Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2002-06-01 | Bug 147486 - Fixes cross site scripting issues; first checked in on the ↵ | preed%sigkill.com | 1 | -2/+2 | |
2.14.1 branch, but I forgot the 2.16 branch/trunk (thanks bbaetz); patch=preed, r=bbaetz,myk | |||||
2002-05-02 | Bug 141557 - modification to user deletion code in editusers.cgi - prevent ↵ | gerv%gerv.net | 1 | -0/+2 | |
allowuserdeletion being bypassed. Patch by gerv; 2xr=myk. | |||||
2002-04-30 | Bug 140784 - edit*.cgi need a use lib "." on Win32/IIS w/ taint. Patch by ↵ | gerv%gerv.net | 1 | -0/+1 | |
jouni@heikniemi.net; r=bbaetz, gerv. | |||||
2002-04-23 | Bug 139051 - fix misspelling of "privilege". Patch by mental ↵ | gerv%gerv.net | 1 | -2/+2 | |
<xor@ivwnet.com>, 2xr=bbaetz. | |||||
2002-04-02 | Remaining pieces of Bug 23067 from yesterday... no idea why the first ↵ | justdave%syndicomm.com | 1 | -1/+1 | |
commit didn't pick these up. | |||||
2002-03-18 | Bug 92905 - perl error when editing user and no groups defined | bbaetz%student.usyd.edu.au | 1 | -20/+20 | |
r=justdave x 2 | |||||
2002-02-04 | Bug 95732 - remove logincookies.cryptpassword, and invalidate cookies from | bbaetz%student.usyd.edu.au | 1 | -2/+6 | |
the db when required instead. (Also fixes bug 58242 as a side effect) r=myk, kiko | |||||
2001-11-08 | Fix for bug 108821: Prevent users with any blessgroupset privileges from ↵ | myk%mozilla.org | 1 | -1/+4 | |
blessing any group set. Patch by Jake <jake@acutex.net> and Bradley <bbaetz@cs.mcgill.ca>. r=jake,myk for Bradley's portion, r=bbaetz,myk for Jake's portion. | |||||
2001-10-27 | Bug 81594 - SQL error after editing user entry when changing numerous things ↵ | jake%acutex.net | 1 | -1/+1 | |
at once (including the login name). Patch by Matthew Tuck <matty@chariot.net.au> r= dkl@redhat.com, jake@acutex.net | |||||
2001-10-13 | Fix for bug 104516: No code changes in this patch, all this checkin does is ↵ | justdave%syndicomm.com | 1 | -99/+99 | |
remove all tabs from the bugzilla source and replace it with the appropriate number of spaces (in most cases 8) to line up with existing code. This is part of the effort to bring the existing codebase up to par with our style guidelines. Patch by Jake Steehagen <jake@acutex.net> r= justdave x2 | |||||
2001-10-10 | partial backout of the checkin from bug 103121, because it collided with the ↵ | justdave%syndicomm.com | 1 | -1/+1 | |
patch from bug 51519. This should satifactorily meet the goals of both patches. patch by kiko, r= justdave | |||||
2001-10-10 | Bugzilla Bug 103121 editusers.cgi needs an Add link on the query page. | timeless%mac.com | 1 | -1/+2 | |
patch by dkl. r=kiko | |||||
2001-10-06 | Fix for bug 57821 - Empty regular expression causes a software error. | jake%acutex.net | 1 | -2/+7 | |
Patch by Nick Hibma <n_hibma@qubesoft.com> r= jake@acutex.net | |||||
2001-07-11 | Fix for bug 77473, bug 74032, and bug 85472: Passwords are no longer stored ↵ | justdave%syndicomm.com | 1 | -30/+34 | |
in plaintext in the database. Passwords are no longer encrypted with MySQL's ENCRYPT() function (because it doesn't work on some installs), but with Perl's crypt() function. The crypt-related routines now properly deal with salts so that they work on systems that use methods other than UNIX crypt to crypt the passwords (such as MD5). Checksetup.pl will walk through your database and re-crypt everyone's passwords based on the plaintext password entry, then drop the plaintext password column. As a consequence of no longer having a plaintext password, it is no longer possible to email someone their password, so the login screen has been changed to request a password reset instead. The user is emailed a temporary identifying token, with a link back to Bugzilla. They click on the link or paste it into their browser and Bugzilla allows them to change their password. Patch by Myk Melez <myk@mozilla.org> r= justdave@syndicomm.com, jake@acutex.net | |||||
2001-05-31 | Fix for bug 45164 - New users created by the admin were not subject to the ↵ | jake%acutex.net | 1 | -60/+88 | |
userregexp for groupsets. Patch by Joe Robins <jmrobins@tgix.com> r= jake@acutex.net | |||||
2001-05-24 | Bug 71552 - Remove oldemailtech from Bugzilla | jake%acutex.net | 1 | -48/+9 | |
r= justdave@syndicomm.com | |||||
2001-04-17 | Correcting my email address in the comments | justdave%syndicomm.com | 1 | -1/+1 | |
2001-02-23 | fix for 66876: Using userids (mediumint) for initialowner and initialqacontact | cyeh%bluemartini.com | 1 | -2/+2 | |
based on patch submitted by baulig@suse.de (Martin Baulig). | |||||
2001-01-25 | patch from bug 17464 to give user some control over what sorts of bug mail ↵ | dmose%mozilla.org | 1 | -24/+38 | |
get sent to an account. Original patch by al_raetz@yahoo.com and lots of additional hacking by me; r=donm@bluemartini.com | |||||
2000-09-16 | front end fix for 31456: Editing a superuser clears their access flags | cyeh%bluemartini.com | 1 | -20/+26 | |
patch by jmrobin@tgix.com | |||||
2000-09-16 | fixes for 51184, 51185, 51186: allow for ldap authentication. patches | cyeh%bluemartini.com | 1 | -6/+25 | |
by jmrobins@tgix.com (Joe Robins). LDAP sections haven't been tested yet, but the code is arranged such that it shouldn't disturb existing user authentication system. | |||||
2000-09-07 | Fix for bug 51519: Links to index are too specific. Patch by | dave%intrec.com | 1 | -1/+1 | |
john.beranek@pace.co.uk (John Beranek) | |||||
2000-08-05 | Removing a couple lines from the patch for bug 31336 that got left in by | dave%intrec.com | 1 | -2/+0 | |
accident. | |||||
2000-07-26 | Landing Adam Spiers' contributions for security and small functional issues | tara%tequilarista.org | 1 | -0/+1 | |
2000-07-20 | Fix for bug 31336 (separate bug groups from access groups in user editor) | dave%intrec.com | 1 | -8/+43 | |
2000-07-19 | Fix for bug 42037 (user passwords visible in editusers.cgi). Patch | dave%intrec.com | 1 | -1/+1 | |
submitted by JRobertson@medevolve.com (Jon Robertson) | |||||
2000-07-18 | Fix for bug 32971, patch submitted by mtakacs@pacbell.net | dave%intrec.com | 1 | -1/+2 | |
2000-06-24 | checkin to fix Bug 25010 "Need a way to edit the list of available groups". | cyeh%bluemartini.com | 1 | -13/+22 | |
Patches and work contributed by dave@intrec.com (Dave Miller). Some cleanup work needs to be done with regards to permissions and bit-twiddling see other bugs that are dependent on 25010 for details. | |||||
2000-02-18 | Was crashing when logging profile activity. | terry%mozilla.org | 1 | -3/+6 | |
2000-02-17 | Major spankage. Added a new state, UNCONFIRMED. Added new groups, | terry%mozilla.org | 1 | -63/+159 | |
"editbugs" and "canconfirm". People without these states are now much more limited in what they can do. For backwards compatability, by default all users will have the editbugs and canconfirm bits on them. Installing this changes as is should only have one major visible effect -- an UNCONFIRMED state will appear in the query page. But no bugs will become in that state, until you tweak some of the new voting-related parameters you'll find when editing products. | |||||
2000-01-19 | Added a way to disable a user. | terry%mozilla.org | 1 | -18/+56 | |
2000-01-19 | Spruced up "editusers.cgi". Added an "editusers" group. | terry%mozilla.org | 1 | -33/+95 | |
2000-01-18 | Stop ever using perl's crypt() function; only use mysql's. (Using | terry%mozilla.org | 1 | -9/+1 | |
both was causing corruption on about 1 in 40 passwords.) | |||||
2000-01-15 | Patch by Ramon Felciano <felciano@ingenuity.com>, with many tweaks by | terry%mozilla.org | 1 | -1/+1 | |
me. Added a footer to every page. Add some options to do things like display checkboxes instead of scrolling lists, and a new formatting for email diffs, and show list items capitalized instead of all upper case. | |||||
1999-11-02 | updated license boilerplate | dmose%mozilla.org | 1 | -9/+18 | |
1999-10-13 | Patch by Holger Schurig <holger@holger.om.org> -- rewriting and enhancing the | terry%mozilla.org | 1 | -0/+583 | |
ability to edit components, products, and versions. Yay! |