Tim Graham
|
46e2b9e059
|
Fixed CVE-2017-12794 -- Fixed XSS possibility in traceback section of technical 500 debug page.
This is a security fix.
|
2017-09-05 10:58:38 -04:00 |
|
Martin von Gagern
|
71d39571f4
|
Fixed #28485 -- Made ExceptionReporter.get_traceback_frames() include frames without source code.
|
2017-08-12 20:32:39 -04:00 |
|
Timothy Allen
|
5fe9b7b40a
|
Fixed #28457 -- Updated the design of the 'Congrats' page for new Django projects.
Developed by Timothy Allen and Chad Whitman of The Wharton School with
shepherding from Aymeric Augustin and Collin Anderson.
|
2017-08-07 10:33:55 -04:00 |
|
Tim Graham
|
d70432deae
|
Refs #7697 -- Tested escaping of safe strings in the technical 500 debug view.
Tests were omitted in the original commit: a56a226241 .
|
2017-08-02 15:56:47 -04:00 |
|
Tim Graham
|
293608a2e0
|
Refs #7697 -- Removed unnecessary force_escape of technical 500 debug view "unicode hint".
The test passes before and after the removal. unicode_hint will never
be SafeText, so normal autoescaping is sufficient.
|
2017-08-02 15:16:22 -04:00 |
|
Tim Graham
|
74b7a20fe6
|
Refs #5046 -- Tested the 'unicode hint' in the technical 500 debug view.
|
2017-08-02 15:07:26 -04:00 |
|
Flávio Juvenal
|
0af14b2eaa
|
Refs #16870 -- Doc'd that CSRF protection requires the Referer header.
|
2017-06-22 11:50:00 -04:00 |
|
Tim Graham
|
e1cd5a76d7
|
Cosmetic edits to tests/view_tests/tests/test_csrf.py.
|
2017-06-22 09:30:40 -04:00 |
|
Claude Paroz
|
23142eea85
|
Fixed #18394 -- Added error for invalid JavaScriptCatalog packages
Thanks Tim Graham for the review.
|
2017-06-06 18:02:22 +02:00 |
|
partizan
|
ff099f9db8
|
Fixed #28271 -- Added charset to technical_500_response() AJAX response.
|
2017-06-05 14:43:40 -04:00 |
|
Jon Dufresne
|
2c69824e5a
|
Refs #23968 -- Removed unnecessary lists, generators, and tuple calls.
|
2017-06-01 19:08:59 -04:00 |
|
Claude Paroz
|
2cbb095bec
|
Fixed #28221 -- Fixed plural fallback translations in JavaScriptCatalog view
Thanks Waldemar Kornewald for the report and initial patch.
|
2017-05-25 22:47:21 +02:00 |
|
Claude Paroz
|
912ef7f49d
|
Fixed validity of test django_js.po files
|
2017-05-18 14:33:18 +02:00 |
|
Claude Paroz
|
d842ada305
|
Refs #27795 -- Stopped converting integer format settings to str in JS/JSON i18n views
Thanks Tim Graham for the review.
|
2017-05-08 19:32:03 +02:00 |
|
Claude Paroz
|
e3a88c7797
|
Renamed django.views.i18n test cases
|
2017-05-08 19:29:27 +02:00 |
|
Tim Graham
|
56970c5b61
|
Fixed #28122 -- Fixed crash when overriding views.static.directory_index()'s template.
|
2017-04-25 11:01:21 -04:00 |
|
Tim Graham
|
8c6a3062dd
|
Fixed #28079 -- Restored "No POST data" (rather than an empty table) in HTML debug page.
Regression in 7b6dccc82f
|
2017-04-15 09:21:35 -04:00 |
|
Claude Paroz
|
ea542a9c72
|
Fixed #28007 -- Moved debug templates to the filesystem
Thanks Tim Graham for the review.
|
2017-04-12 11:36:47 -04:00 |
|
Claude Paroz
|
2eb1f15f62
|
Tested template info in debug view's text traceback
|
2017-04-12 10:38:50 -04:00 |
|
Tim Graham
|
a1f948b468
|
Fixed CVE-2017-7234 -- Fixed open redirect vulnerability in views.static.serve().
This is a security fix.
|
2017-04-04 10:42:06 -04:00 |
|
Claude Paroz
|
4f99ba84b3
|
Removed unused code in i18n view_tests
Unused since 2b20e4148f .
|
2017-04-02 19:58:18 +02:00 |
|
Tim Graham
|
b536dcf656
|
Fixed #27948 -- Removed incorrect unquote() in static serving views.
|
2017-03-17 07:55:00 -04:00 |
|
Tim Graham
|
75f0070a54
|
Fixed #27308 -- Fixed BytesWarnings in the test suite.
|
2017-02-17 16:04:45 -05:00 |
|
Tim Graham
|
80493b0871
|
Fixed #27829 -- Deprecated settings.DEFAULT_CONTENT_TYPE.
|
2017-02-16 07:59:44 -05:00 |
|
Tim Graham
|
500532c95d
|
Refs #23919 -- Removed default 'utf-8' argument for str.encode()/decode().
|
2017-02-09 09:03:47 -05:00 |
|
Claude Paroz
|
c651331b34
|
Converted usage of ugettext* functions to their gettext* aliases
Thanks Tim Graham for the review.
|
2017-02-07 09:04:04 +01:00 |
|
Tim Graham
|
2d899ce16b
|
Refs #23919 -- Removed a Python 2 code path in force_text().
Reverted the obsolete fix and tests for refs #12302.
|
2017-02-03 19:38:33 -05:00 |
|
Tim Graham
|
29f607927f
|
Fixed spelling of "nonexistent".
|
2017-02-03 08:01:45 -05:00 |
|
Anton Samarchyan
|
56ea394dfd
|
Improved test coverage for conf.urls.static.
|
2017-01-27 16:12:09 -05:00 |
|
chillaranand
|
d6eaf7c018
|
Refs #23919 -- Replaced super(ClassName, self) with super().
|
2017-01-25 12:23:46 -05:00 |
|
Claude Paroz
|
2366100872
|
Removed unneeded force_text calls in the test suite
|
2017-01-24 18:45:54 +01:00 |
|
Jon Dufresne
|
0d74c41981
|
Replaced dict() usage with dict literals.
Literals are faster and more idiomatic.
|
2017-01-23 19:13:49 -05:00 |
|
Tim Graham
|
4e729feaa6
|
Refs #23919 -- Removed django.utils._os.upath()/npath()/abspathu() usage.
These functions do nothing on Python 3.
|
2017-01-20 08:01:02 -05:00 |
|
Simon Charette
|
cecc079168
|
Refs #23919 -- Stopped inheriting from object to define new style classes.
|
2017-01-19 08:39:46 +01:00 |
|
Claude Paroz
|
2b281cc35e
|
Refs #23919 -- Removed most of remaining six usage
Thanks Tim Graham for the review.
|
2017-01-18 21:33:28 +01:00 |
|
Claude Paroz
|
c716fe8782
|
Refs #23919 -- Removed six.PY2/PY3 usage
Thanks Tim Graham for the review.
|
2017-01-18 16:21:28 +01:00 |
|
Claude Paroz
|
f3c43ad1fd
|
Refs #23919 -- Removed python_2_unicode_compatible decorator usage
|
2017-01-18 13:44:34 +01:00 |
|
Claude Paroz
|
d7b9aaa366
|
Refs #23919 -- Removed encoding preambles and future imports
|
2017-01-18 09:55:19 +01:00 |
|
Tim Graham
|
d334f46b7a
|
Refs #26601 -- Removed support for old-style middleware using settings.MIDDLEWARE_CLASSES.
|
2017-01-17 20:52:04 -05:00 |
|
Tim Graham
|
2b20e4148f
|
Refs #19567 -- Removed deprecated javascript_catalog() and json_catalog() views.
|
2017-01-17 20:52:03 -05:00 |
|
Waldemar Kornewald
|
b24af2f405
|
Fixed #27418 -- Fixed occasional missing plural forms in JavaScriptCatalog.
|
2016-12-14 18:20:30 -05:00 |
|
Andreas Pelme
|
373140b07a
|
Fixed #27567 -- Fixed crash in the debug view when request.user errors.
|
2016-12-06 12:28:00 -05:00 |
|
Ramin Farajpour Cami
|
967be82443
|
Fixed E305 flake8 warnings.
|
2016-11-14 12:30:46 -05:00 |
|
za
|
321e94fa41
|
Refs #27392 -- Removed "Tests that", "Ensures that", etc. from test docstrings.
|
2016-11-10 21:30:21 -05:00 |
|
Jon Dufresne
|
611d34b0e4
|
Captured logging output during NonDjangoTemplatesDebugViewTests.test_400().
|
2016-10-29 15:39:24 -07:00 |
|
Mariusz Felisiak
|
c7f86d3eec
|
Fixed #27373 -- Corrected 404 debug page message for an empty request path.
|
2016-10-27 16:58:41 -04:00 |
|
Alvin Lindstam
|
6b5106b1ce
|
Fixed #27374 -- Made JavaScriptCatalog respect the packages argument.
|
2016-10-22 19:26:08 -04:00 |
|
Tim Graham
|
16202863fa
|
Refs #27025 -- Fixed tests for the new ModuleNotFoundError in Python 3.6.
http://bugs.python.org/issue15767
|
2016-09-16 10:24:47 -04:00 |
|
Anatoly Burov
|
7b6dccc82f
|
Fixed #27191 -- Fixed debug view crash for requests with 'items' in GET/POST/COOKIES/FILES.
|
2016-09-07 13:47:09 -04:00 |
|
Przemysław Suliga
|
1f68bb5683
|
Refs #26902 -- Protected against insecure redirects in set_language().
|
2016-08-19 19:16:00 -04:00 |
|