django.git/docs/topics/auth/default.txt, branch 5.0.10 django http://cgit.adnoto.dev/django.git/atom?h=5.0.10 2024-09-03T12:33:01Z [5.0.x] Fixed CVE-2024-45231 -- Avoided server error on password reset when email sending fails. 2024-09-03T12:33:01Z Natalia 124304+nessita@users.noreply.github.com 2024-08-19T17:47:38Z urn:sha1:96d84047715ea1715b4bd1594e46122b8a77b9e2 On successful submission of a password reset request, an email is sent to the accounts known to the system. If sending this email fails (due to email backend misconfiguration, service provider outage, network issues, etc.), an attacker might exploit this by detecting which password reset requests succeed and which ones generate a 500 error response. Thanks to Thibaut Spriet for the report, and to Mariusz Felisiak, Adam Johnson, and Sarah Boyce for the reviews. [5.0.x] Applied Black's 2024 stable style. 2024-01-26T11:55:56Z Mariusz Felisiak felisiak.mariusz@gmail.com 2024-01-26T11:45:07Z urn:sha1:0379e7532fdf3212b1fe22a58826109c23009be3 https://github.com/psf/black/releases/tag/24.1.0 Backport of 305757aec19c9d5111e4d76095ae0acd66163e4b from main [5.0.x] Fixed typo in docs/topics/auth/default.txt. 2024-01-22T16:43:46Z Adrienne Franke 18449966+adriennefranke@users.noreply.github.com 2024-01-22T16:43:13Z urn:sha1:d490d009a32cd1fae80363b632f689785f5064b1 Backport of 8570e091d025c4aacc6b76597a3322030c2f8162 from main Refs #15619 -- Removed deprecated annotation about logging out via GET requests. 2023-09-14T17:49:06Z Mariusz Felisiak felisiak.mariusz@gmail.com 2023-09-14T17:49:06Z urn:sha1:e2a3a896cf0825a2da2347773c79ba7a341fe392 Follow up to 6c57c08ae52f86df843fccb5a3c1c6c45a10a26f. Fixed #34391 -- Added async-compatible interface to auth functions and related methods test clients. 2023-06-27T09:17:17Z Jon Janzen jon@jonjanzen.com 2023-02-11T01:43:26Z urn:sha1:5e98959d9242c57a55c65847758781f82d386fa4 Used extlinks for PyPI links. 2023-04-17T04:55:32Z Tim Graham timograham@gmail.com 2023-04-16T23:14:09Z urn:sha1:2c4dc6476083c853b654e462c7ff65dbe0334c9e Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com> Fixed #31920 -- Made AuthenticationMiddleware add request.auser(). 2023-03-07T12:11:22Z Jon Janzen jon@jonjanzen.com 2023-02-13T23:24:35Z urn:sha1:e846c5e7246a0ffbe5dcf07a2b6c7c2a47537eb3 Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01T12:03:56Z django-bot ops@djangoproject.com 2023-02-28T19:53:28Z urn:sha1:14459f80ee3a9e005989db37c26fd13bb6d2fab2 Refs #34140 -- Corrected rst code-block and various formatting issues in docs. 2023-02-28T11:21:37Z Joseph Victor Zammit jvzammit@gmail.com 2023-01-23T20:29:05Z urn:sha1:ba755ca13123d2691a0926ddb64e5d0a2906a880 Refs #34140 -- Applied rst code-block to non-Python examples. 2023-02-10T18:19:13Z Carlton Gibson carlton.gibson@noumenal.es 2023-02-09T15:48:46Z urn:sha1:534ac4829764f317cf2fbc4a18354fcc998c1425 Thanks to J.V. Zammit, Paolo Melchiorre, and Mariusz Felisiak for reviews.