innov
/
django1
1
0
Fork 0
Code Issues Pull Requests 1 Projects Releases Wiki Activity
7,875 Commits 25 Branches 361 Tags 501 MiB
Commit Graph

7875 Commits

Author SHA1 Message Date
Luke Plant 8b5fc4ac00 [1.1.X] Removed example CSRF jQuery code from release notes, replacing with link to improved code in the CSRF docs 
Backport of [15628] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15630 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-22 11:31:54 +00:00
Ramiro Morales 12fd6e1106 [1.1.X] Fixed #15306 -- Replaced 1.1.X implementation of admin changelist filtering security fix (r15031/r15033) with the one from trunk so another valid filter usage scenario (using model inheritance) is still possible. Thanks dbenamy for reporting this. Refs #15032. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15555 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-16 23:24:19 +00:00
Luke Plant 840314bde4 [1.1.X] Fixed #15284 - improved example jQuery code for adding X-CSRF-Token 
Using the ajaxSend event is better than beforeSend, because the beforeSend
callback can have only one value, which makes it painful if it is needed by
multiple bits of javascript.

Thanks to LukeMaurer for report and initial patch.

Backport of [15515] from trunk.

This is backported to 1.1.X because it really belongs with security patch [15466]

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15518 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-12 23:49:18 +00:00
Russell Keith-Magee 99c529eec8 [1.1.X] [1.2.X] Fixed #15253 -- Added 1.1.3 release notes, and added sections to the 1.2.4 and 1.3 release notes about the December security announcement. 
Backport of r15485 from trunk.

Backport of r15486 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15487 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-10 11:57:46 +00:00
Russell Keith-Magee b7a7cdc4fa [1.1.X] Fixed #15253, #15259 -- Added 1.1.4 release notes, added a section on CSRF changes to the 1.3 release notes, and corrected the example in the 1.2.5 release notes. Thanks to Gary Wilson and Mark Hellewell for the reports. 
Backport of r15482 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15484 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-10 09:30:51 +00:00
James Bennett 24f2898b76 [1.1.X] Bump version number for impending security release. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15474 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-09 03:06:37 +00:00
Carl Meyer 1966786d2d [1.1.X] Fixed security issue in AdminFileWidget. Release and disclosure forthcoming. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15472 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-09 02:48:48 +00:00
Alex Gaynor 570a32a047 [1.1.X] Fixed a security issue in the file session backend. Disclosure and new release forthcoming. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15469 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-09 02:14:24 +00:00
Alex Gaynor 408c5c873c [1.1.X] Fixed a security issue in the CSRF component. Disclosure and new release forthcoming. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15466 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-02-09 02:07:35 +00:00
Luke Plant 274bd67c13 [1.1.X] Fixed #15103 - SuspiciousOperation with limit_choices_to and raw_id_fields 
Thanks to natrius for the report.

This patch also fixes some unicode bugs in affected code.

Backport of [15347] from trunk. Backported to 1.1.X because this was
a regression caused by a security fix backported to 1.1.X.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15350 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-01-28 15:32:25 +00:00
Ramiro Morales 703dc82256 [1.1.X] Fixed #14999 -- Ensure that filters on local fields are allowed, and aren't caught as a security problem. Thanks to medhat for the report. 
Backport of r15139 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15176 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-01-12 20:45:01 +00:00
James Bennett cbbfe11328 [1.1.X] Update download_url for 1.1.3. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15043 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-12-23 04:12:42 +00:00
James Bennett 334654fdf1 [1.1.X] Bump to 1.1.3 for security release. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15037 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-12-23 03:51:37 +00:00
Alex Gaynor 7f8dd9cbac [1.1.X] Fix a security issue in the auth system. Disclosure and new release forthcoming. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15036 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-12-23 03:47:58 +00:00
Alex Gaynor 17084839fd [1.1.X] Fix a security issue in the admin. Disclosure and new release forthcoming. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@15035 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-12-23 03:47:38 +00:00
Russell Keith-Magee 934dc9e712 [1.1.X] Removed the 'under development' marker from the 1.1.2 release notes; a little too late, but better than never. 
Backport of r13263 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13264 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-14 11:43:55 +00:00
James Bennett 5d6b2966af [1.1.X] This branch is now 1.1.3 pre-alpha. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13257 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-14 05:56:34 +00:00
James Bennett 4333ca52fb [1.1.X] Bump to 1.1.2. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13256 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-14 05:45:12 +00:00
Russell Keith-Magee f0774927e6 [1.1.X] Fixed #13532 -- Corrected and clarified examples in F() docs. Thanks to erw for the report and patch. 
Backport of r13254 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13255 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-14 01:52:28 +00:00
Russell Keith-Magee c179bd5cfb [1.1.X] Fixed #13514 -- Corrected the process of loading multiple javascript translation catalogs. Thanks to jtiai for the report, to Ramiro Morales for working out the test case, and to Ramiro and Jannis for their help on the fix. 
Backport of r13250 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13253 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-13 13:44:32 +00:00
Karen Tracey 2f8bb4ee31 [1.1.X] Fixed #13530: Corrected a handful of doc typos. Thanks Ramiro. 
Merge of the applicable bits of r13247.


git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13248 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-12 23:00:57 +00:00
Karen Tracey 87fd4583c1 [1.1.X] Fixed doc markup error that resulted in no anchor tag for the model admin queryset method. 
r13245 from trunk.


git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13246 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-12 13:36:05 +00:00
Russell Keith-Magee 242c7f3940 [1.1.X] Fixed #13529 -- Corrected ModelAdmin example. Thanks to stephane@actinetwork.com for the report. 
Backport of r13242 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13243 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-12 13:27:14 +00:00
Russell Keith-Magee 6f2a84409e [1.1.X] Fixed #12997 -- Corrected the module markup for QuerySet methods. Thanks to timo for the report. 
Backport of r13235 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13236 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-11 14:18:01 +00:00
Russell Keith-Magee 08de7a32d9 [1.1.X] Fixed #11908 -- Clarified the role and usage of the ManagementForm in formsets. Thanks to timo for the draft patch. 
Backport of r13222 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13227 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 14:17:16 +00:00
Russell Keith-Magee a0ea98e7a0 [1.1.X] Fixed #12001 -- Modified the example of form validation to use the form's error class, rather than assuming ErrorList. Thanks to Suor for the report, and timo for the patch. 
Backport of r13221 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13226 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 14:16:04 +00:00
Russell Keith-Magee 45f5e0c980 [1.1.X] Fixed #12135 -- Clarified custom template tag example. Thanks to EvilDMP for the report, and timo for the patch. 
Backport of r13220 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13225 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 14:14:41 +00:00
Russell Keith-Magee 61beb4549d [1.1.X] Refs #12288 -- Clarified that application names must be unique. Thanks to Piotr Czachur for the report. 
Backport of r13219 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13224 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 14:13:39 +00:00
Russell Keith-Magee 9ca0a33029 [1.1.X] Fixed #12505 -- Clarified the use of the extra argument in formsets. Thanks to Andreas for the report, and timo for the draft patch. 
Backport of r13218 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13223 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 14:12:25 +00:00
Russell Keith-Magee c51284f65a [1.1.X] Fixed #12621 -- Corrected grammar error in custom template tag docs. Thanks to beemzet for the report. 
Backport of r13212 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13217 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 13:28:57 +00:00
Russell Keith-Magee b7b0ebb3ad [1.1.X] Fixed #12678 -- Corrected a few references to Queryset into QuerySet. Thanks to ChrisMorgan for the report, and timo for the patch. 
Backport of r13211 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13216 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 13:27:53 +00:00
Russell Keith-Magee 5627b26377 [1.1.X] Fixed #12984 -- Corrected typo in signals docs. Thanks to kcharvey for the report. 
Backport of r13210 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13215 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 13:26:47 +00:00
Russell Keith-Magee a858374828 [1.1.X] Fixed #13002 -- Corrected description of the default form base class in InlineModelAdmin classes. Thanks to stijn@typograaf.be for the report, and timo for the patch. 
Backport of r13209 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13214 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 13:25:44 +00:00
Russell Keith-Magee 5a43a33161 [1.1.X] Fixed #13509 -- Modified the comment tests so that signal cleanup doesn't rely on garbage collection. Thanks to Alex Gaynor for the report and patch. 
Backport of r13204 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13206 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 12:43:05 +00:00
Russell Keith-Magee 6bc070ba4c [1.1.X] Fixed #12229 -- Added documentation of the FieldFile methods that are exposed by FileField and ImageField. Thanks to Gabriel Hurley for the draft patch. 
Backport of r13202 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13203 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 12:34:52 +00:00
Russell Keith-Magee 0765d4b597 [1.1.X] Fixed #13158 -- Clarified that OneToOneField is a better option for User profile classes. Thanks to hvdklauw for the report and patch. 
Backport of r13197 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13200 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 11:44:25 +00:00
Russell Keith-Magee 45c409f3fd [1.1.X] Fixed #13329 -- Corrected markup problem with URL pattern in generic views docs. Thanks to LaundroMat for the report. 
Backport of r13196 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13199 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 11:43:34 +00:00
Russell Keith-Magee b66d597cb4 [1.1.X] Fixed #13333 -- Corrected typo in whatsnew docs. Thanks to cicatrix1 for the report. 
Backport of r13195 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13198 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 11:42:41 +00:00
Jannis Leidel 8099fec855 [1.1.X] Fixed #12892 - Fixed unicode related bug in a utility function of the admindocs app that prevented it to be used in non-English environments together with certain versions of docutils. 
Backport from trunk, r13192

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13194 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 11:24:16 +00:00
Jannis Leidel 868cf8093c [1.1.X] Fixed #13168 - Corrected the alignment of the admin inline headers for rtl languages. Thanks for the report and patch, benc. 
Backport from trunk, r13191

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13193 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 11:23:59 +00:00
Russell Keith-Magee f7215cec92 [1.1.X] Added exceptions reference page to the API reference index. 
Backport of r13187 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13188 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-10 00:54:25 +00:00
Jannis Leidel 4a97875f6b [1.1.X] Fixed #13317 - Clarified documentation about how the blocktrans and trans template tags work with regard to variables. Thanks for the initial patch, Ramiro Morales. 
Backport from trunk, r13184.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13185 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 13:57:03 +00:00
Russell Keith-Magee 9fb195fc67 [1.1.X] Fixed #6842 -- Added reference documentation on Django's exceptions. Thanks to timo for the patch. 
Backport of r13180 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13182 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 07:47:14 +00:00
Russell Keith-Magee e10f546b21 [1.1.X] Fixed #6039 -- Modified Atom example to be standard compliant. Thanks to ion.morega@gmail.com for the report, and arien for the patch. 
Backport of r13179 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13181 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 07:46:50 +00:00
Russell Keith-Magee c772e39d34 [1.1.X] Fixed #6752 -- Corrected the interaction of the safe template filter with other filters. Thanks to Rupe and Alex Gaynor for their work on the patch. 
Backport of r13171 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13177 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:51:07 +00:00
Russell Keith-Magee 2ee73c2f4e [1.1.X] Fixed #10712 -- Added documentation for the queryset() method on ModelAdmin. Thanks to mrts for the report, and timo for the patch. 
Backport of r13170 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13176 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:50:39 +00:00
Russell Keith-Magee 5d751026b5 [1.1.X] Fixed #11933 -- Corrected the naming of the cached_db session backend. Thanks to mb0@mb0.org for the report and Gabriel Hurley for the patch. 
Backport of r13169 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13175 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:50:06 +00:00
Russell Keith-Magee 814268fb54 [1.1.X] Fixed #12040 -- Cleaned up the documentation describing how CurrentSiteManager works. Thanks to elpaso66 for the report, and Gabriel Hurley for the draft patch. 
Backport of r13168 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13174 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:49:32 +00:00
Russell Keith-Magee 3b9a82714c [1.1.X] Fixed #12278 -- Corrected an example usage of string_concat. Thanks to loumz for the report, and timo for the patch. 
Backport of r13167 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13173 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:49:00 +00:00
Russell Keith-Magee 5be6c7fc60 [1.1.X] Fixed #12412 -- Clarified the documentation around file handling by the test client. Thanks to Gabriel Hurley for the draft patch. 
Backport of r13166 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.1.X@13172 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2010-05-09 06:48:32 +00:00