| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
| |
filesizeformat template filter.
Thanks Andrey Yakovlev for the initial patch.
|
|
|
|
|
|
|
| |
in {% url %} tag.
The deprecation removal in 5e450c52aafb62b9d83c8ac08892e0b92cbec4aa
removed too much.
|
|
|
|
| |
tag more helpful.
|
|
|
|
|
|
| |
in {% if %} tag.
Per deprecation timeline.
|
|
|
|
|
|
| |
backend-specific template objects.
Per deprecation timeline; refs 79deb6a0716e554cac5308e86f5754f19ad436dc.
|
|
|
|
|
|
| |
Template.render().
Per deprecation timeline; refs a3e783fe11dd25bbf84bfb6201186566ed473506.
|
|
|
|
|
|
| |
render functions.
Per deprecation timeline.
|
|
|
|
|
|
| |
related funtions.
Per deprecation timeline.
|
|
|
|
|
|
| |
TemplateResponse().
Per deprecation timeline.
|
|
|
|
| |
{% for %} tag per deprecation timeline.
|
|
|
|
| |
related functions per deprecation timeline.
|
|
|
|
| |
dotted path per deprecation timeline.
|
|
|
|
|
|
| |
unordered_list filter
Per deprecation timeline.
|
|
|
|
| |
syntax per deprecation timeline.
|
| |
|
|
|
|
|
|
| |
"future".
Per deprecation timeline.
|
|
|
|
| |
during {% include %} tag rendering.
|
|
|
|
| |
logging message.
|
|
|
|
|
|
|
| |
annotations.
This doesn't work in Django 1.8 but was fixed in Django 1.9 as a
side effect of another change.
|
|
|
|
|
|
|
| |
TemplateSyntaxError strings.
This makes it much easier to diagnose a test failure when all
you have is the stack trace from an uncaught TemplateSyntaxError.
|
| |
|
|
|
|
| |
flatten a Context.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Refactored tests to use a sample project.
Updated extraction:
* Removed special handling of single percent signs.
* When extracting messages from template text, doubled all percent signs
so they are not interpreted by gettext as string format flags. All
strings extracted by gettext, if containing a percent sign, will now
be labeled "#, python-format".
Updated translation:
* Used "%%" for "%" in template text before calling gettext.
* Updated {% trans %} rendering to restore "%" from "%%".
|
| |
|
| |
|
|
|
|
|
|
|
| |
current namespace.
Changed the url template tag to use request.resolver_match.namespace as a
default for the current_app argument if request.current_app is not set.
|
|
|
|
|
|
| |
Due to the URL encoding applied by the tag for all parameters that might be
partly controllable by an end-user, there are no XSS/security problems
caused by this bug, only invalid HTML.
|
| |
|
|
|
|
| |
Thanks Bojan Mihelac for the initial patch.
|
| |
|
|
|
|
|
|
|
|
|
| |
conditional_escape() to its output.
This is a security hardening fix to help prevent XSS (and incorrect HTML)
for the common use case of simple_tag.
Thanks to Tim Graham for the review.
|
|
|
|
| |
template filter.
|
|
|
|
|
| |
Forwardport of ae1d663b7913f6da233c55409c4973248372d302
from stable/1.8.x plus more.
|
|
|
|
|
|
|
| |
objects
This also speeds up for loops that render the same template
multiple times.
|
|
|
|
| |
template tag/filter.
|
|
|
|
| |
from being lost.
|
|
|
|
|
|
|
|
| |
registration.
* Converted the ``libraries`` and ``builtins`` globals of
``django.template.base`` into properties of the Engine class.
* Added a public API for explicit registration of libraries and builtins.
|
|
|
|
| |
executing queries.
|
| |
|
| |
|
|
|
|
| |
This continues work to treat Django templates as a library.
|
|
|
|
| |
context manager.
|
|
|
|
| |
firstof template tag.
|
|
|
|
|
|
|
|
|
|
|
| |
InclusionNode.
This change:
* Makes the InclusionNode cache-safe by removing render-time side effects
to its nodelist.
* Ensures the render_context stack is properly scoped and reset by updating
the render call to use Template.render rather than Nodelist.render.
|
|
|
|
|
|
|
|
| |
resolving
Added a django.template logger without a default handler. Added
logging if there is an exception while resolving variables in a
template.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This patch does three major things:
* Merges the django.template.debug implementation into django.template.base.
* Simplifies the debug implementation.
The old implementation copied debug information to every token and node.
The django_template_source attribute was set in multiple places, some
quite hacky, like django.template.defaulttags.ForNode.
Debug information is now annotated in two high-level places:
* Template.compile_nodelist for errors during parsing
* Node.render_annotated for errors during rendering
These were chosen because they have access to the template and context
as well as to all exceptions that happen during either the parse or
render phase.
* Moves the contextual line traceback information creation from
django.views.debug into django.template.base.Template. The debug views now
only deal with the presentation of the debug information.
|
| |
|
|
|
|
| |
and angle brackets.
|
|
|
|
|
| |
Now that the URL is always unescaped as of refs #22267,
we should re-escape it before inserting it into the anchor.
|
|
|
|
|
|
|
|
|
|
| |
functions escape their input by default.
This may cause some backwards compatibility issues, but may also
resolve security issues in third party projects that fail to heed warnings
in our documentation.
Thanks Markus Holtermann for help with tests and docs.
|