summaryrefslogtreecommitdiffstats
path: root/Bugzilla/WebService/Constants.pm
AgeCommit message (Collapse)AuthorFilesLines
2015-03-26Bug 1147550: Minimum password length handler not trusted by password changeByron Jones1-1/+2
2015-03-11Bug 1141440 - OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-0/+12
X-Bugzilla headers
2015-01-29Bug 1045145: backport upstream bug 726696 to bmo/4.2 to allow use of api ↵David Lawrence1-0/+3
keys for authentication
2014-11-11Bug 1089805: BzAPI compatibility layer returns HTTP 200 when a bug update failedDavid Lawrence1-20/+27
2014-10-09Bug 1079476: Backport upstream bug 1014345 and bug 658485 to bmo/4.2 to ↵David Lawrence1-0/+1
allow getting and updating groups
2014-07-10Bug 1036268: REST webservice should return http/404 for invalid methodsDavid Lawrence1-0/+1
2014-06-03Bug 1000917: Backport upstream bug 489028 to bmo/4.2 to allow user last ↵Dylan William Hardison [:dylan]1-0/+1
visit searching
2014-02-05Bug 968482 - backport bug 966277 to bmo/4.2 to set default content type if ↵Dave Lawrence1-2/+3
no accept header provided
2014-01-01Bug 918384 - backport upstream bug 756048 to bmo/4.2 to allow setting ↵Dave Lawrence1-0/+7
bug/attachment flags using the webservices
2013-12-10Bug 942725: backport bug 793963 to bmo (add the ability to tag comments with ↵Byron Jones1-1/+6
arbitrary tags)
2013-07-15Bug 892601 - Port over upstream native REST patch (bug 866927) to bmo/4.2Dave Lawrence1-7/+67
r=glob
2013-05-04Bug 859118 - Bug.search called with no arguments returns all visible bugs, ↵Dave Lawrence1-0/+3
ignoring max_search_results and search_allow_no_criteria r/a=LpSolit
2012-11-13Bug 781850 (CVE-2012-4198): [SECURITY] Do not leak the existence of groups ↵Frédéric Buclin1-0/+1
when using User.get() r=dkl a=LpSolit
2012-02-22Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC ↵Dave Lawrence1-0/+8
API when using mod_perl r/a=LpSolit
2011-12-28Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email ↵Frédéric Buclin1-0/+1
WebService method lets you create new user accounts independently of the value of Bugzilla::Auth::Verify::*::user_can_create_account r=dkl a=LpSolit
2011-08-04Bug 653477: (CVE-2011-2380) [SECURITY] Group names can be guessed when ↵Frédéric Buclin1-2/+1
creating or editing a bug r=mkanat a=LpSolit
2011-05-06Bug 653341: Bug.create() fails to error out if an invalid group is passedFrédéric Buclin1-0/+1
r/a=mkanat
2011-04-17Bug 469195: New WebService function, Group.create.Carole Pryfer1-1/+8
r=mkanat, a=mkanat
2011-04-07Bug 469193: WebService function to create new products (Product.create)Julien Heyman1-0/+9
r/a=mkanat
2011-02-11Bug 633041: Add an error code for zero_length_file and fill in content_typeMax Kanat-Alexander1-0/+1
for patches when content_type is missing in Bug.add_attachment in the WebService r=LpSolit, a=LpSolit
2010-12-13Bug 617477: Fix numerous consistency and behavior issues surroudning Bug.updateMax Kanat-Alexander1-0/+19
and Bugzilla::Bug. See https://bugzilla.mozilla.org/show_bug.cgi?id=617477#c2 for details. r=LpSolit, a=LpSolit
2010-12-06Bug 617030 - Add an error code for json_rpc_invalid_callback, and fix theMax Kanat-Alexander1-0/+1
regex used by _bz_callback in Bugzilla::WebService::Server::JSONRPC to accept numbers other than 0 or 1. r=LpSolit, a=mkanat
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin1-0/+1
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
2010-07-18Bug 119703: Create an attachment by pasting it into a text fieldFrédéric Buclin1-2/+2
r/a=mkanat
2010-07-14Remove some errors from WS_ERROR_CODE that don't exist on trunk.Max Kanat-Alexander1-2/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=412074
2010-07-14Bug 412074: Ability to add attachments to a bug via the WebServiceMax Kanat-Alexander1-0/+10
(Bug.add_attachment) r=timello, a=mkanat
2010-07-13alias_not_allowed should be multiple_alias_not_allowedMax Kanat-Alexander1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=415813
2010-07-13Bug 415813: Implement Bug.update() as an API for WebServicesMax Kanat-Alexander1-0/+1
r=dkl, a=mkanat
2010-04-22Bug 550732: Allow read-only JSON-RPC methods to be called with GETMax Kanat-Alexander1-4/+5
r=dkl, a=mkanat
2010-03-28Bug 553913: Add explicit error codes to WebService errors that were missingMax Kanat-Alexander1-2/+10
them r=dkl, a=mkanat
2010-03-24Bug 553770: Make the JSON-RPC WebService throw a proper error when you don'tMax Kanat-Alexander1-2/+3
provide login credentials on a LOGIN_REQUIRED page. (Before this, it was attempting to display the HTML login page to JSON-RPC clients.) r=dkl, a=mkanat
2010-02-06Bug 515568: handle_login() doesn't check $@ after evalFrédéric Buclin1-0/+2
r/a=mkanat
2009-09-11Bug 515191: [SECURITY] SQL Injection via Bug.search (CVE-2009-3125) and ↵mkanat%bugzilla.org1-0/+2
Bug.create (CVE-2009-3165) Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
2009-08-10Fix POD for bug 471620, r=dkllpsolit%gmail.com1-0/+1
2009-08-09Bug 471620: USER_PASSWORD_MAX_LENGTH is no longer needed - Patch by ↵lpsolit%gmail.com1-1/+0
Frédéric Buclin <LpSolit@gmail.com> r=dkl a=LpSolit
2009-07-21Bug 505390: Make Bugzilla (and thus the WebService) throw an error when you ↵mkanat%bugzilla.org1-0/+2
try to add a private comment but aren't an insider. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-03-31Bug 432907: Create a JSON frontend for WebServicesmkanat%bugzilla.org1-1/+0
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-02-11Bug 475151: Refactor the XML-RPC server stuff out of Bugzilla::WebServicemkanat%bugzilla.org1-4/+20
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-01-22Bug 474249: Add a WebService interface to add a See Also bug link to a bugmkanat%bugzilla.org1-0/+3
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-01-09Bug 471942: Make the WebService validate and properly convert input parametersmkanat%bugzilla.org1-1/+2
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-01-07Bug 450403: Add ability to view comments via the web service (Bug.comments)mkanat%bugzilla.org1-0/+4
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2008-10-25Bug 291433: Ability to have custom fields whose visibility depends on the ↵mkanat%bugzilla.org1-1/+1
values of other fields Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=bbaetz, a=mkanat
2008-06-20Bug 432916: Expose usermatchmode via WebServices (User.get match argument)mkanat%bugzilla.org1-0/+1
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2008-06-19Bug 434620 – invalid_field_name and product_edit_denied have the same ↵dkl%redhat.com1-2/+3
error ID Patch by David Lawrence <dkl@redhat.com> r/a=mkanat
2008-05-29Bug 412725: WebService functions to get information about a Userdkl%redhat.com1-0/+2
Patch by Noura Elhawary <nelhawar@redhat.com> - r=mkanat, a=mkanat
2008-04-17Bug 428941 – Allow extension webservices to override LOGIN_EXEMPTbbaetz%acm.org1-11/+0
r/a=mkanat
2008-02-12Bug 384009: Global fields (priority, severity, OS, and platform) are ↵lpsolit%gmail.com1-0/+1
required when using WebService instead of using the defaults - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2008-01-22Bug 413343: Requesting data for a bug restricted to a group while you are ↵lpsolit%gmail.com1-0/+1
logged out throws "Error 32000" - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2008-01-13Bug 411437: Clipping of "Free Text" fields when user enters more then 255 ↵lpsolit%gmail.com1-0/+1
characters - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2008-01-06Bug 355847: Make the WebService able to add a comment to a bugmkanat%bugzilla.org1-0/+2
Patch By Tsahi Asher <tsahi_75@yahoo.com> r=mkanat, a=mkanat