django/docs/ref
Luke Plant cb060f0f34 Fixed #15258 - Ajax CSRF protection doesn't apply to PUT or DELETE requests
Thanks to brodie for the report, and further input from tow21

This is a potentially backwards incompatible change - if you were doing
PUT/DELETE requests and relying on the lack of protection, you will need to
update your code, as noted in the releaste notes.

git-svn-id: http://code.djangoproject.com/svn/django/trunk@16201 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-09 23:45:54 +00:00
..
contrib Fixed #15258 - Ajax CSRF protection doesn't apply to PUT or DELETE requests 2011-05-09 23:45:54 +00:00
files Fixed #14846 -- Corrected a tiny typo in from [14832]. Thanks to elbarto for catching the mistake. 2010-12-06 23:07:46 +00:00
forms Fixed #13584 -- Optionally allow empty files with django.forms.FileField. Thanks for the patch erickr and closedbracket. 2011-04-22 21:18:27 +00:00
models Fixed #15941 -- Fixed DateField docs to no longer state that the admin calendar's week always starts on Sunday (refs FIRST_DAY_OF_WEEK setting). Thanks aaugustin. 2011-05-07 16:58:58 +00:00
templates Fixed #15263 -- Added support for format localization to the now template tag. Thanks to danielr and dmclain. 2011-05-07 16:58:45 +00:00
authbackends.txt Fixed #14000 - remove versionadded/changed tags for Django 1.0 and 1.1 2010-12-26 00:37:14 +00:00
class-based-views.txt Fixed #15800 -- Fixed error in class-based-views docs. Thanks, Natim 2011-04-17 20:55:26 +00:00
databases.txt Fixed #14091 - be more correct about logging queries in connection.queries. 2011-04-22 12:14:54 +00:00
django-admin.txt Fixed #15846 -- Fixed unfinished sentence in django-admin.txt. Thanks, follower 2011-04-20 16:28:02 +00:00
exceptions.txt Corrected a number of mislinked crossrefs and added a few new crossref targets found in/via the 1.3 release. 2011-03-22 20:12:17 +00:00
generic-views.txt Corrected a number of mislinked crossrefs and added a few new crossref targets found in/via the 1.3 release. 2011-03-22 20:12:17 +00:00
index.txt Fixed #12815 -- Added TemplateResponse, a lazy-evaluated Response class. Thanks to Simon Willison for the original idea, and to Mikhail Korobov and Ivan Sagalaev for their assistance, including the draft patch from Mikhail. 2010-12-07 13:57:01 +00:00
middleware.txt Fixed #6181 - Document `django.views.decorators.http` - thanks adamv for the patch. 2010-12-27 13:27:26 +00:00
request-response.txt Fixed a couple of small documentation typos. 2011-04-22 14:08:31 +00:00
settings.txt Fixed #14134 - ability to set cookie 'path' and 'secure' attributes of CSRF cookie 2011-05-09 23:00:22 +00:00
signals.txt Fixed #15853 - typo in m2m_changed signal documentation; thanks elbarto. 2011-04-24 23:47:18 +00:00
template-response.txt Fixed #15012 -- Added post-rendering callbacks to TemplateResponse so that decorators (in particular, the cache decorator) can defer processing until after rendering has occurred. Thanks to Joshua Ginsberg for the draft patch. 2011-01-24 14:24:35 +00:00
unicode.txt Fixed #15593 -- Added a note that the output of `reverse` is urlquoted. Thanks to guettli for the report and draft patch. 2011-04-20 19:50:27 +00:00
utils.txt Fixed #15816 -- Changed docs/ref/utils.txt to refer to django.utils.datastructures instead of just SortedDict. The other stuff is still undocumented, which is probably a good thing 2011-04-17 20:51:19 +00:00
validators.txt Changed e-mail to email throughout documentation and codebase. The one exception is translation strings, which I didn't want to disrupt 2011-04-01 16:10:22 +00:00