Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Bug 1250114 - XSS possible in extensions calling global/tabs.html.tmpl if ↵ | Dylan William Hardison | 2016-05-13 | 1 | -1/+1 |
| | | | | tab.link is user-controlled | ||||
* | Bug 1230932: Providing a condition as an ID to the webservice results in a ↵ | Frédéric Buclin | 2016-03-19 | 1 | -0/+8 |
| | | | | | | taint error r/a=dkl | ||||
* | Bug 1250264: Extensions have no easy way to override favicon.ico | Frédéric Buclin | 2016-02-22 | 1 | -1/+2 |
| | | | | r/a=dkl | ||||
* | Bug 1046241: All links to the documentation displayed besides error messages ↵ | Frédéric Buclin | 2016-02-08 | 3 | -79/+77 |
| | | | | | | are broken r=gerv a=dkl | ||||
* | Bug 324242: Unsetting shutdownhtml requires too much intimate knowledge | Frédéric Buclin | 2016-01-07 | 1 | -2/+9 |
| | | | | r/a=dkl | ||||
* | Bug 1191706: When editing flag types, components do not match the selected ↵ | Frédéric Buclin | 2016-01-04 | 1 | -3/+2 |
| | | | | | | product when classifications are enabled r/a=dkl | ||||
* | Revert "Bug 1230932 - Providing a condition as an ID to the webservice ↵ | David Lawrence | 2015-12-22 | 1 | -7/+0 |
| | | | | | | results in a taint error" This reverts commit 396ae88235ef68ed45978dfb36774c5fe9a2d699. | ||||
* | Bug 1230932 - Providing a condition as an ID to the webservice results in a ↵ | Dylan Hardison | 2015-12-22 | 1 | -0/+7 |
| | | | | | | taint error r=dkl,a=dkl | ||||
* | Aliases can now be 40 characters long, see bug 1012506 | Frédéric Buclin | 2015-09-09 | 1 | -1/+1 |
| | |||||
* | Bug 1189813: Include javascript_urls in header.html.tmpl DEFAULT directive | Colin Joy | 2015-08-06 | 1 | -0/+1 |
| | | | | r=LpSolit a=dkl | ||||
* | Bug 1183398: Mandatory custom fields block form submission if they are ↵ | Frédéric Buclin | 2015-08-06 | 1 | -1/+3 |
| | | | | | | hidden and have no value r=gerv a=dkl | ||||
* | Bug 1162914: Editing a user field when confirmuniqueusermatch = true no ↵ | Frédéric Buclin | 2015-05-14 | 1 | -1/+1 |
| | | | | | | longer works r=dkl a=glob | ||||
* | Bug 1155512: Localization template links not lining up with other header links | Frédéric Buclin | 2015-04-18 | 1 | -4/+5 |
| | | | | r/a=dkl | ||||
* | Bug 880282: Replace |FILTER no_break| by |class="nowrap"| to prevent dashes ↵ | Frédéric Buclin | 2015-03-11 | 2 | -3/+3 |
| | | | | | | (U+002D) from being replaced by non-breaking hyphens/dashes (U+2011) r=dkl a=justdave | ||||
* | Bug 1128853: Bugzilla shouldn't try to write API tokens into the shadow DB | Byron Jones | 2015-03-05 | 1 | -1/+3 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1106653: Truncate the field-* and type-* values in error messages | Frédéric Buclin | 2014-12-23 | 1 | -2/+4 |
| | | | | r=dkl a=glob | ||||
* | Bug 399068: Remove the docs_urlbase parameter. r=LpSolit, a=glob. | Gervase Markham | 2014-12-22 | 2 | -3/+2 |
| | |||||
* | Bug 1102229: custom css stylesheets are not loaded if CONCATENATE_ASSETS is ↵ | Byron Jones | 2014-11-24 | 1 | -1/+1 |
| | | | | | | false r=dkl,a=sgreen | ||||
* | Revert Bug 330707 - Add optional support for MarkDown | David Lawrence | 2014-11-04 | 2 | -5/+1 |
| | |||||
* | 'cgi' is not defined in templates, see bug 913364 | Frédéric Buclin | 2014-10-30 | 2 | -2/+6 |
| | |||||
* | Bug 1068494: Remove CVS/Bonsai/LXR-specific bits of Patch Viewer | Byron Jones | 2014-10-27 | 1 | -5/+0 |
| | | | | (remove unused user-error "invalid_context") | ||||
* | Bug 1088399 - Add support for Github pull requests in See Also field. ↵ | Matt Selsky | 2014-10-24 | 1 | -1/+1 |
| | | | | r=gerv, a=glob. | ||||
* | Bug 1033068: The "unknown_action" error message could confuse the user | Frédéric Buclin | 2014-10-22 | 1 | -2/+3 |
| | | | | r=dkl a=sgreen | ||||
* | Bug 1080840: Update WebServices to include Markdown feature | Koosha KM | 2014-10-16 | 1 | -0/+3 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1075578: [SECURITY] Improper filtering of CGI arguments | Frédéric Buclin | 2014-10-06 | 1 | -1/+1 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1071317: Remove unused variables | Frédéric Buclin | 2014-09-29 | 1 | -2/+0 |
| | | | | r=gerv a=sgreen | ||||
* | Bug 1064395: concatenate and slightly minify javascript files | Byron Jones | 2014-09-18 | 1 | -7/+24 |
| | | | | r=dkl,a=glob | ||||
* | Bug 1041306: Kill global/site-navigation.html.tmpl to conform to the HTML5 ↵ | Frédéric Buclin | 2014-09-11 | 2 | -77/+0 |
| | | | | | | spec about valid <link rel="..."> keywords r=dkl a=sgreen | ||||
* | Bug 1009013 - Require a user to change their password if they log in and ↵ | Simon Green | 2014-09-11 | 1 | -8/+8 |
| | | | | | | their current password does not meet the password complexity rules r=glob, a=sgreen | ||||
* | Bug 330707: Add optional support for MarkDown | Koosha KM | 2014-08-28 | 1 | -1/+2 |
| | | | | r=dkl,a=sgreen | ||||
* | Bug 1009520 - Incorrect quote usage in global/header.html.tmpl | Simon Green | 2014-08-14 | 1 | -5/+5 |
| | | | | r=gerv, a=sgreen | ||||
* | Bug 726696 - All authenticated WebServices methods should require ↵ | Simon Green | 2014-07-27 | 2 | -0/+17 |
| | | | | | | username/pass, token or a valid API key for authentication r=dkl, a=sgreen | ||||
* | Bug 1014345 - Add Group.get RPC call | Simon Green | 2014-07-02 | 1 | -0/+5 |
| | | | | r=glob, a=glob | ||||
* | Bug 1020821 - Product drop down orders classifications alphabetically | Simon Green | 2014-07-02 | 1 | -2/+4 |
| | | | | r=gkl, a=glob | ||||
* | Bug 1012508 - Add a admin_menu hook to change who has access to admin.cgi | Simon Green | 2014-06-14 | 1 | -5/+1 |
| | | | | r=gerv, a=sgreen | ||||
* | Bug 442013 - Create Bugzilla::User->set_groups and set_bless_groups and have ↵ | Simon Green | 2014-06-06 | 1 | -30/+24 |
| | | | | | | editusers.cgi use them r=justdave, a=glob | ||||
* | Bug 977969: concatenate and slightly minify css files | Byron Jones | 2014-05-14 | 1 | -34/+6 |
| | | | | r=gerv, a=glob | ||||
* | Bug 489028 - Record last-visited time of bugs when logged in | Dylan William Hardison | 2014-04-22 | 2 | -0/+6 |
| | | | | r=glob a=justdave | ||||
* | Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protection | Frédéric Buclin | 2014-04-17 | 1 | -0/+9 |
| | | | | r=dkl a=justdave | ||||
* | Bug 994619 - show_bug product list is sometimes missing the actual product a ↵ | David Lawrence | 2014-04-16 | 1 | -10/+20 |
| | | | | | | bug is in r=gerv,a=justdave | ||||
* | Bug 539894: Use <optgroup/> to group products into classifications in the ↵ | rojanu | 2014-04-02 | 1 | -0/+80 |
| | | | | | | product drop-down on show_bug.cgi r=glob, a=justdave | ||||
* | Bug 978070: Do not use document.write() to insert HTML code | Frédéric Buclin | 2014-03-26 | 1 | -9/+3 |
| | | | | r/a=justdave | ||||
* | Bug 962812: Use the "required" attribute where appropriate | Sunil Joshi | 2014-03-23 | 1 | -0/+3 |
| | | | | r=LpSolit a=justdave | ||||
* | Bug 980918 - Rename "Tags" to "Personal Tags". Patch by acho; r=gerv, ↵ | Gervase Markham | 2014-03-21 | 1 | -1/+1 |
| | | | | a=justdave. | ||||
* | Bug 956190 (part 3): Remove IE-fixes.css (Internet Explorer 7 and older are ↵ | Frédéric Buclin | 2014-03-05 | 1 | -10/+0 |
| | | | | | | no longer supported) r/a=justdave | ||||
* | Bug 365050 - removal notice doesn't use English correctly (lists: =and) | Matt Selsky | 2014-03-04 | 1 | -4/+2 |
| | | | | r=dkl,a=justdave | ||||
* | Bug 365057 - messages.html.tmpl file bareword should be tagged in <code> or ↵ | Matt Selsky | 2014-03-04 | 1 | -1/+1 |
| | | | | | | something r=dkl,a=justdave | ||||
* | Bug 466178 - Add an INTEGER custom field type | Simon Green | 2014-02-27 | 2 | -0/+7 |
| | | | r=glob, a=justdave | ||||
* | Bug 967883: modify_keywords() shouldn't throw an error when an unprivileged ↵ | Frédéric Buclin | 2014-02-25 | 1 | -4/+4 |
| | | | | | | user doesn't alter the keywords list r=gerv a=justdave | ||||
* | Bug 913364 - Reuse preset values when navigation through enter_bug.cgi | Simon Green | 2014-01-21 | 2 | -8/+5 |
| | | | r=glob, a=glob |