django1/django
Luke Plant 53b2c3867b Fixed #12130 - documented need for csrf_protect on views that don't accept POST
Includes:
   
 * proper documentation for csrf_protect
 * notes in comments app.
 * specific upgrade notes for comments app

Thanks to carljm for report and debugging.




git-svn-id: http://code.djangoproject.com/svn/django/trunk@11711 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2009-11-03 14:40:37 +00:00
..
bin Fixed #10102 -- Set svn:executable on daily_cleanup script. Thanks to John Scott for the report 2009-03-14 05:18:02 +00:00
conf Fixed #10355 -- Added an API for pluggable e-mail backends. 2009-11-03 12:53:26 +00:00
contrib Fixed #10109 -- Removed the use of raw SQL in many-to-many fields by introducing an autogenerated through model. 2009-11-03 14:02:49 +00:00
core Fixed #10109 -- Removed the use of raw SQL in many-to-many fields by introducing an autogenerated through model. 2009-11-03 14:02:49 +00:00
db Fixed #10109 -- Removed the use of raw SQL in many-to-many fields by introducing an autogenerated through model. 2009-11-03 14:02:49 +00:00
dispatch Fixed #11134: signals recievers that disconnect during their processing no longer mess things up for other handlers. Thanks, Honza Kral. 2009-05-20 16:13:55 +00:00
forms Fixed #11872 -- Instantiate the correct model in BaseInlineFormSet.__init__ when instance is None. Thanks tobias. 2009-10-30 09:11:56 +00:00
http Fixed #10687: fixed request parsing when upload_handlers is empty. Thanks, Armin Ronacher. 2009-05-08 17:22:34 +00:00
middleware Misc clarifications in csrf middleware comments 2009-10-27 21:31:20 +00:00
shortcuts Fixed #10194: added `django.shortcuts.redirect`, a do-what-I-mean redirect shortcut. See the docs at topics/http/shortcuts for details. 2009-03-21 13:09:13 +00:00
template Fixed #12095 - login and other contrib views failing if template rendered using inclusion tag. 2009-10-27 21:27:09 +00:00
templatetags Fixed #11270 -- Modified cache template tag to prevent the creation of very long cache keys. Thanks to 235 for the report and patch. 2009-06-18 15:04:00 +00:00
test Fixed #10355 -- Added an API for pluggable e-mail backends. 2009-11-03 12:53:26 +00:00
utils Fixed #12060 - equality tests between User and SimpleLazyObject-wrapped User failed. 2009-10-20 14:11:08 +00:00
views Fixed #12130 - documented need for csrf_protect on views that don't accept POST 2009-11-03 14:40:37 +00:00
__init__.py Trunk is now 1.2 pre-alpha. 2009-07-30 19:57:49 +00:00