Fork me on GitHub
DNN Apps - Demo-Zone
Discover DNN-Apps - simple and elegant, easy to customize
You are here: Home  >  Apps  >  RSS Feed

RSS Feed App for DNN

The following App helps you consume and present an RSS feed. The output can easily be adapted by creating another View in the App and modifying it to your needs. For the following demo I've used the DNN Community-Blog Feed, and the DNN-Connect Feed but it should work with just about anything. The Community Blog Feed doesn't have pictures though, the DNN-Connect does.

Here's a list of blogs and downloads / demos

  1. Initial blog - using the built in DNN Razor Host: on DNNSoftware - on DNN-Connect - demo - download
  2. First blog moving it into the 2sxc Razor Host: on DNNSoftware - on DNN-Connect - demo - download
  3. Third blog - demo - download
  4. Fourth blog about DNN-Search - demo - download
  5. Fifth blog about various views - demo - download
  6. Sixth blog about multi-language - demo - download
8/12/2017 DNN Application Insights v3.0 more →

8/12/2017 5:10:00 PM

Hi all. After a while working with React/Redux and the new DNN PersonaBar model introduced on DNN Platform 9.0, I have started to update all my modules to avoid the use of the disappeared Host menu on DNN. The first module updated has been the DNN Application Insights now available for download on GitHub. This includes: Previous package updates to support version 2.4.0 of Application Insights, including enhanced live metrics streaming (committed by Mitchel Sellers) New UI on the persona bar to setup the module settings Requiring DNN Platform 9.0.1 or later If you have any interesting idea to add on the settings area, please let me know. I have been checking all the configuration settings that can be done through the Application Insights configuration system and I will start adding them for the next release. Download DNN Application Insights v3.0 Source code on GitHub Updates for the Redis Caching Provider and Azure AD provider are the next ones.

more

7/26/2017 New Release of DNN Security Analyzer more →

7/26/2017 1:44:00 AM

We are delighted to have another release of Security Analyzer module - version 8.1. The main purpose of this release is to protect websites from the recently published security vulnerability "2017-08 (Critical) Possible remote code execution on DNN sites". More details about the vulnerability can be found at our Security Center http://www.dnnsoftware.com/community/security/security-center. 2017-08 (Critical) Possible remote code execution on DNN sites We applied the first fix to this issue in DNN and Evoq versions 9.1.1, however, upon further investigation, we discovered the need for additional tightening, which is why we are releasing an updated version of this tool with a complete fix for the problem. This issue is a critical one, and goes back to several versions of DNN including version 5.0 and above. You are strongly advised to apply this immediately. Supported Versions The tool supports DNN and Evoq versions 5.6.2 and above, including .Net Framework 3.5. Sites running DNN or Evoq versions 5.6.2 up until DNN or Evoq 9.1.1 must apply this tool immediately. As always, it's best to install in a test environment prior to doing so in production. Other Changes We have made a few more updates to the tool also. Telerik Security Detection We are able to warn if Telerik security fix (also known as critical security fix June-2017) was not applied. If you see the red X like the screenshot above, you must install the appropriate security patch along. If your site is running version 7.1.2 to 9.1.0, you need to visit the Critical Security Update page and install the Security Analyzer. If your site is running version 5.2 to 7.1.1, you need to visit the Critical Security Update for Older Versions page and install the Security Analyzer. There are three checks done here: The Bin folder has the right version of Telerik.Web.UI.dll file in the Bin folder The web.config has an entry for Telerik.AsyncUpload.ConfigurationEncryptionKey The web.config has an entry for Telerik.Web.UI.DialogParametersEncryptionKey The above two entries can be ANY value. Make sure it's longer than 64 characters. More details about the two keys can be found here: http://docs.telerik.com/devtools/aspnet-ajax/general-information/web-config-settings-overview UPDATE (7/27/2017) - We have made a new release 8.1.1 of this tool. It now auto adds Telerik.Web.UI.DialogParametersEncryptionKey. The tool can be downloaded from the same location. Security-Module Disabling-Detection Security Analyzer uses a special module to perform its activities. In rare cases, a malicious user may disable that. The following confirmation message confirms that the security code is still in effect. Disk Access Check We have made slight tweaks in this area to ensure that there is no false positive reporting. However, per our research, we have found that the warnings noted in this check has mostly been very accurate. More details on IIS App Pool identify can be found at the following resources: https://www.youtube.com/watch?v=0tEojc_GU_A https://stackoverflow.com/questions/5437723/iis-apppoolidentity-and-file-system-write-access-permissions https://docs.microsoft.com/en-us/iis/manage/configuring-security/ensure-security-isolation-for-web-sites https://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/86127a66-dfd0-431b-b24e-84aee7e15fe1.mspx?mfr=true Upgrades to newer version of DNN With this version of the tool, you may encounter upgrade errors (shown above) while upgrading DNN or Evoq to versions prior to 9.0. The problem won't happen if you upgrade to any version 9.0 or above. Of course, we always recommend upgrading to the latest version of DNN or Evoq. The workaround is very simple. Simply uinstall this tool prior to upgrade, and install again after install. More details about this problem can be found here: https://dnntracker.atlassian.net/browse/DNN-9428 Download The Installation package can be downloaded from here: https://github.com/DNNCommunity/SecurityAnalyzer/releases Ensure to download the version with "Latest Release" tag. Installation of this tool Security Analyzer can be installed as any standard DNN extension. Please refer to this documentation for more details: http://www.dnnsoftware.com/docs/administrators/extensions/install-extension.html Previous Releases This blog explains the general usage of Security Analayzer: Updates to Security Analyzer Tool Additional Questions Please send an email to security@dnnsoftware.com for questions related to security. Alternatively, you may ask a question in the comments also.  

more

7/6/2017 DNN 9.1.1 Security Bulletin Released more →

7/6/2017 1:57:00 AM

Recently DNN Platform 9.1.1 has been released. This release resolves the following security issues: ·         2017-06 (Low) Vulnerable ASP.NET MVC library (assembly) in Platform 8.0.0 and Evoq 8.3.0 ·         Affected Versions: All versions from 8.0.0 up to 9.0.2 ·         2017-07 (Low) SWF files can be vulnerable to XSS attacks ·         Affected Versions: All versions from 3.0.0 up to 9.0.2 ·         2017-08 (Critical) Possible remote code execution on DNN sites ·         Affected Versions: All versions from 5.0.0 up to 9.1.0 ·         2017-09 (Low) HTML5: overly permissive message posting policy on DNN sites ·         Affected Versions: All versions from 8.0.0 up to 9.1.0 ·         2017-10 (Critical) Possibility of uploading malicious files to DNN sites ·         Affected Versions: All versions from 5.2.0 up to 9.1.0 ·         2017-11 (Low) Possibility of URL redirection abuse in DNN sites ·         Affected Versions: All versions from 7.0.0 up to 9.1.0 Full details of all the above issues can be read at http://www.dnnsoftware.com/community/security/security-center As always, we recommend you upgrade as soon as possible, particularly when the release contains any “critical” fix. Also, we recommend users check the Security Analyzer page in the PersonaBar to help them audit their sites’ security settings.   Acknowledgements We would like to thank the following for responsibly disclosing issues to our security team, and allowing us the time to resolve them: Daniel Kalinowski Alvaro Muñoz (@pwntester) and Oleksandr Mirosh from Hewlett-Packard Enterprise Security  Thanh Van Tien Nguyen

more

6/21/2017 Critical Security Update - June 2017 more →

6/21/2017 4:35:00 PM

Our security team was recently informed of a security vulnerability in a third-party component suite that is used within DNN Products. It is critical that you follow the instructions provided in this post to ensure that your site isn’t compromised. This vulnerability affects all versions of Evoq and DNN Platform. In order to protect your site, you will need to download and install the Security Patch. You will install this package just like any other module in your site. Please follow the instructions in our documentation center for how to install an extension. Essential Resources: Download the Security Patch Documentation for installing extensions Please do not wait to protect your site. It will only take a few minutes to install the patch. For Evoq customers, Customer Support Team is also available to address any questions that you may have. Frequently Asked Questions What versions of DNN products are affected by this issue? All DNN products since DNN 5.2 are affected. However, this patch only applies to versions 7.1.2 and higher. What if I’m on a version older than 7.1.2? There are other security vulnerabilities in versions prior to 7.1.2. This patch alone will not protect your site. You must upgrade to a newer version for this patch to work properly. Evoq customers may contact support for more information. How do I install this patch? You will install this patch just like any other module or extension. Please follow the steps outlined in our documentation center for installing modules. What will happen if I don’t install this patch? This patch is necessary to ensure that your site is secure. Failure to install this patch may compromise the security of your site. Is it possible that my site has already been compromised? We recommend using DNN’s Security Analyzer to check if your site has been compromised. Evoq customers may contact customer support for more details. How do I access the Security Analyzer tool? In version 9, you can access the Security Analyzer from Settings > Security > Security Analyzer. Older versions should download and install the Security Analyzer tool. https://github.com/DNNCommunity/SecurityAnalyzer/releases Where is the Security Bulletin about this issue? We will post a security bulletin within the next week. We want to ensure that DNN customers have time to patch their sites properly. What if I have more questions? Evoq customers may create a support ticket to ask additional questions. Other DNN users may send an email to security@dnnsoftware.com.

more

DNN Connect Feed

2017 DNN Championships

2017 DNN Championships

5/8/2017 3:42:00 PM

more →

The DnnThemeEditor, flexible and free!

The DnnThemeEditor, flexible and free!

4/7/2017 2:32:37 PM

I’ve been creating theme for a while now, for client site as well as the Open Source themes I’ve created. I always wanted to have a way for the client to change background colors and setting but never found a satisfactory solution that fitted well with my needs and Dnn.

This is why I decided to create the DnnThemeEditor so that everyone can have a theme editor for their own themes.

more →

Intro to the DnnContra theme for Dnn

Intro to the DnnContra theme for Dnn

3/11/2017 2:49:00 PM

The DnnContra theme for Dnn is the forth in the series of free, open source themes created by DnnConsulting.net.

This theme is a cross between the DnnBootster and DnnMDesign theme, with the choice of colors that the MDesign theme has and pre-designed color schemes like the Boostster theme. We have also created more css classes that help you easily create and customize the theme the way you want it!

more →

DNN Prompt: Making DNN Admins Power Admins via the Command Line

DNN Prompt: Making DNN Admins Power Admins via the Command Line

2/17/2017 3:21:00 PM

At DNN Summit I learned of a new tool created by Kelly Ford called “Prompt”. I first saw it in a session that Peter Donker gave and it immediately caught my attention. Since then I’ve learned more about it and want to share some initial thoughts on it.

more →

2sic Geeks Blog

Migration einer SharePoint Website auf eine andere Websitevorlage

Migration einer SharePoint Website auf eine andere Websitevorlage

5/31/2016 1:13:01 PM

Im Microsoft SharePoint ist es grundsätzlich nicht möglich, bei einer bestehenden Website die Website-Vorlage auszutauschen. Der einzige Weg dies zu erreichen, ist eine neue Website mit der gewünschten Vorlage zu erstellen und den gewünschten Inhalt irgendwie übernommen. In diesem Beitrag zeige ich, welche Möglichkeiten es gibt und wie dieser Schritt mit zwei PowerShell-Scripts sehr einfach […] more →
SEO für JavaScript-Applikationen mit AngularJS

SEO für JavaScript-Applikationen mit AngularJS

10/19/2015 8:14:03 AM

Bisher haben wir unsere Applikation immer so gebaut, dass ein Crawler den wichtigen Inhalt auch im Quelltext vorfindet. Das führt insbesondere bei modernen Webseiten (z.B. durch die Nutzung von AJAX und dynamischem Austausch von Inhalten) zu Mehraufwand, weil sichergestellt werden muss, dass neben dem Client auch der Server das HTML rendern können muss. Es gibt […] more →
Ansicht-Filter in SharePoint 2013 Task-Listen funktionieren nicht mehr nach SharePoint-Updates vom März 2015

Ansicht-Filter in SharePoint 2013 Task-Listen funktionieren nicht mehr nach SharePoint-Updates vom März 2015

4/13/2015 9:09:46 AM

Die Microsoft/SharePoint Updates vom März 2015 verursachen, dass in Aufgabenlisten in sämtlichen Ansichten die Filter nicht mehr angewendet werden. Der Fehler tritt in Standard- und Benutzerdefinierten Ansichten/Views auf, egal nach welchem Feld gefiltert wird. Betroffen sind SharePoint Foundation 2013 und SharePoint Server 2013. Das Problem tritt auf, nachdem das letzte Windows Update KB 2956175 vom […] more →
Responsive und Retina Bilder mit DotNetNuke

Responsive und Retina Bilder mit DotNetNuke

12/9/2014 10:38:04 AM

Wer bereits responsive Webseiten umgesetzt hat, weiss, dass Bilder eine Herausforderung darstellen. Bisher gab es nur das img-Element, bei welchem die Grösse eines Bildes über den src-Tag in Stein gemeisselt ist. Allen Besuchern musste unabhängig von der Auflösung des Gerätes das gleiche Bild übermittelt werden (es sei denn, man hätte das Problem mit JavaScript umgangen). […] more →
Use INCLUDEPICTURE Field-Code in Microsoft Word for cool Letterheads and workaround some issues

Use INCLUDEPICTURE Field-Code in Microsoft Word for cool Letterheads and workaround some issues

8/15/2014 3:55:31 PM

In Microsoft Word you can do very cool stuff using Field Codes (Formulas). For example you could create a condition to show a Picture and with a few of them you’ll have a nice Picture Randomizer for your Document Header and Footer. After you finished such an amazing Field Code you probably want to reuse […] more →
DNN: Allow Non-Admins to do Page Management

DNN: Allow Non-Admins to do Page Management

8/8/2014 8:42:37 AM

In DNN 5.0 the artificial differences between Regular and Admin pages was removed. All Modules showed in the Admin-Menu can now also be placed on any custom page and basically everyone could use them. This article gives you instructions how to allow Non-Admins to access the DNN Page Management and workaround some limitations. Erik Van […] more →
Possible SharePoint Issues after Windows Updates on the Web Server

Possible SharePoint Issues after Windows Updates on the Web Server

8/7/2014 2:46:20 PM

After Windows Updates ran on a Windows Server 2008 R2 with WSS3 SP3 we ran into a few issues caused by the Configuration Cache. This post shows you lessons learned and recommendations in case you have similar issues, especially if the Configuration Wizard crashes the entire SharePoint Farm. Many Errors but no useful details After […] more →
SharePoint 2013 PDF in neuem Fenster öffnen

SharePoint 2013 PDF in neuem Fenster öffnen

7/16/2014 12:13:11 PM

Oft werde ich gefragt, wieso Office-Dateien (Word, Excel, PowerPoint) im jeweiligen Office-Programm öffnen aber PDFs im aktuellen Browser-Fenster/Register öffnen. Leider kann das auch heute noch nicht einfach konfiguriert werden. Je nach Browser und PDF-Reader kann das vielleicht auf dem Client konfiguriert werden, aber spätestens seit Firefox und Chrome mit eigenen PDF-Viewern einen neue Vielfalt möglicher […] more →
2serve . 2invent . 2create is 2be.