Closed
Bug 63018
Opened 24 years ago
Closed 23 years ago
There are some backdoors to DefParam("letsubmitterchoosepriority")
Categories
(Bugzilla :: Creating/Changing Bugs, defect, P1)
Bugzilla
Creating/Changing Bugs
Tracking
()
RESOLVED
FIXED
Bugzilla 2.16
People
(Reporter: endico, Assigned: bbaetz)
References
Details
(Whiteboard: [permissions:edit] enter_bug [blocker will fix])
saving a bug entry form as a bookmarkable template creates an url
containing an entry for priority, even if the letsubmitterchoosepriority
param is off.
Also, if the param is off and the user submits a bug containing that param
in the url, the param is honored and the param can be set to something
that is not the default (and perhaps invalid? - don't test this on b.m.o,
you wise guys).
We have letsubmitterchoosepriority off and just changed our default
priority to '--' and now people who use bug templates are submitting bugs
with the old default priority (P3).
Reporter | ||
Comment 1•24 years ago
|
||
until bugzilla is fixed, the workaround for this is to get people who
you see submitting P3 bugs to go to a fresh bug enter form and save a
new template.
Updated•24 years ago
|
OS: Linux → All
Hardware: PC → All
Target Milestone: --- → Bugzilla 2.16
Updated•24 years ago
|
Priority: -- → P1
Comment 2•23 years ago
|
||
-> New Bugzilla Product
Assignee: tara → myk
Component: Bugzilla → Creating/Changing Bugs
Product: Webtools → Bugzilla
Version: other → unspecified
Updated•23 years ago
|
Whiteboard: [permissions:edit] enter_bug
Comment 3•23 years ago
|
||
Is letsubmitterchoosepriority such a key security feature that we need to fix
every last hole in it? This is not worth the effort of fixing IMO.
Gerv
Severity: normal → minor
Assignee | ||
Comment 4•23 years ago
|
||
gerv: probably not, but it is a bug, and since it has a trivial fix, lets just
fix it.
It is probably possible to file a fixed bug, though, looking at the code, if you
have canedit or canconfirm. I'll take this (to fix that, too), but won't do so
until bug 119715 gets a second review, because the fix will involve extending
those checks a bit.
Assignee: myk → bbaetz
Comment 5•23 years ago
|
||
OK, Brad, bug 119715 is fixed now... where do we stand with this one?
Updated•23 years ago
|
Whiteboard: [permissions:edit] enter_bug → [permissions:edit] enter_bug [blocker will fix]
Assignee | ||
Comment 7•23 years ago
|
||
Fixed by bug 107743 checkin.
Status: ASSIGNED → RESOLVED
Closed: 23 years ago
Resolution: --- → FIXED
Updated•12 years ago
|
QA Contact: matty_is_a_geek → default-qa
You need to log in
before you can comment on or make changes to this bug.
Description
•