Right now (esp thanks to Elrond) we managed to have a nice transitional period between Mongo and SQL by having mongokit like queries via .find() .find_one() and .one() reproduction for SQLAlchemy. But it's time to remove those from the codebase. We should start removing all instances of those and replacing them with proper queries.

Trying to log in, I received a "403 Forbidden" page with no further information, the GMG log included a "ERROR [mediagoblin.meddleware.csrf] CSRF cookie not present" statement.

It took a while until I realized it was my cookie blocker that caused this. Can we capture this specific case somehow and test whether cookie setting is disabled? I know that django tries to set test cookies at some points in time. Perhaps this should be tested in the CSRF meddleware in case of CSRF failure?

In any case, we should hand back a nicer error message than 403 forbidden when the user has cookies disabled :-).

On ​https://mediagoblin.readthedocs.org/en/stable/siteadmin/deploying.html,

1. "Priviledged" should be "privileged" (there is only one D).
2. In the Dependencies section, the package git-extras needs to be added to the RPM-based section in order for git submodule to work on Fedora 23.