BMO/Recent changes/2015-08

2015-08-27

• bug 1198598 change the bug count restrictions in describekeywords from 'security-group' to 'core-security'
• bug 1199329 Auth Delegation should ignore the query string parameters of a callback URI when determining uniqueness

2015-08-24

• bug 1195362 Quicksearch error pages ("foo is not a field" and friends) should still fill in search into quicksearch box
• bug 1190476 set Comment field in GPG email to the URL of the bug
• bug 1195645 don't create a new session for every authenticated REST/BzAPI call
• bug 1197084 No mail sent when bugs added to or removed from *-core-security groups
• bug 1196614 restrict the ability for users with editusers/creategroups to alter admins and the admin group
• bug 1196092 Switch logincookies primary key to auto_incremented id, make cookie a secondary UNIQUE key
• bug 1197699 always store the ip address in the logincookies table
• bug 1197696 group_members report doesn't display nested inherited groups
• bug 1196134 add ability for admins to force a user to change their password on next login
• bug 1192687 add the ability for users to view and revoke existing sessions
• bug 1195836 Remove install-module.pl from bmo
• bug 1180733 "An invalid state parameter was passed to the GitHub OAuth2 callback" error when logging in with github

2015-08-18

• bug 1194584 "has cert" and "member of secure group" shouldn't be visible when creating a user
• bug 1181596 Modal UI doesn't honor the "where to put the additional comment textarea" preference
• bug 1193190 'view account history' on edituser should include audit_log entries
• bug 979441 Under mod_perl, some modules aren't preloaded at startup
• bug 981487 change bugs_fulltext from myisam to innodb
• bug 1195315 Use of uninitialized value in string eq at Bugzilla/Product.pm line 99
• bug 1195593 Able to delete any Bugzilla user's Bugmail Filter
• bug 1195598 The "unknown_action" error message could confuse the user
• bug 1195620 stop sending http cookies to sentry
• bug 1194250 'take' button should uncheck "reset assignee to default"
• bug 1195544 Information Disclosure Vulnerability Permits Attacker Obtains The GitHub OAUTH Return Code

2015-08-10

• bug 1191888 Create security_remove.pl script to remove user from all visibility roles in secure bugs
• bug 1191016 Additional changes needed to the Intern Request Form
• bug 1167622 red border in confirmation of changes is misleading - should be green as the text
• bug 1153108 add page allowing users to grant canconfirm rights onto themselves
• bug 1146761 clicking on a date/flag/etc should scroll to the corresponding change
• bug 1192893 Deactivated keywords cause the table on the keyword descriptions page to render strangely
• bug 1187220 develop a script to remove non-public data from the bmo database

2015-08-05

• bug 1190836 Add user-agent detection of Windows 10
• bug 1190601 Should be able to edit comments made from editing a current attachment
• bug 1191565 [Security] Able to delete any Bugzilla user's component watching

2015-08-03

• bug 1189075 keyboard shortcut for going into edit mode conflicts with Firefox's tab groups feature
• bug 1188339 Increase length of all tokens value for greater security
• bug 1185856 Tabbing out of the keyword field should not select the first available keyword
• bug 1189172 remove link to 'release notes' from index page, and point 'help' to bmo.readthedocs.org
• bug 1188561 Pre-populate form.fxos.feature fields with GET parameters
• bug 1189362 Fix memory leak in Bugzilla::Bug->comments
• bug 1190255 modal UI is used immediately after bug creation when using a non-standard form, even if preferenced off