index
:
delta/python-packages/django.git
1.8
15667
16682
24046
24215
24525
26176
3.2-man-page
4.0/make-zoneinfo-default-timezone-implementation-squashed
alex-patch-1
attic/boulder-oracle-sprint
attic/full-history
attic/generic-auth
attic/gis
attic/i18n
attic/magic-removal
attic/multi-auth
attic/multiple-db-support
attic/new-admin
attic/newforms-admin
attic/per-object-permissions
attic/queryset-refactor
attic/schema-evolution
attic/schema-evolution-ng
attic/search-api
attic/sqlalchemy
attic/unicode
c/29988-allow-f-strings
c/32409-async-tests-cannot-call-orm
c/append-slash-opt-out
c/replace-utcnow
c/use-bpo-extlink
dep0005
dep5
fix-cache-test
fix/remove-stray-file
issue/31570
link-to-code-of-conduct
main
make-zoneinfo-default-timezone-implementation
master
remove-unnecesary-if-wrap
selenium-updates
sir-sigurd-patch-1
soc2009/admin-ui
soc2009/http-wsgi-improvements
soc2009/i18n-improvements
soc2009/model-validation
soc2009/multidb
soc2009/test-improvements
soc2010/app-loading
soc2010/query-refactor
soc2010/test-refactor
stable/0.90.x
stable/0.91.x
stable/0.95.x
stable/0.96.x
stable/1.0.x
stable/1.1.x
stable/1.10.x
stable/1.11.x
stable/1.2.x
stable/1.3.x
stable/1.4.x
stable/1.5.x
stable/1.6.x
stable/1.7.x
stable/1.8.x
stable/1.9.x
stable/2.0.x
stable/2.1.x
stable/2.2.x
stable/3.0.x
stable/3.1.x
stable/3.2.x
stable/4.0.x
stable/4.1.x
stable/4.2.x
swap-closing-quote-period-in-admin-i18nable-literal
ticket-25055
ticket-31342
update-next-docs-version
github.com: django/django.git
summary
refs
log
tree
commit
diff
log msg
author
committer
range
path:
root
/
django
/
middleware
Commit message (
Expand
)
Author
Age
Files
Lines
*
Fixed #34515 -- Made LocaleMiddleware prefer language from paths when i18n pa...
Mariusz Felisiak
2023-05-02
1
-21
/
+12
*
Refs #32800 -- Removed CSRF_COOKIE_MASKED transitional setting per deprecatio...
Mariusz Felisiak
2023-01-17
1
-7
/
+1
*
Fixed #33735 -- Added async support to StreamingHttpResponse.
Carlton Gibson
2022-12-22
1
-4
/
+18
*
Fixed #34170 -- Implemented Heal The Breach (HTB) in GzipMiddleware.
Andreas Pelme
2022-12-17
1
-2
/
+10
*
Fixed #34074 -- Added headers argument to RequestFactory and Client classes.
David Wobrock
2022-11-14
1
-2
/
+1
*
Updated documentation and comments for RFC updates.
Nick Pope
2022-11-10
2
-2
/
+2
*
Used more augmented assignment statements.
Nick Pope
2022-10-31
1
-2
/
+2
*
Fixed #34069 -- Made LocaleMiddleware respect language from requests when i18...
Sergio
2022-10-13
1
-12
/
+21
*
Fixed #33700 -- Skipped extra resolution for successful requests not ending w...
Anders Kaseorg
2022-06-02
1
-12
/
+11
*
Refs #30426 -- Updated XFrameOptionsMiddleware docstring.
Clemens Wolff
2022-04-29
1
-4
/
+4
*
Refs #33476 -- Reformatted code with Black.
django-bot
2022-02-07
8
-156
/
+210
*
Refs #32800 -- Renamed _sanitize_token() to _check_token_format().
Chris Jerdonek
2021-11-29
1
-3
/
+3
*
Fixed #32800 -- Changed CsrfViewMiddleware not to mask the CSRF secret.
Chris Jerdonek
2021-11-29
1
-42
/
+65
*
Fixed #33252 -- Made cache middlewares thread-safe.
Iuri de Silvio
2021-11-03
1
-3
/
+8
*
Fixed #32768 -- Added Vary header when redirecting to prefixed i18n pattern.
Alex Hayward
2021-09-01
1
-1
/
+6
*
Refs #32800 -- Added _add_new_csrf_cookie() helper function.
Chris Jerdonek
2021-08-17
1
-20
/
+21
*
Refs #32800 -- Renamed _set_token() to _set_csrf_cookie().
Chris Jerdonek
2021-08-17
1
-9
/
+9
*
Refs #32800 -- Renamed _compare_masked_tokens() to _does_token_match().
Chris Jerdonek
2021-08-03
1
-2
/
+2
*
Refs #32916 -- Replaced request.csrf_cookie_needs_reset with request.META['CS...
Chris Jerdonek
2021-07-29
1
-12
/
+14
*
Fixed #32916 -- Combined request.META['CSRF_COOKIE_USED'] and request.csrf_co...
Chris Jerdonek
2021-07-29
1
-17
/
+7
*
Fixed #32329 -- Made CsrfViewMiddleware catch more specific UnreadablePostError.
Virtosu Bogdan
2021-07-23
1
-1
/
+2
*
Fixed #32902 -- Fixed CsrfViewMiddleware.process_response()'s cookie reset lo...
Chris Jerdonek
2021-07-23
1
-10
/
+20
*
Fixed #32817 -- Added the token source to CsrfViewMiddleware's bad token erro...
Chris Jerdonek
2021-06-23
1
-3
/
+15
*
Fixed #32842 -- Refactored out CsrfViewMiddleware._check_token().
Chris Jerdonek
2021-06-22
1
-40
/
+46
*
Fixed comment in CsrfViewMiddleware to say _reject instead of reject.
Chris Jerdonek
2021-06-12
1
-1
/
+1
*
Fixed #32796 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...
Chris Jerdonek
2021-06-01
1
-8
/
+15
*
Fixed #32795 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...
Chris Jerdonek
2021-05-31
1
-10
/
+32
*
Refs #32778 -- Improved the name of the regex object detecting invalid CSRF t...
Chris Jerdonek
2021-05-29
1
-3
/
+4
*
Refs #32596 -- Added early return on safe methods in CsrfViewMiddleware.proce...
Chris Jerdonek
2021-05-28
1
-69
/
+68
*
Refs #32596 -- Optimized CsrfViewMiddleware._check_referer() to delay computi...
Chris Jerdonek
2021-05-28
1
-7
/
+8
*
Fixed #32596 -- Added CsrfViewMiddleware._check_referer().
Chris Jerdonek
2021-05-28
1
-43
/
+52
*
Fixed #32778 -- Avoided unnecessary recompilation of token regex in _sanitize...
abhiabhi94
2021-05-25
1
-2
/
+3
*
Fixed #32678 -- Removed SECURE_BROWSER_XSS_FILTER setting.
Tim Graham
2021-04-30
1
-4
/
+0
*
Fixed #31840 -- Added support for Cross-Origin Opener Policy header.
bankc
2021-03-30
1
-0
/
+6
*
Fixed #32578 -- Fixed crash in CsrfViewMiddleware when a request with Origin ...
Chris Jerdonek
2021-03-25
1
-6
/
+11
*
Refs #32579 -- Fixed cookie domain comment in CsrfViewMiddleware.process_view().
Chris Jerdonek
2021-03-25
1
-8
/
+8
*
Refs #32579 -- Optimized good_hosts creation in CsrfViewMiddleware.process_vi...
Chris Jerdonek
2021-03-25
1
-4
/
+3
*
Fixed #32571 -- Made CsrfViewMiddleware handle invalid URLs in Referer header.
Adam Donaghy
2021-03-19
1
-1
/
+4
*
Fixed #16010 -- Added Origin header checking to CSRF middleware.
Tim Graham
2021-03-18
1
-1
/
+50
*
Refs #16010 -- Required CSRF_TRUSTED_ORIGINS setting to include the scheme.
Tim Graham
2021-03-18
1
-1
/
+9
*
Refs #26601 -- Made get_response argument required and don't accept None in m...
Mariusz Felisiak
2021-01-14
2
-12
/
+4
*
Made small readability improvements.
Martin Thoma
2020-10-28
1
-3
/
+2
*
Fixed #32124 -- Added per-view opt-out for APPEND_SLASH behavior.
Carlton Gibson
2020-10-22
1
-4
/
+5
*
Fixed #31789 -- Added a new headers interface to HttpResponse.
Tom Carrick
2020-09-14
5
-12
/
+14
*
Fixed #31928 -- Fixed detecting an async get_response in various middlewares.
Kevin Michel
2020-08-28
2
-17
/
+11
*
Refs #30573 -- Rephrased "Of Course" and "Obvious(ly)" in documentation and c...
Adam Johnson
2020-05-04
1
-1
/
+1
*
Fixed #28699 -- Fixed CSRF validation with remote user middleware.
Colton Hicks
2020-02-26
1
-1
/
+4
*
Fixed #31291 -- Renamed salt to mask for CSRF tokens.
Ram Rachum
2020-02-25
1
-20
/
+20
*
Refs #26601 -- Deprecated passing None as get_response arg to middleware clas...
Claude Paroz
2020-02-18
2
-0
/
+12
*
Fixed #30765 -- Made cache_page decorator take precedence over max-age Cache-...
Flavio Curella
2020-01-16
1
-9
/
+14
[next]