MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
18,122 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

276 Commits (2faaa3057889c33a5f7527edb7827a4e09e1b687)

Author SHA1 Message Date
mokaddem 7bbd509e18
fix: [acl] Added missing ACL entry 2021-01-27 13:28:07 +01:00
mokaddem 7476024dee
Merge branch 'develop' of github.com:MISP/MISP into feature-getRawObjectTemplate 2021-01-27 09:40:40 +01:00
Jakub Onderka 7c28f9b966 new: [server] Compare server events overlap 2021-01-18 11:34:38 +01:00
Jakub Onderka f187780d2a new: [taxonomy] Importing taxonomy in machinetag format by REST API 2021-01-13 10:31:09 +01:00
iglocska b8823b86e2
new: [correlation] added system to exclude certain values from the correlation engine 
- simply add values at /exclude_correlations
- new values coming in will not correlate if they trip over the values listed there
- to remove existing correlations run the cleaner tool on the above endpoint

- values can be 1:1 matches, or substring searches (denoted with a leading, ending, or both '%')
  - https://www.google.com/%  will match anything starting with https://www.google.com/
  - %google.com% will match anything that contains google.com
 2021-01-07 09:31:38 +01:00
Jakub Onderka ba9a33e0a1 chg: [UI] Merge roles index and admin_index 2020-12-22 17:52:58 +01:00
Jakub Onderka 18402c0489 chg: [internal] Load user role info from session data 2020-12-17 13:49:32 +01:00
Jakub Onderka becbf95c37 new: [UI] Download GPG public key from GPG homedir 2020-12-17 13:19:55 +01:00
Jakub Onderka 6f8da2c36b fix: [UI] Allow to access delegations index just when delegations are enabled 2020-12-09 17:49:14 +01:00
iglocska 776405c5ec
chg: [ACL] cerebrate added to the ACL 2020-11-30 23:48:20 +01:00
mokaddem 0a19148fbc
new: [objectTemplate] Allow fetching the raw template stored on disk by 
UUID or name
 2020-11-30 16:29:31 +01:00
Jakub Onderka a635fb535d fix: [logs] Add missing AuthKey model to log search 2020-11-19 15:47:39 +01:00
mokaddem 89f307bd07 Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0 2020-11-18 09:22:40 +01:00
Jakub Onderka db1e7621b2 fix: [internal] MISP update without branch 2020-11-17 15:04:08 +01:00
mokaddem f0bc398e60
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0 2020-11-16 14:59:17 +01:00
mokaddem ea0c3fc635
fix: [acl] Added report_from_event entry in ACL 2020-11-16 10:48:36 +01:00
Jakub Onderka 2e4825e741 chg: [internal] Simplified ACLComponent::printRoleAccess 2020-11-14 17:44:17 +01:00
Jakub Onderka 3b8b0019af new: [user] Setting `disable_user_add` to disable user creation by org admins 2020-11-14 17:44:17 +01:00
Jakub Onderka 93feec5ded chg: [ACL] User different way how to use dynamic rules 2020-11-14 17:44:16 +01:00
Jakub Onderka 272142637b new: [UI] Add `disable_user_password_change` and `disable_user_login_change` setting 2020-11-14 17:44:16 +01:00
Jakub Onderka 8e76af6370 new: [user] Allow to disable user password change 2020-11-14 17:44:16 +01:00
mokaddem dc65c79130
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0 2020-11-13 16:26:35 +01:00
iglocska dbffebe503
Merge branch '2.4' into CRUD 2020-11-11 11:19:23 +01:00
iglocska 5b256405c0
new: [advanced authkey] system 2020-11-11 10:46:38 +01:00
mokaddem 150b4cb7d1
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-11-09 10:07:43 +01:00
mokaddem 106fa7300a
new: [events] endpoint `runTaxonomyExclusivityCheck` for event elements 2020-11-05 16:08:17 +01:00
Jakub Onderka 553be8ab5a fix: [ACL] Add missing controllers from EventReports 2020-10-30 08:04:33 +01:00
Jakub Onderka cb9f66e973 fix [internal] Removed unused EventsController::viewEventGraph method 2020-10-18 22:22:10 +02:00
Jakub Onderka d57b559bd3 fix: [UI] Remove not used organisation landing page 2020-10-11 10:28:47 +02:00
mokaddem ce257b54b8
fix: [ACLComponent] Added missing entry and removed invalid warnings 2020-10-09 17:11:31 +02:00
mokaddem b628e15eb9
Merge remote-tracking branch 'origin/2.4' into feature-event-report 2020-10-09 14:54:47 +02:00
Jakub Onderka faa9e373ea chg: [internal] Move more global menu rules to ACLComponent 2020-10-03 16:12:44 +02:00
Jakub Onderka 3be0ab9169 chg: [internal] Use ACLComponent for menu item permission 2020-10-03 16:12:44 +02:00
mokaddem 02725982cc
Merge branch '2.4' of github.com:MISP/MISP into feature-event-report 2020-10-01 10:38:28 +02:00
mokaddem 7d3748f403
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-09-23 18:17:54 +02:00
Jakub Onderka 21e00a996b fix: [internal] Fix tests for missing ACL 2020-09-23 17:28:01 +02:00
mokaddem eb84b3344f
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-09-22 12:08:12 +02:00
mokaddem 4408a17dff
Merge remote-tracking branch 'origin/2.4' into feature-event-report 2020-09-22 10:15:22 +02:00
mokaddem b78b13d428
chg: [eventReport] Added comments 2020-09-21 11:48:05 +02:00
mokaddem aba72c2a56
chg: [eventReport] Generic improvements and light integration with 
fetchEvent and sync support
 2020-09-17 15:06:55 +02:00
mokaddem 1494c9d5bf
chg: [aclcomponent] Added recovery features in ACLComponent 2020-09-16 10:35:54 +02:00
Golbark 3a0bedb104 chg: [internal] Using Allowedlist instead of Whitelist 2020-09-01 16:28:20 +02:00
Golbark 3fb47d1cce chg: [internal] Using blocklist instead of blacklist 2020-09-01 16:27:36 +02:00
Loïc Fortemps 8844fd7ada
Event ID translation feature (#6212) 
* new: [sync] Event ID translation between sync servers
 2020-08-26 10:01:14 +02:00
iglocska 7d253f87fd
new: [ACL] event blacklisting fully opened up to host org users 
- also added a new special permission for the ACL system host_org_user - which will evaluate whether the user is in the org configured in the MISP.host_org_id directive
 2020-08-21 13:41:48 +02:00
mokaddem 84c5a2d634
fix: [ACLComponent] Updated permissions 2020-07-31 10:23:14 +02:00
mokaddem dc28348684
chg: [ACLComponent] Added cluster blocklist endpoints 2020-07-14 08:24:37 +02:00
mokaddem 38da0d2461
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-07-07 07:39:43 +02:00
Jakub Onderka 0d93a45807 fix: [security] Remove ShadowAttributesController::{getProposalsByUuid,getProposalsByUuidList} 
These methods are not used, but they let sync users to access proposals for any event.
 2020-07-06 12:26:43 +02:00
Jakub Onderka df6916a312 fix: [security] Remove ShadowAttributesController::{fetchEditForm,editField} 
These methods are not used, but they allow to access attribute data without proper ACL checks.
 2020-07-06 09:08:07 +02:00