summaryrefslogtreecommitdiffstats
path: root/Bugzilla
AgeCommit message (Collapse)AuthorFilesLines
2015-04-13Bug 1031035: xmlrpc can be DoS'd with billion laughs attackByron Jones1-0/+8
2015-04-13Bug 1152818: changing an assignee to nobody@mozilla.org or any .bugs address ↵Byron Jones1-1/+5
should automatically reset the status to NEW
2015-04-08Bug 1152368 - BUGZILLA_VERSION in Bugzill::Constants causes error when ↵David Lawrence1-2/+3
installing Perl deps for new BMO installation r=dylan
2015-04-07Bug 1146960: replace the version number on bmo with a build numberByron Jones2-1/+12
2015-03-26Bug 1147550: Minimum password length handler not trusted by password changeByron Jones4-15/+49
2015-03-24Bug 1096798: prototype modal show_bug viewByron Jones2-0/+8
2015-03-16Bug 1142399: invalid xmlrpc requests warns: Use of uninitialized value $file ↵Byron Jones1-0/+3
in substitution (s///) (Bugzilla/WebService/Server/XMLRPC.pm:114)
2015-03-11Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+1
X-Bugzilla headers - Fixed a new hash constant error that did not fail locally due to Perl version difference
2015-03-11Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-2/+7
X-Bugzilla headers - Fixed t/001compile.t error due to tr///r only for 5.14+
2015-03-11Bug 1141440 - OPTION response for CORS requests to REST doesn't allow ↵David Lawrence3-20/+18
X-Bugzilla headers
2015-03-10Bug 1141440: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+11
X-Bugzilla headers
2015-03-10Bug 1139749: backport bug 1128853 to bmo (Bugzilla shouldn't try to write ↵Byron Jones2-2/+5
API tokens into the shadow DB)
2015-03-09Bug 1139755: Fix 'Use of uninitialized value' warningByron Jones1-1/+1
2015-03-09Bug 1140458: backport upstream bug 1139755 to bmo/master to allow API ↵David Lawrence3-3/+21
authentication with X-Headers
2015-03-09Bug 1140966: backport bug 1139257 to bmo (allow cookie+api-token GET REST ↵Byron Jones2-31/+18
requests)
2015-03-03Bug 1137368: Allow the bug's assignee to edit attachment fields, even if ↵Byron Jones1-3/+12
they do not have editbugs
2015-03-03don't log illegal collation errors in sentryByron Jones1-0/+1
2015-02-24Bug 1134743: javascript filter should escape uncode line and paragraph ↵Byron Jones1-0/+2
separators (causes "Unterminated string literal" javascript error)
2015-02-23Bug 1130721: Implement support for the attachment author for pronoun ↵Andre Klapper1-0/+1
substitution in Custom Search
2015-02-20Bug 1088086: Possible duplicate search doesn't return any results if you ↵Byron Jones1-11/+14
input "a->b" (for any a/b)
2015-02-13Bug 1124810: Searching for '---' in Simple Search causes a SQL errorByron Jones1-0/+4
2015-02-03Bug 1128832: don't create api_tokens when pointing to the shadow_dbByron Jones1-0/+2
2015-02-03Bug 1128832: file error - recursion into 'global/header.html.tmpl'Byron Jones1-0/+5
2015-02-03Bug 1128832: file error - recursion into 'global/header.html.tmpl'Byron Jones1-9/+9
2015-02-02Bug 1123769: add a "rank" field to bugzilla to track priorityByron Jones3-0/+29
2015-01-29Bug 1045145: backport upstream bug 726696 to bmo/4.2 to allow use of api ↵David Lawrence12-19/+358
keys for authentication
2015-01-29Bug 1127282: The bug_mentor quicksearch field is impossible to guessByron Jones1-0/+1
2015-01-27Bug 1124432: Backport upstream bug 1079065 to bmo/4.2 to fix improper use of ↵David Lawrence8-10/+10
open() calls
2015-01-27Bug 1124437: Backport upstream bug 1090275 to bmo/4.2 to whitelist ↵Byron Jones10-0/+81
webservice api methods
2015-01-21Bug 1122269: no longer have access to ↵Byron Jones1-6/+7
https://bugzilla.mozilla.org/cvs-update.log
2015-01-08Bug 1089475: Use "ThrowCodeError" when a database error occurs instead of ↵Jeff Fearn1-1/+14
dumping a stack trace
2015-01-07Bug 1077510: fix docker files permissionsByron Jones1-0/+2
2014-12-22Bug 1098291: OPTION response for CORS requests to REST doesn't allow ↵David Lawrence1-1/+1
X-Requested-With r=glob,a=glob
2014-12-05Bug 829358: Changing the name of a private attachment in an unhidden bug ↵David Lawrence1-1/+4
results in the name change being sent unencrypted
2014-11-27Bug 1092578: Decide if an email needs to be encrypted at the time it is ↵Byron Jones1-0/+8
generated, not at the time it is sent
2014-11-18Bug 1100368: css concatenation breaks data: urlsByron Jones1-1/+3
2014-11-17Bug 1097382: OS sniffing should detect Windows 10 from "Windows NT 6.4" ↵Gijs Kruitbosch1-0/+1
instead of detecting Windows NT
2014-11-14Bug 1097813: backport upstream bug 1001462 to bmo/4.2 to fix issue with ↵David Lawrence7-39/+33
using tokens with webservice rest api
2014-11-13Bug 1096565: backport bug 1088253 to bmo/4.2 to allow arbitrary URL params ↵David Lawrence1-8/+29
to be passed to REST API calls
2014-11-11Bug 1089805: BzAPI compatibility layer returns HTTP 200 when a bug update failedDavid Lawrence2-20/+47
2014-11-10Bug 1067619: Pulse is not notified of changes to attachment flagsDavid Lawrence2-0/+27
2014-11-04Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ↵Byron Jones5-64/+7
are failing: 'Untrusted Authentication Request'
2014-11-04Bug 1093600: Backout Bug 1088253 for breaking comment addingByron Jones1-21/+12
2014-11-04Bug 1092037: backport bug 1062739 to bmo (add the ability for administrators ↵Byron Jones1-1/+1
to limit the number of emails sent to a user per minute and hour)
2014-11-04Bug 1092037: backport bug 1062739 to bmo (add the ability for administrators ↵Byron Jones5-19/+89
to limit the number of emails sent to a user per minute and hour)
2014-11-04Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for ↵David Lawrence5-7/+64
login forms
2014-10-31Bug 1092037: backport bug 1062739 to bmo (add the ability for administrators ↵Byron Jones1-0/+12
to limit the number of emails sent to a user per minute and hour)
2014-10-30Bug 1088253: GET REST calls should allow arbitrary URL parameters to be ↵David Lawrence2-12/+26
passed in addition the values in the path r=glob,a=glob
2014-10-29Bug 1090175 - Backport upstream bug 1083258 (fix single value select elements)Dylan William Hardison1-0/+5
r=dkl
2014-10-28Bug 1076746: Mentor field is missing in the email when a bug gets createdDavid Lawrence1-1/+10