django-allauth 0.44.0 released
Posted by Raymond Penners on 2020-11-25
Security notice
In previous versions, the mechanism to prevent too many failed login attempts (ACCOUNT_LOGIN_ATTEMPTS_LIMIT) could be bypassed by changing the casing of the login.
Backwards incompatible changes
- The certificate key part of the SOCIALACCOUNT_PROVIDERS configuration has been renamed to certificate_key. This is done to prevent the key from being displayed without being masked in Django debug pages.
Next: django-allauth 0.45.0 released Previous: django-allauth 0.43.0 released