mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-07-07 19:29:12 +00:00
Code Issues 32 Releases Wiki Activity
30,212 Commits 29 Branches 451 Tags
Commit Graph

30212 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mariusz Felisiak
bcfac538ae [4.0.x] Added stub release notes for 4.0.5. 
Backport of b54fd0e36eaf8d9dd398a84a6748d60f25793788 from main
 2022-04-11 10:53:46 +02:00
Mariusz Felisiak
fa20de5f54 [4.0.x] Added CVE-2022-28346 and CVE-2022-28347 to security archive. 
Backport of 78eeff8d33ead67cfc8603477c95e70f8fbe096a from main
 2022-04-11 10:36:26 +02:00
Mariusz Felisiak
e53f65012b [4.0.x] Post-release version bump. 2022-04-11 09:10:50 +02:00
Mariusz Felisiak
89807fbde8 [4.0.x] Bumped version for 4.0.4 release. 4.0.4 2022-04-11 09:05:03 +02:00
Mariusz Felisiak
00b0fc50e1 [4.0.x] Fixed CVE-2022-28347 -- Protected QuerySet.explain(**options) against SQL injection on PostgreSQL. 
Backport of 6723a26e59b0b5429a0c5873941e01a2e1bdbb81 from main.
 2022-04-11 09:02:58 +02:00
Mariusz Felisiak
800828887a [4.0.x] Fixed CVE-2022-28346 -- Protected QuerySet.annotate(), aggregate(), and extra() against SQL injection in column aliases. 
Thanks Splunk team: Preston Elder, Jacob Davis, Jacob Moore,
Matt Hanson, David Briggs, and a security researcher: Danylo Dmytriiev
(DDV_UA) for the report.

Backport of 93cae5cb2f9a4ef1514cf1a41f714fef08005200 from main.
 2022-04-11 09:02:14 +02:00
Manel Clos
78e553b48a [4.0.x] Fixed #33628 -- Ignored directories with empty names in autoreloader check for template changes. 
Regression in 68357b2ca9e88c40fc00d848799813241be39129.

Backport of 62739b6e2630e37faa68a86a59fad135cc788cd7 from main.
 2022-04-11 08:29:10 +02:00
Mariusz Felisiak
7700084142 [4.0.x] Added stub release notes and release date for 4.0.4, 3.2.13, and 2.2.28. 
Backport of 78277faafd38d8360efc1fd0c9c52d7bb5eec002 from main
 2022-04-04 10:50:15 +02:00
sarahboyce
51374161b0 [4.0.x] Fixed #32129 -- Adjusted the docs for session expiry helpers. 
Updated the docs for `get_session_cookie_age`, `get_expiry_age`, and
`get_expiry_date` to clarify their intended usage by session backends
when saving the session.

Backport of ae506181f7fb9d9e74f4935686540bef29b60255 from main
 2022-03-31 18:37:55 +02:00
Mariusz Felisiak
7d540d67a8 [4.0.x] Fixed #33598 -- Reverted "Removed unnecessary reuse_with_filtered_relation argument from Query methods." 
Thanks lind-marcus for the report.

This reverts commit 0c71e0f9cfa714a22297ad31dd5613ee548db379.

Regression in 0c71e0f9cfa714a22297ad31dd5613ee548db379.
Backport of fac662f4798f7e4e0ed9be6b4fb4a87a80810a68 from main
 2022-03-30 07:32:38 +02:00
Mariusz Felisiak
f62816bfc6 [4.0.x] Updated Oracle docs links to Oracle 21c. 
Backport of 83c803f161044fbfbfcd9a0c94ca93dc131be662 from main
 2022-03-29 09:43:03 +02:00
Mariusz Felisiak
0da90533f2 [4.0.x] Updated various links to HTTPS and new locations. 
Backport of 010a9d8a4f45252b908337988690c3fad138e334 from main
 2022-03-29 07:46:55 +02:00
Sih Sîng-hông薛丞宏
7f69c0d9f7 [4.0.x] Corrected models.FileField signature in docs. 
Backport of d4bf3b4c75c0e1229062ad4c937725931f699fb7 from main
 2022-03-28 20:29:53 +02:00
Mariusz Felisiak
efb26f1b8d [4.0.x] Reverted "Fixed forms_tests.tests.test_renderers with Jinja 3.1.0+." 
This reverts commit 1d9d082acf6e152c06833bb9698f88d688b95e40.
Backport of abfdb4d7f384fb06ed9b7ca37b548542df7b5dda from main
 2022-03-26 12:28:33 +01:00
Mariusz Felisiak
6a80fd1465 [4.0.x] Fixed forms_tests.tests.test_renderers with Jinja 3.1.0+. 
See https://github.com/pallets/jinja/pull/1621.
Backport of 1d9d082acf6e152c06833bb9698f88d688b95e40 from main
 2022-03-25 08:49:57 +01:00
Samuel Hartmann
280661bf35 [4.0.x] Fixed #33544 -- Expanded the TEMPLATES section of the Deployment checklist. 
Clarified that the cached template loader is enabled by default when
DEBUG = False.

Backport of 5cc9464e4d8fe2762e462560665fd1f28104bbca from main
 2022-03-22 12:38:19 +01:00
Carlton Gibson
c0a34befea [4.0.x] Fixed #33585 -- Made example git repo URLs use HTTPS protocol. 
The SSH-based checkout requires additional configuration, which is
beneficial to defer for new contributors.

Follow up to 3c6a4fdb6d828a03e368632d88f8261cc30104da. This commit
updates the remaining examples.
Backport of 9fed515a251d488172feb1652bb5179344364fb3 from main
 2022-03-22 12:12:47 +01:00
Mariusz Felisiak
fa76f6b83d [4.0.x] Refs #31676 -- Used term "merger" instead of "committer" in docs. 
Follow up to caa2dd08c4722c8702588f5dfe1fa4c506aa66fc.

Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es>
Backport of 653daaa60cf4de7071136541169285ed3d71974d from main
 2022-03-22 11:14:07 +01:00
Mariusz Felisiak
8761407a8f [4.0.x] Renamed Jenkins wiki page to CI. 
Jenkins is no longer the only CI tool.
Backport of b07ee98b27e58992fdc10fec0ec67e68ae1d272d from main
 2022-03-19 15:42:10 +01:00
Mariusz Felisiak
1af06ffaa5 [4.0.x] Added missing backticks to function names. 
Backport of 39ae8d740e30c18e46873cf82aff76588f1974c7 from main
 2022-03-17 11:10:49 +01:00
tommcn
de5a453d51 [4.0.x] Corrected CSRF reference in middleware docs. 
Backport of 8e633906403853868bcd7df62ba30a86151a944d from main
 2022-03-17 07:34:36 +01:00
David Sanders
b8f7c84922 [4.0.x] Corrected AppConfig.get_models() signature in docs. 
Backport of 7c56fc8e91ef34d81cba16eaaa610575667dd2a7 from main
 2022-03-14 06:56:05 +01:00
Carlton Gibson
d8b437b1fb [4.0.x] Added stub release notes for Django 4.0.4. 
Backport of 9652a118ce8c1cbe1f7cf7a4423adb7c5c50757d from main
 2022-03-01 09:59:18 +01:00
Carlton Gibson
1388cb06bc [4.0.x] Post-release version bump. 2022-03-01 09:55:08 +01:00
Carlton Gibson
a3a5fbdf84 [4.0.x] Bumped version for 4.0.3 release. 4.0.3 2022-03-01 09:37:00 +01:00
Carlton Gibson
c33413589d [4.0.x] Updated release date for version 4.0.3. 
Backport of 47143e27d4402b62068bf9eb84aa6dd93d3d4678 from main
 2022-03-01 09:33:34 +01:00
Mariusz Felisiak
82f25266bf [4.0.x] Fixed #33547 -- Fixed error when rendering invalid inlines with readonly fields in admin. 
Regression in de95c826673be9ea519acc86fd898631d1a11356.

Thanks David Glenck for the report.
Backport of 445b075def2c037b971518963b70ce13df5e88a2 from main
 2022-03-01 08:10:35 +01:00
Vaarun Sinha
be4a106930 [4.0.x] Refs #33476 -- Mentioned black in docs about pre-commit checks. 
Backport of fe3518d25edd69b782339729080b0295a8a33952 from main
 2022-02-21 07:53:22 +01:00
Andrey Otto
89befae7b5 [4.0.x] Fixed #33530 -- Fixed typo in docs/ref/templates/builtins.txt. 
Backport of f70a875cc05c46b3bfcc1637356081f0c5782bea from main
 2022-02-21 06:13:59 +01:00
Philipp Bosch
75872476ec [4.0.x] Fixed typo in docs/topics/i18n/translation.txt. 
Backport of 737542390af27616d93f86cd418e2d7f3e874b27 from main
 2022-02-18 13:04:02 +01:00
Mariusz Felisiak
760b7e7f4f [4.0.x] Fixed #33515 -- Prevented recreation of migration for ManyToManyField to lowercased swappable setting. 
Thanks Chris Lee for the report.

Regression in 43289707809c814a70f0db38ca4f82f35f43dbfd.

Refs #23916.
Backport of 1e2e1be02bdf0fe4add0d0279dbca1d74ae28ad7 from main
 2022-02-16 21:10:30 +01:00
Claude Paroz
11881ad69f [4.0.x] Refs #32074 -- Recommended aiosmtpd for minimal SMTP server. 
Follow up to 569a33579c3cca5f801c544d9b52a34e3c779424.
Backport of 5d13cc540e29eedafe695338d8ec9ec500185ccd from main
 2022-02-12 19:33:55 +01:00
Mariusz Felisiak
f2d3e1fc8c [4.0.x] Refs #33476 -- Ignored formatting changes in git blame. 2022-02-09 07:32:16 +01:00
Mariusz Felisiak
3278c31fa5 [4.0.x] Refs #33476 -- Refactored code to strictly match 88 characters line length. 
Backport of 7119f40c9881666b6f9b5cf7df09ee1d21cc8344 from main.
 2022-02-08 19:25:02 +01:00
django-bot
6a682b38e7 [4.0.x] Refs #33476 -- Reformatted code with Black. 
Backport of 9c19aff7c7561e3a82978a272ecdaad40dda5c00 from main.
 2022-02-08 12:15:38 +01:00
Mariusz Felisiak
e73ce08888 [4.0.x] Refs #33476 -- Changed quotation marks in DebugViewTests.test_template_exceptions(). 
This prevents a failure after reformatting the code with Black.

Backport of f68fa8b45dfac545cfc4111d4e52804c86db68d3 from main
 2022-02-08 12:02:37 +01:00
Carlton Gibson
224c64a733 [4.0.x] Refs #33476 -- Added GitHub action to run black linter. 
Backport of cf5e61cf6c721121abf7347baff3d41a0ad3c23e from main
 2022-02-08 12:02:14 +01:00
Carlton Gibson
9a7755fa2d [4.0.x] Refs #33476 -- Adjusted docs and config files for Black. 
Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>

Backport of ba94488196a74e312177ef2621fbd427956836ef from main
 2022-02-08 12:01:30 +01:00
John Hollingsworth
8c407ee7f3 [4.0.x] Fixed #32518 -- Doc'd that QuerySet.contains() should not be overused. 
Thanks Tim McCurrach for the idea.

Backport of d70b4bea18c96e518ce14dca96085e9265e8ebb6 from main
 2022-02-08 08:33:24 +01:00
Grace Hawkins
3714b44142 [4.0.x] Refs #32243 -- Fixed typo in docs/topics/files.txt. 
Backport of 25514b604a64686ba603bf10a8a63390dc38b79d from main
 2022-02-05 11:19:53 +01:00
Mariusz Felisiak
d55a1e5809 [4.0.x] Refs #33476 -- Refactored problematic code before reformatting by Black. 
In these cases Black produces unexpected results, e.g.

def make_random_password(
    self,
    length=10,
    allowed_chars='abcdefghjkmnpqrstuvwxyz' 'ABCDEFGHJKLMNPQRSTUVWXYZ' '23456789',
):

or

cursor.execute("""
SELECT ...
""",
    [table name],
)

Backport of c5cd8783825b5f6384417dac5f3889b4210b7d08 from main.
 2022-02-03 11:38:46 +01:00
Joshua Massover
76c80d96f3 [4.0.x] Fixed #32243 -- Added docs examples for manually saving Files. 
Backport of c9d6e3595cfd0aa58cde1656bd735ecfcd7a872b from main
 2022-02-03 09:58:08 +01:00
Mike Lissner
62fe7e08d6 [4.0.x] Improved example of using a custom queryset in Model formsets docs. 
Backport of e459b0f5a0b2bfbc2ac45b3e7f21047ec9e4f345 from main
 2022-02-03 06:58:51 +01:00
Theofilos Alexiou
efe72cf128 [4.0.x] Added Redis to warning about using cached sessions in docs. 
Backport of 3ba60951fcbc8fca3e71d3b78083b100491fa7f9 from main
 2022-02-02 20:46:44 +01:00
David Smith
7043f9ab3f [4.0.x] Fixed typo in release notes. 
Backport of 770d3e6a4ce8e0a91a9e27156036c1985e74d4a3 from main
 2022-02-02 07:18:43 +01:00
Mariusz Felisiak
0c06819caa [4.0.x] Refs #33476 -- Used vertical hanging indentation for format lists with inline comments. 
Lists with multiple values and comments per-line are reformatted
by Black to multiple lines with a single comment. For example:

DATE_INPUT_FORMATS =
    "%Y-%m-%d", "%m/%d/%Y", "%m/%d/%y",  # '2006-10-25', '10/25/2006', '10/25/06'
]

is reformatted to the:

DATE_INPUT_FORMATS =
    "%Y-%m-%d",
    "%m/%d/%Y",
    "%m/%d/%y",  # '2006-10-25', '10/25/2006', '10/25/06'
]

This reformats affected entries to multiple lines with corresponding
comments.

Backport of ca88caa1031c0de545d82de8d90dcae0e03651fb from main
 2022-02-01 15:14:17 +01:00
Mariusz Felisiak
1c74ac8648 [4.0.x] Added stub release notes for 4.0.3. 
Backport of ba4a6880d1783190de4081bd456d934beb45cb19 from main
 2022-02-01 09:12:57 +01:00
Mariusz Felisiak
69dfc6e61a [4.0.x] Added CVE-2022-22818 and CVE-2022-23833 to security archive. 
Backport of 9e0df0d6dde441dbbad2b548d777e0a01d633286 from main
 2022-02-01 08:53:10 +01:00
Mariusz Felisiak
3cb9025d65 [4.0.x] Post-release version bump. 2022-02-01 08:02:32 +01:00
Mariusz Felisiak
b12be7ad6b [4.0.x] Bumped version for 4.0.2 release. 4.0.2 2022-02-01 07:59:05 +01:00