summaryrefslogtreecommitdiffstats
path: root/template
AgeCommit message (Collapse)AuthorFilesLines
2016-03-10Bug 1253914 - Cross domain referer leakage when resetting the user passwordDylan Hardison1-0/+1
2016-03-10Bug 1254227 - MozReview auth delegation allows sending out phishing mails ↵Dylan Hardison2-1/+7
via Bugzilla
2016-03-01Bug 1252437 - XSS vulnerability through malicious bug aliasesDylan Hardison1-2/+4
2016-02-27Bug 1223421 - Hide/Obfuscate MozReview API KeysDylan Hardison1-4/+16
2016-02-22Bug 1250129 - tab links sometimes do not workDylan Hardison1-1/+1
2016-01-06Bug 1237188 - add support for servicenow to the 'see also' fieldByron Jones1-2/+3
2015-12-22Revert "Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix ↵David Lawrence1-7/+0
providing a condition as an ID to the webservice results in a taint error" This reverts commit 1e7b4002794930fad702718714b5d1c291bf816c.
2015-12-21Bug 1234325 - Backport upstream bug 1230932 to bmo/4.2 to fix providing a ↵David Lawrence1-0/+7
condition as an ID to the webservice results in a taint error
2015-12-17Bug 1231346 - UI tweaks to make 2FA setup/changes more intuitiveDavid Lawrence1-0/+9
2015-12-09Bug 1231248 - Add hint that DuoSec login is probably your LDAP usernameByron Jones1-6/+6
2015-12-01Bug 1229198 - When saving a buglist from a saved search as a CSV file, set ↵Byron Jones1-1/+2
the filename to <saved-query-name>.csv
2015-11-23Bug 1225366 - allow duo authentication for users already enrolled with duoByron Jones2-16/+76
2015-11-18Bug 1223999 - Add See-Also support for aha.io featuresDylan Hardison1-0/+1
2015-11-10Bug 1221423 - unable to impersonate users when 2fa is enabledDavid Lawrence1-5/+2
2015-11-05Bug 1221851 - Parameter description for "password_complexity" is incorrectDylan Hardison1-6/+9
2015-11-04Bug 1177911 - Determine and implement better password requirements for BMODylan Hardison6-333/+251
2015-11-04Bug 1219750 - Allow Apache2::SizeLimit to be configured via paramsDylan Hardison1-0/+4
2015-10-31Bug 1218457 - Allow localconfig to override (force) certain data/params valuesDylan William Hardison2-1/+16
2015-10-29Bug 1213757 - delegate password and 2fa resets to servicedeskByron Jones2-1/+5
2015-10-28Bug 1217536 - allow inbound_proxy supports '*'Dylan William Hardison1-1/+3
2015-10-22Bug 1217551 - Add File::Copy::Recursive to Bugzilla/Install/Requirements.pmDavid Lawrence1-0/+1
2015-10-21Bug 1209599 - group general preferences by categoryDavid Lawrence2-36/+41
2015-10-19Bug 1146780 - treat github and mozreview attachments as patchesByron Jones1-1/+1
2015-10-16Bug 1196626 - log all authenticated requestsDylan William Hardison1-1/+3
2015-10-14Bug 1195952 - Please add the following choices to the CAB review drop down ↵David Lawrence1-0/+1
area of bugzilla
2015-10-12Bug 1199089 - add support for duo-securityByron Jones7-20/+209
2015-10-09Bug 1213033 - please make the MFA code field type=numericByron Jones1-1/+1
2015-10-08Bug 1200765 - Make login UX mobile friendly to assist mobile authentication ↵Dylan William Hardison3-60/+67
workflow
2015-10-06Bug 1211703: help docs not available for User PreferencesDavid Lawrence1-1/+1
2015-10-06Bug 1196620 - set a default value for idle_member_removal when creatingByron Jones1-1/+1
groups to fix multiple test failures
2015-10-06Bug 1196620 - support automatic removal of inactive users from groupsDavid Lawrence6-0/+101
2015-09-29Bug 1199090 - add printable recovery 2fa codesByron Jones3-26/+99
2015-09-23Bug 1199087 - extend 2fa protection beyond loginByron Jones9-83/+106
2015-09-15Bug 1203991 - change the suggested fxos 2fa app (again)Byron Jones1-1/+1
2015-09-09Bug 1202976 - change the suggested fxos 2fa appByron Jones1-2/+3
2015-09-09Bug 1202975 - warning about api key requirement is no longer shown when ↵Byron Jones1-12/+19
enabling 2fa
2015-09-09Bug 1201954 - Add a "forgot password" link to user preferences -> accountByron Jones2-0/+15
2015-09-03Bug 1201415 - add message informing users to check their mobile device's ↵Byron Jones1-1/+1
time if they have issues enrolling
2015-09-03Bug 1201415 - add message informing users to check their mobile device's ↵Byron Jones1-6/+5
time if they have issues enrolling
2015-09-03Bug 1201426 - 2fa message says "your current password is required to ↵Byron Jones1-1/+1
enable.." when disabling
2015-09-03Bug 1201116 - the duo mobile client doesn't appear to work with our totp ↵Byron Jones1-1/+3
implementation
2015-09-02Bug 1200974 - "API-Key" in 2fa text should be "API key" to match the rest of ↵Byron Jones3-4/+4
bugzilla
2015-09-02Bug 1196618 - add support for group ownersDavid Lawrence5-1/+50
2015-09-02Bug 1200957 - when a non-admin edits a user the 2fa setting is incorrectly ↵Byron Jones1-1/+1
reported
2015-09-02Bug 1200618 - Layout of the TOTP 2FA leads to missing the token time window ↵Byron Jones1-14/+28
and thus frustration
2015-09-01Bug 1200610: jsonrpc API requests do not work when "Require API-Key ↵David Lawrence1-0/+1
authentication for API requests" is enabled due to missing API tokens
2015-09-01Bug 1200600 - message about 2fa's interaction with api authentication should ↵Byron Jones1-6/+16
be visible when 2fa is enabled
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones11-0/+282
2015-08-25Bug 1196134 - add ability for admins to force a user to change their ↵Byron Jones5-12/+255
password on next login
2015-08-24Bug 1195836 - Remove install-module.pl from bmoDylan William Hardison1-2/+4