summaryrefslogtreecommitdiffstats
path: root/Bugzilla/CGI.pm
AgeCommit message (Collapse)AuthorFilesLines
2016-07-28Bug 1286287 - Add utility method to Bugzilla::CGI for configuring CSP headersDylan Hardison1-0/+54
r=dkl,a=dylan
2016-04-14Bug 1088022 - Bump min version to CGI 4.09Frédéric Buclin1-55/+20
r=dkl
2016-04-09Bug 1261538 - Bugzilla is unable to access attachment.cgi when ssl_redirect ↵Frédéric Buclin1-8/+24
= true and using Plack r=dylan
2016-03-21Bug 1258187: When using plackup as a proxy, Apache is unable to handle saved ↵Frédéric Buclin1-4/+2
queries correctly r=dkl
2016-02-29Bug 1136137: Require Perl 5.14Frédéric Buclin1-1/+1
r=dkl
2015-12-23Bug 1201113: Support to run Bugzilla as a PSGI applicationFrédéric Buclin1-2/+3
r=dylan
2015-07-29Bug 399078 - Remove the 'musthavemilestoneonaccept' parameterSimon Green1-1/+2
r=gerv, a=simon
2015-03-15Bug 902395: Enforce utf8 = true for all installations and remove the utf8 ↵Frédéric Buclin1-4/+2
parameter r=dkl a=sgreen
2015-03-09Bug 1136125 - Reduce memory usage of Bugzilla::CGI->send_cookie()Dylan William Hardison1-19/+3
r=dkl, a=glob
2014-10-27Bug 1087400: CGI 4.05 throws tons of "CGI::param called in list context" ↵Frédéric Buclin1-0/+1
warnings r/a=glob
2014-09-18Bug 1068521: "Use of uninitialized value" warningsPami Ketolainen1-4/+11
r=glob,a=glob
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin1-0/+1
r=dkl a=sgreen
2014-07-10Bug 1032323: canonicalise_query() should omit parameters with empty values ↵Ed Morley1-2/+5
so generated URLs are shorter r=glob,a=sgreen
2014-04-17Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin1-1/+14
r=dkl a=justdave
2014-01-03Bug 543432: [PostgreSQL] Crash when typing a string in combination with a ↵Frédéric Buclin1-2/+23
numeric field r=dkl a=sgreen
2013-11-27Bug 938596 - Add hook for modifying HTTP headers. r=LpSolit.Gervase Markham1-9/+19
2013-09-28Bug 851267: Bugzilla times out when a user has several thousands of votesFrédéric Buclin1-4/+4
r=dkl a=justdave
2013-08-09Bug 569177 - Add support for eTag for WebServicesDave Lawrence1-3/+3
r/a=glob
2013-07-12Bug 866927 - Enhance Bugzilla WebServices to allow data access using RESTDave Lawrence1-1/+1
r=glob,a=justdave
2013-01-02Bug 413851 - add CSV output option to request lists. r=LpSolit.Gervase Markham1-0/+25
2012-12-01Bug 787668: Use |use parent| instead of |use base|Matt Selsky1-1/+1
r/a=LpSolit
2012-11-30Bug 816747 - Add dummy POD for unPODded methods.Marc Schumann1-0/+22
r/a=LpSolit
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin1-0/+3
r=wicked a=LpSolit
2012-08-29Bug 782856: Remove the obsolete BEGIN block in Bugzilla/CGI.pmFrédéric Buclin1-9/+0
r=glob a=LpSolit
2012-08-29Fix more bustage caused by Bug 772953Byron Jones1-4/+6
2012-08-29Fix bustage caused by Bug 772953Byron Jones1-1/+4
2012-08-28Bug 772953: Remove the token from buglist urlsByron Jones1-0/+5
r=dkl, a=LpSolit
2012-08-17Bug 783386: Removing PATH_INFO prevents Bugzilla from working correctly with IISFrédéric Buclin1-2/+9
r=dkl a=LpSolit
2012-08-15Bug 771100: Unable to attach a file to a bug with perl 5.16Frédéric Buclin1-1/+1
r=dkl a=LpSolit
2012-08-10Bug 779088 - Allow extensions to whitelist PATH_INFODave Lawrence1-3/+9
r/a=LpSolit
2012-07-24Fix typo in a commentFrédéric Buclin1-1/+1
2012-07-24Bug 243764: Remove the Path-Info information from the URL as it causes ↵Frédéric Buclin1-0/+5
unexpected behaviors r=dkl a=LpSolit
2012-06-07Bug 761199: buglist.cgi enters in an infinite loop if called without ↵Frédéric Buclin1-0/+4
arguments and the user is logged in r=timello a=LpSolit
2012-06-05Bug 761331: Remove our customized multipart_init() methodFrédéric Buclin1-29/+0
r=glob a=LpSolit
2012-05-29Bug 671612: Send "X-Content-Type-Options: nosniff" with every responseMatt Selsky1-0/+4
r/a=LpSolit
2012-02-27Bug 730670: Do not redirect in buglist.cgi to improve performanceFrédéric Buclin1-1/+9
r=glob a=LpSolit
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin1-21/+5
add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
2011-12-26Bug 629326: Make it simpler to check ETagsMax Kanat-Alexander1-0/+20
r/a=LpSolit
2011-11-21Bug 680771 - Send X-XSS-Protection header for XSS prevention/blockingReed Loden1-0/+4
[r=mkanat a=LpSolit]
2011-05-31Bug 647649: Change the old "Boolean Charts" UI into the new AND/ORMax Kanat-Alexander1-3/+12
"Custom Search" UI. r=timello, a=mkanat
2011-05-29Bug 655847: Accessing buglist.cgi throws: Use of inherited AUTOLOAD for ↵Frédéric Buclin1-9/+1
non-method Bugzilla::CGI::SERVER_PUSH() is deprecated at Bugzilla/CGI.pm line 233 r/a=mkanat
2013-05-04Bug 652625 - Empty queries still get run because the list_id parameter is ↵David Lawrence1-1/+3
added to them r/a=mkanat
2011-03-14Bug 637977: Re-setup CGI.pm global variables on every request under mod_perl,Max Kanat-Alexander1-13/+24
which prevents CGI.pm from generating URLs with semicolons in them instead of ampersands. r=glob, a=mkanat
2010-12-28Remove unused variable, per my review commentFrédéric Buclin1-1/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=615574
2010-12-27Bug 615574: Make every search done by buglist.cgi create a list_id, so thatMax Kanat-Alexander1-0/+49
even Saved Searches get "last list" support. r=LpSolit, a=LpSolit
2010-12-18Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ↵Reed Loden1-0/+6
against clickjacking. [r=mkanat a=mkanat]
2010-12-06Bug 607138: Don't send the Strict-Transport-Security header for theMax Kanat-Alexander1-2/+6
attachment_base. r=LpSolit, a=LpSolit
2010-11-03Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to ↵Byron Jones1-1/+2
non-random multipart/x-mixed-replace boundary r=mkanat a=LpSolit
2010-10-28Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5Frédéric Buclin1-3/+1
r=gerv a=LpSolit
2010-09-29Bug 600475 - Support the 'includeSubDomains' flag as an option for the ↵Reed Loden1-2/+6
'Strict-Transport-Security' advanced option in order to protect subdomains. [r=glob a=mkanat]