summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2011-09-10[1.3.X] Bump to 1.3.1 for security release.1.3.1James Bennett
git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16767 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-10[1.3.X] Altered the behavior of URLField to avoid a potential DOS vector, ↵Russell Keith-Magee
and to avoid potential leakage of local filesystem data. A security announcement will be made shortly. Backport of r16760 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16763 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-10[1.3.X] Corrected an issue which could allow attackers to manipulate session ↵Russell Keith-Magee
data using the cache. A security announcement will be made shortly. Backport of r16759 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16762 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-10[1.3.X] Added protection against spoofing of X_FORWARDED_HOST headers. A ↵Russell Keith-Magee
security announcement will be made shortly. Backport of r16758 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16761 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-09[1.3.X] Fixed #16782 -- Corrected a broken cross-reference to the database ↵Gabriel Hurley
engine setting in the tutorial. Thanks to mjumbewu for the report and patch. Backport of r16754 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16755 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-09[1.3.X] Fixed #16408 -- Fixed conversion of dates, and other problems with ↵Justin Bronn
the SpatiaLite backend. Backport of r16749 and r16750 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16751 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-09-09[1.3.X] Fixed #16791 -- Updated a broken URL in the README file. Thanks to ↵Gabriel Hurley
paulcwatts for the report and patch. Backport of r16743 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16744 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-25[1.3.X] Fixed a small admin CSS issue where the "Save and continue editing" ↵Julien Phalip
and "Save and add another" buttons were wrongly aligned with left-to-right languages in IE7. Backport of r16683 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16684 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Corrected the setup and teardown of the refactored invalid_models ↵Russell Keith-Magee
test so that it guarantees that stdout is restored, and purges all the temporary models from the app cache after running the test. Backport of r16670 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16677 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #16201 -- Ensure that requests with Content-Length=0 don't ↵Russell Keith-Magee
break the multipart parser. Thanks to albsen for the report and patch Backport of r16353 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16676 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #16299 -- Ensure that unicode strings can be used to identify ↵Russell Keith-Magee
classes in ForeignKey and ManyToManyFields. Unicode strings aren't actually legal as class names, but this is an issue if you use from __future__ import unicode_literals in your models.py file. Thanks to Martijn Bastiaan for the report, and Anthony Briggs for the final patch. Backport of r16663 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16675 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #16681 -- Refactored the invalid_models unit test so that it ↵Russell Keith-Magee
can be invoked manually. Thanks to Anthony Briggs for the report and patch. Backport of r16661 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16674 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #15499 -- Ensure that cache control headers don't try to set ↵Russell Keith-Magee
public and private as a result of multiple calls to patch_cache_control with different arguments. Thanks to AndiDog for the report and patch. Backport of r16657 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16673 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #10571 -- Factored out the payload encoding code to make sure ↵Russell Keith-Magee
it is used for PUT requests. Thanks to kennu for the report, pterk for the patch, and wildfire for the review comments. Backport of r16651 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16672 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #14876 -- Ensure that join promotion works correctly when ↵Russell Keith-Magee
there are nullable related fields. Thanks to simonpercivall for the report, oinopion and Aleksandra Sendecka for the original patch, and to Malcolm for helping me wrestle the edge cases to the ground. Backport of r16648 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16671 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #16680 -- Used single quotes for the TEMPLATE_DIRS examples in ↵Julien Phalip
part 2 of the tutorial to be consistent with the settings.py file generated by the startproject command. Thanks, Michael Tomkins. Backport of r16660 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16666 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-23[1.3.X] Fixed #16669 -- Made the startproject instruction formatting easier ↵Julien Phalip
to read and more consistent with other formatting in the tutorial part 1. Thanks to Daniel Lawrence and Aymeric Augustin. Backport of r16664 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16665 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-20[1.3.X] Fixed #16654 - Syntax error in reverse() example; thanks jedie.Timo Graham
Backport of r16630 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16631 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-20[1.3.X] Fixed #16595 - Add pop() to session docs; thanks wilfred.Timo Graham
Backport of r16628 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16629 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-06[1.3.X] Fixed #16430 - Stronger wording for CSRF protection in `modifying ↵Timo Graham
upload handlers on the fly`; thanks tomchristie. Backport of r16588 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16589 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-06[1.3.X] Fixed #16513 - Add forms import to example; thanks teraom.Timo Graham
Backport of r16586 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16587 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-06[1.3.X] Fixed #16528 - Documented test runner returns 1, regardless of the ↵Timo Graham
number of test failures; thanks teraom. Backport of r16584 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16585 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-06[1.3.X] Fixed #16580 - Typo in docs/ref/models/querysets.txtTimo Graham
Backport of r16582 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16583 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-08-06[1.3.X] Fixed #16566 - Typo in docs/ref/files/storage.txt; thanks ↵Timo Graham
thejaswi_puthraya. Backport of r16580 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16581 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-29[1.3.X] Fixed #16531 -- Fixed various instances of "undefined name" issues. ↵Jannis Leidel
Thanks, Bruno Renié. Backport from trunk (r16557). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16571 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-28[1.3.X] Fixes #16532 -- Clearer explanation of how the test client expects ↵Chris Beaven
HTTP headers to be passed. Thanks for the patch, Ricardo Bánffy. Backport of r16554 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16555 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-14[1.3.X] Added a note about the AJAX CSRF example not working on jQuery 1.5Brian Rosner
Backport of [16543] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16544 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-14[1.3.X] Reverted [14563] because it introduced a dependency from core on a ↵Ramiro Morales
contrib app (contenttypes). Fixes #16283, Refs #3055. Thanks TheRoSS for the report and Aymeric Augustin for finding the problem. This caused models shipped with some contrib apps to pollute the namespace when user's apps had the same name (e.g. auth, sites), even when these contrib apps weren't installed. This undesired loading of contrib apps happened when model validation was executed, for example when running management commands that set or inherit `requires_model_validation=True`: cleanup, dumpdata, flush, loaddata, reset, runfcgi, sql, sqlall, sqlclear, sqlcustom, sqlflush, sqlindexes, sqlinitialdata, sqlreset, sqlsequencereset, syncdb, createsuperusers, ping_google, collectstatic, findstatic. This could also cause hard to diagnose problems e.g. when performing reverse URL resolving. Backport of [16493] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16541 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-10[1.3.X] Fixed #16000 -- reference natural keys in contenttypes ↵Simon Meers
documentation. Thanks jsdalton. Backport of r16536 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16537 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-10[1.3.X] Fixed #15715 -- added non-trivial decorator example to CBV docs. ↵Simon Meers
Thanks toofishes. Backport of r16534 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16535 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-10[1.3.X] Fixed #16440 -- minor ungettext documentation issue, thanks Bradley ↵Simon Meers
Ayers. Backport of r16532 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16533 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-07-01[1.3.X] Fixed #15974 -- Correctly link to static files handling in ↵Jannis Leidel
deployment docs. Thanks, RogueBean. Backport from trunk (r16491). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16492 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-29[1.3.X] Fixed #16232 -- Corrected typo in geographic admin reference. ↵Justin Bronn
Thanks, Issac Kelly. Backport of r16484 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16486 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-26[1.3.X] Fixed #16297 -- make_list documentation error regarding integers. ↵Simon Meers
Thanks ned and teraom. Backport of r16468 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16469 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-19[1.3.X] Fixed #16258 - typo in middleware docs.Timo Graham
Backport of r16441 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16442 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-18[1.3.X] Fixed #16292 -- Removed broken link for Swiss localflavor ↵Jannis Leidel
documentation. Thanks, BernhardEssl. Backport from trunk (r16435). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16436 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-16[1.3.X] Fixed #16031 -- Corrected comments template examples. Thanks, teraom.Jannis Leidel
Backport from trunk (r16412). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16421 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-16[1.3.X] Fixed #16273 -- Fixed typo in staticfiles docs. Thanks, BernhardEssl.Jannis Leidel
Backport from trunk (r16407). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16409 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-15[1.3.X] Added a few cross references to the i18n docs and documented ↵Jannis Leidel
pgettext and colleagues. Backport from trunk (r16403). git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16404 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-12Fixed #15764 - Corrected mixin docs for DeleteView; thanks linovia for the ↵Timo Graham
report. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16380 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-11[1.3.X] Fixed #15949 - Clarified the docs for password_reset_done view; ↵Timo Graham
thanks cyclops for the suggestion; Horst Gutmann for the patch. Backport of r16378 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16379 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-11[1.3.X] Fixed #16158 - Changed FALLBACK_DYLD_LIBRARY_PATH to ↵Timo Graham
DYLD_FALLBACK_LIBRARY_PATH in GIS documentation; thanks adam for the report. Backport of r16364 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16365 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-10[1.3.X] Refs #15855 -- Recommended the csrf_protect decorator rather than ↵Carl Meyer
vary_on_cookie as workaround for cache_page caching the response before it gets to middleware. Backport of r16361 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16362 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-04[1.3.X] Fix #15880: Prevent "stalling" when running dev server in background ↵Karen Tracey
by ignoring SIGTTOU for the duration of tcsetattr. Backport of [16326] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16327 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-04[1.3.X] Fixed #16145 - typo in manager docs; thanks leereilly.Timo Graham
Backport of r16324 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16325 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-06-02[1.3.X] Fixed #16144 - layout of admin changelist broken for RTL languages.Luke Plant
Backport of [16314] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16315 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-31[1.3.X] Fixed #16090, #16091 - Typos in docs; thanks teraom.Timo Graham
Backport of r16300 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16302 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-31[1.3.X] Fixed #15801 - Incorrect external link for dictConfig; thanks David ↵Timo Graham
Niergarth for the report; jonash for the patch. Backport of r16100 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16301 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-30[1.3.X] Fixed #15776 - delete regression in Django 1.3 involving nullable ↵Luke Plant
foreign keys Many thanks to aaron.l.madison for the detailed report and to emulbreh for the fix. Backport of [16295] from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16296 bcc190cf-cafb-0310-a4f2-bffc1f526a37
2011-05-30[1.3.X] Fixed #16093 - Typo in "Performing raw SQL queries"; thanks direvus.Timo Graham
Backport of r16293 from trunk. git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16294 bcc190cf-cafb-0310-a4f2-bffc1f526a37
generated by cgit v1.3 (git 2.53.0) at 2026-05-01 20:53:36 +0000