summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2011-02-14Remove tabs and fix some formatting in Bugzilla::DB::Pg.Max Kanat-Alexander1-4/+4
https://bugzilla.mozilla.org/show_bug.cgi?id=616981
2011-02-14Bug 633055: Make Bug.legal_values explicitly throw an error if you pass "undef"Max Kanat-Alexander1-0/+4
for the "field" parameter r=dkl, a=mkanat
2011-02-14Bug 616981: Make whine.pl work with PostgreSQL 8.4+ by fixing sql_string_untilSam Morris1-0/+12
r=mkanat, a=mkanat
2011-02-14Bug 609538: Make the JSON-RPC interface support UTF-8 when a recent versionMax Kanat-Alexander2-2/+19
of LWP is installed r=dkl, a=mkanat
2011-02-14Bug 603127: Make checksetup.pl require DBD::Pg 2.17.2 when using Pg 9.0 orMax Kanat-Alexander4-20/+60
later. r=dkl, a=mkanat
2011-02-14Bug 581422: Improve the readability of the text at the top of the attachmentMarc Schumann2-4/+4
detail view r=pyrzak, r=mkanat, a=mkanat
2011-02-14Bug 417551: Make it possible for CSV headers to be the field descriptionMichael J Tosh3-4/+16
instead of the field name, and have the buglist.cgi link give you CSV like this by default. r=mkanat, a=mkanat
2011-02-14Bug 633422: Fix the documentation for User.get's include_disabled parameterMax Kanat-Alexander1-2/+9
and make User.get check that its required parameters are passed. r=LpSolit, a=mkanat
2011-02-14Bug 621122: Add support for MantisBT URLs in "see also".Reed Loden3-0/+53
[r=timello a=mkanat]
2011-02-14Bug 543667: Add support for Trac URLs in "see also".Matt Selsky3-0/+56
2011-02-14Bug 558784: Add support for JIRA URLs in "see also".Matt Selsky3-0/+56
2011-02-12Bug 535571: Allow Search.pm to accept "limit" and "offset" as parameters.Max Kanat-Alexander2-13/+35
r=mkanat, a=mkanat (module owner)
2011-02-12Bug 630800: Require a newer version of URI.pm to correctly parse URLs thatMax Kanat-Alexander1-1/+3
have ';' as their query-string delimiter, which show up when upgrading from the old tag system to the new tag system. r=LpSolit, a=LpSolit
2011-02-12Make the "changedfrom" xt/search.t test work with see_also, again.Max Kanat-Alexander1-3/+7
https://bugzilla.mozilla.org/show_bug.cgi?id=620827
2011-02-11Bug 633298 - Please add a 'form' hook to attachment/create.html.tmpl and ↵David Lawrence2-0/+6
attachment/edit.html.tmpl r/a=mkanat
2011-02-11Bug 620827: Fix the bug_see_also class column length.Tiago Mello1-2/+7
r/a=LpSolit
2011-02-11Bug 620827: Refactor remove see also to use remove_from_db instead.Tiago Mello9-55/+183
r/a=mkanat
2011-02-11Fix a POD compilation error.Max Kanat-Alexander1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=633041
2011-02-11Fix the POD of Bug.add_attachment to reflect that it now automaticallyMax Kanat-Alexander1-3/+2
picks the content_type of text/plain when you set is_patch to true. https://bugzilla.mozilla.org/show_bug.cgi?id=633041
2011-02-11Bug 633041: Add an error code for zero_length_file and fill in content_typeMax Kanat-Alexander3-3/+13
for patches when content_type is missing in Bug.add_attachment in the WebService r=LpSolit, a=LpSolit
2011-02-03Bug 630750: Don't let "." and "lib" get into @INC when running underMax Kanat-Alexander1-0/+17
mod_perl r=dkl, a=mkanat
2011-02-02Bug 630681: Implement a MOD function for SQLite so collectstats.pl can runMax Kanat-Alexander1-0/+3
r=mkanat, a=mkanat (module owner)
2011-02-01Bug 461014 - How to create a private attachment in enter_bug.cgi not obviousDavid Lawrence1-2/+2
r=reed,a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=507211
2011-02-01Redesign the Install::DB code for migrating queries to tags, including addingMax Kanat-Alexander2-27/+52
a transaction and indicate_progress. https://bugzilla.mozilla.org/show_bug.cgi?id=616185
2011-01-31Bug 629007: Example in quicksearch priority shortcut is incorrectGraeme Coates1-1/+1
r/a=mkanat
2011-01-30Another bustage fix for bug 616185: in some cases, the columnlist parameter ↵Frédéric Buclin1-8/+20
was appended to the list of bugs
2011-01-30Typo :(Frédéric Buclin1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=616185
2011-01-30Fix bustage for bug 616185: commas are encoded as %2C in Bugzilla 3.x, but ↵Frédéric Buclin1-0/+2
not in 2.22
2011-01-30Bug 616185: Move tags (aka lists of bugs) to their own DB tablesFrédéric Buclin10-154/+235
r/a=mkanat
2011-01-28Bug 622080 - Change group which can moderate quipsDavid Lawrence5-11/+26
r/a=mkanat
2011-01-27Bug 622679 - Autocomplete suggests inactive/disabled accounts as matchesDavid Lawrence1-1/+11
r/a=mkanat
2011-01-27Allow extensions to alter quicksearch terms and search format. r=mkanat.Gervase Markham3-0/+25
https://bugzilla.mozilla.org/show_bug.cgi?id=621878
2011-01-27Allow jobqueue.pl to run once and then exit. r=mkanat.Gervase Markham2-1/+21
https://bugzilla.mozilla.org/show_bug.cgi?id=621256
2011-01-27Add missing documentation. r=mkanat.Gervase Markham1-1/+3
https://bugzilla.mozilla.org/show_bug.cgi?id=629321
2011-01-27Allow addition/removal of descriptions of statuses and resolutions. r=mkanat.Gervase Markham1-20/+26
https://bugzilla.mozilla.org/show_bug.cgi?id=616453
2011-01-27Fix bustage; diffs is an arrayref in 4.0, an array on trunk.Gervase Markham1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
2011-01-27Update default column list to something more sensible. r=mkanat, lpsolit, ↵Gervase Markham1-2/+2
wurblzap. https://bugzilla.mozilla.org/show_bug.cgi?id=621676
2011-01-27Add diffs parameter to bugmail_recipients hook. r=mkanat.Gervase Markham2-2/+11
https://bugzilla.mozilla.org/show_bug.cgi?id=616422
2011-01-25Make param pages without a sortkey sort to the end. r=dkl, a=lpsolit.Gervase Markham1-0/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=621255
2011-01-24Bug 619594: (CVE-2010-4568) [SECURITY] Improve the randomness ofMax Kanat-Alexander4-5/+32
generate_random_password, to protect against an account compromise issue and other critical vulnerabilities. r=LpSolit, a=LpSolit https://bugzilla.mozilla.org/show_bug.cgi?id=621591
2011-01-24Bug 621105 - [SECURITY] Voting lacks CSRF protectionDavid Lawrence3-0/+6
r=mkanat,a=LpSolit
2011-01-24Bug 619588: (CVE-2010-4567) [SECURITY] Safety checks that disallow clicking ↵Frédéric Buclin4-19/+29
for javascript: or data: URLs in the URL field can be evaded with prefixed whitespace and Bug 628034: (CVE-2011-0048) [SECURITY] For not-logged-in users, the URL field doesn't safeguard against javascript: or data: URLs r=dkl a=LpSolit
2011-01-24Bug 621572: (CVE-2010-4572) [SECURITY] chart.cgi vulnerable to ↵Reed Loden1-3/+3
header-injection due to use of |print "Location:"| instead of $cgi->redirect [r=mkanat a=LpSolit]
2011-01-24Bug 619648: (CVE-2010-4570) [SECURITY] XSS via summary in "possible ↵Reed Loden1-1/+2
duplicates" table due to lack of encoding by YUI [r=mkanat a=LpSolit]
2011-01-24Bug 619637: (CVE-2010-4569) [SECURITY] XSS in user autocomplete due to lack ↵Reed Loden1-1/+8
of encoding by YUI [r=mkanat r=dkl a=LpSolit]
2011-01-24Bug 621110: [SECURITY] Quips (adding/approving/deleting) lacks CSRF protectionFrédéric Buclin2-2/+12
r=dkl a=LpSolit
2011-01-24Bug 621108: [SECURITY] Creating/editing charts lacks CSRF protectionFrédéric Buclin3-2/+9
r=dkl a=LpSolit
2011-01-24Bug 621107: [SECURITY] Sanity checking lacks CSRF protectionFrédéric Buclin4-8/+26
r=dkl a=LpSolit
2011-01-24An optional module was accidentally listed in the "required" section of theMax Kanat-Alexander1-2/+2
release notes. https://bugzilla.mozilla.org/show_bug.cgi?id=627910
2011-01-24Bug 627910: Update Release Notes for Bugzilla 4.0rc2Max Kanat-Alexander1-6/+26
r=reed