| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-09-10 | [1.6.x] Took advantage of django.utils.six.moves.urllib.*. | Aymeric Augustin | |
| Backport of 6a6428a36 from master. | |||
| 2013-09-08 | [1.6.x] Fixed #18766 -- Pointed to pytz when LocalTimezone fails. | Aymeric Augustin | |
| Thanks void for the report. Backport of ded11aa6 from master. | |||
| 2013-09-06 | [1.6.x] Fixed #21049 -- Fixed autoreload for Python 3 | Max Burstein | |
| Changed th system module values check to return a list. In Python 3 it returns a dict_view which could occassionally produce a runtime error of "dictionary changed size during iteration". Backport of 559cb826b8 from master | |||
| 2013-09-04 | Updated six to version 1.4.1. | Aymeric Augustin | |
| 2013-09-03 | [1.6.x] Replaced "not PY3" by "PY2", new in six 1.4.0. | Aymeric Augustin | |
| Conflicts: django/db/backends/oracle/base.py django/db/backends/sqlite3/base.py django/db/models/base.py Backport of 365c3e8b from master. | |||
| 2013-09-03 | [1.6.x] Updated the bundled version of six to 1.4.0. | Aymeric Augustin | |
| Backport of 42920970 from master. | |||
| 2013-08-19 | [1.6.x] Correctly format missing Pillow/PIL exceptions messages. refs #19934 | Simon Charette | |
| Backport of b9590a6935 from master. | |||
| 2013-08-13 | Fixed is_safe_url() to reject URLs that use a scheme other than HTTP/S. | Jacob Kaplan-Moss | |
| This is a security fix; disclosure to follow shortly. | |||
| 2013-07-28 | [1.6.x] Simplified smart_urlquote and added some basic tests. | Florian Apolloner | |
| Backport of b70c371fc1f18ea0c43b503122df3f311afc7105 from master. | |||
| 2013-07-07 | [1.6.x] Fixed #20711 -- Fixed broken link in timesince.py docstring | SusanTan | |
| Backport of d63327d843 from master. | |||
| 2013-06-26 | Fixed #14881 -- Modified password reset to work with a non-integer UserModel.pk. | Tim Graham | |
| uid is now base64 encoded in password reset URLs/views. A backwards compatible password_reset_confirm view/URL will allow password reset links generated before this change to continue to work. This view will be removed in Django 1.7. Thanks jonash for the initial patch and claudep for the review. | |||
| 2013-06-19 | Removed several unused imports. | Aymeric Augustin | |
| 2013-06-18 | Fixed #20199 -- Allow ModelForm fields to override error_messages from model ↵ | Loic Bistuer | |
| fields | |||
| 2013-06-03 | Fixed loaddata for Django checkouts with non ASCII chars in the name. | Florian Apolloner | |
| 2013-06-02 | Switched to using some constants the hmac module exposes. | Alex Gaynor | |
| 2013-06-01 | Added minor splitting optimization in django.utils.ipv6._unpack_ipv4 | Danilo Bargen | |
| 2013-05-26 | Replaced `and...or...` constructs with PEP 308 conditional expressions. | Ramiro Morales | |
| 2013-05-25 | Fixed #19866 -- Added security logger and return 400 for SuspiciousOperation. | Preston Holmes | |
| SuspiciousOperations have been differentiated into subclasses, and are now logged to a 'django.security.*' logger. SuspiciousOperations that reach django.core.handlers.base.BaseHandler will now return a 400 instead of a 500. Thanks to tiwoc for the report, and Carl Meyer and Donald Stufft for review. | |||
| 2013-05-25 | Fixed #20296 -- Allowed SafeData and EscapeData to be lazy | Baptiste Mispelon | |
| 2013-05-25 | Fixed some minor translation-related issues | Claude Paroz | |
| 2013-05-25 | Removed obsolete attribute of DjangoTranslation | Claude Paroz | |
| 2013-05-23 | Fixed #19237 (again) - Made strip_tags consistent between Python versions | Claude Paroz | |
| 2013-05-22 | Fixed #19237 -- Used HTML parser to strip tags | Claude Paroz | |
| The regex method used until now for the strip_tags utility is fast, but subject to flaws and security issues. Consensus and good practice lead use to use a slower but safer method. | |||
| 2013-05-21 | Imported copyreg from six.moves | Claude Paroz | |
| 2013-05-21 | Fixed #20212 - __reduce__ should only be defined for Py3+. | Daniel Lindsley | |
| 2013-05-19 | Fixed #11915: generic Accept-Language matches country-specific variants | Łukasz Langa | |
| 2013-05-19 | Fix a typo in a comment. | Marc Tamlyn | |
| 2013-05-18 | Fixed #20246 -- Added non-breaking spaces between values an units | Emil Stenström | |
| 2013-05-18 | Fixed #14894 -- Ensure that activating a translation doesn't run into ↵ | Florian Apolloner | |
| threading issues. Thanks to maxbublis for the report and sergeykolosov for the patch. | |||
| 2013-05-18 | Fixes #19919: get_language_from_request() disregards "en-us" and "en" languages | Łukasz Langa | |
| when matching Accept-Language | |||
| 2013-05-18 | Fixed #20411 -- Don't let invalid referers blow up CSRF same origin checks. | Florian Apolloner | |
| Thanks to edevil for the report and saz for the patch. | |||
| 2013-05-17 | Replaced an antiquated pattern. | Aymeric Augustin | |
| Thanks Lennart Regebro for pointing it out. | |||
| 2013-05-15 | Removed unicode literals from PIL compat. | Florian Apolloner | |
| 2013-05-14 | Fixed #19934 - Use of Pillow is now preferred over PIL. | Daniel Lindsley | |
| This starts the deprecation period for PIL (support to end in 1.8). | |||
| 2013-05-10 | Fixed #17365, #17366, #18727 -- Switched to discovery test runner. | Carl Meyer | |
| Thanks to Preston Timmons for the bulk of the work on the patch, especially updating Django's own test suite to comply with the requirements of the new runner. Thanks also to Jannis Leidel and Mahdi Yusuf for earlier work on the patch and the discovery runner. Refs #11077, #17032, and #18670. | |||
| 2013-04-26 | Fixed #20321 -- Added missing key name in MergeDict KeyError message | Claude Paroz | |
| Thanks mark.harviston et gmail.com for the report. | |||
| 2013-04-19 | Fix != operations on lazy objects. | Alex Gaynor | |
| 2013-04-19 | Fixed #20276 -- Implemented __bool__ for MergeDict | Anton Baklanov | |
| MergeDict evaluates now to False if all contained dicts are empty. Thanks til for the report and the initial patch. | |||
| 2013-04-10 | Fixed #20231 -- Don't use allow_lazy on smart_split | Baptiste Mispelon | |
| 2013-04-01 | Fixed #20172 -- Ensured urlize supports IPv4/IPv6 addresses | Claude Paroz | |
| Thanks Marc Aymerich for the report and the initial patch. | |||
| 2013-03-31 | Fixed #20167 -- Preserve the traceback of `ImportError`s in `import_by_path`. | Joe Friedl | |
| Thanks @carljm for the review. | |||
| 2013-03-28 | Fixed spelling errors | Gavin Wahl | |
| 2013-03-27 | Fixed #20016: worked around Jython not having a buffer. | Andreas | |
| 2013-03-22 | Fixed #20108 -- Fixed filepath_to_uri decoding error | Claude Paroz | |
| This was a regression due to unicode_literals usage. Thanks Ivan Virabyan for the report and the initial patch. | |||
| 2013-03-22 | Fixed #20094 - Be more careful when checking for Iterator | Marc Tamlyn | |
| Python 2.6 has some different behaviour when checking isinstance(foo, collections.Iterator). | |||
| 2013-03-19 | Fixed #18003 -- Preserved tracebacks when re-raising errors. | konarkmodi | |
| Thanks jrothenbuhler for draft patch, Konark Modi for updates. | |||
| 2013-03-18 | Fixed #19456 -- Avoid infinite recursion when tracing LazyObject.__init__. | Aymeric Augustin | |
| Thanks blaze33 for the patch. | |||
| 2013-03-18 | Fixed #18447 -- Made LazyObject unwrap on dict access. | Aymeric Augustin | |
| Thanks Roman Gladkov and Zbigniew Siciarz. | |||
| 2013-03-18 | Clarified that constant_time_compare doesn't protect string lengths. | Aymeric Augustin | |
| 2013-03-17 | Updated bundled version of six. | Aymeric Augustin | |
