| Age | Commit message (Collapse) | Author |
|
Refs commit 3f3d887a6844ec2db743fee64c9e53e04d39a368.
|
|
|
|
* Limit the password length to 4096 bytes
* Password hashers will raise a ValueError
* django.contrib.auth forms will fail validation
* Document in release notes that this is a backwards incompatible change
Thanks to Josh Wright for the report, and Donald Stufft for the patch.
This is a security fix; disclosure to follow shortly.
Backport of aae5a96d5754ad34e48b7f673ef2411a3bbc1015 from master.
|
|
Thanks Collin Anderson for the report.
Backport of 425d076d0c from master
|
|
Thanks EvilDMP for the report and Russell Keith-Magee
for the draft text.
Backport of da843e7dba from master
|
|
Fixed failing test introduced by 87d2750b39.
|
|
|
|
The {% ssi %} tag in Django 1.4 doesn't support spaces in its argument.
Skip the test if run from a location that contains a space.
|
|
|
|
Backport of baec6a26dd from master
|
|
paths.
Thanks Rainer Koirikivi for the report and draft patch.
This is a security fix; disclosure to follow shortly.
Backport of 7fe5b656c9 from master
|
|
To enable testing on Oracle 12c
|
|
Backport of the Oracle-specific part of commit a18e43c5bb8cb7c82
from master. This commit made get_indexes more consistent across
backends.
Thanks Tim Graham for pointer to the commit, akaariai and ikelly
for the original commit.
|
|
Just skip the failing test, the failure isn't really relevant; also,
both the test and the reason for its failure were removed in 1.5.
Thanks Tim Graham for advice on 1.5.
|
|
Backport of 1ae64e96c1 from master
|
|
Made a test checking ORM-generated query string case-insensitive.
Backport of ee0a7c741e from master
|
|
https now.
|
|
|
|
|
|
|
|
|
|
|
|
This is a security fix; disclosure to follow shortly.
|
|
Backport of 3f6cc33cff from master
|
|
Backport of a3a59a3197 from master
|
|
Thanks CollinAnderson for the report.
Backport of 7de35a9ef3 from master
|
|
Thanks gcbirzan for the report.
Backport of 8c9240222f from master
|
|
Thanks simonb for the report.
Backport of dab52d99fc from master
|
|
Changed to the URL of the official RFC for Atom, since Atomenabled.org
is just a holding page.
Backport of beefc97171 from master
|
|
Backport of a3242dc9fe from master
|
|
Thanks glarrain for the report.
Backport of 684a606a4e from master
|
|
Backport of 4d92a0bd86 from master
|
|
as a backwards incompatible change for 1.3
Thanks DrMeers for the report.
Backport of dab921751d from master
|
|
Backport of 5005303ae7919eef26dab9f8ba279696966ebf1d from master.
|
|
|
|
In Django < 1.6, override_settings restores the settings module that was
active when the override_settings call was executed, not when it was
run. This can make a difference when override_settings is applied to a
class, since it's executed when the module is imported, not when the
test case is run.
In addition, if the settings module for tests is stored alongside the
tests themselves, importing the settings module can trigger an import
of the tests. Since the settings module isn't fully imported yet,
class-level override_settings statements may store a reference to an
incorrect settings module. Eventually this will result in a crash during
test teardown because the settings module restored by override_settings
won't the one that was active during test setup.
While Django should prevent this situation in the future by failing
loudly in such dubious import sequences, that change won't be backported
to 1.5 and 1.4. However, these versions received the "allowed hosts"
patch and they're prone to "AttributeError: 'Settings' object has no
attribute '_original_allowed_hosts'". To mitigate this regression, this
commits stuffs _original_allowed_hosts on a random module instead of the
settings module.
This problem shouldn't occur in Django 1.6, see #20290, but this patch
will be forward-ported for extra safety.
Also tweaked backup variable names for consistency.
Backport of 0261922 from stable/1.5.x.
Conflicts:
django/test/utils.py
|
|
Thanks tris@ for the report.
Backport of 646a2216e9 from master
|
|
Chicago was missing.
Backport of e6ff238 from master.
|
|
Thanks sane4ka.sh@ for the report.
Backport of 1fdc3d256d from master
|
|
Backport of fbab3209fc from master
|
|
Backport of 81f454a322 from master
|
|
Backport of d258cce482 from master
|
|
Backport of 17d57275f9 from master
|
|
Backport of 33503600b5 from master
|
|
Backport of 485c024567 from master
|
|
|
|
Document password truncation with BCryptPasswordHasher
|
|
|
|
Thanks Randy Salvo for the report.
|
|
Thanks dahool for the report and initial version of the patch.
Backport of 633d8de from master.
|