Commit Graph

13216 Commits

Author SHA1 Message Date
Mariusz Felisiak bae053d497
Refs #21080, Refs #34322 -- Added warning to ManifestStaticFilesStorage docs about paths in comments. 2023-02-16 19:18:55 +01:00
Durval Carvalho 85366fbca7 Fixed #34045 -- Improved accessibility of selecting items in admin changelist.
This adds "aria-label".
2023-02-16 08:29:40 +01:00
David Smith 3cc7a92189 Refs #32339 -- Doc'd setting a form's template_name is recomended over using as_* methods. 2023-02-15 10:26:31 +01:00
David Smith 232b60a21b Refs #32339 -- Updated docs to reflect default <div> style form rendering in Django 5.0.
Follow up to 98756c685e.
2023-02-15 10:14:09 +01:00
David Smith 4038a8df0b Refs #32339 -- Doc'd BaseFormSet.as_div() 2023-02-15 09:24:08 +01:00
Carlton Gibson ce8189eea0
Fixed #34328 -- Added async-only class-based middleware example. 2023-02-14 14:06:42 +01:00
tschilling c5808470aa Fixed #34280 -- Allowed specifying different field values for create operation in QuerySet.update_or_create(). 2023-02-14 11:50:35 +01:00
Carlton Gibson ecafcaf634 Added CVE-2023-24580 to security archive. 2023-02-14 09:52:30 +01:00
Markus Holtermann 85ac33591c Fixed CVE-2023-24580 -- Prevented DoS with too many uploaded files.
Thanks to Jakob Ackermann for the report.
2023-02-14 08:18:40 +01:00
Sarah Boyce 1eb94bc8da
Fixed #29994 -- Added warning about performance of FileBasedCache with a large number of files.
Co-authored-by: sheenarbw <699166+sheenarbw@users.noreply.github.com>
Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>
2023-02-13 21:09:19 +01:00
Sota Tabu 3e9d413231 Fixed #34318 -- Added release note for 4bfe8c0eec. 2023-02-13 11:59:11 +01:00
Paolo Melchiorre 69352d85fa
Fixed #33213 -- Doc'd testing code coverage in parallel and used it. 2023-02-11 09:43:26 +01:00
Carlton Gibson 534ac48297 Refs #34140 -- Applied rst code-block to non-Python examples.
Thanks to J.V. Zammit, Paolo Melchiorre, and Mariusz Felisiak for
reviews.
2023-02-10 19:19:13 +01:00
dennisvang 7bb741d787 Fixed #34325 -- Corrected wording in PercentRank() docs.
This is consistent with the terminology used for the percent_rank()
function in SQLite docs and PostgreSQL docs.
2023-02-10 14:07:48 +01:00
p0lygun 358792486e Fixed #34324 -- Mentioned Discord server in contributing index. 2023-02-10 05:55:45 +01:00
Willem Van Onsem 292aacaf6c Fixed #34311 -- Updated serialization docs from unique_together to UniqueConstraint. 2023-02-09 05:28:03 +01:00
Jacob Rief 473283d241
Fixed #34303 –- Allowed customizing admin site log entry list.
Added AdminSite.get_log_entries() as an override point and made this
available to the template via each_context().
2023-02-08 18:37:32 +01:00
Carlton Gibson 1964e4367f
Added missing vars to AdminSite.each_context() docs. 2023-02-08 17:59:56 +01:00
Mariusz Felisiak 2fd755b361
Fixed #34319 -- Fixed Model.validate_constraints() crash on ValidationError with no code.
Thanks Mateusz Kurowski for the report.

Regression in 667105877e.
2023-02-08 16:38:55 +01:00
Carlton Gibson 1df7814e4b
Refs #34146 -- Fixed typos in tutorial. (#16530)
- Fixed formatting on index page.
- Removed duplicate What's next section.

Thanks to Tim Graham for the report.
2023-02-07 20:19:58 +01:00
Tim Schilling 7715c9fef5
Fixed #34146 -- Added 3rd-party lib tutorial step.
Added a tutorial step that highlights Django Debug Toolbar, on of the
most common third party packages. It also added a mention of
djangopackages.com as a place to search for other libraries and a
link to Adam Johnson’s post on evaluating whether a package is
well-maintained.

Third-party packages are one of Django’s strengths. This should give
folks a sound route in.
2023-02-07 15:26:37 +01:00
Bakdolot 5f3c7b7e1d
Fixed #34317 -- Renamed "instance" argument of BaseModelFormSet.save_existing() method. 2023-02-07 14:18:58 +01:00
Carlton Gibson fb77be9ae1 Fixed typo in release notes. 2023-02-07 10:11:01 +01:00
Carlton Gibson 7e003428f9 Added stub release notes for 4.0.10 and 3.2.18.
Set date for 4.1.7 release.
2023-02-07 10:08:21 +01:00
Marcelo Galigniana 7c6195ef81
Fixed #34310 -- Added deletion example to one-to-one topic. 2023-02-07 08:04:23 +01:00
Mariusz Felisiak 5e9aded33f
Increased the default PBKDF2 iterations for Django 5.0.
Follow up to 9a1848f48c.
2023-02-04 13:37:44 +01:00
Mariusz Felisiak f3c89744cc Added stub release notes for 4.1.7. 2023-02-01 13:18:34 +01:00
Mariusz Felisiak 36e3eef7d5 Added CVE-2023-23969 to security archive. 2023-02-01 12:09:03 +01:00
Nick Pope 8c660fb592 Fixed CVE-2023-23969 -- Prevented DoS with pathological values for Accept-Language.
The parsed values of Accept-Language headers are cached in order to
avoid repetitive parsing. This leads to a potential denial-of-service
vector via excessive memory usage if the raw value of Accept-Language
headers is very large.

Accept-Language headers are now limited to a maximum length in order
to avoid this issue.
2023-02-01 09:44:04 +01:00
Durval Carvalho 40217d1a82 Fixed #34180 -- Added note about resetting language in test tear-downs.
Co-authored-by: Faris Naimi <farisfaris66@gmail.com>
2023-01-31 06:35:30 +01:00
fschwebel 0265b1b49b
Fixed typo in docs/topics/auth/passwords.txt.
Wrapped hashing is only possible if the inner wrapped function is the
same as the previous hasher.
2023-01-30 08:31:39 +01:00
Mariusz Felisiak 2b1242abb3
Fixed #34291 -- Fixed Meta.constraints validation crash on UniqueConstraint with ordered expressions.
Thanks Dan F for the report.

Bug in 667105877e.
2023-01-26 09:31:40 +01:00
Mariusz Felisiak 882f99031e
Moved release note about the default PBKDF2 iterations into django.contrib.auth section.
Thanks Tim Graham for the report.
2023-01-25 22:25:29 +01:00
Carlton Gibson d8e1442ce2 Adjusted release notes for 4.1.6, 4.0.9, and 3.2.17. 2023-01-25 12:26:00 +01:00
Carlton Gibson 1df963ad24 Set date and added stub release notes for 4.1.6, 4.0.9, and 3.2.17. 2023-01-25 11:57:04 +01:00
noFFENSE 5cd1385356 Fixed #34242 -- Doc'd that primary key is set to None when deleting objects. 2023-01-20 09:36:36 +01:00
Niccolò Mineo 79c298c9ce Fixed #34266 -- Added ClosestPoint GIS database functions. 2023-01-20 08:13:43 +01:00
Mariusz Felisiak 23e8868862
Refs #34233 -- Used str.removeprefix()/removesuffix(). 2023-01-18 19:11:18 +01:00
Mariusz Felisiak b209518089
Refs #32339 -- Deprecated transitional form renderers. 2023-01-18 11:08:39 +01:00
Mariusz Felisiak 3bbe22dafc
Fixed #34233 -- Dropped support for Python 3.8 and 3.9. 2023-01-18 09:46:01 +01:00
John Whitlock d547171183
Fixed typo in docs/releases/4.2.txt. 2023-01-17 19:27:51 +01:00
Mariusz Felisiak 2785e121c7
Doc'd that 4.2 is LTS. 2023-01-17 19:24:31 +01:00
Mariusz Felisiak a209f66259
Removed remaining empty sections from 4.2 release notes.
Follow up to 772cd2b15b.
2023-01-17 14:05:32 +01:00
Sébastien Corbin e2964fed17
Fixed #34264 -- Moved release note about session cookies into error reporting section. 2023-01-17 13:08:42 +01:00
Mariusz Felisiak 4fc711a108 Increased the default PBKDF2 iterations for Django 5.0. 2023-01-17 11:49:15 +01:00
Mariusz Felisiak f39f120302 Advanced deprecation warnings for Django 5.0. 2023-01-17 11:49:15 +01:00
Mariusz Felisiak 94ad46e9d8 Refs #33543 -- Made Expression.asc()/desc() and OrderBy raise ValueError when nulls_first/nulls_last=False is passed.
Per deprecation timeline.
2023-01-17 11:49:15 +01:00
Mariusz Felisiak 98756c685e Refs #32339 -- Changed default form and formset rendering style to div-based.
Per deprecation timeline.

This also removes "django/forms/default.html" and
"django/forms/formsets/default.html" templates.
2023-01-17 11:49:15 +01:00
Mariusz Felisiak b5ac6e78f8 Refs #33691 -- Removed django.contrib.auth.hashers.CryptPasswordHasher per deprecation timeline. 2023-01-17 11:49:15 +01:00
Mariusz Felisiak ce7b4f39e3 Refs #27674 -- Removed django.contrib.gis.admin.OpenLayersWidget per deprecation timeline. 2023-01-17 11:49:15 +01:00