summaryrefslogtreecommitdiffstats
path: root/template/en/default/admin
AgeCommit message (Collapse)AuthorFilesLines
2017-09-15Bug 1364233 - Add setting to force a group to require MFA and restrict users ↵Dylan William Hardison1-0/+8
in that group who have not enabled MFA
2017-09-15Bug 1391702 - Replace Bugzilla::User::validate_password() with calls to ↵Dylan William Hardison1-0/+70
Data::Password::passwdqc
2017-09-13Bug 1398889 - Add param 'silent_users' that never trigger sending bugmailDylan William Hardison1-1/+3
* Add param silent_users * Add method is_silent_user to User class, which returns true if the login name matches an entry in silent_users. * Change user_wants_mail() to return false if the changer is a silent user. * Change is_global_watcher() in User class code to use any instead of grep * Change regex used to parse param 'globalwatchers' to use consistent regex in BugMail.pm and User.pm
2017-07-07Bug 1377807 - Move memcached options from data/params to localconfigMary Umoh1-22/+0
2017-07-07Bug 1355169 - Add rate-limiting to show_bug.cgi and rest.cgiMary Umoh1-0/+11
* fix mistake * Update * Updates * remove other file
2017-06-21Bug 1369872 - Combine skins/custom/Mozilla/*.css and skins/contrib/*.css ↵Mary Umoh1-9/+9
into skins/standard/*.css * Move bug_groups from custom to standard * More modified bug_group files * Combine skin CSS files * Move .png files to standard * Move css from global.css that belongs in index.css * Changes to css placement * All images within skins/standard moved to images folder * Fix font issue * Updates * Updates * Fix mistake
2017-05-31Bug 1365734 - Handle BMO version number in Makefile.PL / MYMETA.jsonDylan William Hardison1-3/+0
2017-05-24Bug 1348380 - Add param and user setting to control elasticsearch behaviorDylan William Hardison1-1/+1
1) add an 'elasticsearch' param (configured via admin.cgi) that turns off all code that would attempt to connect to elasticsearch. 2) add a user preference that controls using elasticsearch for searches, which defaults to off for logged-in users. Anonymous users will default to using elasticsearch for the greater good. Note that elasticsearch, if available, will still power user-autocompletion (unless turned off as by the above parameter).
2017-01-04Bug 1307478 - Elasticsearch Indexer / Bulk IndexerDylan William Hardison1-0/+22
2016-09-27ug 1268317 - Add Triage Contact to Components as an Editable Field ↵David Lawrence2-1/+16
(everything else)
2015-11-10Bug 1221423 - unable to impersonate users when 2fa is enabledDavid Lawrence1-5/+2
2015-11-05Bug 1221851 - Parameter description for "password_complexity" is incorrectDylan Hardison1-6/+9
2015-10-31Bug 1218457 - Allow localconfig to override (force) certain data/params valuesDylan William Hardison1-1/+11
2015-10-29Bug 1213757 - delegate password and 2fa resets to servicedeskByron Jones1-1/+1
2015-10-28Bug 1217536 - allow inbound_proxy supports '*'Dylan William Hardison1-1/+3
2015-10-21Bug 1209599 - group general preferences by categoryDavid Lawrence1-0/+4
2015-10-16Bug 1196626 - log all authenticated requestsDylan William Hardison1-1/+3
2015-10-12Bug 1199089 - add support for duo-securityByron Jones2-5/+25
2015-10-06Bug 1196620 - set a default value for idle_member_removal when creatingByron Jones1-1/+1
groups to fix multiple test failures
2015-10-06Bug 1196620 - support automatic removal of inactive users from groupsDavid Lawrence5-0/+99
2015-09-02Bug 1196618 - add support for group ownersDavid Lawrence3-0/+43
2015-09-02Bug 1200957 - when a non-admin edits a user the 2fa setting is incorrectly ↵Byron Jones1-1/+1
reported
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones1-0/+22
2015-08-25Bug 1196134 - add ability for admins to force a user to change their ↵Byron Jones2-12/+37
password on next login
2015-08-17Bug 1193190 - 'view account history' on edituser should include audit_log ↵Byron Jones1-1/+1
entries
2015-08-11Bug 1190029: Would like a way to see which groups are 'secure' groups in ↵David Lawrence1-0/+2
editusers.cgi when diagnosing password reset issues
2015-07-27Bug 1186788 - disabling an account should always disable bugmailByron Jones2-9/+27
2015-07-21Bug 1180572 - create attachment_storage parameterByron Jones1-13/+11
2015-06-02Bug 1163760: Backport upstream bug 1144468 to bmo to add authentication ↵Dylan William Hardison1-0/+4
delegation
2015-05-26Bug 1146782: backport bug 1159589 to bmo (migrate autocomplete from yui to ↵Byron Jones2-2/+0
jquery)
2015-05-19Bug 1160430: Backport bug 69267 to BMO (Add the ability to deactivate keywords)Dylan William Hardison2-49/+45
2015-04-24Bug 1157395: CSRF in log in formDavid Lawrence1-2/+3
2015-04-07Bug 1146960: replace the version number on bmo with a build numberByron Jones1-0/+3
2015-03-26Bug 1147550: Minimum password length handler not trusted by password changeByron Jones1-1/+7
2015-03-10Bug 1139749: backport bug 1128853 to bmo (Bugzilla shouldn't try to write ↵Byron Jones4-0/+4
API tokens into the shadow DB)
2015-01-21Bug 1122565: editversions.cgi should focus the version field on page load to ↵David Lawrence2-3/+4
cut down on need for mouse
2014-11-04Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ↵Byron Jones1-3/+2
are failing: 'Untrusted Authentication Request'
2014-11-04Bug 1092037: backport bug 1062739 to bmo (add the ability for administrators ↵Byron Jones2-0/+80
to limit the number of emails sent to a user per minute and hour)
2014-11-04Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for ↵David Lawrence1-2/+3
login forms
2014-06-03Bug 1000917: Backport upstream bug 489028 to bmo/4.2 to allow user last ↵Dylan William Hardison [:dylan]1-2/+5
visit searching
2014-04-10Backout of Bug 990982 - backport bug 539894 to bmo (Use <optgroup/> to group ↵David Lawrence2-14/+14
products into classifications in the product drop-down on show_bug.cgi)
2014-04-07Bug 990982 - backport bug 539894 to bmo (Use <optgroup/> to group products ↵David Lawrence2-14/+14
into classifications in the product drop-down on show_bug.cgi) r=glob
2014-03-04Bug 956230: improve instrumentation of bugzilla's internalsByron Jones1-1/+15
2014-02-10Bug 926085: Forbird single quotes to delimit URLs (no <a href='...'>)'Frédéric Buclin1-2/+2
2014-01-22Bug 951974: backport bug 237498 to bmo (Use memcached to improve performance)Byron Jones1-0/+22
2013-12-10Bug 942725: backport bug 793963 to bmo (add the ability to tag comments with ↵Byron Jones2-1/+8
arbitrary tags)
2013-10-17merged with bugzilla/4.2Dave Lawrence1-3/+3
2013-10-16Bug 924802: (CVE-2013-1742) [SECURITY] (XSS) "id" and "sortkey" are not ↵Frédéric Buclin1-3/+3
sanitized when editing flag types if categoryAction-foo is set r=dkl a=glob
2013-08-23Bug 903387 - Backport bug 240437 (last_seen_date column) to BMO 4.2Dave Lawrence2-0/+14
2013-08-10Back out bug 868330 for the 4.2 branch. This is not a security fixFrédéric Buclin1-1/+1