Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fixed #34438 -- Reallowed extending UserCreationForm. | Gary Jarrel | 2023-03-28 | 1 | -0/+29 |
| | | | | Regression in 298d02a77a69321af8c0023df3250663e9d1362d. | ||||
* | Fixed some typos in comments, docstrings, and tests. | Liyang Zhang | 2023-03-20 | 1 | -1/+1 |
| | |||||
* | Fixed #33985 -- Used app_config.verbose_name in ContentType.__str__(). | Hrushikesh Vaidya | 2023-03-09 | 1 | -1/+1 |
| | |||||
* | Fixed #34384 -- Fixed session validation when rotation secret keys. | David Wobrock | 2023-03-08 | 1 | -0/+24 |
| | | | | | | Bug in 0dcd549bbe36c060f536ec270d34d9e7d4b8e6c7. Thanks Eric Zarowny for the report. | ||||
* | Fixed #31920 -- Made AuthenticationMiddleware add request.auser(). | Jon Janzen | 2023-03-07 | 1 | -0/+7 |
| | |||||
* | Increased the default PBKDF2 iterations for Django 5.0. | Mariusz Felisiak | 2023-02-04 | 1 | -4/+4 |
| | | | Follow up to 9a1848f48c1f7f627a52b2063a8a8428e77765d6. | ||||
* | Refs #33476 -- Applied Black's 2023 stable style. | David Smith | 2023-02-01 | 2 | -5/+0 |
| | | | | | | | | Black 23.1.0 is released which, as the first release of the year, introduces the 2023 stable style. This incorporates most of last year's preview style. https://github.com/psf/black/releases/tag/23.1.0 | ||||
* | Increased the default PBKDF2 iterations for Django 5.0. | Mariusz Felisiak | 2023-01-17 | 1 | -4/+4 |
| | |||||
* | Refs #33691 -- Removed django.contrib.auth.hashers.CryptPasswordHasher per ↵ | Mariusz Felisiak | 2023-01-17 | 1 | -62/+1 |
| | | | | deprecation timeline. | ||||
* | Refs #15619 -- Removed support for logging out via GET requests. | Mariusz Felisiak | 2023-01-17 | 1 | -18/+2 |
| | | | | Per deprecation timeline. | ||||
* | Refs #33561 -- Made created=True required in signature of ↵ | Mariusz Felisiak | 2023-01-17 | 1 | -36/+1 |
| | | | | | | RemoteUserBackend.configure_user() subclasses. Per deprecation timeline. | ||||
* | Refs #34074 -- Used headers argument for RequestFactory and Client in docs ↵ | David Wobrock | 2023-01-04 | 1 | -2/+2 |
| | | | | and tests. | ||||
* | Fixed #25617 -- Added case-insensitive unique username validation in ↵ | Paul Schilling | 2022-12-29 | 1 | -25/+43 |
| | | | | | | UserCreationForm. Co-Authored-By: Neven Mundar <nmundar@gmail.com> | ||||
* | Fixed #34165 -- Made permissions creation respect the "using" parameter. | David Wobrock | 2022-12-24 | 1 | -0/+19 |
| | |||||
* | Fixed #34187 -- Made UserCreationForm save many-to-many fields. | sdolemelipone | 2022-11-29 | 1 | -0/+20 |
| | |||||
* | Updated documentation and comments for RFC updates. | Nick Pope | 2022-11-10 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | - Updated references to RFC 1123 to RFC 5322 - Only partial as RFC 5322 sort of sub-references RFC 1123. - Updated references to RFC 2388 to RFC 7578 - Except RFC 2388 Section 5.3 which has no equivalent. - Updated references to RFC 2396 to RFC 3986 - Updated references to RFC 2616 to RFC 9110 - Updated references to RFC 3066 to RFC 5646 - Updated references to RFC 7230 to RFC 9112 - Updated references to RFC 7231 to RFC 9110 - Updated references to RFC 7232 to RFC 9110 - Updated references to RFC 7234 to RFC 9111 - Tidied up style of text when referring to RFC documents | ||||
* | Fixed #34066 -- Fixed link to password reset view in ↵ | Simon Kern | 2022-10-27 | 1 | -0/+22 |
| | | | | | | | UserChangeForm.password's help text when using to_field. Co-Authored-By: David Sanders <shang.xiao.sanders@gmail.com> Co-Authored-By: Mariusz Felisiak <felisiak.mariusz@gmail.com> | ||||
* | Completed test coverage for contrib.auth.forms. | Marcelo Galigniana | 2022-10-26 | 1 | -0/+31 |
| | |||||
* | Skipped scrypt tests when OpenSSL 1.1+ is not installed. | HieuPham9720 | 2022-10-20 | 1 | -0/+9 |
| | |||||
* | Completed test coverage for createsuperuser command. | Marcelo Galigniana | 2022-09-27 | 1 | -0/+13 |
| | |||||
* | Fixed ReadOnlyPasswordHashWidget's template for RTL languages. | Shai Berger | 2022-09-01 | 2 | -11/+10 |
| | |||||
* | Refs #33691 -- Deprecated insecure password hashers. | Claude Paroz | 2022-07-23 | 1 | -8/+34 |
| | | | | | SHA1PasswordHasher, UnsaltedSHA1PasswordHasher, and UnsaltedMD5PasswordHasher are now deprecated. | ||||
* | Fixed #33764 -- Deprecated BaseUserManager.make_random_password(). | Ciaran McCormick | 2022-06-03 | 1 | -0/+8 |
| | |||||
* | Renamed wrapped functions to wrapper. | Aymeric Augustin | 2022-05-25 | 1 | -2/+2 |
| | | | | | All these functions are wrapping another function. They're the wrapper, while the function they're wrapping is the wrapped. | ||||
* | Increased the default PBKDF2 iterations for Django 4.2. | Carlton Gibson | 2022-05-17 | 1 | -4/+4 |
| | |||||
* | Fixed #33691 -- Deprecated django.contrib.auth.hashers.CryptPasswordHasher. | Mariusz Felisiak | 2022-05-11 | 1 | -1/+15 |
| | |||||
* | Refactored out RedirectURLMixin.get_success_url(). | Aymeric Augustin | 2022-04-20 | 1 | -0/+15 |
| | | | | This also adds a default implementation of get_default_redirect_url(). | ||||
* | Simplified LogoutView.get_success_url(). | Aymeric Augustin | 2022-04-20 | 1 | -1/+8 |
| | | | | | | | | | | This preserves the behavior of redirecting to the logout URL without query string parameters when an insecure ?next=... parameter is given. It changes the behavior of a POST to the logout URL, as shown by the test that is changed. Currently, this results in a GET to the logout URL. However, such GET requests are deprecated. This change would be necessary in Django 5.0 anyway. This commit merely anticipates it. | ||||
* | Fixed #33648 -- Prevented extra redirect in LogoutView on invalid next page ↵ | Aymeric Augustin | 2022-04-18 | 1 | -0/+6 |
| | | | | when LOGOUT_REDIRECT_URL is set. | ||||
* | Fixed various tests on MySQL with MyISAM storage engine. | Mariusz Felisiak | 2022-04-18 | 1 | -0/+3 |
| | |||||
* | Fixed #33613 -- Made createsuperuser detect uniqueness of USERNAME_FIELD ↵ | Lucidiot | 2022-04-01 | 3 | -0/+60 |
| | | | | when using Meta.constraints. | ||||
* | Fixed #15619 -- Deprecated log out via GET requests. | René Fleschenberg | 2022-03-29 | 2 | -24/+55 |
| | | | | | | Thanks Florian Apolloner for the implementation idea. Co-Authored-By: Mariusz Felisiak <felisiak.mariusz@gmail.com> | ||||
* | Refs #15619 -- Logged out with POST requests in admin. | Mariusz Felisiak | 2022-03-24 | 1 | -1/+1 |
| | |||||
* | Refs #32365 -- Removed internal uses of utils.timezone.utc alias. | Carlton Gibson | 2022-03-24 | 1 | -2/+1 |
| | | | | | Remaining test case ensures that uses of the alias are mapped canonically by the migration writer. | ||||
* | Fixed #33561 -- Allowed synchronization of user attributes in RemoteUserBackend. | Adrian Torres | 2022-03-10 | 1 | -4/+47 |
| | |||||
* | Removed redundant QuerySet.all() calls in docs and tests. | Nick Pope | 2022-02-22 | 1 | -2/+2 |
| | | | | Most QuerySet methods are mapped onto the Manager and, in general, it isn't necessary to call .all() on the manager. | ||||
* | Refs #33476 -- Refactored code to strictly match 88 characters line length. | Mariusz Felisiak | 2022-02-07 | 6 | -23/+74 |
| | |||||
* | Refs #33476 -- Reformatted code with Black. | django-bot | 2022-02-07 | 39 | -2739/+3573 |
| | |||||
* | Fixed #30360 -- Added support for secret key rotation. | tschilling | 2022-02-01 | 1 | -0/+36 |
| | | | | | | | | Thanks Florian Apolloner for the implementation idea. Co-authored-by: Andreas Pelme <andreas@pelme.se> Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es> Co-authored-by: Vuyisile Ndlovu <terrameijar@gmail.com> | ||||
* | Fixed CVE-2021-45115 -- Prevented DoS vector in ↵ | Florian Apolloner | 2022-01-04 | 1 | -7/+4 |
| | | | | | | | | UserAttributeSimilarityValidator. Thanks Chris Bailey for the report. Co-authored-by: Adam Johnson <me@adamj.eu> | ||||
* | Fixed #33269 -- Made AnonymousUser/PermissionsMixin.has_perms() raise ↵ | Lie Ryan | 2021-11-11 | 1 | -0/+14 |
| | | | | ValueError on string or non-iterable perm_list. | ||||
* | Fixed #33178 -- Made createsuperuser validate required fields passed in ↵ | Christophe Henry | 2021-10-12 | 1 | -0/+23 |
| | | | | options in interactive mode. | ||||
* | Refs #33178 -- Added createsuperuser tests for validation of foreign keys. | Christophe Henry | 2021-10-12 | 1 | -0/+37 |
| | |||||
* | Refs #21755 -- Fixed createsuperuser crash for required foreign keys passed ↵ | Christophe Henry | 2021-10-12 | 1 | -0/+26 |
| | | | | | | in options in interactive mode. Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com> | ||||
* | Refs #29628, Refs #33178 -- Made createsuperuser validate password against ↵ | Mariusz Felisiak | 2021-10-12 | 1 | -0/+40 |
| | | | | required fields passed in options. | ||||
* | Fixed #33151 -- Fixed createsuperuser crash for many-to-many required fields ↵ | Christophe Henry | 2021-10-07 | 1 | -0/+19 |
| | | | | in non-interactive mode. | ||||
* | Increased the default PBKDF2 iterations for Django 4.1. | Mariusz Felisiak | 2021-09-20 | 1 | -3/+3 |
| | |||||
* | Refs #32508 -- Raised TypeError/ValueError instead of using "assert" in ↵ | Mateo Radman | 2021-09-06 | 1 | -0/+31 |
| | | | | encode() methods of remaining password hashers. | ||||
* | Refs #29898 -- Changed ProjectState.real_apps to set. | Mariusz Felisiak | 2021-08-11 | 1 | -1/+1 |
| | |||||
* | Refs #32956 -- Corrected usage of "insure" and "assure". | David Smith | 2021-08-02 | 1 | -4/+1 |
| |