Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Refs #17133 -- Optimized script_url handling in ↵ | Claude Paroz | 2015-10-27 | 1 | -3/+4 |
| | | | | | | | | get_script_name 10ace52a added some regex processing for each request with SCRIPT_URL set. In a speed critical section, conditionally apply of the regex will save some resources. | ||||
* | Fixed #17133 -- Properly handled successive slashes in ↵ | Claude Paroz | 2015-10-23 | 1 | -0/+6 |
| | | | | | | incoming requests Thanks gjanee@ucop.edu for the report and Tim Graham for the review. | ||||
* | Fixed "URLconf" spelling in code comments. | Tim Graham | 2015-10-22 | 1 | -1/+1 |
| | |||||
* | Fixed #24877 -- Added middleware handling of ↵ | Sylvain Fankhauser | 2015-07-03 | 1 | -10/+17 |
| | | | | response.render() errors. | ||||
* | Renamed RemovedInDjangoXYWarnings for new roadmap. | Tim Graham | 2015-06-24 | 1 | -3/+3 |
| | | | | | Forwardport of ae1d663b7913f6da233c55409c4973248372d302 from stable/1.8.x plus more. | ||||
* | Fixed #14200 -- Added a fallback if HttpRequest.urlconf ↵ | Marten Kenbeek | 2015-06-21 | 1 | -2/+2 |
| | | | | | | | | is None. Made BaseHandler fall back to settings.ROOT_URLCONF if HttpRequest.urlconf is set to None, rather than raising ImproperlyConfigured. | ||||
* | Fixed #24829 -- Allowed use of TemplateResponse in view ↵ | ana-balica | 2015-06-17 | 1 | -0/+9 |
| | | | | error handlers. | ||||
* | Fixed #24733 -- Passed the triggering exception to 40x ↵ | Claude Paroz | 2015-05-11 | 1 | -8/+21 |
| | | | | | | error handlers Thanks Tim Graham for the review. | ||||
* | Extended variable name in handlers/base.py | Claude Paroz | 2015-05-05 | 1 | -5/+5 |
| | | | | Refs #24733. | ||||
* | Fixed #23960 -- Removed http.fix_location_header | Claude Paroz | 2015-03-18 | 1 | -1/+0 |
| | | | | Thanks Carl Meyer for the report and Tim Graham for the review. | ||||
* | Fixed #23173 -- Fixed incorrect stripping of SCRIPT_URL | Bas Peschier | 2015-03-08 | 1 | -1/+1 |
| | |||||
* | Sorted imports with isort; refs #23860. | Tim Graham | 2015-02-06 | 2 | -5/+6 |
| | |||||
* | Fixed #24137 -- Switched to HTTP reason phrases from ↵ | Jon Dufresne | 2015-01-28 | 1 | -3/+0 |
| | | | | Python stdlib. | ||||
* | Removed request.REQUEST per deprecation timeline; refs ↵ | Tim Graham | 2015-01-17 | 1 | -11/+0 |
| | | | | #18659. | ||||
* | Fixed #24072 -- Added FileResponse for streaming binary ↵ | Collin Anderson | 2015-01-05 | 1 | -0/+2 |
| | | | | files. | ||||
* | Fixed #14664 -- Logged a warning if MiddlewareNotUsed is ↵ | Berker Peksag | 2014-11-27 | 1 | -1/+6 |
| | | | | raised in DEBUG mode. | ||||
* | Fixed #23887 -- Returned Bad Request for multipart ↵ | Claude Paroz | 2014-11-22 | 1 | -0/+10 |
| | | | | | | | parsing fails Thanks Antti Häyrynen and Tim Graham for the report, and Aymeric Augustin for the review. | ||||
* | Fixed #19508 -- Implemented uri_to_iri as per RFC. | Anubhav Joshi | 2014-10-15 | 1 | -7/+4 |
| | | | | | Thanks Loic Bistuer for helping in shaping the patch and Claude Paroz for the review. | ||||
* | Fixed #23638 -- Prevented crash while parsing invalid ↵ | Claude Paroz | 2014-10-13 | 1 | -1/+1 |
| | | | | | | cookie content Thanks Philip Gatt for the report and Tim Graham for the review. | ||||
* | Limited lines to 119 characters in django/ | Tim Graham | 2014-09-05 | 1 | -1/+5 |
| | | | | refs #23395. | ||||
* | Fixed #21483 -- Added WSGI environ to kwargs sent to ↵ | Joshua "jag" Ginsberg | 2014-08-29 | 1 | -1/+1 |
| | | | | request_started signal. | ||||
* | Fixed #21668 -- Return detailed error page when ↵ | Anubhav Joshi | 2014-06-24 | 1 | -0/+2 |
| | | | | | | | | SuspiciousOperation is raised and DEBUG=True Thanks GDorn and gox21 for report. Thanks Tim Graham for idea and review. | ||||
* | Refactored common code in handlers/base.py and ↵ | Anubhav Joshi | 2014-06-23 | 1 | -23/+14 |
| | | | | urlresolvers.py | ||||
* | Fixed #22680 -- I/O operation on closed file. | Florian Apolloner | 2014-06-11 | 1 | -0/+2 |
| | | | | | | | This patch is two-fold; first it ensure that Django does close everything in request.FILES at the end of the request and secondly the storage system should no longer close any files during save, it's up to the caller to handle that -- or let Django close the files at the end of the request. | ||||
* | Fixed #6992 -- Improved error when middleware omits ↵ | Aymeric Augustin | 2014-06-07 | 1 | -0/+12 |
| | | | | | | HttpResponse. Thanks guettli for the report. | ||||
* | Fixed #18314 -- Corrected request.build_absolute_uri() ↵ | Unai Zalakain | 2014-06-07 | 1 | -1/+5 |
| | | | | | | | | | | | handling of paths starting with // ``HttpRequest.build_absolute_uri()`` now correctly handles paths starting with ``//``. ``WSGIRequest`` now doesn't remove all the leading slashes either, because ``http://test/server`` and http://test//server`` aren't the same thing (RFC2396). Thanks to SmileyChris for the initial patch. | ||||
* | Dropped fix_IE_for_vary/attach. | Aymeric Augustin | 2014-05-14 | 1 | -2/+0 |
| | | | | This is a security fix. Disclosure following shortly. | ||||
* | Fixed #21188 -- Introduced subclasses for ↵ | Claude Paroz | 2014-03-08 | 1 | -1/+2 |
| | | | | | | | to-be-removed-in-django-XX warnings Thanks Anssi Kääriäinen for the idea and Simon Charette for the review. | ||||
* | Fixed many typos in comments and docstrings. | Rodolfo Carvalho | 2014-03-03 | 1 | -1/+1 |
| | | | | Thanks Piotr Kasprzyk for help with the patch. | ||||
* | Fixed #21912 -- Improved error message if a view returns ↵ | Aaron France | 2014-02-15 | 1 | -1/+2 |
| | | | | | | None. Thanks brycenesbitt for the report. | ||||
* | Replace _parse_content_type with cgi.parse_header | Curtis | 2014-02-09 | 1 | -16/+2 |
| | |||||
* | Fixed #21674 -- Deprecated the import_by_path() function ↵ | Berker Peksag | 2014-02-08 | 1 | -2/+2 |
| | | | | | | in favor of import_string(). Thanks Aymeric Augustin for the suggestion and review. | ||||
* | Use cached_property for request.GET and request.COOKIES | Curtis | 2013-12-24 | 1 | -19/+10 |
| | |||||
* | Fixed #21383 -- Added request details in ↵ | Claude Paroz | 2013-11-09 | 1 | -1/+6 |
| | | | | SuspiciousOperation messages | ||||
* | Fixed all E261 warnings | coagulant | 2013-11-02 | 2 | -3/+3 |
| | |||||
* | Fixed #21302 -- Fixed unused imports and import *. | Tim Graham | 2013-11-02 | 1 | -1/+1 |
| | |||||
* | Fixed #21288 -- Fixed E126 pep8 warnings | Alasdair Nicol | 2013-10-21 | 1 | -4/+4 |
| | |||||
* | Fixed #21268 -- Fixed E303 pep8 warnings | Alasdair Nicol | 2013-10-18 | 1 | -1/+0 |
| | |||||
* | Fixed #18659 -- Deprecated request.REQUEST and MergeDict | Bouke Haarsma | 2013-10-17 | 1 | -0/+3 |
| | | | | Thanks Aymeric Augustin for the suggestion. | ||||
* | Fixed #7603 -- Added a 'scheme' property to the ↵ | Unai Zalakain | 2013-10-15 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | | | | HttpRequest object `HttpRequest.scheme` is `https` if `settings.SECURE_PROXY_SSL_HEADER` is appropriately set and falls back to `HttpRequest._get_scheme()` (a hook for subclasses to implement) otherwise. `WSGIRequest._get_scheme()` makes use of the `wsgi.url_scheme` WSGI environ variable to determine the request scheme. `HttpRequest.is_secure()` simply checks if `HttpRequest.scheme` is `https`. This provides a way to check the current scheme in templates, for example. It also allows us to deal with other schemes. Thanks nslater for the suggestion. | ||||
* | Fixed #20557 -- Properly decoded non-ASCII cookies on ↵ | Aymeric Augustin | 2013-09-07 | 1 | -2/+16 |
| | | | | | | | | | Python 3. Thanks mitsuhiko for the report. Non-ASCII values are supported. Non-ASCII keys still aren't, because the current parser mangles them. That's another bug. | ||||
* | Minor cleanup in the WSGI handler. | Aymeric Augustin | 2013-09-07 | 1 | -3/+3 |
| | |||||
* | Refactored the unmangling of the WSGI environ. | Aymeric Augustin | 2013-09-07 | 1 | -14/+29 |
| | |||||
* | Moved two WSGI-specific functions to the WSGI handler. | Aymeric Augustin | 2013-09-07 | 2 | -46/+48 |
| | | | | They were defined in base when the mod_python handler used them. See bfcecbff. | ||||
* | Fixed a number of lint warnings, particularly around ↵ | Alex Gaynor | 2013-08-04 | 1 | -1/+1 |
| | | | | unused variables. | ||||
* | Fixed missing initializations in WSGIRequest. Refs #20619 | Loic Bistuer | 2013-06-26 | 1 | -0/+1 |
| | |||||
* | Fixed #19866 -- Added security logger and return 400 for ↵ | Preston Holmes | 2013-05-26 | 1 | -2/+18 |
| | | | | | | | | | | | | SuspiciousOperation. SuspiciousOperations have been differentiated into subclasses, and are now logged to a 'django.security.*' logger. SuspiciousOperations that reach django.core.handlers.base.BaseHandler will now return a 400 instead of a 500. Thanks to tiwoc for the report, and Carl Meyer and Donald Stufft for review. | ||||
* | Changed API to disable ATOMIC_REQUESTS per view. | Aymeric Augustin | 2013-05-19 | 1 | -4/+5 |
| | | | | | | | A decorator is easier to apply to CBVs. Backwards compatibility isn't an issue here, except for people running on a recent clone of master. Fixed a few minor problems in the transactions docs while I was there. | ||||
* | Fixed #12747 -- Made reason phrases customizable. | Aymeric Augustin | 2013-05-19 | 1 | -63/+4 |
| | |||||
* | Added an HTTP status code to Django's WSGI application ↵ | Alex Gaynor | 2013-05-08 | 1 | -0/+1 |
| | | | | that was missing (reason unknown). |