summaryrefslogtreecommitdiff
path: root/django/middleware
AgeCommit message (Expand)Author
2011-03-15Fixed #15617 - CSRF referer checking too strictLuke Plant
2011-03-02Fixed #4992 -- Respect the GET request query string when creating cache keys....Jannis Leidel
2011-03-01Fixed #717 - If-Modified-Since handling should compare dates according to RFC...Luke Plant
2011-02-21Corrected logging call in CSRF middlewareLuke Plant
2011-02-17Fixed #15260 -- Ensured that CACHE_MIDDLEWARE_ANONYMOUS_ONLY is effective wit...Carl Meyer
2011-02-09Fixed a security issue in the CSRF component. Disclosure and new release for...Alex Gaynor
2011-02-01Fixed #13283 -- Corrected CACHE_MIDDLEWARE_ANONYMOUS_ONLY's bad habit of sett...Carl Meyer
2011-01-30Fixed #15187 -- Ensure that missing page emails aren't sent when running unde...Russell Keith-Magee
2011-01-24Fixed #15012 -- Added post-rendering callbacks to TemplateResponse so that de...Russell Keith-Magee
2011-01-24Fixed #15144 -- Corrected some problems with the Cache middleware when used w...Russell Keith-Magee
2011-01-04Fixed sending mail on 404s to fail silently.Luke Plant
2010-12-22Beefed up the tests for multi-cache handling of the cache middleware and view...Russell Keith-Magee
2010-12-21Fixed #11675 -- Added support for the PyLibMC cache library. In order to supp...Russell Keith-Magee
2010-11-02Fixed #14559 -- corrected some typos and misleading docstrings. Thanks to Ga...Alex Gaynor
2010-10-29Fixed #14560 -- Enable HEAD requests to be cached properly. Thanks, codemonkey!Honza Král
2010-10-28Fixed #14565 - No csrf_token on 404 page.Luke Plant
2010-10-14Fixed #14445 - Use HMAC and constant-time comparison functions where needed.Luke Plant
2010-10-11Fixed #14436 -- Escalated 1.2 PendingDeprecationWarnings to DeprecationWarnin...Russell Keith-Magee
2010-10-06Fixed #14406 -- Added a Python 2.4 compatibility to the logging interface. Th...Russell Keith-Magee
2010-10-04Fixed #12012 -- Added support for logging. Thanks to Vinay Sajip for his draf...Russell Keith-Magee
2010-09-10Fixed #14235 - UnicodeDecodeError in CSRF middlewareLuke Plant
2010-09-09Patch CSRF-protection system to deal with reported security issue. Announceme...James Bennett
2010-09-03Added explanatory note on CSRF failure page for the case of a missing Referer...Luke Plant
2010-06-30Added proper code comments for the HTTPS CSRF protection.Luke Plant
2010-06-08Fixed #13716 - the CSRF get_token function stopped working for views with csr...Luke Plant
2010-03-07Fixed #6228: Changed common middleware to respect request-specific urlconf. T...Karen Tracey
2010-01-10Removed an 'assert False' I stupidly committed in [12165]Adrian Holovaty
2010-01-10Fixed #6094 -- Middleware exceptions are now caught by the core handler. Than...Adrian Holovaty
2010-01-10Fixed #8049 -- Fixed inconsistency in admin site is_active checks. Thanks for...Adrian Holovaty
2010-01-09Fixed #6991 -- Removed some redundant user.is_authenticated() calls in variou...Adrian Holovaty
2009-10-27Misc clarifications in csrf middleware commentsLuke Plant
2009-10-27Slight change to CSRF error messages to make debugging easier.Luke Plant
2009-10-27Removed unused import.Luke Plant
2009-10-27Moved contrib.csrf.* to core code.Luke Plant
2009-07-29BACKWARDS-INCOMPATIBLE CHANGE: Removed SetRemoteAddrFromForwardedFor middleware.Jacob Kaplan-Moss
2009-04-12Fixed #10630 -- Be even more conservative in GZipMiddleware for IE.Malcolm Tredinnick
2008-10-07Fixed #9199 -- We were erroneously only prepending "www" to the domain if weMalcolm Tredinnick
2008-09-30Fixed #9221 -- Small optimisation to caching middleware handling.Malcolm Tredinnick
2008-08-27Fixed #7379: fixed a subtle corner case involving URL encoding in `CommonMidd...Jacob Kaplan-Moss
2008-08-21Fixed #8381 -- Fixed a problem with appending slashes in the common middlewareMalcolm Tredinnick
2008-08-15Fixed a typo and added a bit more ReST markup to cache middleware docstring.Gary Wilson Jr
2008-08-09Split CacheMiddleware up into two parts -- an update-cache and a fetch-from-c...Jacob Kaplan-Moss
2008-08-09Fixed #8121 -- Don't override the Content-Language HTTP header in the localeMalcolm Tredinnick
2008-08-02Fixed #7919 -- md5 and sha modules are deprecated since Python 2.5, use hashl...Gary Wilson Jr
2008-06-30Fixed #7046 -- set the response status code correctly in ConditionalGetMiddle...Malcolm Tredinnick
2008-06-16Fixed #7228 -- Fixed our ETag header creation to meet the HTTP spec, by quoti...Adrian Holovaty
2008-02-04Fixed #6480 -- Added application/pdf the list of content types we don't compr...Malcolm Tredinnick
2007-12-02Fixed #3228 -- Added new APPEND_SLASH handling behaviour in the common middle...Malcolm Tredinnick
2007-11-29Fixed #5813 -- Taught the CacheMiddleware to respect any max-age HTTP headerMalcolm Tredinnick
2007-11-19Made some stylistic changes in `GZipMiddleware` and added some notes about IE...Gary Wilson Jr