pyramid/docs/quick_tutorial, branch main Pyramid web framework (fork of https://github.com/Pylons/pyramid). Remove the usage of deprecated 'sqlalchemy.MetaData.bind' attribute 2024-12-06T07:00:45+00:00 Nguyễn Hoàng Anh Duy me@duynha.dev 2024-12-06T02:54:38+00:00 a254f1d7bd23345d477d21bf83d201f9622ba835 






chore: remove 'retail_forms' fossil
2024-06-10T01:15:03+00:00

Tres Seaver
tseaver@palladion.com

2024-06-10T01:15:03+00:00

1ebd9884e712463057de38fb4948a56c0c0982c5

Ten years on, it has never landed in the generated docs.





Ten years on, it has never landed in the generated docs.







fix: store 'came_from' information in the session
2024-06-10T01:11:38+00:00

Tres Seaver
tseaver@palladion.com

2024-06-10T01:04:45+00:00

e72d437280d39bf8a8f3f62c6987268537ad5b11

- As with the previous commit, we want to avoid trusting user-supplied data
  from the query string or form parameters when constructing redirect URLs.

- Storing the route name and matchdict for the view being forbidden in
  the session allows us to construct the redirect URL on successful
  login cleanly.

- In order to clarify that the logic of storing the 'came from'
  information is separate from rendering or processing the login form,
  this PR splits the `@forbidden_view` mapping onto a separate view function.





- As with the previous commit, we want to avoid trusting user-supplied data
  from the query string or form parameters when constructing redirect URLs.

- Storing the route name and matchdict for the view being forbidden in
  the session allows us to construct the redirect URL on successful
  login cleanly.

- In order to clarify that the logic of storing the 'came from'
  information is separate from rendering or processing the login form,
  this PR splits the `@forbidden_view` mapping onto a separate view function.







docs: remove 'came_from' from login view
2024-06-10T01:09:19+00:00

Tres Seaver
tseaver@palladion.com

2024-06-09T20:28:34+00:00

c9235146e0102d03bb4548711cd0b3b0637d81fa

- The narrative doesn't discuss this (mis-)feature.

- Without any authorization, there is no meaninful reason to remember
  the 'previous' page.

- As a general rule, we want to avoid trusting user-supplied data (i.e.,
  from the query string or form params) when constructing redirect URLs.





- The narrative doesn't discuss this (mis-)feature.

- Without any authorization, there is no meaninful reason to remember
  the 'previous' page.

- As a general rule, we want to avoid trusting user-supplied data (i.e.,
  from the query string or form params) when constructing redirect URLs.







drop support for python 3.7 which was eol in 2023
2024-01-29T05:58:08+00:00

Michael Merickel
michael@merickel.org

2024-01-29T05:56:27+00:00

264f5ce2329f6eb8011cdf5ccec85b136848b1da












Merge branch 'master' into main
2022-12-29T22:45:48+00:00

Michael Merickel
michael@merickel.org

2022-12-29T22:45:48+00:00

dc4e2e282d60a8387e60ac5fd2b1813b9df3535d












Merge pull request #3707 from ckaipf/update_quick_tutorial
2022-12-29T22:41:23+00:00

Michael Merickel
michael@merickel.org

2022-12-29T22:41:23+00:00

4703e60eb7ddb870bf2cc69eaafd8e12fa966636

update SQLAlchemy logger in quick tutorial fixes #3706




update SQLAlchemy logger in quick tutorial fixes #3706






Update reference to ORM in sqlalchemy
2022-12-27T18:07:42+00:00

Bert JW Regeer
bertjw@regeer.org

2022-12-27T18:07:42+00:00

e11c95b8f37b0eff61c1b11931e307468226ed5e












Updated link to SQLAlchemy docs, as the old link was removed in 2.0 release
2022-11-17T21:27:20+00:00

jonathan vanasco
jonathan@2xlp.com

2022-11-17T21:27:20+00:00

13df6badcf97ad379dc88bb9773bdabc1520a71d












rename "master" to "main"
2022-11-14T20:27:33+00:00

jonathan vanasco
jonathan@2xlp.com

2022-11-14T20:27:33+00:00

b7aecfe6aaff9ea50f657ae2d6638e33addc07c6