Tim Graham
|
011a54315e
|
Made is_safe_url() reject URLs that start with control characters.
This is a security fix; disclosure to follow shortly.
|
2015-03-18 19:20:07 -04:00 |
|
Lukas Klein
|
93b3ef9b2e
|
Fixed #24321 -- Improved utils.http.same_origin compliance with RFC6454
|
2015-02-12 08:58:35 +01:00 |
|
Tim Graham
|
0ed7d15563
|
Sorted imports with isort; refs #23860.
|
2015-02-06 08:16:28 -05:00 |
|
Tim Graham
|
69b5e66738
|
Fixed is_safe_url() to handle leading whitespace.
This is a security fix. Disclosure following shortly.
|
2015-01-13 13:03:06 -05:00 |
|
Berker Peksag
|
f7969b0920
|
Fixed #23620 -- Used more specific assertions in the Django test suite.
|
2014-11-03 11:56:37 -05:00 |
|
Loic Bistuer
|
3c6ac0bab8
|
Consolidated some text utils into the utils_tests test package.
|
2014-09-23 19:45:59 +07:00 |
|
Ian Foote
|
03d89168a2
|
Fixed #23333 -- Made urlsafe_base64_decode() return proper type on Python 3.
|
2014-08-22 20:07:12 -04:00 |
|
Tim Graham
|
89b9e6e5d6
|
Fixed #22909 -- Removed camelCasing in some tests.
Thanks brylie.
|
2014-07-07 19:08:42 -04:00 |
|
Erik Romijn
|
255449c1ee
|
Added additional checks in is_safe_url to account for flexible parsing.
This is a security fix. Disclosure following shortly.
|
2014-05-14 10:19:48 +02:00 |
|
Aymeric Augustin
|
3800f63721
|
Dropped fix_IE_for_vary/attach.
This is a security fix. Disclosure following shortly.
|
2014-05-14 10:19:48 +02:00 |
|
Larry O'Neill
|
83b9bfea44
|
Fixed #21266 -- Fixed E201,E202 pep8 warnings.
|
2013-10-14 18:12:00 -04:00 |
|
Aymeric Augustin
|
365c3e8b73
|
Replaced "not PY3" by "PY2", new in six 1.4.0.
|
2013-09-02 12:11:02 +02:00 |
|
Aymeric Augustin
|
cfcf4b3605
|
Stopped using django.utils.unittest in the test suite.
Refs #20680.
|
2013-07-01 14:29:33 +02:00 |
|
Preston Timmons
|
612ef3e5c9
|
Modified utils_tests for unittest2 discovery.
|
2013-04-12 15:31:58 -06:00 |
|