summaryrefslogtreecommitdiff
path: root/django/middleware
AgeCommit message (Expand)Author
2012-09-20Imported getLogger directly from logging moduleClaude Paroz
2012-09-10fixed rfc comment typo in middleware/csrf.pyCollin Anderson
2012-08-13[py3] Made csrf context processor return UnicodeClaude Paroz
2012-05-03Fixed #18042 -- Advanced deprecation warnings.Aymeric Augustin
2012-03-02Fixed #17817 -- Modified LocalMiddleware to use full URLs when redirecting to...Jannis Leidel
2012-03-02Fixed #17734 -- Made sure to only redirect translated URLs if they can actual...Jannis Leidel
2012-02-18Fixed #17720 -- Stopped the LocaleMiddleware from overeagerly using the reque...Jannis Leidel
2012-02-17Documentation (and some small source code) edits from [17432] - [17537]Adrian Holovaty
2012-02-11Fixes #16827. Adds a length check to CSRF tokens before applying the santizin...Paul McMillan
2012-02-09Fixed #17358 -- Updated logging calls to use official syntax for arguments in...Jannis Leidel
2012-02-09Fixed #16035 -- Appended the Etag response header if the GZipMiddleware is in...Jannis Leidel
2012-01-09Fixed #10762, #17514 -- Prevented the GZip middleware from returning a respon...Aymeric Augustin
2011-10-06Fixed #16705 - Made the test client adhere to the WSGI spec -- in particular,...Aymeric Augustin
2011-08-12Fixed #16584 -- Fixed a bunch of typos in code comments. Thanks, Bernhard Essl.Jannis Leidel
2011-07-13Fixed #16225 -- Removed unused imports. Many thanks to Aymeric Augustin for t...Jannis Leidel
2011-07-03Fixed #14506 -- Added an assertion to XViewMiddleware about the dependency on...Jannis Leidel
2011-06-15Fixed #11585 -- Added ability to translate and prefix URL patterns with a lan...Jannis Leidel
2011-05-30Fixed #14261 - Added clickjacking protection (X-Frame-Options header)Luke Plant
2011-05-24Made some small tweaks/fixes to documentation from IGNORABLE_404_URLS changes...Adrian Holovaty
2011-05-09Fixed #15258 - Ajax CSRF protection doesn't apply to PUT or DELETE requestsLuke Plant
2011-05-09Fixed #14134 - ability to set cookie 'path' and 'secure' attributes of CSRF c...Luke Plant
2011-05-05Fixed #15954 - New IGNORABLE_404_URLS setting that allows more powerful filte...Luke Plant
2011-03-30Removed deprecated CsrfResponseMiddleware, and corresponding tests and docsLuke Plant
2011-03-30Removed Django 1.1 fallback for CSRF checks.Luke Plant
2011-03-28Removed a bunch more Python 2.4 workarounds now that we don't support that ve...Adrian Holovaty
2011-03-26Fixed #15635 -- Converted two legacy old-style raise statements. Thanks, DaNm...Adrian Holovaty
2011-03-15Fixed #15617 - CSRF referer checking too strictLuke Plant
2011-03-02Fixed #4992 -- Respect the GET request query string when creating cache keys....Jannis Leidel
2011-03-01Fixed #717 - If-Modified-Since handling should compare dates according to RFC...Luke Plant
2011-02-21Corrected logging call in CSRF middlewareLuke Plant
2011-02-17Fixed #15260 -- Ensured that CACHE_MIDDLEWARE_ANONYMOUS_ONLY is effective wit...Carl Meyer
2011-02-09Fixed a security issue in the CSRF component. Disclosure and new release for...Alex Gaynor
2011-02-01Fixed #13283 -- Corrected CACHE_MIDDLEWARE_ANONYMOUS_ONLY's bad habit of sett...Carl Meyer
2011-01-30Fixed #15187 -- Ensure that missing page emails aren't sent when running unde...Russell Keith-Magee
2011-01-24Fixed #15012 -- Added post-rendering callbacks to TemplateResponse so that de...Russell Keith-Magee
2011-01-24Fixed #15144 -- Corrected some problems with the Cache middleware when used w...Russell Keith-Magee
2011-01-04Fixed sending mail on 404s to fail silently.Luke Plant
2010-12-22Beefed up the tests for multi-cache handling of the cache middleware and view...Russell Keith-Magee
2010-12-21Fixed #11675 -- Added support for the PyLibMC cache library. In order to supp...Russell Keith-Magee
2010-11-02Fixed #14559 -- corrected some typos and misleading docstrings. Thanks to Ga...Alex Gaynor
2010-10-29Fixed #14560 -- Enable HEAD requests to be cached properly. Thanks, codemonkey!Honza Král
2010-10-28Fixed #14565 - No csrf_token on 404 page.Luke Plant
2010-10-14Fixed #14445 - Use HMAC and constant-time comparison functions where needed.Luke Plant
2010-10-11Fixed #14436 -- Escalated 1.2 PendingDeprecationWarnings to DeprecationWarnin...Russell Keith-Magee
2010-10-06Fixed #14406 -- Added a Python 2.4 compatibility to the logging interface. Th...Russell Keith-Magee
2010-10-04Fixed #12012 -- Added support for logging. Thanks to Vinay Sajip for his draf...Russell Keith-Magee
2010-09-10Fixed #14235 - UnicodeDecodeError in CSRF middlewareLuke Plant
2010-09-09Patch CSRF-protection system to deal with reported security issue. Announceme...James Bennett
2010-09-03Added explanatory note on CSRF failure page for the case of a missing Referer...Luke Plant
2010-06-30Added proper code comments for the HTTPS CSRF protection.Luke Plant