silverstripe-framework/docs/en/04_Changelogs/4.5.0.md

# 4.5.0 (Unreleased)

## Overview {#overview}

 * [Generic login form styling](#login-forms)
 * Removed `use_gzip` option on `HtmlEditorField` which used to compress the rich text editor dependency. 
   No longer required since compression is performed as part of the CMS build automatically.
   See (#832)(https://github.com/silverstripe/silverstripe-admin/issues/832)

## Generic login form styling {#login-forms}

Login forms in SilverStripe are traditionally embedded in your page template.
This often requires style adjustments in your website, for example to cover variations
such as error messages and validation feedback. It also complicates
more advanced login flows such as multi-factor authentication.

Starting with this release, new installations include the
[silverstripe/login-forms](https://github.com/silverstripe/silverstripe-login-forms)
module. It provides generic styles which look great without any adjustments.
You can choose to add your own logo, or customise the templates.
The URLs to login functionality have not changed (e.g. `Security/login`).

Existing SilverStripe websites upgrading to this release can opt in to using
login forms via composer:

```
composer require silverstripe/login-forms
```

Note that any customisations you might have in `Page.ss` or `Layout/Security.ss`
no longer apply when this module is installed. If you have customised the login process
by adding form fields, or through custom handlers such as SAML or LDAP,
you'll need to review those before starting to use the module. 

## Deprecation

 * `PasswordValidator` methods `minLength`, `characterStrength`, and `checkHistoricalPasswords` are now deprecated from
  4.5.0 onwards (previously 5.0).
API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards 2019-05-24 02:25:16 +02:00			`# 4.5.0 (Unreleased)`

			`## Overview {#overview}`

DOCS Add silverstripe/login-forms (#9112) See https://github.com/silverstripe/recipe-cms/issues/26. Dependant on https://github.com/silverstripe/silverstripe-installer/pull/257. 2019-07-16 00:11:37 +02:00			`* [Generic login form styling](#login-forms)`
Remove `use_gzip` from HTMLEditorField since it's been removed by TinyMCE codebase (#7261) * Remove `use_gzip` from HTMLEditorField * DOCS Mention remove use_gzip in changelog 2019-06-20 23:27:48 +02:00			* Removed `use_gzip` option on `HtmlEditorField` which used to compress the rich text editor dependency.
			`No longer required since compression is performed as part of the CMS build automatically.`
			`See (#832)(https://github.com/silverstripe/silverstripe-admin/issues/832)`
API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards 2019-05-24 02:25:16 +02:00
DOCS Add silverstripe/login-forms (#9112) See https://github.com/silverstripe/recipe-cms/issues/26. Dependant on https://github.com/silverstripe/silverstripe-installer/pull/257. 2019-07-16 00:11:37 +02:00			`## Generic login form styling {#login-forms}`

			`Login forms in SilverStripe are traditionally embedded in your page template.`
			`This often requires style adjustments in your website, for example to cover variations`
			`such as error messages and validation feedback. It also complicates`
			`more advanced login flows such as multi-factor authentication.`

			`Starting with this release, new installations include the`
			`[silverstripe/login-forms](https://github.com/silverstripe/silverstripe-login-forms)`
			`module. It provides generic styles which look great without any adjustments.`
			`You can choose to add your own logo, or customise the templates.`
			The URLs to login functionality have not changed (e.g. `Security/login`).

			`Existing SilverStripe websites upgrading to this release can opt in to using`
			`login forms via composer:`

			```
			`composer require silverstripe/login-forms`
			```

			Note that any customisations you might have in `Page.ss` or `Layout/Security.ss`
			`no longer apply when this module is installed. If you have customised the login process`
			`by adding form fields, or through custom handlers such as SAML or LDAP,`
			`you'll need to review those before starting to use the module.`

API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards 2019-05-24 02:25:16 +02:00			`## Deprecation`

Remove `use_gzip` from HTMLEditorField since it's been removed by TinyMCE codebase (#7261) * Remove `use_gzip` from HTMLEditorField * DOCS Mention remove use_gzip in changelog 2019-06-20 23:27:48 +02:00			* `PasswordValidator` methods `minLength`, `characterStrength`, and `checkHistoricalPasswords` are now deprecated from
API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards 2019-05-24 02:25:16 +02:00			`4.5.0 onwards (previously 5.0).`