summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Release of 0.12.200.12.20Marcel Hellkamp2022-05-261-1/+1
| | | | | This release contains a security fix. Thanks Elton Nokaj for responsibly reporting this issue.
* Merge branch 'release-0.12+cheroot' of https://github.com/juergh/bottle into ↵Marcel Hellkamp2022-05-261-2/+28
|\ | | | | | | release-0.12
| * Added depr warning for the outdated cherrypy server adapter.Marcel Hellkamp2022-05-241-1/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If you are using this adapter, simply switch to 'cheroot' This should fix some recent and some very old issues regarding cherrypy: fix #947 Leave explicit the maxima version supported the CherryPy (<= 9.0.0) fix #932 Add ServerAdapter (fix CherryPy ServerAdapter) fix #685 Update CherryPy SSL to use latest API and work on Py3 fix #574 Allow custom bind_addr for CherryPy (backported from commit be90814117008e6f19a2d8d5c67b876787888aa6) [juergh: Adjust context, drop modifications of test/travis-requirements.txt which does not exist in 0.12.] Signed-off-by: Juerg Haefliger <juergh@protonmail.com>
| * Added 'cheroot' server adapter to list of server names, so it can be ↵Marcel Hellkamp2022-05-241-1/+4
| | | | | | | | | | | | | | | | | | | | selected from the command line and by name. Alos added cheroot after cherrypy in the 'auto' adapter to make it future proof. (backported from commit 617d08a2ccca95b2e8668fef7057127049595fd9) [juergh: Adjust context.] Signed-off-by: Juerg Haefliger <juergh@protonmail.com>
| * Add ServerAdapter for CherryPy >= 9061803392022-05-241-0/+19
| | | | | | | | | | | | | | Since CherryPy >= 9, the server part of CherryPy has been extracted and named Cheroot. Thus the old CherryPy ServerAdapter does not work for CherryPy >= 9: the import fails, and the SSL part should be different too. Cheroot can be installed (git install cheroot) without CherryPy so that we can just have a CherootServer adapter in addition to the CherryPyServer adapter for the older versions. (cherry picked from commit b9229eef97ea246e3d0e0c455071d54435a1557d) Signed-off-by: Juerg Haefliger <juergh@protonmail.com>
* | Gracefully handle errors during early request binding.Marcel Hellkamp2022-05-261-7/+9
|/
* Fix for Issue #586Alice Goldfuss2021-07-071-0/+1
|
* Fix: Multipart file uploads with empty filename not detected as binary.Marcel Hellkamp2021-07-071-3/+3
|
* Release of 0.12.190.12.19Marcel Hellkamp2020-11-111-1/+1
|
* Do not split query strings on `;` anymore.Marcel Hellkamp2020-11-111-1/+1
| | | | | | | | Using `;` as a separator instead of `&` was allowed a long time ago, but is now obsolete and actually invalid according to the 2014 W3C recommendations. Even if this change is technically backwards-incompatible, no real-world application should depend on broken behavior. If you REALLY need this functionality, monkey-patch the _parse_qsl() function.
* Fix the Allow: header value in 405 "Method not allowed." response.Remi Gacogne2020-06-021-1/+1
|
* Fix release steps in makefileMarcel Hellkamp2019-12-011-2/+2
|
* Release of 0.12.180.12.18Marcel Hellkamp2019-12-011-1/+1
| | | | Bugfix release to improve Python 3.8+ support
* Update build steps in makefileMarcel Hellkamp2019-12-011-8/+17
|
* fix #1181: digestmod parameter is now required since Python 3.8Marcel Hellkamp2019-12-011-3/+3
| | | | Previous fix did not work
* Fix: Two import-level DeprecationWarnings in 3.8Marcel Hellkamp2019-12-011-3/+9
|
* fix #1181: digestmod parameter is now required since Python 3.8Marcel Hellkamp2019-12-011-2/+2
|
* #1177 Bug fix of missing regex escaped back slashesAndrew Hendley2019-11-121-2/+2
|
* Release of 0.12.17 (bugfix)0.12.17Marcel Hellkamp2019-06-231-1/+1
| | | | Fixed #1148: Unicode in str header values (py3 only)
* fix #1148: redirect() and non-ascii charactersMarcel Hellkamp2019-06-201-3/+5
| | | | Backported from master
* Release of 0.12.16 (bugfix)0.12.16Marcel Hellkamp2018-12-131-1/+1
|
* fix #1115: Some modules set __file__ as NoneMarcel Hellkamp2018-12-131-1/+1
| | | | | This is not allowed (the __file__ attribute MUST be either a string, or unset), but seems to happen anyway and is easy to work around in bottle.
* Added .idea/ to gitignoreMarcel Hellkamp2018-12-011-0/+1
|
* Added Python 3.4-3.7 language classifiersMarcel Hellkamp2018-12-011-3/+4
|
* Release of 0.12.15 (bugfix)0.12.15Marcel Hellkamp2018-12-011-2/+2
| | | | fix #949: DeprecationWarning: Flags not at the start of the expression
* Fix #930: DeprecationWarning: Flags not at the start of the expressionMarcel Hellkamp2018-12-011-3/+4
| | | | Backported from 0.13-dev
* Fix python 2.5 test buildMarcel Hellkamp2018-12-011-1/+1
|
* Release of 0.12.14 (Bugfix)0.12.14Marcel Hellkamp2018-11-271-1/+1
|
* fix #1065 gevent-1.3.0 removes 'fast' wsgi implementation.Marcel Hellkamp2018-11-271-4/+6
|
* Release of 0.12.13 (bugfix)0.12.13Marcel Hellkamp2017-01-091-1/+1
| | | | Fix #923: TypeError WSGI response header value u'...' is not of type str
* Fix #923: TypeError WSGI response header value u'...' is not of type strMarcel Hellkamp2017-01-092-1/+3
|
* Release of 0.12.12 (bugfix)0.12.12Marcel Hellkamp2017-01-061-1/+1
| | | | fix: #918 AttributeError: 'FileUpload' object has no attribute 'get_header'
* fix #918: AttributeError: 'FileUpload' object has no attribute 'get_header'Marcel Hellkamp2017-01-062-1/+9
|
* Release of 0.12.110.12.11Marcel Hellkamp2016-12-171-1/+1
| | | | | * fix #913: redirect() doesn't filter "\r\n" leads to CRLF attack (CVE-2016-9964) https://github.com/bottlepy/bottle/issues/913
* fix #913: redirect() doesn't filter "\r\n" leads to CRLF attackMarcel Hellkamp2016-12-172-8/+19
| | | | The previous fix (6d7e13d) was incomplete.
* Fix tests for Python 2.5 (itertools.product missing)Marcel Hellkamp2016-12-101-3/+13
|
* fix #913: Harden bottle against malformed headers.Marcel Hellkamp2016-12-102-8/+28
| | | | Bottle now checks against certain control characters (\n, \r and \0) in header names or values and raises a ValueError if the application tries to set an invalid header.
* Use setuptools again.Marcel Hellkamp2016-10-162-2/+2
|
* Release of 0.12.10 (bugfix)0.12.10Marcel Hellkamp2016-10-091-1/+1
|
* Add test for Windows-style line endings (CRLF ie \r\n) in template when ↵njogun2016-10-091-0/+3
| | | | using multiline code block
* Fix end-of-code-block template token regexnjogun2016-10-091-1/+1
|
* Merge pull request #803 from shnode/release-0.12Marcel Hellkamp2016-02-121-2/+3
|\ | | | | Typo fix on bottle-werkzeug README
| * Typo fix on bottle-werkzeug READMESinux2015-11-041-2/+3
|/
* Fixed test setup for 0.12 branch.Marcel Hellkamp2015-10-242-11/+11
|
* Release of 0.12.9 (bugfix)0.12.9Marcel Hellkamp2015-10-241-1/+1
| | | | Fixed #690: Allow multi-line list/set/dict comprehentions in templates.
* Prevent syntax errors when line-wrapping comprehensionsEric Wieser2015-10-242-6/+32
| | | | | | | | Ignores block keywords inside parentheses/braces/brackets, allowing list/set/dict comprehensions to be wrapped in the same way as dicts. Does not check for correctly paired parentheses - we can let python do that, right? Builds upon cleanup made in https://github.com/bottlepy/bottle/pull/689
* Merge pull request #777 from goodmami/bugfix-720-0.12Marcel Hellkamp2015-07-252-3/+16
|\ | | | | Fix #720 : Allow unicode keys in ConfigDict.
| * Fix #720 : Allow unicode keys in ConfigDict.Michael Wayne Goodman2015-07-242-3/+16
|/
* Release of 0.12.80.12.8Marcel Hellkamp2014-12-281-1/+1
| | | | | Minor bugfix release: - Cookies get lost on redirects for newer Python 3.x releases.
* Fixed bug where BaseResponse.copy() would not copy Cookies due to a ↵Marcel Hellkamp2014-12-281-1/+1
| | | | behaviour change in newest Python 3.x releases.
View Lorry Controller Status