maya-chen/flask
1
0
Fork 0
forked from orbit-oss/flask
Code Pull requests Activity
5409 commits 4 branches 69 tags 36 MiB
Commit graph

5409 commits

This branch
This branch
All branches
Author SHA1 Message Date
David Lord
7fff56f517
release version 3.1.1 2025-05-13 07:51:12 -07:00
David Lord
73d6504063
Merge commit from fork 
Sessions: fix signing key selection when key rotation is enabled
 2025-05-13 07:46:54 -07:00
David Lord
cbb6c36692
update docs about fallback order 2025-05-12 18:30:27 -07:00
James Addison
fb54159861
secret key rotation: fix key list ordering 
The `itsdangerous` serializer interface[1] expects keys to be
provided with the oldest key at index zero and the active signing key
at the end of the list.

We document[2] that `SECRET_KEY_FALLBACKS` should be configured with
the most recent first (at index zero), so to achieve the expected
behaviour, those should be inserted in reverse-order at the head of
the list.

[1] - https://itsdangerous.palletsprojects.com/en/stable/serializer/#itsdangerous.serializer.Serializer

[2] - https://flask.palletsprojects.com/en/stable/config/#SECRET_KEY_FALLBACKS
 2025-05-12 18:30:27 -07:00
David Lord
941efd4a36
use uv (#5727) 2025-05-11 18:04:35 -07:00
David Lord
0109e496f6
use uv 2025-05-11 17:58:53 -07:00
David Lord
e785166507
Async Iterable Response (#5659) 2025-03-30 13:15:54 -07:00
CoolCat467
410e5ab7ed
Accept AsyncIterable for responses 2025-03-30 13:14:25 -07:00
David Lord
bfffe87d4c
add ghsa links 2025-03-29 15:57:16 -07:00
David Lord
73ce26c3e8
remove tests about deprecated pkgutil.get_loader (#5702) 2025-03-29 15:45:11 -07:00
David Lord
41ec5760a2
remove tests about deprecated pkgutil.get_loader 2025-03-29 15:42:58 -07:00
David Lord
2732c4db66
add endpoint name in favicon example (#5701) 2025-03-29 15:32:28 -07:00
David Lord
c94d2a77db
add endpoint name in favicon example 2025-03-29 15:30:56 -07:00
David Lord
315ebc1176
better type checking during deprecation (#5700) 2025-03-29 15:28:27 -07:00
David Lord
7d5d187458
better type checking during deprecation 2025-03-29 15:23:34 -07:00
David Lord
c7c8dc38ea
Remove HTTP Public Key Pinning from docs (#5695) 2025-03-29 15:17:48 -07:00
black
2ae36c8dd5
Remove HTTP Public Key Pinning from docs 
The header is considered obsolete and no longer supported by any major
browser. MDN link is dead.
 2025-03-29 15:16:24 -07:00
David Lord
5ea0ab8ea2
Handle help arg by itself the same as no args (#5674) 2025-03-29 15:15:04 -07:00
George Waters
da60039486
Handle help arg by itself the same as no args 
When the 'flask' command is used with only the '--help' parameter, this
change will make sure to try and load the app before the help callback
is run. This was previously only being done when the 'flask' command was
used by itself. This meant when passing in '--help', any custom commands
were not getting shown in the help message. With this change, custom
commands will be included in the help message when running 'flask' on
the command line by itself or with the '--help' parameter.
 2025-03-29 15:13:23 -07:00
David Lord
08c480b3b3
Update app factory docs (#5671) 2025-03-29 15:10:55 -07:00
kotvkvante
f51a23839a fix bash cli syntax error and app name 2025-03-29 15:09:26 -07:00
David Lord
04b070fa26
Fix typo in the docs (#5650) 2025-03-29 14:49:06 -07:00
zhuangzhuang
75a8327cfd
Update mongoengine.rst 2025-03-29 14:47:41 -07:00
David Lord
165af0a090
update dev dependencies 2025-03-29 14:44:59 -07:00
David Lord
235c52fa10
fix rtd build 2025-03-29 14:37:13 -07:00
David Lord
959052fb8d
use global contributing guide 
Remove the per-project files so we don't have to
keep them in sync. GitHub's UI links to everything
except the contributing guide, so add a section
about that to the readme.

(cherry picked from commit 60a11a730e)
 2025-01-05 09:09:33 -08:00
David Lord
5b525e9797
markdown formatting 
(cherry picked from commit 6b361ce06b)
 2025-01-05 09:09:32 -08:00
David Lord
f2674c5bb4
fix type hint for cli_runner.invoke (#5647) 2024-11-23 17:52:56 -08:00
kurtatter
54c3f87af9
fix type hint for cli_runner.invoke 2024-11-23 17:50:40 -08:00
David Lord
ea08f155d8
update __version__ deprecation (#5649) 2024-11-23 16:06:37 -08:00
David Lord
b394a994e6
update __version__ deprecation 2024-11-23 16:03:47 -08:00
David Lord
dcbe86bd15
start version 3.1.1 2024-11-23 16:01:16 -08:00
David Lord
18ffe1eaf6
add gettext config for docs 2024-11-20 19:37:06 -08:00
David Lord
bc098406af
release version 3.1.0 (#5640) 2024-11-13 10:27:38 -08:00
David Lord
ab81496641
release version 3.1.0 2024-11-13 10:20:07 -08:00
David Lord
70602a196a
remove test pypi 2024-11-13 09:23:24 -08:00
David Lord
6748a09341
update dev dependencies 2024-11-13 08:48:10 -08:00
David Lord
22c48a738b
Merge remote-tracking branch 'origin/stable' 2024-11-13 08:43:48 -08:00
David Lord
2eab96a32a
use generic bases for session (#5638) 2024-11-13 08:27:11 -08:00
David Lord
f49dbfd3e4
use generic bases for session 2024-11-13 08:22:57 -08:00
David Lord
7b21d43d4c
configure and check request.trusted_hosts (#5637) 2024-11-12 21:03:23 -08:00
David Lord
4f7156f2c3
configure and check trusted_hosts 2024-11-12 21:01:55 -08:00
David Lord
10bdf61a0f
setting SERVER_NAME does not restrict routing for both subdomain_matching and host_matching (#5634) 2024-11-12 10:13:39 -08:00
David Lord
4995a775df
fix subdomain_matching=False behavior 2024-11-12 08:58:08 -08:00
David Lord
07c7d5730a
update min blinker version (#5633) 2024-11-08 09:55:00 -08:00
David Lord
470e2b8d17
update min blinker version 2024-11-08 09:48:59 -08:00
David Lord
a20bcff8dc
enable secret key rotation (#5632) 2024-11-08 08:16:04 -08:00
David Lord
e13373f838
enable secret key rotation 2024-11-08 08:09:01 -08:00
David Lord
7522c4bcdb
update env file precedence (#5630) 2024-11-07 11:56:26 -08:00
David Lord
2c31603042
update env file precedence 2024-11-07 11:54:29 -08:00