mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-06-12 15:09:12 +00:00
Code Issues 32 Releases Wiki Activity
33,581 Commits 29 Branches 450 Tags
Commit Graph

33581 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sarah Boyce
1704c49a9b Fixed #36390 -- Deprecated RemoteUserMiddleware subclasses missing aprocess_request(). 
Regression in 50f89ae850f6b4e35819fe725a08c7e579bfd099.
Thank you to shamoon for the report and Natalia Bidart for the review.
 2025-05-23 10:22:36 +02:00
Natalia
ad6f998898 Added helpers in csrf_tests and logging_tests to assert logs from log_response(). 2025-05-22 15:39:31 -03:00
Natalia
8970468159 Refs #26688 -- Added tests for log_response() internal helper. 2025-05-22 15:39:31 -03:00
nessita
8c27911386
Refs #35829 -- Made cosmetic edits to django/contrib/admin/static/admin/img/README.md. 2025-05-20 08:57:11 -03:00
ontowhee
ddb8529415 Fixed #34262 -- Added support for AnyValue for SQLite, MySQL, Oracle, and Postgresql 16+. 
Thanks Simon Charette for the guidance and review. Thanks Tim Schilling for the
documentation review. Thanks David Wobrock for investigation and solution proposals.
 2025-05-20 10:01:42 +02:00
Jacob Walls
f603ece016
Fixed typo in docs/releases/6.0.txt. 2025-05-19 15:09:09 -03:00
Colleen Dunlap
802baf5da5 Fixed #36388 -- Made QuerySet.union() return self when called with no arguments. 
Regression in 9cb8baa0c4fa2c10789c5c8b65f4465932d4d172.
Thank you to Antoine Humeau for the report and Simon Charette for the review.
 2025-05-19 10:34:14 +02:00
Samuel Cormier-Iijima
1ba5fe19ca Fixed #36348 -- Fixed handling multiple nested url()s in ManifestStaticFilesStorage. 
Signed-off-by: Samuel Cormier-Iijima <samuel@cormier-iijima.com>
 2025-05-16 15:56:17 +02:00
Jacob Walls
994dc6d8a1 Fixed #36392 -- Raised ValueError when subquery referencing composite pk selects too many columns. 2025-05-16 08:19:38 +02:00
Simon Charette
e03e5c751c Fixed #33312 -- Raised explicit exception when copying deferred model instances. 
Previously save() would crash with an attempted forced update message, and both
save(force_insert=True) and bulk_create() would crash with DoesNotExist errors
trying to retrieve rows with an empty primary key (id IS NULL).

Implementing deferred field model instance copying might be doable in certain
cases (e.g. when all the deferred fields are db generated) but that's not
trivial to implement in a backward compatible way.

Thanks Adam Sołtysik for the report and test and Clifford for the review.
 2025-05-16 08:13:57 +02:00
Mariusz Felisiak
0b2ed4f7c8
Refs #35844 -- Skipped selenium and geoip2 requirement in Windows for Python 3.14+. 
Follow up to d6925f0d6beb3c08ae24bdb8fd83ddb13d1756e4.
 2025-05-15 19:52:51 +02:00
Tim Graham
883ce03e43
Refs #34488 -- Made test files path resolution independent of current working directory in ClearableFileInput selenium tests. 2025-05-15 13:02:00 -03:00
antoliny0919
a79c411147 Added missing import in docs/ref/contrib/admin/index.txt. 2025-05-15 15:48:00 +02:00
Jacob Walls
e52100a250
Fixed incorrect spacing in docs/ref/contrib/postgres/fields.txt. 2025-05-15 09:22:10 -03:00
Pablo Bengoechea
87ab54b488 Fixed #35829 -- Updated admin icons using Font Awesome Free version 6.7.2. 
Co-authored-by: Stefan <96178532+stefan6419846@users.noreply.github.com>
 2025-05-15 09:09:27 -03:00
nessita
d6925f0d6b
Refs #35844 -- Skipped argon2-cffi requirement in Windows for Python 3.14+. 2025-05-14 22:43:22 +02:00
Timothy McCurrach
24693a144f Fixed #35852 -- Fixed intcomma locale-aware formatting of string number representations. 2025-05-14 16:04:04 +02:00
antoliny0919
8bc3dd8727 Fixed #35507 -- Improved accessibility of search and filter elements in the admin changelist. 2025-05-14 16:03:01 +02:00
Tim Graham
8638d8bf74 Fixed #36273 -- Moved Index system checks from Model to Index.check(). 2025-05-14 16:00:53 +02:00
savanto
8620a3b0c7 Fixed #36085 -- Added JSONField support for negative array indexing on SQLite. 2025-05-14 13:21:18 +02:00
hesham942
a8716f3c4c Refs #36085 -- Moved compile_json_path to BaseDatabaseOperations. 2025-05-14 13:21:18 +02:00
Adam Johnson
6e36f7f784 Fixed #36383 -- Improved migration serialization for functools.partial objects. 2025-05-13 21:42:19 -03:00
Adam Johnson
57fdc104d2 Refs #36383 -- Added extra tests for serializing functools.partial in tests/migrations/test_writer.py. 
This includes a test helper to better assert over the expected output.

Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2025-05-13 21:42:19 -03:00
Adam Johnson
4647e2b866 Refs #36383 -- Extended DeconstructibleSerializer to support non-identifier keyword arguments. 
In Python, keyword arguments must normally be valid identifiers (i.e.,
variable names that follow Python's naming rules). However, Python dicts
can have keys that aren't valid identifiers, like "foo-bar" or "123foo".

This commit ensures that keyword arguments that are nt valid
identifiers, are properly handled when deconstructing an object.
 2025-05-13 21:42:19 -03:00
Adam Johnson
0f94ecd49d Refs #36383, #26151 -- Corrected spelling of DeconstructibleSerializer. 
"Deconstructible" is the spelling that Django has settled on, such as
for `django.utils.deconstruct`. This commit normalizes a
previously-inconsistent class to match the rest of the codebase.
 2025-05-13 21:42:19 -03:00
Lily Foote
188799e67c Updated guidance to propose new feature ideas in contributing docs. 
These changes include:
* Clarification of the new feature proposal and evaluation process.
* Reodering "points to consider" into reporting bugs section, since
  these are mostly trac-specific.
* Narrowing the guide on user interface bugs and features to just bugs.
* Updating documentation for Someday/Maybe triage stage.

Co-authored-by: Tim Schilling <schilling711@gmail.com>
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2025-05-13 21:38:04 -03:00
Aleksandr Safonov
96c79be4e4 Fixed #36332 -- Corrected HttpRequest.get_full_path() and HttpRequest.get_full_path_info() examples. 2025-05-13 17:41:17 +02:00
Jake Howard
f920937c8a Fixed #35518 -- Optimized RoutePattern by using string operations for converter-less routes. 2025-05-13 12:05:58 +01:00
Carlton Gibson
f66c79e93d
Refs #35591 -- Ensured isolated test environ for runserver warning. 2025-05-13 12:02:30 +02:00
Thibaut Decombe
825ddda26a Fixed #33174 -- Fixed migrations crash for model inheriting from Generic[T]. 2025-05-12 17:39:20 +01:00
Simon Charette
8be0c0d690 Fixed #36373 -- Fixed select_related() crash on foreign object for a composite pk. 
Thanks Jacob Walls for the report and Sarah for the in-depth review.
 2025-05-12 12:33:07 +01:00
Natalia
42ab99309d Refs #35980 -- Added release note about changes in release artifacts filenames. 2025-05-09 13:29:19 -03:00
Natalia
c86156378d Removed "Expected" from release date for 5.2.1, 5.1.9, and 4.2.21. 2025-05-09 13:29:19 -03:00
Jacob Walls
69ab6e5896 Fixed #36207 -- Cleared cached ForeignObject relations via refresh_from_db(). 2025-05-09 13:01:04 +01:00
Tim Graham
f5197be818
Removed hardcoded pks in admin selenium tests. 2025-05-09 13:17:58 +02:00
Ahmed Nassar
84e91262d6 Fixed #36295, Refs #24305 -- Allowed overriding GenericForeignKey fields on abstract models. 2025-05-08 16:07:08 +01:00
Eric Blum
384cdf0f7a Fixed #36363 -- Added field names to admin duplicated fields error hint. 2025-05-08 11:38:13 +01:00
Sage Abdullah
358fd21c47 Fixed #36143 -- Made max_query_params respect SQLITE_LIMIT_VARIABLE_NUMBER. 
Co-authored-by: Xavier Frankline <xf.xavierfrank@gmail.com>
 2025-05-08 11:37:11 +01:00
Sage Abdullah
38660a612c Refs #36143 -- Tested bulk_batch_size limit for bulk_update and bulk_create. 2025-05-08 11:37:11 +01:00
Natalia
37f2a77c72 Cleaned up CVE-2025-32873 security archive description. 2025-05-07 11:36:05 -03:00
Natalia
fdabda4e05 Added CVE-2025-32873 to security archive. 2025-05-07 10:59:55 -03:00
Natalia
d8397bf6cd Added stub release notes for 5.2.2. 2025-05-07 10:56:00 -03:00
Sarah Boyce
9f3419b519 Fixed CVE-2025-32873 -- Mitigated potential DoS in strip_tags(). 
Thanks to Elias Myllymäki for the report, and Shai Berger and Jake
Howard for the reviews.

Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2025-05-06 22:21:42 -03:00
Natalia
f7d97dd118 Simplified artifact building steps in docs/internals/howto-release-django.txt. 
With the recent merge of artifact build updates from
https://github.com/django/django/pull/19436, there is no need to have
different build instructions for 4.2.
 2025-05-06 11:11:40 -03:00
Mariusz Felisiak
dd133054cb
Refs #36052, #32234 -- Fixed inspectdb tests for CompositePrimaryKey on Oracle. 
Tests regression in 4c75858135589f3a00e32eb4d476074536371a32.
 2025-05-06 08:20:56 +02:00
신우진
1fb3f57e81 Fixed #36281 -- Used async-safe write in ASGIHandler.read_body(). 
Thanks Carlton Gibson for reviews.
 2025-05-04 14:53:08 +02:00
Clifford Gama
9d93e35c20 Fixed #17461 -- Doc'd the presumed order of foreign keys on the intermediary model of a self-referential m2m. 
Thanks Giannis Terzopoulos and Sarah Boyce for the reviews.
 2025-05-02 07:56:56 +01:00
Natalia
0f5dd0dff3 Made cosmetic edits and added upcoming security release to release notes. 2025-04-30 14:55:12 -03:00
Baptiste Mispelon
66f9eb0ff1 Fixed #36357 -- Skipped unique_together in inspectdb output for composite primary keys. 
Thanks to Baptiste Mispelon for the report and quick fix, and to Simon
Charette and Jacob Walls for the reviews.

Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
 2025-04-30 11:55:25 -03:00
Simon Charette
07100db6f4 Fixed #36358 -- Corrected introspection of composite primary keys on SQLite. 
Previously, any first field of a composite primary key with type
`INTEGER` was incorrectly introspected as an `AutoField` due to SQLite
treating `INTEGER PRIMARY KEY` as an alias for the `ROWID`.

This change ensures that integer fields in composite PKs are not
mistaken for auto-incrementing fields.

Thanks Jacob Walls and Sarah Boyce for the reviews.
 2025-04-30 10:51:48 -03:00