python-django-allauth-doc 0.35.0-1 / usr / share / doc / python-django-allauth / html / release-notes.html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
    <title>Release Notes &#8212; django-allauth 0.32.0 documentation</title>
    <link rel="stylesheet" href="_static/classic.css" type="text/css" />
    <link rel="stylesheet" href="_static/pygments.css" type="text/css" />
    <script type="text/javascript">
      var DOCUMENTATION_OPTIONS = {
        URL_ROOT:    './',
        VERSION:     '0.32.0',
        COLLAPSE_INDEX: false,
        FILE_SUFFIX: '.html',
        HAS_SOURCE:  true,
        SOURCELINK_SUFFIX: '.txt'
      };
    </script>
    <script type="text/javascript" src="_static/jquery.js"></script>
    <script type="text/javascript" src="_static/underscore.js"></script>
    <script type="text/javascript" src="_static/doctools.js"></script>
    <link rel="index" title="Index" href="genindex.html" />
    <link rel="search" title="Search" href="search.html" />
    <link rel="next" title="Commercial Support" href="support.html" />
    <link rel="prev" title="Frequently Asked Questions" href="faq.html" /> 
  </head>
  <body>
    <div class="related" role="navigation" aria-label="related navigation">
      <h3>Navigation</h3>
      <ul>
        <li class="right" style="margin-right: 10px">
          <a href="genindex.html" title="General Index"
             accesskey="I">index</a></li>
        <li class="right" >
          <a href="support.html" title="Commercial Support"
             accesskey="N">next</a> |</li>
        <li class="right" >
          <a href="faq.html" title="Frequently Asked Questions"
             accesskey="P">previous</a> |</li>
        <li class="nav-item nav-item-0"><a href="index.html">django-allauth 0.32.0 documentation</a> &#187;</li> 
      </ul>
    </div>  

    <div class="document">
      <div class="documentwrapper">
        <div class="bodywrapper">
          <div class="body" role="main">
            
  <div class="section" id="release-notes">
<h1>Release Notes<a class="headerlink" href="#release-notes" title="Permalink to this headline">¶</a></h1>
<div class="section" id="id1">
<h2>0.35.0 (2017-02-02)<a class="headerlink" href="#id1" title="Permalink to this headline">¶</a></h2>
<div class="section" id="security-notice">
<h3>Security notice<a class="headerlink" href="#security-notice" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>As an extra security measure on top of what the standard Django password reset
token generator is already facilitating, allauth now adds the user email
address to the hash such that whenever the user’s email address changes the
token is invalidated.</li>
</ul>
</div>
<div class="section" id="note-worthy-changes">
<h3>Note worthy changes<a class="headerlink" href="#note-worthy-changes" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>New provider: Azure, Microsoft Graph, Salesforce, Yahoo.</li>
</ul>
</div>
</div>
<div class="section" id="id2">
<h2>0.34.0 (2017-10-29)<a class="headerlink" href="#id2" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id3">
<h3>Security notice<a class="headerlink" href="#id3" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The “Set Password” view did not properly check whether or not the user already
had a usable password set. This allowed an attacker to set the password
without providing the current password, but only in case the attacker already
gained control over the victim’s session.</li>
</ul>
</div>
<div class="section" id="id4">
<h3>Note worthy changes<a class="headerlink" href="#id4" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>New provider: Meetup.</li>
</ul>
</div>
</div>
<div class="section" id="id5">
<h2>0.33.0 (2017-08-20)<a class="headerlink" href="#id5" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id6">
<h3>Note worthy changes<a class="headerlink" href="#id6" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Security: password reset tokens are now prevented from being leaked through
the password reset URL.</li>
<li>New providers: Patreon, Authentiq, Dataporten.</li>
<li>Dropbox has been upgraded to API V2.</li>
<li>New translation: Norwegian.</li>
</ul>
</div>
<div class="section" id="backwards-incompatible-changes">
<h3>Backwards incompatible changes<a class="headerlink" href="#backwards-incompatible-changes" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Dropped support for Django 1.9.</li>
</ul>
</div>
</div>
<div class="section" id="id7">
<h2>0.32.0 (2017-04-27)<a class="headerlink" href="#id7" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id8">
<h3>Note worthy changes<a class="headerlink" href="#id8" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Improved AJAX support: the account management views (change/set password,
manage e-mail addresses and social connections) now support AJAX GET requests.
These views hand over all the required data for you to build your frontend
application upon.</li>
<li>New providers: Dwolla, Trello.</li>
<li>Shopify: support for per-user access mode.</li>
</ul>
</div>
<div class="section" id="id9">
<h3>Backwards incompatible changes<a class="headerlink" href="#id9" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>In previous versions, the views only responded with JSON responses when
issuing AJAX requests of type POST. Now, the views also respond in JSON when
making AJAX GET requests.</li>
<li>The structure of the response for AJAX requests has changed. Previously, it
contained a <code class="docutils literal"><span class="pre">form_errors</span></code> key containing all form validation errors, if any.
Now, it contains a <code class="docutils literal"><span class="pre">form</span></code> key that describes the complete form, including
the fields. Field specific errors are placed in
<code class="docutils literal"><span class="pre">form.fields['some_field'].errors</span></code>, non-field errors in <code class="docutils literal"><span class="pre">form.errors</span></code>.</li>
<li>The parameters passed to the Facebook JS SDK <code class="docutils literal"><span class="pre">FB.init()</span></code> method used to contain
<code class="docutils literal"><span class="pre">cookie</span></code>, <code class="docutils literal"><span class="pre">status</span></code>, and <code class="docutils literal"><span class="pre">xfbml</span></code>, all set to <code class="docutils literal"><span class="pre">true</span></code>. These parameters
are no longer explicitly passed. You can use the newly introduced <code class="docutils literal"><span class="pre">INIT_PARAMS</span></code>
provider setting to provide your own values.</li>
</ul>
</div>
</div>
<div class="section" id="id10">
<h2>0.31.0 (2017-02-28)<a class="headerlink" href="#id10" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id11">
<h3>Note worthy changes<a class="headerlink" href="#id11" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Added a new <code class="docutils literal"><span class="pre">user_logged_out</span></code> signal.</li>
<li>OpenId: Added support for requesting additional data.</li>
<li>New providers: Auth0, Box, Line, Naver, Kakao, Daum, MailChimp, Eventbrite.</li>
</ul>
</div>
<div class="section" id="id12">
<h3>Backwards incompatible changes<a class="headerlink" href="#id12" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Django 1.7 / Python 3.2 compatibility has been dropped.</li>
<li>Due to providers being registered in the same file as their definition
it was impossible to subclass a provider without having the parent be
registered. This has been addressed. If you have implemented a custom
provider, you will need to change
<code class="docutils literal"><span class="pre">providers.registry.register(CustomProvider)</span></code>
into
<code class="docutils literal"><span class="pre">provider_classes</span> <span class="pre">=</span> <span class="pre">[CustomProvider]</span></code>.</li>
</ul>
</div>
</div>
<div class="section" id="id13">
<h2>0.30.0 (2017-01-01)<a class="headerlink" href="#id13" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id14">
<h3>Note worthy changes<a class="headerlink" href="#id14" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Changed the algorithm that generates unique usernames. Previously, in case the
provider did not hand over any information to base the username on, the
username “user” extended with an ever increasing numeric suffix would be
attempted until a free username was found. In case of a large number of
existing users, this could result in many queries being executed before a free
username would be found, potentially resulting in a denial of service. The new
algorithm uses a random suffix and only one query to determine the final
username.</li>
<li>Added a new setting: <code class="docutils literal"><span class="pre">ACCOUNT_PRESERVE_USERNAME_CASING</span></code>. This setting
determines whether the username is stored in lowercase (<code class="docutils literal"><span class="pre">False</span></code>) or whether
its casing is to be preserved (<code class="docutils literal"><span class="pre">True</span></code>). Note that when casing is preserved,
potentially expensive <code class="docutils literal"><span class="pre">__iexact</span></code> lookups are performed when filter on
username. For now, the default is set to <code class="docutils literal"><span class="pre">True</span></code> to maintain backwards
compatibility.</li>
<li>The OAuth2Adapter class has gained a <code class="docutils literal"><span class="pre">get_callback_url</span></code> method for when
customizing the callback URL is desired.</li>
<li>The Battle.net login backend now accepts the <code class="docutils literal"><span class="pre">region</span></code> GET parameter.</li>
<li>New providers: 500px, Discord.</li>
</ul>
</div>
<div class="section" id="id15">
<h3>Backwards incompatible changes<a class="headerlink" href="#id15" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>In previous versions, the <code class="docutils literal"><span class="pre">DefaultAccountAdapter</span></code> contained a
<code class="docutils literal"><span class="pre">username_regex</span></code> property and accompanying
<code class="docutils literal"><span class="pre">error_messages['invalid_username']</span></code> validation error message. These have
been removed in favor of using the regex validation already defined at the
user model level. Alternatively, you can use the newly introduced
<code class="docutils literal"><span class="pre">ACCOUNT_USERNAME_VALIDATORS</span></code> setting.</li>
<li>The Battle.net backend no longer overrides username regex validation. In
order to use battletags as usernames, you are expected to override either
the <code class="docutils literal"><span class="pre">username</span></code> field on your User model, or to pass a custom validator
which will accept the <code class="docutils literal"><span class="pre">#</span></code> character using the new
<code class="docutils literal"><span class="pre">ACCOUNT_USERNAME_VALIDATORS</span></code> setting. Such a validator is available in
<code class="docutils literal"><span class="pre">socialaccount.providers.battlenet.validators.BattletagUsernameValidator</span></code>.</li>
</ul>
</div>
</div>
<div class="section" id="id16">
<h2>0.29.0 (2016-11-21)<a class="headerlink" href="#id16" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id17">
<h3>Note worthy changes<a class="headerlink" href="#id17" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Addressed Django 1.10 deprecation warnings.</li>
</ul>
</div>
</div>
<div class="section" id="id18">
<h2>0.28.0 (2016-10-13)<a class="headerlink" href="#id18" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id19">
<h3>Security notice<a class="headerlink" href="#id19" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Previous versions contained a vulnerability allowing an attacker to alter the
provider specific settings for <code class="docutils literal"><span class="pre">SCOPE</span></code> and/or <code class="docutils literal"><span class="pre">AUTH_PARAMS</span></code> (part of the
larger <code class="docutils literal"><span class="pre">SOCIALACCOUNT_PROVIDERS</span></code> setting). The changes would persist across
subsequent requests for all users, provided these settings were explicitly set
within your project. These settings translate directly into request
parameters, giving the attacker undesirable control over the OAuth(2)
handshake. You are not affected if you did not explicitly configure these
settings. Thanks to Ryan Kelly for reporting!</li>
</ul>
</div>
<div class="section" id="id20">
<h3>Note worthy changes<a class="headerlink" href="#id20" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>New providers: Doximity.</li>
<li>New translations: Korean.</li>
</ul>
</div>
</div>
<div class="section" id="id21">
<h2>0.27.0 (2016-08-18)<a class="headerlink" href="#id21" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id22">
<h3>Note worthy changes<a class="headerlink" href="#id22" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Django 1.10 compatibility.</li>
<li>The Twitter and GitHub providers now support querying of the email address.</li>
</ul>
</div>
<div class="section" id="id23">
<h3>Backwards incompatible changes<a class="headerlink" href="#id23" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>When <code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_EMAIL_ENTER_TWICE</span></code> was turned on, the e-mail field key
changed from <code class="docutils literal"><span class="pre">email</span></code> to <code class="docutils literal"><span class="pre">email1</span></code>, which could introduce subtle bugs. This
has now been changed: there always is an <code class="docutils literal"><span class="pre">email</span></code> field, and optionally an
<code class="docutils literal"><span class="pre">email2</span></code> field.</li>
<li>The “You must type the same password each time” form validation error that can
be triggered during signup is now added to the <code class="docutils literal"><span class="pre">password2</span></code> field instead of
being added to the non field errors.</li>
<li>The <code class="docutils literal"><span class="pre">email_confirmation_sent</span></code> signal is now passed <code class="docutils literal"><span class="pre">request</span></code>,
<code class="docutils literal"><span class="pre">confirmation</span></code> and <code class="docutils literal"><span class="pre">signup</span></code> instead of only the <code class="docutils literal"><span class="pre">confirmation</span></code>.</li>
<li><code class="docutils literal"><span class="pre">ACCOUNT_PASSWORD_MIN_LENGTH</span></code> was already deprecated, but is now completely
ignored if <code class="docutils literal"><span class="pre">AUTH_PASSWORD_VALIDATORS</span></code> is not empty.</li>
</ul>
</div>
</div>
<div class="section" id="id24">
<h2>0.26.1 (2016-07-25)<a class="headerlink" href="#id24" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id25">
<h3>Note worthy changes<a class="headerlink" href="#id25" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Locale files wrongly packaged, fixed.</li>
<li>Fixed bug (<code class="docutils literal"><span class="pre">KeyError</span></code>) when <code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_EMAIL_ENTER_TWICE</span></code> was set to
<code class="docutils literal"><span class="pre">True</span></code>.</li>
</ul>
</div>
</div>
<div class="section" id="id26">
<h2>0.26.0 (2016-07-24)<a class="headerlink" href="#id26" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id27">
<h3>Note worthy changes<a class="headerlink" href="#id27" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>New providers: Weixin, Battle.net, Asana, Eve Online, 23andMe, Slack</li>
<li>Django’s password validation mechanism (see <code class="docutils literal"><span class="pre">AUTH_PASSWORD_VALIDATORS</span></code>) is now
used to validate passwords.</li>
<li>By default, email confirmations are no longer stored in the
database. Instead, the email confirmation mail contains an HMAC
based key identifying the email address to confirm. The verification
lookup includes a fallback to the previous strategy so that there is
no negative impact on pending verification emails.</li>
<li>A new setting <code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_EMAIL_ENTER_TWICE</span></code> was added, requiring users to
input their email address twice. The setting
<code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_PASSWORD_VERIFICATION</span></code> has been renamed to
<code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_PASSWORD_ENTER_TWICE</span></code>.</li>
<li>New translations: Latvian, Kyrgyz.</li>
</ul>
</div>
<div class="section" id="id28">
<h3>Backwards incompatible changes<a class="headerlink" href="#id28" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Dropped support for Django 1.6</li>
<li>In order to accomodate for Django’s password validation, the
<code class="docutils literal"><span class="pre">clean_password</span></code> method of the adapter now takes an (optional)
<code class="docutils literal"><span class="pre">user</span></code> parameter as its second argument.</li>
<li>The new HMAC based keys may contain colons. If you have forked
<code class="docutils literal"><span class="pre">account/urls.py</span></code>, be sure to sync the <code class="docutils literal"><span class="pre">account_confirm_email</span></code>
pattern.</li>
</ul>
</div>
</div>
<div class="section" id="id29">
<h2>0.25.2 (2016-03-13)<a class="headerlink" href="#id29" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id30">
<h3>Note worthy changes<a class="headerlink" href="#id30" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Bug fix release (MemcachedKeyCharacterError: “Control characters not allowed”)</li>
</ul>
</div>
</div>
<div class="section" id="id31">
<h2>0.25.1 (2016-03-13)<a class="headerlink" href="#id31" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id32">
<h3>Note worthy changes<a class="headerlink" href="#id32" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Bug fix release (AttributeError in password reset view).</li>
</ul>
</div>
</div>
<div class="section" id="id33">
<h2>0.25.0 (2016-03-12)<a class="headerlink" href="#id33" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id34">
<h3>Note worthy changes<a class="headerlink" href="#id34" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Many providers were added: Reddit, Untappd, GitLab, Stripe,
Pinterest, Shopify, Draugiem, DigitalOcean, Robinhood,
Bitbucket(OAuth2).</li>
<li>The account connections view is now AJAX aware.</li>
<li>You can now customize the template extension that is being used to
render all HTML templates (<code class="docutils literal"><span class="pre">ACCOUNT_TEMPLATE_EXTENSION</span></code>)</li>
<li>In order to be secure by default, users are now blocked from logging
in after exceeding a maximum number of failed login attempts (see
<code class="docutils literal"><span class="pre">ACCOUNT_LOGIN_ATTEMPTS_LIMIT</span></code>,
<code class="docutils literal"><span class="pre">ACCOUNT_LOGIN_ATTEMPTS_TIMEOUT</span></code>). Set
<code class="docutils literal"><span class="pre">ACCOUNT_LOGIN_ATTEMPTS_LIMIT</span></code> to <code class="docutils literal"><span class="pre">None</span></code> to disable this
functionality. Important: while this protects the allauth login view, it
does not protect Django’s admin login from being brute forced.</li>
<li>New translations: Arabic, Lithuanian</li>
</ul>
</div>
<div class="section" id="id35">
<h3>Backwards incompatible changes<a class="headerlink" href="#id35" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id36">
<h2>0.24.1 (2015-11-09)<a class="headerlink" href="#id36" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id37">
<h3>Note worthy changes<a class="headerlink" href="#id37" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Non-test code accidentally had test packages as a dependency.</li>
</ul>
</div>
<div class="section" id="id38">
<h3>Backwards incompatible changes<a class="headerlink" href="#id38" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Setting a password after logging in with a social account no longer logs out
the user by default on Django 1.7+. Setting an initial password and changing
the password both respect <code class="docutils literal"><span class="pre">settings.ACCOUNT_LOGOUT_ON_PASSWORD_CHANGE</span></code>.</li>
</ul>
</div>
</div>
<div class="section" id="id39">
<h2>0.24.0 (2015-11-08)<a class="headerlink" href="#id39" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id40">
<h3>Note worthy changes<a class="headerlink" href="#id40" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Django 1.9b1 compatibility.</li>
<li>Seppo Erviälä contributed a Finnish translation, thanks!</li>
<li>Iurii Kriachko contributed a Basecamp provider, thanks!</li>
</ul>
</div>
<div class="section" id="id41">
<h3>Backwards incompatible changes<a class="headerlink" href="#id41" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Increased <code class="docutils literal"><span class="pre">SocialApp</span></code> key/secret/token sizes to 191, decreased
<code class="docutils literal"><span class="pre">SocialAccount.uid</span></code> size to 191. The latter was done in order to
accomodate for MySQL in combination with utf8mb4 and contraints on
<code class="docutils literal"><span class="pre">uid</span></code>. Note that <code class="docutils literal"><span class="pre">uid</span></code> is used to store OpenID URLs, which can
theoretically be longer than 191 characters, although in practice
this does not seem to be the case. In case you really need to
control the <code class="docutils literal"><span class="pre">uid</span></code> length, set <code class="docutils literal"><span class="pre">settings.SOCIALACCOUNT_UID_MAX_LENGTH</span></code>
accordingly. Migrations are in place.</li>
</ul>
</div>
</div>
<div class="section" id="id42">
<h2>0.23.0 (2015-08-02)<a class="headerlink" href="#id42" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id43">
<h3>Note worthy changes<a class="headerlink" href="#id43" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>David Friedman contributed Edmodo support, thanks!</li>
<li>Added support for <code class="docutils literal"><span class="pre">ACCOUNT_LOGIN_ON_PASSWORD_RESET</span></code> (thanks Julen!)</li>
</ul>
</div>
<div class="section" id="id44">
<h3>Backwards incompatible changes<a class="headerlink" href="#id44" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id45">
<h2>0.22.0 (2015-07-23)<a class="headerlink" href="#id45" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id46">
<h3>Note worthy changes<a class="headerlink" href="#id46" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Reversal of the email confirmation url can now be overridden in
the adapter (<code class="docutils literal"><span class="pre">get_email_confirmation_url</span></code>). Additionally, the
complete confirmation email handling can be overridden via
<code class="docutils literal"><span class="pre">send_confirmation_mail</span></code>.</li>
<li>Template context processors are no longer used.</li>
<li>The Facebook Graph API fields (/me/?fields=…) can now be
configured using the provider <code class="docutils literal"><span class="pre">FIELDS</span></code> setting.</li>
</ul>
</div>
<div class="section" id="id47">
<h3>Backwards incompatible changes<a class="headerlink" href="#id47" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Dropped support for Python 2.6 and Django &lt;1.6.</li>
<li>The default Facebook Graph API version is now v2.4.</li>
<li>Template context processors are no longer used. The context
processor for <code class="docutils literal"><span class="pre">allauth.account</span></code> was already empty, and the context
processor for <code class="docutils literal"><span class="pre">allauth.socialaccount</span></code> has been converted into the
:doc:<code class="docutils literal"><span class="pre">{%</span> <span class="pre">get_providers</span> <span class="pre">%}</span> <span class="pre">&lt;templates&gt;</span></code> template tag.</li>
</ul>
</div>
</div>
<div class="section" id="id48">
<h2>0.21.0 (2015-07-02)<a class="headerlink" href="#id48" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id49">
<h3>Note worthy changes<a class="headerlink" href="#id49" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>You can now tweak the authentication params per OAuth provider,
as you already could for OAuth2. Contributed by Peter Rowlands,
thanks.</li>
<li>Nattaphoom Ch. contributed a Thai translation, thanks!</li>
<li>Guoyu Hao contributed a Baidu provider, thanks!</li>
<li>Rod Xavier Bondoc contributed support logging out on password
change (see setting: <code class="docutils literal"><span class="pre">ACCOUNT_LOGOUT_ON_PASSWORD_CHANGE</span></code>)</li>
</ul>
</div>
<div class="section" id="id50">
<h3>Backwards incompatible changes<a class="headerlink" href="#id50" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>In version 0.20.0 an <code class="docutils literal"><span class="pre">account</span></code> migration (<code class="docutils literal"><span class="pre">0002_email_max_length</span></code>)
was added to alter the maximum length of the email
field. Unfortunately, a side effect of this migration was that the
<code class="docutils literal"><span class="pre">unique=True</span></code> setting slipped through as well. Hardcoding this to
<code class="docutils literal"><span class="pre">True</span></code> is wrong, as uniqueness actually depends on the
<code class="docutils literal"><span class="pre">ACCOUNT_UNIQUE_EMAIL</span></code> setting. We cannot create a followup <code class="docutils literal"><span class="pre">0003</span></code>
migration to set things straight, as the <code class="docutils literal"><span class="pre">0002</span></code> migration may fail
on installations where email addresses are not unique. Therefore, we
had to resort to changing an existing migration which is normally
not the right thing to do. In case your installation has
<code class="docutils literal"><span class="pre">ACCOUNT_UNIQUE_EMAIL</span></code> set to <code class="docutils literal"><span class="pre">True</span></code>, you need not take any further
action. In case it is set to <code class="docutils literal"><span class="pre">False</span></code> and migration <code class="docutils literal"><span class="pre">0002</span></code> already
ran, please issue a <code class="docutils literal"><span class="pre">--fake</span></code> migration down to <code class="docutils literal"><span class="pre">0001</span></code>, followed by a
re-run of the updated <code class="docutils literal"><span class="pre">0002</span></code>.</li>
</ul>
</div>
</div>
<div class="section" id="id51">
<h2>0.20.0 (2015-05-25)<a class="headerlink" href="#id51" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id52">
<h3>Note worthy changes<a class="headerlink" href="#id52" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Patrick Paul contributed a provider for Evernote, thanks!</li>
<li>Josh Wright contributed a provider for Spotify, thanks!</li>
<li>Björn Andersson added support for Dropbox OAuth2, thanks!</li>
<li>guoqiao contributed a provider for Douban, thanks!</li>
</ul>
</div>
<div class="section" id="id53">
<h3>Backwards incompatible changes<a class="headerlink" href="#id53" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Given that the <code class="docutils literal"><span class="pre">max_length</span></code> for the Django 1.8 <code class="docutils literal"><span class="pre">EmailField</span></code> has been
bumped to 254, allauth is following up. Migrations (<code class="docutils literal"><span class="pre">account</span></code>) are
in place.</li>
</ul>
</div>
</div>
<div class="section" id="id54">
<h2>0.19.1 (2015-02-05)<a class="headerlink" href="#id54" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id55">
<h3>Note worthy changes<a class="headerlink" href="#id55" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Fixed migrations when using South &amp; Django 1.6.</li>
</ul>
</div>
</div>
<div class="section" id="id56">
<h2>0.19.0 (2015-01-04)<a class="headerlink" href="#id56" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id57">
<h3>Note worthy changes<a class="headerlink" href="#id57" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Basil Shubin contributed an Odnoklassniki provider, thanks!</li>
<li>Facebook: If the JS SDK is not available, for example due to a
browser plugin like Disconnect.me that blocks it, login falls back
to the regular non JS handshake.</li>
<li><code class="docutils literal"><span class="pre">is_safe_url</span></code> can now be overriden</li>
<li>Facebook: The Graph API version is now configurable via
<code class="docutils literal"><span class="pre">SOCIALACCOUNT_PROVIDERS</span></code>.</li>
<li>A Firefox Accounts provider was added by Jannis Leidel, thanks!</li>
<li>Josh Owen contributed Coinbase support, thanks!</li>
<li>Tomas Babej contributed a Slovak translation, thanks!</li>
<li>Moved existing migrations into <code class="docutils literal"><span class="pre">south_migrations</span></code></li>
<li>“zbryikt” contributed a Taiwanese Chinese translation, thanks!</li>
<li>Added support for custom password rules via <code class="docutils literal"><span class="pre">clean_password</span></code>.</li>
</ul>
</div>
<div class="section" id="id58">
<h3>Backwards incompatible changes<a class="headerlink" href="#id58" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>In the upcoming Django 1.8 it is no longer possible to hookup an
unsaved <code class="docutils literal"><span class="pre">User</span></code> instance to a <code class="docutils literal"><span class="pre">SocialAccount</span></code>. Therefore, if you are
inspecting the <code class="docutils literal"><span class="pre">sociallogin</span></code> object, you should now use
<code class="docutils literal"><span class="pre">sociallogin.user</span></code> instead of <code class="docutils literal"><span class="pre">sociallogin.account.user</span></code>.</li>
<li>When users logged in while <code class="docutils literal"><span class="pre">User.is_active</span></code> was <code class="docutils literal"><span class="pre">False</span></code>, they were
sent to <code class="docutils literal"><span class="pre">/accounts/inactive/</span></code> in case of a social login, and
received a form validation error in case of a local login. This
needless inconsistency has been removed. The validation error no
longer appears and local logins are also redirected to
<code class="docutils literal"><span class="pre">/accounts/inactive/</span></code>.</li>
<li>In case you were overriding the <code class="docutils literal"><span class="pre">ResetPasswordForm</span></code>: the save method
now takes <code class="docutils literal"><span class="pre">request</span></code> as its first argument.</li>
<li>All existing migrations have been moved into <code class="docutils literal"><span class="pre">south_migrations</span></code>
packages, this in order not to conflict with Django’s built-in
support for migrations. South 1.0 automatically picks up this new
location. Upgrade South if you are still dependent on these
migrations.</li>
</ul>
</div>
</div>
<div class="section" id="id59">
<h2>0.18.0 (2014-08-12)<a class="headerlink" href="#id59" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id60">
<h3>Note worthy changes<a class="headerlink" href="#id60" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Storing social access tokens is now optional
(<code class="docutils literal"><span class="pre">SOCIALACCOUNT_STORE_TOKENS</span></code>).</li>
<li><code class="docutils literal"><span class="pre">nimiq</span></code> contributed ORCID support, thanks.</li>
<li>All forms are now pluggable via a new setting:
<code class="docutils literal"><span class="pre">(SOCIAL)ACCOUNT_FORMS</span></code>.</li>
<li>James Thompson contributed Windows Live support, thanks!</li>
</ul>
</div>
<div class="section" id="id61">
<h3>Backwards incompatible changes<a class="headerlink" href="#id61" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>SECURITY: The Persona provider now requires the <code class="docutils literal"><span class="pre">AUDIENCE</span></code> parameter
to be explicitly configured, as required by the Persona
specification for security reasons.</li>
<li>The inline Javascript is removed from the <code class="docutils literal"><span class="pre">fbconnect.html</span></code> template,
which allows for a more strict <code class="docutils literal"><span class="pre">Content-Security-Policy</span></code>. If you
were using the builtin <code class="docutils literal"><span class="pre">fbconnect.html</span></code> this change should go by
unnoticed.</li>
</ul>
</div>
</div>
<div class="section" id="id62">
<h2>0.17.0 (2014-06-16)<a class="headerlink" href="#id62" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id63">
<h3>Note worthy changes<a class="headerlink" href="#id63" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li><code class="docutils literal"><span class="pre">sourenaraya</span></code> contributed Mail.Ru support, thanks.</li>
<li>account: Justin Michalicek contributed support to control
session life time and age: <code class="docutils literal"><span class="pre">ACCOUNT_SESSION_COOKIE_AGE</span></code> and
<code class="docutils literal"><span class="pre">ACCOUNT_SESSION_REMEMBER</span></code>.</li>
<li>Serafeim Papastefanos contributed an Ukrainian translation,
thanks!</li>
<li><code class="docutils literal"><span class="pre">kkarwows</span></code> contributed AppConfig support, thanks.</li>
<li>socialaccount: Added Xing provider.</li>
<li>socialaccount: Marcin Skarbek contributed Hubic support, thanks!</li>
<li>Volodymyr Yatsyk contributed an Ukrainian translation, thanks!</li>
<li><code class="docutils literal"><span class="pre">joke2k</span></code> contributed an Italian translation, thanks!</li>
<li>socialaccount: All providers now support the <code class="docutils literal"><span class="pre">VERIFIED_EMAIL</span></code>
property have e-mail addresses forced to be interpreted as
verified.</li>
</ul>
</div>
<div class="section" id="id64">
<h3>Backwards incompatible changes<a class="headerlink" href="#id64" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id65">
<h2>0.16.1 (2014-03-12)<a class="headerlink" href="#id65" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id66">
<h3>Note worthy changes<a class="headerlink" href="#id66" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Facebook login via Javascript was broken if <code class="docutils literal"><span class="pre">auth_type</span></code> was not
set to <code class="docutils literal"><span class="pre">reauthenticate</span></code>, fixed.</li>
<li>Support for hooking up a callback when <code class="docutils literal"><span class="pre">FB.init()</span></code> is ready
(<code class="docutils literal"><span class="pre">allauth.facebook.onInit</span></code>)</li>
</ul>
</div>
<div class="section" id="id67">
<h3>Backwards incompatible changes<a class="headerlink" href="#id67" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id68">
<h2>0.16.0 (2014-03-10)<a class="headerlink" href="#id68" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id69">
<h3>Note worthy changes<a class="headerlink" href="#id69" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Nariman Gharib contributed a Persian translation, thanks!</li>
<li>The custom signup form <code class="docutils literal"><span class="pre">save</span></code> has been deprecated in favour of a
<code class="docutils literal"><span class="pre">def</span> <span class="pre">signup(request,</span> <span class="pre">user)</span></code> method.</li>
<li>Facebook reauthentication now uses an <code class="docutils literal"><span class="pre">auth_nonce</span></code>.</li>
<li>Added a new option <code class="docutils literal"><span class="pre">ACCOUNT_LOGIN_ON_EMAIL_CONFIRMATION</span></code>, to
indicate whether or not e-mail confirmation is to automatically
log in.</li>
<li>socialaccount: Added Bitbucket provider.</li>
<li>Jack Shedd contributed Tumblr support, thanks!</li>
<li>Romanos Tsouroplis contributed Foursquare support, thanks!</li>
<li>“excessivedemon” contributed Flickr support, thanks!</li>
<li>Luis Diego García contributed Amazon and Paypal support, thanks!</li>
<li>Stuart Ross contributed LinkedIn OAuth 2.0 support, thanks!</li>
</ul>
</div>
<div class="section" id="id70">
<h3>Backwards incompatible changes<a class="headerlink" href="#id70" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Previously, the <code class="docutils literal"><span class="pre">save(user)</span></code> was called on the custom signup form.
However, this shadowed the existing <code class="docutils literal"><span class="pre">save</span></code> method in case a model
form was used. To avoid confusion, the <code class="docutils literal"><span class="pre">save</span></code> method has been
deprecated in favour of a <code class="docutils literal"><span class="pre">def</span> <span class="pre">signup(request,</span> <span class="pre">user)</span></code> method.</li>
<li>The Amazon provider requires more space for <code class="docutils literal"><span class="pre">token_secret</span></code>, so the
maximum length restriction has been dropped. Migrations are in
place.</li>
</ul>
</div>
</div>
<div class="section" id="id71">
<h2>0.15.0 (2013-12-01)<a class="headerlink" href="#id71" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id72">
<h3>Note worthy changes<a class="headerlink" href="#id72" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>socialaccount: Added <code class="docutils literal"><span class="pre">is_auto_signup_allowed</span></code> to social account
adapter.</li>
<li>facebook: Added a new setting: VERIFIED_EMAIL.</li>
<li>socialaccount: a collision on e-mail address when you sign up
using a third party social account is now more clearly explained:
“An account already exists with this e-mail address.  Please sign
in to that account first, then connect your Google account”.</li>
<li>account: You are now automatically logged in after confirming
your e-mail address during sign up.</li>
<li>account: The <code class="docutils literal"><span class="pre">/accounts/login/</span></code> view now supports AJAX requests.</li>
<li>facebook: The fbconnect.js script is now more pluggable.</li>
<li>socialaccount: Markus Kaiserswerth contributed a Feedly
provider, thanks!</li>
<li>socialaccount: Dropped django-avatar support.</li>
<li>openid: First, last and full name are now also queried together
with the e-mail address. Thanks, &#64;andrvb.</li>
<li>openid: Compatibility fix for Django 1.6 (JSON serializer).</li>
<li>account: Added support for <code class="docutils literal"><span class="pre">ACCOUNT_CONFIRM_EMAIL_ON_GET</span></code>.</li>
</ul>
</div>
<div class="section" id="id73">
<h3>Backwards incompatible changes<a class="headerlink" href="#id73" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Instead of directly rendering and returning a template, logging in
while the account is inactive or not yet confirmed now redirects to
two new views: <code class="docutils literal"><span class="pre">/accounts/inactive/</span></code> respectively
<code class="docutils literal"><span class="pre">/accounts/confirm-email/</span></code>.</li>
<li>The <code class="docutils literal"><span class="pre">account/verification_sent.html</span></code> template no longer receives the
e-mail address in the context (<code class="docutils literal"><span class="pre">email</span></code>). Note that a message
containing that e-mail address is still emitted using the messages
framework.</li>
<li>The <code class="docutils literal"><span class="pre">/accounts/confirm_email/key/</span></code> view has been
renamed to <code class="docutils literal"><span class="pre">/accounts/confirm-email/</span></code> (human friendlier). Redirects
are in place to handle old still pending confirmations.</li>
<li>Built-in support for django-avatar has been removed. Offering such
functionality means making choices which may not be valid for
everyone. For example, allauth was downloading the image (which can
take some time, or even block) in the context of the login, whereas
a better place might be some celery background job. Additionally, in
case of an error it simply ignored this. How about retries et al?
Also, do you want to copy the avatar once at sign up, or do you want
to update on each login? All in all, this functionality goes way
beyond authentication and should be addressed elsewhere, beyond
allauth scope. The original code has been preserved here so that you
can easily reinstate it in your own project:
<a class="reference external" href="https://gist.github.com/pennersr/7571752">https://gist.github.com/pennersr/7571752</a></li>
</ul>
</div>
</div>
<div class="section" id="id74">
<h2>0.14.2 (2013-11-16)<a class="headerlink" href="#id74" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id75">
<h3>Note worthy changes<a class="headerlink" href="#id75" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Compatibility fix for logging in with Django 1.6.</li>
<li>Maksim Rukomoynikov contributed a Russian translation, thanks!</li>
</ul>
</div>
<div class="section" id="id76">
<h3>Backwards incompatible changes<a class="headerlink" href="#id76" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>In case you were using the internal method
<code class="docutils literal"><span class="pre">generate_unique_username</span></code>, note that its signature has changed. It
now takes a list of candidates to base the username on.</li>
</ul>
</div>
</div>
<div class="section" id="id77">
<h2>0.14.1 (2013-10-28)<a class="headerlink" href="#id77" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id78">
<h3>Note worthy changes<a class="headerlink" href="#id78" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>PyPi did not render the README.rst properly.</li>
</ul>
</div>
<div class="section" id="id79">
<h3>Backwards incompatible changes<a class="headerlink" href="#id79" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id80">
<h2>0.14.0 (2013-10-28)<a class="headerlink" href="#id80" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id81">
<h3>Note worthy changes<a class="headerlink" href="#id81" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Stuart Ross contributed AngelList support, thanks!</li>
<li>LinkedIn: profile fields that are to be fetched are now
configurable (<code class="docutils literal"><span class="pre">PROFILE_FIELDS</span></code> provider-level setting).</li>
<li>Udi Oron contributed a Hebrew translation, thanks!</li>
<li>Add setting <code class="docutils literal"><span class="pre">ACCOUNT_DEFAULT_HTTP_PROTOCOL</span></code> (HTTPS support).</li>
<li>George Whewell contributed Instagram support, thanks!</li>
<li>Refactored adapter methods relating to creating and populating
<code class="docutils literal"><span class="pre">User</span></code> instances.</li>
<li>User creation methods in the <code class="docutils literal"><span class="pre">Default(Social)AccountAdapter</span></code> now
have access to the <code class="docutils literal"><span class="pre">request</span></code>.</li>
</ul>
</div>
<div class="section" id="id82">
<h3>Backwards incompatible changes<a class="headerlink" href="#id82" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The <code class="docutils literal"><span class="pre">socialaccount/account_inactive.html</span></code> template has been
moved to <code class="docutils literal"><span class="pre">account/account_inactive.html</span></code>.</li>
<li>The adapter API for creating and populating users has been
overhauled. As a result, the <code class="docutils literal"><span class="pre">populate_new_user</span></code> adapter methods
have disappeared. Please refer to the section on “Creating and
Populating User Instances” for more information.</li>
</ul>
</div>
</div>
<div class="section" id="id83">
<h2>0.13.0 (2013-08-31)<a class="headerlink" href="#id83" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id84">
<h3>Note worthy changes<a class="headerlink" href="#id84" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Koichi Harakawa contributed a Japanese translation, thanks!</li>
<li>Added <code class="docutils literal"><span class="pre">is_open_for_signup</span></code> to DefaultSocialAccountAdapter.</li>
<li>Added VK provider support.</li>
<li>Marcin Spoczynski contributed a Polish translation, thanks!</li>
<li>All views are now class-based.</li>
<li><code class="docutils literal"><span class="pre">django.contrib.messages</span></code> is now optional.</li>
<li>“jresins” contributed a simplified Chinese, thanks!</li>
</ul>
</div>
<div class="section" id="id85">
<h3>Backwards incompatible changes<a class="headerlink" href="#id85" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The password reset from key success response now redirects to a
“done” view (<code class="docutils literal"><span class="pre">/accounts/password/reset/key/done/</span></code>). This view has
its own <code class="docutils literal"><span class="pre">account/password_reset_from_key_done.html</span></code> template. In
previous versions, the success template was intertwined with the
<code class="docutils literal"><span class="pre">account/password_reset_from_key.html</span></code> template.</li>
</ul>
</div>
</div>
<div class="section" id="id86">
<h2>0.12.0 (2013-07-01)<a class="headerlink" href="#id86" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id87">
<h3>Note worthy changes<a class="headerlink" href="#id87" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Added support for re-authenticated (forced prompt) by means of a
new <code class="docutils literal"><span class="pre">action=&quot;reauthenticate&quot;</span></code> parameter to the <code class="docutils literal"><span class="pre">{%</span>
<span class="pre">provider_login_url</span> <span class="pre">%}</span></code></li>
<li>Roberto Novaes contributed a Brazilian Portuguese translation,
thanks!</li>
<li>Daniel Eriksson contributed a Swedish translation, thanks!</li>
<li>You can now logout from both allauth and Facebook via a
Javascript helper: <code class="docutils literal"><span class="pre">window.allauth.facebook.logout()</span></code>.</li>
<li>Connecting a social account is now a flow that needs to be
explicitly triggered, by means of a <code class="docutils literal"><span class="pre">process=&quot;connect&quot;</span></code> parameter
that can be passed along to the <code class="docutils literal"><span class="pre">{%</span> <span class="pre">provider_login_url</span> <span class="pre">%}</span></code>, or a
<code class="docutils literal"><span class="pre">process=connect</span></code> GET parameter.</li>
<li>Tomas Marcik contributed a Czech translation, thanks!</li>
</ul>
</div>
<div class="section" id="id88">
<h3>Backwards incompatible changes<a class="headerlink" href="#id88" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The <code class="docutils literal"><span class="pre">{%</span> <span class="pre">provider_login_url</span> <span class="pre">%}</span></code> tag now takes an optional process
parameter that indicates how to process the social login. As a
result, if you include the template
<code class="docutils literal"><span class="pre">socialaccount/snippets/provider_list.html</span></code> from your own overriden
<code class="docutils literal"><span class="pre">socialaccount/connections.html</span></code> template, you now need to pass
along the process parameter as follows:
<code class="docutils literal"><span class="pre">{%</span> <span class="pre">include</span> <span class="pre">&quot;socialaccount/snippets/provider_list.html&quot;</span> <span class="pre">with</span> <span class="pre">process=&quot;connect&quot;</span> <span class="pre">%}</span></code>.</li>
<li>Instead of inlining the required Facebook SDK Javascript wrapper
code into the HTML, it now resides into its own .js file (served
with <code class="docutils literal"><span class="pre">{%</span> <span class="pre">static</span> <span class="pre">%}</span></code>). If you were using the builtin <code class="docutils literal"><span class="pre">fbconnect.html</span></code>
this change should go by unnoticed.</li>
</ul>
</div>
</div>
<div class="section" id="id89">
<h2>0.11.1 (2013-06-04)<a class="headerlink" href="#id89" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id90">
<h3>Note worthy changes<a class="headerlink" href="#id90" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Released (due to issue in disconnecting social accounts).</li>
</ul>
</div>
<div class="section" id="id91">
<h3>Backwards incompatible changes<a class="headerlink" href="#id91" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id92">
<h2>0.11.0 (2013-06-02)<a class="headerlink" href="#id92" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id93">
<h3>Note worthy changes<a class="headerlink" href="#id93" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Moved logic whether or not a social account can be disconnected
to the <code class="docutils literal"><span class="pre">SocialAccountAdapter</span></code> (<code class="docutils literal"><span class="pre">validate_disconnect</span></code>).</li>
<li>Added <code class="docutils literal"><span class="pre">social_account_removed</span></code> signal.</li>
<li>Implemented CSRF protection
(<a class="reference external" href="http://tools.ietf.org/html/draft-ietf-oauth-v2-30#section-10.12">http://tools.ietf.org/html/draft-ietf-oauth-v2-30#section-10.12</a>).</li>
<li>The <code class="docutils literal"><span class="pre">user_logged_in</span></code> signal now optionally receives a
<code class="docutils literal"><span class="pre">sociallogin</span></code> parameter, in case of a social login.</li>
<li>Added <code class="docutils literal"><span class="pre">social_account_added</span></code> (contributed by orblivion, thanks).</li>
<li>Hatem Nassrat contributed Bitly support, thanks!</li>
<li>Bojan Mihelac contributed a Croatian translation, thanks!</li>
<li>Messages (as in <code class="docutils literal"><span class="pre">django.contrib.messages</span></code>) are now configurable
through templates.</li>
<li>Added support for differentiating e-mail handling (verification,
required) between local and social accounts:
<code class="docutils literal"><span class="pre">SOCIALACCOUNT_EMAIL_REQUIRED</span></code> and
<code class="docutils literal"><span class="pre">SOCIALACCOUNT_EMAIL_VERIFICATION</span></code>.</li>
</ul>
</div>
<div class="section" id="id94">
<h3>Backwards incompatible changes<a class="headerlink" href="#id94" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id95">
<h2>0.10.1 (2013-04-16)<a class="headerlink" href="#id95" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id96">
<h3>Note worthy changes<a class="headerlink" href="#id96" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Cleaning of <code class="docutils literal"><span class="pre">username</span></code> can now be overriden via
<code class="docutils literal"><span class="pre">DefaultAccountAdapter.clean_username</span></code></li>
<li>Fixed potential error (<code class="docutils literal"><span class="pre">assert</span></code>) when connecting social
accounts.</li>
<li>Added support for custom username handling in case of custom
user models (<code class="docutils literal"><span class="pre">ACCOUNT_USER_MODEL_USERNAME_FIELD</span></code>).</li>
</ul>
</div>
<div class="section" id="id97">
<h3>Backwards incompatible changes<a class="headerlink" href="#id97" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id98">
<h2>0.10.0 (2013-04-12)<a class="headerlink" href="#id98" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id99">
<h3>Note worthy changes<a class="headerlink" href="#id99" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Chris Davis contributed Vimeo support, thanks!</li>
<li>Added support for overriding the URL to return to after
connecting a social account
(<code class="docutils literal"><span class="pre">allauth.socialaccount.adapter.DefaultSocialAccountAdapter.get_connect_redirect_url</span></code>).</li>
<li>Python 3 is now supported!</li>
<li>Dropped dependency on (unmaintained?) oauth2 package, in favor
of requests-oauthlib.</li>
<li>account: E-mail confirmation mails generated at signup can now
be differentiated from regular e-mail confirmation mails by
placing e.g. a welcome message into the
<code class="docutils literal"><span class="pre">account/email/email_confirmation_signup*</span></code> templates. Thanks to
Sam Solomon for the patch.</li>
<li>account: Moved User instance creation to adapter so that e.g.
username generation can be influenced. Thanks to John Bazik for
the patch.</li>
<li>Robert Balfre contributed Dropbox support, thanks!</li>
<li>socialaccount: Added support for Weibo.</li>
<li>account: Added support for sending HTML e-mail. Add
<code class="docutils literal"><span class="pre">*_message.html</span></code> templates and they will be automatically picked
up.</li>
<li>Added support for passing along extra parameters to the OAuth2
authentication calls, such as <code class="docutils literal"><span class="pre">access_type</span></code> (Google) or
<code class="docutils literal"><span class="pre">auth_type</span></code> (Facebook).</li>
<li>Both the login and signup view now immediately redirect to the
login redirect url in case the user was already authenticated.</li>
<li>Added support for closing down signups in a pluggable fashion,
making it easy to hookup your own invitation handling mechanism.</li>
<li>Added support for passing along extra parameters to the
<code class="docutils literal"><span class="pre">FB.login</span></code> API call.</li>
</ul>
</div>
<div class="section" id="id100">
<h3>Backwards incompatible changes<a class="headerlink" href="#id100" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Logout no longer happens on GET request. Refer to the <code class="docutils literal"><span class="pre">LogoutView</span></code>
documentation for more background information. Logging out on GET
can be restored by the setting <code class="docutils literal"><span class="pre">ACCOUNT_LOGOUT_ON_GET</span></code>. Furthermore,
after logging out you are now redirected to
<code class="docutils literal"><span class="pre">ACCOUNT_LOGOUT_REDIRECT_URL</span></code> instead of rendering the
<code class="docutils literal"><span class="pre">account/logout.html</span></code> template.</li>
<li><code class="docutils literal"><span class="pre">LOGIN_REDIRECT_URLNAME</span></code> is now deprecated. Django 1.5 accepts both
URL names and URLs for <code class="docutils literal"><span class="pre">LOGIN_REDIRECT_URL</span></code>, so we do so as well.</li>
<li><code class="docutils literal"><span class="pre">DefaultAccountAdapter.stash_email_verified</span></code> is now named
<code class="docutils literal"><span class="pre">stash_verified_email</span></code>.</li>
<li>Django 1.4.3 is now the minimal requirement.</li>
<li>Dropped dependency on (unmaintained?) oauth2 package, in favor of
requests-oauthlib. So you will need to update your (virtual)
environment accordingly.</li>
<li>We noticed a very rare bug that affects end users who add Google
social login to existing accounts. The symptom is you end up with
users who have multiple primary email addresses which conflicts
with assumptions made by the code. In addition to fixing the code
that allowed duplicates to occur, there is a managegement command
you can run if you think this effects you (and if it doesn’t effect
you there is no harm in running it anyways if you are unsure):<ul>
<li><code class="docutils literal"><span class="pre">python</span> <span class="pre">manage.py</span> <span class="pre">account_unsetmultipleprimaryemails</span></code><ul>
<li>Will silently remove primary flags for email addresses that
aren’t the same as <code class="docutils literal"><span class="pre">user.email</span></code>.</li>
<li>If no primary <code class="docutils literal"><span class="pre">EmailAddress</span></code> is <code class="docutils literal"><span class="pre">user.email</span></code> it will pick one
at random and print a warning.</li>
</ul>
</li>
</ul>
</li>
<li>The expiry time, if any, is now stored in a new column
<code class="docutils literal"><span class="pre">SocialToken.expires_at</span></code>. Migrations are in place.</li>
<li>Furthermore, Facebook started returning longer tokens, so the
maximum token length was increased. Again, migrations are in place.</li>
<li>Login and signup views have been turned into class-based views.</li>
<li>The template variable <code class="docutils literal"><span class="pre">facebook_perms</span></code> is no longer passed to the
“facebook/fbconnect.html” template. Instead, <code class="docutils literal"><span class="pre">fb_login_options</span></code>
containing all options is passed.</li>
</ul>
</div>
</div>
<div class="section" id="id101">
<h2>0.9.0 (2013-01-30)<a class="headerlink" href="#id101" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id102">
<h3>Note worthy changes<a class="headerlink" href="#id102" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>account: <code class="docutils literal"><span class="pre">user_signed_up</span></code> signal now emits an optional
<code class="docutils literal"><span class="pre">sociallogin</span></code> parameter so that receivers can easily differentiate
between local and social signups.</li>
<li>account: Added <code class="docutils literal"><span class="pre">email_removed</span></code> signal.</li>
<li>socialaccount: Populating of User model fields is now
centralized in the adapter, splitting up <code class="docutils literal"><span class="pre">name</span></code> into <code class="docutils literal"><span class="pre">first_name</span></code>
and <code class="docutils literal"><span class="pre">last_name</span></code> if these were not individually available.</li>
<li>Ahmet Emre Aladağ contributed a Turkish translation, thanks!</li>
<li>socialaccount: Added SocialAccountAdapter hook to allow for
intervention in social logins.</li>
<li>google: support for Google’s <code class="docutils literal"><span class="pre">verified_email</span></code> flag to determine
whether or not to send confirmation e-mails.</li>
<li>Fábio Santos contributed a Portugese translation, thanks!</li>
<li>socialaccount: Added support for Stack Exchange.</li>
<li>socialaccount: Added <code class="docutils literal"><span class="pre">get_social_accounts</span></code> template tag.</li>
<li>account: Default URL to redirect to after login can now be
overriden via the adapter, both for login and e-mail confirmation
redirects.</li>
</ul>
</div>
<div class="section" id="id103">
<h3>Backwards incompatible changes<a class="headerlink" href="#id103" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li><code class="docutils literal"><span class="pre">requests</span></code> is now a dependency (dropped <code class="docutils literal"><span class="pre">httplib2</span></code>).</li>
<li>Added a new column <code class="docutils literal"><span class="pre">SocialApp.client_id</span></code>. The value of <code class="docutils literal"><span class="pre">key</span></code> needs
to be moved to the new <code class="docutils literal"><span class="pre">client_id</span></code> column. The <code class="docutils literal"><span class="pre">key</span></code> column is
required for Stack Exchange. Migrations are in place to handle all
of this automatically.</li>
</ul>
</div>
</div>
<div class="section" id="id104">
<h2>0.8.3 (2012-12-06)<a class="headerlink" href="#id104" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id105">
<h3>Note worthy changes<a class="headerlink" href="#id105" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Markus Thielen contributed a German translation, thanks!</li>
<li>The <code class="docutils literal"><span class="pre">site</span></code> foreign key from <code class="docutils literal"><span class="pre">SocialApp</span></code> to <code class="docutils literal"><span class="pre">Site</span></code> has been replaced
by a <code class="docutils literal"><span class="pre">ManyToManyField</span></code>. Many apps can be used across multiple domains
(Facebook cannot).</li>
<li>account: Added adapter class for increased pluggability. Added
hook for 3rd party invitation system to by pass e-mail
verification (<code class="docutils literal"><span class="pre">stash_email_verified</span></code>). Moved sending of mail to
adapter.</li>
<li>account: Added option to completely disable e-mail verification
during signup.</li>
</ul>
</div>
<div class="section" id="id106">
<h3>Backwards incompatible changes<a class="headerlink" href="#id106" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The <code class="docutils literal"><span class="pre">ACCOUNT_EMAIL_VERIFICATION</span></code> setting is no longer a boolean
based setting. Use a string value of “none”, “optional” or
“mandatory” instead.</li>
<li>The template “account/password_reset_key_message.txt” has been moved
to “account/email/password_reset_key_message.txt”. The subject of
the message has been moved into a template
(“account/email/password_reset_key_subject.txt”).</li>
<li>The <code class="docutils literal"><span class="pre">site</span></code> foreign key from <code class="docutils literal"><span class="pre">SocialApp</span></code> to <code class="docutils literal"><span class="pre">Site</span></code> has been replaced
by a <code class="docutils literal"><span class="pre">ManyToManyField</span></code>. Many apps can be used across multiple
domains (Facebook cannot).</li>
</ul>
</div>
</div>
<div class="section" id="id107">
<h2>0.8.2 (2012-10-10)<a class="headerlink" href="#id107" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id108">
<h3>Note worthy changes<a class="headerlink" href="#id108" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Twitter: Login was broken due to change at in URLs at Twitter,
fixed.</li>
<li>LinkedIn: Added support for passing along the OAuth scope.</li>
<li>account: Improved e-mail confirmation error handling, no more
confusing 404s.</li>
<li>account: Aldiantoro Nugroho contributed support for a new
setting: ACCOUNT_USERNAME_MIN_LENGTH</li>
<li>socialaccount: Added preliminary support for Mozilla Persona.</li>
<li>account: Sam Solomon added various signals for email and
password related changes.</li>
<li>account: Usernames may now contain &#64;, +, . and - characters.</li>
</ul>
</div>
<div class="section" id="id109">
<h3>Backwards incompatible changes<a class="headerlink" href="#id109" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Dropped support for <code class="docutils literal"><span class="pre">CONTACT_EMAIL</span></code> from the <code class="docutils literal"><span class="pre">account</span></code> template
context processor. It was never documented and only used in the
templates as an example – there is no need to pollute the <code class="docutils literal"><span class="pre">allauth</span></code>
settings with that. If your templates rely on it then you will have
to put it in a context processor yourself.</li>
</ul>
</div>
</div>
<div class="section" id="id110">
<h2>0.8.1 (2012-09-03)<a class="headerlink" href="#id110" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id111">
<h3>Note worthy changes<a class="headerlink" href="#id111" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Python 2.6.2 compatibility issue, fixed.</li>
<li>The example project was unintentionally packaged, fixed.</li>
</ul>
</div>
<div class="section" id="id112">
<h3>Backwards incompatible changes<a class="headerlink" href="#id112" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id113">
<h2>0.8.0 (2012-09-01)<a class="headerlink" href="#id113" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id114">
<h3>Note worthy changes<a class="headerlink" href="#id114" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>account: Dropped dependency on the emailconfirmation app,
integrating its functionality into the account app. This change is
of major impact, please refer to the documentation on how to
upgrade.</li>
<li>account: Documented ACCOUNT_USERNAME_REQUIRED. This is actually
not a new setting, but it somehow got overlooked in the
documentation.</li>
<li>account/socialaccount: Dropped the _tags postfix from the
template tag libraries. Simply use {% load account %} and {% load
socialaccount %}.</li>
<li>Added signup and social login signals.</li>
<li>SoundCloud: Rabi Alam contributed a SoundCloud provider, thanks!</li>
<li>account: Sam Solomon cleaned up the e-mail management view:
added proper redirect after POSTs, prevent deletion of primary
e-mail. Thanks.</li>
<li>account: When signing up, instead of generating a completely
random username a more sensible username is automatically derived
from first/last name or e-mail.</li>
</ul>
</div>
<div class="section" id="id115">
<h3>Backwards incompatible changes<a class="headerlink" href="#id115" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li><code class="docutils literal"><span class="pre">allauth</span></code> now depends on Django 1.4 or higher.</li>
<li>Major impact: dropped dependency on the <code class="docutils literal"><span class="pre">emailconfirmation</span></code> app, as
this project is clearly left unmaintained. Important tickets such
as <a class="reference external" href="https://github.com/pinax/django-email-confirmation/pull/5">https://github.com/pinax/django-email-confirmation/pull/5</a> are not
being addressed. All models and related functionality have been
directly integrated into the <code class="docutils literal"><span class="pre">allauth.account</span></code> app. When upgrading
take care of the following:<ul>
<li>The <code class="docutils literal"><span class="pre">emailconfirmation</span></code> setting <code class="docutils literal"><span class="pre">EMAIL_CONFIRMATION_DAYS</span></code> has been
replaced by <code class="docutils literal"><span class="pre">ACCOUNT_EMAIL_CONFIRMATION_EXPIRE_DAYS</span></code>.</li>
<li>Instead of directly confirming the e-mail address upon the GET
request the confirmation is now processed as part of an explicit
POST. Therefore, a new template <code class="docutils literal"><span class="pre">account/email_confirm.html</span></code> must
be setup.</li>
<li>Existing <code class="docutils literal"><span class="pre">emailconfirmation</span></code> data should be migrated to the new
tables. For this purpose a special management command is
available: <code class="docutils literal"><span class="pre">python</span> <span class="pre">manage.py</span>
<span class="pre">account_emailconfirmationmigration</span></code>. This command does not drop
the old <code class="docutils literal"><span class="pre">emailconfirmation</span></code> tables – you will have to do this
manually yourself. Why not use South? EmailAddress uniqueness
depends on the configuration (<code class="docutils literal"><span class="pre">ACCOUNT_UNIQUE_EMAIL</span></code>), South does
not handle settings dependent database models.</li>
</ul>
</li>
<li><code class="docutils literal"><span class="pre">{%</span> <span class="pre">load</span> <span class="pre">account_tags</span> <span class="pre">%}</span></code> is deprecated, simply use: <code class="docutils literal"><span class="pre">{%</span> <span class="pre">load</span> <span class="pre">account</span> <span class="pre">%}</span></code></li>
<li><code class="docutils literal"><span class="pre">{%</span> <span class="pre">load</span> <span class="pre">socialaccount_tags</span> <span class="pre">%}</span></code> is deprecated, simply use:
<code class="docutils literal"><span class="pre">{%</span> <span class="pre">load</span> <span class="pre">socialaccount</span> <span class="pre">%}</span></code></li>
</ul>
</div>
</div>
<div class="section" id="id116">
<h2>0.7.0 (2012-07-18)<a class="headerlink" href="#id116" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id117">
<h3>Note worthy changes<a class="headerlink" href="#id117" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Facebook: Facundo Gaich contributed support for dynamically
deriving the Facebook locale from the Django locale, thanks!.</li>
<li>OAuth: All OAuth/OAuth2 tokens are now consistently stored
across the board. Cleaned up OAuth flow removing superfluous
redirect.</li>
<li>Facebook: Dropped Facebook SDK dependency.</li>
<li>socialaccount: DRY focused refactoring of social login.</li>
<li>socialaccount: Added support for Google OAuth2 and Facebook
OAuth2. Fixed GitHub.</li>
<li>account: Added verified_email_required decorator.</li>
<li>socialaccount: When signing up, user.first/last_name where
always taken from the provider signup data, even when a custom
signup form was in place that offered user inputs for editting
these fields. Fixed.</li>
</ul>
</div>
<div class="section" id="id118">
<h3>Backwards incompatible changes<a class="headerlink" href="#id118" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id119">
<h2>0.6.0 (2012-06-20)<a class="headerlink" href="#id119" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id120">
<h3>Note worthy changes<a class="headerlink" href="#id120" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>account: Added ACCOUNT_USER_DISPLAY to render a user name
without making assumptions on how the user is represented.</li>
<li>allauth, socialaccount: Removed the last remaining bits of
hardcodedness with respect to the enabled social authentication
providers.</li>
<li>account: Added ACCOUNT_AUTHENTICATION_METHOD setting, supporting
login by username, e-mail or both.</li>
</ul>
</div>
<div class="section" id="id121">
<h3>Backwards incompatible changes<a class="headerlink" href="#id121" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The <code class="docutils literal"><span class="pre">ACCOUNT_EMAIL_AUTHENTICATION</span></code> setting has been dropped in favor
of <code class="docutils literal"><span class="pre">ACCOUNT_AUTHENTICATION_METHOD</span></code>.</li>
<li>The login form field is now always named <code class="docutils literal"><span class="pre">login</span></code>. This used to by
either <code class="docutils literal"><span class="pre">username</span></code> or <code class="docutils literal"><span class="pre">email</span></code>, depending on the authentication
method. If needed, update your templates accordingly.</li>
<li>The <code class="docutils literal"><span class="pre">allauth</span></code> template tags (containing template tags for
OpenID, Twitter and Facebook) have been removed. Use the
<code class="docutils literal"><span class="pre">socialaccount</span></code> template tags instead (specifically: <code class="docutils literal"><span class="pre">{%</span> <span class="pre">provider_login_url</span>
<span class="pre">...</span> <span class="pre">%}</span></code>).</li>
<li>The <code class="docutils literal"><span class="pre">allauth.context_processors.allauth</span></code> context processor has been
removed, in favor of
<code class="docutils literal"><span class="pre">allauth.socialaccount.context_processors.socialaccount</span></code>. In doing
so, all hardcodedness with respect to providers (e.g
<code class="docutils literal"><span class="pre">allauth.facebook_enabled</span></code>) has been removed.</li>
</ul>
</div>
</div>
<div class="section" id="id122">
<h2>0.5.0 (2012-06-08)<a class="headerlink" href="#id122" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id123">
<h3>Note worthy changes<a class="headerlink" href="#id123" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>account: Added setting ACCOUNT_PASSWORD_MIN_LENGTH for
specifying the minimum password length.</li>
<li>socialaccount: Added generic OAuth2 support. Added GitHub
support as proof of concept.</li>
<li>socialaccount: More refactoring: generic provider &amp; OAuth
consumer approach. Added LinkedIn support to test this approach.</li>
<li>socialaccount: Introduced generic models for storing social
apps, accounts and tokens in a central and consistent manner,
making way for adding support for more account providers. Note:
there is more refactoring to be done – this first step only
focuses on the database models.</li>
<li>account: E-mail confirmation mails are now automatically resent
whenever a user attempts to login with an unverified e-mail
address (if ACCOUNT_EMAIL_VERIFICATION=True).</li>
</ul>
</div>
<div class="section" id="id124">
<h3>Backwards incompatible changes<a class="headerlink" href="#id124" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>Upgrade your <code class="docutils literal"><span class="pre">settings.INSTALLED_APPS</span></code>: Replace <code class="docutils literal"><span class="pre">allauth.&lt;provider&gt;</span></code>
(where provider is one of <code class="docutils literal"><span class="pre">twitter</span></code>, <code class="docutils literal"><span class="pre">facebook</span></code> or <code class="docutils literal"><span class="pre">openid</span></code>) with
<code class="docutils literal"><span class="pre">allauth.socialaccount.providers.&lt;provider&gt;</span></code></li>
<li>All provider related models (<code class="docutils literal"><span class="pre">FacebookAccount</span></code>, <code class="docutils literal"><span class="pre">FacebookApp</span></code>,
<code class="docutils literal"><span class="pre">TwitterAccount</span></code>, <code class="docutils literal"><span class="pre">TwitterApp</span></code>, <code class="docutils literal"><span class="pre">OpenIDAccount</span></code>) have been unified
into generic <code class="docutils literal"><span class="pre">SocialApp</span></code> and <code class="docutils literal"><span class="pre">SocialAccount</span></code> models. South migrations
are in place to move the data over to the new models, after which
the original tables are dropped. Therefore, be sure to run migrate
using South.</li>
</ul>
</div>
</div>
<div class="section" id="id125">
<h2>0.4.0 (2012-03-25)<a class="headerlink" href="#id125" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id126">
<h3>Note worthy changes<a class="headerlink" href="#id126" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>account: The render_value parameter of all PasswordInput fields
used can now be configured via a setting.</li>
<li>account: Added support for prefixing the subject of sent emails.</li>
<li>account: Added support for a plugging in a custom signup form
used for additional questions to ask during signup.</li>
<li>account: <code class="docutils literal"><span class="pre">is_active</span></code> is no longer used to keep users with an
unverified e-mail address from loging in.</li>
<li>Dropping uniform dependency. Moved uniform templates into
example project.</li>
</ul>
</div>
<div class="section" id="id127">
<h3>Backwards incompatible changes<a class="headerlink" href="#id127" title="Permalink to this headline">¶</a></h3>
<p>None</p>
</div>
</div>
<div class="section" id="id128">
<h2>0.3.0 (2012-01-19)<a class="headerlink" href="#id128" title="Permalink to this headline">¶</a></h2>
<div class="section" id="id129">
<h3>Note worthy changes<a class="headerlink" href="#id129" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>The e-mail authentication backend now attempts to use the
‘username’ parameter as an e-mail address. This is needed to
properly integrate with other apps invoking authenticate.</li>
<li>SmileyChris contributed support for automatically generating a
user name at signup when <code class="docutils literal"><span class="pre">ACCOUNT_USERNAME_REQUIRED</span></code> is set to
False.</li>
<li>Vuong Nguyen contributed support for (optionally) asking for the
password just once during signup
(<code class="docutils literal"><span class="pre">ACCOUNT_SIGNUP_PASSWORD_VERIFICATION</span></code>).</li>
<li>The Twitter oauth sequence now respects the “oauth_callback”
parameter instead of defaulting to the callback URL
configured at Twitter.</li>
<li>Pass along <code class="docutils literal"><span class="pre">?next=</span></code> parameter between login and signup views.</li>
<li>Added Dutch translation.</li>
<li>Added template tags for pointing to social login URLs. These
tags automatically pass along any <code class="docutils literal"><span class="pre">?next=</span></code>
parameter. Additionally, added an overall allauth_tags that
gracefully degrades when e.g. allauth.facebook is not installed.</li>
<li>Pass along next URL, if any, at <code class="docutils literal"><span class="pre">/accounts/social/signup/</span></code>.</li>
<li>Duplicate email address handling could throw a
MultipleObjectsReturned exception, fixed.</li>
<li>Removed separate social account login view, in favour of having
a single unified login view including both forms of login.</li>
<li>Added support for passing along a next URL parameter to
Facebook, OpenID logins.</li>
<li>Added support for django-avatar, copying the Twitter profile
image locally on signup.</li>
<li><code class="docutils literal"><span class="pre">allauth/account/forms.py</span></code> (<code class="docutils literal"><span class="pre">BaseSignupForm.clean_email</span></code>): With
<code class="docutils literal"><span class="pre">ACCOUNT_EMAIL_REQUIRED=False</span></code>, empty email addresses were
considered duplicates. Fixed.</li>
<li>The existing migrations for allauth.openid were not compatible
with MySQL due to the use of an URLField with max_length above
255. The issue has now been addressed but unfortunately at the
cost of the existing migrations for this app. Existing
installations will have to be dealt with manually (altering the
“identity” column of OpenIDAccount, deleting ghost migrations).</li>
</ul>
</div>
<div class="section" id="id130">
<h3>Backwards incompatible changes<a class="headerlink" href="#id130" title="Permalink to this headline">¶</a></h3>
<ul class="simple">
<li>None</li>
</ul>
</div>
</div>
</div>


          </div>
        </div>
      </div>
      <div class="sphinxsidebar" role="navigation" aria-label="main navigation">
        <div class="sphinxsidebarwrapper">
  <h3><a href="index.html">Table Of Contents</a></h3>
  <ul>
<li><a class="reference internal" href="#">Release Notes</a><ul>
<li><a class="reference internal" href="#id1">0.35.0 (2017-02-02)</a><ul>
<li><a class="reference internal" href="#security-notice">Security notice</a></li>
<li><a class="reference internal" href="#note-worthy-changes">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id2">0.34.0 (2017-10-29)</a><ul>
<li><a class="reference internal" href="#id3">Security notice</a></li>
<li><a class="reference internal" href="#id4">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id5">0.33.0 (2017-08-20)</a><ul>
<li><a class="reference internal" href="#id6">Note worthy changes</a></li>
<li><a class="reference internal" href="#backwards-incompatible-changes">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id7">0.32.0 (2017-04-27)</a><ul>
<li><a class="reference internal" href="#id8">Note worthy changes</a></li>
<li><a class="reference internal" href="#id9">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id10">0.31.0 (2017-02-28)</a><ul>
<li><a class="reference internal" href="#id11">Note worthy changes</a></li>
<li><a class="reference internal" href="#id12">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id13">0.30.0 (2017-01-01)</a><ul>
<li><a class="reference internal" href="#id14">Note worthy changes</a></li>
<li><a class="reference internal" href="#id15">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id16">0.29.0 (2016-11-21)</a><ul>
<li><a class="reference internal" href="#id17">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id18">0.28.0 (2016-10-13)</a><ul>
<li><a class="reference internal" href="#id19">Security notice</a></li>
<li><a class="reference internal" href="#id20">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id21">0.27.0 (2016-08-18)</a><ul>
<li><a class="reference internal" href="#id22">Note worthy changes</a></li>
<li><a class="reference internal" href="#id23">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id24">0.26.1 (2016-07-25)</a><ul>
<li><a class="reference internal" href="#id25">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id26">0.26.0 (2016-07-24)</a><ul>
<li><a class="reference internal" href="#id27">Note worthy changes</a></li>
<li><a class="reference internal" href="#id28">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id29">0.25.2 (2016-03-13)</a><ul>
<li><a class="reference internal" href="#id30">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id31">0.25.1 (2016-03-13)</a><ul>
<li><a class="reference internal" href="#id32">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id33">0.25.0 (2016-03-12)</a><ul>
<li><a class="reference internal" href="#id34">Note worthy changes</a></li>
<li><a class="reference internal" href="#id35">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id36">0.24.1 (2015-11-09)</a><ul>
<li><a class="reference internal" href="#id37">Note worthy changes</a></li>
<li><a class="reference internal" href="#id38">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id39">0.24.0 (2015-11-08)</a><ul>
<li><a class="reference internal" href="#id40">Note worthy changes</a></li>
<li><a class="reference internal" href="#id41">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id42">0.23.0 (2015-08-02)</a><ul>
<li><a class="reference internal" href="#id43">Note worthy changes</a></li>
<li><a class="reference internal" href="#id44">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id45">0.22.0 (2015-07-23)</a><ul>
<li><a class="reference internal" href="#id46">Note worthy changes</a></li>
<li><a class="reference internal" href="#id47">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id48">0.21.0 (2015-07-02)</a><ul>
<li><a class="reference internal" href="#id49">Note worthy changes</a></li>
<li><a class="reference internal" href="#id50">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id51">0.20.0 (2015-05-25)</a><ul>
<li><a class="reference internal" href="#id52">Note worthy changes</a></li>
<li><a class="reference internal" href="#id53">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id54">0.19.1 (2015-02-05)</a><ul>
<li><a class="reference internal" href="#id55">Note worthy changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id56">0.19.0 (2015-01-04)</a><ul>
<li><a class="reference internal" href="#id57">Note worthy changes</a></li>
<li><a class="reference internal" href="#id58">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id59">0.18.0 (2014-08-12)</a><ul>
<li><a class="reference internal" href="#id60">Note worthy changes</a></li>
<li><a class="reference internal" href="#id61">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id62">0.17.0 (2014-06-16)</a><ul>
<li><a class="reference internal" href="#id63">Note worthy changes</a></li>
<li><a class="reference internal" href="#id64">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id65">0.16.1 (2014-03-12)</a><ul>
<li><a class="reference internal" href="#id66">Note worthy changes</a></li>
<li><a class="reference internal" href="#id67">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id68">0.16.0 (2014-03-10)</a><ul>
<li><a class="reference internal" href="#id69">Note worthy changes</a></li>
<li><a class="reference internal" href="#id70">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id71">0.15.0 (2013-12-01)</a><ul>
<li><a class="reference internal" href="#id72">Note worthy changes</a></li>
<li><a class="reference internal" href="#id73">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id74">0.14.2 (2013-11-16)</a><ul>
<li><a class="reference internal" href="#id75">Note worthy changes</a></li>
<li><a class="reference internal" href="#id76">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id77">0.14.1 (2013-10-28)</a><ul>
<li><a class="reference internal" href="#id78">Note worthy changes</a></li>
<li><a class="reference internal" href="#id79">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id80">0.14.0 (2013-10-28)</a><ul>
<li><a class="reference internal" href="#id81">Note worthy changes</a></li>
<li><a class="reference internal" href="#id82">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id83">0.13.0 (2013-08-31)</a><ul>
<li><a class="reference internal" href="#id84">Note worthy changes</a></li>
<li><a class="reference internal" href="#id85">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id86">0.12.0 (2013-07-01)</a><ul>
<li><a class="reference internal" href="#id87">Note worthy changes</a></li>
<li><a class="reference internal" href="#id88">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id89">0.11.1 (2013-06-04)</a><ul>
<li><a class="reference internal" href="#id90">Note worthy changes</a></li>
<li><a class="reference internal" href="#id91">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id92">0.11.0 (2013-06-02)</a><ul>
<li><a class="reference internal" href="#id93">Note worthy changes</a></li>
<li><a class="reference internal" href="#id94">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id95">0.10.1 (2013-04-16)</a><ul>
<li><a class="reference internal" href="#id96">Note worthy changes</a></li>
<li><a class="reference internal" href="#id97">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id98">0.10.0 (2013-04-12)</a><ul>
<li><a class="reference internal" href="#id99">Note worthy changes</a></li>
<li><a class="reference internal" href="#id100">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id101">0.9.0 (2013-01-30)</a><ul>
<li><a class="reference internal" href="#id102">Note worthy changes</a></li>
<li><a class="reference internal" href="#id103">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id104">0.8.3 (2012-12-06)</a><ul>
<li><a class="reference internal" href="#id105">Note worthy changes</a></li>
<li><a class="reference internal" href="#id106">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id107">0.8.2 (2012-10-10)</a><ul>
<li><a class="reference internal" href="#id108">Note worthy changes</a></li>
<li><a class="reference internal" href="#id109">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id110">0.8.1 (2012-09-03)</a><ul>
<li><a class="reference internal" href="#id111">Note worthy changes</a></li>
<li><a class="reference internal" href="#id112">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id113">0.8.0 (2012-09-01)</a><ul>
<li><a class="reference internal" href="#id114">Note worthy changes</a></li>
<li><a class="reference internal" href="#id115">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id116">0.7.0 (2012-07-18)</a><ul>
<li><a class="reference internal" href="#id117">Note worthy changes</a></li>
<li><a class="reference internal" href="#id118">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id119">0.6.0 (2012-06-20)</a><ul>
<li><a class="reference internal" href="#id120">Note worthy changes</a></li>
<li><a class="reference internal" href="#id121">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id122">0.5.0 (2012-06-08)</a><ul>
<li><a class="reference internal" href="#id123">Note worthy changes</a></li>
<li><a class="reference internal" href="#id124">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id125">0.4.0 (2012-03-25)</a><ul>
<li><a class="reference internal" href="#id126">Note worthy changes</a></li>
<li><a class="reference internal" href="#id127">Backwards incompatible changes</a></li>
</ul>
</li>
<li><a class="reference internal" href="#id128">0.3.0 (2012-01-19)</a><ul>
<li><a class="reference internal" href="#id129">Note worthy changes</a></li>
<li><a class="reference internal" href="#id130">Backwards incompatible changes</a></li>
</ul>
</li>
</ul>
</li>
</ul>

  <h4>Previous topic</h4>
  <p class="topless"><a href="faq.html"
                        title="previous chapter">Frequently Asked Questions</a></p>
  <h4>Next topic</h4>
  <p class="topless"><a href="support.html"
                        title="next chapter">Commercial Support</a></p>
  <div role="note" aria-label="source link">
    <h3>This Page</h3>
    <ul class="this-page-menu">
      <li><a href="_sources/release-notes.rst.txt"
            rel="nofollow">Show Source</a></li>
    </ul>
   </div>
<div id="searchbox" style="display: none" role="search">
  <h3>Quick search</h3>
    <form class="search" action="search.html" method="get">
      <div><input type="text" name="q" /></div>
      <div><input type="submit" value="Go" /></div>
      <input type="hidden" name="check_keywords" value="yes" />
      <input type="hidden" name="area" value="default" />
    </form>
</div>
<script type="text/javascript">$('#searchbox').show(0);</script>
        </div>
      </div>
      <div class="clearer"></div>
    </div>
    <div class="related" role="navigation" aria-label="related navigation">
      <h3>Navigation</h3>
      <ul>
        <li class="right" style="margin-right: 10px">
          <a href="genindex.html" title="General Index"
             >index</a></li>
        <li class="right" >
          <a href="support.html" title="Commercial Support"
             >next</a> |</li>
        <li class="right" >
          <a href="faq.html" title="Frequently Asked Questions"
             >previous</a> |</li>
        <li class="nav-item nav-item-0"><a href="index.html">django-allauth 0.32.0 documentation</a> &#187;</li> 
      </ul>
    </div>
    <div class="footer" role="contentinfo">
        &#169; Copyright 2018, Raymond Penners.
      Created using <a href="http://sphinx-doc.org/">Sphinx</a> 1.6.6.
    </div>
  </body>
</html>