Merge pull request #9 from AltSchool/task/ALTOS-21997-upgrade-django-…

…allauth-2 Task/altos 21997 upgrade django allauth 2
AltSchool · Mar 12, 2020 · 203dc13 · 203dc13
2 parents 5c73907 + 68923ae
commit 203dc13
Show file tree

Hide file tree

Showing 196 changed files with 8,556 additions and 2,737 deletions.
diff --git a/.github/pull_request_template.md b/.github/pull_request_template.md
@@ -0,0 +1,19 @@
+# Submitting Pull Requests
+
+## General
+
+ - [ ] Make sure you use [semantic commit messages](https://seesparkbox.com/foundry/semantic_commit_messages).
+       Examples: `"fix(google): Fixed foobar bug"`, `"feat(accounts): Added foobar feature"`.
+ - [ ] All Python code must be 100% pep8 and isort clean.
+ - [ ] JavaScript code should adhere to [StandardJS](https://standardjs.com).
+ - [ ] If your changes are significant, please update `ChangeLog.rst`.
+ - [ ] Feel free to add yourself to `AUTHORS`.
+
+ ## Provider Specifics
+
+ In case you add a new provider:
+
+- [ ] Make sure unit tests are available.
+- [ ] Add an entry of your provider in `test_settings.py::INSTALLED_APPS` and `docs/installation.rst::INSTALLED_APPS`.
+- [ ] Add documentation to `docs/providers.rst`.
+- [ ] Add an entry to the list of supported providers over at `docs/overview.rst`.
diff --git a/.travis.yml b/.travis.yml
@@ -1,21 +1,23 @@
 # https://travis-ci.org/pennersr/django-allauth
-sudo: false
+dist: xenial
 language: python
 
 python: "3.6"
 
 env:
   matrix:
    - TOXENV=py27-django111
-   - TOXENV=py34-django111
    - TOXENV=py35-django111
    - TOXENV=py36-django111
-   - TOXENV=py34-django20
    - TOXENV=py35-django20
    - TOXENV=py36-django20
+   - TOXENV=py35-django21
+   - TOXENV=py36-django21
+   - TOXENV=py35-django22
+   - TOXENV=py36-django22
    - TOXENV=py36-djangomaster
    - TOXENV=docs
-   - TOXENV=flake8
+   - TOXENV=checkqa
    - TOXENV=standardjs
 
 matrix:
@@ -25,11 +27,26 @@ matrix:
       env: TOXENV=py35-django111
     - python: "3.5"
       env: TOXENV=py35-django20
+    - python: "3.5"
+      env: TOXENV=py35-django21
+    - python: "3.5"
+      env: TOXENV=py35-django22
+
+    - python: "3.4"
+      env: TOXENV=py34-django111
+      dist: trusty
+    - python: "3.4"
+      env: TOXENV=py34-django20
+      dist: trusty
   exclude:
     - python: "3.6"
       env: TOXENV=py35-django111
     - python: "3.6"
       env: TOXENV=py35-django20
+    - python: "3.6"
+      env: TOXENV=py35-django21
+    - python: "3.6"
+      env: TOXENV=py35-django22
   allow_failures:
     - env: TOXENV=py36-djangomaster
 

diff --git a/.tx/config b/.tx/config
diff --git a/AUTHORS b/AUTHORS
@@ -13,17 +13,18 @@ Agustin Perez Paladini
 Ahmet Emre Aladağ
 Aldiantoro Nugroho
 Alexander Gaevsky
-Anna Sirota
 Andrean Franc
-Andrey Balandin
 Andrey Akolpakov
+Andrey Balandin
 Andy Matthews
 Ani Vera
+Anna Sirota
 Antonin Delpeuch
 Aron Griffis
 Basil Shubin
 Ben Timby
 Benjamin Jorand
+Biel Massot
 Björn Andersson
 Bojan Mihelac
 Chris Beaven
@@ -33,8 +34,10 @@ Christopher Grebs
 Daniel Eriksson
 Daniel Widerin
 David Ascher
+David Cain
 David Evans
 David Friedman
+David Hummel
 Egor Poderyagin
 Eran Rundstein
 Eric Delord
@@ -44,9 +47,11 @@ Fred Palmer
 Fábio Santos
 George Whewell
 Griffith Rees
+Guilhem Saurel
 Guillaume Vincent
 Guoyu Hao
 Hatem Nassrat
+Hyunwoo Shim
 J. Erm
 J. Fernando Sánchez
 Jack Shedd
@@ -55,8 +60,12 @@ James Rivett-Carnac
 James Thompson
 Jannis Leidel
 Jannis Vajen
+Jeff Bowen
 Jeff Triplett
+Jeremy Satterfield
 Jerome Leclanche
+Jesse Gerard Brands
+Jiyoon Ha
 Joe Vanderstelt
 John Bazik
 John Whitlock
@@ -68,6 +77,7 @@ Joshua Sorenson
 Julen Ruiz Aizpuru
 Justin Michalicek
 Justin Pogrob
+Kevin Dice
 Koichi Harakawa
 Lee Semel
 Luis Diego García
@@ -88,16 +98,21 @@ Nariman Gharib
 Niklas A Emanuelsson
 Patrick Paul
 Paulo Eduardo Neves
+Pavel Savchenko
 Peter Bittner
 Peter Rowlands
+Peter Stein
+Philip John James
 Rabi Alam
 Radek Czajka
 Rense VanderHoek
+Rick Westera
 Robert Balfre
 Roberto Novaes
 Rod Xavier Bondoc
 Roman Tomjak
 Roumen Antonov
+Ryan Jarvis
 Ryan Verner
 Sam Solomon
 Sanghyeok Lee
@@ -106,13 +121,17 @@ Serafeim Papastefanos
 Shane Rice
 Stuart Ross
 Terry Jones
+Tiago Loureiro
 Tomas Babej
 Tomas Marcik
+Tuk Bredsdorff
 Udi Oron
-Vuong Nguyen
+Victor Semionov
 Volodymyr Yatsyk
+Vuong Nguyen
 Wendy Edwards
+Will Gordon
 Will Ross
 William Li
-Yuri Kriachko
 Yaroslav Muravsky
+Yuri Kriachko
diff --git a/ChangeLog.rst b/ChangeLog.rst
@@ -1,4 +1,115 @@
-0.36.0 (unreleased)
+0.40.0 (2019-08-29)
+*******************
+
+Note worthy changes
+-------------------
+
+- The ``instagram`` provider now extracts the user's full name.
+
+- New provider: NextCloud (OAuth2)
+
+- Added an ``SDK_URL`` setting for customizing the loading of the Facebook
+  JavaScript SDK.
+
+- Updated Twitch provider to use new authentication endpoints
+  (``https://id.twitch.tv``) over deprecated v5 endpoints
+  (``https://api.twitch.tv/kraken``)
+
+- Added support for Patreon API v2, with API v1 set as default for
+  backwards compatibility.
+
+
+Backwards incompatible changes
+------------------------------
+
+- ``Twitch``: The new API's profile data is different in both
+  structure and content than the old V5 endpoint. Any project
+  that relies on data from ``SocialAccount.extra_data`` should
+  refer to the new API user endpoint documentation:
+  https://dev.twitch.tv/docs/api/reference/#get-users
+
+
+0.39.1 (2019-02-28)
+*******************
+
+Note worthy changes
+-------------------
+
+- The ``linkedin_oauth2`` provider now gracefully deals with old V1
+  data that might still be present in ``SocialAccount.extra_data``.
+
+Backwards incompatible changes
+------------------------------
+
+- The ``globus`` provider's ``extract_uid`` now uses the openid
+  required field ``sub`` instead of the ``create_time`` field.
+
+
+0.39.0 (2019-02-26)
+*******************
+
+Note worthy changes
+-------------------
+
+- New providers: JupyterHub (OAuth2), Steam (OpenID)
+
+- Refactor translations: Portuguese (Portugal).
+
+- Add testing for Django 2.2 (no code changes required)
+
+Backwards incompatible changes
+------------------------------
+
+- ``linkedin_oauth2``: As the LinkedIn V1 API is deprecated, the user info
+  endpoint has been moved over to use the API V2. The format of the user
+  ``extra_data`` is different and the profile picture is absent by default.
+
+
+0.38.0 (2018-10-03)
+*******************
+
+Security notice
+---------------
+
+The ``{% user_display user %}`` tag did not escape properly. Depending on the
+username validation rules, this could lead to XSS issues.
+
+
+Note worthy changes
+-------------------
+
+- New provider: Vimeo (OAuth2).
+
+- New translations: Basque.
+
+
+0.37.1 (2018-08-27)
+*******************
+
+Backwards incompatible changes
+------------------------------
+
+- Dropped the ``x-li-src: msdk`` headers from the ``linkedin_oauth2`` handshake.
+  This header is only required for mobile tokens, and breaks the regular flow.
+  Use the ``HEADERS`` setting to add this header if you need it.
+
+
+0.37.0 (2018-08-27)
+*******************
+
+Note worthy changes
+-------------------
+
+- The Battle.net login backend now recognizes ``apac`` as a valid region.
+
+- User model using a ``UUIDField`` as it's primary key can now be logged
+  in upon email confirmation (if using ``ACCOUNT_LOGIN_ON_EMAIL_CONFIRMATION``).
+
+- New providers: Agave, Cern, Disqus, Globus.
+
+- New translation: Danish.
+
+0.36.0 (2018-05-08)
 *******************
 
 Note worthy changes
@@ -23,6 +134,11 @@ Security notice
 0.35.0 (2018-02-02)
 *******************
 
+Note worthy changes
+-------------------
+
+- Add support for Django 2.0
+
 Security notice
 ---------------
 
@@ -31,6 +147,11 @@ Security notice
   address to the hash such that whenever the user's email address changes the
   token is invalidated.
 
+Backwards incompatible changes
+------------------------------
+
+- Drop support for Django 1.8 and Django 1.10.
+
 
 Note worthy changes
 -------------------
@@ -1050,7 +1171,7 @@ Backwards incompatible changes
   social login to existing accounts. The symptom is you end up with
   users who have multiple primary email addresses which conflicts
   with assumptions made by the code. In addition to fixing the code
-  that allowed duplicates to occur, there is a managegement command
+  that allowed duplicates to occur, there is a management command
   you can run if you think this effects you (and if it doesn't effect
   you there is no harm in running it anyways if you are unsure):
 

diff --git a/allauth/__init__.py b/allauth/__init__.py
@@ -8,12 +8,12 @@
 
 """
 
-VERSION = (0, 36, 0, 'final', 0)
+VERSION = (0, 40, 0, 'final', 0)
 
 __title__ = 'django-allauth'
 __version_info__ = VERSION
 __version__ = '.'.join(map(str, VERSION[:3])) + ('-{}{}'.format(
     VERSION[3], VERSION[4] or '') if VERSION[3] != 'final' else '')
 __author__ = 'Raymond Penners'
 __license__ = 'MIT'
-__copyright__ = 'Copyright 2010-2018 Raymond Penners and contributors'
+__copyright__ = 'Copyright 2010-2019 Raymond Penners and contributors'