summaryrefslogtreecommitdiffstats
path: root/Bugzilla/WebService/Constants.pm
AgeCommit message (Collapse)AuthorFilesLines
2017-09-15Bug 1391702 - Replace Bugzilla::User::validate_password() with calls to ↵Dylan William Hardison1-3/+2
Data::Password::passwdqc
2017-07-07Bug 1377933 - Remove trailing whitespace from all perl filesDylan William Hardison1-3/+3
2017-05-24Bug 1307485 - Add code to run a subset of buglist.cgi search queries against ↵Dylan William Hardison1-0/+1
the ES backend
2017-03-21Bug 1307485 - Add code to run a subset of buglist.cgi search queries against ↵Dylan William Hardison1-1/+0
the ES backend Skipping this for this week's push.
2017-03-17Bug 1307485 - Add code to run a subset of buglist.cgi search queries against ↵Dylan William Hardison1-0/+1
the ES backend This not the cause of test failures, so should live on in master now.
2017-03-14Revert "Bug 1307485 - Add code to run a subset of buglist.cgi search queries ↵Dylan William Hardison1-1/+0
against the ES backend" This reverts commit 9c26c01867ca3e2af1e70c051140eea59c68c500.
2017-03-07Bug 1307485 - Add code to run a subset of buglist.cgi search queries against ↵Dylan William Hardison1-0/+1
the ES backend
2016-09-13Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-15/+8
local symlink to data/ directory
2016-09-12Revert "Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to ↵Dylan William Hardison1-8/+15
bmo/master + local symlink to data/ directory" This reverts commit e6bf4cacb10f86077fe898349485f5c7ab9fb4b6.
2016-09-12Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-15/+8
local symlink to data/ directory
2016-02-23Bug 1244718 - API documentation is missing error codesDavid Lawrence1-0/+3
2015-12-22Revert "Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix ↵David Lawrence1-2/+0
providing a condition as an ID to the webservice results in a taint error" This reverts commit 1e7b4002794930fad702718714b5d1c291bf816c.
2015-12-21Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix providing a ↵David Lawrence1-0/+2
condition as an ID to the webservice results in a taint error
2015-07-06Bug 1180711: invalid_cookies_or_token should have a real error codeByron Jones1-0/+1
2015-03-26Bug 1147550: Minimum password length handler not trusted by password changeByron Jones1-1/+2
2015-03-11Bug 1141440 - OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-0/+12
X-Bugzilla headers
2015-01-29Bug 1045145: backport upstream bug 726696 to bmo/4.2 to allow use of api ↵David Lawrence1-0/+3
keys for authentication
2014-11-11Bug 1089805: BzAPI compatibility layer returns HTTP 200 when a bug update failedDavid Lawrence1-20/+27
2014-10-09Bug 1079476: Backport upstream bug 1014345 and bug 658485 to bmo/4.2 to ↵David Lawrence1-0/+1
allow getting and updating groups
2014-07-10Bug 1036268: REST webservice should return http/404 for invalid methodsDavid Lawrence1-0/+1
2014-06-03Bug 1000917: Backport upstream bug 489028 to bmo/4.2 to allow user last ↵Dylan William Hardison [:dylan]1-0/+1
visit searching
2014-02-05Bug 968482 - backport bug 966277 to bmo/4.2 to set default content type if ↵Dave Lawrence1-2/+3
no accept header provided
2014-01-01Bug 918384 - backport upstream bug 756048 to bmo/4.2 to allow setting ↵Dave Lawrence1-0/+7
bug/attachment flags using the webservices
2013-12-10Bug 942725: backport bug 793963 to bmo (add the ability to tag comments with ↵Byron Jones1-1/+6
arbitrary tags)
2013-07-15Bug 892601 - Port over upstream native REST patch (bug 866927) to bmo/4.2Dave Lawrence1-7/+67
r=glob
2013-05-04Bug 859118 - Bug.search called with no arguments returns all visible bugs, ↵Dave Lawrence1-0/+3
ignoring max_search_results and search_allow_no_criteria r/a=LpSolit
2012-11-13Bug 781850 (CVE-2012-4198): [SECURITY] Do not leak the existence of groups ↵Frédéric Buclin1-0/+1
when using User.get() r=dkl a=LpSolit
2012-02-22Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC ↵Dave Lawrence1-0/+8
API when using mod_perl r/a=LpSolit
2011-12-28Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email ↵Frédéric Buclin1-0/+1
WebService method lets you create new user accounts independently of the value of Bugzilla::Auth::Verify::*::user_can_create_account r=dkl a=LpSolit
2011-08-04Bug 653477: (CVE-2011-2380) [SECURITY] Group names can be guessed when ↵Frédéric Buclin1-2/+1
creating or editing a bug r=mkanat a=LpSolit
2011-05-06Bug 653341: Bug.create() fails to error out if an invalid group is passedFrédéric Buclin1-0/+1
r/a=mkanat
2011-04-17Bug 469195: New WebService function, Group.create.Carole Pryfer1-1/+8
r=mkanat, a=mkanat
2011-04-07Bug 469193: WebService function to create new products (Product.create)Julien Heyman1-0/+9
r/a=mkanat
2011-02-11Bug 633041: Add an error code for zero_length_file and fill in content_typeMax Kanat-Alexander1-0/+1
for patches when content_type is missing in Bug.add_attachment in the WebService r=LpSolit, a=LpSolit
2010-12-13Bug 617477: Fix numerous consistency and behavior issues surroudning Bug.updateMax Kanat-Alexander1-0/+19
and Bugzilla::Bug. See https://bugzilla.mozilla.org/show_bug.cgi?id=617477#c2 for details. r=LpSolit, a=LpSolit
2010-12-06Bug 617030 - Add an error code for json_rpc_invalid_callback, and fix theMax Kanat-Alexander1-0/+1
regex used by _bz_callback in Bugzilla::WebService::Server::JSONRPC to accept numbers other than 0 or 1. r=LpSolit, a=mkanat
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin1-0/+1
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
2010-07-18Bug 119703: Create an attachment by pasting it into a text fieldFrédéric Buclin1-2/+2
r/a=mkanat
2010-07-14Remove some errors from WS_ERROR_CODE that don't exist on trunk.Max Kanat-Alexander1-2/+0
https://bugzilla.mozilla.org/show_bug.cgi?id=412074
2010-07-14Bug 412074: Ability to add attachments to a bug via the WebServiceMax Kanat-Alexander1-0/+10
(Bug.add_attachment) r=timello, a=mkanat
2010-07-13alias_not_allowed should be multiple_alias_not_allowedMax Kanat-Alexander1-1/+1
https://bugzilla.mozilla.org/show_bug.cgi?id=415813
2010-07-13Bug 415813: Implement Bug.update() as an API for WebServicesMax Kanat-Alexander1-0/+1
r=dkl, a=mkanat
2010-04-22Bug 550732: Allow read-only JSON-RPC methods to be called with GETMax Kanat-Alexander1-4/+5
r=dkl, a=mkanat
2010-03-28Bug 553913: Add explicit error codes to WebService errors that were missingMax Kanat-Alexander1-2/+10
them r=dkl, a=mkanat
2010-03-24Bug 553770: Make the JSON-RPC WebService throw a proper error when you don'tMax Kanat-Alexander1-2/+3
provide login credentials on a LOGIN_REQUIRED page. (Before this, it was attempting to display the HTML login page to JSON-RPC clients.) r=dkl, a=mkanat
2010-02-06Bug 515568: handle_login() doesn't check $@ after evalFrédéric Buclin1-0/+2
r/a=mkanat
2009-09-11Bug 515191: [SECURITY] SQL Injection via Bug.search (CVE-2009-3125) and ↵mkanat%bugzilla.org1-0/+2
Bug.create (CVE-2009-3165) Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
2009-08-10Fix POD for bug 471620, r=dkllpsolit%gmail.com1-0/+1
2009-08-09Bug 471620: USER_PASSWORD_MAX_LENGTH is no longer needed - Patch by ↵lpsolit%gmail.com1-1/+0
Frédéric Buclin <LpSolit@gmail.com> r=dkl a=LpSolit
2009-07-21Bug 505390: Make Bugzilla (and thus the WebService) throw an error when you ↵mkanat%bugzilla.org1-0/+2
try to add a private comment but aren't an insider. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit