MISP/app/View/Attributes/index.ctp

<div class="attributes index">
	<h2><?php echo __('Attributes');?></h2>
		<?php
if ($isSearch == 1) {
	echo "<h4>Results for all attributes";
	if ($keywordSearch != null) echo " with the value containing \"<b>" . h($keywordSearch) . "</b>\"";
	if ($keywordSearch2 != null) echo " excluding the events \"<b>" . h($keywordSearch2) . "</b>\"";
	if ($categorySearch != "ALL") echo " of category \"<b>" . h($categorySearch) . "</b>\"";
	if ($typeSearch != "ALL") echo " of type \"<b>" . h($typeSearch) . "</b>\"";
	if (isset($orgSearch) && $orgSearch != '' && $orgSearch != null) echo " created by the organisation \"<b>" . h($orgSearch) . "</b>\"";
	echo ":</h4>";
} ?>
	<table cellpadding="0" cellspacing="0">
	<tr>
			<th><?php echo $this->Paginator->sort('event_id');?></th>
			<th><?php echo $this->Paginator->sort('category');?></th>
			<th><?php echo $this->Paginator->sort('type');?></th>
			<th><?php echo $this->Paginator->sort('value');?></th>
			<th<?php echo ' title="' . $attrDescriptions['signature']['desc'] . '"';?>>
			<?php echo $this->Paginator->sort('signature');?></th>
			<th class="actions"><?php echo __('Actions');?></th>
	</tr>
	<?php
	$currentCount = 0;
	if ($isSearch == 1) {
	    // build the $replacePairs variable used to highlight the keywords
	    $replacementArray = array();
	    foreach ($keywordArray as $k => &$keywordArrayElement) {
	        $keywordArrayElement = trim($keywordArrayElement);
	        if ("" == $keywordArrayElement) {
				unset($keywordArray[$k]);
				continue;
			}
	        $replacementArray[] = '<span style="color:red">'.$keywordArrayElement.'</span>';
	    }
	    if (!empty($replacementArray))
	      $replacePairs = array_combine($keywordArray, $replacementArray);
	}

foreach ($attributes as $attribute):
	?>
	<tr>
		<td class="short">
			<div id="<?php echo $attribute['Attribute']['id']?>" title="<?php echo h($attribute['Event']['info'])?>">
			<?php
				if ($attribute['Event']['orgc'] == $me['org']) {
					echo $this->Html->link($attribute['Event']['id'], array('controller' => 'events', 'action' => 'view', $attribute['Event']['id']), array('class' => 'SameOrgLink'));
				} else {
					echo $this->Html->link($attribute['Event']['id'], array('controller' => 'events', 'action' => 'view', $attribute['Event']['id']));
				}
				$currentCount++;
			?>
			</div>
		</td>
		<td title="<?php echo $categoryDefinitions[$attribute['Attribute']['category']]['desc'];?>" class="short" onclick="document.location ='
		<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">
		<?php echo h($attribute['Attribute']['category']); ?>&nbsp;</td>
		<td title="<?php echo $typeDefinitions[$attribute['Attribute']['type']]['desc'];?>" class="short" onclick="document.location ='
		<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">
		<?php echo h($attribute['Attribute']['type']); ?>&nbsp;</td>
		<td onclick="document.location ='<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">
	<?php
	$sigDisplay = nl2br(h($attribute['Attribute']['value']));
	if ($isSearch == 1 && !empty($replacePairs)) {
		// highlight the keywords if there are any
		$sigDisplay = strtr($sigDisplay, $replacePairs);
	}
	if ('attachment' == $attribute['Attribute']['type'] || 'malware-sample' == $attribute['Attribute']['type']) {
		echo $this->Html->link($sigDisplay, array('controller' => 'attributes', 'action' => 'download', $attribute['Attribute']['id']), array('escape' => FALSE));
	} elseif ('link' == $attribute['Attribute']['type']) {
		echo $this->Html->link($sigDisplay, nl2br(h($attribute['Attribute']['value'])), array('escape' => FALSE));
	} else {
		echo $sigDisplay;
	}
	?>&nbsp;</td>
		<td class="short" style="text-align: center;" onclick="document.location ='<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">
		<?php echo $attribute['Attribute']['to_ids'] ? 'Yes' : 'No'; ?>&nbsp;</td>
		<td class="actions"><?php
	if ($isAdmin || ($isAclModify && $attribute['Event']['user_id'] == $me['id']) || ($isAclModifyOrg && $attribute['Event']['org'] == $me['org'])) {
		echo $this->Html->link(__('Edit'), array('action' => 'edit', $attribute['Attribute']['id']), null);
		echo $this->Form->postLink(__('Delete'), array('action' => 'delete', $attribute['Attribute']['id']), null, __('Are you sure you want to delete this attribute?'));
	}
	echo $this->Html->link(__('View'), array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']));
	?>
		</td>
	</tr>
	<?php
endforeach;
	?>
	</table>
	<p>
	<?php
	echo $this->Paginator->counter(array(
	'format' => __('Page {:page} of {:pages}, showing {:current} records out of {:count} total, starting on record {:start}, ending on {:end}')
	));
	?>	</p>

	<div class="paging">
	<?php
		echo $this->Paginator->prev('< ' . __('previous'), array(), null, array('class' => 'prev disabled'));
		echo $this->Paginator->numbers(array('separator' => ''));
		echo $this->Paginator->next(__('next') . ' >', array(), null, array('class' => 'next disabled'));
	?>
	</div>
</div>
<div class="actions">
	<ul>
		<li><?php if ($isSearch == 1) echo $this->Html->link(__('Download results as XML'), array('admin' => false, 'controller' => 'events', 'action' => 'downloadSearchResult'));?></li>
		<?php echo $this->element('actions_menu'); ?>
	</ul>
</div>
Renamed Signature to Attribute 2012-03-26 19:56:44 +02:00			`<div class="attributes index">`
Signature is now known as Attribute 2012-03-21 21:25:16 +01:00			`<h2><?php echo __('Attributes');?></h2>`
Fix for the Attributes 2012-12-17 17:21:57 +01:00			`<?php`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`if ($isSearch == 1) {`
			`echo "<h4>Results for all attributes";`
coding standards Coding Standards typo. 2012-12-18 21:45:57 +01:00			`if ($keywordSearch != null) echo " with the value containing \"<b>" . h($keywordSearch) . "</b>\"";`
Several things (search, migration) - Changes to the default setting for non private events after migration - search attribute update to be able to exclude events 2013-02-27 17:15:09 +01:00			`if ($keywordSearch2 != null) echo " excluding the events \"<b>" . h($keywordSearch2) . "</b>\"";`
coding standards Coding Standards typo. 2012-12-18 21:45:57 +01:00			`if ($categorySearch != "ALL") echo " of category \"<b>" . h($categorySearch) . "</b>\"";`
			`if ($typeSearch != "ALL") echo " of type \"<b>" . h($typeSearch) . "</b>\"";`
Search for attributes by organisation - New search functionality on request - restrict attributes by organisation - Also, attributes in the list attributes and search attributes result pages, that belong to the user's organisation will have a red event ID 2013-03-19 11:54:14 +01:00			`if (isset($orgSearch) && $orgSearch != '' && $orgSearch != null) echo " created by the organisation \"<b>" . h($orgSearch) . "</b>\"";`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`echo ":</h4>";`
			`} ?>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`<table cellpadding="0" cellspacing="0">`
			`<tr>`
			`<th><?php echo $this->Paginator->sort('event_id');?></th>`
Implemented file-upload of attachment or password protected malware-samples. Base code contributed by Andrzej Dereszowski 2012-03-23 20:04:22 +01:00			`<th><?php echo $this->Paginator->sort('category');?></th>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`<th><?php echo $this->Paginator->sort('type');?></th>`
			`<th><?php echo $this->Paginator->sort('value');?></th>`
CakePHP Coding Standards changed to camel caps format where needed. 2012-09-19 11:05:10 +02:00			`<th<?php echo ' title="' . $attrDescriptions['signature']['desc'] . '"';?>>`
CakePHP Coding Standards http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html Eclipse: Window->Preferences General->Editors->Text Editors Displayed tab width: 4 Insert spaces for tabs NOT PHP->Code Style->Formatter Tab policy: Tabs File->Convert Line Delimeters To->Unix [default] http://mark-story.com/posts/view/static-analysis-tools-for-php for instance: phpcs --standard=CakePHP app/Model/ Not yet done is all camel caps format. 2012-09-18 15:30:32 +02:00			`<?php echo $this->Paginator->sort('signature');?></th>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`<th class="actions"><?php echo __('Actions');?></th>`
			`</tr>`
			`<?php`
Added hover over event IDs in search attributes view Hovering over the event IDs now shows the event info in the list generated by the search attributes page 2013-01-29 13:33:07 +01:00			`$currentCount = 0;`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`if ($isSearch == 1) {`
			`// build the $replacePairs variable used to highlight the keywords`
			`$replacementArray = array();`
Fix to the highlight issue - new line at the end of the search list would break the highlighter and throw a warning - fixed 2013-06-07 12:40:40 +02:00			`foreach ($keywordArray as $k => &$keywordArrayElement) {`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`$keywordArrayElement = trim($keywordArrayElement);`
Fix to the highlight issue - new line at the end of the search list would break the highlighter and throw a warning - fixed 2013-06-07 12:40:40 +02:00			`if ("" == $keywordArrayElement) {`
			`unset($keywordArray[$k]);`
			`continue;`
			`}`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`$replacementArray[] = '<span style="color:red">'.$keywordArrayElement.'</span>';`
			`}`
			`if (!empty($replacementArray))`
			`$replacePairs = array_combine($keywordArray, $replacementArray);`
			`}`

New export feature - To restrict the authentication key from being used by interactive users, implemented a new export page that uses the uses cake's user authentication - the old export features still exist for users with perm_auth enabled accounts - renamed to automation - Exporting the events that found attributes belong to in a search attributes result page - exporting of individual events to file by clicking a link in event view 2013-03-18 11:48:36 +01:00			`foreach ($attributes as $attribute):`
			`?>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`<tr>`
minor improvement in usability on index pages 2012-06-25 08:00:08 +02:00			`<td class="short">`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`<div id="<?php echo $attribute['Attribute']['id']?>" title="<?php echo h($attribute['Event']['info'])?>">`
Added hover over event IDs in search attributes view Hovering over the event IDs now shows the event info in the list generated by the search attributes page 2013-01-29 13:33:07 +01:00			`<?php`
Search for attributes by organisation - New search functionality on request - restrict attributes by organisation - Also, attributes in the list attributes and search attributes result pages, that belong to the user's organisation will have a red event ID 2013-03-19 11:54:14 +01:00			`if ($attribute['Event']['orgc'] == $me['org']) {`
			`echo $this->Html->link($attribute['Event']['id'], array('controller' => 'events', 'action' => 'view', $attribute['Event']['id']), array('class' => 'SameOrgLink'));`
			`} else {`
			`echo $this->Html->link($attribute['Event']['id'], array('controller' => 'events', 'action' => 'view', $attribute['Event']['id']));`
			`}`
Added hover over event IDs in search attributes view Hovering over the event IDs now shows the event info in the list generated by the search attributes page 2013-01-29 13:33:07 +01:00			`$currentCount++;`
			`?>`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`</div>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`</td>`
CakePHP Coding Standards changed to camel caps format where needed. 2012-09-19 11:05:10 +02:00			`<td title="<?php echo $categoryDefinitions[$attribute['Attribute']['category']]['desc'];?>" class="short" onclick="document.location ='`
CakePHP Coding Standards http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html Eclipse: Window->Preferences General->Editors->Text Editors Displayed tab width: 4 Insert spaces for tabs NOT PHP->Code Style->Formatter Tab policy: Tabs File->Convert Line Delimeters To->Unix [default] http://mark-story.com/posts/view/static-analysis-tools-for-php for instance: phpcs --standard=CakePHP app/Model/ Not yet done is all camel caps format. 2012-09-18 15:30:32 +02:00			`<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">`
Renamed Signature to Attribute 2012-03-26 19:56:44 +02:00			`<?php echo h($attribute['Attribute']['category']); ?> </td>`
CakePHP Coding Standards changed to camel caps format where needed. 2012-09-19 11:05:10 +02:00			`<td title="<?php echo $typeDefinitions[$attribute['Attribute']['type']]['desc'];?>" class="short" onclick="document.location ='`
CakePHP Coding Standards http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html Eclipse: Window->Preferences General->Editors->Text Editors Displayed tab width: 4 Insert spaces for tabs NOT PHP->Code Style->Formatter Tab policy: Tabs File->Convert Line Delimeters To->Unix [default] http://mark-story.com/posts/view/static-analysis-tools-for-php for instance: phpcs --standard=CakePHP app/Model/ Not yet done is all camel caps format. 2012-09-18 15:30:32 +02:00			`<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">`
Renamed Signature to Attribute 2012-03-26 19:56:44 +02:00			`<?php echo h($attribute['Attribute']['type']); ?> </td>`
CakePHP Coding Standards http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html Eclipse: Window->Preferences General->Editors->Text Editors Displayed tab width: 4 Insert spaces for tabs NOT PHP->Code Style->Formatter Tab policy: Tabs File->Convert Line Delimeters To->Unix [default] http://mark-story.com/posts/view/static-analysis-tools-for-php for instance: phpcs --standard=CakePHP app/Model/ Not yet done is all camel caps format. 2012-09-18 15:30:32 +02:00			`<td onclick="document.location ='<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`<?php`
Quick fix to the sanitization - the double sanitization needed a quick fix until the development branch gets merged in the future 2013-05-24 10:29:08 +02:00			`$sigDisplay = nl2br(h($attribute['Attribute']['value']));`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`if ($isSearch == 1 && !empty($replacePairs)) {`
			`// highlight the keywords if there are any`
			`$sigDisplay = strtr($sigDisplay, $replacePairs);`
			`}`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`if ('attachment' == $attribute['Attribute']['type'] \|\| 'malware-sample' == $attribute['Attribute']['type']) {`
Colouring of search terms works in links - links now have proper colouring to make the found terms more visible 2013-03-04 18:05:17 +01:00			`echo $this->Html->link($sigDisplay, array('controller' => 'attributes', 'action' => 'download', $attribute['Attribute']['id']), array('escape' => FALSE));`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`} elseif ('link' == $attribute['Attribute']['type']) {`
Fix for the search - Due to the sanitization being fixed, the search results broke - This is a quick copy of the fix implemented on develop by cvandeplas 2013-05-29 14:19:36 +02:00			`echo $this->Html->link($sigDisplay, nl2br(h($attribute['Attribute']['value'])), array('escape' => FALSE));`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`} else {`
			`echo $sigDisplay;`
			`}`
			`?> </td>`
CakePHP Coding Standards http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html Eclipse: Window->Preferences General->Editors->Text Editors Displayed tab width: 4 Insert spaces for tabs NOT PHP->Code Style->Formatter Tab policy: Tabs File->Convert Line Delimeters To->Unix [default] http://mark-story.com/posts/view/static-analysis-tools-for-php for instance: phpcs --standard=CakePHP app/Model/ Not yet done is all camel caps format. 2012-09-18 15:30:32 +02:00			`<td class="short" style="text-align: center;" onclick="document.location ='<?php echo $this->Html->url(array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']), true);?>';">`
Renamed Signature to Attribute 2012-03-26 19:56:44 +02:00			`<?php echo $attribute['Attribute']['to_ids'] ? 'Yes' : 'No'; ?> </td>`
			`<td class="actions"><?php`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`if ($isAdmin \|\| ($isAclModify && $attribute['Event']['user_id'] == $me['id']) \|\| ($isAclModifyOrg && $attribute['Event']['org'] == $me['org'])) {`
			`echo $this->Html->link(__('Edit'), array('action' => 'edit', $attribute['Attribute']['id']), null);`
			`echo $this->Form->postLink(__('Delete'), array('action' => 'delete', $attribute['Attribute']['id']), null, __('Are you sure you want to delete this attribute?'));`
			`}`
			`echo $this->Html->link(__('View'), array('controller' => 'events', 'action' => 'view', $attribute['Attribute']['event_id']));`
			`?>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`</td>`
			`</tr>`
coding standards Coding Standards. 2012-12-18 20:25:12 +01:00			`<?php`
			`endforeach;`
			`?>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`</table>`
			`<p>`
			`<?php`
			`echo $this->Paginator->counter(array(`
			`'format' => __('Page {:page} of {:pages}, showing {:current} records out of {:count} total, starting on record {:start}, ending on {:end}')`
			`));`
			`?> </p>`

			`<div class="paging">`
			`<?php`
			`echo $this->Paginator->prev('< ' . __('previous'), array(), null, array('class' => 'prev disabled'));`
			`echo $this->Paginator->numbers(array('separator' => ''));`
			`echo $this->Paginator->next(__('next') . ' >', array(), null, array('class' => 'next disabled'));`
			`?>`
			`</div>`
			`</div>`
			`<div class="actions">`
			`<ul>`
Slight change to the xml export of search results - Disabled the feature for "List Attributes". 2013-03-18 13:16:55 +01:00			`<li><?php if ($isSearch == 1) echo $this->Html->link(__('Download results as XML'), array('admin' => false, 'controller' => 'events', 'action' => 'downloadSearchResult'));?></li>`
Migration to CakePHP 2.1. Most of the functionality migrated, Q&A review required. 2012-03-15 15:06:45 +01:00			`<?php echo $this->element('actions_menu'); ?>`
			`</ul>`
RBAC real inactive buttons. 2012-10-25 15:00:43 +02:00			`</div>`