django.git/tests/regressiontests/csrf_tests/tests.py, branch main

django.git/tests/regressiontests/csrf_tests/tests.py, branch main django http://cgit.adnoto.dev/django.git/atom?h=main 2013-02-26T13:36:57Z Merged regressiontests and modeltests into the test root. 2013-02-26T13:36:57Z Florian Apolloner florian@apolloner.eu 2013-02-26T08:53:47Z urn:sha1:89f40e36246100df6a11316c31a76712ebc6c501 Added a new required ALLOWED_HOSTS setting for HTTP host header validation. 2013-02-19T18:23:29Z Carl Meyer carl@oddbird.net 2013-02-09T17:17:01Z urn:sha1:d51fb74360b94f2a856573174f8aae3cd905dd35 This is a security fix; disclosure and advisory coming shortly. Fixed #15808 -- Added optional HttpOnly flag to the CSRF Cookie. 2013-02-07T08:48:08Z Aymeric Augustin aymeric.augustin@m4x.org 2013-02-07T08:48:08Z urn:sha1:720888a14699a80a6cd07d32514b9dcd5b1005fb Thanks Samuel Lavitt for the report and Sascha Peilicke for the patch. [py3] Made csrf context processor return Unicode 2012-08-13T09:54:21Z Claude Paroz claude@2xlibre.net 2012-08-13T09:34:40Z urn:sha1:d774ad752d9844cb7a28fe338d4d711c8576ee6f Fixed #18269 -- Applied unicode_literals for Python 3 compatibility. 2012-06-07T16:08:47Z Claude Paroz claude@2xlibre.net 2012-06-07T16:08:47Z urn:sha1:4a103086d5c67fa4fcc53c106c9fdf644c742dd8 Thanks Vinay Sajip for the support of his django3 branch and Jannis Leidel for the review. Marked bytestrings with b prefix. Refs #18269 2012-05-19T15:43:34Z Claude Paroz claude@2xlibre.net 2012-05-19T15:43:34Z urn:sha1:38408f8007eae21b9f1cbbcc7f86d4b2042ff86a This is a preparation for unicode literals general usage in Django (Python 3 compatibility). Removed with_statement imports, useless in Python >= 2.6. Refs #17965. Thanks jonash for the patch. 2012-03-30T08:02:08Z Claude Paroz claude@2xlibre.net 2012-03-30T08:02:08Z urn:sha1:9383a2761c67d588378f3679cc6c8ea3651a73c8 git-svn-id: http://code.djangoproject.com/svn/django/trunk@17828 bcc190cf-cafb-0310-a4f2-bffc1f526a37 Fixes #16827. Adds a length check to CSRF tokens before applying the santizing regex. Thanks to jedie for the report and zsiciarz for the initial patch. 2012-02-11T04:18:15Z Paul McMillan Paul@McMillan.ws 2012-02-11T04:18:15Z urn:sha1:a77679dfaa963361b6daad6de0d7de1b53d4f104 git-svn-id: http://code.djangoproject.com/svn/django/trunk@17500 bcc190cf-cafb-0310-a4f2-bffc1f526a37 Fixed some failing tests due to creation of HttpRequest._is_secure() methods in [17209] 2011-12-17T00:17:26Z Adrian Holovaty adrian@holovaty.com 2011-12-17T00:17:26Z urn:sha1:6cca104be0ee81f817a1f3cd3d3f7210fa7cc420 git-svn-id: http://code.djangoproject.com/svn/django/trunk@17212 bcc190cf-cafb-0310-a4f2-bffc1f526a37 Convert much of the regression tests to use absolute imports. There's still work to be done though. 2011-10-13T18:51:33Z Alex Gaynor alex.gaynor@gmail.com 2011-10-13T18:51:33Z urn:sha1:d362c1546f8ad62811e5dee3cf0b43170e6e1c4c git-svn-id: http://code.djangoproject.com/svn/django/trunk@16976 bcc190cf-cafb-0310-a4f2-bffc1f526a37