django.git - django

Age	Commit message (Expand)	Author
2023-05-02	Fixed #34515 -- Made LocaleMiddleware prefer language from paths when i18n pa...	Mariusz Felisiak
2023-01-17	Refs #32800 -- Removed CSRF_COOKIE_MASKED transitional setting per deprecatio...	Mariusz Felisiak
2022-12-22	Fixed #33735 -- Added async support to StreamingHttpResponse.	Carlton Gibson
2022-12-17	Fixed #34170 -- Implemented Heal The Breach (HTB) in GzipMiddleware.	Andreas Pelme
2022-11-14	Fixed #34074 -- Added headers argument to RequestFactory and Client classes.	David Wobrock
2022-11-10	Updated documentation and comments for RFC updates.	Nick Pope
2022-10-31	Used more augmented assignment statements.	Nick Pope
2022-10-13	Fixed #34069 -- Made LocaleMiddleware respect language from requests when i18...	Sergio
2022-06-02	Fixed #33700 -- Skipped extra resolution for successful requests not ending w...	Anders Kaseorg
2022-04-29	Refs #30426 -- Updated XFrameOptionsMiddleware docstring.	Clemens Wolff
2022-02-07	Refs #33476 -- Reformatted code with Black.	django-bot
2021-11-29	Refs #32800 -- Renamed _sanitize_token() to _check_token_format().	Chris Jerdonek
2021-11-29	Fixed #32800 -- Changed CsrfViewMiddleware not to mask the CSRF secret.	Chris Jerdonek
2021-11-03	Fixed #33252 -- Made cache middlewares thread-safe.	Iuri de Silvio
2021-09-01	Fixed #32768 -- Added Vary header when redirecting to prefixed i18n pattern.	Alex Hayward
2021-08-17	Refs #32800 -- Added _add_new_csrf_cookie() helper function.	Chris Jerdonek
2021-08-17	Refs #32800 -- Renamed _set_token() to _set_csrf_cookie().	Chris Jerdonek
2021-08-03	Refs #32800 -- Renamed _compare_masked_tokens() to _does_token_match().	Chris Jerdonek
2021-07-29	Refs #32916 -- Replaced request.csrf_cookie_needs_reset with request.META['CS...	Chris Jerdonek
2021-07-29	Fixed #32916 -- Combined request.META['CSRF_COOKIE_USED'] and request.csrf_co...	Chris Jerdonek
2021-07-23	Fixed #32329 -- Made CsrfViewMiddleware catch more specific UnreadablePostError.	Virtosu Bogdan
2021-07-23	Fixed #32902 -- Fixed CsrfViewMiddleware.process_response()'s cookie reset lo...	Chris Jerdonek
2021-06-23	Fixed #32817 -- Added the token source to CsrfViewMiddleware's bad token erro...	Chris Jerdonek
2021-06-22	Fixed #32842 -- Refactored out CsrfViewMiddleware._check_token().	Chris Jerdonek
2021-06-12	Fixed comment in CsrfViewMiddleware to say _reject instead of reject.	Chris Jerdonek
2021-06-01	Fixed #32796 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...	Chris Jerdonek
2021-05-31	Fixed #32795 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...	Chris Jerdonek
2021-05-29	Refs #32778 -- Improved the name of the regex object detecting invalid CSRF t...	Chris Jerdonek
2021-05-28	Refs #32596 -- Added early return on safe methods in CsrfViewMiddleware.proce...	Chris Jerdonek
2021-05-28	Refs #32596 -- Optimized CsrfViewMiddleware._check_referer() to delay computi...	Chris Jerdonek
2021-05-28	Fixed #32596 -- Added CsrfViewMiddleware._check_referer().	Chris Jerdonek
2021-05-25	Fixed #32778 -- Avoided unnecessary recompilation of token regex in _sanitize...	abhiabhi94
2021-04-30	Fixed #32678 -- Removed SECURE_BROWSER_XSS_FILTER setting.	Tim Graham
2021-03-30	Fixed #31840 -- Added support for Cross-Origin Opener Policy header.	bankc
2021-03-25	Fixed #32578 -- Fixed crash in CsrfViewMiddleware when a request with Origin ...	Chris Jerdonek
2021-03-25	Refs #32579 -- Fixed cookie domain comment in CsrfViewMiddleware.process_view().	Chris Jerdonek
2021-03-25	Refs #32579 -- Optimized good_hosts creation in CsrfViewMiddleware.process_vi...	Chris Jerdonek
2021-03-19	Fixed #32571 -- Made CsrfViewMiddleware handle invalid URLs in Referer header.	Adam Donaghy
2021-03-18	Fixed #16010 -- Added Origin header checking to CSRF middleware.	Tim Graham
2021-03-18	Refs #16010 -- Required CSRF_TRUSTED_ORIGINS setting to include the scheme.	Tim Graham
2021-01-14	Refs #26601 -- Made get_response argument required and don't accept None in m...	Mariusz Felisiak
2020-10-28	Made small readability improvements.	Martin Thoma
2020-10-22	Fixed #32124 -- Added per-view opt-out for APPEND_SLASH behavior.	Carlton Gibson
2020-09-14	Fixed #31789 -- Added a new headers interface to HttpResponse.	Tom Carrick
2020-08-28	Fixed #31928 -- Fixed detecting an async get_response in various middlewares.	Kevin Michel
2020-05-04	Refs #30573 -- Rephrased "Of Course" and "Obvious(ly)" in documentation and c...	Adam Johnson
2020-02-26	Fixed #28699 -- Fixed CSRF validation with remote user middleware.	Colton Hicks
2020-02-25	Fixed #31291 -- Renamed salt to mask for CSRF tokens.	Ram Rachum
2020-02-18	Refs #26601 -- Deprecated passing None as get_response arg to middleware clas...	Claude Paroz
2020-01-16	Fixed #30765 -- Made cache_page decorator take precedence over max-age Cache-...	Flavio Curella