Re: Performance optimisations in the deployment checklist document

I don't think there's a reason to recommend one of the two cached sessions backends over the other as the choice is application dependent, but +1 on a link to https://docs.djangoproject.com/en/dev/topics/http/sessions/#using-cached-sessions as something to consider. On Thursday, August 15, 20

Re: Django 1.6 release timeline

Obviously, we've missed our target for the release candidate. We're currently targeting the week of August 26 for that, pending no new release blockers. You can help us make our goal by triaging unreviewed tickets

Re: Feature request: read-only admin view

There are lots of reasons why read-only/view permissions are appropriate for an admin system. I'd really like to see this done! I want to be able to give readonly admin accounts to my designers, developers, sales reps and sales prospects, because I want them to be able to try out the admin inte

Re: Feature request: read-only admin view

As with most open source projects; if you really want to see this done feel free to get coding and submit a patch :) Cheers, Florian On Friday, August 16, 2013 9:01:07 AM UTC+2, Trevor Cox wrote: > > There are lots of reasons why read-only/view permissions are appropriate > for an admin system.

Re: Feature request: read-only admin view

At least two people have already submitted a patch. The issue is not the coding but that the feature request is being rejected. I'm commenting because I don't think the arguments against the feature have considered all the use cases for read only admin access; they're just assuming that providi

Re: Feature request: read-only admin view

On Friday, August 16, 2013 6:19:03 PM UTC+2, Trevor Cox wrote: > > At least two people have already submitted a patch. > Chances that they still work are not really big. > The issue is not the coding but that the feature request is being rejected. > I see 3 core-devs in this thread which seem t

Re: Performance optimisations in the deployment checklist document

On Fri, Aug 16, 2013, Tim Graham wrote: >I don't think there's a reason to recommend one of the two cached sessions >backends over the other as the choice is application dependent, but +1 on a >link to >https://docs.djangoproject.com/en/dev/topics/http/sessions/#using-cached- >sessions as >so

Re: Changes in Model._meta

On Thu, Aug 15, 2013 at 6:56 PM, Michal Petrucha wrote: > Hello, > > As part of my GSoC work [1] I did a refactor of ForeignKey whereby I > turned it into a virtual field which creates an auxiliary concrete > field to hold the raw value. > > As part of this, there are several changes that I did in

Re: [GSoC] Revamping validation framework and merging django-secure once again

On Fri, Aug 16, 2013 at 7:45 AM, Russell Keith-Magee < russ...@keith-magee.com> wrote: > > 8. I've added a new check. If you're using a `GenericRelation` but there >> is no >> `GenericForeignKey` on the target model, an warning is raised. This check >> was >> implemented in this commit [9]. It use

Re: CSRF protection question

On Thu, Aug 15, 2013 at 7:21 PM, James Roper wrote: > Hi, > > I'm a core dev on Play Framework, and I'm currently looking closely at our > CSRF protection and making improvements, and so I'm looking carefully at > what other frameworks do because when it comes to security, it's easy to > miss som