happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1195362] Quicksearch error pages (“foo is not a field” and friends) should still fill in search into quicksearch box
  • [1190476] set Comment field in GPG email to the URL of the bug
  • [1195645] don’t create a new session for every authenticated REST/BzAPI call
  • [1197084] No mail sent when bugs added to or removed from *-core-security groups
  • [1196614] restrict the ability for users with editusers/creategroups to alter admins and the admin group
  • [1196092] Switch logincookies primary key to auto_incremented id, make cookie a secondary UNIQUE key
  • [1197699] always store the ip address in the logincookies table
  • [1197696] group_members report doesn’t display nested inherited groups
  • [1196134] add ability for admins to force a user to change their password on next login
  • [1192687] add the ability for users to view and revoke existing sessions
  • [1195836] Remove install-module.pl from bmo
  • [1180733] “An invalid state parameter was passed to the GitHub OAuth2 callback” error when logging in with github

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1194584] “has cert” and “member of secure group” shouldn’t be visible when creating a user
  • [1181596] Modal UI doesn’t honor the “where to put the additional comment textarea” preference
  • [1193190] ‘view account history’ on edituser should include audit_log entries
  • [979441] Under mod_perl, some modules aren’t preloaded at startup
  • [981487] change bugs_fulltext from myisam to innodb
  • [1195315] Use of uninitialized value in string eq at Bugzilla/Product.pm line 99
  • [1195593] Able to delete any Bugzilla user’s Bugmail Filter
  • [1195598] The “unknown_action” error message could confuse the user
  • [1195620] stop sending http cookies to sentry
  • [1194250] ‘take’ button should uncheck “reset assignee to default”

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1160929] add support for storing attachments in s3
  • [1190693] Rewrite auth delegation to use a server-side POST instead of a client-side GET to delegate API Key
  • [1184332] Add Restricted API calls for MozReview
  • [1190029] Would like a way to see which groups are ‘secure’ groups in editusers.cgi when diagnosing password reset issues
  • [1193590] Warning about obsolete patches on an unassigned bug
  • [1036872] Bugmail filtering allows through bugmail that should be blocked when combined with the standard email prefs
  • [1192854] change tabs on user preferences from horizontal to vertical layout
  • [1193878] Make a few more fields optional on the intern request form
  • [1192688] add ip to last used api key information

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1191016] Additional changes needed to the Intern Request Form
  • [1167622] red border in confirmation of changes is misleading – should be green as the text
  • [1153108] add page allowing users to grant canconfirm rights onto themselves
  • [1146761] clicking on a date/flag/etc should scroll to the corresponding change
  • [1192893] Deactivated keywords cause the table on the keyword descriptions page to render strangely
  • [1187220] develop a script to remove non-public data from the bmo database

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1189075] keyboard shortcut for going into edit mode conflicts with Firefox’s tab groups feature
  • [1188339] Increase length of all tokens value for greater security
  • [1185856] Tabbing out of the keyword field should not select the first available keyword
  • [1189172] remove link to ‘release notes’ from index page, and point ‘help’ to bmo.readthedocs.org
  • [1188561] Pre-populate form.fxos.feature fields with GET parameters
  • [1189362] Fix memory leak in Bugzilla::Bug->comments
  • [1190255] modal UI is used immediately after bug creation when using a non-standard form, even if preferenced off

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1185823] add additional [audit] syslog entries
  • [1187184] Minor updates to gear form
  • [1184828] api searches should honour the same fields in its “order” parameter as the web UI
  • [1186803] remove %product_sec_groups from bmo/lib/data.pm
  • [1186776] allow users to set keywords on bug creation (via API/internally only)
  • [1181453] Amend https://bugzilla.mozilla.org/form.fxos.feature form
  • [1186788] disabling an account should always disable bugmail
  • [1171806] add the ability for a user to disable/”remove” their own account
  • [1187498] Disable SiteMapIndex extension if running on under development site instead of production

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1184454] unable to create new products
  • [1184456] cannot create a new product with ‘detect’ as the default platform
  • [1183899] Restricting access of bugs submitted from the FSA Budget Request form
  • [1184755] Update docker image runtests.sh to clone bmo git repo with full history instead of –depth=1
  • [1180571] remove the ability to search attachment data
  • [1183524] api bustage caused by bug 1173442
  • [1183892] Bugzilla disables browser context menu after showing its username left-click menu
  • [1184984] Current Selenium tests are failing due to changes made by bug 1173442
  • [1184982] The cpanfile generated by checksetup results in an unsuccessful mod_perl install
  • [1185440] activity bound to comments which are default-hidden is not hidden by default
  • [1185455] Remove use of non-standard flag argument of String.prototype.replace in inline-history.js.
  • [1177497] Backport upstreams 5.0 rST docs to BMO and make publicly available at https://bmo.readthedocs.org
  • [1184001] deliver error report to sentry via cron instead of immediately
  • [1180572] create attachment_storage parameter
  • [1185852] sentry.pl should exit early if there aren’t any reports to send

to improve security bugzilla.mozilla.org now serves attachments from a different domain – bmoattachments.org – instead of from a subdomain of bugzilla.mozilla.org.  all existing links should continue to work, and will redirect to a bmoattachments.org url.

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1143132] emails about redirected attachment urls link to attachment-edit instead of the actual url (mozreview, github, etc)
  • [1181410] “To see this bug, you must first log in to an account” link is bright blue on red
  • [1181759] After bug 1181410, test_bug_edit.t is failing due to change in error message wording
  • [1181637] Update Req Opening Process (Cost Center list on 2015-07-08)
  • [1173442] Implement admin UI changes to allow selecting default product security group instead of editing code
  • [1178031] Add an “applies to all platforms” link next to “use my platform”
  • [1182375] unable to create a database from scratch: Unknown column ‘secure_mail’ in ‘field list’
  • [1182387] add bug.votes to api responses
  • [1182498] Assignee not displayed when the assignee’s email address contains “.bugs”
  • [1180880] Make the “URL” field in the new UI more prominent
  • [1182500] Clearing group flag doesn’t work when also moving bug to a different component
  • [1123143] Make Bugzilla link to MozReview link directly to diff instead of review request page.
  • [1182676] form.dev-engagement-event: [existing field modification]
  • [984438] Don’t send ‘Your Overdue Requests’ reminder emails on weekends
  • [1182909] Prevent new accounts from CCing large numbers of users
  • [1180570] store attachment size in the database

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1178231] When the tracking section is collapsed, keywords are displayed like they are in the whiteboard
  • [1180449] The modal user interface has changed the behavior of ctype=xml URLs
  • [1180711] invalid_cookies_or_token should have a real error code
  • [1172968] Move the scripts we want to keep from contrib/* and place them in scripts/ directory. Remove contrib from repo
  • [1180788] b.m.o modal UI “fixed in” label isn’t quite right for B2G
  • [1180776] Mozilla Recruiting Requisition Opening Process Template: Job Description Update

discuss these changes on mozilla.tools.bmo.

happy bmo push day!

the following changes have been pushed to bugzilla.mozilla.org:

  • [1174057] Authentication Delegation should add an App ID column to associate api keys with specific callbacks
  • [1163761] Allow MozReview to skip user consent screen for Authentication Delegation
  • [825946] tracking flags should be cleared when a bug is moved to a product/component where they are not valid
  • [1149593] Hovering over “Copy Summary” changes the button to a grey box
  • [1171523] Change Loop product to Hello
  • [1175928] flag changes made at the same time as a cc change are not visible without showing cc changes
  • [1175644] The cpanfile created by checksetup.pl defines the same feature multiple times, breaking cpanm
  • [1176362] [Voting] When a user votes enough to confirm an individual bug, the bug does not change to CONFIRMED properly
  • [1176368] [Voting] When updating votestoconfirm to a new value, bugs with enough votes are not moved to CONFIRMED properly
  • [1161797] Use document.execCommand(“copy”) instead of flash where it is available
  • [1177239] Please create a “Taskcluster Platform” product
  • [1144485] Adapt upstream Selenium test suite to BMO
  • [1178301] webservice_bug_update.t Parse errors: Bad plan. You planned 927 tests but ran 921
  • [1163170] Giving firefox-backlog-drivers rights to edit the Rank field anywhere it appears in bugzilla
  • [1171758] Persistent xss is possible on Firefox

discuss these changes on mozilla.tools.bmo.

Follow

Get every new post delivered to your Inbox.

Join 94 other followers