39805686b3
Refs #21379 , #26719 -- Moved username normalization to AbstractBaseUser.
...
Thanks Huynh Thanh Tam for the initial patch and Claude Paroz for review.
2016-06-21 16:19:37 -04:00
17e661641d
Refs #26666 -- Added ALLOWED_HOSTS validation when running tests.
...
Also used ALLOWED_HOSTS to check for external hosts in assertRedirects().
2016-06-20 11:07:46 -04:00
00551c3eff
Fixed typo in docs/topics/db/managers.txt
2016-06-20 09:07:20 -04:00
91e9be45ed
Added urlpatterns variable in docs/topics/http/urls.txt.
2016-06-17 21:01:43 -04:00
7d1b69dbe7
Refs #26601 -- Improved backwards-compatibility of DEP 5 middleware exception handling.
2016-06-17 10:00:39 -07:00
4f336f6652
Fixed #26747 -- Used more specific assertions in the Django test suite.
2016-06-16 14:19:18 -04:00
96f97691ad
Fixed broken links in docs and comments.
2016-06-15 21:20:23 -04:00
7003174fec
Fixed #26754 -- Documented django.template.context_processors.tz
2016-06-14 11:57:17 +02:00
267dc4addd
Fixed #4136 -- Made ModelForm save empty values for nullable CharFields as NULL.
...
Previously, empty values were saved as strings.
2016-06-13 09:14:36 -04:00
8f50ff5b15
Fixed #21588 -- Corrected handler initialization in "modifying upload handlers" example.
2016-06-09 12:50:35 -04:00
729b9452b1
Fixed #26704 -- Documented DjangoJSONEncoder.
2016-06-07 14:53:19 -04:00
84d8d1d715
Fixed #25127 -- Documented how to organize models in a package.
2016-06-04 11:47:55 -04:00
55fec16aaf
Fixed #26628 -- Changed CSRF logger to django.security.csrf.
2016-06-04 10:17:06 -04:00
b9c04801d4
Used snippet directive in file upload example.
2016-06-04 09:24:30 -04:00
54febdb8be
Fixed #26604 -- Added a multiple file upload example to topics/http/file-uploads.txt.
2016-06-03 17:36:31 -04:00
4a4d7f980e
Fixed #26021 -- Applied hanging indentation to docs.
2016-06-03 11:44:34 -04:00
f6fefbf8cb
Fixed #26337 -- Added i18n note about using a non-English base language
...
Thanks Cristiano Coelho for the report and Tim Graham for the review.
2016-06-02 20:56:31 +02:00
698c8dfc2a
Fixed #26503 -- Removed an outdated example from session docs.
2016-05-31 07:21:00 -04:00
cc0d1eaaea
Refs #22634 -- Removed unneeded app_label in custom session engine example.
2016-05-28 17:32:37 -04:00
9407cc966b
Fixed #26635 -- Clarified Argon2PasswordHasher's memory_cost differs from command line utility.
2016-05-27 18:37:12 -04:00
26794f6657
Fixed typo in docs/topics/forms/modelforms.txt
2016-05-27 10:31:33 -04:00
30d110ef43
Added imports to docs/topics/db/aggregation.txt example.
2016-05-25 09:52:33 -04:00
46a38307c2
Removed versionadded/changed annotations for 1.9.
2016-05-20 11:44:29 -04:00
5112e65ef2
Fixed #20869 -- made CSRF tokens change every request by salt-encrypting them
...
Note that the cookie is not changed every request, just the token retrieved
by the `get_token()` method (used also by the `{% csrf_token %}` tag).
While at it, made token validation strict: Where, before, any length was
accepted and non-ASCII chars were ignored, we now treat anything other than
`[A-Za-z0-9]{64}` as invalid (except for 32-char tokens, which, for
backwards-compatibility, are accepted and replaced by 64-char ones).
Thanks Trac user patrys for reporting, github user adambrenecki
for initial patch, Tim Graham for help, and Curtis Maloney,
Collin Anderson, Florian Apolloner, Markus Holtermann & Jon Dufresne
for reviews.
2016-05-19 05:02:19 +03:00
9baf692a58
Fixed #26601 -- Improved middleware per DEP 0005.
...
Thanks Tim Graham for polishing the patch, updating the tests, and
writing documentation. Thanks Carl Meyer for shepherding the DEP.
2016-05-17 07:22:22 -04:00
ed0ff913c6
Fixed #10506 , #13793 , #14891 , #25201 -- Introduced new APIs to specify models' default and base managers.
...
This deprecates use_for_related_fields.
Old API:
class CustomManager(models.Model):
use_for_related_fields = True
class Model(models.Model):
custom_manager = CustomManager()
New API:
class Model(models.Model):
custom_manager = CustomManager()
class Meta:
base_manager_name = 'custom_manager'
Refs #20932 , #25897 .
Thanks Carl Meyer for the guidance throughout this work.
Thanks Tim Graham for writing the docs.
2016-05-17 12:07:22 +07:00
3a47d42fa3
Fixed #20932 , #25897 -- Streamlined manager inheritance.
2016-05-17 02:29:22 +07:00
9935f97cd2
Refs #21379 -- Normalized unicode username inputs
2016-05-16 19:38:02 +02:00
85ef98dc6e
Fixed #24305 -- Allowed overriding fields on abstract models.
...
Fields inherited from abstract base classes may be overridden like
any other Python attribute. Inheriting from multiple models/classes
with the same attribute name will follow the MRO.
2016-05-16 07:32:21 -04:00
e475e84970
Refs #26021 -- Used hanging indentation in some doc examples.
2016-05-14 19:06:31 -04:00
5238af3257
Used 'classmethod' annotation in docs/topics/auth/customizing.txt
2016-05-14 18:58:09 -04:00
af69c9113c
Fixed typo in docs/topics/db/models.txt
2016-05-13 15:18:33 -04:00
1962a96a30
Fixed #24938 -- Added PostgreSQL trigram support.
2016-05-13 12:38:21 -04:00
f4bb2dce79
Fixed typo in docs/topics/conditional-view-processing.txt
2016-05-12 20:07:34 -04:00
baf3ec2e29
Refs #26052 -- Corrected a sentence for conditional_content_removal() removal.
2016-05-11 11:09:28 -04:00
f5ff5010cd
Fixed #26483 -- Updated docs.python.org links to use Intersphinx.
2016-05-08 18:07:43 -04:00
101dd787ec
Fixed #26566 -- Rewrote an incorrect Cache-Control example.
2016-05-07 10:49:47 -04:00
8b2fce0f70
Fixed a typo
2016-05-07 15:40:53 +02:00
6ae617dc57
Fixed #26595 -- Removed unnecessary save() in one_to_one.txt example.
2016-05-07 06:53:03 -04:00
c6499d532d
Fixed syntax highlighting in docs/topics/cache.txt
2016-05-06 18:57:48 -04:00
575a9a791e
Normalized "an SQL" spelling.
2016-05-03 19:30:48 -04:00
c9c5ccbd41
Clarified that setting names must be uppercase.
2016-05-03 12:53:24 -04:00
ac77c55bc5
Fixed #26567 -- Updated references to obsolete RFC2616.
...
Didn't touch comments where it wasn't obvious that the code adhered to
the newer standard.
2016-05-03 11:14:40 -04:00
f945fb24a3
Fixed #26554 -- Updated docs URLs to readthedocs.io
2016-04-28 10:09:57 -04:00
fe70f280d7
Refs #25136 -- Fixed nonexistent field reference in aggregation topic guide.
...
Thanks Ankush Thakur for the report and Simon for the review.
2016-04-27 15:16:00 -04:00
8ccb8ff453
Fixed typo in docs/topics/testing/tools.txt
2016-04-27 08:01:48 -04:00
75c5e547b5
Fixed typo in docs/topics/testing/tools.txt
2016-04-26 18:19:00 -04:00
2d877da855
Refs #3254 -- Added full text search to contrib.postgres.
...
Adds a reasonably feature complete implementation of full text search
using the built in PostgreSQL engine. It uses public APIs from
Expression and Lookup.
With thanks to Tim Graham, Simon Charettes, Josh Smeaton, Mikey Ariel
and many others for their advice and review. Particular thanks also go
to the supporters of the contrib.postgres kickstarter.
2016-04-22 10:44:37 +01:00
ec6121693f
Fixed #22383 -- Added support for HTML5 required attribute on required form fields.
2016-04-21 19:16:38 -04:00
38ddd4ab55
Fixed incorrect rendered widget in forms example.
2016-04-20 21:07:59 -04:00
b040ac06eb
Fixed #26520 -- Fixed a regression where SessionBase.pop() didn't return a KeyError.
2016-04-20 13:06:47 -04:00
f43da05cc5
Fixed typo in docs/topics/class-based-views/mixins.txt
2016-04-18 20:25:54 -04:00
2c4c67af94
Fixed #26514 -- Documented that User.refresh_from_db() doesn't clear the permission cache.
2016-04-18 09:02:56 -04:00
de40cfbe74
Fixed #19567 -- Added JavaScriptCatalog and JSONCatalog class-based views
...
Thanks Cristiano Coelho and Tim Graham for the reviews.
2016-04-15 17:28:54 +02:00
47fbbc33de
Fixed #26493 -- Documented how built-in signals are sent.
2016-04-13 07:48:18 -04:00
c1aec0feda
Fixed #25847 -- Made User.is_(anonymous|authenticated) properties.
2016-04-09 14:54:18 -04:00
f6ca63a9f8
Refs #26464 -- Added a link to OWASP Top 10 in security topic guide.
2016-04-09 07:49:40 -04:00
0d3c616fbb
Refs #26351 -- Added check hook to support database-related checks
...
Thanks Tim Graham and Shai Berger for the reviews.
2016-04-08 20:28:00 +02:00
eed658d7c4
Refs #14131 -- Documented why paginating large QuerySets may be slow.
2016-04-06 11:06:38 -04:00
15a20dc9af
Removed a reference to Django 1.3.1 in docs.
2016-04-04 11:55:34 -04:00
99bb7fcc18
Fixed #26452 -- Loaded middleware on server start rather than on first request.
2016-04-04 10:12:41 -04:00
55c843f2ef
Fixed #14131 -- Added note to docs about Pagination and large Querysets
2016-04-02 16:03:34 +02:00
64aba7a8ab
Fixed #26438 -- Fixed multiple .objects typos in the docs.
...
Thanks Pablo Oubiña for the report.
2016-03-31 18:27:47 -04:00
a65fc6df89
Fixed #26410 -- Added a docs example for loader.render_to_string().
2016-03-31 08:31:55 -04:00
49f95cc0a0
Fixed #11560 -- Allowed proxy model multiple-inheritance from the same concrete base model.
2016-03-30 13:06:27 -04:00
940b7fd5cb
Fixed #21446 -- Allowed not performing redirect in set_language view
...
Thanks Claude Paroz and Tim Graham for polishing the patch.
2016-03-29 22:15:14 +02:00
7b1ce7fd91
Fixed #26408 -- Updated link to DEP 182.
...
Thanks kaifeldhoff for the report.
2016-03-25 20:49:18 +01:00
8550566af6
Fixed typo in docs/topics/db/aggregation.txt.
2016-03-25 13:38:16 -04:00
107165c4b0
Fixed #24987 -- Allowed inactive users to login with the test client.
2016-03-23 09:01:52 -04:00
e0a3d93730
Fixed #25232 -- Made ModelBackend/RemoteUserBackend reject inactive users.
2016-03-23 09:01:48 -04:00
c41737dc00
Fixed #26392 -- Corrected login_required/permission_required stacking example.
2016-03-21 19:56:15 -04:00
f2d9caa625
Fixed DiscoverRunner failfast parameter default in docs.
2016-03-15 18:33:35 -04:00
f8b23e52e8
Fixed #26290 -- Documented that a QuerySet for pagination should be ordered.
2016-03-15 10:13:47 -04:00
1cb65b8a77
Fixed #26157 #25321 -- Added sql/params to extra context of schema logger
...
Thanks Akshesh Doshi for the initial patch and Tim Graham for the review
2016-03-15 17:45:58 +11:00
6aef986cdb
Fixed #25804 -- Documented additions to Jinja2 context.
2016-03-14 08:42:55 -04:00
402da9ab7b
Fixed typos in docs.
2016-03-13 19:48:24 +01:00
c5fda55edc
Fixed #26256 -- Added note about primary key serialization
...
Thanks Sonu kumar for the report and Tim Graham for the review.
2016-03-08 21:30:23 +01:00
b4250ea04a
Fixed #26033 -- Added Argon2 password hasher.
2016-03-08 11:22:18 -05:00
839a955d08
Fixed #25933 -- Allowed an unprefixed default language in i18n_patterns().
2016-03-08 08:14:10 -05:00
d0451e4cad
Fixed #26295 -- Allowed using i18n_patterns() in any root URLconf.
...
Thanks Tim for the review.
2016-03-03 12:08:49 -05:00
67b46ba701
Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login.
...
This is a security fix.
2016-03-01 11:25:28 -05:00
22d2a5b00a
Corrected a run on sentence in doc/topics/db/models.txt.
2016-02-25 14:22:41 -05:00
7a7e403325
Refs #26270 -- Reorganized TestCase docs.
2016-02-25 07:58:22 -05:00
10781b4c6f
Fixed #12233 -- Allowed redirecting authenticated users away from the login view.
...
contrib.auth.views.login() has a new parameter `redirect_authenticated_user`
to automatically redirect authenticated users visiting the login page.
Thanks to dmathieu and Alex Buchanan for the original code and to Carl Meyer
for the help and review.
2016-02-25 07:18:33 -05:00
441c537b66
Fixed a function signature in docs/topics/auth/default.txt.
2016-02-24 16:24:33 -05:00
6637cd0ef2
Removed docs of deprecated SimpleTestCase warnings behavior.
...
Removed in Django 1.7 (4f6be9a0c4
2016-02-24 09:57:39 -05:00
47b5a6a43c
Fixed #26187 -- Removed weak password hashers from PASSWORD_HASHERS.
2016-02-22 18:59:23 -05:00
b14470c7b7
Fixed spelling error
2016-02-23 10:24:38 +11:00
5a541e2e6c
Fixed #26188 -- Documented how to wrap password hashers.
2016-02-22 17:21:45 -05:00
de7edc005f
Fixed import location of check_password() in docs.
2016-02-22 12:42:47 -05:00
032f5a7896
Refs #25735 -- Made @tag decorator importable from django.test.
2016-02-19 14:21:00 -05:00
f0425c7260
Refs #19353 -- Added tests for using custom user models with built-in auth forms.
...
Also updated topics/auth/customizing.txt to reflect that subclasses of
UserCreationForm and UserChangeForm can be used with custom user models.
Thanks Baptiste Mispelon for the initial documentation.
2016-02-17 10:26:07 -05:00
d4dc775620
Fixed #25735 -- Added support for test tags to DiscoverRunner.
...
Thanks Carl Meyer, Claude Paroz, and Simon Charette for review.
2016-02-17 09:44:18 -05:00
fcd08c1757
Fixed #11665 -- Made TestCase check deferrable constraints after each test.
2016-02-13 06:53:39 -05:00
a6f856df52
Added import in docs/topics/email.txt example.
2016-02-12 13:44:38 -05:00
004ba0f99e
Removed unneeded hint=None/obj=None in system check messages.
2016-02-12 13:01:25 -05:00
228427ab1a
Fixed allow_migrate() signature in documentation
2016-02-12 14:16:03 +11:00
02430ef19d
Fixed #26111 -- Clarified that fixtures are loaded once per TestCase.
2016-02-11 18:45:40 -05:00
cf48962b36
Clarified "database column type" explanation.
2016-02-11 18:26:46 -05:00
1d86d4c72b
Updated instructions for gettext on Windows.
2016-02-11 08:45:55 -05:00
Tim Graham
Tobias McNulty
Trey Hunner
Carl Meyer
Jon Dufresne
Ville Skyttä
Berker Peksag
Tommy Beadle
Evan Palmer
Holly Becker
Ed Henderson
Claude Paroz
Bas Westerbaan
Sergey Fedoseev
MariKiev
Shai Berger
Florian Apolloner
Loïc Bistuer
Aron Podrigal
Matthew Somerville
eltronix
Vasiliy Faronov
Matthias K
shiblystory
David D Lowe
Marc Tamlyn
Tobias Kroenke
Filipa Andrade
Jeremy Lainé
Daniel Jilg
David Evans
Simon Charette
Akshesh
Krzysztof Jurewicz
Aymeric Augustin
Tim Shaffer
Alexander Gaevsky
Andrew Abraham
Duane Hilton
Markus Holtermann
Moritz Sichert
Jakub Wilk
Krzysztof Urbaniak
Olivier Le Thanh Duong
Daniel Quinn
Jakub Paczkowski
Camilo Nova
Johannes Linke
Becka R