| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-06-21 | [1.10.x] Refs #21379, #26719 -- Moved username normalization to ↵ | Tim Graham | |
| AbstractBaseUser. Thanks Huynh Thanh Tam for the initial patch and Claude Paroz for review. Backport of 39805686b364358af725b695924a5a6dfa7f5302 from master | |||
| 2016-06-16 | [1.10.x] Fixed #26747 -- Used more specific assertions in the Django test suite. | Jon Dufresne | |
| Backport of 4f336f66523001b009ab038b10848508fd208b3b from master | |||
| 2016-05-18 | Moved the AUTH_USER_MODEL setting changed receiver. | Simon Charette | |
| Test suites besides Django's may need the same behavior. | |||
| 2016-05-18 | Fixed running auth_tests in isolation after ↵ | Loïc Bistuer | |
| 3a47d42fa33012b2156bf04058d933df6b3082d2. | |||
| 2016-05-17 | Refs #26601 -- Deprecated old-style middleware. | Tim Graham | |
| 2016-05-17 | Fixed #26601 -- Improved middleware per DEP 0005. | Florian Apolloner | |
| Thanks Tim Graham for polishing the patch, updating the tests, and writing documentation. Thanks Carl Meyer for shepherding the DEP. | |||
| 2016-05-17 | Fixed #20932, #25897 -- Streamlined manager inheritance. | Loïc Bistuer | |
| 2016-05-16 | Refs #21379 -- Normalized unicode username inputs | Claude Paroz | |
| 2016-05-16 | Fixed #21379 -- Created auth-specific username validators | Claude Paroz | |
| Thanks Tim Graham for the review. | |||
| 2016-05-15 | Fixed #24075 -- Used post-migration models in contrib apps receivers. | Simon Charette | |
| Thanks Markus and Tim for the review. | |||
| 2016-05-07 | Fixed #26544 -- Delayed translations of SetPasswordForm help_texts | Claude Paroz | |
| Thanks Michael Bitzi for the reporti and Tim Graham for the review. | |||
| 2016-05-06 | Refs #25847 -- Added system check for ↵ | Tim Graham | |
| UserModel.is_anonymous/is_authenticated methods. | |||
| 2016-04-28 | Fixed #26554 -- Updated docs URLs to readthedocs.io | Tim Graham | |
| 2016-04-25 | Refs #26033 -- Added password hasher support for Argon2 v1.3. | Bas Westerbaan | |
| The previous version of Argon2 uses encoded hashes of the form: $argon2d$m=8,t=1,p=1$<salt>$<data> The new version of Argon2 adds its version into the hash: $argon2d$v=19$m=8,t=1,p=1$<salt>$<data> This lets Django handle both version properly. | |||
| 2016-04-09 | Fixed #25847 -- Made User.is_(anonymous|authenticated) properties. | Jeremy Lainé | |
| 2016-04-08 | Fixed E128 flake8 warnings in tests/. | Tim Graham | |
| 2016-04-06 | Fixed #26470 -- Converted auth permission validation to system checks. | Simon Charette | |
| Thanks Tim for the review. | |||
| 2016-04-06 | Extracted auth checks tests into their own module. | Simon Charette | |
| 2016-03-23 | Fixed #25232 -- Made ModelBackend/RemoteUserBackend reject inactive users. | Alexander Gaevsky | |
| 2016-03-22 | Fixed #26395 -- Skipped the CryptPasswordHasher tests on platforms with a ↵ | Tim Graham | |
| dummy crypt module. | |||
| 2016-03-21 | Fixed #26381 -- Made UserCreationForm reusable with custom user models that ↵ | Berker Peksag | |
| define USERNAME_FIELD. | |||
| 2016-03-14 | Fixed #26334 -- Removed whitespace stripping from contrib.auth password fields. | Vincenzo Pandolfo | |
| 2016-03-12 | Fixed #26343 -- Sent user_login_failed signal if an auth backend raises ↵ | ieatkittens | |
| PermissionDenied. | |||
| 2016-03-08 | Moved createsuperuser test app into auth_tests. | Tim Graham | |
| 2016-03-08 | Fixed #26033 -- Added Argon2 password hasher. | Bas Westerbaan | |
| 2016-03-05 | Fixed #26315 -- Allowed call_command() to accept a Command object as the ↵ | Jon Dufresne | |
| first argument. | |||
| 2016-03-05 | Cleaned up tests to use call_command() instead of Command.execute(). | Jon Dufresne | |
| 2016-03-01 | Fixed #26303 -- Updated links to mod_wsgi docs. | Alasdair Nicol | |
| 2016-03-01 | Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login. | Florian Apolloner | |
| This is a security fix. | |||
| 2016-02-29 | Removed obsolete test CreatesuperuserManagementCommandTestCase.test_nolocale. | Jon Dufresne | |
| Test was added in 4c934f3921a59c7b3e088f6472b6f6da40848567 to verify that the commend works when locale.getdefaultlocale() doesn't return a locale. getdefaultlocale() no longer runs at runtime, so the test isn't needed. | |||
| 2016-02-25 | Fixed #12233 -- Allowed redirecting authenticated users away from the login ↵ | Olivier Le Thanh Duong | |
| view. contrib.auth.views.login() has a new parameter `redirect_authenticated_user` to automatically redirect authenticated users visiting the login page. Thanks to dmathieu and Alex Buchanan for the original code and to Carl Meyer for the help and review. | |||
| 2016-02-23 | Fixed a stray __unicode__() method in auth_tests. | Tim Graham | |
| 2016-02-22 | Fixed #26187 -- Removed weak password hashers from PASSWORD_HASHERS. | Tim Graham | |
| 2016-02-17 | Refs #19353 -- Added tests for using custom user models with built-in auth ↵ | Berker Peksag | |
| forms. Also updated topics/auth/customizing.txt to reflect that subclasses of UserCreationForm and UserChangeForm can be used with custom user models. Thanks Baptiste Mispelon for the initial documentation. | |||
| 2016-02-13 | Fixed #11665 -- Made TestCase check deferrable constraints after each test. | Jon Dufresne | |
| 2016-02-12 | Removed unneeded hint=None/obj=None in system check messages. | Tim Graham | |
| 2016-02-06 | Fixed #26175 -- Removed SHA1 password hashes in tests. | Tim Graham | |
| 2016-02-04 | Fixed #26089 -- Removed custom user test models from public API. | Simon Charette | |
| Thanks to Tim Graham for the review. | |||
| 2016-02-04 | Fixed #12405 -- Added LOGOUT_REDIRECT_URL setting. | Hugo Osvaldo Barrera | |
| After a user logs out via auth.views.logout(), they're redirected to LOGOUT_REDIRECT_URL if no `next_page` argument is provided. | |||
| 2016-01-29 | Refs #26022 -- Replaced six.assertRaisesRegex with assertRaisesMessage as ↵ | Hasan | |
| appropriate. | |||
| 2016-01-29 | Refs #26022 -- Used context manager version of assertRaisesMessage in tests. | Hasan | |
| 2016-01-29 | Refs #26022 -- Used context manager version of assertRaises in tests. | Hasan | |
| 2016-01-08 | Fixed #21113 -- Made LogEntry.change_message language independent | Claude Paroz | |
| Thanks Tim Graham for the review. | |||
| 2016-01-07 | Fixed #24855 -- Allowed using contrib.auth.login() without credentials. | Paulo Poiati | |
| Added an optional `backend` argument to login(). | |||
| 2016-01-06 | Fixed #25746 -- Isolated inlined test models registration. | Simon Charette | |
| Thanks to Tim for the review. | |||
| 2016-01-06 | Imported required models directly in auth management tests. | Simon Charette | |
| 2015-12-31 | Fixed #26013 -- Moved django.core.urlresolvers to django.urls. | Marten Kenbeek | |
| Thanks to Tim Graham for the review. | |||
| 2015-12-03 | Fixed many spelling mistakes in code, comments, and docs. | Josh Soref | |
| 2015-11-24 | Removed explicit User ids in tests. | Tim Graham | |
| 2015-10-27 | Removed unnecessary app_label='auth' on auth_tests models. | Tim Graham | |
| This is a relic of when the tests were stored in contrib.auth.tests. | |||
