Mezzanine v4.3.0 Release Notes
Release Date: 2018-06-15 // over 6 years ago-
- Added explicit
on_delete
arguments for all ForeignKey models - Samir Shah - Only generate thumbnails in RichText when absolute width/height used. Closes #1748 - Stephen McDonald
- Removed null attribute from slug CharField - Samir Shah
- Converted all
template.render
calls to pass a dict instead of a Context object - Samir Shah - Fixed
MezzanineBackend.authenticate
backend to accept a request argument, added in Django 1.11 - Samir Shah - Fixed
test_multiple_comment_forms
to be agnostic of the order of HTML attributes - Samir Shah - Altered annotation behaviour of search results. Previously this was done implicitly in the
SearchQuerySet.iterator()
method,. which Django would call internally when evaluating the queryset. Django 1.11 changed its behaviour to use a ModelIterator class instead of. just callingiterator()
on the queryset. Rather than suppy a custom. ModelIterator, we just make the annotate explicit - Samir Shah - Updated setup and test configuration to include Django 1.11 - Samir Shah
- password reset: 'http' ->
request.schema
. This fixes a potential security vulnerability in which the password. reset url is exposed to untrusted intermediary nodes in the network. Thanks to John Barham for reporting. See.<https://groups.google.com/forum/?_escaped_fragment_=topic/mezzanine-users/KaDzCzCJDPM#!topic/mezzanine-users/KaDzCzCJDPM>
- ryneeverett - Add explicit
on_delete
arguments to foreign keys in migrations - Samir Shah - Use TextField for
Field.label
andField.help_text
. Fixes #1753. Now length limits for user-defined labels andhelp_texts
are enforced in the admin instead of the DB, which should prevent any further migrations - Eduardo Rivas - Get rid of
max_length
settings formezzanine.forms
- Eduardo Rivas - Timezone aware blog months. From the mailing. ``list:
Quoting Luke Addison (2017-04-30 21:20:09). > When
USE_TZis set to True,. >
mezzanine.blog.templatetags.blog_tags.blog_monthspulls the month and year. > from an array of timezone aware datatime objects but uses them to create an. > array of timezone unaware datatime objects which is the used to create the. >
month_dicts`` return value. This seems like a bug to me. >. > For example, if a UTC time is stored in the database less than an hour. > before the end of a month, and then this tag is used with timezone. > Europe/London (UTC+1 currently) then wouldn't this tag return the pervious. > month instead of the current month? - ryneeverett - Test and simplify
blog_months
- ryneeverett - Weigh search results by age. Weigh search results by their age by default. Add a new setting,.
SEARCH_AGE_SCALE_FACTOR
, controlling how much emphasis to put on the. age when ranking results (set this to 0 to revert to the old behavior) - Simen Heggestøyl - Split dev and prod
ALLOWED_HOSTS
. Django started checkingALLOWED_HOSTS
whenDEBUG=True
a few releases back. Seehttps://www.djangoproject.com/weblog/2016/nov/01/security-releases/#s-cve-2016-9014-dns-rebinding-vulnerability-when-debug-true
- Ed Rivas - Update docs related to
ALLOWED_HOSTS
- Ed Rivas - Fix the old url parsing in import wordpress - Karim N Gorjux
- Use Django's six module - Stephen McDonald
- Don't warn Mezzanine about itself - Stephen McDonald
- Looser check for LocalMiddleware. Closes #1621 - Stephen McDonald
- Modified the blog homepage pattern to a working version. Added import it requires - Ville Ranki
- Remove explicit
show_banner
argument frominner_run
. This broke --noreload for me. When called fromhttps://github.com/django/django/blob/master/django/core/management/commands/runserver.py#L107
, if**options
contains ashow_banner
arg (which, seemingly, is set just above inadd_arguments
), this throws a "Got multiple values for argument" TypeError - Kevin Shen - Handle
MIDDLEWARE_CLASSES
-> MIDDLEWARE - Stephen McDonald - Don't use lazy static loading when Django's ManifestStaticFilesStorage is configured. Closes #1772 - Stephen McDonald
- Link to Pillow docs for dependencies - Stephen McDonald
- Adding new site to site list. Adding "The National: New Australian Art" to the site list.
https://the-national.com.au
- pegl - Doesn't convert JPG/JPEG images to RGBA. resolve #1781 - Bruno Barbosa
- Remove all device-detection features - Eduardo Rivas
- Remove mentions of device handling from docs - Eduardo Rivas
- Use template loaders instead of middlware for host-based template swapping - Eduardo Rivas
- Add docs on upgrading from TemplateForHostMiddleware - Eduardo Rivas
- Create
__init__.py
so Python can find directory - Dylan Peter Hayward - Properly parse positional args. As demonstrated by using
call_command
, the positional args not. processed. This may be a left-over from optarg migration. Usage property is no longer necessary - Melvyn Sopacua - Fix build fail while in here - Melvyn Sopacua
- Added more tests por pages - Vindio
- Update
page_not_found
view args. Closes #1795 - Stephen McDonald - Rename Displayable
is_public
to published - Stephen McDonald - Test Nginx config before restarting. This way the configuration won't be updated if it's broken, and you also get an error message in the terminal explaining why it's broken (instead of just telling you to check service status/journal) - Andrés Martano
- Enable browser-native spell checking in WYSIWYG tinymce editor, which got wiped in 82339b0 . Previously introduced in 86f6ef6 - Michel
- Fixing the support for external links which are moved to child categories in the menu hierarchy - Gerik Peterson
- Update
LOGOUT_URL
to make use ofACCOUNT_URL
- Adam Radwon - Ensure template vars for form defaults are properly escaped - Stephen McDonald
- Fix drag-n-drop for Form field inlines. Fixes #1841. Inherit from DynamicInlineAdminForm to inject the necessary JS files - Eduardo Rivas
- Fix failing tests that assume threadlocals have been set up - Luke Plant
- Pulled out middleware present check into its own function. And fixed Python 3 compat - Luke Plant
- Made all middleware installation checking consistent. All check by string first, and then for classes and subclasses,. correctly ignoring things that aren't classes - Luke Plant
- Fix failing tests that assume threadlocals have been set up (#1848) - Luke Plant
- Fix keywords widget for Django 1.11. Closes #1844 - stephenmcd
- Fix sense of
SITE_PERMISSION_MIDDLEWARE
check. Issue introduced by commit 00f4a63c - Ross Younger - Fix sense of other check for
SITE_PERMISSION_MIDDLEWARE
. Issue introduced by commit 00f4a63 - Ross Younger - Added basic tests for TemplateSettings. The tests follow the existing functionality - Luke Plant
- Gave TemplateSettings a useful
__repr__
. Previously it just returned '{}' always, from super()s empty dict - Luke Plant - Don't emit warning when doing
force_text(TestSettings())
. This is to fix the behaviour of getting lots of instances of: UserWarning:__unicode__
is not inTEMPLATE_ACCESSIBLE_SETTINGS
. if you have django-debug-tool installed - Luke Plant - Prevent changes to
FORMS_EXTRA_FIELDS
setting creating new migrations - [email protected] - Support access to related model on Django 2+ - Williams Mendez
- Fix safe string handling in richtext filters - [email protected]
- Fix some test warnings - [email protected]
- Add deprecation handling for
mark_safe
as decorator - [email protected] - Fix SplitSelectDateTimeWidget which Django 1.9 broke. Closes #1838 - [email protected]
- Fix usage of
request.scheme
in password reset email - Eduardo Rivas - Make thumbnail tag recognize
.PNG
and.GIF
. Files with the upper case extensions.PNG
and.GIF
are now recognized by. the thumbnail template tag as being PNG- and GIF images, respectively,. instead of being treated as JPEG images - Simen Heggestøyl - Added gcc and rsync for the full deployment on the freshly installed Debian (eg. on OVH) - lukasz
- Support
SelectDateWidget
in django 1.8 and django 2.x - Williams Mendez - Narrow exception handling to ImportError only - Williams Mendez
- Added explicit