Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | release version 2.3.42.3.4 | David Lord | 2023-05-08 | 1 | -1/+1 |
| | |||||
* | preserve invalid itms-services url scheme | David Lord | 2023-05-06 | 1 | -0/+2 |
| | |||||
* | Do not apply max_form_parts to non-multipart data | Adrian Moennich | 2023-05-05 | 1 | -0/+2 |
| | |||||
* | Remove uses of warnings.catch_warnings (#2690) (#2692) | Jeff Dairiki | 2023-05-03 | 1 | -0/+1 |
| | |||||
* | WWWAuthenticate.from_header handles base64 padding in token | David Lord | 2023-05-01 | 1 | -2/+2 |
| | |||||
* | Authorization.from_header handles base64 padding in token | Nicolas Simonds | 2023-05-01 | 1 | -0/+3 |
| | | | | co-authored-by: David Lord <davidism@gmail.com> | ||||
* | start version 2.3.4 | David Lord | 2023-05-01 | 1 | -0/+6 |
| | |||||
* | release version 2.3.3 | David Lord | 2023-05-01 | 1 | -1/+1 |
| | | | | | cherry pick 7a33be5edacfe823067a90fae5cbb19551895d9c, which is the 2.3.3 tag commit, merged into main instead of 2.3.x | ||||
* | Fix the parsing of large multipart bodies | pgjones | 2023-05-01 | 1 | -0/+2 |
| | | | | | | | | | | | | | | There were two issues to fix. Firstly if a boundary couldn't be found the parser should have parsed up to the end of the buffer or last newline (whichever is earlier). However the last newline would be the first character since 082e0e5b9c01fa3178ac0153413f082616f10914 as the DATA_START state would have a buffer that starts with newline. This was fixed by changing the last_newline method to take the data to search as an argument. Secondly the parsing was slow as the shortcut search for the boundary was removed resulting in full regex matches on each iteration. Restoring the shortcut restores the previous performance. | ||||
* | cookie path=/ default | David Lord | 2023-05-01 | 1 | -2/+3 |
| | |||||
* | start version 2.3.3 | David Lord | 2023-05-01 | 1 | -0/+6 |
| | |||||
* | release version 2.3.22.3.2 | David Lord | 2023-04-28 | 1 | -1/+1 |
| | |||||
* | cookie path=/ default | David Lord | 2023-04-28 | 1 | -0/+2 |
| | |||||
* | max_content_length only with wsgi.input_terminated | David Lord | 2023-04-28 | 1 | -0/+2 |
| | |||||
* | test client parses set-cookie more accurately | David Lord | 2023-04-27 | 1 | -0/+2 |
| | |||||
* | start version 2.3.2 | David Lord | 2023-04-27 | 1 | -0/+6 |
| | |||||
* | release version 2.3.12.3.1 | David Lord | 2023-04-27 | 1 | -1/+1 |
| | |||||
* | Authorization and WWWAuthenticate __eq__ | David Lord | 2023-04-26 | 1 | -0/+2 |
| | |||||
* | include missing pyi files | David Lord | 2023-04-26 | 1 | -0/+1 |
| | |||||
* | allow more characters in unquoted cookie values | David Lord | 2023-04-26 | 1 | -0/+1 |
| | |||||
* | quote plus in urls | David Lord | 2023-04-26 | 1 | -0/+2 |
| | |||||
* | start version 2.3.1 | David Lord | 2023-04-26 | 1 | -0/+6 |
| | |||||
* | release version 2.3.02.3.0 | David Lord | 2023-04-25 | 1 | -1/+1 |
| | |||||
* | support scrypt | David Lord | 2023-04-25 | 1 | -0/+2 |
| | | | | deprecate plain hash methods | ||||
* | fix issue links | David Lord | 2023-04-24 | 1 | -5/+5 |
| | |||||
* | deprecate custom form parser content types | David Lord | 2023-04-24 | 1 | -0/+3 |
| | | | | deprecate charset and errors missed in previous deprecation PR | ||||
* | escape ASCII control characters in request log | David Lord | 2023-04-24 | 1 | -0/+2 |
| | | | | Co-authored-by: David Leadbeater, G-Research <dgl@users.noreply.github.com> | ||||
* | drop support for python 3.7 | David Lord | 2023-04-20 | 1 | -0/+1 |
| | |||||
* | add __future__ annotations | David Lord | 2023-04-19 | 1 | -0/+1 |
| | |||||
* | fix ProfilerMiddleware stream param type hint | Erik Hartwig | 2023-04-15 | 1 | -0/+2 |
| | |||||
* | no path by default | David Lord | 2023-04-11 | 1 | -1/+1 |
| | |||||
* | deprecate request and response charset | David Lord | 2023-04-11 | 1 | -3/+6 |
| | |||||
* | restrict multipart charsets | David Lord | 2023-04-10 | 1 | -0/+2 |
| | |||||
* | remove request.url_charset | David Lord | 2023-04-10 | 1 | -2/+3 |
| | |||||
* | deprecate charset in routing | David Lord | 2023-04-10 | 1 | -0/+2 |
| | |||||
* | deprecate bytes where str is expected | David Lord | 2023-04-10 | 1 | -0/+6 |
| | |||||
* | Correctly implement multipart parsing for empty fields | pgjones | 2023-04-10 | 1 | -0/+1 |
| | | | | | | | | | | | | | According to RFC2046 body-part := MIME-part-headers [CRLF *OCTET] Meaning there should only be a blank line if there is are body octets, hence if the field is empty it should not be present. The previous implementation assumed the blacnk line would always be present. This fixes both the decoder and encoder to ensure that empty fields are correctly decoded and encoded. | ||||
* | update type annotation for Accept.best_match | Jens Heinrich | 2023-04-03 | 1 | -0/+2 |
| | |||||
* | refactor test client cookie implementation | David Lord | 2023-04-03 | 1 | -0/+14 |
| | | | | | | no longer use http.cookiejar add get_cookie add properties for decoded key and value | ||||
* | no path by default | David Lord | 2023-04-03 | 1 | -0/+1 |
| | |||||
* | refactor parse_cookie and dump_cookie | David Lord | 2023-04-03 | 1 | -0/+8 |
| | | | | | | faster, based on parse_options_header refactor deprecate bytes dump_cookie allows domain without dot, strips leading dot | ||||
* | more windows special files | David Lord | 2023-03-18 | 1 | -0/+1 |
| | |||||
* | development server discards header keys with underscores | David Lord | 2023-03-17 | 1 | -0/+2 |
| | |||||
* | check max_content_length consistently | David Lord | 2023-03-14 | 1 | -0/+8 |
| | |||||
* | refactor Authorization and WWWAuthenticate | David Lord | 2023-03-10 | 1 | -0/+17 |
| | | | | | | | | | add 'token' attribute to support token schemes such as Bearer don't subclass dict move parsing to from_header class methods assign to response.www_authenticate to set header assign list to set multiple header values prefer creating and assigning new WWWAuthenticate instance | ||||
* | refactor parse and dump header functions | David Lord | 2023-03-09 | 1 | -0/+9 |
| | | | | | | | | | deprecate some unused parameters and behaviors deprecate passing bytes handle quoting empty string dumping options skips None values unquote inline if calling the function would do some redundant work parse dict handles values with charsets | ||||
* | improve parse_accept_header | David Lord | 2023-03-06 | 1 | -0/+2 |
| | | | | | | follow RFC 9110 use parse_list_header and parse_options_header discard items with invalid quality | ||||
* | refactor parse_options_header | David Lord | 2023-03-06 | 1 | -0/+3 |
| | | | | | | | | | follow RFC 9110, discarding invalid parts 2-3 times faster disallow arbitrary encodings handle encoded quotes for HTTP headers and multipart form data Co-authored-by: L. Kärkkäinen <98187+Tronic@users.noreply.github.com> | ||||
* | increase PBKDF2 default to 600,000 iterations | Illia Volochii | 2023-03-04 | 1 | -0/+1 |
| | |||||
* | deprecate make_line_iter and make_chunk_iter | David Lord | 2023-03-04 | 1 | -0/+1 |
| |