News
django-allauth 0.47.0 released
Posted by Raymond Penners on 2021-12-09
Note worthy changes New providers: Gumroad. Backwards incompatible changes Added a new setting SOCIALACCOUNT_LOGIN_ON_GET that controls whether or not the endpoints for initiating a social login (for example, "/accounts/google/login/") require a POST request to initiate the handshake. As requiring a POST is more secure, the default of this new setting is False.
Read moredjango-allauth 0.46.0 released
Posted by Raymond Penners on 2021-11-15
Note worthy changes New providers: Gitea, MediaWiki. New translations: Georgian, Mongolian. Django 3.2 compatibility.
django-allauth 0.45.0 released
Posted by Raymond Penners on 2021-07-11
Note worthy changes New providers: Feishu, NetIQ, Frontier, CILogin.
django-allauth 0.44.0 released
Posted by Raymond Penners on 2020-11-25
Security notice In previous versions, the mechanism to prevent too many failed login attempts (ACCOUNT_LOGIN_ATTEMPTS_LIMIT) could be bypassed by changing the casing of the login. Backwards incompatible changes The certificate key part of the SOCIALACCOUNT_PROVIDERS configuration has been renamed to certificate_key.
Read moredjango-allauth 0.43.0 released
Posted by Raymond Penners on 2020-10-15
Note worthy changes New translation: Slovenian. If ACCOUNT_LOGIN_ATTEMPTS_LIMIT is set and the user successfully resets their password, the timeout is cleared to allow immediate login. You can now limit the amount of email addresses a user can associate to his account by setting ACCOUNT_MAX_EMAIL_ADDRESSES.
Read more