CompuMaster.camm.WebManager.Controls.cammWebManager.System_Init() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\Controls\cammWebManager.vb:133
   CompuMaster.camm.WebManager.Controls.cammWebManager.OnWebManagerInit() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\Controls\cammWebManager.vb:169
   CompuMaster.camm.WebManager.WMSystem.PageOnInit(Object sender, EventArgs e) in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\WMSystem\WMSystem.vb:1657
   System.Web.UI.Control.OnInit(EventArgs e) +109
   System.Web.UI.Control.InitRecursive(Control namingContainer) +166
   System.Web.UI.Control.InitRecursive(Control namingContainer) +379
   System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +464

Versionsinformationen: Microsoft .NET Framework-Version:4.0.30319; ASP.NET-Version:4.6.1637.0

This is the assembly version:

Existing project references:

• ComponentArt ➡️ not used in most custom projects ➡️ subject of complete removal from base lib
• SmartWebEditor (sWcms) ➡️ to separate, but keep basic feature-set to keep binary compatible

Files should only be listed if their file extension matched the allowed extensions list

After upgrade to 4.12.4113, the text modules assembly is missing

Required at

• webroots distribution directory
• webadminroot NuGet package

The SmartUpload location currently defaults to
/system/modules/smartwcms/
and also to
/sysdata/modules/smarteditor/

but should better default to
~/system/se-webupload/
as it's currently deployed by NuGet package cammWM.SmartEditorUpload

Locations to change are at least:

• Html-Resources (bug)
  
• Properties for UploadFormUrl (feature request)
• ...? (feature request)

The Single-Sign-On module failed creating a new camm Web-Manager account for "..." (...) from the external ADS user account "..."

This may be caused by unsufficient data in the ADS account. Please check the details for further analysis!

There was following error:
System.Threading.ThreadAbortException: Der Thread wurde abgebrochen.
bei System.Threading.Thread.AbortInternal()
bei System.Threading.Thread.Abort(Object stateInfo)
bei System.Web.HttpResponse.End()
bei CompuMaster.camm.WebManager.Pages.Login.Utils.LogonToAllOtherServers(WMSystem cammWebManager, String javaScriptCodeWhenLoginFailed) in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\page_login.vb:Zeile 419.
bei CompuMaster.camm.WebManager.Pages.Login.CheckLogin.LogonToAllOtherServers(String javaScriptCodeWhenLoginFailed) in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\page_login.vb:Zeile 635.
bei CompuMaster.camm.WebManager.Pages.Login.CheckLogin.LogonToAllOtherServers() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\page_login.vb:Zeile 629.
bei CompuMaster.camm.WebManager.Pages.Login.CheckLogin.ValidateUserCredentialsAndLogon() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\page_login.vb:Zeile 610.
bei CompuMaster.camm.WebManager.Pages.Login.LoginWithActiveDirectoryUser.LoadPageData() in D:\svn_repository\compumaster_products\camm\Web-Manager\libraries\base\cammWM\page_login_sso.vb:Zeile 250.

Reported error:

System.Exception: Win32 Fehlermeldung: 'System.ComponentModel.Win32Exception (0x80004005): Eine Datei kann nicht erstellt werden, wenn sie bereits vorhanden ist'
Hardlink-Sourcefile: 'C:\src\cwx\fte\vw\123rf Bilder.zip'
Hardlink-Targetfile: 'C:\inetpub\www\system\downloads\3Z_l2vCEPxYKt4NteaxQqQtt\cache\cwx\aS5ISs4w_WfwwCWWZqKSYQtt\123rf Bilder.zip'
bei CompuMaster.camm.WebManager.Tools.IO.Junctions.Create(String ExistingFileSystemObject, String NewLinkingFileSystemObject, LinkTypeDirectives LinkType) in G:\svn\products\cwm\libraries\base\cammWM\CompuMaster.camm.WebManager.Tools.IO.Junctions.vb:Zeile 142.
bei CompuMaster.camm.WebManager.DownloadHandler.GetDataToRecordAndProcess(DownloadLocations downloadLocation, String pathInDownloadLocation, Boolean overwrite, Boolean zipFilesFirst, String zipArchiveName, Boolean enforceDownload) in G:\svn\products\cwm\libraries\base\cammWM\DownloadHandler.vb:Zeile 1505

Empty value support (bug)

The dropdown list currently shows the 4 valid values:

There must be the option to NOT specify it, so a blank/empty value must be added which should be the default setting.

Custom value support (enhancement)

Additionally, the target might be a custom value, there should be a textbox for supporting custom target names, e.g. mainframe

Currently, strong typed additional flags are already supported:

But it would be great to use e.g. another type "xyz{securestring}" for declaring special additional flags as write-only-flags -> never visible/readable in UI, write-only access in UI -> readable only by API calls

User is already authorized with standard priviledge (no dev&test auth) and shall be assigned additionally with dev&test priviledge:

Expected: just add the dev&test auth

Auto-Rule auths should only be visible once (see 1 and 2) - even if security object inherits from other security objects

CORRECT: Anonymous group IS separated for each server group
WRONG/MISSING: Public group HAS TO BE separated for each server group, too

Logging module incl. nav items should move into a separately installed plugin

Search using CMM crawler but with index for each Server Group and with security Information descriptor on each record

Cwm.Page implements Standard Interface

• IsCrawlerRequest
• CrawlerRequest
  • SiteMapByVisitor
    • Anonymous
    • Public
    • IndividualUser -> causing crawler to scan and save Content for all users separately -> warning: expensive
    • AuthorizationForSecurityObject(secObj as string)
  • SecurityObjectsInvolved as String()
  • RecordByVisitor
  • depends on market/language/None (Default market or must-override)
  • all methods are functions executed on crawlerrequest - no additionalmcode should be executed if a Standard user opens a page
  • app's initial page usually provides the crawler Setup, addional pages only Need it if additional crawler Setup has to be provided (i expect this Situation to be very seldom)

CrawlerRecord class, as List

• PlainTextContent
• TargetUrl
• TargetReference (app specific value, e.g. an object no. - required for in-app-searches)
• RelatedToMarket
• AvailableForSecurityObject
• MetaFieldName (nothing for Default Content, a string for a meta field Name)
• MetaFieldType (see additional flag types)
  Without CrawlingSetup Within an app, crawler crawls for anonymous only stops on web forms (no submit)

IsCrawlerRequest checks for user Agent with individual token per crawler-user

cwm Needs an additional user for doing the crawling Jobs

crawler crawls

• on configured Server Groups (with auto-replace rules for Server names in URLs in case crawler Needs to scan at a virtual host which has got another official Name, typically when crawler runs at Intranet but for Extranet Server Group)
• entry pages are
  • servergroupfficialurl
  • auto-completed navurls for all available nav items
• every activated market
• as webslave Service recommended, as core webservice Task by cwm trigger for shared Hostings without webslave machine (webcron or jit-page-access-cron)