summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2015-09-01Bug 1196618: add support for group owners (schema only)David Lawrence2-0/+14
2015-09-01Bug 1200610: jsonrpc API requests do not work when "Require API-Key ↵David Lawrence9-14/+42
authentication for API requests" is enabled due to missing API tokens
2015-09-01Bug 1200600 - message about 2fa's interaction with api authentication should ↵Byron Jones1-6/+16
be visible when 2fa is enabled
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones1-1/+1
2015-09-01Bug 1199941 - inactive sessions should expire faster (a week?)Byron Jones1-1/+1
2015-09-01Bug 1197073 - fix mfa disabling when updating account tabByron Jones1-1/+0
2015-09-01Bug 1200515 - unable to create accounts with githubByron Jones1-12/+23
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones32-30/+821
2015-09-01Bug 1199136 - add update-bug-groups.pl for automated group changesByron Jones1-0/+96
2015-08-31Bug 1197073 - add support for 2fa using totp (schema-only)Byron Jones2-0/+16
2015-08-31this script lives elsewhere nowByron Jones1-542/+0
2015-08-28Bug 1199329 - Auth Delegation should ignore the query string parameters of a ↵Dylan William Hardison1-1/+1
callback URI when determining uniqueness
2015-08-27Bug 1198598: change the bug count restrictions in describekeywords from ↵David Lawrence1-1/+1
'security-group' to 'core-security'
2015-08-25Bug 1196134 - add ability for admins to force a user to change their ↵Byron Jones12-45/+401
password on next login
2015-08-25Bug 1197699 - always store the ip address in the logincookies tableByron Jones2-12/+8
2015-08-25Bug 1180733 - "An invalid state parameter was passed to the GitHub OAuth2 ↵Dylan William Hardison2-3/+5
callback" error when logging in with github
2015-08-24Bug 1195836 - Remove install-module.pl from bmoDylan William Hardison4-178/+5
2015-08-24Bug 1192687 - add the ability for users to view and revoke existing sessionsDylan William Hardison5-1/+173
2015-08-24Bug 1196134 - add ability for admins to force a user to change their ↵Byron Jones2-0/+7
password on next login (schema only)
2015-08-24Bug 1197696 - group_members report doesn't display nested inherited groupsByron Jones5-49/+72
2015-08-24Bug 1197699 - always store the ip address in the logincookies table (schema ↵Byron Jones2-0/+12
only)
2015-08-24Bug 1196092 - Switch logincookies primary key to auto_incremented id, make ↵Dylan William Hardison2-3/+10
cookie a secondary UNIQUE key
2015-08-24Bug 1196614 - restrict the ability for users with editusers/creategroups to ↵Byron Jones3-1/+56
alter admins and the admin group
2015-08-21Bug 1197084 - No mail sent when bugs added to or removed from ↵Byron Jones1-1/+13
*-core-security groups
2015-08-21Bug 1195645 - don't create a new session for every authenticated REST/BzAPI callByron Jones2-2/+12
2015-08-20Bug 1190476 - set Comment field in GPG email to the URL of the bugByron Jones1-17/+29
2015-08-28Bug 1195362: Quicksearch error pages ("foo is not a field" and friends) ↵David Lawrence1-7/+13
should still fill in search into quicksearch box
2015-08-19Bug 1195544 - Information Disclosure Vulnerability Permits Attacker Obtains ↵Byron Jones1-0/+2
The GitHub OAUTH Return Code
2015-08-18Bug 1194584 - fix 'member of secure mail group' is always falseByron Jones1-1/+1
2015-08-18Bug 1194250 - 'take' button should uncheck "reset assignee to default"Byron Jones1-0/+3
2015-08-18Bug 1195620 - stop sending http cookies to sentryByron Jones1-3/+36
2015-08-18Bug 1195598 - The "unknown_action" error message could confuse the userFrédéric Buclin1-2/+3
2015-08-18Bug 1195593 - Able to delete any Bugzilla user's Bugmail FilterByron Jones1-4/+5
2015-08-17Bug 1195315 - Use of uninitialized value in string eq at Bugzilla/Product.pm ↵Byron Jones1-0/+1
line 99
2015-08-17Bug 981487 - change bugs_fulltext from myisam to innodbByron Jones3-13/+7
2015-08-17Bug 979441 - Under mod_perl, some modules aren't preloaded at startupByron Jones2-35/+40
2015-08-17Bug 1193190 - 'view account history' on edituser should include audit_log ↵Byron Jones2-14/+54
entries
2015-08-14Bug 1181596 - Modal UI doesn't honor the "where to put the additional ↵Byron Jones3-32/+64
comment textarea" preference
2015-08-14Bug 1194584 - "has cert" and "member of secure group" shouldn't be visible ↵Byron Jones1-9/+13
when creating a user
2015-08-13Bug 1192688 - non-schema changesByron Jones2-3/+8
2015-08-13Bug 1192688 - backout non-schema changesByron Jones2-8/+3
2015-08-12Bug 1193878 - Make a few more fields optional on the intern request formDylan William Hardison2-4/+8
2015-08-12Bug 1192854: change tabs on user preferences from horizontal to vertical layoutDavid Lawrence3-1/+77
2015-08-12Bug 1036872 - Bugmail filtering allows through bugmail that should be ↵Byron Jones1-1/+33
blocked when combined with the standard email prefs
2015-08-12Bug 1193590 - Warning about obsolete patches on an unassigned bugByron Jones3-4/+5
2015-08-11Bug 1190029: Would like a way to see which groups are 'secure' groups in ↵David Lawrence2-0/+48
editusers.cgi when diagnosing password reset issues
2015-08-11Bug 1192688 - add ip to last used api key informationDylan William Hardison4-3/+12
2015-08-11Bug 1184332 - Add Restricted API calls for MozReviewDylan William Hardison8-22/+137
2015-08-11Bug 1190693 - Backport bug 1175643 to bmo for safer auth delegationDylan William Hardison2-4/+40
2015-08-11Bug 1160929 - add support for storing attachments in s3Byron Jones11-46/+1205