p31829507
/
django
mirror of https://github.com/django/django.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
33,091 Commits 28 Branches 411 Tags 641 MiB
Commit Graph

5411 Commits

Author SHA1 Message Date
Sarah Boyce 320dd27412 Fixed CVE-2024-45230 -- Mitigated potential DoS in urlize and urlizetrunc template filters. 
Thanks MProgrammer (https://hackerone.com/mprogrammer) for the report.
 2024-09-03 09:22:32 -03:00
github-user-en ad7f8129f3 Added EMAIL_USE_SSL to the 'Core Settings Topical Index' docs. 2024-09-03 10:16:20 +02:00
Hisham Mahmood 2b2a2c0e26 Fixed #35702 -- Removed connection pooling note for mysql drivers. 2024-08-30 09:08:32 +02:00
Adam Johnson 26a67943ac
Removed outdated note about lack of subquery support in MySQL. 2024-08-28 15:55:30 -03:00
Mariusz Felisiak 2b9f0b79bc Fixed typo in docs/ref/models/expressions.txt. 2024-08-28 09:08:16 -03:00
Mariusz Felisiak fed11ba461 Fixed typo in docs/ref/models/expressions.txt. 2024-08-28 09:08:16 -03:00
nabil-rady 231c0d8593 Fixed #35668 -- Added mapping support to format_html_join. 2024-08-20 08:20:34 +02:00
Clifford Gama ca1318988c Fixed #35671 -- Clarified string-based fields behavior when null=False. 2024-08-20 08:09:39 +02:00
David Smith 5ae9922666 Fixed typo of --no-startup in django-admin docs. 2024-08-13 11:18:42 +02:00
Devin Cox e03083917d Fixed #35586 -- Added support for set-returning database functions. 
Aggregation optimization didn't account for not referenced set-returning annotations on Postgres.

Co-authored-by: Simon Charette <charette.s@gmail.com>
 2024-08-12 15:35:19 +02:00
Mariusz Felisiak f883bef054 Refs #35591 -- Removed hardcoded "stable" version in runserver warning. 2024-08-12 10:57:02 +02:00
Andrew Miller 69aa13ffb9 Fixed #35591 -- Added unsuitable for production console warning to runserver. 2024-08-09 10:34:10 +02:00
Jure Cuhalev f8ef4579ea Doc'd that SessionMiddleware is required for the admin site. 
The system check "admin.E410" was already checking for this, but the
requirement was not listed in docs/ref/contrib/admin/index.txt.
 2024-08-08 08:48:41 -03:00
Andrew Miller cec62fb99e Refs #35591 -- Emphasized that runserver is not suitable for production. 2024-08-08 10:08:53 +02:00
Adam Johnson 49815f70e4 Refs #31405 -- Improved LoginRequiredMiddleware documentation. 
co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
 2024-08-08 10:05:31 +02:00
Mariusz Felisiak 304d256674
Used :pypi: role in docs where appropriate. 2024-08-05 10:35:50 -03:00
Natalia 90adba85b2 Refs #35380 -- Updated screenshots in admin docs. 2024-08-05 09:02:01 -03:00
Mariusz Felisiak 6d3464cff0
Refs #35601, Refs #35599 -- Made cosmetic edits to TelInput/ColorInput docs. 2024-08-02 17:40:53 -03:00
lucasesposito b478cae006 Fixed #35601 -- Added TelInput widget. 2024-08-02 11:31:54 +02:00
arjunomray 946c3cf734 Fixed #35599 -- Added ColorInput widget. 2024-08-02 09:51:49 +02:00
Jeremy Thompson 30a60e8492 Fixed #35598 -- Added SearchInput widget. 2024-07-31 13:11:45 +02:00
Lorenzo Peña 0e94f292cd Fixed #35627 -- Raised a LookupError rather than an unhandled ValueError in get_supported_language_variant(). 
LocaleMiddleware didn't handle the ValueError raised by
get_supported_language_variant() when language codes were
over 500 characters.

Regression in 9e9792228a.
 2024-07-25 09:38:46 +02:00
Sarah Boyce 8d6a20b656 Fixed #35604, Refs #35326 -- Made FileSystemStorage.exists() behaviour independent from allow_overwrite. 
Partially reverts 0b33a3abc2.

Storage.exists(name) was documented to "return False if
the name is available for a new file." but return True if
the file exists. This is ambiguous in the overwrite file
case. It will now always return whether the file exists.

Thank you to Natalia Bidart and Josh Schneier for the
review.
 2024-07-24 14:55:10 +02:00
Matthew Somerville fb7be022cb Updated example links in urlize docs. 
goo.gl links are being removed in 2025:
https://developers.googleblog.com/en/google-url-shortener-links-will-no-longer-be-available/
 2024-07-23 14:02:30 +02:00
nessita cf03aa4e94
Refs #10941 -- Reorganized querystring template tag docs. 2024-07-22 10:31:54 -03:00
Sarah Boyce 27043bde5b
Refs #10941 -- Renamed query_string template tag to querystring. 2024-07-15 13:28:55 -03:00
Maryam Yusuf b5f4d76bc4 Fixed #35464 -- Updated docs to note fieldsets have limited impact on TabularInlines. 2024-07-15 12:43:42 +02:00
Sarah Boyce 9e9792228a Fixed CVE-2024-39614 -- Mitigated potential DoS in get_supported_language_variant(). 
Language codes are now parsed with a maximum length limit of 500 chars.

Thanks to MProgrammer for the report.
 2024-07-09 09:21:19 -03:00
Mariusz Felisiak f302343380
Removed outdated note about limitations in Clickjacking protection. 
There is no need to list old browser versions or point users to
workarounds.
 2024-07-04 18:08:19 -03:00
Carlton Gibson 704192e478 Removed unneeded hyphens in "counterintuitive". 
Follow-up to 65ad4ade74 which added
counterintuitive to the wordlist. Removes unneeded (antiquated)
hyphenated usages.

See e.g. https://www.merriam-webster.com/dictionary/counterintuitive
 2024-07-04 08:30:19 +02:00
Simon Charette 65ad4ade74 Refs #28900 -- Made SELECT respect the order specified by values(*selected). 
Previously the order was always extra_fields + model_fields + annotations with
respective local ordering inferred from the insertion order of *selected.

This commits introduces a new `Query.selected` propery that keeps tracks of the
global select order as specified by on values assignment. This is crucial
feature to allow the combination of queries mixing annotations and table
references.

It also allows the removal of the re-ordering shenanigans perform by
ValuesListIterable in order to re-map the tuples returned from the database
backend to the order specified by values_list() as they'll be in the right
order at query compilation time.

Refs #28553 as the initially reported issue that was only partially fixed
for annotations by d6b6e5d0fd.

Thanks Mariusz Felisiak and Sarah Boyce for review.
 2024-07-03 16:36:25 +02:00
Andrew Miller aa74c4083e Fixed #23790 -- Warned about renaming AppConfig.label in docs/ref/applications.txt. 2024-07-01 21:52:04 -03:00
Sarah Boyce 72b7b59680 Optimized admin docs images. 2024-06-25 17:45:20 -03:00
nessita bcc327aa32
Refs #35380 -- Updated screenshots in admin docs. 
When listing users, ensure that user first and last name are diverse.
 2024-06-25 10:58:36 -03:00
lufafajoshua 3ac0e43207 Fixed #35306 -- Documented fallback localization formats in templates when localization is disabled. 2024-06-24 18:06:44 +02:00
John Higgins 60acad933d Fixed #35441 -- Documented Context and RequestContext keyword arguments. 2024-06-20 09:34:55 +02:00
Baptiste Mispelon 62300b81cf Fixed #12978 -- Added support for RSS feed stylesheets. 2024-06-18 17:25:43 +02:00
stefan.ivic ce1ad98565 Fixed #35505 -- Added extrabody block to admin/base.html. 2024-06-18 16:49:53 +02:00
lufafajoshua 8733e9af99 Fixed #35470 -- Separated i18n and l10n globalization settings docs. 2024-06-13 09:09:46 +02:00
lufafajoshua e2428292ab Fixed #35401 -- Documented the conditional_page() decorator. 2024-06-12 13:11:29 +02:00
lufafajoshua 708b01c795 Refs #35401 -- Linked the CsrfViewMiddleware docs to the csrf_protect() decorator. 2024-06-12 13:11:29 +02:00
Mariusz Felisiak 0f694ce2eb
Made cosmetic edits to code snippets reformatted with blacken-docs. 2024-05-30 09:42:05 -03:00
Jake Howard ff308a0604
Fixed 35467 -- Replaced urlparse with urlsplit where appropriate. 
This work should not generate any change of functionality, and
`urlsplit` is approximately 6x faster.

Most use cases of `urlparse` didn't touch the path, so they can be
converted to `urlsplit` without any issue. Most of those which do use
`.path`, simply parse the URL, mutate the querystring, then put them
back together, which is also fine (so long as urlunsplit is used).
 2024-05-29 10:48:27 -03:00
Simon Törnqvist d3a7ed5bcc Fixed #35443 -- Changed ordinal to return negative numbers unchanged. 
Previously, `-1` was converted to `"-1th"`. This has been updated to
return negative numbers "as is", so that for example `-1` is
converted to `"-1"`. This is now explicit in the docs.

Co-authored-by: Martin Jonson <artin.onson@gmail.com>
 2024-05-27 10:54:25 +02:00
Mariusz Felisiak b049bec7cf Fixed #35479 -- Dropped support for PostgreSQL 13 and PostGIS 3.0. 2024-05-27 09:49:25 +02:00
Adam Zapletal 99273fd525 Fixed #24076 -- Added warnings on usage of dates with DateTimeField and datetimes with DateField. 2024-05-23 12:03:57 +02:00
Natalia 05cce083ad Removed versionadded/changed annotations for 5.0. 
This also removes remaining versionadded/changed annotations for older
versions.
 2024-05-22 15:44:07 -03:00
Hisham Mahmood c7fc9f20b4 Fixed #31405 -- Added LoginRequiredMiddleware. 
Co-authored-by: Adam Johnson <me@adamj.eu>
Co-authored-by: Mehmet İnce <mehmet@mehmetince.net>
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
 2024-05-22 08:51:17 +02:00
Natalia 676060d683 Refs #35189 -- Updated ModelAdmin.fieldsets screenshot in admin docs. 2024-05-22 00:13:55 -03:00
Marijke Luttekes e4a693f50a Fixed #35189 -- Improved admin collapsible fieldsets by using <details> elements. 
This work improves the accessibility of the add and change pages in the
admin site by adding <details> and <summary> elements to the collapsible
fieldsets. This has the nice side effect of no longer requiring custom
JavaScript helpers to implement the fieldsets' show/hide capabilities.

Thanks to James Scholes for the accessibility advice, and to Sarah Boyce
and Tom Carrick for reviews.

Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
 2024-05-22 00:13:55 -03:00
Berker Peksag 4971a9afe5 Fixed #18119 -- Added a DomainNameValidator validator. 
Thanks Claude Paroz for the review.

Co-authored-by: Nina Menezes <77671865+nmenezes0@users.noreply.github.com>
 2024-05-21 23:11:12 +02:00
Ben Cail 0b33a3abc2 Fixed #35326 -- Added allow_overwrite parameter to FileSystemStorage. 2024-05-21 07:28:12 +02:00
Adam Johnson 50852b2c2c Replaced fictional class 'extrapretty' in admin fieldsets docs. 2024-05-16 21:25:23 -03:00
Sarah Boyce d4f6e6c088 Moved FileSystemStorage note in docs to the correct place. 2024-05-16 11:17:57 +02:00
Mariusz Felisiak f030236a86 Fixed #35275 -- Fixed Meta.constraints validation crash on UniqueConstraint with OpClass(). 
This also introduces Expression.constraint_validation_compatible that
allows specifying that expression should be ignored during a constraint
validation.
 2024-05-14 10:34:30 +02:00
alexgmin dba05042dd Added link to the csrf template tag in the csrf page. 2024-05-06 13:25:30 +02:00
sobolevn 9a27c76021 Fixed #35426 -- Updated querysets to be a required argument of GenericPrefetch. 2024-05-04 11:30:36 +02:00
Shamil 32d163e680 Fixed #35427 -- Corrected help text for makemessages --extension in docs/ref/django-admin.txt. 2024-05-03 22:48:17 -03:00
John Parton 914bf69171 Clarified when ImageField attributes are set. 2024-05-02 10:04:55 +02:00
Mariusz Felisiak 160c0ab13a Fixed rendering XOR section in docs. 2024-05-02 09:26:44 +02:00
Mariusz Felisiak 85c154da2f Fixed #35412 -- Dropped support for SQLite < 3.31. 2024-04-29 11:07:54 +02:00
Adam Zapletal 828b94b178
Fixed #20744 -- Removed hint that arbitrary kwargs are allowed when creating forms.Fields. 2024-04-26 11:23:38 -03:00
David Sanders f0d50a9379
Doc'd that RemoveField also drops related database objects in PostgreSQL. 2024-04-16 13:11:06 -03:00
Mohammad Kazemi 47c608202a
Extended docs for Q() objects mentioning the ~ (NOT) operator. 
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
 2024-04-15 13:16:35 -03:00
Adam Johnson 8bbf73ca74
Fixed settings path in docs for installing SpatiaLite with Homebrew. 
Co-authored-by: Adam Zapletal <adamzap@gmail.com>
 2024-04-10 18:15:42 -03:00
Carlton Gibson ca5cd3e3e8 Refs #35354 -- Clarified FORCE_SCRIPT_NAME docs. 2024-04-05 15:13:54 +02:00
Giannis Terzopoulos d658a3162f Fixed #35233 -- Moved template engine system checks to backend methods. 
Thanks Adam Johnson for reviews.
 2024-03-27 08:14:54 +01:00
Adam Zapletal fd2514d17d
Added RowNumber() link in Rank() docs. 2024-03-21 05:52:07 +01:00
Mariusz Felisiak 9c17010358
Refs #34059, Refs #34060 -- Removed outdated warning about validation of JSONField constraints. 
Known issues have been fixed in:
- 0d8fbe2ade,
- c991602ce5, and
- 26aae56144.
 2024-03-18 16:11:38 +01:00
Claude Paroz 10b31eea33 Refs #31014 -- Added srid argument to FromWKB/FromWKT() GIS functions. 2024-03-18 09:45:33 +01:00
Mariusz Felisiak 36a000858b
Refs #33996 -- Updated CheckConstraint validation on NULL values on Oracle 23c+. 
Oracle 23c supports comparing boolean expressions.
 2024-03-15 12:34:54 +01:00
Adam Zapletal 7326513a8f Fixed #25595 -- Doc'd that URLValidator rejects file:// URIs without a host. 2024-03-11 08:17:49 +01:00
canhuynh1998 a7baa874d8 Fixed #35280 -- Improved iriencode filter example in docs. 2024-03-10 14:54:38 +01:00
Mariusz Felisiak 177e649396
Fixed broken links and redirects in docs. 2024-03-06 08:50:21 +01:00
Mohammad Alsakhawy f06bb7c88a Updated broken links in docs/ref/contrib/gis/tutorial.txt. 2024-03-06 05:50:47 +01:00
Sarah Boyce fad334e1a9 Refs #33497 -- Added connection pool support for PostgreSQL. 
Co-authored-by: Florian Apolloner <florian@apolloner.eu>
Co-authored-by: Ran Benita <ran@unusedvar.com>
 2024-03-01 09:01:18 +01:00
Simon Charette daf7d482db Refs #35234 -- Deprecated CheckConstraint.check in favor of .condition. 
Once the deprecation period ends CheckConstraint.check() can become the
documented method that performs system checks for BaseConstraint
subclasses.
 2024-03-01 07:15:32 +01:00
kbehlers 3cb1ba50cc
Fixed typo in docs/ref/contrib/admin/index.txt. 2024-02-29 08:28:20 +01:00
Mariusz Felisiak 11695b8fdd
Removed #django-geo IRC channel in docs. 
It's been inactive for several years.
 2024-02-28 19:05:32 +01:00
David Sanders 7714ccfeae Refs #34964 -- Doc'd that Q expression order is preserved. 2024-02-28 11:41:06 +01:00
Salvo Polizzi 6e1ece7ed5 Fixed #35090 -- Deprecated registering URL converters with the same name. 2024-02-23 15:54:49 +01:00
Sulabh Katila eceb5e2eea
Fixed #34806 -- Made cached_db session backend resilient to cache write errors. 
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2024-02-21 21:51:58 -03:00
sandjio 9bd849c8d5 Fixed #35153 -- Added note about locale name notation to FORMAT_MODULE_PATH docs. 
Co-authored-by: Paul Hermans <paul.hermans@benemtech.com>
 2024-02-20 05:29:15 +01:00
Adam Johnson 7ba6c9edc5 Fixed #28011 -- Corrected Field.hidden docs. 2024-02-17 17:17:23 +01:00
Aaron Linville 7a05b8a2fa Fixed #24018 -- Allowed setting pragma options on SQLite. 2024-02-16 12:59:19 +01:00
Tom Carrick 4ade8386eb Fixed #10743 -- Allowed lookups for related fields in ModelAdmin.list_display. 
Co-authored-by: Alex Garcia <me@alexoteiza.com>
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
Co-authored-by: Nina Menezes <https://github.com/nmenezes0>
 2024-02-05 21:42:04 -03:00
Ben Cail 02a600ff67 Fixed #16281 -- Fixed ContentType.get_object_for_this_type() in a multiple database setup. 2024-02-05 08:25:23 +01:00
Anže Pečar a0204ac183 Fixed #29280 -- Made the transactions behavior configurable on SQLite. 2024-01-30 11:42:34 +01:00
Alexander Lazarević a5365339ea Fixed #35141 -- Clarified the expected type of CACHE_MIDDLEWARE_SECONDS setting. 2024-01-29 19:18:43 +01:00
David Smith 1df8983aa3 Refs #35058 -- Added support for measured geometries to GDAL LineString. 2024-01-29 08:44:42 +01:00
David Smith 2005530920 Refs #35058 -- Made centroid available on all geometry types. 
Centroid is available on all geometry types since GDAL 1.8.0.
Previously it was restricted to Polygon.

https://gdal.org/doxygen/classOGRGeometry.html#a91787f669b2a148169667e270e7e40df
 2024-01-28 14:40:19 +01:00
Mariusz Felisiak 305757aec1
Applied Black's 2024 stable style. 
https://github.com/psf/black/releases/tag/24.1.0
 2024-01-26 12:45:07 +01:00
David Smith 3f6d939c62 Refs #35058 -- Added support for measured geometries to GDAL Point. 
Co-authored-by: Nick Pope <nick@nickpope.me.uk>
 2024-01-25 08:59:16 +01:00
duranbe 0450c9bdf1 Fixed #34971 -- Doc'd additional loggers. 
Co-authored-by: duranbe <benoit.durand.mail@gmail.com>
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2024-01-23 17:17:49 -03:00
David Smith f4c5973464 Refs #35058 -- Deprecated OGRGeometry.coord_dim setter. 
Reflecting a change in the underlying GDAL library (since GDAL 2.1)
using coord_dim to set a geometries dimensions is deprecated in favor
of set_3d().
 2024-01-23 05:37:59 +01:00
Salvo Polizzi 184d82d848
Fixed #35130 -- Doc'd django.db.close_old_connections(). 
This also adds close_db_connections() to the django.db.__all__.
 2024-01-22 13:31:50 +01:00
Emmanuel Katchy 12ffcfc350 Updated "Dive Into Python" links. 2024-01-20 19:43:55 +01:00
David Smith cfacd69ab8 Refs #35058 -- Added is_3d and set_3d() to OGRGeometry. 2024-01-18 10:48:40 +01:00
Viicos 12c71bff83
Fixed typo in docs/ref/migration-operations.txt. 2024-01-18 05:21:15 +01:00
Amir Karimi 27a3eee721 Fixed #31700 -- Made makemigrations command display meaningful symbols for each operation. 2024-01-17 14:00:02 +01:00