1
0
mirror of https://github.com/django/django.git synced 2024-12-23 17:46:27 +00:00
Commit Graph

5290 Commits

Author SHA1 Message Date
Donald Stufft
25f2acfed0 Fixed #20138 -- Added BCryptSHA256PasswordHasher
BCryptSHA256PasswordHasher pre-hashes the users password using
SHA256 to prevent the 72 byte truncation inherient in the BCrypt
algorithm.
2013-03-26 13:26:57 -04:00
Ramiro Morales
ccf8d81113 Fixed docs reST warning. 2013-03-25 21:56:52 -03:00
Tim Graham
014638a131 Merge pull request #951 from yohanboniface/set_signed_cookie
Fixed signature of HttpResponse.set_signed_cookie in docs.
2013-03-24 10:55:11 -07:00
Tim Graham
6073091b77 Fixed #20124 - Fixed doc warnings. 2013-03-24 13:49:31 -04:00
Aymeric Augustin
f02c6c2760 Goodbye, Malcolm. 2013-03-24 18:31:20 +01:00
Yohan Boniface
c5b2414a52 Doc: "value" is arg not kwarg in HttpResponse.set_signed_cookie 2013-03-24 12:12:23 -04:00
Aymeric Augustin
e12aad2d57 Added changes missing from previous commit.
Sorry.
2013-03-24 14:30:04 +01:00
Aymeric Augustin
e16c48e001 Fixed #15124 -- Changed the default for BooleanField.
Thanks to the many contributors who updated and improved the patch over
the life of this ticket.
2013-03-24 13:47:01 +01:00
Aymeric Augustin
ae417dd4d5 Added release notes for 4b31a6a9.
Thanks Florian for reporting this omission.
2013-03-24 13:13:19 +01:00
Tim Graham
d384878cc1 Merge pull request #941 from xakon/master
Small typo error in tutorial
2013-03-23 13:29:18 -07:00
Claude Paroz
f670cce9f5 Fixed #20119 -- Fixed typo in auth docs
Thanks vinyll for the report.
2013-03-23 20:00:18 +01:00
Claude Paroz
76aecfbc4b Fixed #9055 -- Standardized behaviour of parameter escaping in db cursors
Previously, depending on the database backend or the cursor type,
you'd need to double the percent signs in the query before passing
it to cursor.execute. Now cursor.execute consistently need percent
doubling whenever params argument is not None (placeholder substitution
will happen).
Thanks Thomas Güttler for the report and Walter Doekes for his work
on the patch.
2013-03-23 17:11:10 +01:00
Jannis Leidel
e7514e4978 Merge pull request #942 from stephrdev/trac-18000
Fixed #18000 -- Moved the code to handle goto requests to an extra WizardView method.
2013-03-23 05:29:28 -07:00
Stephan Jaekel
1c8a1706fb Updated docs, changed versionchanged to versionadded. 2013-03-23 13:27:16 +01:00
Stephan Jaekel
b614c47f8c Added some class attributes to pass initial form lists to the WizardView without the need to add them in the as_view call. 2013-03-23 12:24:34 +01:00
Stephan Jaekel
46246c6624 Moved the code to handle goto requests in a extra WizardView method. 2013-03-23 12:02:23 +01:00
Christos Kontas
15f12d4181 Fix minor typo in tutorial 2013-03-23 09:55:24 +02:00
Tim Graham
93cffc3b37 Added missing markup to docs. 2013-03-22 13:50:07 -04:00
Tim Graham
0df59bc212 Merge pull request #935 from tomviner/master
Docs template name typo
2013-03-22 10:46:08 -07:00
Tim Graham
f7795e968d Fixed #17935 - Clarified intro of topics/files.txt.
Thanks guettli for the suggestion.
2013-03-22 06:01:51 -04:00
Tom V
a907fa088e Docs template name mistake
change_list_request.html doesn't exist, it's named  change_list_results.html
2013-03-21 10:03:28 +00:00
Andrew Gorcester
f9ab543720 Fixed #20084 -- Provided option to validate formset max_num on server.
This is provided as a new "validate_max" formset_factory option defaulting to
False, since the non-validating behavior of max_num is longstanding, and there
is certainly code relying on it. (In fact, even the Django admin relies on it
for the case where there are more existing inlines than the given max_num). It
may be that at some point we want to deprecate validate_max=False and
eventually remove the option, but this commit takes no steps in that direction.

This also fixes the DoS-prevention absolute_max enforcement so that it causes a
form validation error rather than an IndexError, and ensures that absolute_max
is always 1000 more than max_num, to prevent surprising changes in behavior
with max_num close to absolute_max.

Lastly, this commit fixes the previous inconsistency between a regular formset
and a model formset in the precedence of max_num and initial data. Previously
in a regular formset, if the provided initial data was longer than max_num, it
was truncated; in a model formset, all initial forms would be displayed
regardless of max_num. Now regular formsets are the same as model formsets; all
initial forms are displayed, even if more than max_num. (But if validate_max is
True, submitting these forms will result in a "too many forms" validation
error!) This combination of behaviors was chosen to keep the max_num validation
simple and consistent, and avoid silent data loss due to truncation of initial
data.

Thanks to Preston for discussion of the design choices.
2013-03-21 01:27:24 -07:00
Carny Cheng
aaec4f2bd8 Fixed #18839 - Field.__init__() now calls super(). 2013-03-20 16:20:57 -07:00
Claude Paroz
a9ee0e2970 Fixed #20096 -- Added link to the Greek localflavor app 2013-03-20 17:08:08 +01:00
Paul Collins
9a85ad89c2 Fixed #16319 -- added SuccessMessageMixin to contrib.messages
Thanks martinogden for the initial patch and d1ffuz0r for tests.
2013-03-19 21:02:55 -07:00
Ryan West
ae8fcedbc7 small documentation update to outline caveat with SESSION_COOKIE_DOMAIN 2013-03-18 19:18:35 -07:00
Juan Catalano
36b45611bc Added warn note to docs about MySQL issues with 0000-00-00 date strings
MySQL accepts 0000-00-00 as a valid date but MySQLdb converts those
values into None. So there will be problems for instance if trying to
transport the data using dumpdata/loaddata.

This patch refs #6642 that has been closed as wontfix since this is a
particular problem of MySQL.
2013-03-18 21:05:38 -03:00
Aymeric Augustin
31b5275235 Fixed #13260 -- Quoted arguments interpolated in URLs in reverse. 2013-03-18 23:58:22 +01:00
Justin Bronn
4485b2a74c Update versions and links to source tarballs. 2013-03-18 15:55:32 -07:00
Aymeric Augustin
6197935152 Fixed #19968 -- Dropped support for PostgreSQL < 8.4. 2013-03-18 21:16:29 +01:00
Aymeric Augustin
20a91cce04 Fixed #17037 -- Added a --all option to diffsettings. 2013-03-18 00:03:58 +01:00
Aymeric Augustin
f3a6d74db9 Minor docs fix for e11ccc76. 2013-03-17 22:43:49 +01:00
Aymeric Augustin
c94db53eaa Two additions to the deployment checklist.
Thanks Erik Romijn.
2013-03-17 19:29:22 +01:00
Aymeric Augustin
912b5d2a6b Fixed #19697 -- Added a deployment checklist. 2013-03-17 19:21:36 +01:00
Aymeric Augustin
0555ef7c23 Added structure in the 1.6 release notes.
The backwards-incompatible changes section wasn't structured in sections
like it is in release notes for previous versions.
2013-03-17 11:05:41 +01:00
Aymeric Augustin
e11ccc76d3 Updated bundled version of six. 2013-03-17 10:44:28 +01:00
Baptiste Mispelon
957fcd0c9f Fix #20054: Removed links to modwsgi.org. 2013-03-15 19:14:01 +01:00
Johan Charpentier
186bff4703 Fixed #20053 -- Fix index_together documentation 2013-03-15 15:15:52 +01:00
Aymeric Augustin
f8c7c8f27b Merge pull request #901 from giamfreeg/master
Fixed an erroneous import in example code of docs (class-based-views/intro).
2013-03-15 06:23:21 -07:00
Marc Tamlyn
d35ffcaaad Corrected typos in the 1.6 release notes 2013-03-15 12:50:15 +01:00
Aymeric Augustin
3f2befc931 Deprecated django.views.defaults.shortcut. 2013-03-14 20:30:23 +01:00
Claude Paroz
2f121dfe63 Fixed #17051 -- Removed some 'invalid' field error messages
When the 'invalid' error message is set at field level, it masks
the error message raised by the validator, if any.
2013-03-14 17:03:43 +01:00
Aymeric Augustin
b492e59074 Updated release instructions to account for website automation. 2013-03-14 14:59:45 +01:00
Anssi Kääriäinen
6b4834952d Fixed #16649 -- Refactored save_base logic
Model.save() will use UPDATE - if not updated - INSERT instead of
SELECT - if found UPDATE else INSERT. This should save a query when
updating, but will cost a little when inserting model with PK set.

Also fixed #17341 -- made sure .save() commits transactions only after
the whole model has been saved. This wasn't the case in model
inheritance situations.

The save_base implementation was refactored into multiple methods.
A typical chain for inherited save is:
save_base()
    _save_parents(self)
        for each parent:
            _save_parents(parent)
            _save_table(parent)
    _save_table(self)
2013-03-14 11:01:47 +02:00
Claude Paroz
50eb70b08f Fixed #20032 -- Documented how to simulate the absence of a setting
Thanks Ram Rachum for the report.
2013-03-13 23:14:26 +01:00
Pablo Sanfilippo
bd68f701b1 Fixed an erroneous import in example code. 2013-03-13 14:16:27 -03:00
Aymeric Augustin
5d8342f321 Proof-read and adjusted the transactions docs. 2013-03-13 15:17:41 +01:00
Aymeric Augustin
83a416f5e7 Made atomic usable when autocommit is off.
Thanks Anssi for haggling until I implemented this.

This change alleviates the need for atomic_if_autocommit. When
autocommit is disabled for a database, atomic will simply create and
release savepoints, and not commit anything. This honors the contract of
not doing any transaction management.

This change also makes the hack to allow using atomic within the legacy
transaction management redundant.

None of the above will work with SQLite, because of a flaw in the design
of the sqlite3 library. This is a known limitation that cannot be lifted
without unacceptable side effects eg. triggering arbitrary commits.
2013-03-13 15:17:40 +01:00
Tim Graham
e1bafdbffa Fixed #19965 - Added a warning that the tutorial is written for Python 2.
Thanks itsallvoodoo for the patch.
2013-03-12 08:04:32 -04:00
Ramiro Morales
7e26f4cb79 Fixed broken link in binary fields doc. 2013-03-11 22:09:21 -03:00