summaryrefslogtreecommitdiff
path: root/tests/csrf_tests
Commit message (Expand)AuthorAgeFilesLines
* Refs #33476 -- Applied Black's 2023 stable style.David Smith2023-02-011-1/+0
* Refs #32800 -- Removed CSRF_COOKIE_MASKED transitional setting per deprecatio...Mariusz Felisiak2023-01-171-30/+0
* Fixed #33567 -- Avoided setting default text/html content type on responses.Claude Paroz2022-03-091-0/+1
* Refs #33476 -- Refactored code to strictly match 88 characters line length.Mariusz Felisiak2022-02-072-3/+9
* Refs #33476 -- Reformatted code with Black.django-bot2022-02-074-270/+354
* Refs #32800 -- Renamed _sanitize_token() to _check_token_format().Chris Jerdonek2021-11-291-5/+5
* Fixed #32800 -- Changed CsrfViewMiddleware not to mask the CSRF secret.Chris Jerdonek2021-11-292-81/+108
* Refs #32800 -- Avoided use of _does_token_match() in some CSRF tests.Chris Jerdonek2021-11-162-7/+9
* Refs #32800 -- Added CSRF tests for masked and unmasked secrets during GET.Chris Jerdonek2021-11-161-0/+17
* Refs #32800 -- Added test_masked_secret_accepted_and_not_replaced().Chris Jerdonek2021-08-171-2/+17
* Refs #32800 -- Improved CsrfViewMiddlewareTestMixin._check_token_present().Chris Jerdonek2021-08-171-23/+33
* Refs #32800 -- Used the cookie argument to CsrfViewMiddlewareTestMixin._get_r...Chris Jerdonek2021-08-171-6/+3
* Refs #32800 -- Added tests of more CSRF functions.Chris Jerdonek2021-08-031-2/+72
* Refs #32800 -- Renamed _compare_masked_tokens() to _does_token_match().Chris Jerdonek2021-08-032-5/+5
* Fixed #32329 -- Made CsrfViewMiddleware catch more specific UnreadablePostError.Virtosu Bogdan2021-07-231-5/+17
* Refs #32329 -- Allowed specifying request class in csrf_tests test hooks.Virtosu Bogdan2021-07-231-43/+39
* Refs #32902 -- Moved ensure_csrf_cookie_view after protected_view.Chris Jerdonek2021-07-231-6/+5
* Fixed #32902 -- Fixed CsrfViewMiddleware.process_response()'s cookie reset lo...Chris Jerdonek2021-07-232-2/+40
* Refs #32902 -- Added CSRF test when rotate_token() is called between resettin...Chris Jerdonek2021-07-232-6/+97
* Refs #32885 -- Used _read_csrf_cookie()/_set_csrf_cookie() in more CSRF tests.Chris Jerdonek2021-06-301-18/+22
* Fixed #32885 -- Removed cookie-based token specific logic from CsrfViewMiddle...Chris Jerdonek2021-06-301-21/+31
* Refs #32843 -- Added CsrfViewMiddlewareTestMixin._get_csrf_cookie_request() h...Chris Jerdonek2021-06-291-24/+25
* Refs #32843 -- Added method/cookie arguments to CsrfViewMiddlewareTestMixin._...Chris Jerdonek2021-06-291-36/+27
* Refs #32843 -- Moved _get_GET_csrf_cookie_request() to CsrfViewMiddlewareTest...Chris Jerdonek2021-06-291-13/+11
* Fixed #32843 -- Ensured the CSRF tests' _get_GET_csrf_cookie_request() sets t...Chris Jerdonek2021-06-291-3/+6
* Refs #32800 -- Added CsrfViewMiddleware tests for all combinations of masked/...Chris Jerdonek2021-06-281-0/+50
* Refs #32800 -- Made CsrfViewMiddlewareTestMixin._csrf_id_cookie and _csrf_id_...Chris Jerdonek2021-06-281-9/+9
* Refs #32800 -- Eliminated the need for separate _get_POST_bare_secret() methods.Chris Jerdonek2021-06-281-19/+4
* Refs #32800 -- Added to csrf_tests/tests.py the unmasked version of the secret.Chris Jerdonek2021-06-281-6/+58
* Fixed #32817 -- Added the token source to CsrfViewMiddleware's bad token erro...Chris Jerdonek2021-06-231-7/+22
* Refs #32817 -- Added tests for bad CSRF token provided via X-CSRFToken or cus...Chris Jerdonek2021-06-231-9/+35
* Refs #32817 -- Added post_token/meta_token/token_header arguments to _get_POS...Chris Jerdonek2021-06-231-22/+27
* Refs #32817 -- Combined the bad-or-missing CSRF token tests.Chris Jerdonek2021-06-231-24/+11
* Fixed #32796 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...Chris Jerdonek2021-06-011-2/+2
* Refs #32796 -- Added CsrfViewMiddleware tests for incorrectly formatted cooki...Chris Jerdonek2021-06-011-14/+42
* Fixed #32795 -- Changed CsrfViewMiddleware to fail earlier on badly formatted...Chris Jerdonek2021-05-311-8/+11
* Refs #32795 -- Added CsrfViewMiddleware tests for rejecting invalid or missin...Chris Jerdonek2021-05-311-11/+41
* Fixed #32596 -- Added CsrfViewMiddleware._check_referer().Chris Jerdonek2021-05-281-1/+25
* Refs #32596 -- Added extra tests for CsrfViewMiddleware's referer logic.Chris Jerdonek2021-05-271-0/+28
* Fixed #32578 -- Fixed crash in CsrfViewMiddleware when a request with Origin ...Chris Jerdonek2021-03-251-0/+9
* Made CsrfViewMiddlewareTestMixin._get_GET_no_csrf_cookie_request() return GET...Mariusz Felisiak2021-03-221-2/+4
* Fixed #32571 -- Made CsrfViewMiddleware handle invalid URLs in Referer header.Adam Donaghy2021-03-191-0/+6
* Fixed #16010 -- Added Origin header checking to CSRF middleware.Tim Graham2021-03-181-1/+149
* Refs #16010 -- Required CSRF_TRUSTED_ORIGINS setting to include the scheme.Tim Graham2021-03-181-2/+2
* Refs #21429 -- Added SimpleTestCase.assertNoLogs() on Python < 3.10.François Freitag2021-03-021-4/+3
* Refs #30116 -- Simplified regex match group access with Match.__getitem__().Jon Dufresne2020-05-111-1/+1
* Fixed #31291 -- Renamed salt to mask for CSRF tokens.Ram Rachum2020-02-252-2/+2
* Refs #26601 -- Deprecated passing None as get_response arg to middleware clas...Claude Paroz2020-02-181-124/+145
* Dropped obsolete mimetype kwarg in csrf test viewClaude Paroz2019-09-211-1/+1
* Fixed #30137 -- Replaced OSError aliases with the canonical OSError.Jon Dufresne2019-01-281-4/+4
View Lorry Controller Status