| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2017-04-29 | final cleanup of csrf decoupling in #2854 | Michael Merickel | |
| - Renamed `SessionCSRFStoragePolicy` to `LegacySessionCSRFStoragePolicy` for the version that uses the legacy `ISession.get_csrf_token` and `ISession.new_csrf_token` apis and set that as the default. - Added new `SessionCSRFStoragePolicy` that stores data in the session similar to how the `SessionAuthenticationPolicy` works. - `CookieCSRFStoragePolicy` did not properly return the newly generated token from `get_csrf_token` after calling `new_csrf_token`. It needed to cache the new value since the response callback does not affect the current request. - `CookieCSRFStoragePolicy` was not forwarding the `domain` value to the `CookieProfile` causing that setting to be ignored. - Removed `check_csrf_token` from the `ICSRFStoragePolicy` interface to simplify implementations of storage policies. - Added an introspectable item for the configured storage policy so that it appears on the debugtoolbar. - Added a change note on `ISession` that it no longer required the csrf methods. - Leave deprecated shims in ``pyramid.session`` for ``check_csrf_origin`` and ``check_csrf_token``. | |||
| 2017-04-26 | Move CSRF storage policy registration out of PHASE_1 config and simplify ↵ | Matthew Wilkes | |
| tests given previous improvements to CSRF. | |||
| 2017-04-26 | Apply drafting changes to documentation. | Matthew Wilkes | |
| 2017-04-12 | Use the webob CookieProfile in the Cookie implementation, rename some ↵ | Matthew Wilkes | |
| implemenations based on feedback, split CSRF implementation and option configuration and make the csrf token function exposed as a system default rather than a renderer event. | |||
| 2017-04-12 | Rename implementation to ICSRFStoragePolicy | Matthew Wilkes | |
| 2017-04-12 | Fix tests and documentation in various places, and feedback following review | Jure Cerjak | |
| regarding naming of variables and code cleanup. | |||
| 2017-04-12 | Create a new ICSRF implementation for getting CSRF tokens, split out from ↵ | Matthew Wilkes | |
| the session machinery. Adds configuration of this to the csrf_options configurator commands. Make the default implementation a fallback to the old one. Documentation patches for new best practices given updates CSRF implementation. | |||
| 2017-04-10 | add execution policy to pyramid request processing diagrams | Steve Piercy | |
| 2017-04-08 | grammar fix | Steve Piercy | |
| 2017-03-14 | add Mako to options for pyramid-cookiecutter-starter | Steve Piercy | |
| 2017-03-10 | add Chameleon as option to pyramid-cookiecutter-starter | Steve Piercy | |
| 2017-03-01 | use correct directory name for cookiecutter generated README.txt | Steve Piercy | |
| (cherry picked from commit 40dd034) Refs: https://github.com/Pylons/pyramid-cookiecutter-starter/pull/22 | |||
| 2017-02-28 | Merge pull request #2965 from stevepiercy/master | Steve Piercy | |
| update pyramid-cookiecutter-starter prompts and reformat presentation… | |||
| 2017-02-28 | update pyramid-cookiecutter-starter prompts and reformat presentation of all ↵ | Steve Piercy | |
| cookiecutter prompts | |||
| 2017-02-25 | Add newline to make docs happy | Bert JW Regeer | |
| 2017-02-25 | add an IExecutionPolicy that can wrap the router | Michael Merickel | |
| 2017-02-05 | update templates per deform 2.0 migration notes | Steve Piercy | |
| - See https://github.com/Pylons/pyramid/issues/2897#issuecomment-277494816 - Closes #2897 | |||
| 2017-02-04 | configuration should not be quoted | Steve Piercy | |
| - closes #2944 | |||
| 2017-02-03 | update links and reST syntax for mod_wsgi | Steve Piercy | |
| 2017-01-31 | Fix typo | Pavlo Kapyshin | |
| 2017-01-28 | Minor change | John Jimenez | |
| "functions, classes or any callable that accept" was messing with the flow while reading. Proposed change flows a little better for me. (cherry picked from commit 87d8aba) | |||
| 2017-01-28 | Minor change | John Jimenez | |
| distinguish between Pyramid itself and view code raising the exception as in previous exception listing. (cherry picked from commit eb166fb) | |||
| 2017-01-27 | Minor change | John Jimenez | |
| minor change to flow better (cherry picked from commit 0c705c9) | |||
| 2017-01-26 | undo borkage: wsgiref does not use listen, it uses port | Steve Piercy | |
| - ref: #2919 | |||
| 2017-01-26 | grammar fixes | Steve Piercy | |
| 2017-01-26 | rest syntax fix | Steve Piercy | |
| 2017-01-26 | rest syntax fix | Steve Piercy | |
| 2017-01-26 | grammar fix | Steve Piercy | |
| 2017-01-22 | save a redirect | Steve Piercy | |
| (cherry picked from commit 981869a) | |||
| 2017-01-21 | forward port item for pylons_sphinx_latesturl | Steve Piercy | |
| 2017-01-20 | Fix typo to be consistent with API docs | Steve Piercy | |
| - Closes #2904 | |||
| 2017-01-17 | link to method in whatsnew | Michael Merickel | |
| 2017-01-17 | prep 1.8b1 | Michael Merickel | |
| 2017-01-15 | changelog for #2901 | Michael Merickel | |
| 2017-01-15 | update mod_wsgi tutorial to use a cookiecutter | Michael Merickel | |
| closes #2890 | |||
| 2017-01-15 | changelog cleanups | Michael Merickel | |
| 2017-01-15 | Update Windows docs | Steve Piercy | |
| - Installation overhauled - update project.rst to remove duplication - Windows paths never end with "\" except for a drive name, for example C:\ - use backslashes for paths - backslashes cannot be used for line continuation on Windows - update extra packages for Windows - Python now has a Windows launcher | |||
| 2017-01-15 | Update Windows installation docs | Steve Piercy | |
| 2017-01-10 | update docs per ↵ | Steve Piercy | |
| https://github.com/Pylons/pyramid/commit/fb7a98bbdacebc4edfef8fb3e6093bb9e6590111 | |||
| 2017-01-10 | fix unittests in wiki2 to work without deps on py2 and py3 | Michael Merickel | |
| fixes #2882 | |||
| 2017-01-08 | Update project.rst | ramgoer | |
| incorrect cookietcutter path for windows environment %VENV%\Scripts\cookiecutter | |||
| 2017-01-04 | Merge pull request #2893 from mmerickel/document-registry-as-dict | Michael Merickel | |
| improve the registry documentation to cover usage as a dictionary | |||
| 2017-01-02 | add changelog and whatsnew entry for #2888 and #2889 | Steve Piercy | |
| 2017-01-02 | Merge pull request #2889 from stevepiercy/docs-cookiecutter-changes-only | Michael Merickel | |
| Docs cookiecutter changes only - Quick Tutorial and all other files | |||
| 2017-01-02 | Waitress dropped 2.6 and 3.2 support | Steve Piercy | |
| 2017-01-02 | improve the registry documentation to cover usage as a dictionary | Michael Merickel | |
| fixes #2891 | |||
| 2017-01-01 | Remove notes about cookiecutter installation, as they now remove sudo for ↵ | Steve Piercy | |
| most systems | |||
| 2016-12-28 | fix link target | Steve Piercy | |
| 2016-12-27 | update Sphinx link target | Steve Piercy | |
| 2016-12-27 | undo update for tutorials/modwsgi | Steve Piercy | |
| - This requires changes with virtual environments, pcreate, and possibly configuration files. Deferring. | |||
 |
index : pyramid | |
| Pyramid web framework (fork of https://github.com/Pylons/pyramid). | Daniel |
| summaryrefslogtreecommitdiff |