Bommels05/Mozilla
Bommels05/Mozilla
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
214,774 Commits 3,986 Branches 0 Tags
Commit Graph

160 Commits

Author SHA1 Message Date
mkanat%bugzilla.org
d568f97c43 Bug 725663 - (CVE-2012-0453) [SECURITY] CSRF vulnerability in the XML-RPC API when using mod_perl 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263465 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-22 15:32:12 +00:00
mkanat%bugzilla.org
26e2568713 Bug 727240: The POD for Bug.attachments is wrong about the format of the returned data 
r=dkl a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263407 18797224-902f-48f8-a5cc-f745e15eee43
 2012-02-14 22:24:30 +00:00
mkanat%bugzilla.org
d21ff6ea40 Bug 718319: (CVE-2012-0440) [SECURITY] JSON-RPC permits to bypass token checks and can lead to CSRF (no victim's action required) 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263341 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-31 16:16:56 +00:00
mkanat%bugzilla.org
fcedb45128 Bug 706753: Bugzilla will not work with newest version of JSON::RPC 1.01 due to non-backward compatibility 
r=dkl r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263226 18797224-902f-48f8-a5cc-f745e15eee43
 2012-01-05 01:02:37 +00:00
mkanat%bugzilla.org
118c8d3319 Bug 711714: (CVE-2011-3667) [SECURITY] The User.offer_account_by_email WebService method lets you create new user accounts independently of the value of Bugzilla::Auth::Verify::*::user_can_create_account 
r=dkl a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263205 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-28 22:21:31 +00:00
mkanat%bugzilla.org
de0268f582 Bug 657290: Bug.add_attachment() stores truncated timestamps in the DB (seconds are missing) 
r=dkl a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263137 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-06 12:05:31 +00:00
mkanat%bugzilla.org
0b85a2884f Bug 692354: Incorrect parameter type in WebServices documentation for Bug.add_comment 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@263135 18797224-902f-48f8-a5cc-f745e15eee43
 2011-12-05 21:35:28 +00:00
mkanat%bugzilla.org
a644285360 Bug 691243: Fix typo 
r/a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262987 18797224-902f-48f8-a5cc-f745e15eee43
 2011-10-15 13:35:13 +00:00
mkanat%bugzilla.org
bc09cda02b Bug 653477: (CVE-2011-2380) [SECURITY] Group names can be guessed when creating or editing a bug 
r=mkanat a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262581 18797224-902f-48f8-a5cc-f745e15eee43
 2011-08-04 20:17:35 +00:00
mkanat%bugzilla.org
21c4f5f0a6 Bug 600810: Use XMLRPC::Transport::HTTP:Apache as base class under mod_perl 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262511 18797224-902f-48f8-a5cc-f745e15eee43
 2011-07-20 17:01:25 +00:00
mkanat%bugzilla.org
1af3f824a7 Bug 653341: Bug.create() fails to error out if an invalid group is passed 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@262298 18797224-902f-48f8-a5cc-f745e15eee43
 2011-05-06 21:05:42 +00:00
mkanat%bugzilla.org
8041edb04a Bug 633055: Make Bug.legal_values explicitly throw an error if you pass "undef" 
for the "field" parameter
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261939 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-14 20:31:54 +00:00
mkanat%bugzilla.org
07dd9f4c2b Bug 609538: Make the JSON-RPC interface support UTF-8 when a recent version 
of LWP is installed
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261937 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-14 20:22:19 +00:00
mkanat%bugzilla.org
5332cf908b Bug 633422: Fix the documentation for User.get's include_disabled parameter 
and make User.get check that its required parameters are passed.
r=LpSolit, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261932 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-14 07:51:04 +00:00
mkanat%bugzilla.org
9be0b6a917 Bug 606511 - Bug.search should allow use of include_fields and exclude_fields 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261921 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-11 22:03:34 +00:00
mkanat%bugzilla.org
3dcad3da1a Fix a POD compilation error. 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261914 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-11 01:06:30 +00:00
mkanat%bugzilla.org
f891421dc0 Fix the POD of Bug.add_attachment to reflect that it now automatically 
picks the content_type of text/plain when you set is_patch to true.


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261913 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-11 01:04:58 +00:00
mkanat%bugzilla.org
e9f214ef14 Bug 633041: Add an error code for zero_length_file and fill in content_type 
for patches when content_type is missing in Bug.add_attachment in the
WebService
r=LpSolit, a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261912 18797224-902f-48f8-a5cc-f745e15eee43
 2011-02-11 00:33:27 +00:00
mkanat%bugzilla.org
94c2468a8b Bug 622679 - Autocomplete suggests inactive/disabled accounts as matches 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261854 18797224-902f-48f8-a5cc-f745e15eee43
 2011-01-27 22:16:52 +00:00
mkanat%bugzilla.org
cb16644b08 Bug 588013: Fix typo 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261692 18797224-902f-48f8-a5cc-f745e15eee43
 2010-12-27 22:05:20 +00:00
mkanat%bugzilla.org
277d3ec810 Bug 617477: Fix numerous consistency and behavior issues surrounding Bug.update 
and Bugzilla::Bug. See https://bugzilla.mozilla.org/show_bug.cgi?id=617477#c2
for details.
r=LpSolit, a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261654 18797224-902f-48f8-a5cc-f745e15eee43
 2010-12-13 21:04:01 +00:00
mkanat%bugzilla.org
9f4af6173f Bug 617030 - Add an error code for json_rpc_invalid_callback, and fix the 
regex used by _bz_callback in Bugzilla::WebService::Server::JSONRPC to
accept numbers other than 0 or 1.
r=LpSolit, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261631 18797224-902f-48f8-a5cc-f745e15eee43
 2010-12-06 19:18:34 +00:00
mkanat%bugzilla.org
456003fca2 Bug 605573: List all available WebService methods at the top of the POD 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261525 18797224-902f-48f8-a5cc-f745e15eee43
 2010-11-04 17:09:27 +00:00
mkanat%bugzilla.org
32a1634518 Bug 607966: Use of qw(...) as parentheses is deprecated since Perl 5.13.5 
r=gerv a=LpSolit


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261490 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-28 15:35:02 +00:00
mkanat%bugzilla.org
814dbe1463 Bug 602458: Add is_mandatory to Bug.fields output 
r=timello, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261473 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-27 08:12:13 +00:00
mkanat%bugzilla.org
f28de274c1 Bug 578513: Rename cc_accessible and reporter_accessible to is_cc_accessible 
and is_reporter_accessible in the WebService.
r=timello, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261451 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-23 00:07:14 +00:00
mkanat%bugzilla.org
7f5fe712ec Bug 598014: Document how to mark the initial comment as private when using Bug.create() 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261440 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-21 00:01:45 +00:00
mkanat%bugzilla.org
a3c230bf03 Bug 575947: Users with passwords length less than 6 characters can't login after migration from 3.4.x or older to 3.6 or newer 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261395 18797224-902f-48f8-a5cc-f745e15eee43
 2010-10-14 00:53:22 +00:00
mkanat%bugzilla.org
9a85ff4ac1 Bug 573195: Make Bug.get return all of a bug's standard and custom field 
information
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@261302 18797224-902f-48f8-a5cc-f745e15eee43
 2010-09-30 01:03:22 +00:00
mkanat%bugzilla.org
1ee07e55b6 Bug 583622: email_in.pl doesn't let me set timetracking fields 
r/a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260939 18797224-902f-48f8-a5cc-f745e15eee43
 2010-08-02 01:49:26 +00:00
mkanat%bugzilla.org
263544534f Bug 579514: Make Bug.attachments also return attachment data 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260827 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-20 22:03:21 +00:00
mkanat%bugzilla.org
2fc87bb4db The changes to accept positional parameters in XML-RPC meant that sometimes 
$params wouldn't just be undef, but actually missing, so validate() was
getting @keys where $params should have been.


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260766 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-14 04:04:43 +00:00
mkanat%bugzilla.org
dad4debae5 Bug 577765: Allow XML-RPC to accept multiple positional parameters 
r=ghendricks, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260758 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-13 23:27:05 +00:00
mkanat%bugzilla.org
2c91534083 Bug 412074: Ability to add attachments to a bug via the WebService 
(Bug.add_attachment)
r=timello, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260748 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-13 22:48:31 +00:00
mkanat%bugzilla.org
c07a6591c2 alias_not_allowed should be multiple_alias_not_allowed 
git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260727 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-13 02:23:04 +00:00
mkanat%bugzilla.org
77cf5d275c Bug 415813: Implement Bug.update() as an API for WebServices 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260726 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-13 01:51:32 +00:00
mkanat%bugzilla.org
e2efc625e8 Bug 577415: Allow positional parameters for XML-RPC, because Testopia 
uses them.
r=ghendricks, a=mkanat


git-svn-id: svn://10.0.0.236/branches/BUGZILLA-4_0-BRANCH@260682 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-08 20:35:21 +00:00
mkanat%bugzilla.org
7b163c4a83 Bug 574995: Make the WebService return reporter, attachment submitter, and 
commenter all as "creator"
r=timello, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260653 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-06 22:16:34 +00:00
mkanat%bugzilla.org
d275436852 Bug 577049: POD must mention Bugzilla 4.0 instead of 3.8 
r/a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260649 18797224-902f-48f8-a5cc-f745e15eee43
 2010-07-06 17:31:55 +00:00
mkanat%bugzilla.org
e8ffd81794 Bug 22353: Automatic duplicate bug detection on enter_bug.cgi 
r=glob, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260499 18797224-902f-48f8-a5cc-f745e15eee43
 2010-06-22 02:16:36 +00:00
mkanat%bugzilla.org
bbceabc320 Bug 548198: Add a method of limiting the User.get results by group name or id 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260492 18797224-902f-48f8-a5cc-f745e15eee43
 2010-06-18 21:18:16 +00:00
mkanat%bugzilla.org
ee678ea1c7 Bug 395451 - "Bugzilla::BugMail needs to use Bug objects internally instead of direct SQL" 
[r=mkanat a=mkanat]


git-svn-id: svn://10.0.0.236/trunk@260272 18797224-902f-48f8-a5cc-f745e15eee43
 2010-05-07 03:47:31 +00:00
mkanat%bugzilla.org
351e8b3d1f Bug 550727: Add JSONP Support to the JSON-RPC WebService Interface 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260234 18797224-902f-48f8-a5cc-f745e15eee43
 2010-04-27 19:17:46 +00:00
mkanat%bugzilla.org
594bcd76eb Bug 550732: Allow read-only JSON-RPC methods to be called with GET 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260221 18797224-902f-48f8-a5cc-f745e15eee43
 2010-04-22 19:01:59 +00:00
mkanat%bugzilla.org
d59af6de8f Bug 554569: WebService Bug.fields: Make it so that if you request a field 
by both id and name, only one field is returned
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260079 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-28 21:49:59 +00:00
mkanat%bugzilla.org
85405f718a Bug 554560: WebService Bug.fields: Send visibility_values for all select-type 
fields (including built-in fields that don't support it yet), but don't send
a single null in the array for fields that have no visibility values.
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260078 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-28 21:46:29 +00:00
mkanat%bugzilla.org
7bc9beb49b Bug 554536: [WebService] Make Bug.fields not send the "values" item for 
fields that don't have a list of values
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260073 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-28 21:37:11 +00:00
mkanat%bugzilla.org
96702cc3fd Bug 553913: Add explicit error codes to WebService errors that were missing 
them
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260071 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-28 21:34:27 +00:00
mkanat%bugzilla.org
508011e452 Bug 553818: Fix the format of the return value for the Bug.attachments 
method in the WebService
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260031 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-26 02:47:42 +00:00
mkanat%bugzilla.org
966db34582 Bug 553774: Make User.login correctly return cookies under JSON-RPC 
r=dkl, a=mkanat


git-svn-id: svn://10.0.0.236/trunk@260025 18797224-902f-48f8-a5cc-f745e15eee43
 2010-03-23 23:22:35 +00:00