| Age | Commit message (Collapse) | Author |
|
docs/ref/middleware.txt.
Backport of 1feedc8ef8a34484cb5afe33f5c45b543b860210 from main.
|
|
LoginRequiredMiddleware's methods.
Backport of efc3b0c627f7e3cb4e337280ecd2483758dcb0a5 from main.
|
|
tutorial 1.
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
Backport of 73e8e811416dcb5007ad9cc9d1632aaca95bf302 from main.
|
|
Backport of 826ef006681eae1e9b4bd0e4f18fa13713025cba from main.
|
|
email sending fails.
On successful submission of a password reset request, an email is sent
to the accounts known to the system. If sending this email fails (due to
email backend misconfiguration, service provider outage, network issues,
etc.), an attacker might exploit this by detecting which password reset
requests succeed and which ones generate a 500 error response.
Thanks to Thibaut Spriet for the report, and to Mariusz Felisiak, Adam
Johnson, and Sarah Boyce for the reviews.
|
|
urlizetrunc template filters.
Thanks MProgrammer (https://hackerone.com/mprogrammer) for the report.
|
|
Backport of 26a67943ac5c2f196621220b24f4314d84471d07 from main.
|
|
Backport of fed11ba4617a5fa151bbabb91eb27ec01dd7c942 from main.
|
|
Backport of 5ae99226669bc516ecb0ed17066ec11a898fddab from main.
|
|
The system check "admin.E410" was already checking for this, but the
requirement was not listed in docs/ref/contrib/admin/index.txt.
Backport of f8ef4579ea710f93ec7edc93c6f3f216bd55d6be from main.
|
|
Backport of cec62fb99e8ff63f30c7871a048ab15081142668 from main.
|
|
co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
Backport of 49815f70e4508ae21135f725da177fc2935de32c from main.
|
|
Backport of 304d25667433a59409e334a93acaaa9201840508 from main.
|
|
Backport of 90adba85b29230acfe354bffd82bc0d3a4d63c9d from main.
|
|
ValueError in get_supported_language_variant().
LocaleMiddleware didn't handle the ValueError raised by
get_supported_language_variant() when language codes were
over 500 characters.
Regression in 9e9792228a6bb5d6402a5d645bc3be4cf364aefb.
Backport of 0e94f292cda632153f2b3d9a9037eb0141ae9c2e from main.
|
|
behaviour independent from allow_overwrite.
Partially reverts 0b33a3abc2ca7d68a24f6d0772bc2b9fa603744e.
Storage.exists(name) was documented to "return False if
the name is available for a new file." but return True if
the file exists. This is ambiguous in the overwrite file
case. It will now always return whether the file exists.
Thank you to Natalia Bidart and Josh Schneier for the
review.
Backport of 8d6a20b656ff3fa18e36954668a44a831c2f6ddd from main.
|
|
goo.gl links are being removed in 2025:
https://developers.googleblog.com/en/google-url-shortener-links-will-no-longer-be-available/
Backport of fb7be022cb44d8faec52f17042fa58e4c9f02daf from main.
|
|
Backport of cf03aa4e94625971852a09e869f7ee7c328b573f from main.
|
|
Backport of 27043bde5b795eb4a605aeca1d3bc4345d2ca478 from main.
|
|
on TabularInlines.
Backport of b5f4d76bc400b9f2017da0a52ee4ff0d7c09be15 from main.
|
|
get_supported_language_variant().
Language codes are now parsed with a maximum length limit of 500 chars.
Thanks to MProgrammer for the report.
|
|
There is no need to list old browser versions or point users to
workarounds.
Backport of f302343380c77e1eb5dab3b64dd70895a95926ca from main.
|
|
Follow-up to 65ad4ade74dc9208b9d686a451cd6045df0c9c3a which added
counterintuitive to the wordlist. Removes unneeded (antiquated)
hyphenated usages.
See e.g. https://www.merriam-webster.com/dictionary/counterintuitive
Backport of 704192e478885762411252979021771ba23b8adb from main.
|
|
docs/ref/applications.txt.
Backport of aa74c4083e047473ac385753e047e075e8f04890 from main.
|
|
Backport of 8733e9af998f0009d62e4f0f3d5ee566e93a4893 from main.
|
|
Backport of 72b7b59680fecb0bf7108fc00cc27b0476aae107 from main.
|
|
When listing users, ensure that user first and last name are diverse.
Backport of bcc327aa326093a39f01a9bc98198807444900f3 from main.
|
|
templates when localization is disabled.
Backport of 3ac0e43207b4a1b9327ba12612005c285fbff7ee from main.
|
|
Backport of 60acad933d66e116c89150d3eb9040f62ca871a1 from main.
|
|
Previously, `-1` was converted to `"-1th"`. This has been updated to
return negative numbers "as is", so that for example `-1` is
converted to `"-1"`. This is now explicit in the docs.
Co-authored-by: Martin Jonson <artin.onson@gmail.com>
Backport of d3a7ed5bcc45000a6c3dd55d85a4caaa83299f83 from main.
|
|
and datetimes with DateField.
Backport of 99273fd525129a973639044dfb12cfd732d8f1d6 from main.
|
|
Backport of 0f694ce2ebce01356d48302c33c23902b4777537 from main.
|
|
Co-authored-by: Adam Johnson <me@adamj.eu>
Co-authored-by: Mehmet İnce <mehmet@mehmetince.net>
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
|
|
|
|
elements.
This work improves the accessibility of the add and change pages in the
admin site by adding <details> and <summary> elements to the collapsible
fieldsets. This has the nice side effect of no longer requiring custom
JavaScript helpers to implement the fieldsets' show/hide capabilities.
Thanks to James Scholes for the accessibility advice, and to Sarah Boyce
and Tom Carrick for reviews.
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
|
|
Thanks Claude Paroz for the review.
Co-authored-by: Nina Menezes <77671865+nmenezes0@users.noreply.github.com>
|
|
|
|
|
|
|
|
with OpClass().
This also introduces Expression.constraint_validation_compatible that
allows specifying that expression should be ignored during a constraint
validation.
|
|
|
|
|
|
docs/ref/django-admin.txt.
|
|
|
|
|
|
|
|
forms.Fields.
|
|
|
|
Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>
|
|
Co-authored-by: Adam Zapletal <adamzap@gmail.com>
|