It was already storing the version as a field, the inheriting from the
actual model was never used. Remove it, since newer django tries to
access a table based on the class name..
The django version of password reset is broken in multiple way. What's
hurting us in particular is it cannot reset the password of a user where
the old password was generated by a deprecated hasher. Which, of course,
is exactly one of the cases where being able to reset the password is
important.
We still use the same infrastructure, and we use the actual django code
for *changing* the password -- this just replaces the token sender with
something that's a lot simpler and less broken.
pgweb is no longer the master of this information, so add a tool to make
it sync it from the archives server.
Any changes made locally will be overwritten by this tool except the
sortkey field on groups which is local. For now.
render_to_response does not work on newer django, so it needs to be
replaced. And using a speicfic context actually overcomplicates things,
it's easier to just use a wrapper function. For those cases where we
don't need NavContext, just use render() (the new shortcut function from
django), which also removes the need to use RequestContext.
In particular, reject ssh-dss keys here. They don't work anymore since
an upgrade, for security reasons, but there was not really a way for the
user to know why. With this they will at least know if when they try to
save or change the keys.
Update the recognized conference guidelines in the "Financial"
section to be clearer as to how to create a statement of how
financial proceeds are applied.
This way new CVEs that are added will start off being listed, but not
with a link. When upstream (currently redhat) publishes the CVE, a
cronjob will pick this up and update it with a link.
Of course, we still only show CVEs that are listed as public, but this
should hopefully get rid of some of the questions of why we link to a
404.
The code was supposed to pick the latest version of the repo rpm in this
scenario, but at some point the data structure was updated and the code
was not, so it ended up actually picking the *oldest* version of the
repo rpm.
There is no navFooter class defined in the CSS, a fact made quite
clear due to one of its uses being misspelled without any problems.
Remove class declaration.
http://www.opensource.org/licenses/postgresql redirects with a
301 to its https counterpart, update the link to save a redirect
for our users.
This link is present in all the presskits as well, but the amount
of clicks there should be low enough to not bother.
