| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-03-05 | [1.9.x] Bumped version for 1.9.4 release.1.9.4 | Tim Graham | |
| 2016-03-05 | [1.9.x] Fixed #26312 -- Documented "create database" requirement in tutorial 2. | Bob McDonald | |
| Backport of b388c294eb5745b3e01dedf0220636fae87ea9a2 from master | |||
| 2016-03-04 | [1.9.x] Added safety to URL decoding in is_safe_url() on Python 2 | Claude Paroz | |
| The errors='replace' parameter to force_text altered the URL before checking it, which wasn't considered sane. Refs 24fc935218 and ada7a4aef. Backport of 552f03869e from master. | |||
| 2016-03-04 | [1.9.x] Fixed #26308 -- Prevented crash with binary URLs in is_safe_url() | Claude Paroz | |
| This fixes a regression introduced by c5544d28923. Thanks John Eskew for the reporti and Tim Graham for the review. Backport of ada7a4aef from master. | |||
| 2016-03-04 | [1.9.x] Fixed typo in docs/releases/1.9.1.txt. | Tim Graham | |
| Backport of cecbf1bdef04e00e6947f47d96198aa57c2a0dc3 from master | |||
| 2016-03-04 | [1.9.x] Added stub release notes for 1.8.11. | Tim Graham | |
| Backport of 2f0c785a4c2353a3035ba6022cec5e25fb9d569b from master | |||
| 2016-03-03 | [1.9.x] Fixed #26321 -- Added missing "for_save" parameter in expressions ↵ | Tim Graham | |
| example. Thanks tomaszn for the patch. Backport of de8a11ba18d5902c668d4db47c38c9c6bdf9c1da from master | |||
| 2016-03-03 | [1.9.x] Fixed #26309 -- Documented that login URL settings no longer support ↵ | Alasdair Nicol | |
| dotted paths. Backport of 2404d209a5e8c4573927e14587735562b79e13ed from master | |||
| 2016-03-02 | [1.9.x] Fixed typo in 1.9.3/1.8.10 release date. | Dmitry Dygalo | |
| Backport of 5155c2b4587629c4bc77a11846e5b9d3ba5a43ef from master | |||
| 2016-03-01 | [1.9.x] Fixed #26303 -- Updated links to mod_wsgi docs. | Alasdair Nicol | |
| Backport of 8c42cf0cbd87f344748423f235938dd6ade03f55 from master | |||
| 2016-03-01 | [1.9.x] Added stub release notes for 1.9.4. | Tim Graham | |
| Backport of 2e895d2870860e9855b79fcda41693783671ed12 from master | |||
| 2016-03-01 | [1.9.x] Added CVE-2016-2512/2513 to security release archive. | Tim Graham | |
| Backport of 24fc9352183c449a8b11d1c7b442e70aa61a8800 from master | |||
| 2016-03-01 | [1.9.x] Post-release version bump. | Tim Graham | |
| 2016-03-01 | [1.9.x] Bumped version for 1.9.3 release.1.9.3 | Tim Graham | |
| 2016-03-01 | [1.9.x] Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during ↵ | Florian Apolloner | |
| login. This is a security fix. | |||
| 2016-03-01 | [1.9.x] Fixed CVE-2016-2512 -- Prevented spoofing is_safe_url() with basic auth. | Mark Striemer | |
| This is a security fix. | |||
| 2016-03-01 | [1.9.x] Added stub release notes for security issues. | Tim Graham | |
| 2016-03-01 | [1.9.x] Fixed #26217 -- Added a warning about format strings to ↵ | Michal Petrucha | |
| WeekArchiveView docs. Backport of fe8ea3ba3ba709b3d6c39da046f0883a296e6441 from master | |||
| 2016-03-01 | [1.9.x] Fixed #26165 -- Added some FAQs about CSRF protection. | acemaster | |
| Thanks Florian Apolloner and Shai Berger for review. Backport of a1b1688c7d6c1a6d307bd22669bd20f08e948f8d from master | |||
| 2016-03-01 | [1.9.x] Fixed typos in docs/ref/models/meta.txt. | Taranjeet | |
| Backport of 11a8207d4294b46561ce34b37803f191014509af from master | |||
| 2016-02-29 | [1.9.x] Fixed #26186 -- Documented how app relative relationships of ↵ | Simon Charette | |
| abstract models behave. This partially reverts commit bc7d201bdbaeac14a49f51a9ef292d6312b4c45e. Thanks Tim for the review. Refs #25858. Backport of 0223e213dd690b6b6e0669f836a20efb10998c83 from master | |||
| 2016-02-28 | [1.9.x] Fixed docs: release-process, Supported Versions section, concrete ↵ | Shai Berger | |
| example Security & data loss fixes are applied to the two last feature releases, not just one. Thanks Loic Bistuer and Tim Graham for review Backport of 3dd4e92+72e5778 from master | |||
| 2016-02-27 | [1.9.x] Fixed #26275 -- Noted difference between o and Y date format chars. | inondle | |
| Backport of 5fb9756eba01237cc0e550da689b9b79c51c96ed from master | |||
| 2016-02-26 | [1.9.x] Fixed #26286 -- Prevented content type managers from sharing their ↵ | Simon Charette | |
| cache. This should prevent managers methods from returning content type instances registered to foreign apps now that these managers are also attached to models created during migration phases. Thanks Tim for the review. Refs #23822. Backport of 3938b3ccaa85f1c366909a4839696007726a09da from master | |||
| 2016-02-26 | [1.9.x] Fixed #26280 -- Fixed cached template loader crash when loading ↵ | Ivan Tsouvarev | |
| nonexistent template. Backport of 8890c533e0b53cb0021bd5faf15668430cd3075a from master | |||
| 2016-02-25 | [1.9.x] Fixed #26231 -- Used .get_username in admin login template. | Sjoerd Job Postmus | |
| Backport of bbe136e1a2f9cbf3fd10d49fbe8558a5b394752c from master | |||
| 2016-02-25 | [1.9.x] Corrected a run on sentence in doc/topics/db/models.txt. | Tim Graham | |
| Backport of 22d2a5b00ac99e638d95cbfe1cc41ef217fa50d4 from master | |||
| 2016-02-25 | [1.9.x] Fixed #26278 -- Clarified apps.ready docs. | Tim Graham | |
| Backport of 1f8cfcf3b41bac0ec862f171e2efb51b35324045 from master | |||
| 2016-02-25 | [1.9.x] Refs #26270 -- Reorganized TestCase docs. | Tim Graham | |
| Backport of 7a7e403325427642905a5b3e26931c2b8e92d4b1 from master | |||
| 2016-02-24 | [1.9.x] Fixed a function signature in docs/topics/auth/default.txt. | Tim Graham | |
| Backport of 441c537b66233ae57bf0023f02d8262474229e1a from master | |||
| 2016-02-24 | [1.9.x] Removed docs of deprecated SimpleTestCase warnings behavior. | Tim Graham | |
| Removed in Django 1.7 (4f6be9a0c43050500af598527e1453d27c5c5b85). Backport of 6637cd0ef2fd5f063df82000c18c64c246bb6e1b from master | |||
| 2016-02-24 | [1.9.x] Fixed #26267 -- Fixed BoundField to reallow slices of subwidgets. | Jon Dufresne | |
| Backport of b41268135995cef46d40e550f9301fab20cf330d from master | |||
| 2016-02-23 | [1.9.x] Fixed spelling error | Markus Holtermann | |
| Backport of b14470c7b7ee73c328c9c60100165301e6c2e24b from master | |||
| 2016-02-22 | [1.9.x] Fixed #26188 -- Documented how to wrap password hashers. | Tim Graham | |
| Backport of 5a541e2e6cb01e254f20c302093a24d7dc9af8ce from master | |||
| 2016-02-22 | [1.9.x] Refs #26253 -- Amended release note as this issue doesn't affect 1.8. | Tim Graham | |
| 2016-02-22 | [1.9.x] Fixed #26253 -- Fixed crashing deprecation shims in ↵ | Tim Graham | |
| SimpleTemplateResponse. Thanks David Reitter for the report and initial patch. | |||
| 2016-02-22 | [1.9.x] Fixed import location of check_password() in docs. | Daniel Quinn | |
| Backport of de7edc005f06c47c1d39d5cb30762d424ee4dabf from master | |||
| 2016-02-19 | [1.9.x] Fixed #26243 -- Noted that 'python -R' is enabled by default in ↵ | Raphael Michel | |
| Python 3.3. Backport of 5c31d8d189ec24d83e25e2c560860f70307b431e from master | |||
| 2016-02-19 | [1.9.x] Fixed some code blocks indentation in GIS docs. | Sergey Fedoseev | |
| Backport of dbaa1a6b59b4f8f942e8378465aaeb943c3d9de5 from master | |||
| 2016-02-19 | [1.9.x] Used relative models imports in the GIS tutorial. | Juan José Conti | |
| Backport of bb7042cda from master. | |||
| 2016-02-18 | [1.9.x] Fixed #26204 -- Reallowed dashes in top-level domains for URLValidator. | Tim Graham | |
| Thanks Shai Berger for the review. Backport of b1afebf882db5296cd9dcea26ee66d5250922e53 from master | |||
| 2016-02-18 | [1.9.x] Added intended use in the admin's introduction. | Tim Graham | |
| Backport of b954ad0640e1f246f60f31a07a567274c2f20751 from master | |||
| 2016-02-18 | [1.9.x] Fixed #26233 -- Fixed invalid reSt in models.Q docstring. | Tim Graham | |
| Backport of 70d3f81ca4ea7e1e1310e13ce0a633d7f920d45b from master | |||
| 2016-02-17 | [1.9.x] Fixed #26219 -- Fixed crash when filtering by Decimal in RawQuery. | Akshesh | |
| Backport of fdccc02576ae5a524338f65e629948604d80b4c8 from master | |||
| 2016-02-17 | [1.9.x] Fixed #25687 -- Documented how to add database function support to ↵ | Tim Graham | |
| third-party backends. Thanks Kristof Claes for the initial patch. Backport of 88034c9938d92193d2104ecfe77999c69301dcc1 from master | |||
| 2016-02-17 | [1.9.x] Refs #19353 -- Added tests for using custom user models with ↵ | Berker Peksag | |
| built-in auth forms. Also updated topics/auth/customizing.txt to reflect that subclasses of UserCreationForm and UserChangeForm can be used with custom user models. Thanks Baptiste Mispelon for the initial documentation. Backport of f0425c72601f466c6a71518749c6d15b94945514 from master | |||
| 2016-02-17 | [1.9.x] Followed recommended ValidationError use in docs. | Jon Dufresne | |
| Backport of 0db7e61076116c2d93d61f98ef31690542359e48 from master | |||
| 2016-02-16 | [1.9.x] Fixed #26215 -- Fixed RangeField/ArrayField serialization with None ↵ | Claude Paroz | |
| values Also added tests for HStoreField and JSONField. Thanks Aleksey Bukin for the report and Tim Graham for the initial patch and the review. Backport of 928c12eb1 from master. | |||
| 2016-02-16 | [1.9.x] Fixed possible "RuntimeError: maximum recursion depth exceeded" ↵ | Tim Graham | |
| building docs. Backport of 6a71ac61bd8ebd57f036e076a4f7f29cf2d88c00 from master | |||
| 2016-02-15 | [1.9.x] Fixed #26221 -- Used find_packages() in reusable apps tutorial. | Ryan Nowakowski | |
| Otherwise the migrations package won't be included in the tarball. Backport of 11af73eaeb4371ded68460c1591abd6aefa57a90 from master | |||
