mirror
/
wagtail
kopia lustrzana https://github.com/wagtail/wagtail
1
0
Forkuj 0
Kod Zgłoszenia Packages Projekty Wydania Wiki Aktywność
8 762 Commity
54 Gałęzie
255 Tagi
478 MiB
Wykres commitów

8762 Commity (8161d7c14c30b5bd4ce65be3a670dd4d97d61441)

Autor SHA1 Wiadomość Data
Matt Westcott 783b128fa2 Release note for #4496 in 2.1.1 2018-07-03 17:34:49 +01:00
Matt Westcott 048a4e83f1 Release note for #4496 in 1.13.2 2018-07-03 17:34:49 +01:00
Matt Westcott 7eab2ae793 Release note for #4496 in 1.12.4 2018-07-03 17:34:48 +01:00
Matt Westcott ce4cd82bd9 Release note for #4496 in 2.2 2018-07-03 16:59:01 +01:00
Matt Westcott 879239b02c Reject null characters in redirect URLs 2018-07-03 16:55:59 +01:00
Matt Westcott 3aff9f76e4 Revert "Strip Unicode NULL chars when normalizing paths" 
This reverts commit 882f8f3cf8.

Conflicts:
	CHANGELOG.txt
	CONTRIBUTORS.rst
	docs/releases/2.2.rst
 2018-07-03 16:45:27 +01:00
Matt Westcott 9ef8ee2d7f Release note for #4553 in 2.1.1 2018-07-03 16:10:59 +01:00
Matt Westcott b329ed4b65 Release note for #4553 in 1.12.4 2018-07-03 16:10:21 +01:00
Matt Westcott 55ddab6d14 Release note for #4553 in 1.13.x 2018-07-03 16:10:12 +01:00
Matt Westcott ed9a3a2d69 Pass all necessary template context to chooser view after upload validation error 
Fixes #4548
 2018-07-03 15:26:28 +01:00
Matt Westcott b4a2e13cb0 Copy 1.13.2 release notes to master 2018-06-29 15:37:58 +01:00
Matt Westcott 6c3431580a Release note for #4480 in 1.12.4 2018-06-29 15:37:30 +01:00
Matt Westcott 1a4046a676 Copy 1.12.4 release notes to master 2018-06-29 15:36:43 +01:00
Tom Dyson ee661ab6f8 README rewrite (#4372) 2018-06-28 17:27:55 +01:00
Matt Westcott 06d8fb0f63 Add guideline on the use of British vs American English 2018-06-27 20:39:08 +01:00
acrewdson 882f8f3cf8 Strip Unicode NULL chars when normalizing paths 
After migrating a Wagtail-based site from MySQL to Postgres, we
noticed that malicious requests to the site that included percent-
encoded Unicode NULLs (`%00`) raised a `ValueError` exception that we
hadn't seen when using MySQL: `A string literal cannot contain NUL
(0x00) characters.` This appears to relate to `psycopg2`'s decision to
raise an exception in these situations, as discussed here:

    https://github.com/psycopg/psycopg2/issues/420

While newer versions of Django appear to provide some field validation
that addresses these characters, it doesn't look like Wagtail's
redirect middleware is making use of those validators, and so it seemed
reasonable to clean these characters in the context of 'normalizing'
the paths before looking for corresponding redirects -- especially
since a quick investigation on the internet suggests that U+0000 in
URLs can be used as a means of attack, and also since RFC 3986 says:

   Note, however, that the "%00" percent-encoding (NUL) may require
   special handling and should be rejected if the application is not
   expecting to receive raw data within a component.
 2018-06-27 11:19:36 -04:00
Matt Westcott 0129e4ce77 Release note for #4648 2018-06-21 12:05:26 +01:00
Abdulmalik Abdulwahab d5afeab48e return none if page specific_class is not set in PageTypeField to_representation 2018-06-21 10:12:44 +01:00
Abdulmalik Abdulwahab d33a00aa49 Write a failing test for missing page model 2018-06-21 09:44:06 +01:00
Matt Westcott ac84cea671 Add release note for #4612 in 2.1.1 2018-06-20 17:30:26 +01:00
Matt Westcott fee77469b3 Release note for #4583 2018-06-20 15:57:29 +01:00
Matt Westcott d9d1529cc0 Convert the document chooser modal to use static onload handlers 2018-06-20 15:35:41 +01:00
Matt Westcott 630a887d58 Convert the embed chooser modal to use static onload handlers 2018-06-20 15:35:41 +01:00
Matt Westcott bbffeca771 Convert the page/collection privacy modal to use static onload handlers 2018-06-20 15:35:41 +01:00
Matt Westcott e68478777d Deprecate passing JS templates to render_modal_workflow 2018-06-20 15:35:41 +01:00
Matt Westcott 8ea95c5841 Convert the search query chooser to use static onload handlers 2018-06-20 15:35:40 +01:00
Matt Westcott 074d9ce3f4 Convert the snippet chooser to use static onload handlers 2018-06-20 15:35:40 +01:00
Matt Westcott af93a28c86 Handle modal-workflow responses as JSON whenever no JS onload handler is supplied 2018-06-20 15:35:40 +01:00
Matt Westcott 0ebf393b31 Convert the page/link chooser to use static onload handlers 2018-06-20 15:35:40 +01:00
Matt Westcott aa9de4758f Use static onload handlers in the image chooser modal 
Instead of passing an 'onload' JS function as part of the AJAX response for each step of the workflow,
we specify all onload handlers up-front when initialising ModalWorkflow, and return a 'step' field
in the response to indicate which one to trigger.
 2018-06-20 15:35:39 +01:00
Matt Westcott 87c247faa1 Use double-quotes in modal_workflow responses for JSON-consistency 2018-06-20 15:35:39 +01:00
Matt Westcott 8b3d3a7af8 Reorganise getChooserConfig for clarity 2018-06-20 15:35:39 +01:00
Matt Westcott afc6d1482b Eliminate template tags from embed chooser JS 2018-06-20 15:35:39 +01:00
Matt Westcott a5a3e0251f Eliminate template tags from snippet chooser JS 2018-06-20 15:35:38 +01:00
Matt Westcott 568928215e Eliminate template tags from privacy setting view JS 2018-06-20 15:35:38 +01:00
Matt Westcott 206e186f57 Eliminate template tags from image chooser JS 2018-06-20 15:35:38 +01:00
Matt Westcott b54846089b Eliminate template tags from document choooser JS 2018-06-20 15:35:38 +01:00
Matt Westcott 61a04dfb5e Support additional data in render_modal_workflow responses 
This allows us to eliminate template tags in JS handlers, since
dynamic data can now be passed in rather than injected.
 2018-06-20 15:35:38 +01:00
Bertrand Bordage 0a50aaf130 Typo. 2018-06-20 15:33:49 +02:00
Bertrand Bordage 806ba75497 Adds release notes for #4508. 2018-06-20 15:31:55 +02:00
Bertrand Bordage 3d3a25a8e1 Fixes Elasticsearch 6 tests. 2018-06-20 15:24:08 +02:00
Bertrand Bordage 6bdb4cf97f Fixes PostgreSQL search faceting. 2018-06-20 15:00:56 +02:00
Karl Hobley fe76c11043 Implemented facet() method on search results 
Add error handling for when facet field doesnt exist

Count('id' -> 'pk')

Use assertDictEqual

Fix indexing related fields using FilterField
 2018-06-20 14:59:57 +02:00
Allen, Timothy 3cd18f3c1f Add trove classfier for Wagtail... to Wagtail. 2018-06-19 14:45:41 +01:00
Matt Westcott 8f9ca18c70 Release note for #4628 2018-06-18 17:58:06 +01:00
Matt Westcott 88dc3d978e Standardise on 'colour' for user-facing text 2018-06-18 17:55:40 +01:00
Catherine Farman d1d1990ffc add empty line before rule to pass linter 2018-06-18 17:39:57 +01:00
Catherine Farman 5836dfa6ab make accessible colors its own section, add large font size combos 2018-06-18 17:39:57 +01:00
Catherine Farman 37ca88bf51 add remaining small text accessible color combos 2018-06-18 17:39:57 +01:00
Catherine Farman 29c82eb7f8 add initial small text accessible color contrast combinations 2018-06-18 17:39:57 +01:00