Closed
Bug 840824
Opened 12 years ago
Closed 12 years ago
It is possible to create a new bug with a non active target milestone, version or component
Categories
(Bugzilla :: Creating/Changing Bugs, defect)
Tracking
()
RESOLVED
FIXED
Bugzilla 4.2
People
(Reporter: mail, Assigned: mail)
References
Details
Attachments
(1 file, 1 obsolete file)
|
1.67 KB,
patch
|
LpSolit
:
review+
|
Details | Diff | Splinter Review |
With the changes in bug 752946 it is possible to create a new bug (either via RPC or URL hijacking) with a milestone that is inactive. This shouldn't be allowed.
Flags: blocking4.4?
Flags: blocking4.2.5?
|
Assignee | |
Comment 1•12 years ago
|
||
I've request the blocking on this bug on the same basis as the bug that created the problem.
Attachment #713221 -
Flags: review?(glob)
|
|
||
Comment 2•12 years ago
|
||
Comment on attachment 713221 [details] [diff] [review]
v1 patch
I think the problem you describe affects versions and components too. IMO, the right fix is to write:
my $old_foo = blessed($invocant) ? $invocant->foo : '';
This way, the first part of
if ($object->name ne $old_foo && !$object->is_active)
will always be false for new bugs (a component, version or milestone cannot be '') and we will always call !$object->is_active.
So please fix this issue for versions and components too.
Attachment #713221 -
Flags: review?(glob) → review-
|
|
||
Comment 3•12 years ago
|
||
This is less problematic for new bugs, because the UI doesn't list inactive values. So unless you hack the URL directly, honest users are not affected by this issue. But I'm fine to take it for 4.2.5 anyway as the fix in bug 752946 is incomplete.
Severity: normal → minor
Depends on: 752946
Flags: blocking4.4?
Flags: blocking4.4+
Flags: blocking4.2.5?
Flags: blocking4.2.5+
See Also: 752946 →
Summary: It is possible to create a bug with a non active target milestone → It is possible to create a new bug with a non active target milestone, version or component
|
|
Assignee | |
Comment 4•12 years ago
|
||
Attachment #713221 -
Attachment is obsolete: true
Attachment #713735 -
Flags: review?(LpSolit)
|
|
||
Comment 5•12 years ago
|
||
Comment on attachment 713735 [details] [diff] [review]
v2 patch
No need to write : '' on its own line. On checkin, it should be moved on the same line as foo ? bar. r=LpSolit
Attachment #713735 -
Flags: review?(LpSolit) → review+
|
|
||
Updated•12 years ago
|
Flags: approval4.4+
Flags: approval4.2+
Flags: approval+
|
|
||
Comment 6•12 years ago
|
||
Committing to: bzr+ssh://lpsolit%40gmail.com@bzr.mozilla.org/bugzilla/trunk/
modified Bugzilla/Bug.pm
Committed revision 8577.
Committing to: bzr+ssh://lpsolit%40gmail.com@bzr.mozilla.org/bugzilla/4.4/
modified Bugzilla/Bug.pm
Committed revision 8518.
Committing to: bzr+ssh://lpsolit%40gmail.com@bzr.mozilla.org/bugzilla/4.2/
modified Bugzilla/Bug.pm
Committed revision 8187.
Status: ASSIGNED → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•