summaryrefslogtreecommitdiffstats
path: root/Bugzilla/WebService/Server
AgeCommit message (Collapse)AuthorFilesLines
2015-04-14Bug 1031035: xmlrpc can be DoS'd with billion laughs attackByron Jones1-1/+2
r=LpSolit,a=glob
2015-04-13Bug 1031035: xmlrpc can be DoS'd with billion laughs attackByron Jones1-0/+8
r=LpSolit,a=glob
2015-04-08Bug 1051056: The REST API needs to be versioned so that new changes can be ↵David Lawrence10-1387/+0
made that do not break compatibility r=dylan,a=glob
2015-03-17Bug 1142399: invalid xmlrpc requests warns: Use of uninitialized value $file ↵Byron Jones1-0/+3
in substitution (s///) (Bugzilla/WebService/Server/XMLRPC.pm:114) r=dkl,a=glob
2015-03-15Bug 902395: Enforce utf8 = true for all installations and remove the utf8 ↵Frédéric Buclin1-1/+1
parameter r=dkl a=sgreen
2015-03-11Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+1
X-Bugzilla headers - Fixed a new hash constant error that did not fail locally due to Perl version difference
2015-03-11Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-2/+7
X-Bugzilla headers - Fixed t/001compile.t error due to tr///r only for 5.14+
2015-03-11Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+3
X-Bugzilla headers r=glob,a=glob
2015-03-09Bug 1139755: Allow API authentication with X-HeadersByron Jones2-2/+2
r=dkl,a=glob
2015-03-09Bug 1139257: allow cookie+api-token GET REST requestsByron Jones1-23/+0
r=dkl,a=glob
2015-01-23Bug 1124716: regression caused by bug 1090275 to whitelist webservice ↵David Lawrence1-1/+1
methods causes test failures with t/012throwables.t r=dylan,a=glob
2015-01-21Bug 1090275: WebServices modules should maintain a whitelist of methods that ↵David Lawrence2-0/+17
are allowed instead of allowing access to any function imported into its namespace r=dylan,a=glob
2015-01-07Bug 1113147: Revert the hack from bug 1108809 and blacklist SOAP::Lite 1.12Frédéric Buclin1-7/+0
r=dkl a=glob
2014-12-22Bug 1098291: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+1
X-Requested-With r=glob,a=glob
2014-12-18Bug 1108809: SOAP::Lite 1.12 causes error when using XMLRPC APIDavid Lawrence1-0/+7
r=glob,a=glob
2014-12-06Bug 1052202 - Web Service module to update and delete componentsSimon Green1-0/+28
r=dylan, a=glob
2014-11-12Bug 1001462: Bug.search causes error when using simple token auth and ↵David Lawrence1-0/+7
specifying 'token' instead of 'Bugzilla_token' r=glob,a=glob
2014-11-10Bug 1093600: REST shouldn't support multiple instances of parameters for ↵David Lawrence1-12/+24
resources which only support a single params (eg. POST bug/comment) r=glob,a=glob
2014-10-29Bug 1088253: GET REST calls should allow arbitrary URL parameters to be ↵David Lawrence2-12/+26
passed in addition the values in the path r=glob,a=glob
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin11-0/+14
r=dkl a=sgreen
2014-08-12Bug 419568 - Web Service module to create a componentSimon Green2-0/+48
r=dkl, a=sgreen
2014-07-24Bug 1036213 - (CVE-2014-1546) add '/**/' before jsonrpc.cgi callback to ↵Reed Loden1-1/+3
avoid swf content type sniff vulnerability r=glob,a=sgreen
2014-07-10Bug 1036225: Return a link to the REST documentation in "method not found" ↵David Lawrence1-0/+1
errors r=glob,a=glob
2014-07-02Bug 1014345 - Add Group.get RPC callSimon Green1-0/+3
r=glob, a=glob
2014-06-19Bug 1023725 - Rename Bug.flag_types webservice call to FlagType.getSimon Green3-19/+18
r=glob, a=glob
2014-05-22Bug 1008764: Add a web service to create and update Flag typesSimon Green1-0/+56
r=glob, a=justdave
2014-05-12Backout of Bug 1001462 - Bug.search causes error when using simple token ↵David Lawrence1-6/+0
auth and specifying 'token' instead of 'Bugzilla_token'
2014-05-12Bug 1001462 - Bug.search causes error when using simple token auth and ↵David Lawrence1-0/+6
specifying 'token' instead of 'Bugzilla_token' r/a=glob
2014-04-24Don't call Bugzilla.pm from a Perl module itself (see bug 866927)Frédéric Buclin1-1/+0
2014-04-24Fix some syntax errors left by bug 489028Frédéric Buclin1-1/+1
2014-04-22Bug 489028 - Record last-visited time of bugs when logged inDylan William Hardison2-0/+53
r=glob a=justdave
2014-04-15Bug 995238 - Incomplete implementation of bug 540818 causes ↵David Lawrence1-9/+0
include_fields=_all to not work as expected r/a=justdave
2014-02-25Bug 972881 - Add hooks to Bugzilla/WebService/Server/REST.pm to allow for ↵Dave Lawrence1-3/+12
extensions to extend and alter REST data r=glob,a=justdave
2014-02-05Bug 966277 - Bugzilla native REST API should default to application/json if ↵Dave Lawrence1-1/+7
no Accept header was set r=dkl,a=justdave
2014-01-09Bug 958057 - REST API - No example of non-rewrite endpoint in POD docs, no ↵Dave Lawrence1-5/+15
config directions for how to create rewrite r/a=justdave
2013-12-31Bug 756048 - Add and update bug and attachment flags using the WebService API Dave Lawrence1-1/+17
r=sgreen,a=justdave
2013-11-25Bug 793963: add the ability to tag comments with arbitrary tagsByron Jones1-0/+16
r=dkl, a=glob
2013-09-17Bug 916935 - Add Access-Control-Allow-Headers to REST API to indicate which ↵Dave Lawrence1-0/+1
HTTP headers can be used when making the request r/a=glob
2013-09-13Bug 914986 - Create Bug.update_attachment to update attachments via RPC/RESTSimon Green1-0/+6
r=dkl, a=sgreen
2013-08-27Bug 893195 - Allow token based authentication for webservicesDave Lawrence3-17/+37
r=glob,a=sgreen
2013-08-27Bug 908338 - Create a new webservice called User.valid_login that will ↵Dave Lawrence1-0/+5
verify if a cookie or login token is valid for the current user r=glob,a=sgreen
2013-08-21Bug 907245 - Allow for URL params to also be passed with POST/PUT REST API ↵Dave Lawrence1-0/+11
requests r/a=glob
2013-08-09Bug 569177 - Add support for eTag for WebServicesDave Lawrence3-8/+52
r/a=glob
2013-08-03Fix wrong links in REST PODFrédéric Buclin3-3/+3
2013-07-29Bug 897003: Improve _strip_undefs() performanceFrédéric Buclin1-8/+9
r/a=sgreen
2013-07-23Bug 896066 - Allow REST WebService API to for GET /product to allow ↵Dave Lawrence1-9/+16
retrieval of multiple product objects r/a=glob
2013-07-15Bug 787328 - xmlrpc.cgi doesn't send any security-related headers Dave Lawrence1-2/+10
r=glob,a=justdave
2013-07-12Bug 866927 - Enhance Bugzilla WebServices to allow data access using RESTDave Lawrence7-0/+1083
r=glob,a=justdave
2012-12-01Bug 787668: Use |use parent| instead of |use base|Matt Selsky1-2/+2
r/a=LpSolit
2012-11-30Bug 816747 - Add dummy POD for unPODded methods.Marc Schumann2-0/+34
r/a=LpSolit