summaryrefslogtreecommitdiff
path: root/django/utils
AgeCommit message (Collapse)Author
2013-11-01[1.6.x] Fixed spelling ("dependant" -> "dependent")Tim Graham
Dependent means reliant on. A dependant is a person like a child or spouse. Thanks Andrew Wilcox for the report. Backport of 090315f5df from master
2013-10-26[1.6.x] Removed relative usage of import_moduleClaude Paroz
Python 3 version of importlib doesn't support this syntax. Partial backport of fdd7a355bf. Refs #21335.
2013-10-26[1.6.x] Fixed #21335 -- Use importlib from python3 when using python3Andrey Antukh
Backport of 3351e94ffa from master.
2013-10-21[1.6.x] Fixed #21253 -- PBKDF2 with cached HMAC keyFlorian Apolloner
This gives a 2x speed increase compared to the existing implementation. Thanks to Steve Thomas for the initial patch and Tim Graham for finishing it. Backport of 1e4f53a6eb8d1816e51eb8bd8f95e704f6b89ead from master.
2013-10-13[1.6.x] Fixed #21256 -- Error in datetime_safe.datetime.combine.Aymeric Augustin
Backport of d9b6fb8 from master
2013-10-13Fixed #21198 -- Prevented invalid use of @python_2_unicode_compatible.Aymeric Augustin
Thanks jpic for the report and chmodas for working on a patch. Reverts 2ea80b94. Refs #19362. Conflicts: tests/utils_tests/test_encoding.py
2013-09-27[1.6.x] Fix #21185: Added tests for unescape_entities.Baptiste Mispelon
Also fixed a py3 incompatibility. Thanks to brutasse for the report. Backport of 3754f4ad410640382f9fe25073da03009cdc2ea3 from master.
2013-09-24[1.6.x] Fixed #21138 -- Increased the performance of our PBKDF2 implementation.Florian Apolloner
Thanks go to Michael Gebetsroither for pointing out this issue and help on the patch. Backport of 68540fe4df44492571bc610a0a043d3d02b3d320 from master.
2013-09-19[1.6.x] Increased default PBKDF2 iterationsPaul McMillan
Increases the default PBKDF2 iterations, since computers have gotten faster since 2011. In the future, we plan to increment by 10% per major version. Backport of a075e2ad0d from master
2013-09-18[1.6.x] Fixed #15625 -- Made message in MultiValueDictKeyError less verbose.Tim Graham
Thanks margieroginski for the suggestion. Backport of 893198509e from master
2013-09-10[1.6.x] Took advantage of django.utils.six.moves.urllib.*.Aymeric Augustin
Backport of 6a6428a36 from master.
2013-09-08[1.6.x] Fixed #18766 -- Pointed to pytz when LocalTimezone fails.Aymeric Augustin
Thanks void for the report. Backport of ded11aa6 from master.
2013-09-06[1.6.x] Fixed #21049 -- Fixed autoreload for Python 3Max Burstein
Changed th system module values check to return a list. In Python 3 it returns a dict_view which could occassionally produce a runtime error of "dictionary changed size during iteration". Backport of 559cb826b8 from master
2013-09-04Updated six to version 1.4.1.Aymeric Augustin
2013-09-03[1.6.x] Replaced "not PY3" by "PY2", new in six 1.4.0.Aymeric Augustin
Conflicts: django/db/backends/oracle/base.py django/db/backends/sqlite3/base.py django/db/models/base.py Backport of 365c3e8b from master.
2013-09-03[1.6.x] Updated the bundled version of six to 1.4.0.Aymeric Augustin
Backport of 42920970 from master.
2013-08-19[1.6.x] Correctly format missing Pillow/PIL exceptions messages. refs #19934Simon Charette
Backport of b9590a6935 from master.
2013-08-13Fixed is_safe_url() to reject URLs that use a scheme other than HTTP/S.Jacob Kaplan-Moss
This is a security fix; disclosure to follow shortly.
2013-07-28[1.6.x] Simplified smart_urlquote and added some basic tests.Florian Apolloner
Backport of b70c371fc1f18ea0c43b503122df3f311afc7105 from master.
2013-07-07[1.6.x] Fixed #20711 -- Fixed broken link in timesince.py docstringSusanTan
Backport of d63327d843 from master.
2013-06-26Fixed #14881 -- Modified password reset to work with a non-integer UserModel.pk.Tim Graham
uid is now base64 encoded in password reset URLs/views. A backwards compatible password_reset_confirm view/URL will allow password reset links generated before this change to continue to work. This view will be removed in Django 1.7. Thanks jonash for the initial patch and claudep for the review.
2013-06-19Removed several unused imports.Aymeric Augustin
2013-06-18Fixed #20199 -- Allow ModelForm fields to override error_messages from model ↵Loic Bistuer
fields
2013-06-03Fixed loaddata for Django checkouts with non ASCII chars in the name.Florian Apolloner
2013-06-02Switched to using some constants the hmac module exposes.Alex Gaynor
2013-06-01Added minor splitting optimization in django.utils.ipv6._unpack_ipv4Danilo Bargen
2013-05-26Replaced `and...or...` constructs with PEP 308 conditional expressions.Ramiro Morales
2013-05-25Fixed #19866 -- Added security logger and return 400 for SuspiciousOperation.Preston Holmes
SuspiciousOperations have been differentiated into subclasses, and are now logged to a 'django.security.*' logger. SuspiciousOperations that reach django.core.handlers.base.BaseHandler will now return a 400 instead of a 500. Thanks to tiwoc for the report, and Carl Meyer and Donald Stufft for review.
2013-05-25Fixed #20296 -- Allowed SafeData and EscapeData to be lazyBaptiste Mispelon
2013-05-25Fixed some minor translation-related issuesClaude Paroz
2013-05-25Removed obsolete attribute of DjangoTranslationClaude Paroz
2013-05-23Fixed #19237 (again) - Made strip_tags consistent between Python versionsClaude Paroz
2013-05-22Fixed #19237 -- Used HTML parser to strip tagsClaude Paroz
The regex method used until now for the strip_tags utility is fast, but subject to flaws and security issues. Consensus and good practice lead use to use a slower but safer method.
2013-05-21Imported copyreg from six.movesClaude Paroz
2013-05-21Fixed #20212 - __reduce__ should only be defined for Py3+.Daniel Lindsley
2013-05-19Fixed #11915: generic Accept-Language matches country-specific variantsŁukasz Langa
2013-05-19Fix a typo in a comment.Marc Tamlyn
2013-05-18Fixed #20246 -- Added non-breaking spaces between values an unitsEmil Stenström
2013-05-18Fixed #14894 -- Ensure that activating a translation doesn't run into ↵Florian Apolloner
threading issues. Thanks to maxbublis for the report and sergeykolosov for the patch.
2013-05-18Fixes #19919: get_language_from_request() disregards "en-us" and "en" languagesŁukasz Langa
when matching Accept-Language
2013-05-18Fixed #20411 -- Don't let invalid referers blow up CSRF same origin checks.Florian Apolloner
Thanks to edevil for the report and saz for the patch.
2013-05-17Replaced an antiquated pattern.Aymeric Augustin
Thanks Lennart Regebro for pointing it out.
2013-05-15Removed unicode literals from PIL compat.Florian Apolloner
2013-05-14Fixed #19934 - Use of Pillow is now preferred over PIL.Daniel Lindsley
This starts the deprecation period for PIL (support to end in 1.8).
2013-05-10Fixed #17365, #17366, #18727 -- Switched to discovery test runner.Carl Meyer
Thanks to Preston Timmons for the bulk of the work on the patch, especially updating Django's own test suite to comply with the requirements of the new runner. Thanks also to Jannis Leidel and Mahdi Yusuf for earlier work on the patch and the discovery runner. Refs #11077, #17032, and #18670.
2013-04-26Fixed #20321 -- Added missing key name in MergeDict KeyError messageClaude Paroz
Thanks mark.harviston et gmail.com for the report.
2013-04-19Fix != operations on lazy objects.Alex Gaynor
2013-04-19Fixed #20276 -- Implemented __bool__ for MergeDictAnton Baklanov
MergeDict evaluates now to False if all contained dicts are empty. Thanks til for the report and the initial patch.
2013-04-10Fixed #20231 -- Don't use allow_lazy on smart_splitBaptiste Mispelon
2013-04-01Fixed #20172 -- Ensured urlize supports IPv4/IPv6 addressesClaude Paroz
Thanks Marc Aymerich for the report and the initial patch.