mokaddem
7bbd509e18
fix: [acl] Added missing ACL entry
2021-01-27 13:28:07 +01:00
mokaddem
7476024dee
Merge branch 'develop' of github.com:MISP/MISP into feature-getRawObjectTemplate
2021-01-27 09:40:40 +01:00
Jakub Onderka
7c28f9b966
new: [server] Compare server events overlap
2021-01-18 11:34:38 +01:00
Jakub Onderka
f187780d2a
new: [taxonomy] Importing taxonomy in machinetag format by REST API
2021-01-13 10:31:09 +01:00
iglocska
b8823b86e2
new: [correlation] added system to exclude certain values from the correlation engine
...
- simply add values at /exclude_correlations
- new values coming in will not correlate if they trip over the values listed there
- to remove existing correlations run the cleaner tool on the above endpoint
- values can be 1:1 matches, or substring searches (denoted with a leading, ending, or both '%')
- https://www.google.com/% will match anything starting with https://www.google.com/
- %google.com% will match anything that contains google.com
2021-01-07 09:31:38 +01:00
Jakub Onderka
ba9a33e0a1
chg: [UI] Merge roles index and admin_index
2020-12-22 17:52:58 +01:00
Jakub Onderka
18402c0489
chg: [internal] Load user role info from session data
2020-12-17 13:49:32 +01:00
Jakub Onderka
becbf95c37
new: [UI] Download GPG public key from GPG homedir
2020-12-17 13:19:55 +01:00
Jakub Onderka
6f8da2c36b
fix: [UI] Allow to access delegations index just when delegations are enabled
2020-12-09 17:49:14 +01:00
iglocska
776405c5ec
chg: [ACL] cerebrate added to the ACL
2020-11-30 23:48:20 +01:00
mokaddem
0a19148fbc
new: [objectTemplate] Allow fetching the raw template stored on disk by
...
UUID or name
2020-11-30 16:29:31 +01:00
Jakub Onderka
a635fb535d
fix: [logs] Add missing AuthKey model to log search
2020-11-19 15:47:39 +01:00
mokaddem
89f307bd07
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0
2020-11-18 09:22:40 +01:00
Jakub Onderka
db1e7621b2
fix: [internal] MISP update without branch
2020-11-17 15:04:08 +01:00
mokaddem
f0bc398e60
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0
2020-11-16 14:59:17 +01:00
mokaddem
ea0c3fc635
fix: [acl] Added report_from_event entry in ACL
2020-11-16 10:48:36 +01:00
Jakub Onderka
2e4825e741
chg: [internal] Simplified ACLComponent::printRoleAccess
2020-11-14 17:44:17 +01:00
Jakub Onderka
3b8b0019af
new: [user] Setting `disable_user_add` to disable user creation by org admins
2020-11-14 17:44:17 +01:00
Jakub Onderka
93feec5ded
chg: [ACL] User different way how to use dynamic rules
2020-11-14 17:44:16 +01:00
Jakub Onderka
272142637b
new: [UI] Add `disable_user_password_change` and `disable_user_login_change` setting
2020-11-14 17:44:16 +01:00
Jakub Onderka
8e76af6370
new: [user] Allow to disable user password change
2020-11-14 17:44:16 +01:00
mokaddem
dc65c79130
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0
2020-11-13 16:26:35 +01:00
iglocska
dbffebe503
Merge branch '2.4' into CRUD
2020-11-11 11:19:23 +01:00
iglocska
5b256405c0
new: [advanced authkey] system
2020-11-11 10:46:38 +01:00
mokaddem
150b4cb7d1
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-11-09 10:07:43 +01:00
mokaddem
106fa7300a
new: [events] endpoint `runTaxonomyExclusivityCheck` for event elements
2020-11-05 16:08:17 +01:00
Jakub Onderka
553be8ab5a
fix: [ACL] Add missing controllers from EventReports
2020-10-30 08:04:33 +01:00
Jakub Onderka
cb9f66e973
fix [internal] Removed unused EventsController::viewEventGraph method
2020-10-18 22:22:10 +02:00
Jakub Onderka
d57b559bd3
fix: [UI] Remove not used organisation landing page
2020-10-11 10:28:47 +02:00
mokaddem
ce257b54b8
fix: [ACLComponent] Added missing entry and removed invalid warnings
2020-10-09 17:11:31 +02:00
mokaddem
b628e15eb9
Merge remote-tracking branch 'origin/2.4' into feature-event-report
2020-10-09 14:54:47 +02:00
Jakub Onderka
faa9e373ea
chg: [internal] Move more global menu rules to ACLComponent
2020-10-03 16:12:44 +02:00
Jakub Onderka
3be0ab9169
chg: [internal] Use ACLComponent for menu item permission
2020-10-03 16:12:44 +02:00
mokaddem
02725982cc
Merge branch '2.4' of github.com:MISP/MISP into feature-event-report
2020-10-01 10:38:28 +02:00
mokaddem
7d3748f403
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-09-23 18:17:54 +02:00
Jakub Onderka
21e00a996b
fix: [internal] Fix tests for missing ACL
2020-09-23 17:28:01 +02:00
mokaddem
eb84b3344f
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-09-22 12:08:12 +02:00
mokaddem
4408a17dff
Merge remote-tracking branch 'origin/2.4' into feature-event-report
2020-09-22 10:15:22 +02:00
mokaddem
b78b13d428
chg: [eventReport] Added comments
2020-09-21 11:48:05 +02:00
mokaddem
aba72c2a56
chg: [eventReport] Generic improvements and light integration with
...
fetchEvent and sync support
2020-09-17 15:06:55 +02:00
mokaddem
1494c9d5bf
chg: [aclcomponent] Added recovery features in ACLComponent
2020-09-16 10:35:54 +02:00
Golbark
3a0bedb104
chg: [internal] Using Allowedlist instead of Whitelist
2020-09-01 16:28:20 +02:00
Golbark
3fb47d1cce
chg: [internal] Using blocklist instead of blacklist
2020-09-01 16:27:36 +02:00
Loïc Fortemps
8844fd7ada
Event ID translation feature ( #6212 )
...
* new: [sync] Event ID translation between sync servers
2020-08-26 10:01:14 +02:00
iglocska
7d253f87fd
new: [ACL] event blacklisting fully opened up to host org users
...
- also added a new special permission for the ACL system host_org_user - which will evaluate whether the user is in the org configured in the MISP.host_org_id directive
2020-08-21 13:41:48 +02:00
mokaddem
84c5a2d634
fix: [ACLComponent] Updated permissions
2020-07-31 10:23:14 +02:00
mokaddem
dc28348684
chg: [ACLComponent] Added cluster blocklist endpoints
2020-07-14 08:24:37 +02:00
mokaddem
38da0d2461
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-07-07 07:39:43 +02:00
Jakub Onderka
0d93a45807
fix: [security] Remove ShadowAttributesController::{getProposalsByUuid,getProposalsByUuidList}
...
These methods are not used, but they let sync users to access proposals for any event.
2020-07-06 12:26:43 +02:00
Jakub Onderka
df6916a312
fix: [security] Remove ShadowAttributesController::{fetchEditForm,editField}
...
These methods are not used, but they allow to access attribute data without proper ACL checks.
2020-07-06 09:08:07 +02:00