p15693087
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
20,813 Commits 25 Branches 361 Tags 501 MiB
Commit Graph

8309 Commits

Author SHA1 Message Date
John-Mark Bell a5e9ae9ad5 [1.8.x] Fixed #26325 -- Made MultiPartParser ignore filenames that normalize to an empty string. 
Backport of 4b129ac81f from master
 2016-03-07 13:22:38 -05:00
Tim Graham 6d312f95f3 [1.8.x] Added stub release notes for 1.8.12. 
Backport of c960af4adb from master
 2016-03-05 10:02:12 -05:00
Claude Paroz beb392b85e [1.8.x] Added safety to URL decoding in is_safe_url() on Python 2 
The errors='replace' parameter to force_text altered the URL before checking
it, which wasn't considered sane. Refs 24fc935218 and ada7a4aef.
Backport of 552f03869e from master.
 2016-03-04 23:39:46 +01:00
Claude Paroz 28bed24f55 [1.8.x] Fixed #26308 -- Prevented crash with binary URLs in is_safe_url() 
This fixes a regression introduced by c5544d2892.
Thanks John Eskew for the reporti and Tim Graham for the review.
Backport of ada7a4aef from master.
 2016-03-04 21:16:51 +01:00
Tim Graham f294b3833b [1.8.x] Added stub release notes for 1.8.11. 
Backport of 2f0c785a4c from master
 2016-03-04 09:48:11 -05:00
Tim Graham 8b891cf386 [1.8.x] Fixed #26321 -- Added missing "for_save" parameter in expressions example. 
Thanks tomaszn for the patch.

Backport of de8a11ba18 from master
 2016-03-03 19:38:06 -05:00
Alasdair Nicol e4be3c80a1 [1.8.x] Fixed #26309 -- Documented that login URL settings no longer support dotted paths. 
Backport of 2404d209a5 from master
 2016-03-03 07:49:06 -05:00
Dmitry Dygalo 6a9bb1447c [1.8.x] Fixed typo in 1.8.10 release date. 
Backport of 5155c2b458 from master
 2016-03-02 07:10:21 -05:00
Tim Graham 640c99e8b3 [1.8.x] Added CVE-2016-2512/2513 to security release archive. 
Backport of 24fc935218 from master
 2016-03-01 12:36:20 -05:00
Florian Apolloner f4e6e02f77 [1.8.x] Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login. 
This is a security fix.
 2016-02-29 08:07:17 -05:00
Mark Striemer 382ab13731 [1.8.x] Fixed CVE-2016-2512 -- Prevented spoofing is_safe_url() with basic auth. 
This is a security fix.
 2016-02-29 08:07:17 -05:00
Tim Graham 922f228695 [1.8.x] Added stub release notes for security issues. 2016-02-29 08:07:17 -05:00
Simon Charette 4701c81df3 [1.8.x] Fixed #26286 -- Prevented content type managers from sharing their cache. 
This should prevent managers methods from returning content type instances
registered to foreign apps now that these managers are also attached to models
created during migration phases.

Thanks Tim for the review.

Refs #23822.

Backport of 3938b3ccaa from master
 2016-02-26 16:24:28 -05:00
Tim Graham 3b0b1e071d [1.8.x] Fixed a function signature in docs/topics/auth/default.txt. 
Backport of 441c537b66 from master
 2016-02-24 16:25:37 -05:00
Tim Graham 4b8bd72a9f [1.8.x] Removed docs of deprecated SimpleTestCase warnings behavior. 
Removed in Django 1.7 (4f6be9a0c4).

Backport of 6637cd0ef2 from master
 2016-02-24 09:59:23 -05:00
Jon Dufresne 6c48edae76 [1.8.x] Fixed #26267 -- Fixed BoundField to reallow slices of subwidgets. 
Backport of b412681359 from master
 2016-02-24 07:09:08 -05:00
Josh Soref 751e5fcaf7 [1.8.x] Fixed many spelling mistakes in code, comments, and docs. 
Partial backport of 93452a70e8 from master
 2016-02-23 10:27:15 -05:00
Tim Graham 2d321d2393 [1.8.x] Fixed #26188 -- Documented how to wrap password hashers. 
Backport of 5a541e2e6c from master
 2016-02-23 09:34:04 -05:00
Daniel Quinn 5127ab4e73 [1.8.x] Fixed import location of check_password() in docs. 
Backport of de7edc005f from master
 2016-02-22 12:43:41 -05:00
Sergey Fedoseev e127fbac7b [1.8.x] Fixed some code blocks indentation in GIS docs. 
Backport of dbaa1a6b59 from master
 2016-02-19 08:35:57 -05:00
Juan José Conti 3c2282c301 [1.8.x] Used relative models imports in the GIS tutorial. 
Backport of bb7042cda from master.
 2016-02-19 08:30:28 +01:00
Tim Graham 0f667a580a [1.8.x] Fixed #26204 -- Reallowed dashes in top-level domains for URLValidator. 
Thanks Shai Berger for the review.

Backport of b1afebf882 from master
 2016-02-18 19:56:36 -05:00
Jon Dufresne 2029105670 [1.8.x] Followed recommended ValidationError use in docs. 
Backport of 0db7e61076 from master
 2016-02-17 09:10:09 -05:00
Claude Paroz 5bce665974 [1.8.x] Fixed #26215 -- Fixed RangeField/ArrayField serialization with None values 
Also added tests for HStoreField.
Thanks Aleksey Bukin for the report and Tim Graham for the initial patch and
the review.
Backport of 928c12eb1 from master.
 2016-02-16 21:14:24 +01:00
Tim Graham 766fbcb1d3 [1.8.x] Fixed possible "RuntimeError: maximum recursion depth exceeded" building docs. 
Backport of 6a71ac61bd from master
 2016-02-16 07:32:08 -05:00
Ryan Nowakowski 4aab1d4bb3 [1.8.x] Fixed #26221 -- Used find_packages() in reusable apps tutorial. 
Otherwise the migrations package won't be included in the tarball.

Backport of 11af73eaeb from master
 2016-02-15 19:25:53 -05:00
Tim Graham 180d4cbfe6 [1.8.x] Fixed #26212 -- Made forms.FileField and translation.lazy_number() picklable. 
Backport of b59f963ad2 from master
 2016-02-15 11:52:14 -05:00
Camilo Nova b9105e7dea [1.8.x] Added import in docs/topics/email.txt example. 
Backport of a6f856df52 from master
 2016-02-12 13:45:13 -05:00
Markus Holtermann 3af5643d82 [1.8.x] Fixed allow_migrate() signature in documentation 
Backport of 228427ab1a from master
 2016-02-12 14:37:10 +11:00
Simon Charette edff550392 [1.8.x] Fixed #26162 -- Checked query name clashes of hidden relationships. 
Although reverse accessor clashes should be skipped query name can't be hidden.

Thanks to Ian Foote and Tim Graham for the review.

Backport of a325fb1f9b from master
 2016-02-08 10:42:31 -05:00
Tim Graham 2f0de9b0a1 [1.8.x] Fixed #26177 -- Fixed a PostgreSQL crash with TIME_ZONE=None and USE_TZ=False. 
Backport of 97eb3356b2 from master
 2016-02-08 07:45:10 -05:00
Tim Graham b650623882 [1.8.x] Added stub release notes for 1.8.10. 
Backport of d6337e65ed from master
 2016-02-06 09:25:02 -05:00
Carl Meyer c247753083 [1.8.x] Fix typos in 1.8 release notes. 
Backport of a0ce4c09ff from master
 2016-02-03 15:27:40 -05:00
Tim Graham ea2d9f0d4a [1.8.x] Refs #26089 -- Removed obsolete docs about custom user model testing. 
Backport of 1e9150443e from master
 2016-02-02 08:55:37 -05:00
Ramon Moraes 8488fbb2dc Updated xhtml2pdf URL in docs. 2016-02-02 07:34:21 -05:00
Tim Graham 97f0e0ac24 [1.8.x] Added CVE-2016-2048 to the security archive. 
Backport of ecd502cfdb from master
 2016-02-01 12:43:21 -05:00
Tim Graham 3a7c5f59ab [1.8.x] Added release date for 1.8.9. 2016-02-01 12:13:54 -05:00
Tim Graham 229666289d [1.8.x] Fixed #20415 -- Ensured srid isn't localized in OpenLayers JavaScript. 
Backport of 19d1cb1451 from master
 2016-01-28 18:02:36 -05:00
Yoong Kang Lim c2dfc3616a [1.8.x] Fixed #26136 -- Removed URL reversing by dotted path from JavaScript catalog example. 
Backport of 31817dd2eb from master
 2016-01-27 09:07:07 -05:00
Ben Kraft 79c3950562 [1.8.x] Fixed #26122 -- Fixed copying a LazyObject 
Shallow copying of `django.utils.functional.LazyObject` or its subclasses has
been broken in a couple of different ways in the past, most recently due to
35355a4.
 2016-01-26 06:57:47 -05:00
Tim Graham d162438c65 [1.8.x] Fixed Sphinx highlight warnings in docs. 
Backport of 9c43d8252a from master
 2016-01-25 12:10:21 -05:00
Tim Graham 7b6ab2885e [1.8.x] Refs #26034 -- Added another case fixed by this ticket to release notes. 
Thanks Shai Berger for the report.

Backport of 497b5d6fee from master
 2016-01-25 08:37:36 -05:00
Tim Graham bf9385e3aa [1.8.x] Added Django version trove classifier to reusable apps tutorial. 
Backport of 2d36c7d515 from master
 2016-01-24 08:44:30 -05:00
Tim Graham 009c697312 [1.8.x] Fixed #26121 -- Updated MySQL storage engine example. 
default_storage_engine was introduced in MySQL 5.5.3.
storage_engine was removed in MySQL 5.7.5.

Backport of 79d0a4fdb0 from master
 2016-01-22 08:22:47 -05:00
Luke Plant a034ced2ef [1.8.x] Changed `action="."` to `action=""` in tests and docs. 
`action="."` strips query parameters from the URL which is not usually what
you want. Copy-paste coding of these examples could lead to difficult to
track down bugs or even data loss if the query parameter was meant to alter
the scope of a form's POST request.

Backport of 77974a684a from master
 2016-01-21 14:00:23 -05:00
Alexander Gaevsky 8502e9f049 [1.8.x] Fixed #26060 -- Fixed crash with reverse OneToOneField in ModelAdmin.readonly_fields. 
Backport of 9a33d3d764 from master
 2016-01-21 13:55:14 -05:00
Alberto Avila 5b3c66d8b6 [1.8.x] Fixed #26071 -- Fixed crash with __in lookup in a Case expression. 
Partial backport of afe0bb7b13 from master.
 2016-01-13 08:38:07 -05:00
Tim Graham f8c3d38c2d [1.8.x] Fixed #26034 -- Fixed incorrect index handling on PostgreSQL on Char/TextField with unique=True and db_index=True. 
Thanks Simon Charette for review.

Backport of 56aaae58a7 from master
 2016-01-08 14:47:05 -05:00
Tim Graham ae39a06603 [1.8.x] Fixed #26055 -- Removed an orphaned phrase in docs/howto/deployment/wsgi/modwsgi.txt. 
Backport of db8f462494 from master
 2016-01-08 09:39:29 -05:00
Alexander Gaevsky 40601e5797 [1.8.x] Fixed #24980 -- Fixed day determination in admin calendar widget. 
Backport of 44930cc466 from master
 2016-01-07 19:15:57 +03:00
Claude Paroz 61437dd0a0 [1.8.x] Fixed #26046 -- Fixed a crash with translations and Django-unknown language code 
Thanks Jens Lundstrom for the report and Tim Graham for the review.
Backport of 632a9f21bc from master.
 2016-01-06 20:34:45 +01:00
Scott Pashley 7688089e0f [1.8.x] Fixed #26035 -- Prevented user-tools from appearing on admin logout page. 
Backport of 7cc2efc2d6 from master
 2016-01-06 14:00:52 -05:00
Tim Graham 5c1de942ac [1.8.x] Added stub release notes for 1.8.9. 
Backport of 1e57dccb31 from master
 2016-01-05 13:19:50 -05:00
Tim Graham 4fd5f06d1e [1.8.x] Added release date for 1.8.8 release. 
Backport of 24c1713e2e from master
 2016-01-02 08:37:08 -05:00
varunnaganathan f6b4893a9f [1.8.x] Fixed #25316 -- Fixed a crash with order_by() and values() after annotate(). 
Backport of 3eba9638ee from master
 2016-01-02 08:20:07 -05:00
Anssi Kääriäinen 1261c49690 [1.8.x] Fixed #23372 -- Made loaddata faster if it doesn't find any fixtures. 
Django's test suite often tries to load fixture files from apps that have
no fixtures at all. This creates a lot of unnecessary disabling and
enabling of constraints which can be expensive on some database.

To speed this up, loaddata now first checks if any fixture file matches.
If no fixture file is matched, then the command exits before disabling
and enabling of constraints is done.

The main benefit of this change is seen on MSSQL, where tests on
Django 1.8 run hours faster.

Backport of ee9f4686b1 from master
 2015-12-31 09:20:00 -05:00
Alexander Gaevsky 83174866ac [1.8.x] Fixed #25465 -- Restored line breaks conversion in admin readonly fields. 
Backport of 69208a5a1c from master
 2015-12-29 19:56:23 -05:00
Markus Bertheau b51086d573 [1.8.x] Fixed #13008 -- Added more Cache-Control headers to never_cache() decorator. 
Backport of 4a438e400b from master
 2015-12-24 11:25:50 -05:00
Chris Lamb 91d46d2fb8 [1.8.x] Discouraged use of /tmp with predictable names. 
The use of predictable filenames in /tmp often leads to symlink attacks
so remove the most obvious use of them in the docs.

Backport of 77b8d8cb6d from master
 2015-12-24 09:57:02 -05:00
Tim Graham 464128eb4e [1.8.x] Removed an extra header in docs/ref/templates/api.txt. 
Backport of 91cd4d8e8c from master
 2015-12-23 19:05:38 -05:00
Alasdair Nicol e95c9c35d3 [1.8.x] Fixed #25854 -- Removed deprecated usage of template.render() with RequestContext in docs. 
Backport of 32c7d93e5f from master
 2015-12-23 18:31:24 -05:00
Tim Graham d156ae0612 [1.8.x] Fixed #25963 -- Clarified render_to_response() context_instance deprecation. 
Backport of 36d0aa4303 from stable/1.9.x
 2015-12-22 13:11:43 -05:00
Claude Paroz 67a62703cc [1.8.x] Fixed #25915 -- Allowed language not in Django's default LANGUAGES 
This fixes a regression introduced by a5f6cbce07.
Thanks Gavin Wahl for the report and Tim Graham for the review.
Backport of cd3c042b0 from master.
 2015-12-18 17:53:16 +01:00
Sergey Fedoseev ad8cb985a9 [1.8.x] Fixed a typo in docs/ref/contrib/gis/geos.txt. 
Backport of e090070761 from master
 2015-12-18 07:09:31 -05:00
Simon Charette 4b02b433b7 [1.8.x] Fixed #25852 -- Made sure AlterModelManager forces a reload of its model state. 
Thanks to Geoffrey Sechter and the Django NYC group for the report and Markus
for the review.

Backport of c4e372aaf4 from master
 2015-12-15 14:55:05 -05:00
Bruno Alla c0c2c7ecd6 [1.8.x] Fixed #25893 -- Corrected custom lookups example. 
Backport of ffcdb0b471 from master
 2015-12-11 08:45:14 -05:00
Dotan Agmon f179d35f54 [1.8.x] Fixed incorrect examples in ArrayField docs. 
Backport of a44dc200d0 from master
 2015-12-10 17:51:46 -05:00
Federico Frenguelli 905e94a07e [1.8.x] Fixed #25412 -- Fixed missing PostgreSQL index on Char/TextField when using AlterField. 
Thanks to Emanuele Palazzetti for the help.

Backport of 3a36c80795 from master
 2015-12-10 16:29:00 -05:00
Amos Onn 0772bffd4a [1.8.x] Fixed #25896 -- Fixed state bug in SeparateDatabaseAndState.database_backwards(). 
Backport of 542b7f6c50 from master
 2015-12-09 11:08:17 -05:00
Andrew Plummer 4eb9a1cf2a [1.8.x] Fixed typo in docs/ref/forms/validation.txt. 
Backport of 1aa8bf9b43 from master
 2015-12-09 07:21:32 -05:00
Gavin Wahl d34de856e5 [1.8.x] Fixed user_passes_test() signature in docs. 
Backport of ec708803f7 from master
 2015-12-08 15:57:46 -05:00
Tim Graham cdc354eb39 [1.8.x] Fixed #25895 -- Used a consistent style for UserAdmin overrides. 
Thanks Justin Abrahms for the report.

Backport of 166e0490d3 from master
 2015-12-08 14:42:39 -05:00
Tim Graham 975a451153 [1.8.x] Refs #25886 -- Improved language in Python compatibility section of the release notes. 
Backport of 26c26e8308 from master
 2015-12-08 13:05:51 -05:00
Tim Graham 14e1e53a90 [1.8.x] Fixed #25881 -- Marked Python 3.2 in Django 1.8 as unsupported at the end of 2016. 
Backport of e6bd688ef3 from master
 2015-12-08 12:48:07 -05:00
Tim Graham dfd4bd5fc5 [1.8.x] Fixed typo docs/ref/models/relations.txt 2015-11-30 18:48:56 -05:00
Gagaro 9582ba51bd [1.8.x] Fixed #25812 -- Restored the ability to use custom formats with the date template filter. 
Backport of 34d88944f4 from master
 2015-11-28 08:44:51 -05:00
James Beith 85a021b9cb [1.8.x] Fixed a typo in the managers docs. 
Backport of e03798a4ae from master
 2015-11-27 13:54:19 -05:00
Tim Graham 15a18090c1 [1.8.x] Fixed man page by ensuring ".pot" doesn't render unescaped. 
See https://github.com/sphinx-doc/sphinx/issues/2131

Backport of 0cfe589f95 from master
 2015-11-25 17:23:17 -05:00
Attila Tovt 3ec4e739dd [1.8.x] Fixed #25772 -- Corrected __len lookup on ArrayField for empty arrays. 
Backport of 88fc9e2826 from master
 2015-11-25 16:53:27 -05:00
Sergey Fedoseev 78627091f8 [1.8.x] Fixed #25649 -- Documented that all GEOSGeometry constructors take srid kwarg. 
Backport of a3708fda35 from master
 2015-11-25 16:30:50 -05:00
Jacek Bzdak 834ad41472 [1.8.x] Fixed #25274 --- Made inspectdb handle renamed fields in unique_together. 
Backport of 2cb50f935a from master
 2015-11-25 13:17:24 -05:00
Tim Graham 108038f2b4 [1.8.x] Added stub release notes for 1.8.8. 
Backport of ec202eff84 from master
 2015-11-25 10:20:13 -05:00
Tim Graham 2be1bdcfd0 [1.8.x] Backported the latest version of the security issue archive. 2015-11-24 14:05:09 -05:00
Tim Graham 33de26c6ed [1.8.x] Added release dates for 1.8.7/1.7.11 releases. 2015-11-24 11:31:10 -05:00
Florian Apolloner 9f83fc2f66 [1.8.x] Fixed a settings leak possibility in the date template filter. 
This is a security fix.
 2015-11-24 11:31:10 -05:00
George Marshall 581b9e5047 [1.8.x] Fixed #25767 -- Fixed data truncation possibility with Positive(Small)IntegerField on MySQL. 
Backport of 710e11d076 from master
 2015-11-24 11:10:23 -05:00
Tim Graham acaf30ad17 [1.8.x] Documented that forms.Field.help_text isn't HTML-escaped. 
Backport of a918f8b089 from master
 2015-11-24 10:17:39 -05:00
Bulgantamir Gankhuyag 92d0d2cb1b [1.8.x] Clarified default value for DateField to emulate auto_now_add. 
Backport of 8bce6fa637 from master
 2015-11-24 08:40:14 -05:00
Sergey Fedoseev 954d63155f [1.8.x] Refs #25739 -- Lessened the prominence of geos.fromstr() in the docs. 
Backport of 97e1d24330 from master
 2015-11-23 17:25:04 -05:00
Tim Graham 6d9f061b07 [1.8.x] Fixed #25786 -- Fixed set_FOO_order() crash with order_with_respect_to referencing OneToOneField pk. 
Partial backport of 7bec480fe2 from master
 2015-11-23 11:05:18 -05:00
Stephane Angel (Twidi) 8f724817f3 [1.8.x] Corrected doc'd differences between django-admin and manage.py. 
Backport of 8091e8c5c6 from master
 2015-11-23 07:51:33 -05:00
Simon Charette 7c3ef19978 [1.8.x] Fixed #25685 -- Fixed a duplicate query regression on deletion of proxied models. 
Thanks to Trac alias ppetrid for the report and Tim for the review.
 2015-11-22 23:07:30 -05:00
Tim Graham 2179e5a2bc [1.8.x] Fixed #25715 -- Fixed Model.refresh_from_db() with ForeignKey w/on_delete=SET_NULL. 
Backport of 54e2e688e1 from master
 2015-11-21 11:41:06 -05:00
areski bc8bae0ba9 [1.8.x] Corrected GenericIPAddressField protocol parameter doc. 
Backport of 1e7da99ea6 from master
 2015-11-19 11:19:20 -05:00
Tim Graham 95eca4f508 [1.8.x] Fixed #25549 -- Documented auth_user_password_change URL. 
Backport of ad167502f3 from master
 2015-11-18 19:36:17 -05:00
Tim Graham e7da99abd4 [1.8.x] Refs #25526 -- Documented some missing termcolors. 
Backport of 5f7f3b4685 from master
 2015-11-18 10:44:19 -05:00
Neal Todd a16d4e249c [1.8.x] De-emphasized use of NullHandler in logging docs. 
NullHandler removed in 1.9; unused since Django 1.5.

Backport of b3acdeee50 from master
 2015-11-18 09:56:33 -05:00
Elena Oat a9f1ea3275 [1.8.x] Fixed #25526 -- Documented how to output colored text in custom management commands. 
Backport of d26207d56c from master
 2015-11-17 18:25:08 -05:00
Alex Morozov b4aa38d106 [1.8.x] Fixed #25710 -- Clarified the docs about what INTERNAL_IPS does. 
Backport of 5abed864ee from master
 2015-11-17 10:18:07 -05:00
Tim Graham 583d3c081a [1.8.x] Refs #23751 -- Added some unicode characters to the latex preamble. 
Thanks Graham Wideman for the patch.

Backport of a80d70dd10 from master
 2015-11-16 20:32:55 -05:00