Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update django-allauth to 65.0.2 #5405

Merged
merged 1 commit into from
Sep 27, 2024
Merged

Update django-allauth to 65.0.2 #5405

merged 1 commit into from
Sep 27, 2024

Conversation

pyup-bot
Copy link
Collaborator

This PR updates django-allauth[mfa] from 65.0.1 to 65.0.2.

Changelog

65.0.2

*******************

Fixes
-----

- A regression occurred in the newly introduced support using
``LoginRequiredMiddleware``, fixed.

- For email verification by link, it is not an issue if the user runs into rate
limits. The reason is that the link is session independent. Therefore, if the
user hits rate limits, we can just silently skip sending additional
verification emails, as the previous emails that were already sent still
contain valid links. This is different from email verification by code.  Here,
the session contains a specific code, meaning, silently skipping new
verification emails is not an option, and we must block the login instead. The
latter was missing, fixed.
Links

@browniebroke browniebroke merged commit 811b301 into master Sep 27, 2024
14 of 15 checks passed
@browniebroke browniebroke deleted the pyup-update-django-allauth-65.0.1-to-65.0.2 branch September 27, 2024 10:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
update
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@pyup-bot @browniebroke