Mariusz Felisiak
f37f9a0bf0
Added CVE-2020-9402 to security archive.
2020-03-04 09:59:07 +01:00
Mariusz Felisiak
6695d29b1c
Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle.
...
Thanks to Norbert Szetei for the report.
2020-03-04 09:04:50 +01:00
Hannes Ljungberg
65ab4f9f03
Fixed #31147 -- Added SearchHeadline to django.contrib.postgres.
2020-03-03 15:39:52 +01:00
Mariusz Felisiak
aee0bebc2f
Refs #31331 -- Checked ONLY_FULL_GROUP_BY mode in AggregateTestCase.test_aggregation_subquery_annotation_multivalued().
2020-03-03 11:25:37 +01:00
Mariusz Felisiak
a19505eb2e
Refs #31331 -- Added DatabaseWrapper.sql_mode to MySQL.
2020-03-03 11:25:37 +01:00
Mariusz Felisiak
7b8fa1653f
Fixed #31150 -- Included subqueries that reference related fields in GROUP BY clauses.
...
Thanks Johannes Hoppe for the report.
Regression in fb3f034f1c
.
Co-authored-by: Simon Charette <charette.s@gmail.com>
2020-03-03 11:25:37 +01:00
Adam Johnson
3bd29a8a97
Documented default value of InlineModelAdmin.extra.
2020-03-03 09:05:27 +01:00
Claude Paroz
d4fff711d4
Fixed #31274 -- Used signing infrastructure in SessionBase.encode()/decode().
...
Thanks Mariusz Felisiak and Florian Apolloner for the reviews.
2020-03-02 12:16:48 +01:00
Simon Charette
daaa894960
Refs #26064 -- Avoided unnecessary list slicing in migration optimizer.
...
The in_between list is only necessary if an optimization is possible.
2020-03-02 08:42:06 +01:00
Mariusz Felisiak
a49c2b6bf0
Removed outdated note about not supporting partial indexes by Django.
...
Supported since a906c98982
.
2020-02-29 20:35:11 +01:00
007
e65fea9292
Fixed #31293 -- Allowed MultiPartParser to handle double-quoted encoded headers.
2020-02-28 14:43:16 +01:00
Hans Aarne Liblik
a21f7b91db
Fixed #31301 -- Fixed crash of QuerySet.bulk_create() with mixed empty and set ForeignKeys to AutoFields on Oracle.
2020-02-28 12:56:03 +01:00
Carlton Gibson
8b30360322
Fixed #31032 -- Updated admin browser support FAQ for 2020.
...
Following web standards, the modern _evergreen_ browsers are all
supported. This applies equally to mobile platforms. Assuming current
trends continue, this should be a sustainable policy.
Microsoft deprecated all versions of Internet Explorer. IE 11, the last
version, is described as a "compatibility solution" rather than a web
browser. Whilst it will receive security updates for the lifetime of
Windows 10 it's use is actively discouraged.
The IE 11 downloads page makes it clear: "We recommend you use the new
Microsoft Edge".
2020-02-28 12:39:14 +01:00
kimbo
7c6b66383d
Fixed #31311 -- Removed unneeded escapes in validator regexes.
...
Special characters lose their special meaning inside sets of characters.
"-" lose its special meaning if it's placed as the first or last
character.
2020-02-28 11:08:06 +01:00
Cristobal Mackenzie
984531f96e
Fixed #31314 -- Raised CommandError when locale is not specified in makemessages.
...
Regression in 0707b824fe
.
2020-02-28 10:11:19 +01:00
Matheus Cunha Motta
e908eb6287
Fixed #31310 -- Fixed hints in checks for using intermediate model with ambiguous foreign key.
...
symmetrical=False is not required since
87b1ad6e73
.
2020-02-28 08:38:57 +01:00
Matheus Cunha Motta
308fab9241
Refs #31310 -- Added test for check for using intermediate model with ambiguous foreign key from model.
2020-02-28 08:26:41 +01:00
007gzs
a4881f5e5d
Fixed #31307 -- Fixed filter_horizontal add/remove SVG :hover positioning.
2020-02-27 15:39:13 +01:00
Rohit
486786c4c4
Fixed #31251 -- Disabled grouping by OuterRef() annotation.
2020-02-27 13:02:49 +01:00
Valze
5bf28ac2ed
Fixed #31185 -- Fixed detecting of unique fields in ForeignKey/ForeignObject checks when using Meta.constraints.
2020-02-27 10:53:29 +01:00
Simon Charette
41ebe60728
Fixed #31312 -- Properly ordered temporal subtraction params on MySQL.
...
Regression in 9bcbcd599a
.
Thanks rick2ricks for the report.
2020-02-27 08:50:55 +01:00
Andrey Doroschenko
f1016814d8
Fixed #31313 -- Fixed is_upperclass() example in enumeration types docs.
2020-02-27 08:33:05 +01:00
Colton Hicks
f283ffaa84
Fixed #28699 -- Fixed CSRF validation with remote user middleware.
...
Ensured process_view() always accesses the CSRF token from the session
or cookie, rather than the request, as rotate_token() may have been called
by an authentication middleware during the process_request() phase.
2020-02-26 17:25:20 +01:00
Hasan Ramezani
bc1c034076
Fixed #28280 -- Prevented numberformat.format() from formatting large/tiny floats in scientific notation.
2020-02-26 16:02:53 +01:00
Mariusz Felisiak
667f784baa
Removed hint from fields.E310 message in system check docs.
...
This is the only documented hint.
2020-02-26 12:00:52 +01:00
aryan
fba5d3b6e6
Fixed #31289 -- Added hint for USERNAME_FIELD/REQUIRED_FIELDS system check.
2020-02-26 08:40:36 +01:00
Simon Charette
5637933268
Simplified handling of weights in SearchRank.
2020-02-26 08:16:22 +01:00
Simon Charette
1138ca4c57
Formalized SearchVector and SearchRank signatures.
2020-02-26 08:12:45 +01:00
Simon Charette
d0f1c03331
Refs #31211 -- Prevented SearchConfig nesting in SearchVector and SearchQuery init.
...
Passing a SearchConfig instance directly to SearchVector and
SearchQuery would result in nested SearchConfig instance.
2020-02-26 08:03:46 +01:00
Simon Charette
3d62ddb026
Refs #3254 -- Removed unnecessary truth check in SearchVectorExact.as_sql().
...
Direct usage of the @@ operator is perfectly allowed.
2020-02-26 07:51:19 +01:00
Ram Rachum
5b09354954
Fixed #31291 -- Renamed salt to mask for CSRF tokens.
2020-02-25 14:16:19 +01:00
Taoup
271fdab8b7
Fixed #31286 -- Made database specific fields checks databases aware.
...
Follow up to 0b83c8cc4d
.
2020-02-24 14:23:46 +01:00
Mariusz Felisiak
94d4bd3a09
Fixed backends tests on Oracle.
...
Using Person in test_introspection caused removing constraints in
intermediate table for ManyToManyField in
VeryLongModelNameZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ that were
expected by other transaction tests. A model without any constraints
was used to prevent isolation issues.
2020-02-24 14:21:50 +01:00
Diederik van der Boor
84e35f4679
Fixed #31292 -- Fixed django.contrib.gis.gdal.gdal_full_version() crash.
2020-02-24 13:28:51 +01:00
Diederik van der Boor
975eb42036
Added test for django.contrib.gis.gdal.gdal_version().
2020-02-24 13:15:35 +01:00
Matheus Cunha Motta
0352a44dd6
Fixed #31303 -- Removed outdated note about symmetrical intermediate table for self-referential ManyToManyField.
...
Follow up to 87b1ad6e73
.
2020-02-24 08:26:29 +01:00
Adam Johnson
a6b3938afc
Fixed #31182 -- Adjusted release notes for ASGI support.
2020-02-20 15:05:47 +01:00
Jon Dufresne
f02c1fcf4c
Corrected typo in test docstring.
2020-02-20 09:12:09 +01:00
Jon Dufresne
94d1d4a71b
Captured logging in DebugViewTests with assertLogs().
2020-02-20 09:07:15 +01:00
Hasan Ramezani
b7795d7673
Fixed #30040 -- Used default permission name in docs examples to avoid confusion.
2020-02-19 15:39:47 +01:00
Mariusz Felisiak
4261907ff3
Fixed tests when run in reverse.
...
Regression in 98f23a8af0
.
2020-02-19 14:48:26 +01:00
Andrew Godwin
1e858adf7f
Refs #31224 -- Added BaseHandler.check_response().
2020-02-19 13:20:16 +01:00
Fabio Sangiovanni
b457068cf2
Fixed #31187 -- Fixed detecting of existing total ordering in admin changelist when using Meta.constraints.
...
Detection of existing total ordering in admin changelist now takes into
account non-partial unique constraints.
2020-02-19 09:36:23 +01:00
Mariusz Felisiak
d270c10a72
Refs #31187 -- Added total_unique_constraints property to model's Options.
2020-02-19 09:36:19 +01:00
Fabio Sangiovanni
73a34f3fa8
Removed duplicate tests in ChangeListTests.test_total_ordering_optimization().
2020-02-19 07:43:50 +01:00
Yoo In Keun
4ef107e34f
Fixed typos in docs and a test comment.
2020-02-19 07:08:23 +01:00
Claude Paroz
4d973f5939
Refs #26601 -- Deprecated passing None as get_response arg to middleware classes.
...
This is the new contract since middleware refactoring in Django 1.10.
Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es>
Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>
2020-02-18 20:03:44 +01:00
Carlton Gibson
a34cb5a6d4
Refs #31282 -- Clarified M2O add/remove/set with PK behaviour.
...
Improved error message for remove() and added tests.
2020-02-18 19:54:29 +01:00
Carlton Gibson
3bbf9a489a
Fixed #31282 -- Corrected RelatedManager docs for using add/remove/set with PKs.
2020-02-18 19:54:29 +01:00
Mariusz Felisiak
2a038521c4
Fixed #31271 -- Preserved ordering when unifying query parameters on Oracle.
...
This caused misplacing parameters in logged SQL queries.
Regression in 79065b55a7
.
Thanks Hans Aarne Liblik for the report.
2020-02-18 11:45:12 +01:00