1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
|
#!/usr/bin/perl -T
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# This Source Code Form is "Incompatible With Secondary Licenses", as
# defined by the Mozilla Public License, v. 2.0.
use 5.10.1;
use strict;
use warnings;
use lib qw(. lib);
use Bugzilla;
use Bugzilla::Constants;
use Bugzilla::Error;
use Bugzilla::Util;
use Bugzilla::Bug;
my $cgi = Bugzilla->cgi;
my $template = Bugzilla->template;
my $vars = {};
my $user = Bugzilla->login();
my $format = $template->get_format(
"bug/show",
scalar $cgi->param('format'),
scalar $cgi->param('ctype')
);
# Editable, 'single' HTML bugs are treated slightly specially in a few places
my $single = !$format->{format} && $format->{extension} eq 'html';
# If we don't have an ID, _AND_ we're only doing a single bug, then prompt
if (!$cgi->param('id') && $single) {
print $cgi->header();
$template->process("bug/choose.html.tmpl", $vars)
|| ThrowTemplateError($template->error());
exit;
}
my (@bugs, @illegal_bugs);
my %marks;
# If the user isn't logged in, we use data from the shadow DB. If they plan
# to edit the bug(s), they will have to log in first, meaning that the data
# will be reloaded anyway, from the main DB.
Bugzilla->switch_to_shadow_db unless $user->id;
if ($single) {
my $id = $cgi->param('id');
push @bugs, Bugzilla::Bug->check({id => $id, cache => 1});
if (defined $cgi->param('mark')) {
foreach my $range (split ',', $cgi->param('mark')) {
if ($range =~ /^(\d+)-(\d+)$/) {
foreach my $i ($1 .. $2) {
$marks{$i} = 1;
}
}
elsif ($range =~ /^(\d+)$/) {
$marks{$1} = 1;
}
}
}
}
else {
my $count = 0;
foreach my $id ($cgi->param('id')) {
# Be kind enough and accept URLs of the form: id=1,2,3.
my @ids = split(/,/, $id);
my @check_bugs;
foreach my $bug_id (@ids) {
last if $count == 100;
next unless $bug_id;
my $bug = new Bugzilla::Bug({id => $bug_id, cache => 1});
if (!$bug->{error}) {
push(@check_bugs, $bug);
}
else {
push(@illegal_bugs, {bug_id => trim($bug_id), error => $bug->{error}});
}
$count++;
}
$user->visible_bugs(\@check_bugs);
foreach my $bug (@check_bugs) {
if ($user->can_see_bug($bug->id)) {
push(@bugs, $bug);
}
else {
my $error = 'NotPermitted'; # Trick to make 012throwables.t happy.
push(@illegal_bugs, {bug_id => $bug->id, error => $error});
}
}
}
}
Bugzilla::Bug->preload(\@bugs);
$vars->{'bugs'} = [@bugs, @illegal_bugs];
$vars->{'marks'} = \%marks;
my @bugids = map { $_->bug_id } grep { !$_->error } @bugs;
$vars->{'bugids'} = join(", ", @bugids);
# Work out which fields we are displaying (currently XML only.)
# If no explicit list is defined, we show all fields. We then exclude any
# on the exclusion list. This is so you can say e.g. "Everything except
# attachments" without listing almost all the fields.
my @fieldlist = (
Bugzilla::Bug->fields, 'flag',
'group', 'long_desc',
'attachment', 'attachmentdata',
'token'
);
my %displayfields;
if ($cgi->param("field")) {
@fieldlist = $cgi->param("field");
}
unless ($user->is_timetracker) {
@fieldlist = grep($_ !~ /_time$/, @fieldlist);
}
foreach (@fieldlist) {
$displayfields{$_} = 1;
}
foreach ($cgi->param("excludefield")) {
$displayfields{$_} = undef;
}
$vars->{'displayfields'} = \%displayfields;
print $cgi->header($format->{'ctype'});
$template->process($format->{'template'}, $vars)
|| ThrowTemplateError($template->error());
|