Django/django
11
0
Fork 0
Code Pull Requests Projects Releases Activity
21,885 Commits 26 Branches 382 Tags
Commit Graph

166 Commits

Author SHA1 Message Date
Tim Graham
7dee62ff68 [1.9.x] Fixed #26392 -- Corrected login_required/permission_required stacking example. 
Backport of c41737dc00e2c8d34046b9f856f23fcc0cb4a82c from master
 2016-03-21 19:58:42 -04:00
Florian Apolloner
af7d09b0c5 [1.9.x] Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login. 
This is a security fix.
 2016-03-01 11:38:49 -05:00
Tim Graham
3e1aa37422 [1.9.x] Fixed a function signature in docs/topics/auth/default.txt. 
Backport of 441c537b66233ae57bf0023f02d8262474229e1a from master
 2016-02-24 16:25:34 -05:00
Markus Holtermann
5ca1d0a654 [1.9.x] Fixed spelling error 
Backport of b14470c7b7ee73c328c9c60100165301e6c2e24b from master
 2016-02-23 10:27:41 +11:00
Tim Graham
31c9301f27 [1.9.x] Fixed #26188 -- Documented how to wrap password hashers. 
Backport of 5a541e2e6cb01e254f20c302093a24d7dc9af8ce from master
 2016-02-22 17:29:38 -05:00
Daniel Quinn
174811c553 [1.9.x] Fixed import location of check_password() in docs. 
Backport of de7edc005f06c47c1d39d5cb30762d424ee4dabf from master
 2016-02-22 12:43:36 -05:00
Berker Peksag
f78892f2de [1.9.x] Refs #19353 -- Added tests for using custom user models with built-in auth forms. 
Also updated topics/auth/customizing.txt to reflect that subclasses of
UserCreationForm and UserChangeForm can be used with custom user models.

Thanks Baptiste Mispelon for the initial documentation.

Backport of f0425c72601f466c6a71518749c6d15b94945514 from master
 2016-02-17 10:42:54 -05:00
Tim Graham
194bf8ca62 [1.9.x] Refs #26089 -- Removed obsolete docs about custom user model testing. 
Backport of 1e9150443e5696d764ed81c97b53ef0365a5d854 from master
 2016-02-02 08:55:06 -05:00
Tim Graham
a9fbf0735a [1.9.x] Fixed #26124 -- Added missing code formatting to docs headers. 
Backport of a6ef025dfb2a1d1bd23893408eef6d066fb506d9 from master
 2016-02-01 11:54:26 -05:00
Tim Graham
d7a6086825 [1.9.x] Fixed #23868 -- Added support for non-unique django-admin-options in docs. 
Also documented missing short command line options to fix #24134. This bumps
the minimum sphinx version required to build the docs to 1.3.4.

Thanks Simon Charette for review.

Backport of e519aab43a419589e92fe284e4ce2f2e034aec6a from master
 2016-02-01 11:25:42 -05:00
Tim Graham
0495f44b8d [1.9.x] Unified some doc links to OneToOneField and ManyToManyField. 
Backport of 8ce8beb3f24042ed0c3da00ef3d23c25036021ed from master
 2016-02-01 11:02:53 -05:00
Gavin Wahl
55fa19e4a6 [1.9.x] Fixed user_passes_test() signature in docs. 
Backport of ec708803f70d51dda21845799de8c62d02611808 from master
 2015-12-08 15:57:38 -05:00
Tim Graham
abeb50db5d [1.9.x] Fixed #25895 -- Used a consistent style for UserAdmin overrides. 
Thanks Justin Abrahms for the report.

Backport of 166e0490d39f619928ee9c5133cc5cab0ae5c1db from master
 2015-12-08 14:42:11 -05:00
Florian Apolloner
274670a33d [1.9.x] Removed deprecated usage of url tag from auth docs. 
Backport of 105028eec64064c11dfd3d5415317ba1fab81214 from master
 2015-12-05 15:52:31 -05:00
Josh Soref
8897f4b0df [1.9.x] Fixed many spelling mistakes in code, comments, and docs. 
Backport of 93452a70e8a62c7408eeded444f5088d4a26212d from master
 2015-12-03 12:49:03 -05:00
Eliezer Kanal
cc9c2b1ef3 [1.9.x] Updated link to 1000 common passwords. 
xato.net is dead; replaced with link to archive.org.

Backport of d3b488f5bd17b4cf662613e0d3d62f9675ff3cdc from master
 2015-12-02 12:57:29 -05:00
Agnieszka Lasyk
b3389956c9 [1.9.x] Fixed #25755 -- Unified spelling of "website". 
Backport of 1f8dad69158a96d0649d321ce08ecc9c0465f962 from master
 2015-11-16 06:44:46 -05:00
Anderson Resende
0ec328509c [1.9.x] Fixed #25744 -- Corrected reference to User object in auth docs. 
Backport of ce4914eab4688ace4b97d14a8c271887235ebb3f from master
 2015-11-12 19:23:50 -05:00
Bryan Marty
8e23527075 [1.9.x] Fixed #25169 -- Documented stacking of permission_required and login_required. 
Backport of 9788625277b85596302bbf2c39cf829b7a766a4f from master
 2015-11-12 14:25:29 -05:00
japrogramer
ed3e066cc1 [1.9.x] Fixed typo in docs/topics/auth/default.txt. 
Backport of a10cbbbc17d4244812ef713437fa44207fe1a223 from master
 2015-11-03 08:57:03 +00:00
Tim Graham
0094fb6be8 [1.9.x] Documented auth's login/logout function parameters. 
Backport of c14b6b52ff131db263bf06a02f903a73390975da from master
 2015-09-28 14:12:32 -04:00
Tim Graham
cb1e779ceb Refs #24115 -- Added docs for password updates on bcrypt rounds change. 2015-09-22 19:30:31 -04:00
sujayskumar
d8d853378b Fixed #24944 -- Added extra_email_context parameter to password_reset() view. 2015-09-18 18:56:04 -04:00
Tim Graham
6c6eb8a691 Refs #24914 -- Added docs for more auth mixin methods. 2015-08-20 17:57:47 -04:00
Claude Paroz
64982cc2fb Updated Wikipedia links to use https 2015-08-08 12:02:32 +02:00
Tim Graham
16a8d01308 Fixed #25229 -- Clarified how an iterable works with @permission_required 2015-08-05 17:13:45 -04:00
Alasdair Nicol
6d7a9d96fe Fixed password_reset signature in docs 2015-08-04 13:54:32 -04:00
Tim Graham
5d0961fdfc Fixed #25202 -- Fixed typo in docs/topics/auth/customizing.txt 2015-07-31 07:33:38 -04:00
Flavio Curella
c2e70f0265 Fixed #21127 -- Started deprecation toward requiring on_delete for ForeignKey/OneToOneField 2015-07-27 18:28:13 -04:00
Tim Graham
87d55081ea Fixed #25159 -- Removed brackets from class/function/method signatures in docs. 
Thanks hellbeast for the initial patch.
 2015-07-27 10:32:47 -04:00
Akis Kesoglou
29465d438e Fixed #25142 -- Added PermissionRequiredMixin.has_permission() to allow customization. 2015-07-27 10:23:56 -04:00
Tim Graham
217f173be0 Fixed #25166 -- Clarified how auth permissions are created. 
Thanks Baptiste Mispelon for report and review.
 2015-07-25 09:30:54 -04:00
Tim Graham
e3d1f2422c Fixed malformed Sphinx directives. 2015-07-25 06:37:51 -04:00
Tim Graham
03aec35a12 Converted tabs to spaces in topics/auth/default.txt 2015-07-24 11:48:57 -04:00
lukasz.wojcik
927b30a6ab Fixed #24126 -- Deprecated current_app parameter to auth views. 2015-07-21 08:26:41 -04:00
Tim Graham
5fd83db255 Normalized indentation and line lengths in docs/topics/auth/default.txt. 2015-07-21 08:11:28 -04:00
Tim Graham
f5e9d67907 Refs #16860 -- Moved password_changed() logic to AbstractBaseUser. 
Thanks Carl Meyer for review.
 2015-07-20 13:44:26 -04:00
Nick Sweeting
f0857c09fb Fixed #25083 -- Added SessionAuthenticationMiddleware to auth installation docs 2015-07-10 08:40:57 -04:00
Tim Graham
aaacaeb096 Renamed RemovedInDjangoXYWarnings for new roadmap. 
Forwardport of ae1d663b7913f6da233c55409c4973248372d302
from stable/1.8.x plus more.
 2015-06-24 16:08:20 -04:00
Markus Holtermann
e5cb4e1411 Fixed #24914 -- Added authentication mixins for CBVs 
Added the mixins LoginRequiredMixin, PermissionRequiredMixin and
UserPassesTestMixin to contrib.auth as counterparts to the respective
view decorators.

The authentication mixins UserPassesTestMixin, LoginRequiredMixin and
PermissionRequiredMixin have been inspired by django-braces
<https://github.com/brack3t/django-braces/>

Thanks Raphael Michel for the initial patch, tests and docs on the PR
and Ana Balica, Kenneth Love, Marc Tamlyn, and Tim Graham for the
review.
 2015-06-17 23:19:10 +02:00
Tim Graham
58665dded0 Removed usage of string-based url() in auth docs. 2015-06-17 09:45:03 -04:00
Tim Graham
55b3bd8468 Refs #16860 -- Minor edits and fixes to password validation. 2015-06-10 07:41:01 -04:00
Raphael Michel
39937de7e6 Fixed #24929 -- Allowed permission_required decorator to take any iterable 2015-06-08 13:44:39 -04:00
Erik Romijn
1daae25bdc Fixed #16860 -- Added password validation to django.contrib.auth. 2015-06-07 19:31:20 +02:00
Alasdair Nicol
1ea87c8c79 Fixed #24910 -- Added createsuperuser support for non-unique USERNAME_FIELDs 
Clarified docs to say that a non-unique USERNAME_FIELD is permissable
as long as the custom auth backend can support it.
 2015-06-06 09:33:02 -04:00
Kevin Marsh
10945ebeb8 Removed unused import in example code in docs/topics/auth/default.txt 2015-05-27 13:26:20 +01:00
Tim Graham
00d763a4fb Fixed typo in docs/topics/auth/default.txt 2015-05-22 06:48:59 -04:00
Laurent Peuch
21efb5eb74 Enhanced registration/login.html example template. 2015-05-21 20:45:51 -04:00
Charles Dee Rice
4f3c444241 Fixed #24789 -- Fixed wrong positional args order in doc example 
Arguments shown in example code (signal, sender, instance) appeared to
be the incorrect positional arguments for a post_save signal (which
might start as: sender, instance, created), as documented:
​https://docs.djangoproject.com/en/1.8/ref/signals/#post-save
 2015-05-13 10:14:33 +02:00
Tim Graham
8e86d9d3df Fixed #24780 -- Removed outdated discussion of signals and custom users. 2015-05-11 09:10:30 -04:00