summaryrefslogtreecommitdiff
path: root/django/core
AgeCommit message (Collapse)Author
2022-06-23[4.1.x] Fixed #33800 -- Fixed system check for the same template tag module ↵Mariusz Felisiak
in installed apps and template tag libraries. Thanks Claude Paroz for the report. Regression in 004b4620f6f4ad87261e149898940f2dcd5757ef. Backport of 083bfca6b6c00d0f45837a65c2db721eaf46bc07 from main
2022-06-20[4.1.x] Fixed #33657 -- Allowed customizing formatter class of argument parsers.Abhinav Yadav
Backport of 2887b9f67cadc5295ef6a0574de2c2c8fdd66905 from main
2022-05-31[4.1.x] Fixed #33754 -- Fixed crash with prematurely closed ASGI request body.Jonas Lundberg
Regression in 441103a04d1d167dc870eaaf90e3fba974f67c93. Backport of f1e0fc645bb0b2c15d1510c9a8501743297dec9d from main
2022-05-16Fixed #33681 -- Made Redis client pass CACHES["OPTIONS"] to a connection pool.Mariusz Felisiak
Thanks Ben Picolo for the report.
2022-05-12Made closing in connection handlers more DRY.Nick Pope
2022-05-12Fixed #32559 -- Added 'step_size’ to numeric form fields.Kapil Bansal
Co-authored-by: Jacob Rief <jacob.rief@uibk.ac.at>
2022-05-11Refs #33173 -- Removed use of deprecated cgi module.Carlton Gibson
https://peps.python.org/pep-0594/#cgi
2022-05-10Refs #33173, Refs #30451 -- Fixed ResourceWarning from unclosed body files ↵Mariusz Felisiak
in ASGI handler on Python 3.11+.
2022-04-16Fixed #33643 -- Fixed inspectdb crash on functional unique constraints on ↵Scott
Oracle.
2022-04-11Fixed #32604 -- Made file upload respect group id when uploading to a ↵Mateo Radman
temporary file.
2022-03-24Refs #32365 -- Removed internal uses of utils.timezone.utc alias.Carlton Gibson
Remaining test case ensures that uses of the alias are mapped canonically by the migration writer.
2022-03-18Fixed #33582 -- Fixed deserializing natural keys with foreing key ↵François Granade
dependencies in a multiple database setup.
2022-03-17Prevented initialization of unused database connections.Florian Apolloner
2022-03-16Fixed #33580 -- Fixed crash when checking support for terminal colors on Wine.jochemfranken
Regression in f1585c54d0242d71cdc63421f751528472b1c9c2.
2022-02-23Refs #33476 -- Added warning to optimizemigration/squashmigrations commands ↵Mariusz Felisiak
when black cannot be applied.
2022-02-22Fixed #27844 -- Added optimizemigration management command.David Wobrock
2022-02-21Refs #33526 -- Made ↵Mariusz Felisiak
CSRF_COOKIE_SECURE/SESSION_COOKIE_SECURE/SESSION_COOKIE_HTTPONLY don't pass on truthy values.
2022-02-17Refs #27468 -- Updated django.core.signing docstring.Matthias Kestenholz
Follow up to 71c4fb7beb8e3293243140e4bd74e53989196440.
2022-02-14Refs #25684 -- Removed double newline from request/response output of runserver.rafrafek
Follow up to 0bc5cd628042bf0a44df60a93085a4f991a84dfb.
2022-02-11Refs #33476 -- Made management commands use black.Carlton Gibson
Run black on generated files, if it is available on PATH.
2022-02-09Fixed #33495 -- Improved debug logging message about adapting handlers for ↵Aaron Chong
middlewares. It's the wrapped handler that's adapted to the wrapping middleware.
2022-02-07Refs #33476 -- Refactored code to strictly match 88 characters line length.Mariusz Felisiak
2022-02-07Refs #33476 -- Reformatted code with Black.django-bot
2022-02-03Refs #33476 -- Refactored problematic code before reformatting by Black.Mariusz Felisiak
In these cases Black produces unexpected results, e.g. def make_random_password( self, length=10, allowed_chars='abcdefghjkmnpqrstuvwxyz' 'ABCDEFGHJKLMNPQRSTUVWXYZ' '23456789', ): or cursor.execute(""" SELECT ... """, [table name], )
2022-02-01Fixed #30360 -- Added support for secret key rotation.tschilling
Thanks Florian Apolloner for the implementation idea. Co-authored-by: Andreas Pelme <andreas@pelme.se> Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es> Co-authored-by: Vuyisile Ndlovu <terrameijar@gmail.com>
2022-01-21Fixed #26760 -- Added --prune option to migrate command.Jacob Walls
2022-01-18Removed unused buf_size argument to LimitedStream().Nick Pope
Unused since its introduction in 269e921756371bee6d35a967bc2ffe84d1ae39eb.
2022-01-13Fixed #29708 -- Deprecated PickleSerializer.Adam Johnson
2022-01-13Refs #29708 -- Stopped inheriting from PickleSerializer by RedisSerializer.Adam Johnson
2022-01-12Changed django.utils.log.log_response() to take exception instance.Adam Johnson
There's little point retrieving a fresh reference to the exception in the legacy tuple format, when it's all available via the exception instance we already have.
2022-01-12Added exception to SuspiciousOperation logging.Adam Johnson
This allows better debugging and filtering of errors.
2022-01-10Fixed #29026 -- Added --scriptable option to makemigrations.Jacob Walls
2022-01-07Refs #32355 -- Removed unnecessary list() calls before reversed() on dictviews.Mariusz Felisiak
Dict and dictviews are iterable in reversed insertion order using reversed() in Python 3.8+.
2022-01-07Fixed #28628 -- Changed \d to [0-9] in regexes where appropriate.Ad Timmering
2022-01-04Fixed CVE-2021-45452 -- Fixed potential path traversal in storage subsystem.Florian Apolloner
Thanks to Dennis Brinkrolf for the report.
2022-01-03Refs #29026 -- Allowed customizing InteractiveMigrationQuestioner's prompt ↵Jacob Walls
destination. Previously, the questioner did not obey the value of stdout provided to the command.
2021-12-20Fixed #33367 -- Fixed URLValidator crash in some edge cases.mendespedro
2021-12-14Fixed #33361 -- Fixed Redis cache backend crash on booleans.Jeremy Lainé
2021-12-09Fixed #33340 -- Fixed unquoted column names in queries used by DatabaseCache.Arsa
2021-12-02Updated various links to HTTPS and new locations.Mariusz Felisiak
Co-Authored-By: Nick Pope <nick@nickpope.me.uk>
2021-11-25Fixed #32397 -- Made startapp/startproject management commands set User-Agent.Ad Timmering
This sets User-Agent to 'Django/<version>'.
2021-11-24Fixed #4282 -- Made startapp/startproject management commands honor umask.Ad Timmering
Co-authored-by: Christian Schmitt <c.schmitt@briefdomain.de>
2021-11-11Fixed #6106 -- Prevented makemessages from changing .po files when up to date.Ad Timmering
Co-authored-by: Daniyal Abbasi <abbasi.daniyal98@gmail.com>
2021-11-02Fixed #33187 -- Made inspectdb handle ForeignKey.to_field attribute.jordan.bae
2021-11-02Fixed #33246 -- Made squashmigrations raise CommandError when squashed_name ↵andrewdotn
already exists.
2021-10-25Fixed #33205 -- Made call_command() raise TypeError when dest with multiple ↵Hasan Ramezani
arguments is passed.
2021-10-20Fixed #32987 -- Added system check for template tag modules with the same name.Shreya Bamne
Co-authored-by: Daniel Fairhead <daniel@dev.ngo>
2021-10-18Refs #32956 -- Changed docs to treat the acronym HTTP phonetically.David Smith
2021-10-12Fixed #29470 -- Logged makemigrations automatic decisions in non-interactive ↵Jacob Walls
mode.
2021-10-12Fixed #28401 -- Allowed hashlib.md5() calls to work with FIPS kernels.Ade Lee
md5 is not an approved algorithm in FIPS mode, and trying to instantiate a hashlib.md5() will fail when the system is running in FIPS mode. md5 is allowed when in a non-security context. There is a plan to add a keyword parameter (usedforsecurity) to hashlib.md5() to annotate whether or not the instance is being used in a security context. In the case where it is not, the instantiation of md5 will be allowed. See https://bugs.python.org/issue9216 for more details. Some downstream python versions already support this parameter. To support these versions, a new encapsulation of md5() has been added. This encapsulation will pass through the usedforsecurity parameter in the case where the parameter is supported, and strip it if it is not. Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>