From 9d2c0a0ae6ce931699daa87735d5b8b2afaa20f9 Mon Sep 17 00:00:00 2001 From: Preston Holmes Date: Sat, 23 Feb 2013 14:19:01 -0800 Subject: Removed superfluous cookie check from auth login. This is ensured through the CSRF protection of the view --- docs/internals/deprecation.txt | 6 ++++++ 1 file changed, 6 insertions(+) (limited to 'docs') diff --git a/docs/internals/deprecation.txt b/docs/internals/deprecation.txt index ef9fd31d15..f1ae1338df 100644 --- a/docs/internals/deprecation.txt +++ b/docs/internals/deprecation.txt @@ -320,6 +320,12 @@ these changes. deprecated. Use the :class:`warnings.catch_warnings` context manager available starting with Python 2.6 instead. +* The undocumented ``check_for_test_cookie`` method in + :class:`~django.contrib.auth.forms.AuthenticationForm` will be removed + following an accelerated deprecation. Users subclassing this form should + remove calls to this method, and instead ensure that their auth related views + are CSRF protected, which ensures that cookies are enabled. + 1.8 --- -- cgit v1.3