summaryrefslogtreecommitdiff
path: root/django/contrib/auth
AgeCommit message (Expand)Author
2022-01-04[2.2.x] Fixed CVE-2021-45115 -- Prevented DoS vector in UserAttributeSimilari...Florian Apolloner
2019-12-18[2.2.x] Fixed CVE-2019-19844 -- Used verified user email for password reset r...Simon Charette
2019-11-29[2.2.x] Fixed #31021 -- Fixed proxy model permissions data migration crash wi...Mariusz Felisiak
2019-06-29[2.2.x] Updated translations from TransifexClaude Paroz
2019-04-27[2.2.x] Fixed #30351 -- Handled pre-existing permissions in proxy model permi...Carlton Gibson
2019-04-01[2.2.x] Updated contrib translations from TransifexClaude Paroz
2019-01-16Fixed #11154, #22270 -- Made proxy model permissions use correct content type.Arthur Rio
2019-01-10Fetched Armenian translations from TransifexClaude Paroz
2019-01-09Fixed #30037 -- Added request arg to RemoteUserBackend.configure_user().Joshua Cannon
2019-01-02Used 4 space hanging indent for dictionaries.Tim Graham
2018-12-27Followed style guide for model attribute ordering.Matt Wiens
2018-11-15Fixed #29952 -- Lowercased all passwords in contrib.auth's auth/common-passwo...Mathew Payne
2018-11-14Fixed #29939 -- Increased Group.name max_length to 150 characters.Timothy Allen
2018-10-10Refs #27795 -- Removed force_bytes() usage from django/utils/http.py.Jon Dufresne
2018-10-01Fixed #29809 -- Fixed a crash when a "view only" user POSTs to the admin user...Tim Graham
2018-10-01Fixed CVE-2018-16984 -- Fixed password hash disclosure to admin "view only" u...Carlton Gibson
2018-09-29Updated translations from TransifexClaude Paroz
2018-09-28Refs #28909 -- Simplifed code using unpacking generalizations.Sergey Fedoseev
2018-09-26Fixed #29782 -- Added better error message when filtering queryset with Anony...Ramon Saraiva
2018-09-26Fixed #29683 -- Added view permission to docs.Stephen James
2018-09-26Refs #27795 -- Removed force_bytes() usage in contrib/auth/handlers/modwsgi.py.Jon Dufresne
2018-09-13Removed shadowing of built-in hash() function.Andrey Kostakov
2018-08-17Fixed #29686 -- Made UserAdmin.user_change_password() pass user to has_change...Alexander Todorov
2018-08-05Fixed #29616 -- Fixed createsuperuser for user models that don't have a passw...Josh Schneier
2018-08-04Made createsuperuser code more DRY.Josh Schneier
2018-08-04Fixed #29628 -- Made createsuperuser validate password against username and r...Josh Schneier
2018-08-01Fixed typos in comments and docs.luz.paz
2018-08-01Updated contrib translations from TransifexClaude Paroz
2018-07-02Fixed #29449 -- Reverted "Fixed #28757 -- Allowed using contrib.auth forms wi...Tim Graham
2018-07-02Removed parser.add_arguments() arguments that match the defaults.Claude Paroz
2018-06-03Fixed #10827 -- Ensured ContentTypes are created before permission creation.Claude Paroz
2018-05-29Fixed #28044 -- Unified the logic for createsuperuser's interactive and --noi...Dohyeon Kim
2018-05-17Increased the default PBKDF2 iterations for Django 2.2.Tim Graham
2018-05-16Fixed #8936 -- Added a view permission and a read-only admin.olivierdalang
2018-05-13Increased the default PBKDF2 iterations for Django 2.1.Tim Graham
2018-04-19Ref #23919 -- Replaced some os.path usage with pathlib.Path.Tom
2018-04-16Fixed #29274 -- Increased the number of common passwords from 1k to 20k.GS-14
2018-04-06Fixed #29289 -- Clarified PasswordResetTokenGenerator comment regarding the d...Tim Graham
2018-03-29Fixed #29270 -- Fixed UserChangeForm crash if password field is excluded.Malte Gerth
2018-03-28Fixed #29258 -- Added type checking for login()'s backend argument.Abeer Upadhyay
2018-03-22Fixed #28718 -- Allowed user to request a password reset if their password do...Tim Graham
2018-03-15Fixed #29206 -- Fixed PasswordResetConfirmView crash when the URL contains a ...Mattia Procopio
2018-03-04Corrected User model docstring about required fields.ovalseven8
2018-03-02Fixed #29176 -- Fixed AbstractBaseUser.normalize_username() crash if username...Christophe Mehay
2018-02-28Updated translations from TransifexClaude Paroz
2018-02-26Fixed #29141 -- Corrected BCryptPasswordHasher's docstring about truncation.Tim Graham
2018-02-21Fixed #29132 -- Avoided connecting update_last_login() handler if User.last_l...Mikhail Porokhovnichenko
2018-02-16Fixed #28379 -- Made AccessMixin raise Permissiondenied for authenticated users.Dylan Verheul
2018-02-14Removed AuthenticationForm.get_user_id().Tim Graham
2018-02-01Refs #27795 -- Replaced force_text/bytes() with decode()/encode() in password...Jon Dufresne