python/python-requests
SHA256
14
0
Fork 0
forked from pool/python-requests
Code Pull Requests Activity
Files
a8abd1de39249718b19002bcbb5e5fd802eedfffdba2577dd556d77c61c5663b
python-requests/python-requests.changes
Markéta Machová a8abd1de39 Accepting request 1175866 from home:mcalabkova:branches:devel:languages:python 
- Update to 2.32.2
  * To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, 
    we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing 
    custom HTTPAdapters will need to migrate their code to use this new API. get_connection is 
    considered deprecated in all versions of Requests>=2.32.0.

OBS-URL: https://build.opensuse.org/request/show/1175866
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-requests?expand=0&rev=183
2024-05-22 14:11:59 +00:00

1651 lines
67 KiB
Plaintext
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

-------------------------------------------------------------------
Wed May 22 14:00:50 UTC 2024 - Markéta Machová <mmachova@suse.com>
- Update to 2.32.2
* To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0,
we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing
custom HTTPAdapters will need to migrate their code to use this new API. get_connection is
considered deprecated in all versions of Requests>=2.32.0.
-------------------------------------------------------------------
Tue May 21 12:33:41 UTC 2024 - Markéta Machová <mmachova@suse.com>
- Update to 2.32.1
* Fixed an issue where setting verify=False on the first request from a Session
will cause subsequent requests to the same origin to also ignore cert verification,
regardless of the value of verify. (bsc#1224788, CVE-2024-35195)
* verify=True now reuses a global SSLContext which should improve request time
variance between first and subsequent requests.
* Requests now supports optional use of character detection (chardet or charset_normalizer)
when repackaged or vendored. This enables pip and other projects to minimize their
vendoring surface area.
* Requests has officially added support for CPython 3.12 and dropped support for CPython 3.7.
* Starting in Requests 2.33.0, Requests will migrate to a PEP 517 build system using hatchling.
-------------------------------------------------------------------
Mon Sep 11 20:41:40 UTC 2023 - Dirk Müller <dmueller@suse.com>
- switch from unmaintained brotlipy to Brotli (same as urllib3)
-------------------------------------------------------------------
Mon Jun 12 12:02:29 UTC 2023 - Daniel Garcia <daniel.garcia@suse.com>
- Delete requests-no-hardcoded-version.patch
- Security Update to 2.31.0 (bsc#1211674):
Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential
forwarding of Proxy-Authorization headers to destination servers when
following HTTPS redirects.
When proxies are defined with user info (https://user:pass@proxy:8080), Requests
will construct a Proxy-Authorization header that is attached to the request to
authenticate with the proxy.
In cases where Requests receives a redirect response, it previously reattached
the Proxy-Authorization header incorrectly, resulting in the value being
sent through the tunneled connection to the destination server. Users who rely on
defining their proxy credentials in the URL are strongly encouraged to upgrade
to Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy
credentials once the change has been fully deployed.
Users who do not use a proxy or do not supply their proxy credentials through
the user information portion of their proxy URL are not subject to this
vulnerability.
Full details can be read in our Github Security Advisory
and CVE-2023-32681.
-------------------------------------------------------------------
Fri May 5 12:03:42 UTC 2023 - Johannes Kastl <kastl@b1-systems.de>
- add sle15_python_module_pythons
-------------------------------------------------------------------
Thu May 4 01:49:01 UTC 2023 - Steve Kowalik <steven.kowalik@suse.com>
- Update to 2.30.0:
* Added support for urllib3 2.0.
* Defer chunked requests to the urllib3 implementation to improve
standardization.
* Relax header component requirements to support bytes/str subclasses.
-------------------------------------------------------------------
Thu Feb 16 17:03:23 UTC 2023 - David Anes <david.anes@suse.com>
- Don't upper limit version of charset_normalized at runtime, too.
* Added change to patch: requests-no-hardcoded-version.patch
-------------------------------------------------------------------
Sat Jan 21 10:01:11 UTC 2023 - Dirk Müller <dmueller@suse.com>
- update to 2.28.2:
- Requests now supports charset\_normalizer 3.x.
- Updated MissingSchema exception to suggest https scheme rather than http.
- drop requests-allow-charset-normalizer-3.patch (upstream)
-------------------------------------------------------------------
Mon Oct 31 07:43:29 UTC 2022 - David Anes <david.anes@suse.com>
- allow using newest version of charset-normalizer (3.0+)
* requests-allow-charset-normalizer-3.patch
-------------------------------------------------------------------
Thu Sep 29 14:01:56 UTC 2022 - Dirk Müller <dmueller@suse.com>
- requires python 3.7 or newer
-------------------------------------------------------------------
Wed Jun 29 19:11:41 UTC 2022 - Michael Ströder <michael@stroeder.com>
- rebased requests-no-hardcoded-version.patch
- update to 2.28.1
* 2.28.1 (2022-06-29)
- Improvements
+ Speed optimization in iter_content with transition to yield from. (#6170)
- Dependencies
+ Added support for chardet 5.0.0 (#6179)
+ Added support for charset-normalizer 2.1.0 (#6169)
* 2.28.0 (2022-06-09)
- Deprecations
+ warning Requests has officially dropped support for Python 2.7. warning (#6091)
+ Requests has officially dropped support for Python 3.6 (including pypy3.6). (#6091)
- Improvements
+ Wrap JSON parsing issues in Request's JSONDecodeError for payloads
without an encoding to make json() API consistent. (#6097)
+ Parse header components consistently, raising an InvalidHeader error in all invalid cases. (#6154)
+ Added provisional 3.11 support with current beta build. (#6155)
+ Requests got a makeover and we decided to paint it black. (#6095)
- Bugfixes
+ Fixed bug where setting CURL_CA_BUNDLE to an empty string would disable
cert verification. All Requests 2.x versions before 2.28.0 are affected. (#6074)
+ Fixed urllib3 exception leak, wrapping urllib3.exceptions.SSLError with
requests.exceptions.SSLError for content and iter_content. (#6057)
+ Fixed issue where invalid Windows registry entires caused proxy resolution
to raise an exception rather than ignoring the entry. (#6149)
+ Fixed issue where entire payload could be included in the error
message for JSONDecodeError. (#6036)
-------------------------------------------------------------------
Wed Jan 5 17:09:11 UTC 2022 - Michael Ströder <michael@stroeder.com>
- update to 2.27.1
* Fixed parsing issue that resulted in the auth component being
dropped from proxy URLs. (#6028)
-------------------------------------------------------------------
Tue Jan 4 16:20:04 UTC 2022 - Dirk Müller <dmueller@suse.com>
- update to 2.27.0:
* Officially added support for Python 3.10. (#5928)
* Added a `requests.exceptions.JSONDecodeError` to unify JSON exceptions between
Python 2 and 3. This gets raised in the `response.json()` method, and is
backwards compatible as it inherits from previously thrown exceptions.
Can be caught from `requests.exceptions.RequestException` as well. (#5856)
* Improved error text for misnamed `InvalidSchema` and `MissingSchema`
exceptions. This is a temporary fix until exceptions can be renamed
(Schema->Scheme). (#6017)
* Improved proxy parsing for proxy URLs missing a scheme. This will address
recent changes to `urlparse` in Python 3.9+. (#5917)
* Fixed defect in `extract_zipped_paths` which could result in an infinite loop
for some paths. (#5851)
* Fixed handling for `AttributeError` when calculating length of files obtained
by `Tarfile.extractfile()`. (#5239)
* Fixed urllib3 exception leak, wrapping `urllib3.exceptions.InvalidHeader` with
`requests.exceptions.InvalidHeader`. (#5914)
* Fixed bug where two Host headers were sent for chunked requests. (#5391)
* Fixed regression in Requests 2.26.0 where `Proxy-Authorization` was
incorrectly stripped from all requests sent with `Session.send`. (#5924)
* Fixed performance regression in 2.26.0 for hosts with a large number of
proxies available in the environment. (#5924)
* Fixed idna exception leak, wrapping `UnicodeError` with
`requests.exceptions.InvalidURL` for URLs with a leading dot (.) in the
domain. (#5414)
* Requests support for Python 2.7 and 3.6 will be ending in 2022. While we
don't have exact dates, Requests 2.27.x is likely to be the last release
series providing support.
-------------------------------------------------------------------
Thu Oct 28 06:55:31 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>
- Correct {Build,}Requires for charset_normalizer.
- Add trustme to BuildRequires for the test suite.
-------------------------------------------------------------------
Tue Oct 26 21:08:01 UTC 2021 - Dirk Müller <dmueller@suse.com>
- update to 2.26.0:
- `Session.send` now correctly resolves proxy configurations from both
the Session and Request. Behavior now matches `Session.request`. (#5681)
- Fixed a race condition in zip extraction when using Requests in parallel
from zip archive. (#5707)
- Instead of `chardet`, use the MIT-licensed `charset_normalizer` for Python3
to remove license ambiguity for projects bundling requests.
- Requests now supports `idna` 3.x on Python 3. `idna` 2.x will continue to
be used on Python 2 installations. (#5711)
- The `requests[security]` extra has been converted to a no-op install.
PyOpenSSL is no longer the recommended secure option for Requests. (#5867)
- Requests has officially dropped support for Python 3.5. (#5867)
- drop 5711.patch: upstream
-------------------------------------------------------------------
Thu Jul 1 06:28:57 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>
- Skip test_pyopenssl_redirect due to gh#psf/requests#5846
-------------------------------------------------------------------
Thu Feb 4 10:32:14 UTC 2021 - Dirk Müller <dmueller@suse.com>
- add 5711.patch from upstream instead to remove idna<3 pin
-------------------------------------------------------------------
Wed Feb 3 14:04:52 UTC 2021 - Ben Greiner <code@bnavigator.de>
- Don't pin idna<3 in the egg-info so that depending packages
can install the new idna dropping python2
-------------------------------------------------------------------
Sat Dec 19 09:57:04 UTC 2020 - Dirk Mueller <dmueller@suse.com>
- update to 2.25.1:
- Requests now treats `application/json` as `utf8` by default. Resolving
inconsistencies between `r.text` and `r.json` output. (#5673)
-------------------------------------------------------------------
Thu Nov 26 12:37:34 UTC 2020 - Dirk Mueller <dmueller@suse.com>
- update to 2.25.0:
* Added support for NETRC environment variable. (#5643)
* Requests now supports urllib3 v1.26.
* Requests v2.25.x will be the last release series with support for Python 3.5.
- refreshed requests-no-hardcoded-version.patch
-------------------------------------------------------------------
Thu Jul 23 18:47:44 UTC 2020 - Sebastian Wagner <sebix+novell.com@sebix.at>
- remove patch pr_5251-pytest5.patch, not needed anymore.
- update to version 2.24.0:
- pyOpenSSL TLS implementation is now only used if Python
either doesn't have an `ssl` module or doesn't support
SNI. Previously pyOpenSSL was unconditionally used if available.
This applies even if pyOpenSSL is installed via the
`requests[security]` extra (#5443)
- Redirect resolution should now only occur when
`allow_redirects` is True. (#5492)
- No longer perform unnecessary Content-Length calculation for
requests that won't use it. (#5496)
-------------------------------------------------------------------
Mon Feb 24 15:19:16 UTC 2020 - Ondřej Súkup <mimi.vx@gmail.com>
- update to 2.23.0
- dropped merged_pr_5049.patch
- refreshed requests-no-hardcoded-version.patch
* Remove defunct reference to prefetch in Session __attrs__
* Requests no longer outputs password in basic auth usage warning
-------------------------------------------------------------------
Sat Dec 14 22:48:50 UTC 2019 - Stefan Brüns <stefan.bruens@rwth-aachen.de>
- Remove python-urllib3, python-certifi and ca-certificates from
main package BuildRequires, not required for building.
- Do not require full python, (implicit) python-base is sufficient.
-------------------------------------------------------------------
Fri Nov 1 07:57:29 UTC 2019 - John Vandenberg <jayvdb@gmail.com>
- Add two patches only updating test logic to remove pytest 3 pin
- merged_pr_5049.patch
- pr_5251-pytest5.patch
-------------------------------------------------------------------
Mon Jul 22 07:57:59 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Hardcode pytest 3.x series as upstream even in git does not work
with newer versions (they pinned the release)
-------------------------------------------------------------------
Sat May 25 08:41:20 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Update to 2.22.0:
* Requests now supports urllib3 v1.25.2. (note: 1.25.0 and 1.25.1 are incompatible)
- Rebase requests-no-hardcoded-version.patch
-------------------------------------------------------------------
Tue Apr 23 10:45:08 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Do not hardcode version requirements in setup.py allowing us to
update and verify functionality on our own:
* requests-no-hardcoded-version.patch
-------------------------------------------------------------------
Mon Feb 25 15:45:08 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Skip one more test that is flaky
-------------------------------------------------------------------
Fri Feb 15 11:41:05 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
- Do not depend on python-py
- Update few of the requirements
-------------------------------------------------------------------
Tue Feb 5 13:17:10 UTC 2019 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
- update to version 2.21.0:
* Requests now supports idna v2.8.
-------------------------------------------------------------------
Wed Jan 9 22:42:33 UTC 2019 - Jonathan Brownell <jbrownell@suse.com>
- Support older Red Hat platforms that don't offer "Recommends:"
-------------------------------------------------------------------
Mon Dec 31 12:24:10 CET 2018 - mcepl@suse.com
- Move name ahead of version in spec file to resolve build issues
on older distributions
- fdupe more thoroughly.
-------------------------------------------------------------------
Fri Nov 23 21:34:10 UTC 2018 - Arun Persaud <arun@gmx.de>
- update to version 2.20.1:
* Bugfixes
+ Fixed bug with unintended Authorization header stripping for
redirects using default ports (http/80, https/443).
-------------------------------------------------------------------
Tue Oct 30 09:20:26 UTC 2018 - Jan Engelhardt <jengelh@inai.de>
- Ensure neutrality of descriptions.
-------------------------------------------------------------------
Sat Oct 20 15:39:32 UTC 2018 - Arun Persaud <arun@gmx.de>
- specfile:
* remove devel for noarch
* remove restriction for urllib3 < 1.24
* HISTORY and README changed from .rst to .md
- update to version 2.20.0 bsc#1111622:
* Bugfixes
+ Content-Type header parsing is now case-insensitive
(e.g. charset=utf8 v Charset=utf8).
+ Fixed exception leak where certain redirect urls would raise
uncaught urllib3 exceptions.
+ Requests removes Authorization header from requests redirected
from https to http on the same hostname. (CVE-2018-18074)
+ should_bypass_proxies now handles URIs without hostnames
(e.g. files).
* Dependencies
+ Requests now supports urllib3 v1.24.
* Deprecations
+ Requests has officially stopped support for Python 2.6.
-------------------------------------------------------------------
Thu Jul 19 10:27:24 UTC 2018 - mimi.vx@gmail.com
- -test subpackage must be empty
-------------------------------------------------------------------
Mon Jul 16 00:09:54 UTC 2018 - mimi.vx@gmail.com
- make multibuild package to resolve circular deps on tests
-------------------------------------------------------------------
Mon Jul 2 00:43:03 UTC 2018 - stefan.bruens@rwth-aachen.de
- update to version 2.19.1:
* Fixed issue where status_codes.pys init function failed trying
to append to a __doc__ value of None.
- update to version 2.19.0:
* Improvements
+ Warn about possible slowdown with cryptography version < 1.3.4
+ Check host in proxy URL, before forwarding request to adapter.
+ Maintain fragments properly across redirects. (RFC7231 7.1.2)
+ Removed use of cgi module to expedite library load time.
+ Added support for SHA-256 and SHA-512 digest auth algorithms.
+ Minor performance improvement to Request.content.
+ Migrate to using collections.abc for 3.7 compatibility.
* Bugfixes
+ Parsing empty Link headers with parse_header_links() no longer
return one bogus entry.
+ Fixed issue where loading the default certificate bundle from
a zip archive would raise an IOError.
+ Fixed issue with unexpected ImportError on windows system
which do not support winreg module.
+ DNS resolution in proxy bypass no longer includes the username
and password in the request. This also fixes the issue of DNS
queries failing on macOS.
+ Properly normalize adapter prefixes for url comparison.
+ Passing None as a file pointer to the files param no longer
raises an exception.
+ Calling copy on a RequestsCookieJar will now preserve the
cookie policy correctly.
* We now support idna v2.7 and urllib3 v1.23.
- Properly set idna/urllib3 dependency versions, runtime and buildtime
- Spec cleanup, remove conditionals for ancient distro versions
- Remove duplicates with fdupes
-------------------------------------------------------------------
Wed Mar 7 14:37:27 UTC 2018 - aplanas@suse.com
- Allows Recommends and Suggest in Fedora
-------------------------------------------------------------------
Tue Feb 27 18:08:32 UTC 2018 - aplanas@suse.com
- Recommends only for SUSE
- In no SUSE evironments some tests related with certificates can
fail. Skip the tests if this case.
-------------------------------------------------------------------
Sun Sep 24 21:48:31 UTC 2017 - arun@gmx.de
- update to version 2.18.4:
* Improvements
+ Error messages for invalid headers now include the header name
for easier debugging
* Dependencies
+ We now support idna v2.6.
- changes from version 2.18.3:
* Improvements
+ Running $ python -m requests.help now includes the installed
version of idna.
* Bugfixes
+ Fixed issue where Requests would raise ConnectionError instead
of SSLError when encountering SSL problems when using urllib3
v1.22.
-------------------------------------------------------------------
Tue Aug 8 06:51:52 UTC 2017 - tbechtold@suse.com
- update to version v2.18.2
* Add requirements.txt to MANIFEST.in
* test ssl version check functions as expected in python 2.6
* no more stickers
* fix OPENSSL_VERSION_NUMBER check on Python2.6's ssl module
* Setup HISTORY for next release
* Use 'prefix' instead of 'key' in session docstring
* Allow urllib3 1.22
* v2.18.2
* stickers
* redundant comma
-------------------------------------------------------------------
Mon Jul 3 11:36:40 UTC 2017 - tbechtold@suse.com
update to version v2.18.1
* 2.17.1
* Fix a typo: verison -> version
* fix
* Prepare v2.18.0
* Update requirements.txt
* cleanup models.py
* Preserve identity of unbundled deps
* ignore undefined names in flake8
* flake8 ignore lambda expressions
* Add the pytest .cache/ directory to .gitignore
* docutils
* try junit
* new installation location
* cleanup utils.py
* flake8report.txt
* empty commit
* no more pipenv
* Begin dev section of README
* Remove exec permission from files that shouldn't have it
* change development philosophy docs to reflect reality
* fix manifest file
* only flake8 the right directory
* update development documentation
* Remove session redirect cache
* no piping to a file
* Catch error if multiprocessing is not available or is unable to determine the number of CPUs
* todo
* cleanup sessions.py
* typo
* number of cores for travis
* ignore import statements for flake8
* Update README.rst
* better ci file
* bunk change
* that doesn't work on windows
* improve development instructions
* Fix a typo: paramters -> parameters
* Adds changelog entry for #4134
* ignore line continuations for flake8
* Allow Requests.Response to be used as a context manager
* Fix requests.packages not having package attributes
* remove note about cacerts.pem
* v2.17.3
* improve install documentation syntax
* improve installation instructions
* flake8: import statement improvements
* fix spaces in api.py
* v2.18.1
* skip for now
* v2.17.2
* fix flake8 for EOF in __init__.py
* improve flake8 help.py
* Prepare for next release cycle
* try this travis file
* remove "are you crazy?" section
* fix sidebars
* Update index.rst
* fix empty lines for flake8
* convert version compatibility checks to warning
* fix github stars
* v2.17.1
* improve line continuations for flake8
* attempt new ads
* speed up appveyor
* v2.17.0
* improve installation docs
* fix flake8 indent error
* Adds to AUTHORS
* Clearer makefile for building README
* flake8
* Fixes error swallowing in set_environ
* cleanup help.py (flake8)
* improve install docs
* new requests namespace
-------------------------------------------------------------------
Sat Jun 10 08:40:50 UTC 2017 - dmueller@suse.com
- update to 2.16.5:
* unvendored bundled libraries
* for more changes, see https://pypi.python.org/pypi/requests
- drop no-default-cacert.patch: this is now in python-certifi
- drop requests-do-not-use-bundle.patch: obsolete
-------------------------------------------------------------------
Fri May 5 22:43:27 UTC 2017 - jengelh@inai.de
- Ensure neutrality of description.
-------------------------------------------------------------------
Tue May 2 07:03:13 UTC 2017 - alarrosa@suse.com
- The following two entries should have been added to the previous
changelog entry.
- Drop urllib3-ssl-default-context.patch
- Add requests-do-not-use-bundle.patch
-------------------------------------------------------------------
Tue Mar 14 14:37:56 UTC 2017 - jmatejek@suse.com
- update for multipython build
- synchronize with python 3 version
* drop urllib3-ssl-default-context.patch
* add requests-do-not-use-bundle.patch
- debundle urllib3 and chardet
- enable test suite
-------------------------------------------------------------------
Mon Mar 6 15:09:56 UTC 2017 - jweberhofer@weberhofer.at
- fixed dependencies in spec
- update to version 2.13.0
* Only load the idna library when weve determined we need it.
This will save some memory for users.
* Updated bundled urllib3 to 1.20.
* Updated bundled idna to 2.2.
- update to version 2.12.5
* Fixed an issue with JSON encoding detection, specifically detecting
big-endian UTF-32 with BOM.
-------------------------------------------------------------------
Wed Dec 28 08:46:15 UTC 2016 - tbechtold@suse.com
update to version v2.12.4
* Python 2 compatibility
* adding tests for super_len conditional flow
* Check in updated idna.
* Test case for requests getting stuck on post redirect with seekable stream
* v2.12.2
* added new test, original test restored
* Make Response.content return None if raw is None
* adding unicode_is_ascii utility function
* Update sidebarlogo.html
* Fixed another scheme proxy over "all" priority
* Add changelog for 1.19.1
* changed behavior of basic-http-auth test
* correct backtick formatting
* Note @jeremycline is now our contact.
* Order of type check
* Add prepared request pickling tests
* adding comment
* Add deprecation warnings for 3.0
* clarify that the `chunk_size` is optional when streaming to a file
* adding ISO-8859-1 fallback for reason decoding
* fixed some error
* pysocks 1.5.7 blacklisting, due to IPv6 problems
* Fix tests for new urllib3 exception text.
* make add_dict_to_cookiejar cookielib.CookieJar compatible
* correct module for cookiejar_from_dict in docs
* converting update call to merge_cookies call for cookielib compatibility
* streaming doc clarification
* removing redundant logic from prepare_content_length
* Update certifi certs to 2016.09.26
* Specify self.cert is used for SSL client certificates
* Fix how we test fallback to latin-1 reason encoding
* adding method to url tests
* Enable UTS46 mode.
* Adding 'import requests' to readme code snippet. (#3700)
* Add Documentation for custom methods
* adding passthrough in close() for non-urllib3-like Responses
* remove extra import
* Test chunked upload doesn't set content length
* Change setuptools extra for new secure extra.
* fix issue when the file-like object raises an IOError with tell
* Added myself to AUTHORS
* Changelog entry for better IDNA.
* updated tests with IDNA encoded and IPv6 urls
* documentation line added for consistency with the post method
* Fall back to streaming
* added unicode auth test
* updates authors
* spelling fix for release-process
* Revert "Adding 'import requests' to readme code snippet."
* Document that Response.json() may raise ValueError
* Amplifies the timeout warning in the docs.
* Revert "Restrict URL preparation to HTTP/HTTPS"
* Update README.rst
* Further complicate the makefile to rewrite imports
* Unable unicode in basic http auth
* Various packaging requirements for idna
* Fixed: httpbin doesn't support bytes
* reverting 3357 and comparing properly encoded strings
* Fixed issue #3696. Added a test for it as well.
* fixed: httpbin with unicode auth
* Remove error swallowing exception catching of AttributeError
* Update sidebarintro.html
* removing use of seek to set total_length
* Update urllib3 to 1.19
* Use IDNA2008 to encode hosts.
* Formatted the example to fix the color highlighting
* Add tests to verify that correct 'Content-Length' or 'Transfer-Encoding' headers are being set in PreparedRequest.
* [httpAdapter] allow empty password in proxy credentials
* Fixed bug to give scheme proxy priority over "all"
* adding decoding requirement for Python 3
* fixes broken link on documentation page
* Basic tests for internationalized domain names.
* Update Comments & Magic Strings
* Change module of internal references to to_native_str()
* Add pickle test with hooks
* update 307 tests to check body content
* requests.post checked data parameters for type like dict.
* test different CookieJar types for add_dict_to_cookiejar
* Restrict URL preparation to HTTP/HTTPS
* Indicate shell command in README is code-like.
* documentation on encoding fallback for streaming
* Fixed readme typo - 'site' should be 'domain'
* Rework Bytestring Host Test to use PyTest Httpbin
* Add makefile to get latest idna release.
* Tests for our URL handling.
* Add test for request when Host header is bytestring
* Move to_native_string to _internal_utils.py to avoid circular dependency
* Add workaround to avoid implicit import of encodings.idna.
* minor doc string cleanup
* little modification in consume_socket_content
* links
* Update bundled urllib3 to 1.19.1
* Changes to documentation based on comments and correction of list of authors.
* Add license for idna package.
* Add line to AUTHORS
* Adjust patch to utilize requests utility functions
* test _body_position and rewind_body
* Seems like we're missing a backport here.
* new logo :D
* add socket tests for 401 redirect and 401 failure
* Adding notes about Request's timeout behavior.
* fixed usage unicode string
* unicode test for _basic_auth_str
* Let's use capitals.
* adding string casting for non-bytes values
* Add patch to avoid bytestring/str hodgepodge
* Vendor idna v2.1
* Clarify allow_redirects
* v2.12.3
* v2.12.0
* v2.12.1
* v2.12.4
* modifying IDNA encoding check to allow fallback
* Use seek from end rather than getvalue
* updating pickling tests for PreparedRequest
* We only ship tagged releases now.
* Make Response.content() return None if status_code is None
* Just lstrip instead of strip because trailing whitespace already works.
* adding rewind for re-POST bodies
* Add persistent examples
- update urllib3 requirement to 1.19.1
- add idna requirement, refresh unbundling patch
-------------------------------------------------------------------
Thu Sep 1 07:53:20 UTC 2016 - tbechtold@suse.com
update to version v2.11.1
* Update urllib3 to 1.16
* Close and then release the connection
* Added tests for should_bypass_proxies function
* Update documentation of Session.max_redirects
* Document bunch of return types
* Update HISTORY.rst
* Cleaning up comment on JSON encoding to be more strictly relevant.
* Oh yeah, we updated urllib3 too.
* Fixing test; it was accomplishing the right thing, but doing it in the wrong way.
* compensate for lack of taste
* Use xfail marker for a test expected to fail without Internet connection
* in python3.x not have StringIO
* Spelling fixes
* adding in slice_length fix and test for chunk_size=None (#3370)
* Support responses like `HTTP/1.1 404 Unicode chars` (#3385)
* Document header ordering. (#3295)
* Add section on SOCKS proxies.
* Update list of supported Python versions in todo.rst
* removing Content-Type and Transfer-Encoding headers on redirect
* check and test for headers containing return characters or leading whitespace
* Clarify Python versions supported by requests
* Allow graceful interruption of testserver.Server
* reverting 3362
* fixed date formatting
* Make BaseAdapter describe the mandatory adapter interface (#3216)
* Note how HTTPErrors are raised
* Removing charset from JSON content type; tightening requirements on .encode()
* Add 'all' proxy selection to select_proxy
* Fix TypeError when get json-encoded content of a response
* wildly inaccurate button results in deletion
* v2.11.1
* v2.11.0
* Prepare changelog for 2.11.1.
* Allow None value for chunk_size again (#3368)
* updating documentation to reflect decision of #3386
* added in type check for chunk_size
* Update a note on AppEngine
* Remove duplicate import warnings
* adding asserted_encoding check on None type encoding to match text() behavior (#3362)
* Encoding JSON requests to bytes for urllib3 to handle; ensuring same with testing.
* docs updates
* Changelog for 2.11
* Update README.rst
* Use iter instead of noop list comprehension
* Test security warnings (#3289)
* Combined tests to one tests for should_bypass_proxies method
* Update index.rst
* Replace tab with appropriate spaces.
* Support ALL_PROXY environment variable
* Add a bit about RequestsCookieJar to Cookies section
* making module docstrings and coding comments consistent
* docs: Add a note about SSL c_rehash
* updating docstring to match functionality
* fix grammer mistakes in Quickstart
* consider plain ip notation of an ip in no_proxy if not in cidr notation
* Defining header value type requirements and tests
* removing redundant test
* updating HISTORY
* adding in pep8 fixes
* building Response manually
* making class and function docstrings consistent
-------------------------------------------------------------------
Wed May 18 08:04:41 UTC 2016 - dmueller@suse.com
- update to 2.10.1:
* SOCKS Proxy Support! (requires PySocks; $ pip install requests[socks])
* Updated bundled urllib3 to 1.15.1.
* Change built-in CaseInsensitiveDict (used for headers) to use OrderedDict
as its underlying datastore.
* Don't use redirect_cache if allow_redirects=False
* When passed objects that throw exceptions from ``tell()``, send them via
chunked transfer encoding instead of failing.
* Raise a ProxyError for proxy related connection issues.
-------------------------------------------------------------------
Tue Mar 1 17:44:11 UTC 2016 - jmatejek@suse.com
- update no-default-cacert.patch to simply pass empty CA path
- urllib3-ssl-default-context.patch: patch bundled urllib3 to behave
correctly with regard to empty CA path passed
- change urllib3 fallback requirements to Recommends
- use ca-certificates in SLE as well
- recommend ca-certificates-mozilla to have a basic certificate set
-------------------------------------------------------------------
Wed Feb 17 14:47:12 UTC 2016 - sor.alexei@meowr.ru
- Update to 2.9.1 (changes since 2.8.1):
* The verify keyword argument now supports being passed a path to
a directory of CA certificates, not just a single-file bundle.
* Warnings are now emitted when sending files opened in text mode.
* Added the 511 Network Authentication Required status code to the
status code registry.
* For file-like objects that are not seeked to the very beginning,
we now send the content length for the number of bytes we will
actually read, rather than the total size of the file, allowing
partial file uploads.
* When uploading file-like objects, if they are empty or have no
obvious content length we set Transfer-Encoding: chunked rather
than Content-Length: 0.
* We correctly receive the response in buffered mode when
uploading chunked bodies.
* We now handle being passed a query string as a bytestring on
Python 3, by decoding it as UTF-8.
* Sessions are now closed in all cases (exceptional and not) when
using the functional API rather than leaking and waiting for
the garbage collector to clean them up.
* Correctly handle digest auth headers with a malformed qop
directive that contains no token, by treating it the same as if
no qop directive was provided at all.
* Minor performance improvements when removing specific cookies
by name.
* Fix errors when calculating cookie expiration dates in certain
locales.
* Update bundled urllib3 to 1.13.1.
- Rebase no-default-cacert.patch.
- Modify no-default-cacert.patch: output /etc/ssl/ca-bundle.pem
instead of neither NULL nor /etc/ssl/certs/ as a path to cacerts
bundle (boo#967128).
- Don't apply no-default-cacert.patch on SLE.
- Require ca-certificates package (but not on SLE).
- Tests are being improperly started and actual ones require
network connection, so fix and comment out.
-------------------------------------------------------------------
Thu Dec 17 13:45:59 UTC 2015 - rjschwei@suse.com
- Modify no-default-cacert
+ The call to set_default_verify_paths() is not necessary. The openSUSE
and SLES Python has been patched to always use the system certs.
Additionally this call breaks the use of python-requests on older systems,
openSUSE_13.2 and original release of SLES 12 which fall back to
the built in implementation of ssl which doe not implement
this method
-------------------------------------------------------------------
Wed Oct 21 21:08:29 UTC 2015 - dmueller@suse.com
- update to 2.8.1:
- Update certificate bundle to match ``certifi`` 2015.9.6.2's weak certificate
bundle.
- Fix a bug in 2.8.0 where requests would raise ``ConnectTimeout`` instead of
``ConnectionError``
- When using the PreparedRequest flow, requests will now correctly respect the
``json`` parameter. Broken in 2.8.0.
- When using the PreparedRequest flow, requests will now correctly handle a
Unicode-string method name on Python 2. Broken in 2.8.0.
-------------------------------------------------------------------
Wed Oct 21 20:49:30 UTC 2015 - dmueller@suse.com
- remove requests-do-not-use-bundle.patch (bsc#947357)
-------------------------------------------------------------------
Wed Oct 21 08:00:52 UTC 2015 - dmueller@suse.com
- fix requires
-------------------------------------------------------------------
Wed Oct 14 19:24:43 UTC 2015 - sor.alexei@meowr.ru
- Add python3-chardet to build requirements for tests.
- Remove no-default-cacert-sles.patch as no-default-cacert.patch
does basically the same.
-------------------------------------------------------------------
Fri Oct 9 19:11:09 UTC 2015 - sor.alexei@meowr.ru
- Update to 2.8.0:
* Requests now supports per-host proxies. This allows the proxies
dictionary to have entries of the form {'<scheme>://<hostname>':
'<proxy>'}. Host-specific proxies will be used in preference to
the previously-supported scheme-specific ones, but the previous
syntax will continue to work.
* Response.raise_for_status now prints the URL that failed as
part of the exception message.
* requests.utils.get_netrc_auth now takes an raise_errors kwarg,
defaulting to False. When True, errors parsing .netrc files
cause exceptions to be thrown.
* Change to bundled projects import logic to make it easier to
unbundle requests downstream.
* Change the default User-Agent string to avoid leaking data on
Linux: now contains only the requests version.
* The json parameter to post() and friends will now only be used
if neither data nor files are present, consistent with the
documentation.
* We now ignore empty fields in the NO_PROXY enviroment variable.
* Fix problem where httplib.BadStatusLine would get raised if
combining stream=True with contextlib.closing.
* Prevent bugs where we would attempt to return the same connection
back to the connection pool twice when sending a Chunked body.
* Miscellaneous minor internal changes.
* Digest Auth support is now thread safe.
- Apply no-default-cacert-sles.patch on SLE 12.
- Apply Arun Persaud's changes to requests-do-not-use-bundle.patch
(update to 2.8.0).
- Enable tests.
- Small spec cleanup.
-------------------------------------------------------------------
Tue Oct 6 17:48:20 UTC 2015 - aloisio@gmx.com
- Fixed requests-do-not-use-bundle.patch
-------------------------------------------------------------------
Mon Oct 5 17:18:43 UTC 2015 - p.drouand@gmail.com
- Unbundle python-chardet and python-urllib3 (boo#947357)
requests-do-not-use-bundle.patch
-------------------------------------------------------------------
Mon Sep 14 07:48:30 UTC 2015 - tbechtold@suse.com
- Disable testsuite. Tests were never executed (bsc#945455) but
enabling the testsuite doesn't work because the suite needs
network access.
-------------------------------------------------------------------
Fri Jul 24 14:45:44 UTC 2015 - seife+obs@b1-systems.com
- fix version condition to allow RHEL/CentOS 7 builds
-------------------------------------------------------------------
Fri Jul 24 08:52:50 UTC 2015 - hvogel@suse.com
- Update to 2.7.0
- resolving several bugs involving chunked transfer
encoding and response framing.
- Remove VendorAlias import
- Simplify the PreparedRequest.prepare API
- Handle UnicodeDecodeErrors
- Copy a PreparedRequest's CookieJar more reliably
-------------------------------------------------------------------
Tue Jun 30 08:39:24 UTC 2015 - lnussel@suse.de
- update no-default-cacert.patch to not hardcode a ca cert location
-------------------------------------------------------------------
Mon Apr 20 12:25:21 UTC 2015 - mcihar@suse.cz
- Update to 2.6.0 (bsc#922448, CVE-2015-2296):
- Fix handling of cookies on redirect. Previously a cookie without a host
value set would use the hostname for the redirected URL exposing requests
users to session fixation attacks and potentially cookie stealing. This was
disclosed privately by Matthew Daley of `BugFuzz <https://bugfuzz.com>`_.
An CVE identifier has not yet been assigned for this. This affects all
versions of requests from v2.1.0 to v2.5.3 (inclusive on both ends).
- Fix error when requests is an ``install_requires`` dependency and ``python
setup.py test`` is run. (#2462)
- Fix error when urllib3 is unbundled and requests continues to use the
vendored import location.
- Include fixes to ``urllib3``'s header handling.
- Requests' handling of unvendored dependencies is now more restrictive.
- Support bytearrays when passed as parameters in the ``files`` argument.
(#2468)
- Avoid data duplication when creating a request with ``str``, ``bytes``, or
``bytearray`` input to the ``files`` argument.
- Revert changes to our vendored certificate bundle. For more context see
(#2455, #2456, and http://bugs.python.org/issue23476)
-------------------------------------------------------------------
Tue Feb 24 13:04:17 UTC 2015 - tbechtold@suse.com
- update to 2.5.2 (bsc#929736):
* Update HISTORY and version for v2.5.2
* Update urllib3 to 29aa09bde9c42cc9a8d79aac47ee3d362b438cca
* document combination of repeated response headers
* Update README to use Shields badges
* Upgrade urllib3 to 490d3a227fadb626cd54a240b9d0922f849914b4
* Update certificate bundle.
* Update to use readthedocs.org instead of rtfd.org
* add a timeout value to connection_error_invalid_port test to accelerate
failure
* split test_connection_error into two distinct tests, and changed
"unknown url" test URL since fooobarbangbazbing.httpbin.org currently gives
a valid response.
* quickstart: using a list as a value in query params
* HISTORY: replace n-dash to workaround pip bug
* Check that a filename is a basestring instance
* Move noncebit to the only place it is used
* Remove entirely unnecessary and unused bits from requests.compat
* Attempt to quote anyway if unquoting fails
* Update urllib3 to a27758625e4169330fcf965652b1093faf5aaaa2
* drawn towards it rather than pushed away
* certifi
* simpler button
* cleanups
* Requests Pro
* javascripts
* Changing year in all copyright information
* Enhance documentation for clarity.
* Clean up cookie docs and display them.
* Bump version to 2.5.1
* Add release notes for 2.5.1
* Fix bug in renegotiating a nonce with the server
* Fix error handling on Python 3
* catch exception more specifically in Response.ok
* Uncommented test in test_requests.py
* Fix a typo in a comment
* Give proper attribution to pip
* utils.guess_filename fails if the given parameter looks like a file object
but has a non-string name attribute
* Copy pip's import machinery wholesale
* Updated the broken link to twitter streaming API documentation
* Enable GitHub syntax highlighting on README
* Bump version to 2.5.0
* Add updates for 2.5.0
* Update tests to work offline
* updatee chardet, urllib3
* url was already parsed, don't urlparse twice
* Properly serialize RecentlyUsedContainers for cache
* Changed ConnectionError to InvalidURL
* Docs: Add more section labels for referencing
* Partially addresses Issue #1572
* Update HTTPAdapter docstring
* Add last few changes and add a quick test
* Update urllib3 to df4ec5cce1
* Update how we handle retries to be consistent with documentation
* Fix HTTPDigestAuth not to treat non-file as a file
* Fixed.
* Added test for overriding Content-Length.
* Close sessions created in the functional API
* Pass strict to urllib3.
* Use to_native_string instead of builtin_str
* Update documentation about max_retries to reflect code
* Cap the redirect_cache size to prevent memory abuse
* Add DeprecationWarnings to inform users of plans
* Note about read timeout errors and max_retries
* fix failing test "test_prepare_unicode_url" \(take 3\)
* Revert "fix failing test "test_prepare_unicode_url""
* fix failing test "test_prepare_unicode_url"
* Revert "fix failing test "test_prepare_unicode_url""
* update AUTHORS
* fix failing test "test_prepare_unicode_url"
* Changing parameter name `newline` ==> `delimiter`.
* Clean up handle_redirect.
* Adding a custom line delimiter to iter_lines()
* Fix #2279. Update layout css
* Fix #2288. Change urllib3 and chardet workflow
* Update sidebarintro.html
* Made more better
* Add Release History to the sidebar
* Fixed #2250
* Update utils.py
* Clean up, support all redirects, fix potential endless 401 loop.
* v2.4.3
* Re-order params for backwards compat
* allow unicode URLs on Python 2
* requests v2.4.2
* fix documentation for utils.get_unicode_from_response() :)
* v2.4.2 changelog
* Remove timeout from __attrs__
* Fix a couple of issues I noticed
* Support bytestring URLs on Python 3.x
* A fix for #1979 repeat HTTP digest authentication after redirect.
* remove unused import
* fix #2247
* docs: Clarify how to pass a custom set of CAs
* Correct redirection introduction
* Avoid getting stuck in a loop
* make StreamConsumedError doubly inherit
* using the `StreamConsumedError`
* add-in StreamConsumedError
* rm `else` after `if` then `raise` block
* raise RuntimeError when a single streamed request calls *iter methods
than once
* Remove invoke from requirements.txt, docs
* Fixup the remaining references to timeline.json.
* Moved multiple files upload example to advanced section.
* Added example of how to send multiple files in one request.
* Document skipping in PreparedRequest; followup to #2222
* Add more tests to `test_invalid_url`
* lawl
* mils
* Fixes typo in test
* Changes check on base and json. Fails on tests.
* Adds review changes
* Adds json parameter for POST requests
-------------------------------------------------------------------
Mon Dec 1 12:05:19 UTC 2014 - dmueller@suse.com
- fix license (Apache-2.0 only)
-------------------------------------------------------------------
Thu Sep 11 12:34:42 UTC 2014 - toddrme2178@gmail.com
- Update to 2.4.1 (2014-09-09)
- Now has a "security" package extras set,
``$ pip install requests[security]``
- Requests will now use Certifi if it is available.
- Capture and re-raise urllib3 ProtocolError
- Bugfix for responses that attempt to redirect to themselves
forever (wtf?).
- Update to 2.4.0 (2014-08-29)
* Behavioral Changes
- ``Connection: keep-alive`` header is now sent automatically.
* Improvements
- Support for connect timeouts! Timeout now accepts a tuple
(connect, read) which is used to set individual connect and
read timeouts.
- Allow copying of PreparedRequests without headers/cookies.
- Updated bundled urllib3 version.
- Refactored settings loading from environment
new `Session.merge_environment_settings`.
- Handle socket errors in iter_content.
-------------------------------------------------------------------
Sat Jun 14 10:56:52 UTC 2014 - tchvatal@suse.com
- Update tarball to the one upstream is publishing.
-------------------------------------------------------------------
Thu Jun 5 19:40:21 UTC 2014 - rschweikert@suse.com
- Update to version 2.3.0
+ New ``Response`` property ``is_redirect``, which is true when the
library could have processed this response as a redirection (whether
or not it actually did).
+ The ``timeout`` parameter now affects requests with both ``stream=True``
and ``stream=False`` equally.
+ The change in v2.0.0 to mandate explicit proxy schemes has been reverted.
Proxy schemes now default to ``http://``.
+ The ``CaseInsensitiveDict`` used for HTTP headers now behaves like a normal
dictionary when references as string or viewd in the interpreter.
+ No longer expose Authorization or Proxy-Authorization headers on redirect.
Fix CVE-2014-1829 and CVE-2014-1830 respectively.
+ Authorization is re-evaluated each redirect.
+ On redirect, pass url as native strings.
+ Fall-back to autodetected encoding for JSON when Unicode detection fails.
+ Headers set to ``None`` on the ``Session`` are now correctly not sent.
+ Correctly honor ``decode_unicode`` even if it wasn't used earlier in the
same response.
+ Stop advertising ``compress`` as a supported Content-Encoding.
+ The ``Response.history`` parameter is now always a list.
+ Many, many ``urllib3`` bugfixes.- Fixes incorrect parsing of proxy
credentials that contain a literal or encoded '#' character.
+ Assorted urllib3 fixes.
+ New exception: ``ContentDecodingError``. Raised instead of ``urllib3``
``DecodeError`` exceptions.
+ Avoid many many exceptions from the buggy implementation of
``proxy_bypass`` on OS X in Python 2.6.
+ Avoid crashing when attempting to get authentication credentials
from ~/.netrc when running as a user without a home directory.
+ Use the correct pool size for pools of connections to proxies.
+ Fix iteration of ``CookieJar`` objects.
+ Ensure that cookies are persisted over redirect.
+ Switch back to using chardet, since it has merged with charade.
+ Cookies set on individual Requests through a ``Session``
(e.g. via ``Session.get()``) are no longer persisted to the ``Session``.
+ Clean up connections when we hit problems during chunked upload,
rather than leaking them.
+ Return connections to the pool when a chunked upload is successful,
rather than leaking it.
+ Match the HTTPbis recommendation for HTTP 301 redirects.
+ Prevent hanging when using streaming uploads and Digest Auth when a
401 is received.
+ Values of headers set by Requests are now always the native string type.
+ Fix previously broken SNI support.
+ Fix accessing HTTP proxies using proxy authentication.
+ Unencode HTTP Basic usernames and passwords extracted from URLs.
+ Support for IP address ranges for no_proxy environment variable
+ Parse headers correctly when users override the default ``Host:`` header.
+ Avoid munging the URL in case of case-sensitive servers.
+ Looser URL handling for non-HTTP/HTTPS urls.
+ Accept unicode methods in Python 2.6 and 2.7.
+ More resilient cookie handling.
+ Make ``Response`` objects pickleable.
+ Actually added MD5-sess to Digest Auth instead of pretending to like
last time.
+ Updated internal urllib3.
+ Fixed @Lukasa's lack of taste.
-------------------------------------------------------------------
Mon Dec 9 15:27:58 UTC 2013 - vuntz@suse.com
- Add no-default-cacert-sles.patch: use this patch when building
for SLES, since python in SLES and openSUSE behave differently
when it comes to SSL, and no-default-cacert.patch is wrong for
SLES.
-------------------------------------------------------------------
Thu Nov 7 10:07:58 UTC 2013 - mcihar@suse.cz
- update to 2.0.1
- changes in 2.0.1:
- Updated included CA Bundle with new mistrusts and automated process for the future
- Added MD5-sess to Digest Auth
- Accept per-file headers in multipart file POST messages.
- Fixed: Don't send the full URL on CONNECT messages.
- Fixed: Correctly lowercase a redirect scheme.
- Fixed: Cookies not persisted when set via functional API.
- Fixed: Translate urllib3 ProxyError into a requests ProxyError derived from ConnectionError.
- Updated internal urllib3 and chardet.
- changes in 2.0.0:
- Keys in the Headers dictionary are now native strings on all Python versions,
i.e. bytestrings on Python 2, unicode on Python 3.
- Proxy URLs now *must* have an explicit scheme. A ``MissingSchema`` exception
will be raised if they don't.
- Timeouts now apply to read time if ``Stream=False``.
- ``RequestException`` is now a subclass of ``IOError``, not ``RuntimeError``.
- Added new method to ``PreparedRequest`` objects: ``PreparedRequest.copy()``.
- Added new method to ``Session`` objects: ``Session.update_request()``. This
method updates a ``Request`` object with the data (e.g. cookies) stored on
the ``Session``.
- Added new method to ``Session`` objects: ``Session.prepare_request()``. This
method updates and prepares a ``Request`` object, and returns the
corresponding ``PreparedRequest`` object.
- Added new method to ``HTTPAdapter`` objects: ``HTTPAdapter.proxy_headers()``.
This should not be called directly, but improves the subclass interface.
- ``httplib.IncompleteRead`` exceptions caused by incorrect chunked encoding
will now raise a Requests ``ChunkedEncodingError`` instead.
- Invalid percent-escape sequences now cause a Requests ``InvalidURL``
exception to be raised.
- HTTP 208 no longer uses reason phrase ``"im_used"``. Correctly uses
``"already_reported"``.
- HTTP 226 reason added (``"im_used"``).
- Vastly improved proxy support, including the CONNECT verb. Special thanks to
the many contributors who worked towards this improvement.
- Cookies are now properly managed when 401 authentication responses are
received.
- Chunked encoding fixes.
- Support for mixed case schemes.
- Better handling of streaming downloads.
- Retrieve environment proxies from more locations.
-------------------------------------------------------------------
Thu Oct 24 11:13:26 UTC 2013 - speilicke@suse.com
- Require python-setuptools instead of distribute (upstreams merged)
-------------------------------------------------------------------
Thu Jul 25 11:40:02 UTC 2013 - vuntz@suse.com
- Add no-default-cacert.patch: completely ignore the internal CA
bundle and point to /etc/ssl/certs/. This works because we
patched python to do the right thing when a directory is used
there instead of a file.
- Manually remove requests/cacert.pem (better than doing that in
the patch, since it's big) too.
-------------------------------------------------------------------
Mon May 27 10:36:36 UTC 2013 - dmueller@suse.com
- update to 1.2.3:
* Python 3.3.2 compatibility
* Always percent-encode location headers
* Fix connection adapter matching to be most-specific first
* new argument to the default connection adapter for passing a block argument
* prevent a KeyError when there's no link headers
-------------------------------------------------------------------
Mon May 13 08:57:09 UTC 2013 - dmueller@suse.com
- update to 1.2.0:
* Fixed cookies on sessions and on requests
* Significantly change how hooks are dispatched - hooks now receive all the
arguments specified by the user when making a request so hooks can make a
secondary request with the same parameters. This is especially necessary for
authentication handler authors
* certifi support was removed
* Fixed bug where using OAuth 1 with body ``signature_type`` sent no data
* Major proxy work thanks to @Lukasa including parsing of proxy authentication
from the proxy url
* Fix DigestAuth handling too many 401s
* Update vendored urllib3 to include SSL bug fixes
* Allow keyword arguments to be passed to ``json.loads()`` via the
``Response.json()`` method
* Don't send ``Content-Length`` header by default on ``GET`` or ``HEAD``
requests
* Add ``elapsed`` attribute to ``Response`` objects to time how long a request
took.
* Fix ``RequestsCookieJar``
* Sessions and Adapters are now picklable, i.e., can be used with the
mutiprocessing library
Update charade to version 1.0.3
-------------------------------------------------------------------
Fri Jan 18 08:31:22 UTC 2013 - saschpe@suse.de
- Set license to "Apache-2.0 and LGPL-2.1+ and MIT", according to
https://github.com/kennethreitz/requests/issues/1111, the base
license is Apache-2.0 but requests ships two libraries (bnc#799119):
+ charade: LGPL-2.1+
+ urllib3: MIT
-------------------------------------------------------------------
Tue Jan 15 19:37:18 UTC 2013 - p.drouand@gmail.com
- Initial python3 support
-------------------------------------------------------------------
Tue Jan 15 19:34:53 UTC 2013 - p.drouand@gmail.com
- Update to version 1.1.0:
* CHUNKED REQUESTS
* Support for iterable response bodies
* Assume servers persist redirect params
* Allow explicit content types to be specified for file data
* Make merge_kwargs case-insensitive when looking up keys
-------------------------------------------------------------------
Tue Nov 13 22:04:33 UTC 2012 - jfunk@funktronics.ca
- Update to 0.14.2:
* Improved mime-compatible JSON handling
* Proxy fixes
* Path hack fixes
* Case-Insensistive Content-Encoding headers
* Support for CJK parameters in form posts
-------------------------------------------------------------------
Tue Oct 16 18:55:20 UTC 2012 - jfunk@funktronics.ca
- Update to 0.14.1:
* Python 3.3 Compatibility
* Simply default accept-encoding
* Bugfixes
- 0.14.0 (2012-09-02)
* No more iter_content errors if already downloaded.
- 0.13.9 (2012-08-25)
* Fix for OAuth + POSTs
* Remove exception eating from dispatch_hook
* General bugfixes
- 0.13.8 (2012-08-21)
* Incredible Link header support :)
- 0.13.7 (2012-08-19)
* Support for (key, value) lists everywhere.
* Digest Authentication improvements.
* Ensure proxy exclusions work properly.
* Clearer UnicodeError exceptions.
* Automatic casting of URLs to tsrings (fURL and such)
* Bugfixes.
- 0.13.6 (2012-08-06)
* Long awaited fix for hanging connections!
- 0.13.5 (2012-07-27)
* Packaging fix
- 0.13.4 (2012-07-27)
* GSSAPI/Kerberos authentication!
* App Engine 2.7 Fixes!
* Fix leaking connections (from urllib3 update)
* OAuthlib path hack fix
* OAuthlib URL parameters fix.
- 0.13.3 (2012-07-12)
* Use simplejson if available.
* Do not hide SSLErrors behind Timeouts.
* Fixed param handling with urls containing fragments.
* Significantly improved information in User Agent.
* client certificates are ignored when verify=False
- 0.13.2 (2012-06-28)
* Zero dependencies (once again)!
* New: Response.reason
* Sign querystring parameters in OAuth 1.0
* Client certificates no longer ignored when verify=False
* Add openSUSE certificate support
- Removed certificate patch since it's now upstream
- Removed dependencies that are no longer needed
-------------------------------------------------------------------
Wed May 30 09:11:50 UTC 2012 - saschpe@suse.de
- Update to 0.13.1:
+ Removal of Requests.async in favor of grequests
+ Allow disabling of cookie persistiance.
+ New implimentation of safe_mode
+ cookies.get now supports default argument
+ Session cookies not saved when Session.request is called with return_response=False
+ Env: no_proxy support.
+ RequestsCookieJar improvements.
+ Various bug fixes.
- Rebased patches
-------------------------------------------------------------------
Wed May 23 12:09:35 UTC 2012 - saschpe@suse.de
- Use a slightly different approach for bnc#761500, try to use /etc/ssl/certs
but use /etc/ssl/ca-bundle.pem as a fallback. The previous fix didn't work
for me as (my) Python ssl module doesn't support cert directories...
- No need to check SUSE versions for python-certifi, it only is/was
part of openSUSE:Factory for a brief period of time
-------------------------------------------------------------------
Sun May 20 17:44:57 UTC 2012 - jfunk@funktronics.ca
- Load directory-based cert store in openSUSE >= 12.2
-------------------------------------------------------------------
Fri May 18 00:41:52 UTC 2012 - jfunk@funktronics.ca
- Update to 0.12.1
* New Response.json property
* Ability to add string file uploads
* Fix out-of-range issue with iter_lines
* Fix iter_content default size
* Fix POST redirects containing files
- 0.12.0 (2012-05-02)
* EXPERIMENTAL OAUTH SUPPORT!
* Proper CookieJar-backed cookies interface with awesome dict-like interface.
* Speed fix for non-iterated content chunks.
* Move pre_request to a more usable place.
* New pre_send hook.
* Lazily encode data, params, files
* Load system Certificate Bundle if certify isn't available.
* Cleanups, fixes.
- Add python-chardet and python-oauthlib requirements
- Run test suite (added python-distribute build requirement to enable)
-------------------------------------------------------------------
Fri Apr 27 22:57:43 UTC 2012 - jfunk@funktronics.ca
- Update to 0.11.2
* Attempt to use the OS's certificate bundle if certifi isn't available.
* Infinite digest auth redirect fix
* Multi-part file upload improvements
* Fix decoding of invalid %encodings in URLs
* If there is no content in a response don't throw an error the second time
that content is attempted to be read.
* Upload data on redirects.
-------------------------------------------------------------------
Fri Apr 6 19:08:40 UTC 2012 - jfunk@funktronics.ca
- Update to 0.11.1:
* POST redirects now break RFC to do what browsers do: Follow up with a GET.
* New strict_mode configuration to disable new redirect behavior.
- 0.11.0 (2012-03-14)
* Private SSL Certificate support
* Remove select.poll from Gevent monkeypatching
* Remove redundant generator for chunked transfer encoding
* Fix: Response.ok raises Timeout Exception in safe_mode
-------------------------------------------------------------------
Sat Mar 10 14:11:23 UTC 2012 - saschpe@gmx.de
- Update to version 0.10.8:
* Generate chunked ValueError fix
* Proxy configuration by environment variables
* Simplification of iter_lines.
* New trust_env configuration for disabling system/environment hints.
* Suppress cookie errors.
- Changes from version 0.10.7:
* encode_uri = False
-------------------------------------------------------------------
Tue Feb 28 18:06:45 UTC 2012 - jfunk@funktronics.ca
- Update to 0.10.6
* Allow '=' in cookies.
- 0.10.5 (2012-02-25)
* Response body with 0 content-length fix.
* New async.imap.
* Don't fail on netrc.
-------------------------------------------------------------------
Tue Feb 21 19:52:04 UTC 2012 - jfunk@funktronics.ca
- Update to 0.10.4
* Honor netrc.
- 0.10.3 (2012-02-20)
* HEAD requests don't follow redirects anymore.
* raise_for_status() doesn't raise for 3xx anymore.
* Make Session objects picklable.
* ValueError for invalid schema URLs.
- 0.10.2 (2012-01-15)
* Vastly improved URL quoting.
* Additional allowed cookie key values.
* Attempted fix for "Too many open files" Error
* Replace unicode errors on first pass, no need for second pass.
* Append '/' to bare-domain urls before query insertion.
* Exceptions now inherit from RuntimeError.
* Binary uploads + auth fix.
* Bugfixes.
-------------------------------------------------------------------
Mon Feb 6 13:41:55 UTC 2012 - saschpe@suse.de
- Add dependency on python-certifi
-------------------------------------------------------------------
Tue Jan 24 21:31:14 UTC 2012 - jfunk@funktronics.ca
- Update to 0.10.1:
* PYTHON 3 SUPPORT!
* Dropped 2.5 Support. (Backwards Incompatible)
- 0.10.0 (2012-01-21)
* Response.content is now bytes-only. (Backwards Incompatible)
* New Response.text is unicode-only.
* If no Response.encoding is specified and chardet is available,
Respoonse.text will guess an encoding.
* Default to ISO-8859-1 (Western) encoding for "text" subtypes.
* Removal of decode_unicode. (Backwards Incompatible)
* New multiple-hooks system.
* New Response.register_hook for registering hooks within the pipeline.
* Response.url is now Unicode.
-------------------------------------------------------------------
Thu Jan 19 19:33:21 UTC 2012 - jfunk@funktronics.ca
- Update to 0.9.3:
* SSL verify=False bugfix (apparent on windows machines).
- 0.9.2 (2012-01-18)
* Asyncronous async.send method.
* Support for proper chunk streams with boundaries.
* session argument for Session classes.
* Print entire hook tracebacks, not just exception instance.
* Fix response.iter_lines from pending next line.
* Fix but in HTTP-digest auth w/ URI having query strings.
* Fix in Event Hooks section.
* Urllib3 update.
-------------------------------------------------------------------
Thu Jan 12 22:05:35 UTC 2012 - jfunk@funktronics.ca
- Update to 0.9.1:
* danger_mode for automatic Response.raise_for_status()
* Response.iter_lines refator
- 0.9.0 (2011-12-28)
* verify ssl is default.
- 0.8.9 (2011-12-28)
* Packaging fix.
- 0.8.8 (2011-12-28)
* SSL CERT VERIFICATION!
* Release of Cerifi: Mozilla's cert list.
* New 'verify' argument for SSL requests.
* Urllib3 update.
- 0.8.7 (2011-12-24)
* iter_lines last-line truncation fix
* Force safe_mode for async requests
* Handle safe_mode exceptions more consistently
* Fix iteration on null responses in safe_mode
- 0.8.6 (2011-12-18)
* Socket timeout fixes.
* Proxy Authorization support.
- 0.8.5 (2011-12-14)
* Response.iter_lines!
-------------------------------------------------------------------
Sun Dec 11 20:45:14 UTC 2011 - jfunk@funktronics.ca
- Update to 0.8.4:
* Prefetch bugfix.
* Added license to installed version.
-------------------------------------------------------------------
Sun Nov 27 20:38:47 UTC 2011 - jfunk@funktronics.ca
- Update to 0.8.3
* Converted auth system to use simpler callable objects.
* New session parameter to API methods.
* Display full URL while logging.
-------------------------------------------------------------------
Sun Nov 27 08:54:32 UTC 2011 - jfunk@funktronics.ca
- Update to 0.8.2
* New unicode decoding system, based on overridable Response.encoding.
* Proper URL slash-quote handling.
* Cookies with [, ], and _ allowed.
- 0.8.1 (2011-11-15)
* URL Request path fix
* Proxy fix.
* Timeouts fix.
- 0.8.0 (2011-11-13)
* Keep-alive support!
* Complete removal of Urllib2
* Complete removal of Poster
* Complete removal of CookieJars
* New ConnectionError raising
* Safe_mode for error catching
* prefetch parameter for request methods
* OPTION method
* Async pool size throttling
* File uploads send real names
- 0.7.6 (2011-11-07)
* Digest authentication bugfix (attach query data to path)
- 0.7.5 (2011-11-04)
* Response.content = None if there was an invalid repsonse.
* Redirection auth handling.
- 0.7.4 (2011-10-26)
* Sesion Hooks fix.
- 0.7.3 (2011-10-23)
* Digest Auth fix.
- 0.7.2 (2011-10-23)
* PATCH Fix.
- 0.7.1 (2011-10-23)
* Move away from urllib2 authentication handling.
* Fully Remove AuthManager, AuthObject, &c.
* New tuple-based auth system with handler callbacks.
- 0.7.0 (2011-10-22)
* Sessions are now the primary interface.
* Deprecated InvalidMethodException.
* PATCH fix.
* New config system (no more global settings).
- 0.6.6 (2011-10-19)
* Session parameter bugfix (params merging).
- 0.6.5 (2011-10-18)
* Offline (fast) test suite.
* Session dictionary argument merging.
- 0.6.4 (2011-10-13)
* Automatic decoding of unicode, based on HTTP Headers.
* New decode_unicode setting.
* Removal of r.read/close methods.
* New r.faw interface for advanced response usage.*
* Automatic expansion of parameterized headers.
- 0.6.3 (2011-10-13)
* Beautiful requests.async module, for making async requests w/ gevent.
- 0.6.2 (2011-10-09)
* GET/HEAD obeys allow_redirects=False.
-------------------------------------------------------------------
Fri Sep 23 12:08:32 UTC 2011 - saschpe@suse.de
- Update to version 0.6.1:
* Enhanced status codes experience ``\o/``
* Set a maximum number of redirects (``settings.max_redirects``)
* Full Unicode URL support
* Support for protocol-less redirects.
* Allow for arbitrary request types.
* Bugfixes
- Changes from version 0.6.0:
* New callback hook system
* New persistient sessions object and context manager
* Transparent Dict-cookie handling
* Status code reference object
* Removed Response.cached
* Added Response.request
* All args are kwargs
* Relative redirect support
* HTTPError handling improvements
* Improved https testing
* Bugfixes
-------------------------------------------------------------------
Wed Jun 22 17:18:17 UTC 2011 - jfunk@funktronics.ca
- Update to 0.5.0
- PATCH Support
- Support for Proxies
- HTTPBin Test Suite
- Redirect Fixes
- settings.verbose stream writing
- Querystrings for all methods
- URLErrors (Connection Refused, Timeout, Invalid URLs) are treated as
explicity raised r.requests.get('hwe://blah'); r.raise_for_status()
- 0.4.1 (2011-05-22)
- Improved Redirection Handling
- New 'allow_redirects' param for following non-GET/HEAD Redirects
- Settings module refactoring
-------------------------------------------------------------------
Fri May 20 19:11:29 UTC 2011 - jfunk@funktronics.ca
- Initial release
View Git Blame Copy Permalink