Type Hints in Python: The Good, the Bad and the Ugly
Introduction
Python is a duck-typed language, which means the language is type-inferred (it doesn't care whether an object is a 'duck'. As long as it 'quacks', it is good to go. In other words, when we assign an object to a variable, Python does not ...
Read: https://diptonil.hashnode.dev/type-hints-in-python-the-good-the-bad-and-the-ugly
Introduction
Python is a duck-typed language, which means the language is type-inferred (it doesn't care whether an object is a 'duck'. As long as it 'quacks', it is good to go. In other words, when we assign an object to a variable, Python does not ...
Read: https://diptonil.hashnode.dev/type-hints-in-python-the-good-the-bad-and-the-ugly
👍1
Make Your First Project with User Authentication in Django
In this tutorial, we will walk through the process of creating a feature-rich ToDo (Task Management) application using Django for the backend and HTML, CSS, and JavaScript for the front end. This app will include user authentication, allowing users t...
Read: https://blog.mayankaggarwal.live/make-your-first-project-with-user-authentication-in-django
In this tutorial, we will walk through the process of creating a feature-rich ToDo (Task Management) application using Django for the backend and HTML, CSS, and JavaScript for the front end. This app will include user authentication, allowing users t...
Read: https://blog.mayankaggarwal.live/make-your-first-project-with-user-authentication-in-django
Django 5.0 Release - Highlights & Free Sample
Hello Coders!
As announced on the official Django site, the Django 5.0 Version is out. The changes provided in this version are listed below.
Curious minds and cutting-edge developers can test the new features by using the latest Django 5.x release...
Read: https://app-generator.hashnode.dev/django-5-release-highlights-free-sample
Hello Coders!
As announced on the official Django site, the Django 5.0 Version is out. The changes provided in this version are listed below.
Curious minds and cutting-edge developers can test the new features by using the latest Django 5.x release...
Read: https://app-generator.hashnode.dev/django-5-release-highlights-free-sample
Use strings, not constants in Django migrations
# migrations/0001_my_migration.py
from my_file import MY_CONSTANT
MyModel.objects.get_or_create(name=MY_CONSTANT)
# migrations/0001_my_migration.py
MyModel.objects.get_or_create(name="my-constant")
Why
value of LOCALIZATION.BUNDLE__SYNC could cha...
Read: https://fullchee.hashnode.dev/use-strings-not-constants-in-django-migrations
# migrations/0001_my_migration.py
from my_file import MY_CONSTANT
MyModel.objects.get_or_create(name=MY_CONSTANT)
# migrations/0001_my_migration.py
MyModel.objects.get_or_create(name="my-constant")
Why
value of LOCALIZATION.BUNDLE__SYNC could cha...
Read: https://fullchee.hashnode.dev/use-strings-not-constants-in-django-migrations
👍1
Deploying a Django Application on AWS EC2 with Docker🐳
In this short blog post, I will show you how to deploy a Django application on AWS EC2 using Docker. I followed Shubham's course session on this topic, and it was very helpful.
Prerequisites
An AWS account
Docker installed on your local machine
A ...
Read: https://mohammedafeef.hashnode.dev/deploying-a-django-application-on-aws-ec2-with-docker
In this short blog post, I will show you how to deploy a Django application on AWS EC2 using Docker. I followed Shubham's course session on this topic, and it was very helpful.
Prerequisites
An AWS account
Docker installed on your local machine
A ...
Read: https://mohammedafeef.hashnode.dev/deploying-a-django-application-on-aws-ec2-with-docker
👍1👎1
How I Handled a Database Search Ticket
Crisis:
In a Django project, Create a general search feature where users can type in any string and get all posts, polls, announcements, openings, and user profiles that have the string. This would mean multiple queries across multiple tables with st...
Read: https://mergemypr.hashnode.dev/how-i-handled-a-database-search-ticket
Crisis:
In a Django project, Create a general search feature where users can type in any string and get all posts, polls, announcements, openings, and user profiles that have the string. This would mean multiple queries across multiple tables with st...
Read: https://mergemypr.hashnode.dev/how-i-handled-a-database-search-ticket
Tailwind & Django - Free Starter
Hello! This article presents an open-source Tailwind & Django project styled with Flowbite, a popular UI Library built on top of Tailwind. Rocket Django provides a minimal codebase, Tailwind-compatible tooling, Docker, and CI/CD support for Render.
T...
Read: https://app-generator.hashnode.dev/tailwind-django-free-starter
Hello! This article presents an open-source Tailwind & Django project styled with Flowbite, a popular UI Library built on top of Tailwind. Rocket Django provides a minimal codebase, Tailwind-compatible tooling, Docker, and CI/CD support for Render.
T...
Read: https://app-generator.hashnode.dev/tailwind-django-free-starter
👍2
Introduction to Django python framework
what is Django?
Django is a very versatile and multipurpose Python programming language framework, most especially for web development. Django is lightweight, open source, popular and easy to use because of its large community. Django with a lot of c...
Read: https://austasty.hashnode.dev/introduction-to-django-python-framework
what is Django?
Django is a very versatile and multipurpose Python programming language framework, most especially for web development. Django is lightweight, open source, popular and easy to use because of its large community. Django with a lot of c...
Read: https://austasty.hashnode.dev/introduction-to-django-python-framework
👍1
A Beginner's Guild to Django in Web Development
If you are just starting your journey into the world of web development, you might have come across the term "Django" a very versatile and multipurpose Python programming language framework, most especially for web development. Let us check and know ...
Read: https://austasty.hashnode.dev/a-beginners-guild-to-django-in-web-development
If you are just starting your journey into the world of web development, you might have come across the term "Django" a very versatile and multipurpose Python programming language framework, most especially for web development. Let us check and know ...
Read: https://austasty.hashnode.dev/a-beginners-guild-to-django-in-web-development
Django Unleashed Framework
Photo
Django security releases issued: 4.2.6, 4.1.12, and 3.2.22
In accordance with our security release policy, the Django team
is issuing Django 4.2.6, Django 4.1.12, and Django 3.2.22.
These releases addresses the security issue detailed below. We encourage all
users of Django to upgrade as soon as possible.
CVE-2023-43665: Denial-of-service possibility in django.utils.text.Truncator
Following the fix for :cve:`2019-14232`, the regular expressions used in the
implementation of django.utils.text.Truncator's chars() and words()
methods (with html=True) were revised and improved. However, these regular
expressions still exhibited linear backtracking complexity, so when given a
very long, potentially malformed HTML input, the evaluation would still be
slow, leading to a potential denial of service vulnerability.
System Message: ERROR/3 (<string, line 13); backlink
Unknown interpreted text role "cve".
The chars() and words() methods are used to implement the :tfilter:`truncatechars_html` and :tfilter:`truncatewords_html` template
filters, which were thus also vulnerable.
System Message: ERROR/3 (<string, line 20); backlink
Unknown interpreted text role "tfilter".
System Message: ERROR/3 (<string, line 20); backlink
Unknown interpreted text role "tfilter".
The input processed by Truncator, when operating in HTML mode, has been
limited to the first five million characters in order to avoid potential
performance and memory issues.
CVE-2023-24580: Potential denial-of-service vulnerability in file uploads
Passing certain inputs to multipart forms could result in too many open files
or memory exhaustion, and provided a potential vector for a denial-of-service
attack.
The number of files parts parsed is now limited via the new DATA_UPLOAD_MAX_NUMBER_FILES setting.
Thanks Wenchao Li of Alibaba Group for the report.
This issue has severity "moderate" according to the Django security policy.
Affected supported versions
* Django main branch
* Django 5.0 (currently at pre-release alpha status)
* Django 4.2
* Django 4.1
* Django 3.2
Resolution
Patches to resolve the issue have been applied to Django's main branch and the
5.0, 4.2, 4.1, and 3.2 release branches. The patches may be obtained from the
following changesets:
* On the main branch
* On the 5.0 release branch
* On the 4.2 release branch
* On the 4.1 release branch
* On the 3.2 release branch
The following releases have been issued:
* Django 4.2.6 (download Django 4.2.6 | 4.2.6 checksums)
* Django 4.1.12 (download Django 4.1.12 | 4.1.12 checksums)
* Django 3.2.22 (download Django 3.2.22 | 3.2.22 checksums)
The PGP key ID used for this release is Natalia Bidart: 2EE82A8D9470983E
General notes regarding security reporting
As always, we ask that potential security issues be reported via
private email to [email protected], and not via Django's
Trac instance or the django-developers list. Please see our security
policies for further
information.
Read: https://www.djangoproject.com/weblog/2023/oct/04/security-releases/
In accordance with our security release policy, the Django team
is issuing Django 4.2.6, Django 4.1.12, and Django 3.2.22.
These releases addresses the security issue detailed below. We encourage all
users of Django to upgrade as soon as possible.
CVE-2023-43665: Denial-of-service possibility in django.utils.text.Truncator
Following the fix for :cve:`2019-14232`, the regular expressions used in the
implementation of django.utils.text.Truncator's chars() and words()
methods (with html=True) were revised and improved. However, these regular
expressions still exhibited linear backtracking complexity, so when given a
very long, potentially malformed HTML input, the evaluation would still be
slow, leading to a potential denial of service vulnerability.
System Message: ERROR/3 (<string, line 13); backlink
Unknown interpreted text role "cve".
The chars() and words() methods are used to implement the :tfilter:`truncatechars_html` and :tfilter:`truncatewords_html` template
filters, which were thus also vulnerable.
System Message: ERROR/3 (<string, line 20); backlink
Unknown interpreted text role "tfilter".
System Message: ERROR/3 (<string, line 20); backlink
Unknown interpreted text role "tfilter".
The input processed by Truncator, when operating in HTML mode, has been
limited to the first five million characters in order to avoid potential
performance and memory issues.
CVE-2023-24580: Potential denial-of-service vulnerability in file uploads
Passing certain inputs to multipart forms could result in too many open files
or memory exhaustion, and provided a potential vector for a denial-of-service
attack.
The number of files parts parsed is now limited via the new DATA_UPLOAD_MAX_NUMBER_FILES setting.
Thanks Wenchao Li of Alibaba Group for the report.
This issue has severity "moderate" according to the Django security policy.
Affected supported versions
* Django main branch
* Django 5.0 (currently at pre-release alpha status)
* Django 4.2
* Django 4.1
* Django 3.2
Resolution
Patches to resolve the issue have been applied to Django's main branch and the
5.0, 4.2, 4.1, and 3.2 release branches. The patches may be obtained from the
following changesets:
* On the main branch
* On the 5.0 release branch
* On the 4.2 release branch
* On the 4.1 release branch
* On the 3.2 release branch
The following releases have been issued:
* Django 4.2.6 (download Django 4.2.6 | 4.2.6 checksums)
* Django 4.1.12 (download Django 4.1.12 | 4.1.12 checksums)
* Django 3.2.22 (download Django 3.2.22 | 3.2.22 checksums)
The PGP key ID used for this release is Natalia Bidart: 2EE82A8D9470983E
General notes regarding security reporting
As always, we ask that potential security issues be reported via
private email to [email protected], and not via Django's
Trac instance or the django-developers list. Please see our security
policies for further
information.
Read: https://www.djangoproject.com/weblog/2023/oct/04/security-releases/
What is Django and it's Installation!
Django is a high-level Python web framework that simplifies the development of web applications by providing a set of tools, libraries, and conventions for building robust, secure, and maintainable websites and web applications. It follows the Model-...
Read: https://amrit69.com.np/what-is-django-and-its-installation
Django is a high-level Python web framework that simplifies the development of web applications by providing a set of tools, libraries, and conventions for building robust, secure, and maintainable websites and web applications. It follows the Model-...
Read: https://amrit69.com.np/what-is-django-and-its-installation
Simple Django Tip #1
This is a super short post with a simple tip that can be performed in any Django project. Though simple, it aids in keeping the code clean, and easy to debug and maintain. I cannot emphasize the usefulness of this step.
When I started to learn Django...
Read: https://hellosambhavi.com/simple-django-tip-1
This is a super short post with a simple tip that can be performed in any Django project. Though simple, it aids in keeping the code clean, and easy to debug and maintain. I cannot emphasize the usefulness of this step.
When I started to learn Django...
Read: https://hellosambhavi.com/simple-django-tip-1
A Beginner's Guide to Django in Web Development
If you are just starting your journey into the world of web development, you might have come across the term "Django" a very versatile and multipurpose Python programming language framework, most especially for web development. Let us check and know ...
Read: https://austasty.hashnode.dev/a-beginners-guide-to-django-in-web-development
If you are just starting your journey into the world of web development, you might have come across the term "Django" a very versatile and multipurpose Python programming language framework, most especially for web development. Let us check and know ...
Read: https://austasty.hashnode.dev/a-beginners-guide-to-django-in-web-development
🏢 My Internship Journey at CreArt 🚀
💫 Introduction:
Embarking on a 4-week internship journey is like stepping onto a path of discovery, filled with opportunities to learn, adapt, and create. In this blog, I will walk you through my month-long internship at CreArt Solution, where I imm...
Read: https://aksh2002.hashnode.dev/my-internship-journey-at-creart
💫 Introduction:
Embarking on a 4-week internship journey is like stepping onto a path of discovery, filled with opportunities to learn, adapt, and create. In this blog, I will walk you through my month-long internship at CreArt Solution, where I imm...
Read: https://aksh2002.hashnode.dev/my-internship-journey-at-creart
👍1
Django's Authentication and Authorisation
User registration and authentication can be a tricky process in development for many developers, and especially beginners.
In this article, I'll take you step by step on how to go about the same in Django.
This project's code can be found on GitHub
#...
Read: https://brayo.hashnode.dev/djangos-authentication-and-authorisation
User registration and authentication can be a tricky process in development for many developers, and especially beginners.
In this article, I'll take you step by step on how to go about the same in Django.
This project's code can be found on GitHub
#...
Read: https://brayo.hashnode.dev/djangos-authentication-and-authorisation
Django: Creating Custom User Model
Django stands out as a robust framework for building powerful and scalable web applications. One of it key features is user authentication, which is fundamental for many web projects requirement. While django provides a default user model, developers...
Read: https://victorolusola.hashnode.dev/django-creating-custom-user-model
Django stands out as a robust framework for building powerful and scalable web applications. One of it key features is user authentication, which is fundamental for many web projects requirement. While django provides a default user model, developers...
Read: https://victorolusola.hashnode.dev/django-creating-custom-user-model
Managing the UI in Django
This page explains How to integrate a new UI into a Django project (new or legacy). As we all know already, the UI is an important part of any project, being the only layer visible to the users. Here are a few solutions to successfully code the UI fo...
Read: https://app-generator.hashnode.dev/managing-the-ui-in-django
This page explains How to integrate a new UI into a Django project (new or legacy). As we all know already, the UI is an important part of any project, being the only layer visible to the users. Here are a few solutions to successfully code the UI fo...
Read: https://app-generator.hashnode.dev/managing-the-ui-in-django
My Outreachy Contribution Stage Experience
Getting my Initial application approval
It was the best news of the season for me to have received an email stating that my initial application was approved and I could move further with my Outreachy internship application. I knew that writing those ...
Read: https://kofocole.hashnode.dev/my-outreachy-contribution-stage-experience
Getting my Initial application approval
It was the best news of the season for me to have received an email stating that my initial application was approved and I could move further with my Outreachy internship application. I knew that writing those ...
Read: https://kofocole.hashnode.dev/my-outreachy-contribution-stage-experience
My Outreachy Contribution Stage Experience - Picking a project.
It was the best news of the season for me to have received an email stating that my initial application was approved and I could move further with my Outreachy internship application. I knew that writing those essays was tough and I had impostor synd...
Read: https://kofocole.hashnode.dev/my-outreachy-contribution-stage-experience-picking-a-project
It was the best news of the season for me to have received an email stating that my initial application was approved and I could move further with my Outreachy internship application. I knew that writing those essays was tough and I had impostor synd...
Read: https://kofocole.hashnode.dev/my-outreachy-contribution-stage-experience-picking-a-project