Hopiu/django
1
0
Fork 0
mirror of https://github.com/Hopiu/django.git synced 2026-05-16 11:33:10 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
28705 commits 1 branch 0 tags 216 MiB
Commit graph

3738 commits

Author SHA1 Message Date
Florian Apolloner
4b78420d25 Fixed CVE-2019-14233 -- Prevented excessive HTMLParser recursion in strip_tags() when handling incomplete HTML entities. 
Thanks to Guido Vranken for initial report.
 2019-08-01 09:24:54 +02:00
Florian Apolloner
7f65974f82 Fixed CVE-2019-14232 -- Adjusted regex to avoid backtracking issues when truncating HTML. 
Thanks to Guido Vranken for initial report.
 2019-08-01 09:24:54 +02:00
Étienne Beaulé
5f24e7158e Fixed #30665 -- Added support for distinct argument to Avg() and Sum(). 2019-07-31 11:22:50 +02:00
Nick Pope
f618e033ac Fixed #30160 -- Added support for LZMA and XZ templates to startapp/startproject management commands. 2019-07-31 10:02:13 +02:00
Jon Dufresne
4122d9d3f1 Refs #28147 -- Fixed setting of OneToOne and Foreign Key fields to None when using attnames. 
Regression in 519016e5f2.
 2019-07-27 12:04:56 +02:00
Carlton Gibson
f13147c8de Added stub release notes for security releases. 2019-07-25 10:49:30 +02:00
Jon Dufresne
5ed20b3aa3 Fixed #30657 -- Allowed customizing Field's descriptors with a descriptor_class attribute. 
Allows model fields to override the descriptor class used on the model
instance attribute.
 2019-07-25 08:15:20 +02:00
Tom Forbes
fc75694257 Fixed #30647 -- Fixed crash of autoreloader when extra directory cannot be resolved. 2019-07-24 14:08:37 +02:00
Tom Forbes
2ff517ccb6 Fixed #30506 -- Fixed crash of autoreloader when path contains null characters. 2019-07-23 10:03:23 +02:00
Mads Jensen
a3417282ac Fixed #29824 -- Added support for database exclusion constraints on PostgreSQL. 
Thanks to Nick Pope and Mariusz Felisiak for review.

Co-Authored-By: Mariusz Felisiak <felisiak.mariusz@gmail.com>
 2019-07-16 18:04:41 +02:00
Mads Jensen
7174cf0b00 Refs #29824 -- Added RangeOperators helper class. 2019-07-16 16:57:46 +02:00
Johannes Hoppe
00d4e6f8b5 Updated Select2 to version 4.0.7. 2019-07-10 12:31:16 +02:00
Mariusz Felisiak
7991111af1
Fixed #30621 -- Fixed crash of __contains lookup for Date/DateTimeRangeField when the right hand side is the same type. 
Thanks Tilman Koschnick for the report and initial patch.
Thanks Carlton Gibson the review.

Regression in 6b048b364c.
 2019-07-10 10:33:36 +02:00
Simon Charette
ee6e93ec87 Fixed #30628 -- Adjusted expression identity to differentiate bound fields. 
Expressions referring to different bound fields should not be
considered equal.

Thanks Julien Enselme for the detailed report.

Regression in bc7e288ca9.
 2019-07-10 07:46:08 +02:00
Mariusz Felisiak
08e69cad9c Added stub release notes for 2.2.4. 2019-07-09 07:39:35 +02:00
can
febe136d4c Fixed #30397 -- Added app_label/class interpolation for names of indexes and constraints. 2019-07-08 14:57:56 +02:00
Johannes Hoppe
bc91f27a86 Refs #29444 -- Added support for fetching a returned non-integer insert values on Oracle. 
This is currently not actively used, since the ORM will ask the
SQL compiler to only return auto fields.
 2019-07-08 08:53:08 +02:00
Hasan Ramezani
a5308514fb Fixed #27801 -- Made createsuperuser fall back to environment variables for password and required fields. 2019-07-02 12:55:09 +02:00
Mariusz Felisiak
868cd56f05 Added CVE-2019-12781 to the security release archive. 2019-07-01 10:14:36 +02:00
Mariusz Felisiak
fc41401f33 Added release date for 2.2.3. 2019-07-01 07:48:45 +02:00
Carlton Gibson
54d0f5e62f Fixed CVE-2019-12781 -- Made HttpRequest always trust SECURE_PROXY_SSL_HEADER if set. 
An HTTP request would not be redirected to HTTPS when the
SECURE_PROXY_SSL_HEADER and SECURE_SSL_REDIRECT settings were used if
the proxy connected to Django via HTTPS.

HttpRequest.scheme will now always trust the SECURE_PROXY_SSL_HEADER if
set, rather than falling back to the request scheme when the
SECURE_PROXY_SSL_HEADER did not have the secure value.

Thanks to Gavin Wahl for the report and initial patch suggestion, and
Shai Berger for review.
 2019-07-01 07:48:04 +02:00
Mariusz Felisiak
30b3ee9d0b Added stub release notes for security releases. 2019-07-01 06:57:27 +02:00
Claude Paroz
d54baf6970 Updated translations from Transifex 
Forward port of b3f7262e6e5d9e68e37fb21af89ed6656291faa3 from stable/2.2.x
 2019-06-29 16:17:16 +02:00
nsasaki128
a289e79679 Fixed #30594 -- Added 'private' Cache-Control directive to never_cache() decorator. 2019-06-26 09:25:24 +02:00
Tom Forbes
8454f6dea4 Fixed #30588 -- Fixed crash of autoreloader when __main__ module doesn't have __file__ attribute. 2019-06-26 06:44:10 +02:00
Nadège Michel
87b1ad6e73 Fixed #30421 -- Allowed symmetrical intermediate table for self-referential ManyToManyField. 2019-06-21 15:03:17 +02:00
Jon Dufresne
2ef6f209f7 Fixed typos in 1.11.19, 2.0.11, 2.1.6 release notes. 2019-06-21 07:07:23 +02:00
Andrew Godwin
a415ce70be Fixed #30451 -- Added ASGI handler and coroutine-safety. 
This adds an ASGI handler, asgi.py file for the default project layout,
a few async utilities and adds async-safety to many parts of Django.
 2019-06-20 12:29:43 +02:00
Sanyam Khurana
87f5d07eed Fixed #12952 -- Adjusted admin log change messages to use form labels instead of field names. 2019-06-14 18:20:29 +02:00
can
fde9b7d35e Fixed #30128 -- Fixed handling timedelta timezone in database functions. 2019-06-13 09:29:43 +02:00
Jon Dufresne
9e38ed0536 Fixed #27486 -- Fixed Python 3.7 DeprecationWarning in intword and filesizeformat filters. 
intword and filesizeformat passed floats to ngettext() which is
deprecated in Python 3.7. The rationale for this warning is documented
in BPO-28692: https://bugs.python.org/issue28692.

For filesizeformat, the filesize value is expected to be an int -- it
fills %d string formatting placeholders. It was likely coerced to a
float to ensure floating point division on Python 2. Python 3 always
does floating point division, so coerce to an int instead of a float to
fix the warning.

For intword, the number may contain a decimal component. In English, a
decimal component makes the noun plural. A helper function,
round_away_from_one(), was added to convert the float to an integer that
is appropriate for ngettext().
 2019-06-11 20:34:59 +02:00
Hasan Ramezani
dcb8f00d06 Fixed #29379 -- Added autocomplete attribute to contrib.auth.forms fields. 
Thank you to Nick Pope for review.

Co-authored-by: CHI Cheng <cloudream@gmail.com>
 2019-06-07 12:44:39 +02:00
Tobias Bengfort
581a0f4545 Refs #30226 -- Added User.get_user_permissions() method. 
Added to mirror the existing User.get_group_permissions().
 2019-06-05 13:56:37 +02:00
Tobias Bengfort
75337a6050 Fixed #30226 -- Added BaseBackend for authentication. 2019-06-05 13:39:46 +02:00
Étienne Beaulé
4b6dfe1622 Fixed #30542 -- Fixed crash of numerical aggregations with filter. 
Filters in annotations crashed when used with numerical-type
aggregations (i.e. Avg, StdDev, and Variance). This was caused as the
source expressions no not necessarily have an output_field (such as the
filter field), which lead to an AttributeError: 'WhereNode' object has
no attribute output_field.

Thanks to Chuan-Zheng Lee for the report.

Regression in c690afb873 and two following
commits.
 2019-06-05 08:06:26 +02:00
Mariusz Felisiak
1f81e2df69 Added stub release notes for 2.2.3. 2019-06-05 06:57:44 +02:00
Nick Pope
21b1d23912 Added CVE-2019-12308 to the security release archive. 2019-06-03 21:44:55 +02:00
Nick Pope
8fb0ea5583 Added CVE-2019-11358 to the security release archive. 2019-06-03 21:44:55 +02:00
Mariusz Felisiak
100ec901ae Fixed typos in 1.11.21, 2.1.9, 2.2.2 release notes. 2019-06-03 14:08:51 +02:00
Carlton Gibson
34ec52269a Applied jQuery patch for CVE-2019-11358. 2019-06-03 11:36:12 +02:00
Carlton Gibson
deeba6d920 Fixed CVE-2019-12308 -- Made AdminURLFieldWidget validate URL before rendering clickable link. 2019-06-03 11:36:12 +02:00
Carlton Gibson
98c0fe19ee Added stub release notes for security releases. 2019-06-03 10:48:52 +02:00
Hasan Ramezani
e2de49ec2e Fixed #28520 -- Added --start-at/--start-after options to runtests.py. 2019-05-31 07:01:12 +02:00
Tom Forbes
480492fe70 Fixed #30523 -- Fixed updating file modification times on seen files in auto-reloader when using StatReloader. 
Previously we updated the file mtimes if the file has not been seen
before - i.e on the first iteration of the loop.

If the mtime has been changed we triggered the notify_file_changed()
method which in all cases except the translations will result in the
process being terminated. To be strictly correct we need to update the
mtime for either branch of the conditional.

Regression in 6754bffa2b.
 2019-05-29 09:41:24 +02:00
Tom Forbes
0344565179 Fixed #30516 -- Fixed crash of autoreloader when re-raising exceptions with custom signature. 
Regression in c8720e7696.
 2019-05-29 08:08:50 +02:00
Caio Ariede
a3f91891d2 Fixed #30315 -- Fixed crash of ArrayAgg and StringAgg with ordering when used in Subquery. 2019-05-28 10:05:50 +02:00
Tom Forbes
b2790f74d4 Fixed #30479 -- Fixed detecting changes in manage.py by autoreloader when using StatReloader. 
Regression in c8720e7696.
 2019-05-28 08:31:33 +02:00
Mariusz Felisiak
b6c4766f53
Refs #29548 -- Updated docs for MariaDB support. 2019-05-27 19:59:49 +02:00
Johan Lübcke
0670b1b403 Fixed #30485 -- Adjusted django.utils.http.urlencode for doseq=False case. 2019-05-24 17:15:34 +02:00
Rob
58df8aa40f Fixed #28780 -- Allowed specyfing a token parameter displayed in password reset URLs. 
Co-authored-by: Tim Givois <tim.givois.mendez@gmail.com>
 2019-05-24 08:40:25 +02:00
Hasan Ramezani
9d6f981a66 Fixed #28763 -- Allowed overriding the session cookie age with SessionStore.get_session_cookie_age(). 2019-05-21 08:50:09 +02:00
Mariusz Felisiak
df28ebd6c8 Fixed typo in docs/releases/3.0.txt. 2019-05-21 08:21:35 +02:00
Thomasina Lee
c38e7a79f4 Fixed #30488 -- Removed redundant Coalesce call in SQL generated by SearchVector. 
Regression in 405c836336.
 2019-05-20 08:34:06 +02:00
ruchit2801
04042b2b44 Fixed #30463 -- Fixed crash of deprecation message when Meta.ordering contains expressions. 
Regression in 1b1f64ee5a.
 2019-05-18 19:29:00 +02:00
Johannes Hoppe
8d010f3986 Fixed #30220 -- Added support for headless mode in selenium tests. 2019-05-17 08:14:54 +02:00
Claude Paroz
e286987a27 Fixed #30459 -- Delegated hide/show JS toggle to parent div. 
Co-authored-by: Carlton Gibson <carlton.gibson@noumenal.es>
 2019-05-17 07:46:45 +02:00
Troon
a3a4f5c144 Fixed #30310 -- Added support for looking up HttpHeaders.headers using underscores. 2019-05-09 16:26:52 +02:00
Jon Dufresne
48235ba807 Refs #30399 -- Made assertHTMLEqual normalize character and entity references. 2019-05-09 15:55:32 +02:00
Mariusz Felisiak
30dd43884e
Added stub release notes for 2.2.2. 2019-05-08 14:41:16 +02:00
Hasan Ramezani
f038214d91 Fixed #29056 -- Fixed HTML5 validation of required SelectDateWidget. 
placeholder is required for "select" with "required" attribute.
 2019-05-08 12:46:30 +02:00
Jon Dufresne
b915b9f10f Refs #27753 -- Deprecated django.utils.text.unescape_entities(). 
The function was undocumented and only required for compatibility with
Python 2.

Code should use Python's html.unescape() that was added in Python 3.4.
 2019-05-08 08:00:59 +02:00
Tobias Kunze
3166880301 Fixed #29352 -- Allowed specifying a Feed language. 2019-05-06 15:10:54 +02:00
Daniel Hahler
29601bca9b Ignored pywatchman.SocketTimeout in Watchman autoreloader. 
Bumped minimum supported pywatchman version to 1.2.0.

These exceptions don't require checking a server status.
 2019-05-03 13:56:49 +02:00
Mykola Kokalko
ef082ebb84 Fixed #29529 -- Allowed models.fields.FilePathField to accept a callable path. 2019-05-02 11:11:56 +02:00
Mariusz Felisiak
2106b983c4
Added release date for 2.2.1. 2019-05-01 07:05:47 +02:00
François Freitag
568eed9e79 Fixed #30245 -- Added -k option to DiscoverRunner. 2019-04-30 16:20:51 +02:00
can
719b746620 Fixed #30412 -- Fixed crash when adding check constraints with OR'ed condition on Oracle and SQLite. 2019-04-30 12:32:27 +02:00
Jon Dufresne
6866c91b63 Fixed #30418 -- Added --skip-checks management command option. 2019-04-30 10:48:30 +02:00
Simon Charette
a8b3f96f6a Fixed #30408 -- Fixed crash when adding check constraints with LIKE operator on Oracle and PostgreSQL. 
The LIKE operator wildcard generated for contains, startswith, endswith and
their case-insensitive variant lookups was conflicting with parameter
interpolation on CREATE constraint statement execution.

Ideally we'd delegate parameters interpolation in DDL statements on backends
that support it but that would require backward incompatible changes to the
Index and Constraint SQL generating methods.

Thanks David Sanders for the report.
 2019-04-30 07:38:22 +02:00
kingbuzzman
673fe2e3ec Fixed #30148 -- Logged COPY ... TO statements in connection.queries on PostgreSQL. 2019-04-29 14:20:17 +02:00
Tom Forbes
6754bffa2b Fixed #30323 -- Fixed detecting changes by autoreloader when using StatReloader. 2019-04-29 11:41:00 +02:00
Tom Forbes
0636d4d2aa Refs #30323 -- Prevented crash of autoreloader when get_resolver().urlconf_module raising an exception. 2019-04-29 11:41:00 +02:00
Carlton Gibson
98296f86b3
Fixed #30351 -- Handled pre-existing permissions in proxy model permissions data migration. 
Regression in 181fb60159.
 2019-04-27 20:18:22 +02:00
Jacob Green
ed3c59097a
Fixed #30361 -- Increased the default timeout of watchman client to 5 seconds and made it customizable. 
Made the default timeout of watchman client customizable via
DJANGO_WATCHMAN_TIMEOUT environment variable.
 2019-04-26 12:55:49 +02:00
Aarni Koskela
efeceba589
Fixed #30312 -- Relaxed admin check from django.contrib.sessions to SessionMiddleware subclasses. 2019-04-26 11:31:06 +02:00
Mariusz Felisiak
85676979a4
Refs #30388 -- Added release note for 0f22671ecb. 2019-04-25 15:45:00 +02:00
Jon Dufresne
8d76443aba Fixed #30399 -- Changed django.utils.html.escape()/urlize() to use html.escape()/unescape(). 2019-04-25 15:09:07 +02:00
Alasdair Nicol
a5accc0368 Fixed #30318 -- Added check for importability of arguments of custom error handler views. 
Thanks to Jon on Stack Overflow for reporting the issue.
 2019-04-25 11:08:22 +02:00
Simon Charette
405c836336 Fixed #30385 -- Restored SearchVector(config) immutability. 
Regression in 1a28dc3887.

The usage of CONCAT to allow SearchVector to deal with non-text fields
made the generated expression non-IMMUTABLE which prevents a functional
index to be created for it.

Using a combination of COALESCE and ::text makes sure the expression
preserves its immutability.

Refs #29582. Thanks Andrew Brown for the report, Nick Pope for the
review.
 2019-04-23 08:11:33 +02:00
Dustin Neighly
49fb3f5f3e Fixed #30341 -- Added support for the furlong unit in Distance. 2019-04-19 08:54:23 +02:00
Mariusz Felisiak
753580ecd1
Made cosmetic edits in docs/releases/2.2.1.txt. 2019-04-19 08:27:06 +02:00
Scott Fitsimones
a14c0fda15 Fixed #30328 -- Fixed crash of IntegerField.validators when limit_value in a custom validator is callable. 2019-04-19 07:58:27 +02:00
Ramiro Morales
aed89adad5 Fixed #30367 -- Changed "pip install" to "python -m pip install" in docs, comments and hints. 2019-04-18 14:41:15 +02:00
Ville Skyttä
03db5fddfd Fixed typos in docs, comments, and exception messages. 2019-04-18 09:33:53 +02:00
Oleh Mykytiuk
177fa08339 Fixed #30370 -- Added dbshell support for client TLS certificates on PostgreSQL. 2019-04-18 08:10:31 +02:00
can
d87bd29c4f Fixed #30335, #29139 -- Fixed crash when ordering or aggregating over a nested JSONField key transform. 2019-04-18 07:16:50 +02:00
Hasan Ramezani
917fd9d03f
Fixed #27755 -- Added ModelAdmin.get_inlines() hook. 2019-04-17 07:16:04 +02:00
Mariusz Felisiak
5f7991c42c Fixed #30325 -- Reverted "Fixed #29725 -- Removed unnecessary join in QuerySet.count() and exists() on a many-to-many relation." 
This reverts commit 1299421cad due to
a regression with custom managers.
 2019-04-15 12:02:26 +02:00
Florian Apolloner
2e38f2015a
Fixed #30350 -- Prevented recreation of migration for operations with a range object. 
Thanks to Mariusz Felisiak for helping with the patch.
 2019-04-14 12:04:48 +02:00
Florian Apolloner
afc708cf6d
Fixed #30330 -- Fixed setting of primary key to None during fast-delete. 
Regression in bc7dd8490b.
 2019-04-08 21:14:00 +02:00
Ran Benita
19fc6376ce
Fixed #30304 -- Added support for the HttpOnly, SameSite, and Secure flags on language cookies. 2019-04-08 11:26:06 +02:00
Tim Graham
c84b91b760 Refs #27807 -- Removed docs for User.username_validator. 
The new override functionality claimed in refs #21379 doesn't work.
Forwardport of 714fdbaa7048c2321f6238d9421137c33d9af7cc from stable/1.10.x.
 2019-04-07 20:02:20 -04:00
Simone Pellizzari
d0315584b5
Fixed #30332 -- Fixed crash of ordering by expressions with params in ArrayAgg and StringAgg. 2019-04-06 14:23:29 +02:00
Nick Pope
efb257a017 Fixed #30324 -- Forced utf-8 encoding when loading the template for the technical 500 debug page. 
Regression in 50b8493.
Related to ea542a9.
 2019-04-05 16:35:01 +02:00
Mariusz Felisiak
5efaf078f7
Fixed #30331 -- Added support for psycopg2 2.8. 2019-04-05 11:05:53 +02:00
msg
755673e1bc
Fixed #30307 -- Fixed incorrect quoting of database user password when using dbshell on Oracle. 
Regression in acfc650f2a.
 2019-04-04 08:33:28 +02:00
Mariusz Felisiak
e6588aa4e7
Added stub release notes for 2.2.1. 2019-04-03 08:26:05 +02:00
Alex Gaynor
851d9eac23 Fixed typo in docs/releases/2.2.txt. 2019-04-02 09:18:06 +02:00
Carlton Gibson
93daed25a4 Corrected date format in 2.2 release notes. 2019-04-01 15:00:40 +02:00
Carlton Gibson
7191beec4e Set release date in v2.2 release notes. 2019-04-01 12:11:50 +02:00
Tim Graham
8335d59200 Fixed #30289 -- Prevented admin inlines for a ManyToManyField's implicit through model from being editable if the user only has the view permission. 2019-03-30 16:49:16 -04:00
Tim Graham
e245046bb6 Added stub 2.1.8 release notes. 2019-03-30 12:55:30 -04:00
sage
9aa56cb0d5 Fixed #30294 -- Allowed HttpResponse to accept memoryview content. 2019-03-29 09:43:49 -04:00
Mariusz Felisiak
881362986a Fixed "byte string" typo in various docs and comments. 2019-03-28 10:00:12 +01:00
Nick Pope
398afba084 Updated spelling and RFCs in HttpOnly cookie flag docs. 2019-03-27 10:09:23 -04:00
Mariusz Felisiak
dc53f2135b
Fixed typo in docs/releases/3.0.txt. 2019-03-25 08:39:11 +01:00
Jani Tiainen
044cc54420
Fixed #30259 -- Added support for admin_order_field attribute on properties in ModelAdmin.list_display. 2019-03-24 20:43:56 +01:00
Nick Pope
d26b242443
Fixed #30271 -- Added the Sign database function. 2019-03-22 12:52:39 +01:00
Simon Charette
9dc367dc10 Refs #30158 -- Added alias argument to Expression.get_group_by_cols(). 2019-03-21 18:47:46 -04:00
Hasan Ramezani
5fc5d93512 Fixed #29956 -- Allowed overriding an order field widget in formsets. 2019-03-21 11:51:01 +01:00
Nick Pope
0b70985f42 Fixed #30240 -- Added SHA1, SHA224, SHA256, SHA384, and SHA512 database functions. 
Thanks Mariusz Felisiak and Tim Graham for reviews.
 2019-03-20 19:30:43 +01:00
Francisco Couzo
0193bf874f Fixed #28738 -- Added the GeometryDistance function. 2019-03-20 12:54:42 -04:00
Carlton Gibson
418263c457
Fixed #30263 -- Doc'd changes to form Media sorting (refs #30179). 
Thanks to Tim Graham for review.
 2019-03-18 16:26:28 +01:00
tschilling
7c68cea7ee Fixed #30186 -- Made showmigrations --list display the applied datetimes at verbosity 2+. 2019-03-08 08:25:38 -05:00
ahbk
d527639804 Fixed #29754 -- Added is_dst parameter to Trunc database functions. 2019-03-07 10:02:18 -05:00
tschilling
38c3f7ea59 Corrected markup in v3.0 release notes. 2019-03-07 11:11:45 +01:00
Mariusz Felisiak
9ff18c08c3
Refs #28643 -- Added MD5 database function. 
Thanks Tim Graham, Nick Pope and Simon Charette for reviews.
 2019-02-21 10:52:51 +01:00
Jon Dufresne
7feddd878c Fixed #18707 -- Added support for the test client to return 500 responses. 2019-02-20 12:16:10 +01:00
Claude Paroz
a8e2a9bac6 Refs #15902 -- Deprecated storing user's language in the session. 2019-02-14 10:23:02 -05:00
Jon Dufresne
76990cbbda Fixed #30171 -- Fixed DatabaseError in servers tests. 
Made DatabaseWrapper thread sharing logic reentrant. Used a reference
counting like scheme to allow nested uses.

The error appeared after 8c775391b7.
 2019-02-14 10:04:55 -05:00
Tim Graham
3b64e2b775 Refs #29478 -- Clarified cached_property 2.2 release note. 2019-02-12 18:17:30 -05:00
Claude Paroz
15715bf2a2 Fixed #22423 -- Added support for MySQL operators on real geometries. 
Thanks Viswanathan Mahalingam for the report and initial patch, and
Nicke Pope and Tim Graham for the review.
 2019-02-12 17:29:16 -05:00
Tim Graham
d6e5aad5c7 Added CVE-2019-6975 to the security release archive. 2019-02-11 16:08:50 -05:00
Tim Graham
1b8f552b08 Refs #30177 -- Forwardported 2.0.13 release notes. 2019-02-11 15:45:04 -05:00
Carlton Gibson
b39bd0aa6d
Refs #30175 -- Added release notes for 2.1.7, 2.0.12, and 1.11.20 releases. 2019-02-11 15:46:33 +01:00
Atul Varma
b6bb912e9c Fixed typo in docs/releases/2.2.txt. 2019-02-11 08:54:05 -05:00
Carlton Gibson
402c0caa85 Fixed CVE-2019-6975 -- Fixed memory exhaustion in utils.numberformat.format(). 
Thanks Sjoerd Job Postmus for the report and initial patch.
Thanks Michael Manfre, Tim Graham, and Florian Apolloner for review.
 2019-02-11 11:08:45 +01:00
Jon Dufresne
c901a1775b Fixed typo in docs/releases/3.0.txt. 2019-02-10 17:45:03 +01:00
Tim Graham
ea87a85fad
Dropped support for GEOS 3.4. 2019-02-09 08:40:55 -05:00
Mariusz Felisiak
25829197bb
Removed extra characters in docs header underlines. 2019-02-08 21:38:30 +01:00
Himanshu Lakhara
22aab8662f Fixed #30004 -- Changed default FILE_UPLOAD_PERMISSION to 0o644. 2019-02-08 14:53:15 -05:00
Tim Graham
e7fd69d051 Fixed #30166 -- Dropped support for GDAL 1.11. 2019-02-08 14:08:05 -05:00
Jon Dufresne
6eb4996672 Fixed #30165 -- Deprecated ugettext(), ugettext_lazy(), ugettext_noop(), ungettext(), and ungettext_lazy(). 2019-02-08 10:05:53 -05:00
Gregory N. Schmit
48c17807a9 Fixed #16027 -- Added app_label to ContentType.__str__(). 2019-02-07 19:56:47 -05:00
Carlton Gibson
5cc6f02f91 Added stub release notes for security releases. 2019-02-07 15:46:53 +01:00
Mariusz Felisiak
759a9b710c
Updated Oracle docs links to Oracle 18c. 2019-02-07 09:59:47 +01:00
Tim Graham
d55e882927 Refs #27753 -- Deprecated django.utils.encoding.force_text() and smart_text(). 2019-02-06 14:12:06 -05:00
Mariusz Felisiak
21bb71ef0d
Fixed #30157 -- Dropped support for Oracle 12.1. 
Thanks Tim Graham for the review.
 2019-02-06 19:25:04 +01:00
Tim Graham
f09b0f6483 Refs #27753 -- Removed django.utils.safestring.SafeBytes. 2019-02-05 13:00:15 -05:00
Tim Graham
3004d7057f Refs #27753 -- Removed django.utils.functional.curry(). 2019-02-05 13:00:15 -05:00
Tim Graham
9a750cbd5c Refs #27753 -- Removed django.utils.decorators.ContextDecorator alias. 2019-02-05 13:00:11 -05:00
Tim Graham
41384812ef Refs #27753 -- Removed django.utils.six. 2019-02-05 12:58:55 -05:00
Tim Graham
efe28d3f56 Refs #27753 -- Removed django.utils._os.abspathu(), upath(), and npath(). 2019-02-05 12:57:11 -05:00
Tim Graham
d1f4b3c68a Refs #27753 -- Removed django.utils.decorators.available_attrs(). 2019-02-05 12:52:07 -05:00
Tim Graham
c679f357a8 Refs #27753 -- Removed django.utils.lru_cache. 2019-02-05 12:52:07 -05:00
Tim Graham
6d2ae49f25 Refs #27753 -- Removed django.test.utils.patch_logger() and str_prefix(). 2019-02-05 12:52:07 -05:00
Tim Graham
83c2bc52c2
Refs #27753 -- Deprecated django.utils.http urllib aliases. 2019-02-04 18:53:11 -05:00
Daniel Hahler
fdc4518fe2 Fixed duplicate word in docs/releases/2.0.txt. (#10934) 2019-02-04 18:30:09 -05:00
Tim Graham
39ebdf5a3c Fixed #30155 -- Dropped support for PostgreSQL 9.4 and PostGIS 2.1. 2019-02-04 18:07:02 -05:00
Tim Graham
d47498c5df Fixed #30156 -- Dropped support for SpatiaLite 4.1 and 4.2. 2019-02-04 13:16:38 -05:00
Tim Graham
c34c6d0a2f Used extlinks for GitHub commits. 2019-02-01 21:42:48 +01:00
Johannes Hoppe
b131f9c79f Refs #29444 -- Renamed DatabaseFeatures.can_return_id* to be generic for other columns. 2019-01-30 15:31:56 -05:00
Dan Tao
738faf9da2 Fixed #30108 -- Allowed adding foreign key constraints in the same statement that adds a field. 2019-01-29 15:42:57 -05:00
Daniel Hahler
14581553e4 Fixed typo in docs/releases/2.2.txt. 2019-01-29 09:10:30 -05:00
rsiemens
a168e5616c Fixed #29973 -- Added compilemessages --ignore option. 2019-01-28 18:23:41 -05:00
Tim Graham
fcfb730658 Refs #30033 -- Doc'd change regarding apps without migrations depending on apps with migrations. 
The addition of self.connection.check_constraints() in
7289874adc is the cause.
 2019-01-28 10:05:25 -05:00
Nick Pope
0ef9979669 Fixed #30123 -- Removed tuple support in DatabaseIntrospection.get_field_type(). 
Support for returning tuples was undocumented and error prone.
 2019-01-23 13:18:03 -05:00
Nick Pope
327bbaae24 Refs #30123 -- Changed second arg of DatabaseIntrospection.get_geometry_type() to the row description. 2019-01-23 13:18:03 -05:00
Tim Graham
92d4d0859a Refs #21221 -- Removed staticfiles and admin_static template tag libraries. 
Per deprecation timeline.
 2019-01-17 10:52:19 -05:00
Tim Graham
958a7b4ca6 Refs #28965 -- Removed utils.http.cookie_date() per deprecation timeline. 2019-01-17 10:52:19 -05:00
Tim Graham
6f23996a59 Refs #28841 -- Removed ForceRHR function per deprecation timeline. 2019-01-17 10:52:19 -05:00
Tim Graham
1fecde6be9 Refs #11557 -- Removed the field_name keyword argument to QuerySet.earliest() and latest(). 
Per deprecation timeline.
 2019-01-17 10:52:19 -05:00
Tim Graham
da5eb3d56c Refs #28370 -- Removed support for the context arg of Field.from_db_value() and Expression.convert_value(). 
Per deprecation timeline.
 2019-01-17 10:52:19 -05:00
Tim Graham
7c66aaa2b6 Refs #28137 -- Removed HttpRequest.xreadlines() per deprecation timeline. 2019-01-17 10:52:16 -05:00
Tim Graham
8045dff98c Refs #27829 -- Removed settings.DEFAULT_CONTENT_TYPE per deprecation timeline. 2019-01-17 10:50:25 -05:00
Tim Graham
573ec714e5 Refs #25978 -- Removed shortcuts.render_to_response() per deprecation timeline. 2019-01-17 10:50:25 -05:00
Tim Graham
944469939b Refs #25175 -- Removed db.backends.postgresql_psycopg2 per deprecation timeline. 2019-01-17 10:50:25 -05:00
Tim Graham
eb0ce6fa36 Added stub release notes for 3.0. 2019-01-17 10:50:25 -05:00
Carlton Gibson
a0c059995a Removed empty sections from 2.2 release notes. 2019-01-17 16:25:02 +01:00
Santiago Basulto
4fc35a9c3e Fixed #20147 -- Added HttpRequest.headers. 2019-01-16 13:38:47 -05:00
Arthur Rio
181fb60159 Fixed #11154, #22270 -- Made proxy model permissions use correct content type. 
Co-Authored-By: Simon Charette <charette.s@gmail.com>
Co-Authored-By: Antoine Catton <acatton@fusionbox.com>
 2019-01-16 10:07:28 -05:00
Collin Anderson
769355c765 Fixed #9475 -- Allowed RelatedManager.add(), create(), etc. for m2m with a through model. 2019-01-15 11:12:17 -05:00
Nick Pope
6d4efa8e6a Refs #28643 -- Changed Variance() to use NumericOutputFieldMixin. 
Keeps precision instead of forcing DecimalField to FloatField.
 2019-01-14 14:39:46 -05:00
Nick Pope
e85afa5943 Refs #28643 -- Changed StdDev() to use NumericOutputFieldMixin. 
Keeps precision instead of forcing DecimalField to FloatField.
 2019-01-14 14:38:00 -05:00
Nick Pope
c690afb873 Refs #28643 -- Changed Avg() to use NumericOutputFieldMixin. 
Keeps precision instead of forcing DecimalField to FloatField.
 2019-01-14 14:35:41 -05:00
Tom Forbes
c8720e7696 Fixed #27685 -- Added watchman support to the autoreloader. 
Removed support for pyinotify (refs #9722).
 2019-01-13 20:33:47 -05:00
Nick Pope
abf8e390a4 Refs #28643 -- Added Reverse database function. 
Thanks Mariusz Felisiak for Oracle advice and review.
 2019-01-12 10:45:48 -05:00
can
7d3b3897c1 Refs #29738 -- Allowed registering serializers with MigrationWriter. 2019-01-11 18:13:16 -05:00
MaximZemskov
3c01fe30f3 Fixed #30097 -- Made 'obj' arg of InlineModelAdmin.has_add_permission() optional. 
Restored backwards compatibility after refs #27991.
Regression in be6ca89396.
 2019-01-11 18:02:43 -05:00
Sanyam Khurana
76d31be2d0 Refs #23829 -- Made ping_google command/function use https for the sitemap URL. 2019-01-11 10:32:22 -05:00
Simon Charette
41e73de39d Fixed #28478 -- Make DiscoverRunner skip creating unused test databases. 
SimpleTestCase.databases makes it possible to determine the set of
databases required to run the discovered tests.
 2019-01-10 19:11:21 -05:00
Simon Charette
8c775391b7 Refs #28478 -- Deprecated TestCase's allow_database_queries and multi_db in favor of databases. 2019-01-10 19:11:21 -05:00
Mads Jensen
4b9d72210f Refs #28643 -- Added NullIf database function. 
Thanks Nick Pope, Mariusz Felisiak, and Tim Graham for reviews.
 2019-01-10 12:10:12 -05:00
Claude Paroz
31ebb1d564 Added Armenian language 2019-01-10 10:50:42 +01:00
Joshua Cannon
db1b10ef0d Fixed #30037 -- Added request arg to RemoteUserBackend.configure_user(). 2019-01-09 20:01:04 -05:00
Simon Charette
bc05547cd8 Fixed #28658 -- Added DISTINCT handling to the Aggregate class. 2019-01-09 17:52:36 -05:00
Nick Pope
a35d2a4510 Refs #23748 -- Added AutoField introspection for SQLite. 2019-01-09 09:59:15 -05:00
Tim Graham
36fceeec88 Added stub 2.1.6 release notes. 2019-01-08 08:57:22 -05:00
Tim Graham
162ae9c914 Added CVE-2019-3498 to the security release archive. 2019-01-04 09:24:47 -05:00
Tom Hacohen
1ecc0a395b Fixed #30070, CVE-2019-3498 -- Fixed content spoofing possiblity in the default 404 page. 
Co-Authored-By: Tim Graham <timograham@gmail.com>
 2019-01-03 21:21:55 -05:00
Tim Graham
02c07be95c Fixed #30050 -- Fixed InlineModelAdmin.has_change_permission() called with non-None obj during add. 
Thanks andreage for the report and suggested fix.
 2019-01-01 09:42:14 -05:00
Paveł Tyślacki
0123b67f6b Fixed #30060 -- Moved SQL generation for indexes and constraints to SchemaEditor. 2019-01-01 09:39:58 -05:00
Jon Dufresne
6fe9c45b72 Fixed #30024 -- Made urlencode() and Client raise TypeError when None is passed as data. 2018-12-27 11:19:55 -05:00
Nick Pope
83677faf86 Fixed #30056 -- Added SQLite support for StdDev and Variance functions. 2018-12-24 11:14:58 -05:00
Tim Graham
d5af14aa84 Fixed #30055 -- Dropped support for SQLite < 3.8.3. 2018-12-22 16:59:28 -05:00
Simon Charette
c5b58d7767 Refs #29928 -- Adjusted release notes of SQLite test constraint checking. 2018-12-22 14:32:40 -05:00
François Freitag
e671337e8b Fixed #29750 -- Added View.setup() hook for class-based views. 2018-12-21 19:01:11 -05:00
Carlton Gibson
bbe28fa076 Refs #30015 -- Added 2.1.5 release note and removed 'we' in comments. 2018-12-20 21:30:13 -05:00
Dakota Hawkins
8d3147e130 Fixed #30031 -- Added --no-header option to makemigrations/squashmigrations. 2018-12-19 12:41:31 +01:00
Simon Charette
1939dd49d1 Fixed #29928 -- Enabled deferred constraint checks on SQLite 3.20+. 
Refs #11665, #14204.

Thanks Michel Samia for the report.
 2018-12-17 11:03:44 +01:00
Simon Charette
315357ad25 Fixed #30023 -- Prevented SQLite schema alterations while foreign key checks are enabled. 
Prior to this change foreign key constraint references could be left pointing
at tables dropped during operations simulating unsupported table alterations
because of an unexpected failure to disable foreign key constraint checks.

SQLite3 does not allow disabling such checks while in a transaction so they
must be disabled beforehand.

Thanks ezaquarii for the report and Carlton and Tim for the review.
 2018-12-15 18:51:59 -05:00
Jon Dufresne
c5568340a5 Added blank line in docs/releases/2.2.txt. 2018-12-09 10:26:55 -05:00
Simon Charette
c8ffdbe514 Fixed #29182 -- Fixed schema table alteration on SQLite 3.26+. 
SQLite 3.26 repoints foreign key constraints on table renames even when
foreign_keys pragma is off which breaks every operation that requires
a table rebuild to simulate unsupported ALTER TABLE statements.

The newly introduced legacy_alter_table pragma disables this behavior
and restores the previous schema editor assumptions.

Thanks Florian Apolloner, Christoph Trassl, Chris Lamb for the report and
troubleshooting assistance.
 2018-12-07 13:32:37 -05:00
Benjamin Wohlwend
79c196cfb2 Fixed #28766 -- Added ResolverMatch.route. 
Co-Authored-By: Xavier Fernandez <xavier.fernandez@polyconseil.fr>
 2018-12-06 18:05:40 -05:00
Tim Graham
88619e6129
Bumped mysqlclient requirement to >= 1.3.13. 
There are test failures with older versions.
 2018-12-06 14:49:27 -05:00
Tim Graham
284b3221a2 Fixed #30013 -- Fixed DatabaseOperations.last_executed_query() with mysqlclient 1.3.14+. 2018-12-05 14:46:23 -05:00
Carlton Gibson
196b420fcb Added stub release notes for 2.1.5 release. 2018-12-04 16:21:38 +01:00
Carlton Gibson
346721a038 Added release date for 2.1.4. 2018-12-03 17:29:46 +01:00
Carlton Gibson
8245c99ee6
Fixed #29930 -- Allowed editing in admin with view-only inlines. 
Co-authored-by: Tim Graham <timograham@gmail.com>
 2018-12-03 07:44:18 -08:00
Carlton Gibson
950112548e Added release date for 1.11.17. 2018-12-03 15:14:58 +01:00
Basil Dubyk
7d1123e5ad Fixed #29929 -- Fixed admin view-only change form crash when using ModelAdmin.prepopulated_fields. 2018-11-28 15:40:14 -05:00
Mariusz Felisiak
f091ea3515
Refs #29722 -- Added introspection of materialized views for Oracle. 
Thanks Tim Graham for the review.
 2018-11-26 19:45:05 +01:00
Mariusz Felisiak
d5f4ce9849
Fixed #29949 -- Refactored db introspection identifier converters. 
Removed DatabaseIntrospection.table_name_converter()/column_name_converter()
and use instead DatabaseIntrospection.identifier_converter().

Removed DatabaseFeatures.uppercases_column_names.

Thanks Tim Graham for the initial patch and review and Simon Charette
for the review.
 2018-11-21 09:06:50 +01:00
redodo
2e4776196d Fixed #29953 -- Added CSS class to column headers in tabular inlines. 
The class name is the same as one given to the fields in the change list.
 2018-11-20 18:17:53 -05:00
Tim Graham
5d327a63ef Refs #29849 -- Forwardported 2.1.4 release note. 2018-11-20 17:45:29 -05:00
Nick Pope
ebd270627c Refs #29722 -- Added introspection of partitions for PostgreSQL. 2018-11-19 14:06:01 -05:00
Thomas Grainger
0607699902 Fixed #29478 -- Added support for mangled names to cached_property. 
Co-Authored-By: Sergey Fedoseev <fedoseev.sergey@gmail.com>
 2018-11-19 13:40:49 -05:00
Tim Graham
f436c82637 Doc'd purpose of "Database backend API" backwards incompatible changes section. 2018-11-17 15:58:10 -05:00
Tim Graham
2fd21a1858 Refs #28814 -- Doc'd Python 3.7 compatibility in Django 1.11.x. 2018-11-17 15:40:35 -05:00
Claude Paroz
e7e5505902 Fixed #29959 -- Cached GEOS version in WKBWriter class. 
Regression in f185d929fa.
 2018-11-16 14:45:21 -05:00
Tim Graham
97cec6f75d Removed release date for 2.0.10 and 1.11.17. 2018-11-16 09:34:10 -05:00
Prabakaran Kumaresshan
8250538bfc Fixed #29864 -- Added link targets for low-level cache API. 2018-11-15 17:32:41 -05:00
Mathew Payne
26bb2611a5 Fixed #29952 -- Lowercased all passwords in contrib.auth's auth/common-passwords.txt.gz. 2018-11-15 14:11:03 -05:00
Timothy Allen
e819554018 Fixed #29939 -- Increased Group.name max_length to 150 characters. 2018-11-14 15:13:34 -05:00
Basil Dubyk
35a08b8541 Fixed #17210 -- Made NullBooleanSelect use unknown/true/false as query data. 2018-11-14 13:43:34 -05:00
Mariusz Felisiak
ff8020ed49 Fixed #29788 -- Added support for Oracle Managed File (OMF) tablespaces. 2018-11-13 18:22:41 -05:00
Simon Charette
db13bca60a Fixed #29641 -- Added support for unique constraints in Meta.constraints. 
This constraint is similar to Meta.unique_together but also allows
specifying a name.

Co-authored-by: Ian Foote <python@ian.feete.org>
 2018-11-13 17:57:27 -05:00
Simon Charette
8eae094638 Generalized check constraint docs for other constraints. 2018-11-13 17:57:27 -05:00
Simon Charette
dba4a634ba Refs #29641 -- Refactored database schema constraint creation. 
Added a test for constraint names in the database.

Updated SQLite introspection to use sqlparse to allow reading the
constraint name for table check and unique constraints.

Co-authored-by: Ian Foote <python@ian.feete.org>
 2018-11-13 15:25:44 -05:00
Tim Graham
f82be9ebc7
Fixed #29934 -- Added sqlparse as a require dependency. 2018-11-09 19:09:36 -05:00
Matthias Kestenholz
f9ff1df1da Fixed #29917 -- Stopped collecting ModelAdmin.actions from base ModelAdmins. 2018-11-09 18:52:30 -05:00
romgar
b3b1d3d45f Fixed #25251 -- Made data migrations available in TransactionTestCase when using --keepdb. 
Data loaded in migrations were restored at the beginning of each
TransactionTestCase and all the tables are truncated at the end of
these test cases. If there was a TransactionTestCase at the end of
the test suite, the migrated data weren't restored in the database
(especially unexpected when using --keepdb). Now data is restored
at the end of each TransactionTestCase.
 2018-11-06 16:57:50 -05:00
Carlton Gibson
7e5cb46330 Updated expected date for 2.1.4 release. 2018-11-01 16:19:21 +01:00
Carlton Gibson
74ddd0e83b Added stub release notes for 2.1.4 release. 2018-11-01 15:48:28 +01:00
Carlton Gibson
eb13e6cb9a Added release date for 2.1.2 release. 2018-11-01 15:02:22 +01:00
Tim Graham
98ef3829e9 Fixed #29890 -- Fixed FileSystemStorage crash if concurrent saves try to create the same directory. 
Regression in 632c4ffd9c.
 2018-10-31 19:28:11 -04:00
Mads Jensen
a906c98982 Fixed #29547 -- Added support for partial indexes. 
Thanks to Ian Foote, Mariusz Felisiak, Simon Charettes, and
Markus Holtermann for comments and feedback.
 2018-10-29 19:34:54 -04:00
Tim Graham
f77fc56c96
Fixed #29896 -- Fixed incorrect Model.save() cache relation clearing for foreign keys that use to_field. 
Regression in ee49306176.
 2018-10-28 22:54:02 -04:00
Tim Graham
f892781b95 Fixed #28606 -- Deprecated CachedStaticFilesStorage. 2018-10-27 11:58:29 -04:00
Mariusz Felisiak
c6525bea9e Fixed #29534 -- Made dbshell use rlwrap on Oracle if available. 2018-10-25 19:39:42 -04:00
Sergey Fedoseev
9a88c6dd6a Fixed #29827 -- Fixed reuse of test databases with --keepdb on MySQL. 
Regression in e1253bc26f.
 2018-10-25 19:37:41 -04:00
Tim Graham
9b52bd6575 Made DatabaseFeatures.uses_savepoints default to True. 2018-10-25 10:02:47 -04:00
buzzi
24cae0bedc Fixed #29860 -- Allowed BaseValidator to accept a callable limit_value. 2018-10-22 10:26:54 -04:00
Mariusz Felisiak
328f5627dd
Fixed #29870 -- Added DurationField introspection for Oracle and PostgreSQL. 
Thanks Tim Graham for the review.
 2018-10-21 09:08:05 +02:00
Adam Allred
4e78e389b1 Fixed #29774 -- Fixed django-admin shell hang on startup. 
sys.stdin.read() blocks waiting for EOF in shell.py which will
likely never come if the user provides input on stdin via the
keyboard before the shell starts. Added check for a tty to
skip reading stdin if it's not present.

This still allows piping of code into the shell (which should
have no TTY and should have an EOF) but also doesn't cause it
to hang if multi-line input is provided.
 2018-10-19 20:00:12 -04:00
aspalding
dc5e75d419 Fixed #29838 -- Fixed crash when combining Q objects with __in lookups and lists. 
Regression in fc6528b25a.
 2018-10-17 11:34:49 -04:00
Florian Apolloner
bc7dd8490b Fixed #21171 -- Avoided starting a transaction when a single (or atomic queries) are executed. 
Checked the following locations:

 * Model.save(): If there are parents involved, take the safe way and use
   transactions since this should be an all or nothing operation.

   If the model has no parents:

    * Signals are executed before and after the previous existing
      transaction -- they were never been part of the transaction.

    * if `force_insert` is set then only one query is executed -> atomic
      by definition and no transaction needed.

    * same applies to `force_update`.

    * If a primary key is set and no `force_*` is set Django will try an
      UPDATE and if that returns zero rows it tries an INSERT. The first
      case is completly save (single query). In the second case a
      transaction should not produce different results since the update
      query is basically a no-op then (might miss something though).

 * QuerySet.update(): no signals issued, single query -> no transaction
   needed.

 * Model/Collector.delete(): This one is fun due to the fact that is
   does many things at once.

   Most importantly though: It does send signals as part of the
   transaction, so for maximum backwards compatibility we need to be
   conservative.

   To ensure maximum compatibility the transaction here is removed only
   if the following holds true:

     * A single instance is being deleted.
     * There are no signal handlers attached to that instance.
     * There are no deletions/updates to cascade.
     * There are no parents which also need deletion.
 2018-10-17 12:19:02 +02:00
Jon Dufresne
0cd465b63a Fixed #29817 -- Deprecated settings.FILE_CHARSET. 2018-10-15 17:15:41 -04:00
Patrik Sletmo
adfdb9f169 Fixed #29814 -- Added support for NoneType serialization in migrations. 2018-10-11 09:02:14 -04:00
Mariusz Felisiak
52fec5d18f
Fixed #29836 -- Bumped required cx_Oracle to 6.0. 2018-10-11 11:43:16 +02:00
Jon Dufresne
c82893cb8c Refs #27795 -- Removed force_bytes() usage from django/utils/http.py. 
django.utils.http.urlsafe_base64_encode() now returns a string, not a
bytestring. Since URLs are represented as strings,
urlsafe_base64_encode() should return a string. All uses immediately
decoded the bytestring to a string anyway.

As the inverse operation, urlsafe_base64_decode() accepts a string.
 2018-10-10 14:38:22 -04:00
Jon Dufresne
e90af8bad4 Capitalized "Python" in docs and comments. 2018-10-09 09:26:07 -04:00
Stefano Chiodino
6de7f9ec60 Fixed #29598 -- Deprecated FloatRangeField in favor of DecimalRangeField. 2018-10-02 19:17:23 -04:00
Nick Pope
bf8b625a3b Refs #29722 -- Added introspection of materialized views for PostgreSQL. 2018-10-02 14:02:04 -04:00
Nick Pope
45ef3df7d0 Fixed #29719 -- Added introspection of foreign tables for PostgreSQL. 
Thanks infinite-l00p for the initial patch.
 2018-10-02 14:01:24 -04:00
Carlton Gibson
92ccc39170 Adjusted text for CVE-2018-16984 in security release archive. 2018-10-01 14:58:23 +02:00
Carlton Gibson
0b3b7c4b0a Added CVE-2018-16984 to the security release archive. 2018-10-01 11:54:31 +02:00
Carlton Gibson
dc28c0faf3 Added stub release notes for 2.1.3 release. 2018-10-01 11:48:11 +02:00
Carlton Gibson
2e86710dac Added stub release notes for 2.0.10 release. 2018-10-01 11:46:38 +02:00
Carlton Gibson
7040e638b9 Added stub release notes for 1.11.17 release. 2018-10-01 11:44:36 +02:00
Carlton Gibson
fb7fd884a1 Added release date for 2.1.2 release. 2018-10-01 10:10:48 +02:00
Tim Graham
a7284cc0c3 Fixed #29809 -- Fixed a crash when a "view only" user POSTs to the admin user change form. 2018-10-01 10:09:50 +02:00
Carlton Gibson
bf39978a53 Fixed CVE-2018-16984 -- Fixed password hash disclosure to admin "view only" users. 
Thanks Claude Paroz & Tim Graham for collaborating on the patch.
 2018-10-01 10:05:01 +02:00
Carlton Gibson
a4932be483 Added release date for 2.0.9 release. 2018-10-01 09:55:56 +02:00
Carlton Gibson
d37ed40048 Added release date for 1.11.16. 2018-10-01 09:34:57 +02:00
Claude Paroz
033d842e84 Updated translations from Transifex 
Forward port of d5ed08263b58ec972a1e009f23d7b90c30b6b9c1 from master.
 2018-09-29 17:11:49 +02:00
Mariusz Felisiak
024abe5b82
Fixed #29630 -- Fixed crash of sliced queries with multiple columns with the same name on Oracle 12.1. 
Regression in 0899d583bd.

Thanks Tim Graham for the review and Jani Tiainen for help.
 2018-09-26 20:18:48 +02:00
Jon Dufresne
82f286cf6f Refs #29784 -- Switched to https:// links where available. 2018-09-26 08:48:47 +02:00
Oleg
d1d5c97bc2 Fixed #29778 -- Fixed quoting of unique index names. 
Regression in 3b429c9673.
 2018-09-25 16:00:20 -04:00
Jon Dufresne
bb81c22d90 Refs #27795 -- Removed force_bytes() usage in utils/_os.py. 2018-09-25 11:27:36 -04:00
Tom Forbes
9cbdb44014 Fixed #23646 -- Added QuerySet.bulk_update() to efficiently update many models. 2018-09-18 16:14:44 -04:00
Tim Graham
0192e9a976 Fixed typo in docs/releases/2.1.txt. 2018-09-18 15:46:38 -04:00
Claude Paroz
f5e347a640 Fixed #27899 -- Added support for phrase/raw searching in SearchQuery. 
Thanks Tim Graham, Nick Pope, and Claude Paroz for contribution and review.
 2018-09-17 12:03:52 -04:00
Mariusz Felisiak
da92ec7962
Fixed #29759 -- Fixed crash on Oracle when fetching a returned insert id with cx_Oracle 7. 2018-09-16 12:45:34 +02:00
Simon Charette
a4495f4b98 Fixed #29755 -- Made migrations detect changes to Meta.default_related_name. 2018-09-14 09:09:17 -04:00
Ramiro Morales
1b1f64ee5a Refs #14357 -- Deprecated Meta.ordering affecting GROUP BY queries. 
Thanks Ramiro Morales for contributing to the patch.
 2018-09-13 12:29:48 -04:00
Tim Graham
32fbccab40
Fixed #29749 -- Made the migrations loader ignore files starting with a tilde or underscore. 
Regression in 29150d5da8.
 2018-09-11 12:51:11 -04:00
Hasan Ramezani
5195b99e2c Fixed #29560 -- Added --force-color management command option. 2018-09-11 11:15:42 -04:00
Curtis Maloney
c49ea6f591 Refs #20910 -- Replaced snippet directive with code-block. 2018-09-10 13:00:34 -04:00
Alexander Holmbäck
f315d0423a Fixed #29727 -- Made nonexistent joins in F() raise FieldError. 
Regression in 2162f0983d.
 2018-09-08 09:40:33 -04:00
Josh Schneier
3509fb54bb Refs #29426 -- Fixed typo in docs/releases/2.2.txt. 2018-08-31 10:22:42 -04:00
Carlton Gibson
728ee98cd3 Added stub release notes for 2.1.2. 2018-08-31 11:01:29 +02:00
Carlton Gibson
fff25d6d0c Added release date for 2.1.1. 2018-08-31 10:12:51 +02:00
Tim Graham
fd8a7a5313 Fixed #29723 -- Fixed crash if InlineModelAdmin.has_add_permission() doesn't accept the obj argument. 
* Refs #27991 -- Added testing for ModelAdmin.get_inline_instances() if the inline's has_add_permission() doesn't accept 'obj'.

* Fixed #29723 -- Fixed crash if InlineModelAdmin.has_add_permission() doesn't accept the obj argument.
 2018-08-30 11:22:50 +02:00
Mariusz Felisiak
39461a83c3
Fixed #29694 -- Fixed column mismatch crash with QuerySet.values() or values_list() after combining querysets with extra() with union(), difference(), or intersection(). 
Regression in 0b66c3b442.
 2018-08-29 10:00:15 +02:00
Tim Graham
166dec8406
Fixed #29718 -- Doc'd admin template collision backwards incompatibility in Django 2.1. 2018-08-28 14:40:08 -04:00
Nick Pope
ed4bfacb3c Fixed #29703 -- Deprecated QuerySetPaginator alias. 
Unused since 4406d283e1.
 2018-08-27 16:23:43 -04:00
Dan Palmer
e181666973 Fixed #29687 -- Allowed the test client to serialize list/tuple as JSON. 2018-08-25 10:57:05 -04:00
Claude Paroz
201017df30 Fixed #29654 -- Made text truncation an ellipsis character instead of three dots. 
Thanks Sudhanshu Mishra for the initial patch and Tim Graham for the review.
 2018-08-21 17:46:45 +02:00
Tim Graham
cdc6da395a Fixed typo in docs/releases/2.0.5.txt. 2018-08-21 09:48:14 -04:00
Tim Graham
d311124be5 Fixed #29682 -- Fixed admin change form crash if a view-only model's form has an extra field. 2018-08-20 11:14:20 -04:00
Sigurd Ljødal
3e09b37f80 Fixed #28649 -- Added ExtractIsoYear database function and iso_year lookup. 2018-08-18 13:09:15 -04:00
Tim Graham
838d6dcb86 Refs #29426 -- Made UUIDField render values with dashes. 2018-08-18 08:20:21 -04:00
Jon Dufresne
09ee3b6fe3 Fixed #29663 -- Made admin change view redirect to changelist with view permission. 2018-08-17 11:13:06 -04:00
Marnanel Thurman
7cc52250f0 Fixed #29662 -- Allowed test client to accept structured suffix JSON content types. 2018-08-15 10:27:45 -04:00
Dragoon Aethis
d3449faaa9 Refs #29449 -- Removed release note for "Allowed using contrib.auth forms without installing contrib.auth." 
The code was reverted in f3fa86a89b.
 2018-08-11 21:48:49 -04:00
Ramiro Morales
b5c7cb4d33 Fixed #29653 -- Fixed missing related_query_name reverse accessor if GenericRelation is declared on an abstract base model. 
Regression in 4ab027b944.

Thanks Lauri Kainulainen for the report.
 2018-08-10 12:17:26 -04:00
Clément Mangin
64e1a271f5 Fixed #29637 -- Fixed admin change form crash if the user doesn’t have the add permission to a TabularInline. 
Regression in 825f0beda8.
 2018-08-10 11:20:43 -04:00
Tim Graham
d0928d6454 Refs #29652 -- Fixed typo in docs/releases/2.1.txt. 2018-08-08 18:04:55 -04:00
Tim Graham
2fa36719a8 Fixed #29652 -- Doc'd removal of py-bcrypt compatibility. 2018-08-08 17:55:20 -04:00
Tim Graham
730173d1c5 Fixed #29623 -- Fixed translation failure of DurationField's "overflow" error message. 2018-08-08 06:24:52 -04:00
Mariusz Felisiak
9fee229874
Fixed #29643 -- Fixed crash when combining Q objects with __in lookups and lists. 
Regression in fc6528b25a.
 2018-08-08 08:51:20 +02:00
Tim Graham
89d4d41240 Fixed #28540 -- Doc'd a change to file upload permissions in Django 1.11. 
Behavior changed in f734e2d4b2
(refs #27334).
 2018-08-04 10:39:22 -04:00
Tom
f1fbef6cd1 Fixed #28668 -- Allowed QuerySet.bulk_create() to ignore insert conflicts. 2018-08-03 17:40:46 -04:00
Calvin DeBoer
058d33f3ed Fixed #29198 -- Added migrate --plan option. 2018-08-03 15:22:42 -04:00
Tim Graham
1160a97596 Refs #28584 -- Documented removal of support for SQLite < 3.7.15. 2018-08-03 14:42:26 -04:00
Mariusz Felisiak
1a9cbf41a1
Fixed #29613 -- Fixed --keepdb on PostgreSQL if the database exists and the user can't create databases. 
Regression in e776dd2db6.

Thanks Tim Graham for the review.
 2018-08-03 10:31:55 +02:00
Tim Graham
d8e2be459f
Fixed #29627 -- Fixed QueryDict.urlencode() crash with non-string values. 
Regression in 7d96f0c49a.
 2018-08-02 21:56:26 -04:00
Michael Sanders
271542dad1 Fixed #29499 -- Fixed race condition in QuerySet.update_or_create(). 
A race condition happened when the object didn't already exist and
another process/thread created the object before update_or_create()
did and then attempted to update the object, also before update_or_create()
saved the object. The update by the other process/thread could be lost.
 2018-08-02 17:07:48 -04:00
Nick Pope
6b4d1ec8ff Fixed #29614 -- Added BTreeIndex to django.contrib.postres. 2018-08-02 11:42:57 -04:00
Nick Pope
d6381d3559 Fixed #28990 -- Added autosummarize parameter to BrinIndex. 2018-08-02 11:26:58 -04:00
Nick Pope
4c36e9e492 Fixed #28887 -- Added SpGistIndex to django.contrib.postgres. 2018-08-02 11:08:08 -04:00
Nick Pope
d526b07784 Fixed #26974 -- Added HashIndex to django.contrib.postgres. 
Thanks Akshesh Doshi for the initial implementation.
 2018-08-02 10:39:18 -04:00
Tim Graham
25dd595742 Added stub release notes for 2.1.1. 2018-08-01 11:13:37 -04:00
Tim Graham
0006538e53 Added CVE-2018-14574 to the security release archive. 2018-08-01 10:51:24 -04:00
Andreas Hug
a656a68127 Fixed CVE-2018-14574 -- Fixed open redirect possibility in CommonMiddleware. 2018-08-01 09:28:42 -04:00
Tim Graham
7dbe7aa0b6 Added stub release notes for security releases. 2018-08-01 09:28:42 -04:00
Tim Graham
b4fa94aed8 Removed code terms from docs/spelling_wordlist. 2018-07-31 12:22:28 -04:00
Dražen Odobašić
9f3b9ffd51 Fixed #29617 -- Fixed Template crash if template_string is lazy. 
Regression in 3a148f958d.
 2018-07-31 09:57:11 -04:00
Carlton Gibson
5180015051 Fixed #29593 -- Added QUERY_TERMS removal to 2.1 release notes. 
Removed in 244cc40155.
 2018-07-26 10:42:33 -04:00
Andrew Brown
c0e3c65b9d Fixed #29563 -- Added result streaming for QuerySet.iterator() on SQLite. 2018-07-25 18:08:57 -04:00
Claude Paroz
b004bd62e8 Fixed #29412 -- Stopped marking slugify() result as HTML safe. 2018-07-20 10:44:30 -04:00
Maxime Lorant
31407fa3b3 Removed duplicate words in docs. 
.
 2018-07-18 11:24:06 -04:00
Peter Inglesby
312eb5cb11 Fixed #26291 -- Allowed loaddata to handle forward references in natural_key fixtures. 2018-07-13 17:54:47 -04:00
Daniel Wiesmann
8f75d21a2e Fixed #28566 -- Added path matching to collectstatic ignore patterns. 2018-07-13 16:48:19 -04:00
Ian Foote
952f05a6db Fixed #11964 -- Added support for database check constraints. 2018-07-10 15:32:33 -04:00
Sergey Fedoseev
338f741c5e Fixed #29546 -- Deprecated django.utils.timezone.FixedOffset. 2018-07-09 16:33:36 -04:00
Tim Graham
5bea8d256d
Fixed #29553 -- Made test client set Content-Length header to a string rather than integer. 2018-07-09 11:44:49 -04:00
Michal Čihař
39e287d8bf Fixed #29544 -- Fixed regex lookup on MariaDB. 
Regression in 4249076844.
 2018-07-05 12:11:49 -04:00
Junyi Jiao
a0b19a0f5b Refs #28643 -- Added math database functions. 
Thanks Nick Pope for much review.
 2018-07-05 11:02:12 -04:00
Tim Graham
2c3f198946 Added stub release notes for 2.0.8. 2018-07-03 20:05:53 -04:00
Carlton Gibson
65df375c40 Added release date for 1.11.14. 2018-07-02 10:12:20 +02:00
Ian Foote
38cada7c94 Fixed #28077 -- Added support for PostgreSQL opclasses in Index. 
Thanks Vinay Karanam for the initial patch.
 2018-06-29 17:00:28 -04:00
Floris den Hengst
96199e562d Fixed #26067 -- Added ordering support to ArrayAgg and StringAgg. 2018-06-28 20:29:33 -04:00
Tim Graham
8c4b94d32d Forwardported 2.0.7 release note. 2018-06-28 11:07:37 -04:00
Asif Saifuddin Auvi
2f7cd7f8ec Refs #28814 -- Documented Python 3.7 compatibility. 2018-06-28 11:02:29 -04:00
Tim Graham
dd367e0dae
Refs #12663 -- Removed Meta API upgrade guide. 2018-06-27 14:02:46 -04:00
Tim Graham
b9cf764be6 Fixed #29517 -- Added support for SQLite column check constraints on positive integer fields. 2018-06-25 14:01:04 -04:00
Sergey Fedoseev
a799dc51b9 Fixed #29509 -- Added SpatiaLite support for covers and coveredby lookups. 2018-06-21 09:25:31 -04:00
Jan Pieter Waagmeester
24959e48d9 Fixed #27398 -- Added an assertion to compare URLs, ignoring the order of their query strings. 2018-06-20 13:26:12 -04:00
Tom
4249076844 Refs #29451 -- Fixed regex/iregex lookups on MySQL 8. 2018-06-20 10:57:28 -04:00
Sergey Fedoseev
fa453b03a6 Fixed #29507 -- Added Oracle support for Envelope GIS function. 2018-06-20 16:48:57 +05:00
Damien
7409d21a5e Clarified sentence about removal of inline flag support in url(). 2018-06-19 08:58:33 -04:00
Carlton Gibson
958c7b301e Fixed #29419 -- Allowed permissioning of admin actions. 2018-06-18 15:07:29 -04:00
Tim Graham
ec2c9c3531 Refs #29428 -- Fixed admin check crash when using a query expression in ModelAdmin.ordering. 2018-06-14 21:04:43 -04:00
Tim Graham
0d8e3e608e Fixed #29428 -- Fixed admin changelist crash when using a query expression without asc()/desc() in the ordering. 2018-06-14 14:22:04 -04:00
Tim Graham
860903b261
Dropped support for GDAL 1.9 and 1.10. 2018-06-11 08:33:09 -04:00
Mariusz Felisiak
e0d0fc0b14
Fixed typo in docs/releases/2.0.7.txt. 2018-06-08 12:05:22 +02:00
Carlton Gibson
acae120680 Added stub release notes for 2.0.6. 2018-06-08 08:40:04 +02:00
Claude Paroz
ce3351b950 Fixed #29301 -- Added custom help formatter to BaseCommand class 
This partially reverts c3055242c8.
Thanks Adam Johnson and Carlton Gibson for the reviews.
 2018-06-06 19:16:10 +02:00
Adam Donaghy
b18650a263 Fixed #28462 -- Decreased memory usage with ModelAdmin.list_editable. 
Regression in 917cc288a3.
 2018-06-01 10:41:05 -04:00
Carlton Gibson
e1ebd22558 Added release date for 2.0.6 release. 2018-06-01 12:16:17 +02:00
Tim Graham
f185d929fa
Fixed #29460 -- Added support for GEOS 3.6. 2018-05-31 11:35:59 -04:00
Tim Graham
8a6fcfdc77 Added stub release notes for 1.11.14. 2018-05-31 10:15:39 -04:00
Mariusz Felisiak
4ab1f559e8 Fixed #29416 -- Removed unnecesary subquery from GROUP BY clause on MySQL when using a RawSQL annotation. 
Regression in 1d070d027c.
 2018-05-27 18:25:19 -04:00
Xaroth Brook
39283c8edb Fixed #29415 -- Fixed detection of custom URL converters in included patterns. 2018-05-26 20:13:48 -04:00
Ian Foote
257fb0a7d0 Fix typo in 2.0 release notes (#9986) 2018-05-26 15:27:58 +02:00
Ryan Rubin
a8d12bc280 Fixed #29400 -- Fixed crash in custom template filters that use decorated functions. 
Regression in 620e9dd31a.
 2018-05-25 11:11:46 -04:00
Tim Graham
6574167ab8 Fixed typo in docs/releases/2.1.txt. 2018-05-18 07:24:01 -04:00
Tim Graham
74a313942c Added stub 2.2 release notes. 2018-05-17 11:05:40 -04:00
Tim Graham
1cbd3d7874 Removed empty sections from 2.1 release notes. 2018-05-17 10:43:03 -04:00
olivierdalang
825f0beda8 Fixed #8936 -- Added a view permission and a read-only admin. 
Co-authored-by: Petr Dlouhy <petr.dlouhy@email.cz>
Co-authored-by: Olivier Dalang <olivier.dalang@gmail.com>
 2018-05-16 06:44:55 -04:00
Claude Paroz
a177f854c3
Fixed #16470 -- Allowed FileResponse to auto-set some Content headers. 
Thanks Simon Charette, Jon Dufresne, and Tim Graham for the reviews.
 2018-05-15 18:12:11 +02:00
Ryan P Kilby
2dcc5d629a Fixed #29392 -- Disallowed use of abbreviated forms of --settings and --pythonpath management command options. 2018-05-14 22:18:22 -04:00
T N
2405833c53 Fixed #29401 -- Updated admin's jQuery to 3.3.1. 2018-05-13 13:02:24 -04:00
Claude Paroz
d65b0f72de Fixed #17379 -- Removed management commands deactivation of the locale. 2018-05-13 10:21:53 +02:00
Stefan R. Filipek
a5a2ceeb45 Fixed #27629 -- Added router.allow_relation() calls for assignments between unsaved model instances. 2018-05-10 20:42:44 -04:00
Claude Paroz
1e20fedb35 Upgraded OpenLayers to 4.6.5 for OpenLayersWidget 2018-05-10 16:25:37 +02:00
Morgan Aubert
704443acac Fixed #29363 -- Added SimpleTestCase.assertWarnsMessage(). 2018-05-09 11:40:28 -04:00
Tim Graham
c02953ebbc Added stub release notes for 2.0.6. 2018-05-01 22:01:48 -04:00
Tim Graham
6e6efc6c39 Added release date for 2.0.5 and 1.11.13. 2018-05-01 21:18:44 -04:00
Nicolas Noé
3246ad1065 Fixed #27480 -- Added cache.touch(). 2018-04-27 17:48:35 -04:00
Adnan Umer
534d8d875e Fixed #28600 -- Added prefetch_related() support to RawQuerySet. 2018-04-19 13:48:27 -04:00
Adnan Umer
ec0319ff82 Fixed #29339 -- Added result caching to RawQuerySet. 2018-04-19 11:35:49 -04:00
Tom
c1c163b427 Fixed #28574 -- Added QuerySet.explain(). 2018-04-19 10:52:19 -04:00
Brett Cannon
64b74804c5 Fixed #29334 -- Updated pypi.python.org URLs to pypi.org. 2018-04-17 20:24:27 -04:00
Alex Gaynor
9a56b4b13e Fixed #27863 -- Added support for the SameSite cookie flag. 
Thanks Alex Gaynor for contributing to the patch.
 2018-04-13 20:58:31 -04:00
Mariusz Felisiak
0b66c3b442
Fixed #29286 -- Fixed column mismatch crash with QuerySet.values() or values_list() after combining an annotated and unannotated queryset with union(), difference(), or intersection(). 
Regression in a0c03c62a8.

Thanks Tim Graham and Carlton Gibson for reviews.
 2018-04-13 12:15:52 +02:00
Paul Donohue
33a0b7ac81 Fixed #29296 -- Fixed crashes in admindocs when a view is a callable object. 2018-04-12 13:11:08 -04:00
Jeremy Bowman
ee17bb8a67 Fixed #29193 -- Prevented unnecessary foreign key drops when altering a unique field. 
Stopped dropping and recreating foreign key constraints on other fields
in the same table as the one which is actually being altered in an
AlterField operation.

Regression in c3e0adcad8.
 2018-04-11 23:17:11 -04:00
Tim Graham
2919a08c20
Refs #28062 -- Doc'd PostgreSQL server-side cursors as a backwards incompatible change. 2018-04-10 13:26:50 -04:00
Alasdair Nicol
65c44a5c1d Fixed #29307 -- Fixed inspectdb import paths for django.contrib.postgres fields. 
Thanks erindy for the report.
 2018-04-10 09:33:05 -04:00
Faheel Ahmad
5d4d62bf4f Fixed #29248 -- Renamed admin CSS class field-box to fieldBox. 2018-04-05 10:55:36 -04:00
Jon Dufresne
be6ca89396 Fixed #27991 -- Added obj arg to InlineModelAdmin.has_add_permission(). 
Thanks Vladimir Ivanov for the initial patch.
 2018-04-04 19:21:50 -04:00
safu9
9fd9f8bbb2 Fixed #29284 -- Made ImageField render with accept="image/*"' HTML attribute. 2018-04-04 13:16:03 -04:00
Dmitry Dygalo
c979c0a2b8 Fixed #25718 -- Made a JSONField lookup value of None match keys that have a null value. 2018-04-04 10:53:46 -04:00
Tim Graham
b2678468ae Added stub release notes for 1.11.13. 2018-04-03 15:03:44 -04:00
Mariusz Felisiak
55cc26941a
Refs #28643 -- Added Repeat database function. 
Thanks Tim Graham and Nick Pope for reviews.
 2018-04-03 19:36:12 +02:00
Tim Graham
87639adcd1 Added stub release notes for 2.0.5. 2018-04-02 23:05:29 -04:00
Tim Graham
597aba6d67 Added release date for 2.0.4 and 1.11.12. 2018-04-02 21:36:23 -04:00
Claude Paroz
2a2ed0e70a Fixed #29116 -- Fixed OpenLayersWidget deserialization ignoring the widget map's SRID. 
Regression in 6ecccad711.
 2018-04-02 10:20:00 -04:00
Tim Graham
09c6d01461 Fixed typo in docs/releases/2.0.4/1.11.12.txt. 2018-04-02 09:37:38 -04:00
Claude Paroz
f3b69f9757 Fixed #29273 -- Prevented initial selection of empty choice in multiple choice widgets. 
Regression in b52c73008a.
 2018-04-02 08:52:53 -04:00
Dan Watson
29150d5da8 Fixed #23406 -- Allowed migrations to be loaded from .pyc files. 2018-03-23 13:20:38 -04:00
Tim Graham
a4f0e9aec7 Fixed #28718 -- Allowed user to request a password reset if their password doesn't use an enabled hasher. 
Regression in aeb1389442.
Reverted changes to is_password_usable() from
703c266682 and documentation changes from
92f48680db.
 2018-03-22 10:03:43 -04:00
Tim Graham
6421bd702f Refs #29227 -- Made inspectdb generate BooleanField(null=True) rather than NullBooleanField. 2018-03-20 12:10:10 -04:00
Tim Graham
5fa4f40f45 Fixed #29227 -- Allowed BooleanField to be null=True. 
Thanks Lynn Cyrin for contributing to the patch, and Nick Pope for review.
 2018-03-20 12:10:10 -04:00
Astral
a0c03c62a8 Fixed #29229 -- Fixed column mismatch crash when combining two annotated values_list() querysets with union(), difference(), or intersection(). 
Regression in 7316720603821ebb64dfe8fa592ba6edcef5f3e.
 2018-03-19 21:05:43 -04:00
Mariusz Felisiak
cede5111bb
Refs #28643 -- Added LPad and RPad database functions. 
Thanks Tim Graham for the review.
 2018-03-19 17:35:16 +01:00
Tim Graham
8d67c7cffd Added stub release notes for 1.11.12. 2018-03-19 09:49:16 -04:00
Mattia Procopio
aeb8c38178 Fixed #29206 -- Fixed PasswordResetConfirmView crash when the URL contains a non-UUID where one is expected. 2018-03-15 21:33:15 -04:00
Mariusz Felisiak
9421aee35e
Refs #28643 -- Added LTrim, RTrim, and Trim database functions. 
Thanks Tim Graham and Mads Jensen for reviews.
 2018-03-15 20:57:23 +01:00
Artem Tabolin
a2f7433adc Fixed #29221 -- Corrected admin's autocomplete widget to add a space after custom classes. 2018-03-15 10:55:34 -04:00
Tim Graham
87dc0844a6 Fixed #29200 -- Fixed label rendering when using RadioSelect and CheckboxSelectMultiple with MultiWidget. 2018-03-15 09:10:23 -04:00
dzhuang
e17088a108 Fixed #29213 -- Fixed autocomplete widget's translations for zh-hans/zh-hant. 2018-03-13 10:58:34 -04:00
Simon Charette
277ed07209 Fixed #29195 -- Fixed Exists.output_field resolution on single-valued queries. 
The Subquery class which Exists inherits from defaulted to using single-valued
querie's field if no output_field was explicitly specified on initialization
which was bypassing the Exists.output_field defined at the class level.

Moving Subquery's dynamic output_field resolution to _resolve_output_field
should make sure the fallback logic is only performed if required.

Regression in 08654a99bb.

Thanks Oli Warner for the detailed report.
 2018-03-08 13:30:41 -05:00
Tim Graham
f0d6f01fbe Added stub release notes for 2.0.4. 2018-03-06 13:25:20 -05:00
Tim Graham
5bbbdd26d1 Added CVE-2018-7536,7 to the security release archive. 2018-03-06 12:59:36 -05:00
Tim Graham
97b7dd59bb Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in django.utils.text.Truncator. 
Thanks James Davis for suggesting the fix.
 2018-03-06 08:30:40 -05:00
Tim Graham
8618271caa Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetrunc template filters. 
Thanks Florian Apolloner for assisting with the patch.
 2018-03-06 08:30:40 -05:00
Tim Graham
4d2a2c83c7 Added stub release notes for security releases. 2018-03-06 08:30:34 -05:00
Patryk Zawadzki
a20aae414e Fixed #29144 -- Made untranslated strings for territorial language variants use translations from the generic language variant. 2018-03-03 12:08:24 -05:00
Christophe Mehay
40bac28faa Fixed #29176 -- Fixed AbstractBaseUser.normalize_username() crash if username isn't a string. 2018-03-02 11:32:53 -05:00
Tim Graham
4c02e3cda3 Refs #27728 -- Made cosmetic edits to admin template tag template overriding. 2018-03-01 11:45:08 -05:00
Tomáš Ehrlich
fa352626c2 Fixed #29172 -- Fixed crash with Window expression in a subquery. 2018-03-01 10:24:14 -05:00
Claude Paroz
75527c0f83 Updated translations from Transifex 
Forward port of 2126e9317e80a7d4c42e033dd33d7e3378fdfcf8 from stable/2.0.x.
 2018-02-28 20:06:52 +01:00
Mariusz Felisiak
54f80430be
Fixed #29166 -- Fixed crash in When() expression with a list argument. 
Thanks Matthew Pava for the report and Tim Graham and Carlton Gibson for
reviews.
Regression in 19b2dfd1bf.
 2018-02-28 18:05:23 +01:00
Raffaele Salmaso
5cc28dc752 Fixed #27728 -- Allowed overriding admin templatetags templates. 2018-02-28 08:49:40 +01:00
Tim Graham
5b589a47b9
Fixed #29161 -- Removed BCryptPasswordHasher from PASSWORD_HASHERS. 2018-02-26 09:05:18 -05:00
Becky Smith
8116e588db Fixed #17962 -- Added ModelAdmin.get_deleted_objects(). 2018-02-24 20:41:43 -05:00
Sebastian Sangervasi
7905815510 Fixed #27449 -- Added django.utils.translation.get_supported_language_variant(). 2018-02-23 14:49:00 -05:00
bobort
f82de6bfb1 Refs #28643 -- Added Ord, Chr, Left, and Right database functions. 2018-02-23 10:23:22 -05:00
Andreas Pelme
e307ff29d2 Fixed #27810 -- Allowed query expressions in admin_order_field. 2018-02-15 21:00:31 -05:00
Tim Graham
b95c49c954 Fixed #29125 -- Made Q.deconstruct() deterministic with multiple keyword arguments. 2018-02-12 14:52:32 -05:00
Stanislav Karpov
6d794fb762 Fixed #28960 -- Added GEOSGeometry.buffer_with_style(). 2018-02-10 19:45:58 -05:00
Matthew Wilkes
2162f0983d Fixed #24747 -- Allowed transforms in QuerySet.order_by() and distinct(*fields). 2018-02-10 19:08:55 -05:00
Raphael Gaschignard
bf26f66029 Fixed #29118 -- Fixed crash with QuerySet.order_by(Exists(...)). 2018-02-10 18:35:57 -05:00
Manatsawin Hanmongkolchai
1a1264f149 Fixed #29109 -- Fixed the admin time picker widget for the Thai locale. 2018-02-10 16:05:41 -05:00
Simon Charette
d61fe24601 Fixed #29108 -- Fixed crash in aggregation of distinct+ordered+sliced querysets. 
Regression in 4acae21846.
Thanks Stephen Brooks for the report.
 2018-02-08 09:59:25 -05:00
Jonas Haag
8c709d79cb Fixed #17419 -- Added json_tag template filter. 2018-02-07 18:38:12 -05:00
Alexander Gaevsky
ef2512b2ff Fixed #25790 -- Allowed disable column sorting in the admin changelist. 
Thanks Ramiro Morales for completing the patch.
 2018-02-07 17:46:28 -05:00
Mariusz Felisiak
34b52f8572
Renamed the allow_sliced_subqueries database feature to allow_sliced_subqueries_with_in. 
After 0899d583bd this database feature is
false only on MySQL which doesn't support sliced subqueries only with
IN/ALL/ANY/SOME.
 2018-02-07 08:27:47 +01:00
Nick Sarbicki
47268242b0 Fixed #29082 -- Allowed the test client to encode JSON request data. 2018-02-06 18:29:04 -05:00
Tom
272f685794 Fixed #27999 -- Added test client support for HTTP 307 and 308 redirects. 2018-02-06 09:03:43 -05:00
Simon Charette
7515e1f3fc Added stub release notes for 2.0.3. 2018-02-05 10:12:47 -05:00
Raffaele Salmaso
da3df5b878 Fixed #8500 -- Allowed overriding the default admin site instance. 2018-02-03 18:51:10 -05:00
Tim Graham
66119ed642 Added CVE-2018-6188 to the security release archive. 2018-02-01 10:14:17 -05:00
Tim Graham
af33fb250e Fixed CVE-2018-6188 -- Fixed information leakage in AuthenticationForm. 
Reverted 359370a8b8 (refs #28645).

This is a security fix.
 2018-02-01 09:05:14 -05:00
Tim Graham
552abffab1 Fixed #29094 -- Fixed crash when entering an invalid uuid in ModelAdmin.raw_id_fields. 
Regression in 2f9861d823.

Thanks Carel Burger for the report and fix.
 2018-02-01 08:36:36 -05:00
priyanshsaxena
617d5f410f Fixed #29066 -- Allowed negating query expressions. 2018-01-31 10:54:19 -05:00
Tim Graham
0a37ea56d0 Fixed #29091 -- Fixed makemigrations crash if migrations directory doesn't have __init__.py. 
Regression in aadd3aeb2b.
 2018-01-31 09:36:36 -05:00
Tim Graham
de59132afc Refs #29071 -- Forwardported 2.0.2/1.11.10 release notes. 2018-01-31 09:29:12 -05:00
Tim Graham
c10cb9716f
Refs #29086 -- Doc'd how to detect bytestring mistakes. 2018-01-30 19:58:16 -05:00
Vlastimil Zíma
fbc3c29e7c Fixed #29036 -- Fixed HTML5 required validation on SelectDateWidget if the attribute is added by JavaScript. 
Thanks Tim Graham for the initial patch.
 2018-01-30 19:09:31 -05:00
bquinn
c2b969e124 Fixed #29004 -- Added inspectdb --include-views option. 2018-01-27 18:51:40 -05:00
Sigurd Ljødal
a455e732a0 Fixed #28650 -- Added TruncWeek database function. 2018-01-27 09:59:13 -05:00
Mariusz Felisiak
b002a032f9
Fixed #29054 -- Fixed a regression where a queryset that annotates with geometry objects crashes. 
Made GEOSGeometryBase hashable.
Regression in 19b2dfd1bf.

Thanks Tim Graham for the review.
 2018-01-27 11:12:11 +01:00
Jon Dufresne
3187c89d6f Fixed #29067 -- Fixed regression in QuerySet.values_list(..., flat=True) followed by annotate(). 2018-01-26 09:35:50 -05:00
Grant Jenks
d38a3169a4 Fixed #28977 -- Changed local-memory cache to use LRU culling. 
LRU culling turns every read into a kind of write to the cache: cache keys
are moved to the first position in the OrderedDict when they are retrieved.
The RWLock which permitted multiple readers while prioritizing a single
writer is obsolete since all accesses are now writes.
 2018-01-24 12:26:19 -05:00
Jon Dufresne
7d607127e3 Refs #21221 -- Deprecated staticfiles and admin_static template tag libraries. 2018-01-23 10:30:10 -05:00