p15693087
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
10,195 Commits 25 Branches 361 Tags 501 MiB
Commit Graph

10195 Commits

Author SHA1 Message Date
Russell Keith-Magee 1a76dbefdf [1.3.X] Altered the behavior of URLField to avoid a potential DOS vector, and to avoid potential leakage of local filesystem data. A security announcement will be made shortly. 
Backport of r16760 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16763 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-10 01:08:24 +00:00
Russell Keith-Magee fbe2eead2f [1.3.X] Corrected an issue which could allow attackers to manipulate session data using the cache. A security announcement will be made shortly. 
Backport of r16759 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16762 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-10 01:08:02 +00:00
Russell Keith-Magee 2f7fadc38e [1.3.X] Added protection against spoofing of X_FORWARDED_HOST headers. A security announcement will be made shortly. 
Backport of r16758 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16761 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-10 01:07:50 +00:00
Gabriel Hurley afe47636f7 [1.3.X] Fixed #16782 -- Corrected a broken cross-reference to the database engine setting in the tutorial. Thanks to mjumbewu for the report and patch. 
Backport of r16754 from trunk.


git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16755 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-09 23:27:31 +00:00
Justin Bronn 52279a4113 [1.3.X] Fixed #16408 -- Fixed conversion of dates, and other problems with the SpatiaLite backend. 
Backport of r16749 and r16750 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16751 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-09 22:50:03 +00:00
Gabriel Hurley 1f7c6c011a [1.3.X] Fixed #16791 -- Updated a broken URL in the README file. Thanks to paulcwatts for the report and patch. 
Backport of r16743 from trunk.


git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16744 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-09-09 21:43:11 +00:00
Julien Phalip 71836f4c76 [1.3.X] Fixed a small admin CSS issue where the "Save and continue editing" and "Save and add another" buttons were wrongly aligned with left-to-right languages in IE7. 
Backport of r16683 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16684 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-25 08:13:28 +00:00
Russell Keith-Magee 8b42dfa47e [1.3.X] Corrected the setup and teardown of the refactored invalid_models test so that it guarantees that stdout is restored, and purges all the temporary models from the app cache after running the test. 
Backport of r16670 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16677 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:57:19 +00:00
Russell Keith-Magee e2d7a784c8 [1.3.X] Fixed #16201 -- Ensure that requests with Content-Length=0 don't break the multipart parser. Thanks to albsen for the report and patch 
Backport of r16353 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16676 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:57:01 +00:00
Russell Keith-Magee f317bd20d7 [1.3.X] Fixed #16299 -- Ensure that unicode strings can be used to identify classes in ForeignKey and ManyToManyFields. Unicode strings aren't actually legal as class names, but this is an issue if you use from __future__ import unicode_literals in your models.py file. Thanks to Martijn Bastiaan for the report, and Anthony Briggs for the final patch. 
Backport of r16663 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16675 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:56:40 +00:00
Russell Keith-Magee 38530700bf [1.3.X] Fixed #16681 -- Refactored the invalid_models unit test so that it can be invoked manually. Thanks to Anthony Briggs for the report and patch. 
Backport of r16661 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16674 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:56:18 +00:00
Russell Keith-Magee 3e7d79b6ac [1.3.X] Fixed #15499 -- Ensure that cache control headers don't try to set public and private as a result of multiple calls to patch_cache_control with different arguments. Thanks to AndiDog for the report and patch. 
Backport of r16657 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16673 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:55:48 +00:00
Russell Keith-Magee e9a1c03dba [1.3.X] Fixed #10571 -- Factored out the payload encoding code to make sure it is used for PUT requests. Thanks to kennu for the report, pterk for the patch, and wildfire for the review comments. 
Backport of r16651 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16672 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:55:22 +00:00
Russell Keith-Magee 671483f37b [1.3.X] Fixed #14876 -- Ensure that join promotion works correctly when there are nullable related fields. Thanks to simonpercivall for the report, oinopion and Aleksandra Sendecka for the original patch, and to Malcolm for helping me wrestle the edge cases to the ground. 
Backport of r16648 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16671 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 15:54:45 +00:00
Julien Phalip a7ec5c433c [1.3.X] Fixed #16680 -- Used single quotes for the TEMPLATE_DIRS examples in part 2 of the tutorial to be consistent with the settings.py file generated by the startproject command. Thanks, Michael Tomkins. 
Backport of r16660 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16666 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 06:00:08 +00:00
Julien Phalip e71d0133bd [1.3.X] Fixed #16669 -- Made the startproject instruction formatting easier to read and more consistent with other formatting in the tutorial part 1. Thanks to Daniel Lawrence and Aymeric Augustin. 
Backport of r16664 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16665 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-23 05:59:54 +00:00
Timo Graham 6f9d250698 [1.3.X] Fixed #16654 - Syntax error in reverse() example; thanks jedie. 
Backport of r16630 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16631 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-20 19:28:25 +00:00
Timo Graham 329d80faab [1.3.X] Fixed #16595 - Add pop() to session docs; thanks wilfred. 
Backport of r16628 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16629 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-20 19:23:16 +00:00
Timo Graham 3e5fc7ebb1 [1.3.X] Fixed #16430 - Stronger wording for CSRF protection in `modifying upload handlers on the fly`; thanks tomchristie. 
Backport of r16588 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16589 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-06 20:34:19 +00:00
Timo Graham 199f10f9c0 [1.3.X] Fixed #16513 - Add forms import to example; thanks teraom. 
Backport of r16586 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16587 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-06 19:02:56 +00:00
Timo Graham 4217f358c0 [1.3.X] Fixed #16528 - Documented test runner returns 1, regardless of the number of test failures; thanks teraom. 
Backport of r16584 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16585 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-06 18:54:40 +00:00
Timo Graham fe96e20a3e [1.3.X] Fixed #16580 - Typo in docs/ref/models/querysets.txt 
Backport of r16582 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16583 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-06 18:50:19 +00:00
Timo Graham 1959aa939d [1.3.X] Fixed #16566 - Typo in docs/ref/files/storage.txt; thanks thejaswi_puthraya. 
Backport of r16580 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16581 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-08-06 18:41:00 +00:00
Jannis Leidel c0fa1965e2 [1.3.X] Fixed #16531 -- Fixed various instances of "undefined name" issues. Thanks, Bruno Renié. 
Backport from trunk (r16557).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16571 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-29 09:48:05 +00:00
Chris Beaven 41e086cfb5 [1.3.X] Fixes #16532 -- Clearer explanation of how the test client expects HTTP headers to be passed. Thanks for the patch, Ricardo Bánffy. 
Backport of r16554 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16555 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-28 22:10:27 +00:00
Brian Rosner 2a1874521e [1.3.X] Added a note about the AJAX CSRF example not working on jQuery 1.5 
Backport of [16543] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16544 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-14 19:40:30 +00:00
Ramiro Morales a925b3780e [1.3.X] Reverted [14563] because it introduced a dependency from core on a contrib app (contenttypes). Fixes #16283, Refs #3055. Thanks TheRoSS for the report and Aymeric Augustin for finding the problem. 
This caused models shipped with some contrib apps to pollute the namespace when user's apps had the same name (e.g. auth, sites), even when these contrib apps weren't installed.

This undesired loading of contrib apps happened when model validation was executed, for example when running management commands that set or inherit `requires_model_validation=True`:
cleanup, dumpdata, flush, loaddata, reset, runfcgi, sql, sqlall, sqlclear, sqlcustom, sqlflush, sqlindexes, sqlinitialdata, sqlreset, sqlsequencereset, syncdb, createsuperusers, ping_google, collectstatic, findstatic.

This could also cause hard to diagnose problems e.g. when performing reverse URL resolving.

Backport of [16493] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16541 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-14 00:27:55 +00:00
Simon Meers 220ce42333 [1.3.X] Fixed #16000 -- reference natural keys in contenttypes documentation. Thanks jsdalton. 
Backport of r16536 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16537 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-10 21:52:50 +00:00
Simon Meers c828cc1ba6 [1.3.X] Fixed #15715 -- added non-trivial decorator example to CBV docs. Thanks toofishes. 
Backport of r16534 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16535 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-10 21:40:14 +00:00
Simon Meers 00886dfd2b [1.3.X] Fixed #16440 -- minor ungettext documentation issue, thanks Bradley Ayers. 
Backport of r16532 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16533 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-10 21:33:42 +00:00
Jannis Leidel 5a0787f904 [1.3.X] Fixed #15974 -- Correctly link to static files handling in deployment docs. Thanks, RogueBean. 
Backport from trunk (r16491).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16492 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-07-01 15:19:34 +00:00
Justin Bronn a441032e0e [1.3.X] Fixed #16232 -- Corrected typo in geographic admin reference. Thanks, Issac Kelly. 
Backport of r16484 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16486 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-29 16:40:31 +00:00
Simon Meers d8ef686e24 [1.3.X] Fixed #16297 -- make_list documentation error regarding integers. Thanks ned and teraom. 
Backport of r16468 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16469 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-26 21:29:13 +00:00
Timo Graham a0285bb612 [1.3.X] Fixed #16258 - typo in middleware docs. 
Backport of r16441 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16442 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-19 19:40:50 +00:00
Jannis Leidel d90bd88d73 [1.3.X] Fixed #16292 -- Removed broken link for Swiss localflavor documentation. Thanks, BernhardEssl. 
Backport from trunk (r16435).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16436 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-18 12:01:10 +00:00
Jannis Leidel 7880d99900 [1.3.X] Fixed #16031 -- Corrected comments template examples. Thanks, teraom. 
Backport from trunk (r16412).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16421 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-16 16:42:54 +00:00
Jannis Leidel 25ee9b4913 [1.3.X] Fixed #16273 -- Fixed typo in staticfiles docs. Thanks, BernhardEssl. 
Backport from trunk (r16407).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16409 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-16 15:28:12 +00:00
Jannis Leidel eb96665b7a [1.3.X] Added a few cross references to the i18n docs and documented pgettext and colleagues. 
Backport from trunk (r16403).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16404 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-15 10:50:08 +00:00
Timo Graham 4f215cfcd7 Fixed #15764 - Corrected mixin docs for DeleteView; thanks linovia for the report. 
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16380 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-12 00:26:43 +00:00
Timo Graham 5d71bec5e4 [1.3.X] Fixed #15949 - Clarified the docs for password_reset_done view; thanks cyclops for the suggestion; Horst Gutmann for the patch. 
Backport of r16378 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16379 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-11 23:41:28 +00:00
Timo Graham 1b51aa74b8 [1.3.X] Fixed #16158 - Changed FALLBACK_DYLD_LIBRARY_PATH to DYLD_FALLBACK_LIBRARY_PATH in GIS documentation; thanks adam for the report. 
Backport of r16364 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16365 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-11 09:35:36 +00:00
Carl Meyer a5b44ed873 [1.3.X] Refs #15855 -- Recommended the csrf_protect decorator rather than vary_on_cookie as workaround for cache_page caching the response before it gets to middleware. 
Backport of r16361 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16362 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-10 16:19:56 +00:00
Karen Tracey c1baaa8c87 [1.3.X] Fix #15880: Prevent "stalling" when running dev server in background by ignoring SIGTTOU for the duration of tcsetattr. 
Backport of [16326] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16327 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-04 15:31:41 +00:00
Timo Graham f578563291 [1.3.X] Fixed #16145 - typo in manager docs; thanks leereilly. 
Backport of r16324 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16325 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-04 14:39:16 +00:00
Luke Plant 0e90de0a15 [1.3.X] Fixed #16144 - layout of admin changelist broken for RTL languages. 
Backport of [16314] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16315 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-06-02 12:20:11 +00:00
Timo Graham 9f71bef7e9 [1.3.X] Fixed #16090, #16091 - Typos in docs; thanks teraom. 
Backport of r16300 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16302 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-05-31 09:44:21 +00:00
Timo Graham d2abec535e [1.3.X] Fixed #15801 - Incorrect external link for dictConfig; thanks David Niergarth for the report; jonash for the patch. 
Backport of r16100 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16301 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-05-31 09:44:18 +00:00
Luke Plant 6e87dacf62 [1.3.X] Fixed #15776 - delete regression in Django 1.3 involving nullable foreign keys 
Many thanks to aaron.l.madison for the detailed report and to emulbreh for
the fix.

Backport of [16295] from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16296 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-05-30 16:19:53 +00:00
Timo Graham 4124ef339c [1.3.X] Fixed #16093 - Typo in "Performing raw SQL queries"; thanks direvus. 
Backport of r16293 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16294 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-05-30 12:11:46 +00:00
Jannis Leidel 879267f254 [1.3.X] Fixed #15992 -- Added more references to settings. Thanks, aaugustin. 
Backport from trunk (r16290).

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16291 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 2011-05-29 17:50:52 +00:00