mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-07-18 16:49:13 +00:00
Code Issues 32 Releases Wiki Activity
27,779 Commits 29 Branches 451 Tags
Commit Graph

440 Commits

Author SHA1 Message Date
Harpreet Sharma
08063f0122 [3.0.x] Fixed #31821 -- Removed outdated note in FILE_UPLOAD_PERMISSIONS docs. 
Follow up to 22aab8662f0368b63f91f2526bdd0532524bc0fe

Backport of 248d03fbe932b0844c628e56dafba334f9e028e4 from master
 2020-07-23 21:01:10 +02:00
Buk Bukowski
f4b7996e9b [3.0.x] Fixed #31814 -- Fixed typo in docs/ref/settings.txt. 
Backport of f65454801bfa13fc043fee0aca8f49af41380683 from master
 2020-07-22 22:39:55 +02:00
Adam Johnson
bcb511f9d8 [3.0.x] Improved description of USE_THOUSAND_SEPARATOR setting. 
Backport of 80f92177eb2a175579f4a6907ef5a358863bddca from master
 2020-07-20 12:56:11 +02:00
Hasan Ramezani
b61af177ee [3.0.x] Fixed #31696 -- Updated OWASP links in docs. 
Backport of a16080810bee8b3baf9ae7ac7b8433cb7b293e00 from master
 2020-06-15 09:45:45 +02:00
René Fleschenberg
f175e03fc2 [3.0.x] Refs #23097 -- Used new octal format in FILE_UPLOAD_PERMISSIONS docs. 
Backport of f24b59267be2e5fc5bd1252efda3aed19f860813 from master
 2020-05-25 21:04:49 +02:00
Mariusz Felisiak
e19ab18773 [3.0.x] Fixed broken links in docs. 
Backport of b28be08cac1f7cde332ca43db65bb733fa3f9bf5 from master
 2020-04-28 10:10:15 +02:00
Hasan Ramezani
a6cc8b80cb [3.0.x] Fixed #31400 -- Doc'd the expected type of CONN_MAX_AGE database option. 
Backport of bec4dea844332390aecd72f22afc6673a3f5f5fc from master
 2020-03-27 07:02:09 +01:00
Abhijeet
7d48a4b703 [3.0.x] Fixed #31126 -- Doc'd STATICFILES_DIRS namespacing in static files how-to. 
Backport of a45c8d7ad04b73e33b6989c3ffa2b8c51ae3e83b from master
 2020-01-29 10:36:52 +01:00
Baptiste Mispelon
81ddf4b164 [3.0.x] Fixed #31029 -- Used more specific links to RFCs. 
Backport of ff1b19da6761217ed1b14cc7e94c6438903565d8 from master
 2019-11-28 07:59:46 +01:00
Jon Dufresne
b75a268c07 [3.0.x] Added a link to the file email backend from EMAIL_FILE_PATH setting. 
Backport of c8debd50617142937191986aec77a5eee472c28e from master
 2019-11-06 08:38:17 +01:00
René Fleschenberg
e0a869b208 [3.0.x] Clarified that SECURE_REDIRECT_EXEMPT patterns should not include leading slashes. 
Backport of d232fd76a85870daf345fd8f8d617fe7802ae194 from master
 2019-10-11 16:07:05 +02:00
Ben Falk
e0bb9092d1 [3.0.x] Fixed typos in docs/ref/settings.txt. 
Backport of 4056558a1c9cf650ab6e7cb1a319206d2e8c770f from master
 2019-09-13 20:37:22 +02:00
Nick Pope
406dba04e1 Fixed #29406 -- Added support for Referrer-Policy header. 
Thanks to James Bennett for the initial implementation.
 2019-09-09 13:35:41 +02:00
Claude Paroz
05d0eca635 Fixed #30426 -- Changed X_FRAME_OPTIONS setting default to DENY. 2019-09-09 08:15:26 +02:00
Tobias Kunze
4a954cfd11 Fixed #30573 -- Rephrased documentation to avoid words that minimise the involved difficulty. 
This patch does not remove all occurrences of the words in question.
Rather, I went through all of the occurrences of the words listed
below, and judged if they a) suggested the reader had some kind of
knowledge/experience, and b) if they added anything of value (including
tone of voice, etc). I left most of the words alone. I looked at the
following words:

- simply/simple
- easy/easier/easiest
- obvious
- just
- merely
- straightforward
- ridiculous

Thanks to Carlton Gibson for guidance on how to approach this issue, and
to Tim Bell for providing the idea. But the enormous lion's share of
thanks go to Adam Johnson for his patient and helpful review.
 2019-09-06 13:27:46 +02:00
Claude Paroz
0468159763 Refs #30426 -- Changed default SECURE_CONTENT_TYPE_NOSNIFF to True. 2019-08-18 13:17:49 +02:00
Adnan Umer
c5075360c5 Fixed #30680 -- Removed obsolete system check for SECURE_BROWSER_XSS_FILTER setting. 2019-08-05 18:44:08 +02:00
Carlton Gibson
54d0f5e62f Fixed CVE-2019-12781 -- Made HttpRequest always trust SECURE_PROXY_SSL_HEADER if set. 
An HTTP request would not be redirected to HTTPS when the
SECURE_PROXY_SSL_HEADER and SECURE_SSL_REDIRECT settings were used if
the proxy connected to Django via HTTPS.

HttpRequest.scheme will now always trust the SECURE_PROXY_SSL_HEADER if
set, rather than falling back to the request scheme when the
SECURE_PROXY_SSL_HEADER did not have the secure value.

Thanks to Gavin Wahl for the report and initial patch suggestion, and
Shai Berger for review.
 2019-07-01 07:48:04 +02:00
Mykola Nicholas
f3a03d5b61 Changed charset and collation link to MySQL docs. 2019-06-11 11:16:27 +02:00
Mariusz Felisiak
b6c4766f53
Refs #29548 -- Updated docs for MariaDB support. 2019-05-27 19:59:49 +02:00
Matthias Kestenholz
80482e9249 Fixes #30342 -- Removed a system check for LANGUAGES_BIDI setting. 
This partly reverts commit 4400d8296d268f5a8523cd02ddc33b12219b2535.
 2019-04-24 10:54:03 +02:00
Ran Benita
19fc6376ce
Fixed #30304 -- Added support for the HttpOnly, SameSite, and Secure flags on language cookies. 2019-04-08 11:26:06 +02:00
Mariusz Felisiak
4cbe2b06ce
Fixed typo in docs/ref/settings.txt. 2019-04-02 09:10:11 +02:00
Nick Pope
198a2a9381 Removed unnecessary /static from links to PostgreSQL docs. 2019-03-29 21:49:44 -04:00
Tim Graham
879cc3da62 Moved extlinks in docs config to allow using 'version' variable. 
After a stable branch is created, 'master' will change to
'stable/' + version + '.x'.
 2019-03-28 20:47:51 -04:00
Tim Graham
a68c029e22
Used extlinks for Django's source code. 2019-03-28 20:32:17 -04:00
Nick Pope
07daa487ae Refs #1660 -- Doc'd the LANGUAGES_BIDI setting. 2019-03-28 20:04:24 +01:00
Nick Pope
398afba084 Updated spelling and RFCs in HttpOnly cookie flag docs. 2019-03-27 10:09:23 -04:00
Himanshu Lakhara
22aab8662f Fixed #30004 -- Changed default FILE_UPLOAD_PERMISSION to 0o644. 2019-02-08 14:53:15 -05:00
Aymeric Augustin
3bb6a4390c Refs #27753 -- Favored force/smart_str() over force/smart_text(). 2019-02-06 14:12:06 -05:00
Tim Graham
b709d70130 Simplified and corrected LOGIN_URL, LOGIN_REDIRECT_URL, and LOGOUT_REDIRECT_URL docs. 2019-02-05 19:45:29 -05:00
Carlton Gibson
bae66e759f Fixed #30091 -- Doc'd middleware ordering requirements with CSRF_USE_SESSIONS. 2019-01-30 11:02:26 -05:00
Tim Graham
8045dff98c Refs #27829 -- Removed settings.DEFAULT_CONTENT_TYPE per deprecation timeline. 2019-01-17 10:50:25 -05:00
Tim Graham
ec7e179aeb Removed versionadded/changed annotations for 2.1. 2019-01-17 10:50:25 -05:00
Tim Graham
4c7c608a1d Reverted "Fixed #25251 -- Made data migrations available in TransactionTestCase when using --keepdb." 
This reverts commits b3b1d3d45fc066367f4fcacf0b06f72fcd00a9c6 and
9fa0d3786febf36c87ef059a39115aa1ce3326e8 due to reverse build failures
for which a solution isn't forthcoming.
 2018-12-05 15:30:23 -05:00
Mariusz Felisiak
ff8020ed49 Fixed #29788 -- Added support for Oracle Managed File (OMF) tablespaces. 2018-11-13 18:22:41 -05:00
romgar
b3b1d3d45f Fixed #25251 -- Made data migrations available in TransactionTestCase when using --keepdb. 
Data loaded in migrations were restored at the beginning of each
TransactionTestCase and all the tables are truncated at the end of
these test cases. If there was a TransactionTestCase at the end of
the test suite, the migrated data weren't restored in the database
(especially unexpected when using --keepdb). Now data is restored
at the end of each TransactionTestCase.
 2018-11-06 16:57:50 -05:00
Mayank Singhal
76b3367035 Fixed #29879 -- Added CSRF_COOKIE_HTTPONLY to CSRF AJAX docs. 2018-10-25 11:39:52 -04:00
Jon Dufresne
0cd465b63a Fixed #29817 -- Deprecated settings.FILE_CHARSET. 2018-10-15 17:15:41 -04:00
Kate Berry
b8b1d8cad6 Improved tone in docs/ref/settings.txt. 2018-10-04 11:35:19 -04:00
Jon Dufresne
82f286cf6f Refs #29784 -- Switched to https:// links where available. 2018-09-26 08:48:47 +02:00
Jon Dufresne
8c3e0eb1c1 Normalized spelling of "lowercase" and "lowercased". 2018-09-25 10:30:18 -04:00
Claude Paroz
e8531cc89c Prevented unexpected link in settings docs 2018-06-10 15:11:39 +02:00
Tim Graham
5cc81cd9eb Reverted "Fixed #29324 -- Made Settings raise ImproperlyConfigured if SECRET_KEY is accessed and not set." 
This reverts commit b3cffde5559c4fa97625512d7ec41a674be26076 due to
a regression and performance concerns.
 2018-05-26 21:06:58 -04:00
Tim Graham
7543ab1f8d Removed versionadded/changed annotations for 2.0. 2018-05-17 11:00:10 -04:00
Jon Dufresne
b3cffde555 Fixed #29324 -- Made Settings raise ImproperlyConfigured if SECRET_KEY is accessed and not set. 2018-04-17 13:02:05 -04:00
Alex Gaynor
9a56b4b13e Fixed #27863 -- Added support for the SameSite cookie flag. 
Thanks Alex Gaynor for contributing to the patch.
 2018-04-13 20:58:31 -04:00
Tim Graham
5b589a47b9
Fixed #29161 -- Removed BCryptPasswordHasher from PASSWORD_HASHERS. 2018-02-26 09:05:18 -05:00
Ashaba
95fd5cf459 Fixed #28403 -- Added missing formats in FORMAT_MODULE_PATH docs. 2018-01-24 13:38:15 -05:00
Frédéric Massart
a5f1e5809f Clarified who the AdminEmailHandler emails. 2017-11-21 11:49:15 -05:00