| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-05-09 | use new trypyramid.com page. whee! | Steve Piercy | |
| 2016-05-09 | - use cleaner URL for IRC | Steve Piercy | |
| 2016-05-09 | pylons != pyramid | Steve Piercy | |
| 2016-05-08 | Merge pull request #2550 from ↵ | Steve Piercy | |
| Pylons/vincent-ferotin-scaffolds-allow-pytest-run-without-args Vincent ferotin scaffolds allow pytest run without args | |||
| 2016-05-08 | docs: Fix typos. | Vincent Férotin | |
| 2016-05-07 | fix typo | Steve Piercy | |
| 2016-05-07 | update tutorials/wiki/tests.rst with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | update conventions.rst with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | update narr/project.rst with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | update quick tour with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | update wiki1 with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | update wiki2 with py.test and coverage defaults | Steve Piercy | |
| 2016-05-07 | wordsmith py.test and coverage configuration | Steve Piercy | |
| 2016-05-07 | Merge branch 'scaffolds-allow-pytest-run-without-args' of ↵ | Steve Piercy | |
| https://github.com/vincent-ferotin/pyramid into vincent-ferotin-scaffolds-allow-pytest-run-without-args | |||
| 2016-05-06 | remove duplicate links | Steve Piercy | |
| 2016-05-06 | remove duplicate links | Steve Piercy | |
| 2016-05-06 | Update wiki tutorials with py.test remarks | Steve Piercy | |
| - better synch up wiki tutorials installation instructions - improve .rst syntax and add more .rst links | |||
| 2016-05-06 | doc: Update documentation for using ``py.test [--cov]`` for newly created ↵ | Vincent Férotin | |
| project with scaffolds. | |||
| 2016-04-27 | fix bugs in design defense code examples | Michael Merickel | |
| fixes #2287 | |||
| 2016-04-25 | fix explanation of require_csrf | Michael Merickel | |
| 2016-04-24 | add sphinx doctests for hooks.rst | Steve Piercy | |
| 2016-04-24 | Allow Sphinx doctests to run and pass with `make doctest ↵ | Steve Piercy | |
| SPHINXBUILD=$VENV/bin/sphinx-build`. - TODO: two tests in `docs/narr/hooks.rst` | |||
| 2016-04-24 | update bad link | Steve Piercy | |
| 2016-04-24 | Use parsed-literal for installing versions of Pyramid. This should future ↵ | Steve Piercy | |
| proof docs. | |||
| 2016-04-23 | Fix all the stinky linkie rot via `make linkcheck ↵ | Steve Piercy | |
| SPHINXBUILD=$VENV/bin/sphinx-build`, but don't bother with HISTORY.txt or whatsnew-xx | |||
| 2016-04-19 | replace pyramid.require_default_csrf setting with ↵ | Michael Merickel | |
| config.set_default_csrf_options | |||
| 2016-04-17 | update RELEASING.txt to better account for master and previous branches | Steve Piercy | |
| - add term "final" release - explicitify the implicit - | |||
| 2016-04-17 | better explain view deriver options | Chris McDonough | |
| 2016-04-16 | update RELEASING.txt with version terms, extra step | Steve Piercy | |
| update conf.py with clearer comments and prep for rolldown for 1.6 | |||
| 2016-04-16 | Merge pull request #2506 from stevepiercy/master | Steve Piercy | |
| replace nose with pytest, clean up | |||
| 2016-04-16 | Merge pull request #2507 from stevepiercy/master | Steve Piercy | |
| replace ps1con with doscon for lexer and syntax highlighting | |||
| 2016-04-16 | Merge pull request #2505 from stevepiercy/docs/quick-tour-gotcher-nose | Steve Piercy | |
| Docs/quick tour gotcher nose | |||
| 2016-04-16 | add docs and backward incompatibility notices for #2501 | Michael Merickel | |
| 2016-04-16 | In addition to CSRF token, verify the origin too | Donald Stufft | |
| Add an additional layer of protection against CSRF by verifying the actual origin of the request in addition to the CSRF token. We only do this check on sites hosted behind HTTPS because only HTTPS sites have evidence to show that the Referrer header is not being spuriously removed by random middleware boxes. | |||
| 2016-04-15 | Update CHANGES/whatsnew-1.7 for updated require_csrf | Bert JW Regeer | |
| 2016-04-15 | Have Automatic CSRF on all unsafe HTTP methods | Donald Stufft | |
| Instead of only protecting against unsafe POST requests, have the automatic CSRF protect on all methods which are not defined as "safe" by RFC2616. | |||
| 2016-04-15 | Only Accept CSRF Tokens in headers or POST bodies | Donald Stufft | |
| Previously `check_csrf_token` would allow passing in a CSRF token in through a the URL of a request. However this is a security issue because a CSRF token must not be allowed to leak, and URLs regularly get copy/pasted or otherwise end up leaking to the outside world. | |||
| 2016-04-15 | link to router chapter | Michael Merickel | |
| 2016-04-15 | link to alchemy pull request | Michael Merickel | |
| 2016-04-14 | Merge remote-tracking branch 'upstream/master' | Steve Piercy | |
| Conflicts: docs/whatsnew-1.7.rst | |||
| 2016-04-14 | editorial review and approval | Steve Piercy | |
| 2016-04-15 | link to HTTPException class | Michael Merickel | |
| 2016-04-15 | 1.7, not 1.6 | Michael Merickel | |
| 2016-04-15 | link the whatsnew-1.7 | Michael Merickel | |
| 2016-04-15 | first cut at whatsnew-1.7 | Michael Merickel | |
| 2016-04-14 | Issue #2493: Fixing Quick Tutorial Step 18 - CSS/JS Paths, also on Step 19 - ↵ | Arian Maykon de Araújo Diógenes | |
| Database | |||
| 2016-04-13 | Issue #2493: Fixing Quick Tutorial Step 18 - CSS/JS Paths | Arian Maykon de Araújo Diógenes | |
| 2016-04-13 | - nudge `BeforeTraversal` | Steve Piercy | |
| 2016-04-13 | - update Pyramid Request Processing Diagram. | Steve Piercy | |
| - Closes #2473. - See also #2413 and #2469. | |||
| 2016-04-12 | Merge branch 'master' into feature/require-csrf | Michael Merickel | |
 |
index : pyramid | |
| Pyramid web framework (fork of https://github.com/Pylons/pyramid). | Daniel |
| summaryrefslogtreecommitdiff |