News
django-allauth 0.56.1 released
Posted by Raymond Penners on 2023-09-08
Security notice ImmediateHttpResponse exceptions were not handled properly when raised inside adapter.pre_login(). If you relied on aborting the login using this mechanism, that would not work. Most notably, django-allauth-2fa uses this approach, resulting in 2FA not being triggered.
django-allauth 0.56.0 released
Posted by Raymond Penners on 2023-09-07
Note worthy changes Added builtin support for Two-Factor Authentication via the allauth.mfa app. The fact that request is not available globally has left its mark on the code over the years. Some functions get explicitly passed a request, some do not, and some constructs have it available both as a parameter and as self.
Read moredjango-allauth 0.55.2 released
Posted by Raymond Penners on 2023-08-30
Fixes Email confirmation: An attribute error could occur when following invalid email confirmation links.
django-allauth 0.55.1 released
Posted by Raymond Penners on 2023-08-30
Fixes SAML: the lookup of the app (SocialApp) was working correctly for apps configured via the settings, but failed when the app was configured via the Django admin. Keycloak: fixed reversal of the callback URL, which was reversed using "openid_connect_callback" instead of "keycloak_callback".
Read moredjango-allauth 0.55.0 released
Posted by Raymond Penners on 2023-08-22
Note worthy changes Introduced a new setting ACCOUNT_PASSWORD_RESET_TOKEN_GENERATOR that allows you to specify the token generator for password resets. Dropped support for Django 2.x and 3.0. Officially support Django 4.2. New providers: Miro, Questrade It is now possible to manage OpenID Connect providers via the Django admin.
Read more