mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-10-31 01:25:32 +00:00
Code Issues 32 Releases Wiki Activity
30,103 Commits 30 Branches 460 Tags
4c5215ab036aa8fda9cd0148fd034f4d8f7d69d1
Commit Graph

267 Commits

Author SHA1 Message Date
Ran Benita
19fc6376ce Fixed #30304 -- Added support for the HttpOnly, SameSite, and Secure flags on language cookies. 2019-04-08 11:26:06 +02:00
Nick Pope
6b4e57d79f Refs #30324 -- Forced utf-8 encoding when loading templates for the technical 404 debug and congrats page. 2019-04-05 16:35:01 +02:00
Nick Pope
efb257a017 Fixed #30324 -- Forced utf-8 encoding when loading the template for the technical 500 debug page. 
Regression in 50b8493.
Related to ea542a9.
 2019-04-05 16:35:01 +02:00
Claude Paroz
a8e2a9bac6 Refs #15902 -- Deprecated storing user's language in the session. 2019-02-14 10:23:02 -05:00
Vinay Karanam
3634560fa9 Fixed #29393 -- Prevented infinite loop in ExceptionReporter.get_traceback_frames(). 2019-02-02 16:39:36 -05:00
Tim Graham
7e6b214ed3 Fixed #30116 -- Dropped support for Python 3.5. 2019-01-30 10:19:48 -05:00
Claude Paroz
16454ac35f Fixed #29825 -- Fixed JS ngettext if the string is a non-plural msgid in the catalog. 2019-01-28 21:04:36 +01:00
Tim Graham
8045dff98c Refs #27829 -- Removed settings.DEFAULT_CONTENT_TYPE per deprecation timeline. 2019-01-17 10:50:25 -05:00
Simon Charette
8c775391b7 Refs #28478 -- Deprecated TestCase's allow_database_queries and multi_db in favor of databases. 2019-01-10 19:11:21 -05:00
Tim Graham
0004daa536 Used 4 space hanging indent for dictionaries. 
Thanks Mariusz Felisiak for auditing.
 2019-01-02 18:18:19 -05:00
Tim Graham
043bd70942 Updated test URL patterns to use path() and re_path(). 2018-12-31 10:47:32 -05:00
Simon Charette
0f212db29d Made reused RequestFactory instances class attributes. 2018-11-27 09:49:02 -05:00
Hasan Ramezani
55b0b766fb Completed test coverage of views.defaults.bad_request(). 2018-10-25 20:03:58 -04:00
Hasan Ramezani
6a8b57df6a Completed test coverage of views.static.directory_name(). 2018-10-23 20:44:27 -04:00
Jon Dufresne
99d4fc18bd Refs #27829 -- Added warning for settings.DEFAULT_CONTENT_TYPE usage outside of Django. 2018-10-15 16:31:39 -04:00
Claude Paroz
2a74ceb5f3 Fixed #24336 -- Made django.conf.urls.static() ignore all absolute URLs 2018-07-24 09:32:33 +02:00
Tim Graham
7cdeb23ae7 Fixed #29511 -- Added charset to JavaScriptCatalog's Content-Type header. 2018-06-22 09:15:29 +02:00
Claude Paroz
523e04dfeb Captured logging in tests with self.assertLogs(). 2018-05-07 09:34:02 -04:00
Claude Paroz
607970f31c Replaced django.test.utils.patch_logger() with assertLogs(). 
Thanks Tim Graham for the review.
 2018-05-07 09:34:00 -04:00
Tim Graham
fa75b2cb51 Refs #27795 -- Removed force_bytes/text() usage in tests. 2018-02-07 14:20:04 -05:00
Claude Paroz
b3cd9fb18b Refs #15902 -- Made set_language() view always set the current language in a cookie. 
The plan is to later deprecate/remove storing the language in the session.
 2018-01-03 11:25:40 -05:00
Tim Graham
a862af3839 Fixed #28893 -- Removed unnecessary dict.items() calls. 2017-12-06 17:17:59 -05:00
Tim Graham
941b0a5b33 Fixed #28708 -- Added constants to detect the Python version. 2017-10-13 10:11:15 -04:00
Sjoerd Job Postmus
df41b5a05d Fixed #28593 -- Added a simplified URL routing syntax per DEP 0201. 
Thanks Aymeric Augustin for shepherding the DEP and patch review.
Thanks Marten Kenbeek and Tim Graham for contributing to the code.
Thanks Tom Christie, Shai Berger, and Tim Graham for the docs.
 2017-09-20 18:04:42 -04:00
Tim Graham
46e2b9e059 Fixed CVE-2017-12794 -- Fixed XSS possibility in traceback section of technical 500 debug page. 
This is a security fix.
 2017-09-05 10:58:38 -04:00
Martin von Gagern
71d39571f4 Fixed #28485 -- Made ExceptionReporter.get_traceback_frames() include frames without source code. 2017-08-12 20:32:39 -04:00
Timothy Allen
5fe9b7b40a Fixed #28457 -- Updated the design of the 'Congrats' page for new Django projects. 
Developed by Timothy Allen and Chad Whitman of The Wharton School with
shepherding from Aymeric Augustin and Collin Anderson.
 2017-08-07 10:33:55 -04:00
Tim Graham
d70432deae Refs #7697 -- Tested escaping of safe strings in the technical 500 debug view. 
Tests were omitted in the original commit: a56a226241.
 2017-08-02 15:56:47 -04:00
Tim Graham
293608a2e0 Refs #7697 -- Removed unnecessary force_escape of technical 500 debug view "unicode hint". 
The test passes before and after the removal. unicode_hint will never
be SafeText, so normal autoescaping is sufficient.
 2017-08-02 15:16:22 -04:00
Tim Graham
74b7a20fe6 Refs #5046 -- Tested the 'unicode hint' in the technical 500 debug view. 2017-08-02 15:07:26 -04:00
Flávio Juvenal
0af14b2eaa Refs #16870 -- Doc'd that CSRF protection requires the Referer header. 2017-06-22 11:50:00 -04:00
Tim Graham
e1cd5a76d7 Cosmetic edits to tests/view_tests/tests/test_csrf.py. 2017-06-22 09:30:40 -04:00
Claude Paroz
23142eea85 Fixed #18394 -- Added error for invalid JavaScriptCatalog packages 
Thanks Tim Graham for the review.
 2017-06-06 18:02:22 +02:00
partizan
ff099f9db8 Fixed #28271 -- Added charset to technical_500_response() AJAX response. 2017-06-05 14:43:40 -04:00
Jon Dufresne
2c69824e5a Refs #23968 -- Removed unnecessary lists, generators, and tuple calls. 2017-06-01 19:08:59 -04:00
Claude Paroz
2cbb095bec Fixed #28221 -- Fixed plural fallback translations in JavaScriptCatalog view 
Thanks Waldemar Kornewald for the report and initial patch.
 2017-05-25 22:47:21 +02:00
Claude Paroz
912ef7f49d Fixed validity of test django_js.po files 2017-05-18 14:33:18 +02:00
Claude Paroz
d842ada305 Refs #27795 -- Stopped converting integer format settings to str in JS/JSON i18n views 
Thanks Tim Graham for the review.
 2017-05-08 19:32:03 +02:00
Claude Paroz
e3a88c7797 Renamed django.views.i18n test cases 2017-05-08 19:29:27 +02:00
Tim Graham
56970c5b61 Fixed #28122 -- Fixed crash when overriding views.static.directory_index()'s template. 2017-04-25 11:01:21 -04:00
Tim Graham
8c6a3062dd Fixed #28079 -- Restored "No POST data" (rather than an empty table) in HTML debug page. 
Regression in 7b6dccc82f
 2017-04-15 09:21:35 -04:00
Claude Paroz
ea542a9c72 Fixed #28007 -- Moved debug templates to the filesystem 
Thanks Tim Graham for the review.
 2017-04-12 11:36:47 -04:00
Claude Paroz
2eb1f15f62 Tested template info in debug view's text traceback 2017-04-12 10:38:50 -04:00
Tim Graham
a1f948b468 Fixed CVE-2017-7234 -- Fixed open redirect vulnerability in views.static.serve(). 
This is a security fix.
 2017-04-04 10:42:06 -04:00
Claude Paroz
4f99ba84b3 Removed unused code in i18n view_tests 
Unused since 2b20e4148f.
 2017-04-02 19:58:18 +02:00
Tim Graham
b536dcf656 Fixed #27948 -- Removed incorrect unquote() in static serving views. 2017-03-17 07:55:00 -04:00
Tim Graham
75f0070a54 Fixed #27308 -- Fixed BytesWarnings in the test suite. 2017-02-17 16:04:45 -05:00
Tim Graham
80493b0871 Fixed #27829 -- Deprecated settings.DEFAULT_CONTENT_TYPE. 2017-02-16 07:59:44 -05:00
Tim Graham
500532c95d Refs #23919 -- Removed default 'utf-8' argument for str.encode()/decode(). 2017-02-09 09:03:47 -05:00
Claude Paroz
c651331b34 Converted usage of ugettext* functions to their gettext* aliases 
Thanks Tim Graham for the review.
 2017-02-07 09:04:04 +01:00