Permalink
Commits on Sep 10, 2011
  1. [1.2.X] Altered the behavior of URLField to avoid a potential DOS vec…

    …tor, and to avoid potential leakage of local filesystem data. A security announcement will be made shortly.
    
    Backport of r16760 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16766 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Sep 10, 2011
  2. [1.2.X] Corrected an issue which could allow attackers to manipulate …

    …session data using the cache. A security announcement will be made shortly.
    
    Backport of r16759 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16765 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Sep 10, 2011
  3. [1.2.X] Added protection against spoofing of X_FORWARDED_HOST headers…

    …. A security announcement will be made shortly.
    
    Backport of r16758 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16764 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Sep 10, 2011
Commits on May 9, 2011
  1. [1.2.X] Updated AJAX example code in CSRF docs to be consistent regar…

    …ding what are safe HTTP methods
    
    Backport of [16202] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16204 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    spookylukey committed May 9, 2011
  2. [1.2.X] Fixed #15469 - CSRF token is inserted on GET requests

    Thanks to goran for report.
    
    Backport of [16191] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16194 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    spookylukey committed May 9, 2011
  3. [1.2.X] Fixed #15869 - example AJAX code in CSRF docs fails sometimes…

    … for IE7 or absolute same origin URLs
    
    Thanks to nick for the report.
    
    Backport of [16183] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16185 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    spookylukey committed May 9, 2011
Commits on Mar 24, 2011
  1. [1.2.X] Ensure stdin is a tty before handing it to termios, so as to …

    …prevent prolems when running under IDEs.
    
    r15911 from trunk.
    
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15912 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    kmtracey committed Mar 24, 2011
Commits on Mar 22, 2011
  1. [1.2.X] Fixed typo in forms API documentation.

    Backport of r15896 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15899 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    DrMeers committed Mar 22, 2011
Commits on Mar 21, 2011
  1. [1.2.X] Tweaked title level in custom file storage systems documentat…

    …ion.
    
    Backport of [15888] from trunk
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15889 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ramiro committed Mar 21, 2011
Commits on Mar 19, 2011
  1. [1.2.X] Fixed #15565: Ensure terminal echo is on after reloader reloa…

    …ds (something turns it off on some systems if reload happens while at a pdb prompt). Thanks for the report zimnyx.
    
    r15883 from trunk.
    
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15884 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    kmtracey committed Mar 19, 2011
  2. [1.2.X] Fixed #13686 -- Ensure that memcache handling of unicode valu…

    …es in add() and set_many() is consistent with the handling provided by get() and set(). Thanks to nedbatchelder for the report, and to jbalogh, accuser and Jacob Burch for their work ont the patch.
    
    Backport of r15880 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15881 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Mar 19, 2011
Commits on Mar 17, 2011
  1. [1.2.X] Fixed #14133 -- Updated Windows installation instructions for…

    … GeoDjango, now recommend the OSGeo4W installer for spatial libraries.
    
    Backport of r15872 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15873 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 17, 2011
  2. [1.2.X] Fixed #15622 -- Clear content type cache to avoid problems wi…

    …th subsequence TransactionTestCases. Thanks to zyga for the report
    
    Backport of r15867 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15868 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Mar 17, 2011
  3. [1.2.X] Fixed #15142 -- Force test views to be non-cached so that pro…

    …jects with caching middleware enabled don't cause test failures. Thanks to jsdalton for the report and patch
    
    Backport of r15865 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15866 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Mar 17, 2011
  4. [1.2.X] Fixed #15569 -- Corrected the numbering updates to inlines wh…

    …en rows are added and deleted. Thanks to sbaechler for the report, to Arthur de Jong and mk for the work on the patch, and to Karen Tracey for the last minute testing help.
    
    Backport of r15862 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15863 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    freakboy3742 committed Mar 17, 2011
Commits on Mar 16, 2011
  1. [1.2.X] Added GIS test fixture directories to the MANIFEST.

    Backport of r15860 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15861 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 16, 2011
  2. [1.2.X] Add `setUp` and `tearDown` methods to the geographic feed and…

    … sitemap tests to ensure `Site` exists for tests.
    
    Backport of r15856 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15857 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 16, 2011
  3. [1.2.X] Use Sphinx `:download:` directives for spatial database templ…

    …ate creation scripts instead of linking to geodjango.org.
    
    Backport of r15854 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15855 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 16, 2011
  4. [1.2.X] Fixed #15194 -- Add OSGeo4W DLL library names to GEOS and GDA…

    …L interfaces. Thanks, master for ticket and initial patch.
    
    Backport of r15852 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15853 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 16, 2011
  5. [1.2.X] Fixed #15533 -- Now use 3857 as spherical mercator projection…

    … instead of deprecated 900913 on platforms that support it. Thanks to cnorthwood for bug report and Christopher Schmidt for OpenLayers JavaScript workaround.
    
    Backport of r15845 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15846 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 16, 2011
Commits on Mar 15, 2011
  1. [1.2.X] Fixed #15617 - CSRF referer checking too strict

    Thanks to adam for the report.
    
    Backport of [15840] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15844 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    spookylukey committed Mar 15, 2011
  2. [1.2.X] Previous changeset did not include new test data, stupid hgsu…

    …bversion. Refs #15378.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15815 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 15, 2011
  3. [1.2.X] Fixed #15378 -- Now properly handle OGR layers that have feat…

    …ures with invalid geometries. Thanks, kunitoki for bug report and initial patch.
    
    Backport of r15813 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15814 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 15, 2011
Commits on Mar 14, 2011
  1. [1.2.X] Fixed #9213 - Added check to prevent inactive users from rese…

    …tting their password. Thanks to John Scott for report and draft patch, and Evgeny Fadeev for final patch with test.
    
    Backport of r15805 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15808 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    carljm committed Mar 14, 2011
  2. [1.2.X] Fixed brittle tests that broke with release of GDAL 1.8.

    Backport of r15806 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15807 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    jbronn committed Mar 14, 2011
Commits on Mar 10, 2011
  1. [1.2.X] Fixed #15592 -- corrected an missing backtick in the syndicat…

    …ion docs. Thanks to bradley.ayers for the report and patch.
    
    Backport of [15793] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15794 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    Gabriel Hurley committed Mar 10, 2011
  2. [1.2.X] Fixed #15559 - distinct queries introduced by [15607] cause e…

    …rrors with some custom model fields
    
    This patch just reverts [15607] until a more satisfying solution can be
    found.
    
    Refs #11707
    
    Backport of [15791] from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15792 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    spookylukey committed Mar 10, 2011
  3. [1.2.X] Fixed a bunch more tests that were failing in Oracle due to f…

    …alse assumptions about the primary keys of objects.
    
    Backport of r15789 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15790 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ikelly committed Mar 10, 2011
Commits on Mar 9, 2011
  1. [1.2.X] Fixed another case-sensitivity bug in Oracle introspection. T…

    …his one was harmless, but it was causing an irritating test failure.
    
    Backport of r15787 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15788 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ikelly committed Mar 9, 2011
  2. [1.2.X] Fixed a case-sensitivity bug in Oracle introspection that was…

    … preventing inspectdb from identifying foreign keys.
    
    Backport of r15785 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15786 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ikelly committed Mar 9, 2011
  3. [1.2.X] Fixed a test that was failing in Oracle due to default orderi…

    …ng assumptions.
    
    Backport of r15783 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15784 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ikelly committed Mar 9, 2011
  4. [1.2.X] Fixed a number of tests that were failing in Oracle due to fa…

    …lse assumptions about the primary keys of objects.
    
    Backport of r15779 from trunk.
    
    git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@15780 bcc190cf-cafb-0310-a4f2-bffc1f526a37
    ikelly committed Mar 9, 2011