summaryrefslogtreecommitdiffstats
path: root/Bugzilla
AgeCommit message (Collapse)AuthorFilesLines
2018-10-12Bug 1497487 - Backport bug 767623 to BMO: Use HMAC to generate tokens and ↵Dylan William Hardison1-8/+7
sensitive graph filenames
2018-10-11Bug 1498206 - Replace LWP::UserAgent with Mojo::UserAgent in phabbugz extensionDylan William Hardison1-1/+20
2018-10-09Bug 1497343 - Add some rudimentary type checking to ↵Dylan William Hardison2-7/+20
Bugzilla::WebServe::Util::validate()
2018-10-09Bug 623384 - Use Module::Runtime instead of eval { require } or eval "use"Dylan William Hardison5-11/+26
2018-10-05Bug 1496570 - Bugzilla doesn't attempt to decode form-urlencoded data ↵Dylan William Hardison1-0/+2
without a content-type header
2018-10-04Bug 1495901 - SES type checking errorDylan William Hardison1-42/+59
2018-10-04Bug 1489120 - Add a rest API to get triage owners for each product/component ↵Kohei Yoshino1-0/+7
pair (#797)
2018-10-03no bug - make libcmark-gfm optional (#792)Dylan William Hardison1-1/+0
2018-10-03no bug - reformat all new quantum files using new standardDylan William Hardison10-679/+687
2018-10-03Bug 1495906 - After mojo update /latest/configuration API call no longer ↵dklawren1-0/+1
works and gives page not found
2018-10-02Bug 1495869 - Crash graph not found after mojo migrationDylan William Hardison1-1/+1
2018-10-02Bug 1263502 - Add duplicates to /rest/bug/idKohei Yoshino1-0/+9
2018-10-02add helpers for handling logins and error handlingDylan William Hardison9-18/+188
2018-10-01Bug 1495071 - Mojolicious CleanupDylan William Hardison5-42/+60
There are some things that should've been in the first patch but were missed: 1. Calling $c->finish in the finally block should not happen if an exception has been raised. 2. Bugzilla->cleanup() should be called at the same time the mojolicious stash is cleared. 3. Code referencing the shutdownhtml should be removed 4. The conditionals that ran code in Bugzilla.pm when it was not run under mod_perl should instead check where the Bugzilla.pm module was loaded from. 5. Revert the default template from #770 6. Also removed some stuff that manipulates the PATH and signals, which we shouldn't do
2018-10-01fix error and bump version (#772)Dylan William Hardison1-1/+1
2018-09-28no bug - use more generous timeouts Dylan William Hardison2-22/+28
this makes all the mojo timeouts larger -- except for 'clients' which should be smaller because we're so synchronous. It also puts them into environmental variables so ops can tweak them. Note some of the code has moved to the main application class to make future people less likely to not notice these values.
2018-09-28no bug - use bugzilla as the default template engineDylan William Hardison1-0/+1
2018-09-26Bug 1493500 - Remove all trailing whitespaces from all filesKohei Yoshino4-9/+9
2018-09-25Bug 1494065 - Add a basic test using Test::MojoDylan William Hardison2-2/+20
2018-09-24Bug 1490595 - Bugzilla update check should use httpsKohei Yoshino1-1/+1
2018-09-24Bug 1492926 - Handle DBIx::Connectors more appropriatelyDylan William Hardison1-13/+28
This is a bigger change than I anticipated, because the way we cached DBIx::Connector objects was bad. Now we cache the Bugzilla::DB instances in connect_main() and connect_shadow(). This is for maintaining a 1:1 mapping of Bugzilla::DB objects and DBIx::Connector objects. This is important because we want be able to inspect Bugzilla::DB->bz_in_transactions() from the 'connected' event. Note that we weaken the lexical variable $self in _build_connector() because it is referenced by the callback passed to DBI. Without this there would be a memory cycle and stuff would never be freed. (tested my understanding in this gist: https://gist.github.com/dylanwh/646574a027f7b7d92cb7586676da7468)
2018-09-20Bug 1492850 - Remove places where headers are printedDylan William Hardison1-0/+4
There's one place where some (unused?) debug code prints out headers without using Bugzilla->cgi, and testagent.cgi which does the same. The first thing is removed and testagent.cgi is also removed, with its route handled by a simple route.
2018-09-19no bug - bump Alien::libcmark_gfmDylan William Hardison1-2/+2
2018-09-19Bug 1455495 - Replace apache with MojoliciousDylan William Hardison25-553/+951
2018-09-14no bug - cleanup a few nits in the SecurityRiskReport (#746)Dylan William Hardison1-14/+10
- sorted imports, with Moo and MooX::StrictConstructor at the top because they change the behavior of the code. - removed 'scalar' when comparing an array to an integer as it isn't required. - adjusted multi-line first { } to single line since it still fits and perltidy makes it look ugly. - store each 'result' hash in a $result variable, again to make perltidy format better. - change use of 'unshift ARRAY' to 'push ARRAY' and reverse(). The later performs fewer mallocs (push is much more effficient than unshift). Please check if this logic is right.
2018-09-13Bug 1490708 - Ensure we always call DBIx::Connector->dbh before any DBI ↵Dylan William Hardison1-15/+28
method (#744) The code didn't allow a way of doing this without a lot of work. So I had to take the following approach: The 'dbh' attribute is now a method that delegates to DBIx::Connector's dbh method. Per the docs, ->dbh() "Returns the connection's database handle. It will use a an existing handle if there is one, if the process has not been forked or a new thread spawned, and if the database is pingable. Otherwise, it will instantiate, cache, and return a new handle." Then there is the matter of the 'handles' on dbh. I've used Package::Stash to insert proxy methods into the class when it is loaded.
2018-09-10Bug 1479466 - Add Security Bugs ReportIsrael Madueme2-0/+355
Adds the security bugs report with open count and median age open of sec-critical and sec-high bugs.
2018-09-07Bug 1488292 - Remove MozReview extension from BMO code tree as MozReview is ↵dklawren1-6/+0
being decommissioned
2018-08-24Bug 1399721 - change canonical from bugzil.la to bugzilla.mozilla.orgKohei Yoshino1-6/+11
2018-08-20Bug 1482145 - Some changes required for unit tests to be writtenDylan William Hardison1-1/+72
2018-08-17Bug 1482145 - add more type checking to phabbugz codeDylan William Hardison1-0/+27
2018-08-16Bug 1480878 - Monitor the health of Push connector job processingMars1-1/+9
2018-08-14Revert "Bug 1456878 - Support markdown comments"Dylan William Hardison5-69/+39
This reverts commit fd850e00db835d2b84c59014c3b1021fea2294fc.
2018-08-10Bug 1482475 - Add extensive testing frameworkDylan William Hardison6-20/+159
2018-08-10Bug 1456878 - Support markdown commentsIsrael Madueme5-39/+69
2018-08-10Bug 602313 - Allow creation of attachments by pasting an image from ↵Kohei Yoshino1-1/+1
clipboard, as well as by drag-and-dropping a file from desktop
2018-08-06Bug 1481207 - POST /rest/bug_user_last_visit returns random number instead ↵Kohei Yoshino1-1/+1
of bug ID
2018-07-31Bug 1466737 - "use my platform" should default to x86_64 on Mac OS XKohei Yoshino1-0/+1
2018-07-31Bug 1320977 - performance tweaksDylan William Hardison2-7/+9
2018-07-27Bug 1320977 - Add review/feedback/needinfo request counts and block statuses ↵Kohei Yoshino1-1/+5
to /rest/user and /rest/user/suggest responses
2018-07-27Bug 1419636 - Make Google Analytics use beacon/XHR instead of img tagKohei Yoshino1-2/+6
2018-07-23Bug 1476841 - Various code cleanups ahead of the Mojolicious patchDylan William Hardison4-25/+16
2018-07-19Bug 1476288 - Replace moz_nick with (new, revised) nick and also attempt to ↵Dylan William Hardison1-3/+7
disallow duplicate nicks
2018-07-17Bug 1260096 - BugUserLastVisit api not working and throwing error code : 32614Kohei Yoshino1-0/+9
2018-07-17Bug 1476052 - Bugzilla mishandles diff attachments that are UTF-8 and ↵Dylan William Hardison3-0/+4
contain U+FFFF
2018-07-13Bug 1328659 - Add support for utf8=utf8mb4 (switches to dynamic/compressed ↵Dylan William Hardison4-46/+116
row format, and changes charset to utf8mb4)
2018-07-10Bug 1469911 - Make user autocompletion fasterDylan William Hardison5-11/+111
2018-07-06no bug - use more obvious looping constructDylan William Hardison1-2/+2
2018-07-02Bug 1472755 - False positives on IP blocking logicDylan William Hardison1-2/+4
2018-06-29Revert cereal code as risk mitigation for friday pushDylan William Hardison1-9/+7