1
0
mirror of https://github.com/django/django.git synced 2025-10-25 22:56:12 +00:00
Commit Graph

5746 Commits

Author SHA1 Message Date
Paul McMillan
85ba68cc14 [1.6.x] Increased default PBKDF2 iterations
Increases the default PBKDF2 iterations, since computers have gotten
faster since 2011. In the future, we plan to increment by 10% per
major version.

Backport of a075e2ad0d from master
2013-09-19 15:34:59 -04:00
Markus Amalthea Magnuson
9888bb28ee [1.6.x] Added missing "in" in sentence.
Backport of 2c5c422d34 from master
2013-09-19 13:29:48 -04:00
Russell Keith-Magee
886e876c72 [1.6.x] Fixed #21121: Added archive of security issues.
Backport of 9d3e60aa3e, 8e134c27c9, 8b3bae9466, c65ae7c969, bbabc5325c,
and a2e25e8a83 from master.
2013-09-19 15:02:52 +08:00
Ramiro Morales
c0625a74ce [1.6.x] Reworded a paragraph in the logging docs.
9d12f68a53 from master.
2013-09-16 17:52:13 -03:00
Tim Graham
e96bcdd64f [1.6.x] Cleaned up 1.5.4/1.4.8 release notes
Backport of 8d29005524 from master
2013-09-15 14:22:24 -04:00
James Bennett
623c4916df [1.6.x] Add release notes and bump version number for security release. 2013-09-15 00:36:03 -06:00
Russell Keith-Magee
5ecc0f828e [1.6.x] Ensure that passwords are never long enough for a DoS.
* Limit the password length to 4096 bytes
  * Password hashers will raise a ValueError
  * django.contrib.auth forms will fail validation
 * Document in release notes that this is a backwards incompatible change

Thanks to Josh Wright for the report, and Donald Stufft for the patch.

This is a security fix; disclosure to follow shortly.

Backport of aae5a96d57 from master.
2013-09-15 13:46:16 +08:00
Goetz
097fb98f81 [1.6.x] Fixed #21101 -- Updated urlize documentation to mention email addresses
Backport of 39b49fd339 from master
2013-09-13 12:42:40 -04:00
Tim Graham
7a2adec4d0 [1.6.x] Fixed #21100 -- Noted that Create/UpdateViews.fields is new in 1.6
Thanks AndrewIngram for the suggestion.

Backport of ec89e1725a from master
2013-09-13 09:35:22 -04:00
Tim Graham
6e17534c89 [1.6.x] Fixed #21094 -- Updated reuseable apps tutorial to use pip for installation.
Thanks ylb415 at gmail.com for the suggestion.

Backport of e4aab1bb8d from master
2013-09-13 09:30:12 -04:00
Kevin Christopher Henry
c91ffd5f23 [1.6.x] Documentation -- added instructions on working with pull requests
Since non-core contributors are asked to review patches, instructions
on working with pull requests were added to the Working with Git and
GitHub page (based on the existing instructions in the core
committers page).

Backport of 990ce9aab9 from master
2013-09-13 08:27:23 -04:00
Matt Austin
a929adfd3b [1.6.x] Fixed #21095 -- Documented new requirement for dates lookups.
Day, month, and week_day lookups now require time zone definitions in the database.

Backport of 9451d8d from master.
2013-09-13 10:20:13 +02:00
Ramiro Morales
66e6e2d146 [1.6.x] Fixed a couple of typos in GeoDjango docs.
8b366a50f4 from master.
2013-09-12 19:45:27 -03:00
Phaneendra Chiruvella
e8bb41d05c [1.6.x] Minor typo fix in django.contrib.auth.models.User docs
Backport of bd72c2acb6 from master
2013-09-11 19:44:35 -04:00
Tim Graham
b05639dcac [1.6.x] Fixed #20887 -- Added a warning to GzipMiddleware in light of BREACH.
Thanks EvilDMP for the report and Russell Keith-Magee
for the draft text.

Backport of da843e7dba from master
2013-09-11 08:18:48 -04:00
Kevin Christopher Henry
4f0ea1aca4 [1.6.x] Documentation -- Improved description of cache arguments
- Fixed some grammar and formatting mistakes
- Added the type and default for CULL_FREQUENCY
- Made the note on culling the entire cache more precise. (It's actually
  slower on the filesystem backend.)

Backport of 5eca021d48 from master
2013-09-11 07:43:24 -04:00
Tim Graham
2f2731e67e [1.6.x] Added 1.4.7/1.5.3 release notes
Backport of baec6a26dd from master
2013-09-10 21:08:27 -04:00
Tarjei Husøy
ef3604a085 [1.6.x] Fixed broken sphinx reference to staticfiles.
Backport of 751dc0a36b from master
2013-09-10 16:31:51 -04:00
Aymeric Augustin
f9f792eb04 [1.6.x] Took advantage of django.utils.six.moves.urllib.*.
Backport of 6a6428a36 from master.
2013-09-10 21:29:31 +02:00
oz123
960f5bc759 [1.6.x] Fixed #21075 - Improved doc for calling call_command with arguments.
Backport of fca4c4826e from master
2013-09-10 09:18:14 -04:00
Tim Graham
01ad508514 [1.6.x] Fixed spelling; refs #16895.
Thanks Panagiotis Issaris for the report.

Backport of fb51c9a0f2 from master
2013-09-09 11:31:25 -04:00
e0ne
276e053803 [1.6.x] Fixed #16895 -- Warned about cost of QuerySet ordering
Thanks outofculture at gmail.com for the suggestion.

Backport of cbf08c6b0c from master
2013-09-09 09:49:15 -04:00
Tim Graham
c03848b540 [1.6.x] Fixed #21068 -- Added some docs for DiscoverRunner
Thanks jcd.

Backport of e4b012feeb from master
2013-09-07 16:11:03 -04:00
Aymeric Augustin
01edcf70f2 Fixed #20409 -- Clarified how unique_for_date works when USE_TZ is set. 2013-09-07 14:09:52 -05:00
Tim Graham
7b8037f3aa [1.6.x] Fixed #20005 -- Documented that Oracle databases need execute permission on SYS.DBMS_LOB.
Thanks jafula for the suggestion.

Backport of a86ecc80a2 from master
2013-09-07 14:01:05 -04:00
Tim Graham
17b67e17a3 [1.6.x] Fixed #20938 -- Added cached sessions note to deployment checklist.
Thanks mjtamlyn for the suggestion.

Backport of 4e784f337c from master
2013-09-07 13:08:45 -04:00
Keith Edmiston
a357c854c9 [1.6.x] Fixed #16992 -- Added InnoDB warning regarding reuse of AUTO_INCREMENT values.
Thanks kent at nsc.liu.se for the report.

Backport of c54fa1a7bc from master
2013-09-07 12:16:43 -04:00
Tim Graham
2ab2d0fb25 [1.6.x] Fixed a link in topics/testing/overview.txt
Backport of 0c295a7718 from master
2013-09-06 17:41:43 -04:00
Keith Edmiston
2c73ba88f2 [1.6.x] Fixed #19295 -- Documented that CachedStaticFilesStorage isn't compatible with runserver --insecure.
Backport of 028db97503 from master
2013-09-06 17:30:59 -04:00
Tim Graham
da44a8bdc2 [1.6.x] Fixed #20646 -- Clarified the use of AbstractBaseUser.REQUIRED_FIELDS
Thanks craigbruce.

Backport of db3de52807 from master
2013-09-06 16:06:46 -04:00
Tim Graham
544382dd85 [1.6.x] Fixed instructions for running a subset of tests.
Backport of cd4068f359 from master
2013-09-06 14:31:43 -04:00
Eric Boersma
180b9955cc [1.6.x] Fixed #21035 -- Changed docs to treat the acronym SQL phonetically.
The documentation and comments now all use 'an' to
refer to the word SQL and not 'a'.

Backport of 4d13cc56de from master
2013-09-05 20:16:14 -04:00
micahhausler
9f69ae7847 [1.6.x] Fixed #21047 -- Added CLA mesage on the new contributor advice doc
Backport of 93dd31cadf from master
2013-09-05 17:54:56 -04:00
Tim Graham
1dd061ad77 [1.6.x] Fixed #21044 -- Documented django.core.urlresolvers.Resolver404
Thanks Keryn Knight for the suggestion.

Backport of eacf060e01 from master
2013-09-05 08:45:58 -04:00
Tim Graham
622d5c7650 [1.6.x] Fixed #20900 -- Documented RemoteUserBackend.authenticate
Backport of 7b62b80693 from master
2013-09-05 06:32:50 -04:00
Tim Graham
cda4fc8225 [1.6.x] Fixed #20958 -- Documented that GenericForeignKey fields can't be accessed in forms.
Thanks marky1991.

Backport of 533d1ab334 from master
2013-09-04 13:19:32 -04:00
Paul C. Anagnostopoulos
fe0eb2f995 [1.6.x] Clarified docs for some tags and filters
Backport of 1ccdc08189 from master
2013-09-04 13:04:51 -04:00
Loic Bistuer
a62b640f7d [1.6.x] Fixed #20973 -- Document serving static files without django.contrib.staticfiles
Backport of 7b04038a7f from master
2013-09-03 09:01:43 -04:00
Aymeric Augustin
115318051c [1.6.x] Replaced "not PY3" by "PY2", new in six 1.4.0.
Conflicts:
	django/db/backends/oracle/base.py
	django/db/backends/sqlite3/base.py
	django/db/models/base.py

Backport of 365c3e8b from master.
2013-09-03 07:34:45 -05:00
Tim Graham
c0fb6bdde3 [1.6.x] Fixed #21002 -- Documented JSON session serialization requires string keys
Thanks jeroen.pulles at redslider.net for the report.

Backport of 3baf1d1042 from master
2013-09-03 07:49:59 -04:00
Claude Paroz
4e3794dd1f [1.6.x] Fixed #20998 -- Allow custom (de)serialization for GIS widgets
Thanks Mathieu Leplatre for the report and the initial patch.
Backport of 102f26c92 from master.
2013-09-02 13:34:26 +02:00
Loic Bistuer
64383e8349 [1.6.x] Made the doc about translating string literals in templates more prominent.
Backport of 9885f07757 from master
2013-08-31 08:00:33 -04:00
Claude Paroz
68ae9f39b7 [1.6.x] Fixed copy/paste error in measurement docs
Backport of e87997dd33 frmo master.
2013-08-31 10:33:46 +02:00
Tim Graham
0089a9a854 [1.6.x] Fixed typo in docs/ref/models/options.txt
Backport of a89c856a7a from master
2013-08-30 21:07:04 -04:00
Carl Meyer
21a3efcf48 [1.6.x] Fixed #20999 - Allow overriding formfield class with choices, without subclass restrictions.
Refs #18162. Thanks claudep and mjtamlyn for review.

Backport of 7211741fc5 from master.
2013-08-30 17:45:14 -06:00
Anssi Kääriäinen
76e38a2177 [1.6.x] Fixed #20988 -- Added model meta option select_on_save
The option can be used to force pre 1.6 style SELECT on save behaviour.
This is needed in case the database returns zero updated rows even if
there is a matching row in the DB. One such case is PostgreSQL update
trigger that returns NULL.

Reviewed by Tim Graham.

Refs #16649

Backport of e973ee6a98 from master

Conflicts:
	django/db/models/options.py
	tests/basic/tests.py
2013-08-30 09:47:34 +03:00
Jorge C. Leitão
60df34d477 [1.6.x] Added links to file docs.
Backport of d72f83c410 from master
2013-08-29 12:49:27 -04:00
Phaneendra Chiruvella
68eca2b36f [1.6.x] Minor spelling correction in ModelForms docs
Backport of 2fbf949760 from master
2013-08-28 07:12:38 -04:00
Krzysztof Jurewicz
544a190ebf [1.6.x] Fixed #20981 -- Noted the default value of disable_existing_loggers.
Backport of 095643e691 from master
2013-08-27 10:27:44 -04:00
Jan Böcker
c4e2e4f630 [1.6.x] Fixed typo in docs/topics/conditional-view-processing.txt
Backport of 5fd2c979cb from master
2013-08-27 09:22:31 -04:00