There isn't any found yet?
but seriously.. we should have a 'security' page which covers django
'best-practices' in that area.
there has been some recent discussion on the developer list about how
to accept parameters defensively.
There is also a cross site request forgery prevention compoent he
On 11/26/05, Kenneth Gonsalves <[EMAIL PROTECTED]> wrote:
>
> hi,
> have been talking to some php folk about switching to django, but
> they have raised a serious concern: Django website does not have a
> page for security alerts and the django team has not released any
> security patches - so the
hi,
have been talking to some php folk about switching to django, but
they have raised a serious concern: Django website does not have a
page for security alerts and the django team has not released any
security patches - so they feel very uneasy about the whole thing.
Can this defect somehow
I think this point needs re-iterating. The documentation in Django is
very, very helpful. I talk as someone who got involved in Zope some 7+
years ago in the v1.0.3 days when the documentation was appalling, and
doing anything was a major breakthrough. There's a lot more Zope
documentation availab
Groan! - just starting out on my Django career and already falling
victim to the "didn't read the dcoumentation" disease!
Thanks very much indeed Rob, it works fine now!
cheers
Tone
On 11/25/05, Adrian Holovaty <[EMAIL PROTECTED]> wrote:
> One suggestion: The writeup should encourage people to chown their
> settings file so that it's only readable by their own user account and
> the Web server, as a security precaution. I apologize in advance if
> you did indeed mentioned thi
On 11/25/05, James Bennett <[EMAIL PROTECTED]> wrote:
> I spent some time with Georg's Django/lighttpd/FCGI instructions, got
> Django running under my TextDrive account, and then wrote up some
> (hopefully) easy-to-follow instructions which are now online:
>
> http://manuals.textdrive.com/read/bo
On 11/25/05, stava <[EMAIL PROTECTED]> wrote:
> Has anyone been able to capture the output from "DEBUG = True" when
> using mod_python? I would have expected it to show up in the apache
> log, but it didn't.
The short answer is that Django handles the errors, so errors don't
show up in your error
Excellent, time to `svn switch` back to trunk
what is this normalizing of one's data? never heard about it.
it seems that using sql as the backend means a radical departure from
regular python programming practice? i suppose that's what's
confusing
me so much.
:-)
Database normalisation is a set of techniques for laying out
data
On 11/25/05, possibilitybox <[EMAIL PROTECTED]> wrote:
>
> what is this normalizing of one's data? never heard about it.
http://en.wikipedia.org/wiki/Database_normalization
In short, it means defining any given piece of data in only one place.
what is this normalizing of one's data? never heard about it.
it seems that using sql as the backend means a radical departure from
regular python programming practice? i suppose that's what's confusing
me so much.
On 11/25/05, Simon Willison <[EMAIL PROTECTED]> wrote:
> You can simplify that using the -O argument to curl (that's a capital
> O), which tells it to use the same filename when saving to disk:
>
> curl -O http://media.djangoproject.com/releases/0.90/Django-0.90.tar.gz
Good call. I don't know muc
Hi Emanuele,
I think the answer is no, but there is a quick and easy solution. Check
out the django.views.generic.create_object.py file and the
create_object function. You can see that the save() occurs via
manipulator.save(new_data).
>From what I have learned, it looks like you have two options:
On 25 Nov 2005, at 23:04, James Bennett wrote:
Suggestions and corrections are welcome.
Thanks a lot James - that's some really well written documentation:
clear, succinct and informative.
Just one tiny suggestion (I don't use TextDrive so I can't comment on
much). You suggest download
Has anyone been able to capture the output from "DEBUG = True" when
using mod_python? I would have expected it to show up in the apache
log, but it didn't.
Cheers
/LarS
Yes, of course, should have read the question properly. Anyhow, I
haven't found a readymade generic view to do the job for me so here's
the sample I use:
-- view:
@login_required
def projects(request):
"""Get list of projects and project details for logg
> Thanks for the reply Rob - yup it's a string all right, but the only
time *I* pass anything to rfc3399 is when I pass it a datetime.datetime
object.
Okay, but I meant the add_item method wants a datetime. From your
original post:
f.add_item(title=u"Hot dog today",
link = u"http://www.exampl
I spent some time with Georg's Django/lighttpd/FCGI instructions, got
Django running under my TextDrive account, and then wrote up some
(hopefully) easy-to-follow instructions which are now online:
http://manuals.textdrive.com/read/book/15
Suggestions and corrections are welcome.
--
"May the fo
I just had to join in the praise: brilliant work guys!
/LarS
Ok, so the wiki at djangoproject.com is far more obvious at least than
the wiki at dangoproject.com.
Kieran
Excellent work.
Just wanted to say a big thanks to Adrian, Hugo, Jakob, Robert, Simon,
Wilson and co. for all the awesome contributions you guys are putting
in to Django. When do you sleep?
Adrian in particular I would like to thank for your "agile"
documentation. I think that documentation is
Congrats on job well done.
BTW, first post ;)
--
Petar Marić
*e-mail: [EMAIL PROTECTED]
*mobile: +381 (64) 6122467
*icq: 224720322
*skype: petar_maric
*web: http://www.petarmaric.com/
I've merged the new-admin branch into trunk. Essentially this adds the
following functionality:
http://code.djangoproject.com/wiki/NewAdminChanges
This is backwards-compatible.
The changes will be documented further, but I wanted to send out the
announcement first.
Special thanks, of course, t
Has anyone successfully extended the auth.users class by subclassing
it? If so, how?
If you're properly normalising your data you should have another
table for your tags and another still for the links between tags and
other things, like blog posts.
If you don't want to do that, just store them comma-separated in a
string, and split on load.
On 25 Nov 2005, at 19:45, p
i quickly realized after this that i need lists for more than just
tags. i quite definitely need a list, or tuple, or some way to store
sequences in the backend, for multiple purposes.
i'm a bit baffled as to why there isn't a list type? is this
unfeasible in the sql backend?
On 11/25/05, Nebojša Đorđević - nesh <[EMAIL PROTECTED]> wrote:
On 25-11-2005, at 7:35, David Ascher wrote:> Has anyone had any success w/ Django on TxD?up-and-runnig quattro.textdriven.com ;)
What setup did you use? Apache/Lighttpd, fcgi/scgi/other?
On 25-11-2005, at 7:35, David Ascher wrote:
Has anyone had any success w/ Django on TxD?
up-and-runnig quattro.textdriven.com ;)
---
Nebojša Đorđević - nesh
Studio Quattro - Niš - SCG
http://djnesh.blogspot.com/ | http://djnesh-django.blogspot.com/
Registered Linux User 282159 [http://co
But then, I think you've alrady emailed me; are you 'da' from the forum?
I am =)Looking forward to the docs.---david
On 11/25/05, David Ascher <[EMAIL PROTECTED]> wrote:
> I'm getting to the point where I'd like to run some Django servers on the
> public web. I have an account at TextDrive, and I've dug through their site
> for info. So far, I have seen no evidence of people successfully running
> Django there
First of all thanks for the answer. As far as I understand you set up a
two step form in the same template. This could solve some of my
problems, but not exactly the one I posted; in any case please post the
code (a simple example would be very appreciated), because examples are
exactly what djang
Kenneth,
The the object_list generic view accepts a paginate_by argument see
here:
http://www.djangoproject.com/documentation/generic_views/#using-list-detail-generic-views
Is that what you're looking for?
Colin
Kenneth Gonsalves wrote:
> On Friday 25 Nov 2005 9:38 am, Clint Ecker wrote:
> > I
Thanks for the reply Rob - yup it's a string all right, but the only
time *I* pass anything to rfc3399 is when I pass it a datetime.datetime
object.
It seems that the routine feedgenerator.writeString is sending rfc3399
a string rather than a datetime.datetime object, which it gets from the
write
Looks like you are passing in a string object for the date.
feedgenerator.rfc3339_date(when) will return a string rather than a
datetime object, I'm guessing that is the problem.
-rob
I've removed my subclassing alltogether, it all seems to work fine
know, I can login and logout and log back in again as expected.
Trying, trying...
1)
from django.models.ttime import *
u = User('stava', 'Lars', 'Stavholm', '[EMAIL PROTECTED]', 'password',
True, True, '2005-11-25', '2005-11-25')
u.save()
Traceback (most recent call last):
File "tst/tst.py", line 8, in ?
u.save()
File "/usr/lib/python2.4/site-packages
I've tried it with trunk, same result.
Well, I'm using new-admin, and I've extended the auth.user class:
class User(auth.User):
primary_group = meta.ForeignKey(auth.Group, default = 1,
verbose_name = 'primary group')
new_password = meta.CharField(maxlength = 40, blank = True)
fullname = meta.CharField(m
39 matches
Mail list logo
