mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-03-27 17:50:46 +00:00
Code Issues 32 Releases Wiki Activity
15,913 Commits 29 Branches 438 Tags
Commit Graph

15913 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tim Graham
d7a06ee7e5 [1.6.x] Fixed DoS possibility in ModelMultipleChoiceField. 
This is a security fix. Disclosure following shortly.

Thanks Keryn Knight for the report and initial patch.
 2015-01-13 13:10:11 -05:00
Tim Graham
553779c405 [1.6.x] Prevented views.static.serve() from using large memory on large files. 
This is a security fix. Disclosure following shortly.
 2015-01-13 13:10:11 -05:00
Tim Graham
72e0b03366 [1.6.x] Fixed is_safe_url() to handle leading whitespace. 
This is a security fix. Disclosure following shortly.
 2015-01-13 13:10:11 -05:00
Carl Meyer
d7597b31d5 [1.6.x] Stripped headers containing underscores to prevent spoofing in WSGI environ. 
This is a security fix. Disclosure following shortly.

Thanks to Jedediah Smith for the report.
 2015-01-13 13:10:11 -05:00
Tim Graham
f143e25883 [1.6.x] Added stub release notes for security releases. 2015-01-13 13:10:11 -05:00
Collin Anderson
a1a230382d [1.6.x] Fixed bad model example in admin docs. 
Backport of e7771ec380a116dbef481001fb1ce664f5c7311e from master
 2015-01-13 11:54:05 -05:00
Tim Graham
5e45c4f7c2 [1.6.x] Added 1.4.18 release notes. 
Backport of ce17b045bf5629aac66f872c3f548205906e04db from master
 2015-01-05 14:25:41 -05:00
Bibhas
3b76a82a26 [1.6.x] Fixed #24070 -- Added tutorial topics to doc index. 
Backport of b738178825ec9378198d77ac69699513774f0884 from master
 2015-01-03 08:49:17 -05:00
Tim Graham
8d21fee7ab [1.6.x] Post-release version bump. 2015-01-02 21:50:42 -05:00
Tim Graham
4747c2f17f [1.6.x] Bumped version for 1.6.9 release. 1.6.9 2015-01-02 20:40:43 -05:00
Tim Graham
22d3048676 [1.6.x] Added dates to release notes. 
Backport of 15cd71ed24945ff7be5716580603fd65c0d45ef7 from master
 2015-01-02 19:20:59 -05:00
Tim Graham
0114b9df13 [1.6.x] Updated six to 1.9.0. 
Backport of 52f0b2b62262743d5f935ddae29428e661b5d8ea from master
 2015-01-02 13:33:46 -05:00
Tim Graham
e17d98ff02 [1.6.x] Removed doc note about PasswordResetForm requiring an integer PK. 
This limitation was lifted in refs #14881.

Backport of a7aaabfaf1fa4c20065ab1133d49f40d4de6b409 from master
 2015-01-01 11:41:52 -05:00
Tim Graham
116d2098f6 [1.6.x] Fixed #24056 -- Fixed syntax highlighting in topics/testing/tools.txt. 
Backport of 3d0c3a0482496fc1914a40ec3c3eb70e67f0d643 from master
 2014-12-27 19:51:38 -05:00
Helen Sherwood-Taylor
2d0ae995d6 [1.6.x] Fixed #24041 -- Documented effect of changing a model instance's primary key. 
Backport of 4ccdf6e57f49d7e981dcd88c1db65229b8b92487 from master
 2014-12-24 15:07:32 -05:00
Frankie Robertson
70c965ad4f [1.6.x] Fixed #24035 -- Clarified docs on CACHE_MIDDLEWARE_KEY_PREFIX vs KEY_PREFIX 
Backport of 446b50b90e9e60760618b236d8b0ea75a3b19d5a from master
 2014-12-23 14:40:40 -05:00
David Cramer
d237aaa929 [1.6.x] Corrected scoping of savepoint example 
Backport of 27f68f8659a648cc9ed3e71f690959ed8a130c5a from master
 2014-12-22 07:51:19 -05:00
Tim Graham
0e3626260d [1.6.x] Added upgrade instructions for deprecated model _meta permission methods. 
Backport of a3d96bee36040975ded8e3bf02e33e48d06f1f16 from master
 2014-12-19 19:12:54 -05:00
Tim Graham
ab6df6419c [1.6.x] Removed need to update Python version support note on each new release. 
Backport of 0c06f06131c613dc4173c83ea17c68c31835fc71 from master
 2014-12-18 11:58:31 -05:00
Tim Graham
79561e7c3b [1.6.x] Corrected indentation in docs to prevent inadvertent blockquote. 
Backport of c2d8da7555e3fef30c43f3ffe2e8963ca1f9fdd5 from stable/1.7.x
 2014-12-18 11:35:35 -05:00
Markus Holtermann
b6c05b2b94 [1.6.x] Fixed display of lists after website redesign 
Thanks Brian Jacobel for the report. refs django/djangoproject.com#197

Backport of c7786550c4ed396b8580db58f7da60e850894d19 from master
 2014-12-17 08:26:36 -05:00
Alex Gaynor
3ac7d83ba5 [1.6.x] Fixed the formatting of one section of the security page 
Backport of 104aaab7049afc6ef456fee52763f6d4f7dd575d from master
 2014-12-16 19:01:29 -05:00
Tim Graham
89f9bf61bb [1.6.x] Updated advice on six.moves.range/xrange; refs #23812. 
Backport of bc88ec550afd5ce972b8c902572c6447d89c0cc9 from master
 2014-12-13 13:42:51 -05:00
Yohan Boniface
ec861bca69 [1.6.x] Fixed incorrect filter name in docs/topics/i18n/translation.txt. 
Backport of 38fc463fbfb9b74c38f1e8c33e4c99bc2274a880 from master
 2014-12-11 12:12:36 -05:00
Tim Graham
5fb7086b6b [1.6.x] Fixed #23974 -- Clarified wording of FileField.save/delete save parameter. 
Thanks GreenAsJade.

Backport of 1aa41dd000e0779c8b1de1f8e7aa4a0f2f752655 from master
 2014-12-08 13:18:32 -05:00
Jon Dufresne
30a12d6ca6 [1.6.x] Refs #23964 -- Added warning about case-insensitive, unique fields used with formsets 
Backport of 4d27d72d149b714431b77f2f15bad1591a9602b7 from master
 2014-12-08 12:58:40 -05:00
Vladimir Rutsky
43c55a7d4e [1.6.x] Fixed typo in docs/howto/deployment/wsgi/uwsgi.txt. 
Backport of 1a408e42eef34d8302da06fcbeaccfa6395d1c92 from master
 2014-12-07 12:26:26 -05:00
Tim Graham
e24ec760f1 [1.6.x] Fixed #23965 -- Mentioned that FieldFile inherits from File 
Backport of 5281d9620d13386fd4403f7aa6b9a2afd9b5a93f from master
 2014-12-06 11:52:26 -05:00
wrwrwr
62048bcd62 [1.6.x] Cleaned up a note in docs/topics/db/sql.txt. 
Backport of 34a06d99e0fc96a0f0648bfde141d342e963e971 from master
 2014-12-06 09:26:20 -05:00
Tim Graham
9abfe2c02d [1.6.x] Corrected example in Form.has_changed() docs. 
Backport of ebfadb808043c689b19cfee818c10f63866ee8fc from master
 2014-12-05 13:18:00 -05:00
Young Yang
fdbe038ced [1.6.x] Fixed #23955 -- Corrected formset fields in topic guide. 
Backport of f0c7a6f36005d489e049236922abe0bd3a3eac2c from master
 2014-12-05 11:33:20 -05:00
Tim Graham
7e47c3e6af [1.6.x] Fixed typo in aggregation docs. 2014-12-03 20:11:24 -05:00
Benjamin Bach
a87ade7e30 [1.6.x] Documented a current limitation of multiple table annotation; refs #10060. 
Backport of 4b23a6c7a9232cc07ec95fe98be17efbd4449822 from master
 2014-12-03 19:19:41 -05:00
Theodoros Ikonomou
51dff0f588 [1.6.x] Fixed typo in docs/ref/request-response.txt. 
Backport of 49d034fff21213b369c08b39772e0437c3cc723b from master
 2014-12-03 18:45:16 -05:00
Simon Charette
2fd16232b1 [1.6.x] Fixed #23754 -- Always allowed reference to the primary key in the admin 
This change allows dynamically created inlines "Add related" button to work
correcly as long as their associated foreign key is pointing to the primary
key of the related model.

Thanks to amorce for the report, Julien Phalip for the initial patch,
and Collin Anderson for the review.

Backport of f9c4e14aeca7df79991bca8ac2d743953cbd095c from master
 2014-11-25 13:48:50 -05:00
Simon Charette
c3a40af6ec [1.6.x] Added warning about get_inline_instances() permission checking; refs #23754. 
Backport of e0d1f2684ae60573b209783f9fd4f9db163ad704 from master
 2014-11-25 13:15:06 -05:00
Luke Plant
3c317064d8 [1.6.x] Further fixes to the migration notes for get_query_set 
This rename is very tricky for the case of subclasses which define
get_query_set and haven't been updated yet, which applies to all projects in
the form of RelatedManager from Django 1.5.

Backport of 0c623da66406d1f20b5e26d497d57da5ad0de066 from master
 2014-11-24 15:36:46 +00:00
Danilo Bargen
276332d85c [1.6.x] Fixed #23543 -- Added docs on testing management command output. 
Backport of cdee8659763ee7044c1507bcd2202581b1744f0b from master
 2014-11-24 10:29:24 -05:00
Luke Plant
1fa2e7aba1 [1.6.x] Better migration docs for get_query_set -> get_queryset 
This way they won't need to fix things again when get_query_set disappears

Backport of 91e2780dfba5609b0f83d51aee1cf7e8fe78b1f7 from master
 2014-11-24 10:13:17 +00:00
Kevin Ndung'u
db227d9d20 [1.6.x] Fixed #23900 -- Added missing imports in code example. 
The Preventing header injection example included
classes that are not imported.

Thanks to Collin Anderson and Berker Peksağ for the
reviews.

Backport of 0d74209ef66111f29f122d5f5fdf8e2964890cc5 from master.
 2014-11-23 23:08:41 +01:00
Alasdair Nicol
61be9373af [1.6.x] Added missing backticks to form validation docs 
Backport of 38ab0f13fac428dd05dad02ef7c94da5035927ad from master
 2014-11-20 11:10:09 -05:00
Michal Petrucha
614dd44d0d [1.6.x] Fixed #23817 -- Updated docs on QuerySet evaluation 
Removed inaccurate info about partial evaluation after refs #18702.
Added information on modifying sliced QuerySets; refs #22503.

Backport of 327df551e89a505c5756becee97c40198f38aff2 from master
 2014-11-20 09:35:41 -05:00
Peter Sagerson
2e7ca09940 [1.6.x] Fixes a race condition in the documentation. 
The example for django.contrib.admin.ModelAdmin.get_form modifies
self.exclude. However, since ModelAdmin instances are global and have no
thread- or request-locality, this is not safe for concurrent
requests.[1] This updated documentation demonstrates a safe method to
override admin forms on a per-request basis.

[1] https://groups.google.com/forum/#!topic/django-users/AmoUDtEefyA

Backport of 0d1a9d203a970a82a2f81edf0ba7d4b55442fd78 from master
 2014-11-16 14:33:29 +01:00
Erik Romijn
7323e15d87 [1.6.x] Fixed #23793 -- Clarified password reset behavior in auth docs 
Backport of c5132382f081bd1b5a3618bbf23fa0cf720af14b from master.
 2014-11-15 17:46:41 +01:00
Berker Peksag
159978e5c0 [1.6.x] Fixed #23665 -- Noted precedence of settings.USE_L10N in MONTH_DAY_FORMAT and YEAR_MONTH. 
Backport of 4f90c99635149fae2f488c03f0b52303fe97e0aa from master
 2014-11-15 09:56:35 +01:00
Tim Graham
f31e9c7a9d [1.6.x] Removed thread customizations of six which are now built-in. 
Backport of 7ef81b5cdd4c8eda12aa7786484a0bfde00aaaa4 from master
 2014-11-13 11:34:59 +01:00
Tim Graham
b078ccf8bf [1.6.x] Fixed #23774 -- Clarified QuerySet.order_by() and related models. 
Backport of 11b7680d0e from master
 2014-11-12 22:01:12 +01:00
aruseni
bcdfa0eb9a [1.6.x] Fixed a typo in 1.6 release notes. 
Backport of 006451f894 from master
 2014-11-10 15:39:09 +01:00
Tim Graham
df47f0c918 [1.6.x] Fixed #23785 -- Typo in docs/releases/1.6.txt 
Backport of 091f5b5a4e from master
 2014-11-09 22:12:21 +01:00
Tim Graham
61f20b42cd [1.6.x] Updated six to 1.8.0. 
Backport of 81477c91f6 from master
 2014-11-04 21:25:08 -05:00