mirror of https://github.com/django/django.git
Fixed #15780 - Broken link in old release notes regarding CSRF upgrade
Thanks to Aryeh Leib Taurog for the report. git-svn-id: http://code.djangoproject.com/svn/django/trunk@16023 bcc190cf-cafb-0310-a4f2-bffc1f526a37
This commit is contained in:
Luke Plant
parent
8d4b414760
commit
fda7ac3490
|
|
@ -32,8 +32,13 @@ changes that developers must be aware of:
|
|||
|
||||
* All contrib apps use a ``csrf_protect`` decorator to protect the view. This
|
||||
requires the use of the ``csrf_token`` template tag in the template, so if you
|
||||
have used custom templates for contrib views, you MUST READ THE :ref:`UPGRADE
|
||||
INSTRUCTIONS <ref-csrf-upgrading-notes>` to fix those templates.
|
||||
have used custom templates for contrib views, you MUST READ THE UPGRADE
|
||||
INSTRUCTIONS to fix those templates.
|
||||
|
||||
.. admonition:: Documentation removed
|
||||
|
||||
The upgrade notes have been removed in current Django docs. Please refer
|
||||
to the docs for Django 1.3 or older to find these instructions.
|
||||
|
||||
* ``CsrfViewMiddleware`` is included in :setting:`MIDDLEWARE_CLASSES` by
|
||||
default. This turns on CSRF protection by default, so that views that accept
|
||||
|
|
@ -195,8 +200,13 @@ template tag method (see above), and will be removed completely in Django
|
|||
``CsrfResponseMiddleware`` and ``CsrfViewMiddleware`` has likewise been
|
||||
deprecated.
|
||||
|
||||
Also, the CSRF module has moved from contrib to core, and the old imports are
|
||||
deprecated, as described in the :ref:`upgrading notes <ref-csrf-upgrading-notes>`.
|
||||
Also, the CSRF module has moved from contrib to core, and the old
|
||||
imports are deprecated, as described in the upgrading notes.
|
||||
|
||||
.. admonition:: Documentation removed
|
||||
|
||||
The upgrade notes have been removed in current Django docs. Please refer
|
||||
to the docs for Django 1.3 or older to find these instructions.
|
||||
|
||||
``SMTPConnection``
|
||||
------------------
|
||||
|
|
|
|||
|
|
@ -435,8 +435,13 @@ should be aware of:
|
|||
|
||||
* All contrib apps use a ``csrf_protect`` decorator to protect the view. This
|
||||
requires the use of the ``csrf_token`` template tag in the template. If you
|
||||
have used custom templates for contrib views, you MUST READ THE :ref:`UPGRADE
|
||||
INSTRUCTIONS <ref-csrf-upgrading-notes>` to fix those templates.
|
||||
have used custom templates for contrib views, you MUST READ THE UPGRADE
|
||||
INSTRUCTIONS to fix those templates.
|
||||
|
||||
.. admonition:: Documentation removed
|
||||
|
||||
The upgrade notes have been removed in current Django docs. Please refer
|
||||
to the docs for Django 1.3 or older to find these instructions.
|
||||
|
||||
* ``CsrfViewMiddleware`` is included in :setting:`MIDDLEWARE_CLASSES` by
|
||||
default. This turns on CSRF protection by default, so views that accept
|
||||
|
|
@ -861,8 +866,12 @@ functionality of ``CsrfResponseMiddleware`` and
|
|||
``CsrfViewMiddleware``, has likewise been deprecated.
|
||||
|
||||
Also, the CSRF module has moved from contrib to core, and the old
|
||||
imports are deprecated, as described in the :ref:`upgrading notes
|
||||
<ref-csrf-upgrading-notes>`.
|
||||
imports are deprecated, as described in the upgrading notes.
|
||||
|
||||
.. admonition:: Documentation removed
|
||||
|
||||
The upgrade notes have been removed in current Django docs. Please refer
|
||||
to the docs for Django 1.3 or older to find these instructions.
|
||||
|
||||
``SMTPConnection``
|
||||
------------------
|
||||
|
|
|
|||
Loading…
Reference in New Issue