iglocska
6f2e162fd8
fix: [evnet view] excluding correlations should also exclude over_correlated attributes, fixes #9366
2024-05-02 21:35:23 +02:00
Sami Mokaddem
3ae6351509
chg: [analyst-data:beforeSave] Make sure to set distribution to default value if not provided
2024-05-02 15:14:18 +02:00
Sami Mokaddem
b5ce3e99a4
fix: [workflow:workflow-shell] Make sure a user is set when using non-blocking workflow
...
- Fix #9722
- Thanks to @microblag for the proposed fix
2024-05-02 15:12:12 +02:00
Sami Mokaddem
51c00f434d
Merge branch 'develop' of github.com:MISP/MISP into feature/analyst-data-api
2024-04-29 14:12:07 +02:00
Sami Mokaddem
002749d5d9
chg: [analyst-data] Added support of capturing analyst-data nested in attributes, events, eventreports and objects
2024-04-29 14:11:04 +02:00
Jakub Onderka
902c99ac82
Merge pull request #9690 from JakubOnderka/opt_disabled
...
new: [security] Make possible to disable (T/H)OTP
2024-04-26 13:40:56 +02:00
iglocska
b6a8d43bbd
Merge branch 'browscap_default' into develop
2024-04-23 15:12:17 +02:00
iglocska
91e1c27746
Merge branch '2.4' into develop
2024-04-23 15:08:50 +02:00
iglocska
cd25980da9
fix: [sql logs] captured when benchmarking is enabled but debug level is < 2
2024-04-23 15:03:22 +02:00
iglocska
4c75abbb70
new: [fast api auth] added
...
- added a new optional functionality to temporarily store hashed API keys in redis
- The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
- the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
- this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
2024-04-23 13:23:31 +02:00
iglocska
7c5d052105
new: [fast api auth] added
...
- added a new optional functionality to temporarily store hashed API keys in redis
- The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
- the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
- this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
2024-04-23 13:20:45 +02:00
Sami Mokaddem
68c68febda
chg: [behavior:analystDataParent] Prevent double nesting analyst data when bulk fetching
2024-04-22 09:42:28 +02:00
Sami Mokaddem
745d2407cf
fix: [analyst-data:fetchAnalystDataBulk] Make sure to include all analyst-data type
2024-04-22 08:55:44 +02:00
Sami Mokaddem
1b7f086c16
Merge branch 'develop' of github.com:MISP/MISP into develop
2024-04-22 08:37:16 +02:00
Jakub Onderka
2dd74ed79b
chg: [CLI] Simplify updating JSON structures
2024-04-21 10:37:08 +02:00
Jakub Onderka
d5ba5af530
chg: [security] Disable resetting password when password change is disabled
2024-04-20 14:27:37 +02:00
Jakub Onderka
79f6124bd2
new: [security] Make possible to disable (T/H)OTP
...
This is useful if MISP is connected to identity provider that already provides strong authentication
2024-04-20 14:27:35 +02:00
Jakub Onderka
c0572af7dc
Merge pull request #9686 from JakubOnderka/sentry-breadcrumb
...
new: [internal] Send more logs to sentry as breadcrumbs
2024-04-20 13:38:02 +02:00
Sami Mokaddem
62392fe540
fix: [analyst-data:fetchAnalystDataBulk] Make sure to include all analyst-data type
2024-04-18 14:32:54 +02:00
iglocska
3c163d0c12
Merge branch 'feed_tag_collections' into develop
2024-04-18 13:34:45 +02:00
iglocska
be9ad95905
chg: [syslog] output slightly changed
...
- always have a consistent number of fields conveyed, include delimited ( -- ) fields even if no data is passed to a field
- Avoid linebreaks in content
2024-04-18 12:46:11 +02:00
Sami Mokaddem
00991bda27
chg: [feed] Added support of tag_collection_id when dealing with feeds
2024-04-17 15:59:10 +02:00
Sami Mokaddem
a2ea6ae0c0
fix: [feed] Added tag_collection_id as column
2024-04-17 15:17:53 +02:00
iglocska
a55a19cd09
Merge branch 'develop' of github.com:MISP/MISP into develop
2024-04-17 15:10:30 +02:00
iglocska
4544ef2516
new: [benchmarking suite] added
...
- collect metrics about the usage of MISP
- stored in redis
- per endpoint / user / user-agent collection
- collection of execution time, php memory use, sql execution time, sql query count
- the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
2024-04-17 15:08:38 +02:00
iglocska
4dd5d369b4
chg: [attribute search] by uuid updated
...
- pre-checks if the passed UUID is actually an event UUID before going with the slow query against both tables
2024-04-17 12:00:53 +02:00
Jakub Onderka
3b4e9675dd
new: [internal] Send more logs to sentry as breadcrumbs
2024-04-15 21:56:27 +02:00
Jakub Onderka
731b96984a
Merge pull request #9659 from JakubOnderka/curl-timeout-5-mins
...
chg: [sync] Reduce default timeout for remote HTTP request to 300 sec…
2024-04-14 15:39:24 +02:00
Jakub Onderka
df7ff3d4cd
Merge pull request #9651 from JakubOnderka/server-sync-debug
...
Server sync debug
2024-04-14 15:38:57 +02:00
Jakub Onderka
47d35dae0b
chg: [sync] Change way how event index is cached in Redis to save memory
2024-04-13 12:42:54 +02:00
Jakub Onderka
d2176ab8bd
chg: [sync] Try to reduce memory usage when fetching event index from Redis
2024-04-13 12:02:06 +02:00
Sami Mokaddem
038c411366
new: [feed:pullEvents] Added support of tag collection in feed configuration
...
This allow to specify a tag collection for which all the tags will be applied on the pulled Events
2024-04-12 15:58:19 +02:00
Sami Mokaddem
9060c21adf
chg: [workflowModules:distribution-if] Allow choosing `sharing-group` and keeping the selected sharing-group list empty
...
This enables users to simply check that the sharing-group distribution was used
2024-04-12 10:35:47 +02:00
Sami Mokaddem
a9be1561e1
new: [workflowMouldes:stop-execution] Added message paramter to allow user to provide a reason why the execution was stopped
2024-04-12 10:34:58 +02:00
Sami Mokaddem
a0b92e4c7b
fix: [workflow:evaluateConfition] Fixed bug in `in_and` operator to make it order independant
2024-04-12 10:31:22 +02:00
Sami Mokaddem
ea490063c0
fix: [analystData:editableField] Made getEditableFields inheritance aware
2024-04-11 10:03:32 +02:00
Sami Mokaddem
6e9d748f08
fix: [eventreports:transformFreeTextIntoSuggestion] Add to_ids fallback value
2024-04-11 09:40:18 +02:00
Sami Mokaddem
c4c395af31
new: [feed] Added unpublish_event setting to ensure pulled events are in the unpublished state
2024-04-08 14:48:04 +02:00
iglocska
a7bdb225d8
Merge branch '2.4' into develop
2024-04-08 10:18:58 +02:00
iglocska
13d33a3acb
chg: [comment] added to the previous fix to make it clear what it does
2024-04-08 10:12:22 +02:00
Jakub Onderka
8a42cf460d
chg: [sync] Reduce default timeout for remote HTTP request to 300 seconds (5 mins)
2024-04-08 09:47:36 +02:00
Jakub Onderka
a322217cbd
chg: [sync] Try to save memory when fetching sightings
2024-04-08 09:45:33 +02:00
Jakub Onderka
2b38de942b
chg: [internal] Server sync debug messages
2024-04-08 09:45:33 +02:00
Jakub Onderka
2e32d22d2c
chg: [sync] Move blocklist fetching out of ServerSyncTool and reduce sightings fetched in one fetch
2024-04-06 14:05:44 +02:00
iglocska
914ae20dd4
fix: [junk] removed
2024-04-04 12:14:03 +02:00
iglocska
480d3ac16d
chg: [setting] added for the sighting blocklisting
2024-04-04 12:13:04 +02:00
iglocska
ef39b8959e
new: [sighting sync] blocklisting added
...
- block organisations' sightings from being created / pulled
- Added a new option to the restsearch of sightings too which this feature uses if available
- if it isn't, the system will block the insertion on the beforeValidate() level
- Outcome of the JTAN hackathon on 04.04.2024 in Luxembourg
2024-04-04 12:08:22 +02:00
iglocska
31a2507fb4
chg: [sighting restsearch] added org negations
...
- the org_id filter now allows for the use of a prepended '!' character for negations
2024-04-04 09:42:14 +02:00
Sami Mokaddem
7dcca1ae2a
Merge branch 'develop' of github.com:MISP/MISP into develop
2024-04-03 16:43:30 +02:00
Sami Mokaddem
3d8fe9d90e
fix: [analyst-data:attachData] Make sure to also load child notes and opinions
...
Changed the old behavior: Before we were loading 3 children. Now, we only load 1 by default.
2024-04-03 16:42:18 +02:00