summaryrefslogtreecommitdiff
path: root/django/contrib/sessions/middleware.py
AgeCommit message (Expand)Author
2022-11-24Fixed #34173 -- Skipped saving sessions on 5xx responses.SirAbhi13
2022-02-07Refs #33476 -- Reformatted code with Black.django-bot
2021-01-14Refs #26601 -- Made get_response argument required and don't accept None in m...Mariusz Felisiak
2020-09-09Fixed #31962 -- Made SessionMiddleware raise SessionInterrupted when session ...Hasan Ramezani
2020-08-28Refs #31928 -- Made SessionMiddleware call super().__init__().Kevin Michel
2020-07-16Fixed #31790 -- Fixed setting SameSite and Secure cookies flags in HttpRespon...Mariusz Felisiak
2020-03-18Fixed #31224 -- Added support for asynchronous views and middleware.Andrew Godwin
2020-02-18Refs #26601 -- Deprecated passing None as get_response arg to middleware clas...Claude Paroz
2019-05-29Simplified SessionMiddleware.process_response() a bit.Daniel Hahler
2019-03-21Fixed #29471 -- Added 'Vary: Cookie' to invalid/empty session cookie responses.birthdaysgift
2018-04-13Fixed #27863 -- Added support for the SameSite cookie flag.Alex Gaynor
2018-01-02Fixed #28965 -- Updated Set-Cookie's Expires date format to follow RFC 7231.Alexey
2016-11-01Fixed #27363 -- Replaced unsafe redirect in SessionMiddleware with Suspicious...Andrew Nester
2016-06-21Fixed #26783 -- Fixed SessionMiddleware's empty cookie deletion when using SE...Jon Dufresne
2016-05-17Fixed #26601 -- Improved middleware per DEP 0005.Florian Apolloner
2016-04-08Fixed E128 flake8 warnings in django/.Tim Graham
2016-02-26Fixed #21608 -- Prevented logged out sessions being resurrected by concurrent...Tore Lundqvist
2015-08-18Fixed DoS possiblity in contrib.auth.views.logout()Tim Graham
2015-05-15Fixed #24799 -- Fixed session cookie deletion when using SESSION_COOKIE_DOMAINBo Lopker
2015-05-13Removed unnecessary arguments in .get method callsPiotr Jakimiak
2015-02-06Sorted imports with isort; refs #23860.Tim Graham
2014-05-11Fixed #20936 -- When logging out/ending a session, don't create a new, empty ...Matt Robenolt
2013-11-02More attacking E302 violatorsAlex Gaynor
2013-07-29Deprecated django.utils.importlibClaude Paroz
2013-06-30Define the SessionStore inside __init__ instead of process_requestMatt Robenolt
2012-07-16Fixed #3881 -- skip saving session when response status is 500Anssi Kääriäinen
2010-11-26Fixed #3304 -- Added support for HTTPOnly cookies. Thanks to arvin for the su...Russell Keith-Magee
2009-03-18Fixed #8193: all dynamic imports in Django are now done correctly. I know thi...Jacob Kaplan-Moss
2008-09-17Fixed #9096 -- Fixed a slightly out-of-date comment.Malcolm Tredinnick
2008-07-30Removed TEST_COOKIE_NAME and TEST_COOKIE_VALUE constants fromMalcolm Tredinnick
2008-06-23Several Django styling fixes in the `contrib.sessions` app.Gary Wilson Jr
2008-06-07Fixed #2548: added get/set_expiry methods to session objects. Thanks, Amit Up...Jacob Kaplan-Moss
2007-10-31Fixed #5816 -- Fixed a regression from [6333] that generates incorrect cookie...Gary Wilson Jr
2007-10-29Fixed imports, indention, and a long line.Gary Wilson Jr
2007-10-20Fixed #4724 -- Added support for configurable session cookie paths. Helps withMalcolm Tredinnick
2007-09-15Fixed #2066: session data can now be stored in the cache or on the filesystem...Jacob Kaplan-Moss
2007-07-16Fixed #4199 -- Changed date formatting in HTTP expires header to be specMalcolm Tredinnick
2007-07-03Fixed #4729 -- SessionWrapper.pop now sets modified flag if necessary. Thanks...Adrian Holovaty
2007-05-21Fixed #4338 -- Added pop() method to SessionWrapper. Thanks, Gary Wilson.Malcolm Tredinnick
2007-03-22Reduced the chances of session object collision. The window of opportunity isMalcolm Tredinnick
2007-03-08Fixed #3586 -- Only output "Vary: Cookie" HTTP header when the session objectMalcolm Tredinnick
2007-01-25Fixed #2133 -- Invalid session cookie no longer causes fatal error. Thanks, g...Adrian Holovaty
2006-08-12Fixed #2523 -- Added SESSION_COOKIE_SECURE setting. Thanks, mir@noris.deAdrian Holovaty
2006-06-08Fixed #2109 -- Convert old-style classes to new-style classes throughout Djan...Adrian Holovaty
2006-06-01Fixed #395 -- Added SESSION_EXPIRE_AT_BROWSER_CLOSE setting, which regulates ...Adrian Holovaty
2006-05-02MERGED MAGIC-REMOVAL BRANCH TO TRUNK. This change is highly backwards-incompa...Adrian Holovaty
generated by cgit v1.3 (git 2.53.0) at 2026-06-30 20:25:14 +0000