Merge pull request #11717 from edx/jeskew/django_upgrade_1_8_10

Going head with the bump to Django version 1.8.10 - hopefully, 1.8.11 will show up soon and we'll be able to remove this monkeypatch.

Merge pull request #11717 from edx/jeskew/django_upgrade_1_8_10
Going head with the bump to Django version 1.8.10 - hopefully, 1.8.11 will show up soon and we'll be able to remove this monkeypatch.
561950aa · John Eskew · 66ae31f5 · ccb07f1c · 561950aa · 561950aa
Commit 561950aa authored Mar 04, 2016 by John Eskew
Hide whitespace changes
Inline Side-by-side

Showing with 43 additions and 4 deletions

cms/startup.py
+6 -1

common/djangoapps/monkey_patch/django_utils_http_is_safe_url.py
+30 -0

lms/startup.py
+6 -2

requirements/edx/base.txt
+1 -1

No files found.
--- a/cms/startup.py
+++ b/cms/startup.py
@@ -9,7 +9,11 @@ settings.INSTALLED_APPS  # pylint: disable=pointless-statement

 from openedx.core.lib.django_startup import autostartup
 import django
-from monkey_patch import third_party_auth, django_db_models_options
+from monkey_patch import (
+    third_party_auth,
+    django_db_models_options,
+    django_utils_http_is_safe_url
+)

 import xmodule.x_module
 import cms.lib.xblock.runtime
@@ -23,6 +27,7 @@ def run():
    """
    third_party_auth.patch()
    django_db_models_options.patch()
+    django_utils_http_is_safe_url.patch()

    # Comprehensive theming needs to be set up before django startup,
    # because modifying django template paths after startup has no effect.

--- a/common/djangoapps/monkey_patch/django_utils_http_is_safe_url.py
+++ b/common/djangoapps/monkey_patch/django_utils_http_is_safe_url.py
+"""
+Monkey patch the is_safe_url method in django.utils.http for Django 1.8.10.
+In that release, the method crashes when a bytestring, non-unicode string is passed-in
+as the url.
+Remove the monkey patch when the bug is fixed in a Django 1.8 release. Here's the bug:
+https://code.djangoproject.com/ticket/26308
+"""
+
+from django.utils import http
+from django.utils.encoding import force_text
+
+
+def patch():
+    """
+    Monkey patch the django.utils.http.is_safe_url function to convert the incoming
+    url and host parameters to unicode.
+    """
+    def create_is_safe_url_wrapper(wrapped_func):
+        # pylint: disable=missing-docstring
+        def _wrap_is_safe_url(*args, **kwargs):
+            def _conv_text(value):
+                return None if value is None else force_text(value)
+            return wrapped_func(
+                # Converted *args.
+                *tuple(map(_conv_text, args)),
+                # Converted **kwargs.
+                **{key: _conv_text(value) for key, value in kwargs.items()}
+            )
+        return _wrap_is_safe_url
+    http.is_safe_url = create_is_safe_url_wrapper(http.is_safe_url)
--- a/lms/startup.py
+++ b/lms/startup.py
@@ -12,8 +12,11 @@ from openedx.core.lib.django_startup import autostartup
 import edxmako
 import logging
 import analytics
-from monkey_patch import third_party_auth, django_db_models_options
-
+from monkey_patch import (
+    third_party_auth,
+    django_db_models_options,
+    django_utils_http_is_safe_url
+)

 import xmodule.x_module
 import lms_xblock.runtime
@@ -30,6 +33,7 @@ def run():
    """
    third_party_auth.patch()
    django_db_models_options.patch()
+    django_utils_http_is_safe_url.patch()

    # To override the settings before executing the autostartup() for python-social-auth
    if settings.FEATURES.get('ENABLE_THIRD_PARTY_AUTH', False):

--- a/requirements/edx/base.txt
+++ b/requirements/edx/base.txt
@@ -32,7 +32,7 @@ django-method-override==0.1.0
 # We need a fix to DRF 3.2.x, for now use it from our own cherry-picked repo
 #djangorestframework>=3.1,<3.2
 git+https://github.com/edx/django-rest-framework.git@3c72cb5ee5baebc4328947371195eae2077197b0#egg=djangorestframework==3.2.3
-django==1.8.9
+django==1.8.10
 djangorestframework-jwt==1.7.2
 djangorestframework-oauth==1.1.0
 edx-django-oauth2-provider==0.5.0