Highly flexible, no magic input validation library
pycerberus is a framework to check user data thoroughly so that you can protect your application from malicious (or just garbled) input data.
- Remove stupid code which converts input values: After values are validated, you can work with real Python types instead of strings - e.g. 42 instead of ‘42’, convert database IDs to model objects transparently.
- Implement custom validation rules: Writing custom validators is straightforward, everything is well documented and pycerberus only uses very little Python magic.
- Focus on your value-adding application code: Save time by implementing every input validation rule only once, but 100% right instead of implementing a dozen different half-baked solutions.
- Ready for global business: i18n support (based on GNU gettext) is built in, adding custom translations is easy.
- Tune it for your needs: You can implement custom behavior in your validators, e.g. fetch translations from a database instead of using gettext or define custom translations for built-in validators.
- Use it wherever you like: pycerberus is used in a SMTP server, trac macros as well as web applications - there are no dependencies on a specific context like web development.
- stop using 2to3 for Python 3 compatibility and use exactly the same source for all Python versions.
- drop support for Python 2.4 and 2.5
- bug fix: detect validator message keys correctly also when messages are specified during validator initialization
- ‘allow_additional_parameters’ can now be specified in the schema constructor directly as well as a parameter for a declarative schema
- new ForEach validator to validate a list of items with the same validator
- InvalidDataErrors can return a list of errors using ‘.errors()’.
- added ‘min_length’, ‘max_length’ parameters when instantiating a StringValidator
- All validator messages can be overridden during instantiation by specifying messages attribute,
- new OneOf validator to validate that a value is in a given list of allowed values
- added constructor parameter ‘filter_unvalidated_parameters’ (default True) for SchemaValidators to pass unvalidated parameters instead of removing them
- InvalidDataErrors can “unpack” their errors so that an ordinary dict is used as container for sub-errors (instead of another InvalidDataError with an error_dict)
- new BooleanCheckbox validator to validate typical HTML checkboxes
- new API method for all validators: ‘.copy()’ returns a clone of the validator
- new MatchingFields form validator (typically used to verify a password confirmation field)
- new AgreeToConditionsCheckbox validator which works like a BooleanCheckbox but enforces a trueish value
- EmailAddressValidator accepts also ‘-‘ and ‘+’ characters in local part
- BaseValidator.error() is deprecated now as the name does not really reflect that the method also raised the exception. I added a new method named ‘.raise_error()’ which behaves exactly like the old .error() method. In addition there is a new method ‘.exception()’ which only creates an exception instance.
- IntegerValidator now treats ‘’ and None as empty
- BaseValidator.to_string() changed to BaseValidator.revert_conversion() which reflects the actual purpose better. Validators are not required to return a string anymore.
- More fixes for source distribution because of missing files in tar.gz
- Fix source distribution (distribution_helpers.py were not included)
- pycerberus now supports Python 3!
- Fix installation/egg generation without babel
- Added a schema which can parse positional parameters from a string into a dict before processing the data like a normal schema would do
- Fix installation issue: pycerberus is actually not zip-safe
- Fix egg file generation: Include all necessary packages in eggs
- added babel support to setup.py
- updated pot file and completed German translation
- fix exception if translations for preferred locale are not available (fall back to english messages)
- Fixed bug due to duplicated message in DomainNameValidator/EmailAddressValidator
- Validator can now strip inputs (False by default)
- StringValidator now also treats ‘’ as empty value (as well as None)
- Python 2.3 compatibility
- Schema can raise error if unknown items are processed
- Basic domain name validator
- Basic email address validator
- You now can declare custom messages as a class-level dict
- Added interface to retrieve error details from InvalidDataErrors
- Added validation schemas to validate a set of values (typically a web form). Schemas can also inherit from other schemas to avoid code duplication.
- Validators try to make thread-safety violations obvious
- Nicer API to retrieve error details from an InvalidDataError
- initial release