iglocska
e89d1a267d
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-09-09 13:03:09 +02:00
iglocska
75acd63c46
fix: [security] Fix to a vulnerability related to the server index
...
- along with various support tools
- more information coming soon
2019-09-09 13:00:21 +02:00
Jakub Onderka
4b1645a54e
fix: Throw exception when GnuGP homedir is not set
2019-09-07 00:01:55 +02:00
Jakub Onderka
863e38807d
chg: Allow to load Crypt_GPG from composer
2019-09-06 21:31:16 +02:00
Jakub Onderka
f63cfc9c5a
fix: [UI] Fetching GPG keys
...
This error was introduced in 600e540516
2019-09-06 15:56:01 +02:00
Jakub Onderka
6f4b99026e
chg: [user] Remove unused private method
2019-09-06 13:59:47 +02:00
Jakub Onderka
600e540516
chg: [user] Use machine readable format for fetching PGP keys
2019-09-04 13:10:37 +02:00
iglocska
8418e8ee57
fix: [internal] return true from the external email sender if no mocking is happening instead of the full email
2019-08-30 11:19:43 +02:00
iglocska
181bda4698
new: [requestAccess] Made the requestAccess endpoint more API friendly and some UI improvements
...
- better handling of empty parameters
- added the mock functionality to both API and UI, this will generate the e-mail to be sent and return it with no actual sending happening
- defaulting to mock if emailing is disabled
- fixed some minor bugs
2019-08-30 11:10:59 +02:00
iglocska
feb7fe82dd
new: [communities] Added support for requesting access for known communities
...
- site admins can list the misp-project maintained community list
- request access to any of the communities
2019-08-29 09:24:33 +02:00
Nikos Filippakis
9d59b10368
Publish events to Kafka
...
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
2019-03-18 15:53:22 +01:00
Christophe Vandeplas
67efc70bf5
fix: [style] consistent space indentation
2019-02-10 13:08:55 +01:00
iglocska
2d0259ce13
fix: [CS] coding standards script re-run
2018-11-23 14:11:33 +01:00
iglocska
035f663e9b
fix: [log] user zmq logging was always getting the first user instead of the actual one
2018-10-02 10:37:59 +02:00
iglocska
b407aba746
fix: [CS] Updated recent changes
2018-08-20 10:50:09 +02:00
iglocska
4482373259
fix: [encryption] broken S/MIME encryption
...
- as reported and pinpointed by @3c7
- blind fix, awaits confirmation
2018-08-15 08:50:26 +02:00
iglocska
5a2061f15d
fix: [pgp] left of changes for the pgp printout
2018-08-06 17:05:35 +02:00
iglocska
0e1b058ac9
fix: [bug] Fixed e-mailing bug introduced during the refactoring
2018-08-05 18:14:25 +02:00
iglocska
41f76dd963
chg: [internal] Rework of the emailing
...
- extracted the encryption functions out from the main e-mailing function
- simplification of the code in several places
2018-08-03 18:26:45 +02:00
iglocska
742c1a6cd1
fix: [cleanup] Invalid assignment in conditional cleaned up
2018-08-03 17:30:59 +02:00
iglocska
c6f2d87645
chg: [cleanup] removed pointless TODOs
2018-08-03 17:26:06 +02:00
iglocska
6936625f16
fix: [cleanup] Cleaned up SMIME certificate validation
...
- merged the two functionalities we've had for it
2018-08-03 17:23:06 +02:00
iglocska
a81894f14c
chg: [CS] Changed to PSR-2
...
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
2018-07-19 11:48:22 +02:00
iglocska
00be1ad68a
fix: [cleanup] removed obsolete code
2018-07-05 15:16:05 +02:00
iglocska
87c152d9f3
fix: Use common code-path for user init via the login page and the CLI
...
- also, be consistent with initial settings
2018-06-20 07:32:52 +02:00
Anthony Vaccaro
ba96309305
Add config mapping for 'gpgconf' option in Crypt_GPG library.
...
This option not only sets the location of the gpgconf binary, but
if set to false, disables behaviour that shuts down running agents
when a Crypt_GPG object is destroyed. This behaviour would also
kill any long-running or daemonised agents that are running and
configured in the gpg.homedir directory.
2018-05-15 10:36:23 +10:00
iglocska
5acfac3539
fix: Some cleanup
2018-05-12 17:26:16 +02:00
iglocska
767ab6c21b
fix: Fail gracefully during single user PGP key checks on the user view
2018-04-24 11:45:43 +02:00
StefanKelm
f5aef2fd4e
Update User.php
2018-03-27 15:53:20 +02:00
StefanKelm
92dd4739c2
Update User.php
2018-03-27 15:16:50 +02:00
iglocska
8b78df3cf9
fix: Added missing db field to users
...
- fixes a nasty issue with saving users failing when ZMQ is enabled on instances installed after 2.4.69
- fixes a typo that caused invalid user changes being pushed to the ZMQ channel
2018-02-02 19:44:41 +01:00
Alexandre Dulaunoy
938180c004
fix: set the default PGP keyserver to pgp.circl.lu (faster than
...
pgp.mit.edu)
TODO: A configuration for setting up the PGP keyserver at the MISP
instance setting.
2018-02-01 12:03:22 +01:00
iglocska
ca88bdf5ed
fix: Graceful handling of gnupg not being set up on an instnace
2018-01-30 10:33:21 +01:00
Andras Iklody
173496c305
Merge pull request #1969 from devnull-/GPG_sign_option
...
Add a option to sign GPG emails
2018-01-24 11:11:03 +01:00
iglocska
67d9cd6a6c
new: Include user action in zmq
2017-11-16 12:15:39 +01:00
iglocska
943f18d6cc
new: push the action for user updates/creations/logins along with the user object to the ZMQ channel
2017-11-16 08:58:53 +01:00
iglocska
5303b86987
fix: 984732984th time is the charm...
2017-11-16 08:50:06 +01:00
iglocska
1058345ee7
fix: Reduced the user data to just a partial user object and organisation object for the zmq push
2017-11-16 08:48:59 +01:00
iglocska
8f71ce66af
fix: Fixed the pubsub user push if the user object is not contained within a User key
2017-11-16 08:44:28 +01:00
iglocska
e6bff6072c
fix: Previous commit didn't trigger in all cases
2017-11-16 08:41:54 +01:00
iglocska
bce9b94c28
chg: Push the full user object to the ZMQ feed
2017-11-16 08:37:53 +01:00
iglocska
4230601116
fix: Fixes to various issues with the cert auth
2017-09-06 23:26:21 +02:00
Richie B2B
ee5af8d0bb
Make newsread numeric instead of boolean
...
Fixes #2394
2017-08-25 09:41:42 +02:00
iglocska
14d5b0444d
fix: Possible fix to the newsread = null issue
2017-08-25 00:03:48 +02:00
iglocska
e0de52a534
fix: Fixed an obviously dumb validation rule, fixes #2394
...
- derp
2017-08-17 14:13:30 +02:00
Andras Iklody
1ee754f3e5
fix: Changed the validation of newsread and change_pw to boolean
2017-07-13 17:07:49 +02:00
iglocska
3317f56ca1
fix: Upgraded hashing algorithm used and added requirement to confirm password for user profile changes
...
- Added method to upgrade all passwords to blowfish transparently
- All profile edit pages (/users/edit, /admin/users/edit, /users/change_pw) now require the user's password to be confirmed
- Thanks to cert.govt.nz for the security report.
2017-07-12 15:38:34 +02:00
iglocska
57857c3a32
new: Performance improvements for the pub-sub modules
...
- Only load and open connection to redis for the pub-sub connection once.
- Massive performance boost when the ZMQ functionality is enabled
2017-06-16 08:41:12 +02:00
iglocska
3797177247
fix: fix a copy paste bug
2017-05-29 16:35:11 +02:00
iglocska
bce780090f
new: Added User and Organisation addition/change data to the ZMQ feed
2017-05-29 16:18:37 +02:00