| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-12-27 | isort | Michael Merickel | |
| 2019-12-24 | security policy docs and legacy policy improvements | Michael Merickel | |
| - Added `set_security_policy`` to more places in the docs. - Ensure that the authn/authz policies are not used at all if the legacy policy is not in effect to avoid edge cases where the code would skip the security policy and use the authn/authz policy on accident. - Change deprecation warnings in code to reference the docs by name instead of by URL. | |||
| 2019-12-23 | Merge branch 'master' into luhn-authenticated-userid | Michael Merickel | |
| 2019-12-23 | add coverage tests for deprecation warnings | Michael Merickel | |
| 2019-12-15 | Fix coverage. | Theron Luhn | |
| 2019-12-15 | Fix coverage. | Theron Luhn | |
| 2019-12-15 | Revert "Bring back identity into permits." | Theron Luhn | |
| This reverts commit 2e06fa414412688dc3b7e0b422b0fc0b96ec882f. | |||
| 2019-12-15 | fix failing test | Michael Merickel | |
| 2019-12-15 | fix lint | Michael Merickel | |
| 2019-12-15 | handle a missing content negotiation case where the unencoded option is not ↵ | Michael Merickel | |
| available and the client requests an encoded variant that doesn't exist | |||
| 2019-12-14 | Fix coverage. | Theron Luhn | |
| 2019-12-14 | Fix coverage. | Theron Luhn | |
| 2019-12-14 | Bring back identity into permits. | Theron Luhn | |
| 2019-12-14 | Remove unnecessary TODO statement. | Theron Luhn | |
| 2019-12-14 | Fix couple final view tests. | Theron Luhn | |
| 2019-12-14 | Fix tests for `DummySecurityPolicy`. | Theron Luhn | |
| 2019-12-14 | Raise error on kwargs in `LegacySecurityPolicy.forget`. | Theron Luhn | |
| 2019-12-14 | Don't test request.authenticated_userid stringifies the result. | Theron Luhn | |
| 2019-12-14 | Remove failing tests using threadlocal request. | Theron Luhn | |
| It shoud be okay to remove because threadlocal support was removed from the security implementation. However, *I don't understand why they started failing.* In master, `get_current_registry` returns a registry object, which DummyRequest will fall back on, causing the tests to pass and rendering them useless. On this branch, it returns `None`, causing the tests to fail. I can't find any reason in the diff why this would change. This makes me nervous. | |||
| 2019-12-14 | Fix security policy integration tests. | Theron Luhn | |
| 2019-12-14 | Fix tests for `SesssionAuthenticationHelper` | Theron Luhn | |
| 2019-12-14 | merge upstream | Éric Araujo | |
| 2019-12-14 | start reworking security policy | Éric Araujo | |
| 2019-12-04 | negotiate the best static asset using supported encodings | Michael Merickel | |
| 2019-11-05 | deprecate PickleSerializer | jonathan vanasco | |
| 2019-11-05 | black 19.10b0 was released on 2019.10.28 and introduced several changes that ↵ | jonathan vanasco | |
| affect Pyramid | |||
| 2019-10-17 | support Origin: null in csrf_trusted_origins and check_origin=False | Michael Merickel | |
| 2019-10-17 | remove check_csrf view predicate | Michael Merickel | |
| 2019-10-02 | define an IPredicateInfo instead of passing the full configurator to predicates | Michael Merickel | |
| 2019-10-02 | Merge pull request #3510 from mmerickel/scan-categories | Michael Merickel | |
| modify the default scan categories to be limited to only 'pyramid' | |||
| 2019-09-30 | Merge pull request #3465 from luhn/security-policy | Michael Merickel | |
| Security policy implementation | |||
| 2019-09-19 | Add allow_no_origin option to CSRF. | Theron Luhn | |
| 2019-09-18 | modify the default scan categories to be limited to only 'pyramid' | Michael Merickel | |
| 2019-08-24 | fix test | Michael Merickel | |
| 2019-07-27 | Fix typos | Min ho Kim | |
| 2019-06-06 | do not reinvoke exception views if an exception hits the execution policy | Michael Merickel | |
| See https://github.com/Pylons/pyramid/issues/3468 | |||
| 2019-05-12 | Rename request.identity to request.authenticated_identity. | Theron Luhn | |
| 2019-04-27 | Add simple integration tests for security. | Theron Luhn | |
| 2019-04-15 | Move ACLHelper to pyramid.authorizations. | Theron Luhn | |
| 2019-04-15 | Move SessionAuthenticationHelper to pyramid.authentication. | Theron Luhn | |
| 2019-04-15 | Revert "Migrate AuthTktCookieHelper to pyramid.security." | Theron Luhn | |
| This reverts commit 9f267dd842c5e93336f0392f2809da75a716039a. | |||
| 2019-04-15 | Stringify identity in legacy authenticated_userid. | Theron Luhn | |
| 2019-04-04 | Use depth argument for view_config info. | Theron Luhn | |
| 2019-04-01 | Improve debugging info from view_config decorator. | Theron Luhn | |
| Grab a frame when instanciating view_config, rather than pulling info from venusian's AttachInfo. See discussion at https://github.com/Pylons/pyramid/issues/3471 This fixes the build for Python 3.8. | |||
| 2019-03-30 | Merge branch 'master' into security-policy | Theron Luhn | |
| 2019-03-30 | Migrate AuthTktCookieHelper to pyramid.security. | Theron Luhn | |
| 2019-03-30 | Fix formatting. | Theron Luhn | |
| 2019-03-30 | Add SessionAuthenticationHelper. | Theron Luhn | |
| 2019-03-30 | Implement pyramid.security.ACLHelper | Theron Luhn | |
| Mostly a lift-and-shift of the code in ACLAuthorizationPolicy. | |||
| 2019-03-21 | Add ignore_files to pserve configuration section | Eric Atkin | |
 |
index : pyramid | |
| Pyramid web framework (fork of https://github.com/Pylons/pyramid). | Daniel |
| summaryrefslogtreecommitdiff |