django-defender/CHANGES.rst


Changes
=======

0.9.8
=====

- Fix watch_login with custom username (#228) [@ron8mcr]
- Replace datetime.now with timezone.now (#232) [@ericls]
- Update tox.ini with Django 4.2, Python 3.11 (#233) [@marius-mather]
- Use redis parse_url method instead of a custom one (#234) [@dkr-sahar]
- Update DEFENDER_REDIS_NAME documentation (#235) [@bennylope]
- Prevent the "Reverse for 'defender_blocks_view' not found" error (#237) [@ataylor32]
- Updated app_index.html (#238) [@ataylor32]
- Improved the "Blocked Logins" page's admin integration (#239) [@ataylor32]

0.9.7
=====

- Fix bug related to using a redis version less than 6 and not having a password. [@kencochrane]
- Fix bug in remove_prefix method [@dashgin]

0.9.6
=====

- Confirm support for Django 4.1
- Add ``DEFENDER_ATTEMPT_COOLOFF_TIME`` config to override ``DEFENDER_COOLOFF_TIME`` specifically for attempt lifespan [@djmore4]
- Add ``DEFENDER_LOCKOUT_COOLOFF_TIME`` config to override ``DEFENDER_COOLOFF_TIME`` specifically for lockout duration [@djmore4]

0.9.5
=====

- Add username support to Redis configuration. [@erdos4d]

0.9.4
-----

- Remove port number from IP address string when behind reverse proxy [@ndrsn]

0.9.3
-----

- Drop Python 3.6 support from package specifiers.

0.9.2
-----

- Drop Python 3.6 support.
- Drop Django 3.1 support.
- Confirm support for Django 4.0
- Confirm support for Python 3.10
- Drop Django 2.2 support.

0.9.1
-----

- Fix failing tests for Django main development branch (Django 4.0) [@JonathanWillitts]

0.9.0
-----

- Move CI to GitHub Actions.
- Drop support for Django 3.0
- Add support for Django 3.2

0.8.0
-----

- FIX: Change setup.py to allow for Django 3.1.x versions [@s4ke]
- FIX: dynamic load celery [@balsagoth]
- FIX: Redis requirement updated [@flaviomartins]
- FIX: if special character in redis password, we can set DEFENDER_REDIS_PASSWORD_QUOTE to True, and use quote password [@calmkart]

0.7.0
-----

- Add support for Django 3.0 [@deeprave]
- Remove support from deprecated Python 3.4 and Django 2.0. [@aleksihakli]
- Add Read the Docs documentation. [@aleksihakli]
- Add support for Python 3.7, Python 3.8, PyPy3. [@aleksihakli]


0.6.2
-----

- Add and test support for Django 2.2 [@chrisledet]
- Add support for redis client 3.2.1 [@softinio]


0.6.1
-----

- Add redispy 3.2.0 compatibility [@nrth]


0.6.0
-----

- Remove Python 3.3 [@fr0mhell]
- Remove Django 1.8-1.10 [@fr0mhell]
- Add Celery v4 [@fr0mhell]
- Update travis config [@fr0mhell]
- Update admin URL [@fr0mhell]


0.5.5
-----

- Add new setting ``DEFENDER_GET_USERNAME_FROM_REQUEST_PATH`` for control how username is accessed from request [@andrewshkovskii]
- Add new argument ``get_username`` for ``decorators.watch_login`` to propagate ``get_username`` argument to other utils functions calls done in ``watch_login`` [@andrewshkovskii]


0.5.4
-----

- Add 2 new setting variables for more granular failure limit control [@williamboman]
- Add ssl option when instantiating StrictRedis [@mjrimrie]
- Send signals when blocking username or ip [@williamboman]


0.5.3
-----

- Remove mockredis as install requirement, make only test requirement [@blueyed]


0.5.2
-----

- Fix regex in 'unblock_username_view' to handle special symbols [@ruthus18]
- Fix django requires version for 1.11.x [@kencochrane]
- Remove hiredis dependency [@ericbuckley]
- Correctly get raw client when using django_redis cache. [@cburger]
- Replace django.core.urlresolvers with django.urls For Django 2.0 [@s-wirth]
- Add username kwarg for providing username directly rather than via callback arg [@williamboman]
- Only use the username if it is actually provided  [@cobusc]


0.5.1
-----

- Middleware fix for django >- 1.10 #93 [@Temeez]
- Force the username to lowercase #90 [@MattBlack85]


0.5.0
-----

- Better support for Django 1.11 [@dukebody]
- Add support to share redis config with django.core.cache [@Franr]
- Allow decoration of functions beyond the admin login [@MattBlack85]
- Doc improvements [@dukebody]
- Allow usernames with plus signs in unblock view [@dukebody]
- Code cleanup [@KenCochrane]


0.4.3
-----

- Flex version requirements for dependencies
- Better support for Django 1.10


0.4.2
-----

- Better support for Django 1.9


0.4.1
-----

- Minor refactor to make it easier to retrieve username.


0.4.0
-----

- Add ``DEFENDER_DISABLE_IP_LOCKOUT`` and added support for Python 3.5


0.3.2
-----

- Add ``DEFENDER_LOCK_OUT_BY_IP_AND_USERNAME``, and changed settings to support django 1.8.


0.3.1
-----

- Fix the management command name


0.3
---

- Add management command ``cleanup_django_defender`` to clean up access attempt table.
- Add ``DEFENDER_STORE_ACCESS_ATTEMPTS`` config to say if you want to store attempts to DB or not.
- Add ``DEFENDER_ACCESS_ATTEMPT_EXPIRATION`` config to specify how long to store the access attempt records in the db, before the management command cleans them up.
- Change the Django admin page to remove some filters which were making the page load slow with lots of login attempts in the database.

0.2.2
-----

- Another bug fix release for more missing files in distribution


0.2.1
-----

- Bug fixes for packing missing files


0.2
---

- Add fixes to include possible security issue


0.1
---

- Initial Version
RTD HTML and PDF documentation (#146) Convert Markdown to reStructuredText Include converted documents in the docs folder 2019-11-13 19:58:47 +00:00
			`Changes`
			`=======`

Bump 0.9.8 2024-02-15 21:40:06 +00:00			`0.9.8`
			`=====`

			`- Fix watch_login with custom username (#228) [@ron8mcr]`
			`- Replace datetime.now with timezone.now (#232) [@ericls]`
			`- Update tox.ini with Django 4.2, Python 3.11 (#233) [@marius-mather]`
			`- Use redis parse_url method instead of a custom one (#234) [@dkr-sahar]`
			`- Update DEFENDER_REDIS_NAME documentation (#235) [@bennylope]`
			`- Prevent the "Reverse for 'defender_blocks_view' not found" error (#237) [@ataylor32]`
			`- Updated app_index.html (#238) [@ataylor32]`
			`- Improved the "Blocked Logins" page's admin integration (#239) [@ataylor32]`

Bump version 0.9.7 2023-02-27 22:39:23 +00:00			`0.9.7`
			`=====`

			`- Fix bug related to using a redis version less than 6 and not having a password. [@kencochrane]`
			`- Fix bug in remove_prefix method [@dashgin]`

bump version to 0.9.6 2022-11-29 13:21:40 +00:00			`0.9.6`
			`=====`

Confirm support for Django 4.1 2022-08-26 16:30:57 +00:00			`- Confirm support for Django 4.1`
Added changes and fixed small bug 2022-10-11 17:48:08 +00:00			- Add ``DEFENDER_ATTEMPT_COOLOFF_TIME`` config to override ``DEFENDER_COOLOFF_TIME`` specifically for attempt lifespan [@djmore4]
			- Add ``DEFENDER_LOCKOUT_COOLOFF_TIME`` config to override ``DEFENDER_COOLOFF_TIME`` specifically for lockout duration [@djmore4]
Confirm support for Django 4.1 2022-08-26 16:30:57 +00:00
Version 0.9.5 2022-06-06 10:17:35 +00:00			`0.9.5`
			`=====`

			`- Add username support to Redis configuration. [@erdos4d]`

Bump to 0.9.4 2022-05-01 20:01:38 +00:00			`0.9.4`
			`-----`

			`- Remove port number from IP address string when behind reverse proxy [@ndrsn]`

Version 0.9.3 2022-04-18 12:52:02 +00:00			`0.9.3`
			`-----`

			`- Drop Python 3.6 support from package specifiers.`

Version 0.9.2 2022-04-15 16:28:48 +00:00			`0.9.2`
			`-----`

Deprecate Python 3.6 support 2022-04-15 16:25:00 +00:00			`- Drop Python 3.6 support.`
Drop Django 3.1 support. 2021-12-13 19:53:51 +00:00			`- Drop Django 3.1 support.`
Confirm support Django 4.0. 2021-12-13 20:07:39 +00:00			`- Confirm support for Django 4.0`
Confirm support for Python 3.10. 2021-12-13 20:12:33 +00:00			`- Confirm support for Python 3.10`
Drop Django 2.2 support 2022-04-13 13:07:29 +00:00			`- Drop Django 2.2 support.`
Drop Django 3.1 support. 2021-12-13 19:53:51 +00:00
release version 0.9.1 2021-07-18 13:31:51 +00:00			`0.9.1`
			`-----`
Fix failing tests to work with Django (4.0) main dev branch 2021-04-28 22:26:21 +00:00
release version 0.9.1 2021-07-18 13:31:51 +00:00			`- Fix failing tests for Django main development branch (Django 4.0) [@JonathanWillitts]`
Fix failing tests to work with Django (4.0) main dev branch 2021-04-28 22:26:21 +00:00
released version 0.9.0 2021-04-25 23:36:10 +00:00			`0.9.0`
			`-----`
Migrate to GitHub Actions. (#174) * Add GitHub Actions test workflow. * Add release workflow. * Remove Travis cruft and update changelog. * Fix deps. * Remove Celery version restriction. * Relax installation requirements a bit. * Update README.rst * Update tox.ini 2020-12-21 13:18:53 +00:00
			`- Move CI to GitHub Actions.`
Drop support for Django 3.0. 2021-04-07 15:01:39 +00:00			`- Drop support for Django 3.0`
Add support for Django 3.2 2021-04-07 15:03:51 +00:00			`- Add support for Django 3.2`
Migrate to GitHub Actions. (#174) * Add GitHub Actions test workflow. * Add release workflow. * Remove Travis cruft and update changelog. * Fix deps. * Remove Celery version restriction. * Relax installation requirements a bit. * Update README.rst * Update tox.ini 2020-12-21 13:18:53 +00:00
Added changelog for 0.8.0 2020-10-17 13:59:24 +00:00			`0.8.0`
			`-----`

			`- FIX: Change setup.py to allow for Django 3.1.x versions [@s4ke]`
			`- FIX: dynamic load celery [@balsagoth]`
			`- FIX: Redis requirement updated [@flaviomartins]`
			`- FIX: if special character in redis password, we can set DEFENDER_REDIS_PASSWORD_QUOTE to True, and use quote password [@calmkart]`
RTD HTML and PDF documentation (#146) Convert Markdown to reStructuredText Include converted documents in the docs folder 2019-11-13 19:58:47 +00:00
Added changes for release 0.7.0 2020-02-23 19:59:36 +00:00			`0.7.0`
			`-----`
Add WIP changes to changelog 2019-11-13 20:56:46 +00:00
Added changes for release 0.7.0 2020-02-23 19:59:36 +00:00			`- Add support for Django 3.0 [@deeprave]`
Add WIP changes to changelog 2019-11-13 20:56:46 +00:00			`- Remove support from deprecated Python 3.4 and Django 2.0. [@aleksihakli]`
			`- Add Read the Docs documentation. [@aleksihakli]`
			`- Add support for Python 3.7, Python 3.8, PyPy3. [@aleksihakli]`


RTD HTML and PDF documentation (#146) Convert Markdown to reStructuredText Include converted documents in the docs folder 2019-11-13 19:58:47 +00:00			`0.6.2`
			`-----`

			`- Add and test support for Django 2.2 [@chrisledet]`
			`- Add support for redis client 3.2.1 [@softinio]`


			`0.6.1`
			`-----`

			`- Add redispy 3.2.0 compatibility [@nrth]`


			`0.6.0`
			`-----`

			`- Remove Python 3.3 [@fr0mhell]`
			`- Remove Django 1.8-1.10 [@fr0mhell]`
			`- Add Celery v4 [@fr0mhell]`
			`- Update travis config [@fr0mhell]`
			`- Update admin URL [@fr0mhell]`


			`0.5.5`
			`-----`

			- Add new setting ``DEFENDER_GET_USERNAME_FROM_REQUEST_PATH`` for control how username is accessed from request [@andrewshkovskii]
			- Add new argument ``get_username`` for ``decorators.watch_login`` to propagate ``get_username`` argument to other utils functions calls done in ``watch_login`` [@andrewshkovskii]


			`0.5.4`
			`-----`

			`- Add 2 new setting variables for more granular failure limit control [@williamboman]`
			`- Add ssl option when instantiating StrictRedis [@mjrimrie]`
			`- Send signals when blocking username or ip [@williamboman]`


			`0.5.3`
			`-----`

			`- Remove mockredis as install requirement, make only test requirement [@blueyed]`


			`0.5.2`
			`-----`

			`- Fix regex in 'unblock_username_view' to handle special symbols [@ruthus18]`
			`- Fix django requires version for 1.11.x [@kencochrane]`
			`- Remove hiredis dependency [@ericbuckley]`
			`- Correctly get raw client when using django_redis cache. [@cburger]`
			`- Replace django.core.urlresolvers with django.urls For Django 2.0 [@s-wirth]`
			`- Add username kwarg for providing username directly rather than via callback arg [@williamboman]`
			`- Only use the username if it is actually provided [@cobusc]`


			`0.5.1`
			`-----`

			`- Middleware fix for django >- 1.10 #93 [@Temeez]`
			`- Force the username to lowercase #90 [@MattBlack85]`


			`0.5.0`
			`-----`

			`- Better support for Django 1.11 [@dukebody]`
			`- Add support to share redis config with django.core.cache [@Franr]`
			`- Allow decoration of functions beyond the admin login [@MattBlack85]`
			`- Doc improvements [@dukebody]`
			`- Allow usernames with plus signs in unblock view [@dukebody]`
			`- Code cleanup [@KenCochrane]`


			`0.4.3`
			`-----`

			`- Flex version requirements for dependencies`
			`- Better support for Django 1.10`


			`0.4.2`
			`-----`

			`- Better support for Django 1.9`


			`0.4.1`
			`-----`

			`- Minor refactor to make it easier to retrieve username.`


			`0.4.0`
			`-----`

			- Add ``DEFENDER_DISABLE_IP_LOCKOUT`` and added support for Python 3.5


			`0.3.2`
			`-----`

			- Add ``DEFENDER_LOCK_OUT_BY_IP_AND_USERNAME``, and changed settings to support django 1.8.


			`0.3.1`
			`-----`

			`- Fix the management command name`


			`0.3`
			`---`

			- Add management command ``cleanup_django_defender`` to clean up access attempt table.
			- Add ``DEFENDER_STORE_ACCESS_ATTEMPTS`` config to say if you want to store attempts to DB or not.
			- Add ``DEFENDER_ACCESS_ATTEMPT_EXPIRATION`` config to specify how long to store the access attempt records in the db, before the management command cleans them up.
			`- Change the Django admin page to remove some filters which were making the page load slow with lots of login attempts in the database.`

			`0.2.2`
			`-----`

			`- Another bug fix release for more missing files in distribution`


			`0.2.1`
			`-----`

			`- Bug fixes for packing missing files`


			`0.2`
			`---`

			`- Add fixes to include possible security issue`


			`0.1`
			`---`

			`- Initial Version`