| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2024-09-30 | Relocated path() explanation to docs/ref/urls.txt to simplify tutorial 1. | Chiara Mezzavilla | |
| Co-authored-by: Natalia <124304+nessita@users.noreply.github.com> | |||
| 2024-09-26 | Fixed #35734 -- Used JSONB_BUILD_OBJECT database function on PostgreSQL when ↵ | John Parton | |
| using server-side bindings. Regression in 81ccf92f154c6d9eac3e30bac0aa67574d0ace15. | |||
| 2024-09-25 | Updated sign() outputs in Cryptographic signing docs. | Mariusz Felisiak | |
| Signer/TimestampSigner use SHA-256 by default. Follow up to 71c4fb7beb8e3293243140e4bd74e53989196440. | |||
| 2024-09-23 | Made cosmetic edits to the Steering council docs. | Sarah Boyce | |
| 2024-09-19 | Fixed #35776 -- Dropped support for GDAL 3.0. | David Smith | |
| 2024-09-19 | Fixed #35748 -- Documented that fields are excluded from a ModelForm when ↵ | Clifford Gama | |
| formfield() returns None. Co-authored-by: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> | |||
| 2024-09-17 | Fixed #29522 -- Refactored the Deserializer functions to classes. | Amir Karimi | |
| Co-authored-by: Emad Mokhtar <emad.mokhtar@veneficus.nl> | |||
| 2024-09-17 | Fixed #35660 -- Made serialized_rollback and fixture data available in ↵ | Jacob Walls | |
| TransactionTestCase.setUpClass(). | |||
| 2024-09-16 | Fixed #35767 -- Adjusted customizing User model docs. | Carlton Gibson | |
| 2024-09-16 | Fixed #34887 -- Added support for unlimited models.CharField on SQLite. | saJaeHyukc | |
| Signed-off-by: saJaeHyukc <wogur981208@gmail.com> | |||
| 2024-09-16 | Removed setting the release schedule from Steering Council prerogatives as ↵ | Sarah Boyce | |
| per DEP 44. | |||
| 2024-09-13 | Fixed #35754 -- Mapped full-width characters in latex to half-width. | khanxmetu | |
| 2024-09-11 | Added example of email sending with additional capabilities to ↵ | Ronny V. | |
| docs/topics/email.txt. Co-authored-by: Mike Edmunds <medmunds@gmail.com> | |||
| 2024-09-11 | Fixed #35732 -- Wrapped ConcatPair expression in parentheses to ensure ↵ | Gastón Avila | |
| operator precedence. When ConcatPair was updated to use || this lost the implicit wrapping from CONCAT(...). This broke the WHERE clauses when used in combination with PostgreSQL trigram similarity. Regression in 6364b6ee1071381eb3a23ba6b821fc0d6f0fce75. Co-authored-by: Emiliano Cuenca <106986074+emicuencac@users.noreply.github.com> | |||
| 2024-09-11 | Refs #35060 -- Fixed the update to update_fields in overridden save() method ↵ | Clifford Gama | |
| docs. Regression in 3915d4c70d0d7673abe675525b58117a5099afd3. | |||
| 2024-09-09 | Refs #373 -- Added Model._is_pk_set() abstraction to check if a Model's PK ↵ | Csirmaz Bendegúz | |
| is set. | |||
| 2024-09-09 | Fixed #35631 -- Added HttpRequest.get_preferred_type(). | Jake Howard | |
| 2024-09-06 | Fixed #35681 -- Corrected geoip2 docs when describing GeoIP2Exception. | Jon Ribbens | |
| 2024-09-05 | Fixed #35737 -- Clarified where "models" comes from in tutorial 7. | Mariatta | |
| 2024-09-05 | Updated instruction for deploying with Uvicorn and Gunicorn. | SirenityK | |
| 2024-09-03 | Added CVE-2024-45230 and CVE-2024-45231 to security archive. | Natalia | |
| 2024-09-03 | Added stub release notes for 5.1.2. | Natalia | |
| 2024-09-03 | Fixed CVE-2024-45231 -- Avoided server error on password reset when email ↵ | Natalia | |
| sending fails. On successful submission of a password reset request, an email is sent to the accounts known to the system. If sending this email fails (due to email backend misconfiguration, service provider outage, network issues, etc.), an attacker might exploit this by detecting which password reset requests succeed and which ones generate a 500 error response. Thanks to Thibaut Spriet for the report, and to Mariusz Felisiak, Adam Johnson, and Sarah Boyce for the reviews. | |||
| 2024-09-03 | Fixed CVE-2024-45230 -- Mitigated potential DoS in urlize and urlizetrunc ↵ | Sarah Boyce | |
| template filters. Thanks MProgrammer (https://hackerone.com/mprogrammer) for the report. | |||
| 2024-09-03 | Added EMAIL_USE_SSL to the 'Core Settings Topical Index' docs. | github-user-en | |
| 2024-08-30 | Fixed #35716 -- Fixed VariableDoesNotExist when rendering admin fieldsets. | Sarah Boyce | |
| Regression in 01ed59f753139afb514170ee7f7384c155ecbc2d. Thank you to Fábio Domingues and Marijke Luttekes for the report, and thank you to Natalia Bidart for the review. | |||
| 2024-08-30 | Fixed #35083 -- Updated method_decorator to handle async methods. | Vaarun Sinha | |
| Co-authored-by: Natalia <124304+nessita@users.noreply.github.com> Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es> | |||
| 2024-08-30 | Dropped safeguards against very old versions of gettext. | Claude Paroz | |
| gettext 0.19 was released in 2014. | |||
| 2024-08-30 | Fixed #35702 -- Removed connection pooling note for mysql drivers. | Hisham Mahmood | |
| 2024-08-28 | Fixed #35688 -- Restored timezone and role setters to be PostgreSQL ↵ | Sarah Boyce | |
| DatabaseWrapper methods. Following the addition of PostgreSQL connection pool support in Refs #33497, the methods for configuring the database role and timezone were moved to module-level functions. This change prevented subclasses of DatabaseWrapper from overriding these methods as needed, for example, when creating wrappers for other PostgreSQL-based backends. Thank you Christian Hardenberg for the report and to Florian Apolloner and Natalia Bidart for the review. Regression in fad334e1a9b54ea1acb8cce02a25934c5acfe99f. Co-authored-by: Natalia <124304+nessita@users.noreply.github.com> | |||
| 2024-08-28 | Removed outdated note about lack of subquery support in MySQL. | Adam Johnson | |
| 2024-08-28 | Fixed typos in docs/howto/initial-data.txt. | Jacob Walls | |
| 2024-08-28 | Fixed #35666 -- Documented stacklevel usage and testing, and adjusted test ↵ | Simon Charette | |
| suite accordingly. Over the years we've had multiple instances of hit and misses when emitting warnings: either setting the wrong stacklevel or not setting it at all. This work adds assertions for the existing warnings that were declaring the correct stacklevel, but were lacking tests for it. | |||
| 2024-08-28 | Refs #35405 -- Adjusted deprecation warning stacklevel in ↵ | Simon Charette | |
| FieldCacheMixin.get_cache_name(). | |||
| 2024-08-28 | Refs #35326 -- Adjusted deprecation warning stacklevel in ↵ | Simon Charette | |
| FileSystemStorage.OS_OPEN_FLAGS. | |||
| 2024-08-28 | Refs #35060 -- Adjusted deprecation warning stacklevel in Model.save()/asave(). | Simon Charette | |
| 2024-08-28 | Fixed typo in docs/ref/models/expressions.txt. | Mariusz Felisiak | |
| 2024-08-28 | Fixed typo in docs/ref/models/expressions.txt. | Mariusz Felisiak | |
| 2024-08-27 | Fixed grammatical error in stub release notes for upcoming security release. | Natalia | |
| 2024-08-27 | Added stub release notes and release date for 5.1.1, 5.0.9, and 4.2.16. | Natalia | |
| 2024-08-23 | Removed unnecessary trailing slashes in Sphinx intersphinx_mapping URLs. | Natalia | |
| 2024-08-23 | Updated Sphinx source_suffix setting to use a mapping. | David Smith | |
| Since Sphinx 1.8 this setting should be a mapping of file extensions to file types. Before this change, Sphinx 8+ would show the following when building docs: Converting `source_suffix = '.txt'` to `source_suffix = {'.txt': 'restructuredtext'}` | |||
| 2024-08-22 | Sorted alphabetically forms list in docs/topics/auth/default.txt. | nessita | |
| 2024-08-20 | Fixed #35668 -- Added mapping support to format_html_join. | nabil-rady | |
| 2024-08-20 | Fixed #35671 -- Clarified string-based fields behavior when null=False. | Clifford Gama | |
| 2024-08-19 | Fixed #35678 -- Removed "usable_password" field from BaseUserCreationForm. | Natalia | |
| Refs #34429: Following the implementation allowing the setting of unusable passwords via the admin site, the `BaseUserCreationForm` and `UserCreationForm` were extended to include a new field for choosing whether password-based authentication for the new user should be enabled or disabled at creation time. Given that these forms are designed to be extended when implementing custom user models, this branch ensures that this new field is moved to a new, admin-dedicated, user creation form `AdminUserCreationForm`. Regression in e626716c28b6286f8cf0f8174077f3d2244f3eb3. Thanks Simon Willison for the report, Fabian Braun and Sarah Boyce for the review. | |||
| 2024-08-14 | Refs #35537 -- Clarified release notes for email attachments and ↵ | Mariusz Felisiak | |
| alternatives changes. | |||
| 2024-08-13 | Fixed #35665 -- Fixed a crash when passing an empty order_by to Window. | Simon Charette | |
| This also caused un-ordered sliced prefetches to crash as they rely on Window. Regression in e16d0c176e9b89628cdec5e58c418378c4a2436a that made OrderByList piggy-back ExpressionList without porting the empty handling that the latter provided. Supporting explicit empty ordering on Window functions and slicing is arguably a foot-gun design due to how backends will return undeterministic results but this is a problem that requires a larger discussion. Refs #35064. Thanks Andrew Backer for the report and Mariusz for the review. | |||
| 2024-08-13 | Fixed typo of --no-startup in django-admin docs. | David Smith | |
| 2024-08-12 | Refs #35648 -- Corrected release notes for SafeString.__add__() changes. | Mariusz Felisiak | |
