summaryrefslogtreecommitdiffstats
path: root/Bugzilla
AgeCommit message (Collapse)AuthorFilesLines
2010-12-18Bug 475894 - Send the 'X-Frame-Options: SAMEORIGIN' header to help protect ↵Reed Loden1-0/+6
against clickjacking. [r=mkanat a=mkanat]
2010-12-16Bug 619581: Make contrib/bzdbcopy.pl work again, and also make it work withMax Kanat-Alexander1-1/+15
SQLite. r=mkanat, a=mkanat
2010-12-16Checkin fix for bug 619016: "DEFAULT TRUE" and "DEFAULT FALSE" were no longerMax Kanat-Alexander1-7/+11
getting properly translated to 1 and 0 inside of _set_nulls_sql in Bugzilla::DB::Schema.
2010-12-15Additional fix for bug 619016: The FK adding/removing code for SQLite didn'tMax Kanat-Alexander1-9/+26
work when it was modifying tables to have their first FK or removing all the FKs on a table. r=mkanat, a=mkanat (module owner)
2010-12-15Bug 619016: Make SQLite installations able to alter an existing schema,Max Kanat-Alexander2-20/+218
meaning that SQLite installations can now upgrade and add custom fields. r=mkanat, a=mkanat (module owner)
2010-12-15Bug 619466: Make searching by work_time search the total time on the bugMax Kanat-Alexander1-5/+2
instead of searching the time on individual comments. r=mkanat, a=mkanat (module owner)
2010-12-13Bug 617477: Fix numerous consistency and behavior issues surroudning Bug.updateMax Kanat-Alexander6-37/+188
and Bugzilla::Bug. See https://bugzilla.mozilla.org/show_bug.cgi?id=617477#c2 for details. r=LpSolit, a=LpSolit
2010-12-06Bug 617030 - Add an error code for json_rpc_invalid_callback, and fix theMax Kanat-Alexander2-1/+2
regex used by _bz_callback in Bugzilla::WebService::Server::JSONRPC to accept numbers other than 0 or 1. r=LpSolit, a=mkanat
2010-12-06Bug 542931: Bug in SOAP::Lite prevents WebService:XMLRPC logins from persistingFrédéric Buclin1-3/+3
r/a=mkanat
2010-12-06Bug 607138: Don't send the Strict-Transport-Security header for theMax Kanat-Alexander1-2/+6
attachment_base. r=LpSolit, a=LpSolit
2010-12-04Bug 529974: Let users with local editcomponents privs manage flags for ↵Frédéric Buclin2-23/+98
products they can administer a=LpSolit (module owner)
2010-11-15Bug 611891: Don't generate cookies for logins done over GET via the WebServiceMax Kanat-Alexander1-1/+6
r=glob, a=mkanat
2010-11-14Bug 611974: collectstats.pl --regenerate fails with PostgreSQL 8.4.x ↵Sam Morris1-1/+1
(sql_from_days() doesn't accept integers as argument) r/a=LpSolit
2010-11-14Bug 611979: Undefined subroutine &Bugzilla::Config::Advanced::check_multi ↵Frédéric Buclin1-0/+2
when enabling strict_transport_security r=glob a=LpSolit
2010-11-13Bug 611623: The alias is not filtered in QuickSearch when passed to show_bug.cgiFrédéric Buclin1-0/+1
r=glob a=LpSolit
2010-11-11Bug 591165: (CVE-2010-2761) [SECURITY] Bump minimum required version of ↵Reed Loden1-3/+3
CGI.pm to v3.50 in order to address header injection vulnerability. [r=mkanat a=mkanat]
2010-11-04Bug 596611: Add a hook to email_in.plFrédéric Buclin1-0/+28
r/a=mkanat
2010-11-04Bug 485418: Code and template hooks for userprefs.cgi to be able to add ↵Frédéric Buclin1-0/+43
additional tabs r=mkanat a=LpSolit
2010-11-04Bug 605573: List all available WebService methods at the top of the PODFrédéric Buclin5-77/+35
r/a=mkanat
2010-11-04Bug 474766: The [details] string is duplicated when replying to a comment ↵Frédéric Buclin1-1/+1
containing a link to an attachment r/a=mkanat
2010-11-03Bug 607909: Hours worked / work_time is marked as changing when commenting ↵Christian Legnitto2-3/+7
even when you don't enter a value r/a=LpSolit
2010-11-03When inserting comments during Bug->update, make sure that the commentMax Kanat-Alexander1-0/+3
timestamp is identical to the timestamp passed in to update(). https://bugzilla.mozilla.org/show_bug.cgi?id=590334
2010-11-03The changes to bz_create_database done by the SQLite patch broke theMax Kanat-Alexander2-1/+10
creation of databases on other systems. This restores the original behavior while still retaining the correct error-throwing behavior for systems that can't create a SQLite database. https://bugzilla.mozilla.org/show_bug.cgi?id=337776
2010-11-03Bug 600464: (CVE-2010-3172) [SECURITY] Content/Header injection due to ↵Byron Jones1-1/+2
non-random multipart/x-mixed-replace boundary r=mkanat a=LpSolit
2010-11-03Bug 419014: (CVE-2010-3764) [SECURITY] Old charts are not project specific, ↵Frédéric Buclin2-3/+17
and product names are viewable in graphs/ r=wurblzap a=LpSolit
2010-10-29Bug 602456: Make Search.pm not quote numeric input for numeric fieldsMax Kanat-Alexander4-20/+120
when generating SQL. r=glob, a=mkanat
2010-10-28Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5Frédéric Buclin4-6/+4
r=gerv a=LpSolit
2010-10-28Bug 585802: Change the cc/user autocomplete (and backend) usermatching to ↵Christian Legnitto2-5/+9
ignore spaces / search on space separated names r/a=mkanat
2010-10-27Bug 337776: Basic SQLite Support for BugzillaMax Kanat-Alexander7-19/+385
r=LpSolit, a=mkanat
2010-10-27Bug 602458: Add is_mandatory to Bug.fields output.Max Kanat-Alexander1-0/+9
r=timello, a=mkanat
2010-10-27Bug 551468: Stop word-wrapping comments on the serverMax Kanat-Alexander1-1/+1
r=glob, a=mkanat
2010-10-26Bug 606511 - Bug.search should allow use of include_fields and exclude_fieldsDave Lawrence1-2/+10
r=mkanat, a=mkanat
2010-10-26Bug 607083: Improve the error message that install-module.pl prints whenMax Kanat-Alexander1-0/+3
you specify an invalid CPAN module. r=mkanat, a=mkanat (module owner)
2010-10-25Bug 600230 - Add a unique Message-ID to all outgoing e-mails.Reed Loden1-1/+3
[r=LpSolit a=LpSolit]
2010-10-24Bug 598549: Fixes the visibility_values in the WS Bug.fields method.Tiago Mello1-6/+4
r/a=mkanat
2010-10-23A better fix for Bug 577053: We only upgrade an old workflow to a newMax Kanat-Alexander1-4/+3
one if we're upgrading from a version of Bugzilla before 4.0, and we figure this out now by checking the existence of bugs_activity.comment_id. r=LpSolit, a=mkanat
2010-10-23Bug 578513: Rename cc_accessible and reporter_accessible to is_cc_accessibleMax Kanat-Alexander2-3/+5
and is_reporter_accessible in the WebService. r=timello, a=mkanat
2010-10-22Bug 523205 part 2: $flagtype->set_clusions() was badly implementedFrédéric Buclin1-10/+33
a=LpSolit
2010-10-22Bug 413648: Attachment mime type handling should strip leading and trailing ↵Frédéric Buclin1-0/+1
spaces a=LpSolit
2010-10-22Bug 523205: editflagtypes.cgi should use Bugzilla::FlagType methods to ↵Frédéric Buclin1-39/+218
create and edit flag types a=LpSolit
2010-10-21Bug 598014: Document how to mark the initial comment as private when using ↵Frédéric Buclin2-4/+9
Bug.create() r/a=mkanat
2010-10-21Bug 605425: Non-english templates are no longer precompiled by checksetupFrédéric Buclin2-3/+7
r/a=mkanat
2010-10-20Bug 553266: config.cgi?ctype=rdf spends most of its time loading flagtypes ↵Frédéric Buclin3-31/+80
from the database a=LpSolit (module owner)
2010-10-20Bug 605663: For MySQL, use information_schema instead of SHOW TABLE STATUSMax Kanat-Alexander2-56/+28
to get table information during checksetup, because it's much faster. This also bumps our MySQL requirement to 5.0.15. r=mkanat, a=mkanat (module owner)
2010-10-18Bug 595569: Fixes ↵Tiago Mello1-4/+15
Bugzilla::Field::ChoiceInterface->controls_visibility_of_fields method which was causing an error when deleting a product/component. r/a=mkanat
2010-10-16Minor improvement for bug 451735Frédéric Buclin2-3/+1
r=mkanat
2010-10-16Bug 604835: Have checksetup.pl give WS_EXECUTE permissions to .pl scripts thatMax Kanat-Alexander1-0/+1
ship with extensions. r=mkanat, a=mkanat (module owner)
2010-10-15Bug 604522: t/012throwables.t doesn't catch new user errors correctlyFrédéric Buclin2-3/+3
r/a=mkanat
2010-10-15Bug 451735 part2: fix bz_drop_index() so that it first drops related FKs ↵Frédéric Buclin2-0/+22
before deleting the index itself r/a=mkanat
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin4-1/+18
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat