Permalink
Commits on Aug 13, 2013
  1. Fixed #20555 -- Make subwidget id attribute available

    In `BoundField.__iter__`, the widget's id attribute is now passed to
    each subwidget. A new id_for_label property was added to ChoiceInput.
    mdj2 committed with timgraham Jun 4, 2013
  2. Apply autoescaping to AdminURLFieldWidget.

    This is a security fix; disclosure to follow shortly.
    jacobian committed Aug 13, 2013
  3. Fixed is_safe_url() to reject URLs that use a scheme other than HTTP/S.

    This is a security fix; disclosure to follow shortly.
    jacobian committed Aug 13, 2013
  4. Fixed test failure on MySQL

    The fix for #20874 caused a MySQL specific failure.
    akaariai committed Aug 13, 2013
  5. Merge pull request #1470 from loic/admin.actionlist

    Fixed overflow for the "Recent Actions" widget on the admin index.
    timgraham committed Aug 13, 2013
  6. Fixed overflow for the "Recent Actions" widget on the admin index.

    Previously the CSS targeted "li.changelink" and therefore didn't
    work for the "add" and "delete" actions.
    
    Refs #14868.
    loic committed Aug 13, 2013
  7. Fixed #20874 -- bump_prefix() in nested subqueries

    Also made some cleanup to build_filter() code by introducing submethods
    solve_lookup_type() and prepare_lookup_value().
    akaariai committed Aug 13, 2013
  8. Unlocalize line numbers and ids in debug 500 view.

    While using USE_L10N, line numbers and IDs were printed as comma (or
    locale equivalent) separated values.
    
    Thanks Kronuz for the report and intial patch.
    
    Fixes #20861.
    ramiro committed Oct 20, 2012
Commits on Aug 12, 2013
  1. Fixed #17778 -- Prevented class attributes on context from resolving …

    …as template variables.
    
    Thanks KyleMac for the report, regebro for the patch, and Aymeric for the test.
    timgraham committed Aug 12, 2013
  2. Fixed #13518 -- Added FILE_UPLOAD_DIRECTORY_PERMISSIONS setting

    This setting does for new directories what FILE_UPLOAD_PERMISSIONS
    does for new files.
    
    Thanks jacob@ for the suggestion.
    romlok committed with timgraham May 13, 2013
Commits on Aug 10, 2013
  1. Fixed #20890 -- Added missing import in class-based view docs.

    Thanks André Augusto.
    timgraham committed Aug 10, 2013
  2. Merge pull request #1464 from evildmp/squashing_commits

    Clarified misleading wording about squashing commits
    jphalip committed Aug 10, 2013
  3. Test that django.views.static.serve() generates 404 status codes.

    Also, change tests to be based on SimpleTestCase.
    ramiro committed Aug 10, 2013
  4. Fixed #20828 -- Allowed @permission_required to take a list of permis…

    …sions
    
    Thanks Giggaflop for the suggestion.
    ersran9 committed with timgraham Aug 7, 2013
Commits on Aug 9, 2013
  1. Fixed #20868 -- Added an email to django-announce as a security step.

    Thanks garrison for the report.
    timgraham committed Aug 9, 2013
  2. Merge pull request #1447 from evansd/patch-1

    Use `usegmt` flag in formatdate
    timgraham committed Aug 9, 2013
  3. Fixed #18356 -- Gave the test client signals.template_rendered call a…

    … unique dispatch_uid
    
    This prevents the test client context from being lost when the client
    is used in a nested fashion.
    bmihelac committed with timgraham Feb 4, 2013
  4. Fixed #9057 -- Added default_permissions model meta option.

    Thanks hvendelbo for the suggestion and koenb for the draft patch.
    timgraham committed Aug 1, 2013
  5. Merge pull request #1460 from loic/ObjectMixins.get_queryset

    Improved queryset handling and docs for (Single|Multiple)ObjectMixin.
    mjtamlyn committed Aug 9, 2013
Commits on Aug 8, 2013
  1. Merge pull request #1457 from jaimeirurzun/master

    Clarified meaning of models.User.is_authenticated()
    timgraham committed Aug 8, 2013
  2. Revert change to the default Form.clean()

    This means it doesn't break for people who are doing
    `cleaned_data = super(FooForm, self).clean()`.
    mjtamlyn committed Aug 8, 2013