Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 1031035: xmlrpc can be DoS'd with billion laughs attack | Byron Jones | 2015-04-13 | 1 | -0/+8 |
| | | | | r=LpSolit,a=glob | ||||
* | Bug 1152319: calling /rest/logout results in an internal error and a ↵ | David Lawrence | 2015-04-10 | 1 | -0/+10 |
| | | | | | | malformed response to the caller r=glob,a=glob | ||||
* | Bug 1138417: sql_group_concat() generates bad SQL code with PostgreSQL 8.x | Simon Green | 2015-04-09 | 1 | -51/+86 |
| | | | | r=LpSolit a=glob | ||||
* | Bug 1143874: Improve load time of bug comments | Frédéric Buclin | 2015-04-05 | 2 | -14/+21 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1143871: Correctly preload bug data when viewing a bug | Frédéric Buclin | 2015-04-05 | 2 | -55/+77 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1143867: Optimize set_comment_is_private() and isopened() | Frédéric Buclin | 2015-04-05 | 1 | -17/+25 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1145438: DB Crash under postgres when using alias column in buglist.cgi | Matt Tyson | 2015-03-23 | 1 | -1/+1 |
| | | | | (fix ordering) | ||||
* | Bug 1145459: SQL error under postgres when using 'blocks' column in buglist.cgi | Matt Tyson | 2015-03-20 | 1 | -1/+1 |
| | | | | r=glob,a=glob | ||||
* | Bug 1145438: DB Crash under postgres when using alias column in buglist.cgi | Matt Tyson | 2015-03-20 | 1 | -0/+1 |
| | | | | r=glob,a=glob | ||||
* | Bug 880282: Replace |FILTER no_break| by |class="nowrap"| to prevent dashes ↵ | Frédéric Buclin | 2015-03-11 | 1 | -8/+0 |
| | | | | | | (U+002D) from being replaced by non-breaking hyphens/dashes (U+2011) r=dkl a=justdave | ||||
* | Bug 1138463: mod_perl does not support Apache 2.4 directives | Frédéric Buclin | 2015-03-11 | 1 | -9/+50 |
| | | | | r=dkl a=glob | ||||
* | Bug.update_attachment returns 'attachments', not 'attachment' | Frédéric Buclin | 2015-03-07 | 1 | -1/+1 |
| | |||||
* | Bug 1128853: Bugzilla shouldn't try to write API tokens into the shadow DB | Byron Jones | 2015-03-05 | 1 | -0/+5 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1061271: Add a hook into ↵ | Frédéric Buclin | 2015-02-26 | 2 | -0/+22 |
| | | | | | | Bugzilla::User::check_and_send_account_creation_confirmation() r=gerv a=glob | ||||
* | Bug 1134743: javascript filter should escape uncode line and paragraph ↵ | Byron Jones | 2015-02-24 | 1 | -0/+2 |
| | | | | | | separators (causes "Unterminated string literal" javascript error) r=dylan,a=glob | ||||
* | Bug 1133690: .htaccess incorrectly assumes that Apache 2.2.x can read new ↵ | Frédéric Buclin | 2015-02-20 | 1 | -17/+17 |
| | | | | | | 2.4 directives r=dkl a=glob | ||||
* | Bug 1088086: Possible duplicate search doesn't return any results if you ↵ | Byron Jones | 2015-02-20 | 1 | -7/+11 |
| | | | | | | input "a->b" (for any a/b) r=dylan,a=glob | ||||
* | Bug 1112181: Relative dates in the future involving months are incorrectly ↵ | Frédéric Buclin | 2015-02-17 | 1 | -2/+3 |
| | | | | | | converted r=dylan a=glob | ||||
* | Bug 1131404: checksetup.pl should check if mod_rewrite and mod_version are ↵ | Frédéric Buclin | 2015-02-11 | 1 | -1/+3 |
| | | | | | | enabled r=dkl a=glob | ||||
* | Bug 1121477: Support for Apache HTTPD 2.4 | Jochen Wiedmann | 2015-02-02 | 1 | -11/+93 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1128245 - upgrading from v4.4.6 to v5.0rc2 fails on connection problem ↵ | Dylan William Hardison | 2015-02-02 | 1 | -1/+3 |
| | | | | with MySQL | ||||
* | Bump version post-release | David Lawrence | 2015-01-27 | 1 | -1/+1 |
| | |||||
* | Bump version to 5.0rc2 | David Lawrence | 2015-01-27 | 1 | -1/+1 |
| | |||||
* | Bug 1124716: regression caused by bug 1090275 to whitelist webservice ↵ | David Lawrence | 2015-01-23 | 1 | -1/+1 |
| | | | | | | methods causes test failures with t/012throwables.t r=dylan,a=glob | ||||
* | Bump version post-release | David Lawrence | 2015-01-21 | 1 | -1/+1 |
| | |||||
* | Bumped version to 5.0rc1 | David Lawrence | 2015-01-21 | 1 | -1/+1 |
| | |||||
* | Bug 1090275: WebServices modules should maintain a whitelist of methods that ↵ | David Lawrence | 2015-01-21 | 12 | -0/+95 |
| | | | | | | are allowed instead of allowing access to any function imported into its namespace r=dylan,a=glob | ||||
* | Bug 1079065: [SECURITY] Always use the 3 arguments form for open() to ↵ | Gervase Markham | 2015-01-21 | 5 | -7/+7 |
| | | | | | | prevent shell code injection r=dkl,a=glob | ||||
* | Bug 1107549 - split extension docs into User and Admin docs. r=dkl, a=glob. | Gervase Markham | 2015-01-07 | 1 | -0/+15 |
| | |||||
* | Bug 1113147: Revert the hack from bug 1108809 and blacklist SOAP::Lite 1.12 | Frédéric Buclin | 2015-01-07 | 2 | -7/+2 |
| | | | | r=dkl a=glob | ||||
* | Bug 1098291: OPTION response for CORS requests to REST doesn't allow ↵ | David Lawrence | 2014-12-22 | 1 | -1/+1 |
| | | | | | | X-Requested-With r=glob,a=glob | ||||
* | Bug 399068: Remove the docs_urlbase parameter. r=LpSolit, a=glob. | Gervase Markham | 2014-12-22 | 2 | -11/+32 |
| | |||||
* | Bug 1108809: SOAP::Lite 1.12 causes error when using XMLRPC API | David Lawrence | 2014-12-18 | 1 | -0/+7 |
| | | | | r=glob,a=glob | ||||
* | Bug 1111043: Bug.add_comment returns the wrong comment ID | Frédéric Buclin | 2014-12-17 | 1 | -12/+3 |
| | | | | r/a=dkl | ||||
* | Bug 1082106 - avoid problem where ->bz_add_columns creates a foreign key ↵ | David Lawrence | 2014-12-11 | 1 | -3/+6 |
| | | | | constraint causing failure in checksetup.pl when it tries to re-add it later. r,a=glob | ||||
* | Bug 1095244: DB crash when adding an alias that differs only in case from an ↵ | David Lawrence | 2014-12-08 | 1 | -2/+13 |
| | | | | | | existing alias r=glob,a=glob | ||||
* | Bug 1038275: Comprehensible documentation for the REST API | David Lawrence | 2014-11-26 | 1 | -0/+8 |
| | | | | r=gerv,a=glob | ||||
* | Revert "Bug 317021 - improve description of bz_canusewhine* parameters. r=gerv." | Gervase Markham | 2014-11-25 | 2 | -15/+2 |
| | | | | This reverts commit 5d8aa524eff6409055d4d967d2857ede40be4cad. | ||||
* | Bug 317021 - improve description of bz_canusewhine* parameters. r=gerv. | Matt Selsky | 2014-11-24 | 2 | -2/+15 |
| | |||||
* | Bug 1101151: OS sniffing should detect Windows 10 from "Windows NT 6.4" ↵ | David Lawrence | 2014-11-20 | 1 | -0/+1 |
| | | | | | | instead of detecting Windows NT r=LpSolit,a=glob | ||||
* | Bug 978615 - remove URL to unavailable webdot server. r,a=glob | Gervase Markham | 2014-11-19 | 1 | -1/+1 |
| | |||||
* | Bug 1100368: css concatenation breaks data: urls | Byron Jones | 2014-11-18 | 1 | -1/+3 |
| | | | | r=dylan,a=glob | ||||
* | Bug 1095758: Fix use of uninitialized value $hostname in Mailer.pm | Koosha KM | 2014-11-12 | 1 | -1/+1 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1001462: Bug.search causes error when using simple token auth and ↵ | David Lawrence | 2014-11-12 | 3 | -19/+28 |
| | | | | | | specifying 'token' instead of 'Bugzilla_token' r=glob,a=glob | ||||
* | Bug 1094858: Create hook in Bugzilla::WebService::Constants to allow ↵ | Byron Jones | 2014-11-11 | 1 | -0/+1 |
| | | | | | | overrriding of standard status codes by extensions (fix broken POD) | ||||
* | Bug 1093600: REST shouldn't support multiple instances of parameters for ↵ | David Lawrence | 2014-11-10 | 1 | -12/+24 |
| | | | | | | resources which only support a single params (eg. POST bug/comment) r=glob,a=glob | ||||
* | Bug 1094858: Create hook in Bugzilla::WebService::Constants to allow ↵ | David Lawrence | 2014-11-10 | 2 | -20/+48 |
| | | | | | | overrriding of standard status codes by extensions r=gerv,a=glob | ||||
* | Bug 1093928: Remove the longdescs.is_markdown DB column | David Lawrence | 2014-11-10 | 1 | -0/+3 |
| | | | | r=LpSolit,a=glob | ||||
* | Revert Bug 330707 - Add optional support for MarkDown | David Lawrence | 2014-11-04 | 12 | -718/+26 |
| | |||||
* | Bug 1088253: GET REST calls should allow arbitrary URL parameters to be ↵ | David Lawrence | 2014-10-29 | 2 | -12/+26 |
| | | | | | | passed in addition the values in the path r=glob,a=glob |