Skip to content

Merge Develop into Master (v1.30)#2442

Draft
ObadaS wants to merge 10 commits into
masterfrom
develop
Draft

Merge Develop into Master (v1.30)#2442
ObadaS wants to merge 10 commits into
masterfrom
develop

Conversation

@ObadaS

@ObadaS ObadaS commented Jun 23, 2026
edited by Didayolo
Loading

Copy link
Copy Markdown
Collaborator

dconstancy and others added 9 commits June 17, 2026 12:28
@dconstancy
fix: allow organizers to hard-delete soft-deleted submissions
600c3c5 
Add a delete button visible to organizers on soft-deleted submissions,
and guard against None data in delete/soft_delete methods.
@pyxelr
Remove duplicate CommonMiddleware from MIDDLEWARE
a735bd9 
django.middleware.common.CommonMiddleware was listed twice in the MIDDLEWARE tuple.

Symptoms when the chain runs twice:

* For users whose django_session.session_data row cannot be verified by
  signing.loads (e.g. after a SECRET_KEY rotation), the second pass of
  CommonMiddleware.process_response runs against responses for which the
  session/messages state ends up half-initialised, surfacing as a generic
  500 page with no traceback on every 404 path, every APPEND_SLASH 301,
  and assets like /favicon.ico. With-slash URLs that match a real view
  return 200 because the corruption is silently swallowed (decode -> {}).
* Content-Length is computed twice on every response.

Removing the duplicate restores the standard middleware behaviour: a
corrupted session decodes to {} once, the user is treated as anonymous,
and 404/redirect responses are returned normally.
@wlln
refactor(login): sanitize failed login error message
ff89872 
prevents leaking the fact a user exists when entered password is invalid

Closes #2437
@ObadaS
Merge pull request #2441 from codalab/sanitize_login_failed_error_mes…
29943a7 
…sage

refactor(login): sanitize failed login error message
quick documentation fix
65f7f09
@ObadaS
Merge pull request #2444 from codalab/documentation_fix
7c1bb92 
Quick Documentation Fix
@Didayolo
Merge pull request #2422 from dconstancy/fix/quota-exclude-cancelled-…
445079e 
…submissions

fix: allow organizers to hard-delete soft-deleted submissions
@Didayolo
Merge pull request #2446 from codalab/delete-submissions
353f603 
fix: allow organizers to hard-delete soft-deleted submissions
@Didayolo
Merge pull request #2436 from pyxelr/fix/duplicate-common-middleware
60882f8 
Remove duplicate CommonMiddleware from MIDDLEWARE
@Didayolo Didayolo added the Release PR develop --> master label Jun 26, 2026
@Didayolo
Merge pull request #2449 from codalab/duplicate-common-middleware
ccc72ce 
Remove duplicate CommonMiddleware from MIDDLEWARE
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Release PR develop --> master

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@ObadaS @Didayolo @dconstancy @pyxelr @wlln