1
0
mirror of https://github.com/django/django.git synced 2024-12-25 02:26:12 +00:00
Commit Graph

8340 Commits

Author SHA1 Message Date
Joshua Kehn
ab26b65b2f Fixed #25334 -- Provided a way to allow cross-origin unsafe requests over HTTPS.
Added the CSRF_TRUSTED_ORIGINS setting which contains a list of other
domains that are included during the CSRF Referer header verification
for secure (HTTPS) requests.
2015-09-05 09:19:57 -04:00
David Sanders
48c420d992 Added default value for default kwargs for QueryDict. 2015-09-05 08:20:41 -04:00
Tim Graham
2dc9ec5616 Fixed #24525 -- Fixed AssertionError in some complex queries.
Thanks Anssi Kääriäinen for providing the solution.
2015-09-05 07:51:17 -04:00
David Sanders
cc968b9c90 Added links to new security settings introduced in 1.8. 2015-09-04 12:55:32 -04:00
Tim Graham
e133b55943 Refs #25144 -- Revised deprecation timeline: migrations won't become compulsory. 2015-09-04 09:47:56 -04:00
Tim Graham
721d8e50ac Fixed #25144 -- Allowed migrate to create tables for apps without migrations. 2015-09-04 09:47:30 -04:00
Maxime Lorant
c92cd22d02 Refs #25345 -- Updated links to code.google.com. 2015-09-04 08:14:21 -04:00
David Gibbons
526a413870 Updated static files howto title to include JavaScript. 2015-09-04 08:07:57 -04:00
Tim Graham
7c0850028f Documented a limitation of Options.required_db_features. 2015-09-03 13:37:39 -04:00
Dražen Odobašić
5ab65ca5c9 Fixed #25326 -- Added namedtuple example for executing custom SQL. 2015-09-03 13:11:46 -04:00
Tim Graham
12083c5d47 Moved misplaced versionadded annotation. 2015-09-03 08:58:17 -04:00
Tim Graham
a8eb715b66 Refs #24152 -- Fixed typos in deprecated GeoQuerySet aggregate names. 2015-09-02 19:57:08 -04:00
Maxime Lorant
5153a3bfdc Fixed #25331 -- Removed trailing blank lines in docstrings. 2015-08-31 17:37:21 -04:00
Tim Graham
123984ff66 Fixed #25289 -- Updated admin's jQuery to 2.1.4. 2015-08-31 09:39:43 -04:00
Tyson Clugg
73df1040a2 Cleaned up example migration files in docs 2015-08-31 22:15:05 +10:00
Tyson Clugg
e34226fc37 Fixed #25259 -- Added comments to header of generated migration files 2015-08-31 22:14:21 +10:00
David Sanders
7a98442f96 Clarified 404.html usage, excplicitly stated that it's used when DEBUG is False
Thanks to Keryn Knight, Curtis Maloney and Tim Graham for their reviews.
2015-08-31 14:39:31 +10:00
Aymeric Augustin
fe6ddb837d Fixed #24704 -- Made the autoreloader survive SyntaxErrors.
With this change, it's expected to survive anything except errors
that make it impossible to import the settings. It's too complex
to fallback to a sensible behavior with a broken settings module.

Harcoding things about runserver in ManagementUtility.execute is
atrocious but it's the only way out of the chicken'n'egg problem:
the current implementation of the autoreloader primarily watches
imported Python modules -- and then a few other things that were
bolted on top of this design -- but we want it to kick in even if
the project contains import-time errors and django.setup() fails.

At some point we should throw away this code and replace it by an
off-the-shelf autoreloader that watches the working directory and
re-runs `django-admin runserver` whenever something changes.
2015-08-29 20:49:56 +02:00
Y3K
b649f68649 Fixed #25262 -- Removed the enable_comments field from FlatPageAdmin. 2015-08-29 08:55:50 -04:00
Sergey Kolosov
e75882332c Fixed #17375 -- Changed makemessages to use xgettext with --files-from
Changed the way makemessages invokes xgettext from one call per
translatable file to one call per locale directory (using --files-from).
This allows to avoid https://savannah.gnu.org/bugs/index.php?35027 and,
as a positive side effect, speeds up localization build.
2015-08-28 15:41:58 -04:00
Tim Graham
01b2b0b654 Fixed #25318 -- Made SILENCED_SYSTEM_CHECKS suppress all messages.
Previously, messages of ERROR level or higher were printed to
the console.
2015-08-28 13:34:56 -04:00
Tim Graham
9607a04041 Fixed #25299 -- Fixed crash with ModelAdmin.list_display value that clashes with a model reverse accessor. 2015-08-28 08:46:26 -04:00
Tim Graham
22a791e608 Refs #20597 -- Fixed spelling of HiDPI. 2015-08-27 19:32:57 -04:00
elky
c32b61c6fd Fixed #20597 -- Replaced admin GIF/PNG icons by SVG 2015-08-27 17:21:02 -04:00
Sergey Kolosov
22bb548900 Fixed #22634 -- Made the database-backed session backends more extensible.
Introduced an AbstractBaseSession model and hooks providing the option
of overriding the model class used by the session store and the session
store class used by the model.
2015-08-27 15:00:09 -04:00
Tim Graham
956df84a61 Removed historical note about session serialization. 2015-08-27 10:00:18 -04:00
Tim Graham
e8cbc2b322 Refs #2495 -- Documented that MySQL cannot have TextField(unique=True). 2015-08-27 09:29:13 -04:00
Alex Hill
7bec480fe2 Fixed #24201 -- Added order_with_respect_to support to GenericForeignKey. 2015-08-27 09:20:17 -04:00
Tim Graham
91ec1841f5 Added 'subtransactions' to spelling wordlist. 2015-08-26 08:20:27 -04:00
Tim Graham
ea47a052ba Fixed #25311 -- Removed vague language about "partial commits" from docs. 2015-08-25 20:23:43 -04:00
David Sanders
7efdd40407 Updated PROJ.4 link to new GitHub wiki. 2015-08-25 09:57:04 -04:00
Tim Graham
2a1a085bf1 Fixed #25309 -- Corrected that ATOMIC_REQUESTS applies per view not per request. 2015-08-25 09:53:22 -04:00
Claude Paroz
9324935c3e Fixed #25295 -- Restored 'no active translation' after language override
Thanks David Nelson Adamec for the report and Tim Graham for the review.
2015-08-25 10:32:10 +02:00
Maxime Lorant
4ce433e811 Fixed #25302 -- Prevented BrokenLinkEmailsMiddleware from reporting 404s when Referer = URL. 2015-08-24 19:35:49 -04:00
Tommy Beadle
d3fdaf907d Fixed #23727 -- Inhibited the post_migrate signal when using serialized_rollback.
When using a TransactionTestCase with serialized_rollback=True,
after creating the database and running its migrations (along with
emitting the post_migrate signal), the contents of the database
are serialized to _test_serialized_contents.

After the first test case, _fixture_teardown() would flush the
tables but then the post_migrate signal would be emitted and new
rows (with new PKs) would be created in the django_content_type
table. Then in any subsequent test cases in a suite,
_fixture_setup() attempts to deserialize the content of
 _test_serialized_contents, but these rows are identical to the
rows already in the database except for their PKs.  This causes an
IntegrityError due to the unique constraint in the
django_content_type table.

This change made it so that in the above scenario the post_migrate
signal is not emitted after flushing the tables, since it will be
repopulated during fixture_setup().
2015-08-24 08:59:20 -04:00
Aymeric Augustin
491d01b7e9 Tweak some examples.
"Area man/woman" is confusing to people not familiar with the
conventions of American journalism (like me).
2015-08-22 20:25:42 +02:00
Aymeric Augustin
0eb846605e Recommend relative imports within Django components.
django-developers thread:
https://groups.google.com/d/msg/django-developers/11XvmVdx58w/sFrF0pL8LTgJ
2015-08-22 19:58:44 +02:00
Tim Graham
26dcf739ea Forwardported release note for refs #25040. 2015-08-22 08:50:49 -04:00
Tim Graham
d3bc86ec11 Fixed #25284 -- Documented removal of implicit QuerySet __in lookups. 2015-08-21 11:04:22 -04:00
Tim Graham
6c6eb8a691 Refs #24914 -- Added docs for more auth mixin methods. 2015-08-20 17:57:47 -04:00
Tim Graham
333cbdcd2d Fixed #24951 -- Fixed AssertionError in delete queries involving a foreign/primary key.
Thanks Anssi Kääriäinen for help.
2015-08-20 08:14:16 -04:00
Tim Graham
bda408f60b Fixed #25153 -- Moved 'polls' first in tutorial's INSTALLED_APPS. 2015-08-19 18:59:42 -04:00
Marc
f9de197268 Recommended the JavaScript Cookie library instead of jQuery cookie.
jQuery cookie is no longer maintained in favor of the JavaScript
cookie library. This also removes the jQuery dependency.
2015-08-19 10:04:01 -04:00
Tim Graham
47201371d2 Refs #24451 -- Corrected Django version for {% cycle %} deprecation. 2015-08-19 08:37:27 -04:00
Markus Holtermann
f33607ce0b Fixed style issues in testing docs 2015-08-19 12:18:10 +10:00
Tim Graham
84335e3d1f Added stub release notes for 1.8.5. 2015-08-18 19:52:45 -04:00
Anton Strogonoff
20787b5c29 Used consistent capitalization and hyphenation of "class-based views" in docs. 2015-08-18 19:07:10 -04:00
Tim Graham
068a80d717 Added today's issue to the security archive. 2015-08-18 13:46:47 -04:00
Tim Graham
8cc41ce7a7 Fixed DoS possiblity in contrib.auth.views.logout()
Thanks Florian Apolloner and Carl Meyer for review.

This is a security fix.
2015-08-18 08:03:43 -04:00
Tim Graham
b0ab74dfca Added stub release notes for security releases. 2015-08-18 08:03:39 -04:00