Fixed #8379: the admin user change form now properly validates the username. Thanks, kratorius.

from django.utils.html import escape

from django.http import HttpResponseRedirect

from django.utils.translation import ugettext, ugettext_lazy as _

from django.contrib.auth.forms import UserCreationForm, AdminPasswordChangeForm

from django.contrib.auth.forms import UserCreationForm, UserChangeForm, AdminPasswordChangeForm

from django.contrib import admin

class GroupAdmin(admin.ModelAdmin):

        (_('Important dates'), {'fields': ('last_login', 'date_joined')}),

        (_('Groups'), {'fields': ('groups',)}),

    )

    form = UserChangeForm

    add_form = UserCreationForm

    change_password_form = AdminPasswordChangeForm

    list_display = ('username', 'email', 'first_name', 'last_name', 'is_staff')

            user.save()

        return user

class UserChangeForm(forms.ModelForm):

    username = forms.RegexField(label=_("Username"), max_length=30, regex=r'^\w+$',

        help_text = _("Required. 30 characters or fewer. Alphanumeric characters only (letters, digits and underscores)."),

        error_message = _("This value must contain only letters, numbers and underscores."))

    class Meta:

        model = User

class AuthenticationForm(forms.Form):

    """

    Base class for authenticating users. Extend this to get a form that accepts

>>> PasswordChangeForm(user, {}).fields.keys()

['old_password', 'new_password1', 'new_password2']

### UserChangeForm

>>> from django.contrib.auth.forms import UserChangeForm

>>> data = {'username': 'not valid'}

>>> form = UserChangeForm(data, instance=user)

>>> form.is_valid()

False

>>> form['username'].errors

[u'This value must contain only letters, numbers and underscores.']

"""