Commit Graph

193 Commits

Author SHA1 Message Date
Preston Holmes d228c1192e Fixed #19866 -- Added security logger and return 400 for SuspiciousOperation.
SuspiciousOperations have been differentiated into subclasses, and
are now logged to a 'django.security.*' logger. SuspiciousOperations
that reach django.core.handlers.base.BaseHandler will now return a 400
instead of a 500.

Thanks to tiwoc for the report, and Carl Meyer and Donald Stufft
for review.
2013-05-25 16:27:34 -07:00
Aymeric Augustin 753edfa4b5 Fixed a rest mistake I introduced in d5ce2ff. 2013-05-19 12:14:44 +02:00
Marc Tamlyn d9c01da1f8 Improve cookie based session backend docs.
Note the don't require sessions to be in installed apps.
2013-05-19 11:24:35 +02:00
Silvan Spross cd72c55d86 Add missing imports and models to the examples in the view layer documentation 2013-05-18 18:39:11 +02:00
Erik Romijn d5ce2ff5e4 Fixed #20444 -- Cookie-based sessions does not include a remote code execution-warning 2013-05-18 16:53:13 +02:00
Juan Catalano 78c842a323 Adapted uses of versionchanged/versionadded to the new form.
Refs #20104.
2013-04-20 17:18:35 +02:00
Tim Graham c852d45681 Fixed #20204 - Consistent usage of url() in URL dispatcher documentation
Thanks Baptiste Mispelon for the patch and dave.lampton@ for the suggestion.
2013-04-10 20:38:25 -04:00
Baptiste Mispelon 2c27300f34 Fix #20195: wrong reference in session settings documentation. 2013-04-04 18:12:12 +02:00
Tim Graham 93cffc3b37 Added missing markup to docs. 2013-03-22 13:50:07 -04:00
Aymeric Augustin 3f2befc931 Deprecated django.views.defaults.shortcut. 2013-03-14 20:30:23 +01:00
Tim Graham fe5d9fe5fe Fixed #19962 - Added a note about SESSION_EXPIRE_AT_BROWSER_CLOSE and browsers that persist sessions.
Thanks David Sanders.
2013-03-02 10:11:23 -05:00
Aymeric Augustin 89cb771be7 Fixed #19692 -- Completed deprecation of mimetype in favor of content_type.
Thanks Tim for the report and initial patch.
2013-01-31 13:54:40 +01:00
Tim Graham 43f89e0ad6 Fixed #19605 - Removed unused url imports from doc examples.
Thanks sergzach for the suggestion.
2013-01-15 07:50:26 -05:00
Tim Graham ba50d3e05b Fixed #14633 - Organized settings reference docs and added a topical index.
Thanks Gabriel Hurley for the original idea
and adamv for the draft patch.
2013-01-12 18:44:53 -05:00
Vinod Kurup 5362134090 Fixed code examples in which render() calls were missing `request` parameter. 2013-01-11 15:52:47 -03:00
Tim Graham 9b5f64cc6e Fixed #19516 - Fixed remaining broken links.
Added -n to sphinx builds to catch issues going forward.
2013-01-02 18:32:57 -05:00
Aymeric Augustin 7ee7599ab3 Removed versionadded/changed annotations dating back to 1.4. 2012-12-29 21:59:08 +01:00
Tim Graham 067505ad19 Fixed broken links, round 4. refs #19516 2012-12-29 15:54:33 -05:00
Aymeric Augustin dbdd253860 Replaced the test case hierarchy schema with a vector version.
The OmniGraffle source file is included for future use.
2012-12-16 21:07:12 +01:00
Aymeric Augustin bf14aed3cc Added PDF version of SVG file for latexpdf builds.
Thanks Tim Graham for reporting this issue and testing the fix.
2012-12-16 19:42:53 +01:00
Aymeric Augustin be9f2919e0 Edited the middleware doc for completeness, clarity, and consistency. 2012-12-09 22:30:01 +01:00
Aymeric Augustin ae8e97384b Fixed #12502 -- Improved middleware diagram. 2012-12-09 21:13:26 +01:00
Tim Graham 0e3690d230 Fixed #18974 - Warned against using models.permalink
Thanks dstufft for the draft patch.
2012-11-22 16:08:51 -05:00
Markus Zapke-Gründemann 0546794397 Fixed #19230 -- Extended the handler403 documentation.
Added a paragraph on how to use the PermissionDenied exception to create a 403
response and use handler403.
2012-11-03 17:18:47 +01:00
Aymeric Augustin f975c4857d Fixed #19225 -- Typo in shortcuts docs.
Thanks SunPowered for the report.
2012-11-02 09:29:55 +01:00
Aymeric Augustin 146ed13a11 Fixed #17083 -- Allowed sessions to use non-default cache. 2012-10-31 09:46:16 +01:00
Aymeric Augustin 5fec97b9df Fixed #18194 -- Expiration of file-based sessions
* Prevented stale session files from being loaded
* Added removal of stale session files in django-admin.py clearsessions

Thanks ej for the report, crodjer and Elvard for their inputs.
2012-10-28 09:19:38 +01:00
Aymeric Augustin cd17a24083 Added optional kwargs to get_expiry_age/date.
This change allows for cleaner tests: we can test the exact output.

Refs #18194: this change makes it possible to compute session expiry
dates at times other than when the session is saved.

Fixed #18458: the existence of the `modification` kwarg implies that you
must pass it to get_expiry_age/date if you call these functions outside
of a short request - response cycle (the intended use case).
2012-10-27 23:15:45 +02:00
Aymeric Augustin 83ba0a9d4b Fixed #18978 -- Moved cleanup command to sessions.
This removes a dependency of 'core' on 'contrib'.
2012-10-27 18:31:00 +02:00
Aymeric Augustin 4b27813198 Fixed #7581 -- Added streaming responses.
Thanks mrmachine and everyone else involved on this long-standing ticket.
2012-10-20 20:05:11 +02:00
Preston Holmes 31dcaf49a0 Fixed an error in cookie documentation 2012-10-17 14:53:21 -07:00
Ramiro Morales 0614e99fbd More URL reversion docs typo fixes. 2012-10-11 15:40:38 -03:00
Dmitry Medvinsky b498ce8203 Fix typo in URLs reversing docs 2012-10-11 12:38:14 +04:00
Ramiro Morales ec1aad1671 Added section about URL reversion to URL mapper document. 2012-10-07 20:21:07 -03:00
Ramiro Morales 69035b0b1c More URL mapping documentation fixes. 2012-10-06 16:35:22 -03:00
Ramiro Morales b6b8a3f66b Refactored URL mapping documentation.
Reorganized topic document so it introduces concepts form simple to more
complex. Moved reference parts to their own documents.
2012-10-06 11:27:20 -03:00
Claude Paroz 8bd7b598b6 Fixed #18807 -- Made 404.html and 500.html optional
Thanks Aymeric Augustin for the report and Jannis Leidel for the
review.
2012-09-30 23:16:19 +02:00
Tim Graham 837425b425 Fixed #18934 - Removed versionadded/changed annotations for Django 1.3 2012-09-20 19:06:55 -04:00
Tim Graham acd74ffa35 Fixed #14829 - Added references to CBVs in the URLConf docs; thanks Andrew Willey for the suggestion. 2012-09-19 17:59:47 -04:00
Malcolm Tredinnick 6add6170c0 Small reorganisation of initial parts of URL documentation.
Trying to move most of the introductory example stuff up to the top and
pushing the reference bits further down.
2012-09-07 19:12:14 -04:00
Tim Graham c6088bc91d Fixed #18840 - Added a mentioned of the upload_to parameter to the ModelForm example in file uploads. 2012-09-01 15:38:44 -04:00
Aymeric Augustin 1288572d92 Made an example more readable in the URLs docs. 2012-08-20 18:23:17 +02:00
Aymeric Augustin 4e82d61400 Added links in URLs doc for consistency. 2012-08-20 15:02:25 +02:00
Tim Graham eff6ba2f64 Fixed #17016 - Added examples for file uploads in views.
Thanks Tim Saylor for the draft patch and Aymeric Augustin and Claude Paroz for feedback.
2012-08-10 16:19:20 -04:00
Anssi Kääriäinen aeda55e6bf Fixed #3881 -- skip saving session when response status is 500
Saving session data is somewhat likely to lead into error when the
status code is 500. It is guaranteed to lead into error if the reason
for the 500 code is query error on PostgreSQL.
2012-07-16 20:57:55 +03:00
Aymeric Augustin fb46f243b4 Fixed #18625 -- Removed old-style use of url tag
from the documentation.
2012-07-15 11:19:50 +02:00
Tim Graham 590de18add Fixed #18577 - Clarified middleware initialization.
Thanks Lukasz Balcerzak for the patch.
2012-07-08 19:26:53 -04:00
Claude Paroz 8a5d1a6b93 Updated obsolete links in the documentation 2012-06-28 10:49:07 +02:00
Tim Graham 1cf8287e3a Fixed #18369 - Fixed argument name in render() function; thanks qsolo825@ for the report. 2012-06-27 17:40:29 -04:00
Jannis Leidel c4c7fbcc0d Fixed #18451 -- Vastly improved class based view documentation.
Many thanks to Daniel Greenfeld, James Aylett, Marc Tamlyn, Simon Williams, Danilo Bargen and Luke Plant for their work on this.
2012-06-11 10:40:23 +02:00