django1/django
James Bennett 9e3b327aca Patch CSRF-protection system to deal with reported security issue. Announcement and details to follow.
git-svn-id: http://code.djangoproject.com/svn/django/trunk@13698 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2010-09-09 00:34:54 +00:00
..
bin Fixed #10102 -- Set svn:executable on daily_cleanup script. Thanks to John Scott for the report 2009-03-14 05:18:02 +00:00
conf Fixed #13681 -- Added a commented out admindocs entry to the default INSTALLED_APPS for a new project. Thanks to elkan for the report, and andrews for the patch. 2010-08-28 12:38:05 +00:00
contrib Fixed #13081 - Admin actions lose get-parameters in changelist view 2010-09-07 20:55:53 +00:00
core Fixed #14199 -- Added a missing table creation statement in the db cache backend cull implementation, and added tests for cache culling. Thanks to Tim for the report. 2010-08-31 00:44:46 +00:00
db Fixed #13798 -- Added connection argument to the connection_created signal. Thanks to liangent for the report, and Alex Gaynor for the patch. 2010-08-30 13:21:18 +00:00
dispatch Fixed #12164 -- Removed the Python 2.3 compatibility imports and workarounds. Thanks to timo and claudep for the patch. 2010-05-04 14:00:30 +00:00
forms Fixed #13679, #13231, #7287 -- Ensured that models that have ForeignKeys/ManyToManyField can use a a callable default that returns a model instance/queryset. #13679 was a regression in behavior; the other two tickets are pleasant side effects. Thanks to 3point2 for the report. 2010-08-14 12:05:41 +00:00
http Fixed #13572: copies of QueryDicts now have their encoding set correctly. 2010-05-28 16:39:52 +00:00
middleware Patch CSRF-protection system to deal with reported security issue. Announcement and details to follow. 2010-09-09 00:34:54 +00:00
shortcuts Fixed #11960 -- Improved error message for redirects. Thanks, mattmcc 2010-01-10 18:44:39 +00:00
template Patch CSRF-protection system to deal with reported security issue. Announcement and details to follow. 2010-09-09 00:34:54 +00:00
templatetags Fixed #13453: Corrected typo in template syntax error message. Thanks jheasly. 2010-05-01 02:29:32 +00:00
test Fixed #14116 -- Added a flag to enable CSRF checks in the test client. Thanks to jon@licq.org for the suggestion. 2010-08-27 13:54:13 +00:00
utils Fixed #11021 -- Clarified newline stripping behavior in the truncatewords and truncatewords_html filters. Thanks to Ben Spaulding for the report and patch. 2010-08-07 14:57:24 +00:00
views Added explanatory note on CSRF failure page for the case of a missing Referer header. 2010-09-03 16:28:10 +00:00
__init__.py Django is now 1.3 pre-alpha. 2010-06-19 21:14:56 +00:00