Christophe Vandeplas
c2f3e47c24
fix: [user] removes autocomplete on admin user pages, fixes #8556
2022-09-24 17:19:05 +02:00
Sami Mokaddem
da2a881cfd
new: [user:periodic_notification] Added option to set the number of period for trending
2022-09-23 14:01:14 +02:00
Sami Mokaddem
2f939d219b
new: [periodic_notification] Added support of new correlation
...
A correlation is considered as "new" if the event published during the considered timeframe has a correlating attribute that has been modified since then.
2022-09-14 09:07:13 +02:00
Sami Mokaddem
a0612d05aa
chg: [periodic_notification] Generate tag trendings for mitre ATTACK if none are provided
2022-09-12 08:55:56 +02:00
Sami Mokaddem
c7e80e399d
chg: [users:edit] Added support of notification_*
2022-09-09 14:21:06 +02:00
Sami Mokaddem
4cdaff3c58
fix: [periodic_notification] Fixed sad widths
2022-09-09 14:17:21 +02:00
Sami Mokaddem
87bd4746f0
fix: [users:notification_settings] Do not default to org_only if no distribution is set
2022-09-09 10:50:25 +02:00
Sami Mokaddem
06f510f77b
chg: Bumped db_schema
2022-09-08 16:15:31 +02:00
Sami Mokaddem
bf39655c26
chg: [periodic_notification] Improved report and parametrized tags for trending
2022-09-08 14:54:04 +02:00
Sami Mokaddem
943cd3acb0
chg: [user:periodic_notification] Removed support of published events
2022-09-08 10:55:50 +02:00
Sami Mokaddem
64eaf4273f
chg: [user:periodic_notification] Added support of multiple orgs and sharing groups
2022-09-01 09:45:49 +02:00
Sami Mokaddem
f23e582760
fix: [user:periodic_notification] Perform filtering on event tags only for aggregated context
...
This is for restSearch to stay consistent with how events are fetched by the default fetcher
2022-08-31 14:54:27 +02:00
Sami Mokaddem
7cd3b35d61
chg: [user:periodic_notification] General improvements and added CLI support
2022-08-31 11:51:36 +02:00
Sami Mokaddem
894724a805
chg: [users:edit] Allow admins to edit periodic notification subscriptions
2022-08-30 14:53:06 +02:00
Sami Mokaddem
3338e1abef
chg: [user:periodic_notification] Added templates, basic statistics and UI integration
2022-08-30 14:10:01 +02:00
Sami Mokaddem
279f33bc4a
chg: [user:periodicNotification] Dev cont.
2022-08-29 12:06:42 +02:00
Sami Mokaddem
8db8cbd398
new: [user:periodicNotification] Started development of system allowing users to receive period notifications by email
2022-08-29 09:03:42 +02:00
iglocska
c764bb0e8f
Merge branch 'log_last_api' into develop
2022-08-11 09:36:30 +02:00
Tom King
de351faaac
new: [internal] Add option to log last API request
2022-08-01 15:02:49 +01:00
Sami Mokaddem
106d6aa299
chg: [workflows:module_index] Added support of mass enable/disable
2022-07-26 11:07:52 +02:00
Jakub Onderka
d911b750db
chg: [UI] User index boolean colors
2022-05-22 22:10:16 +02:00
Jakub Onderka
46b423aaef
fix: [UI] Tag statistics
2022-05-22 20:08:42 +02:00
Jakub Onderka
073bc4f74c
fix: [UI] Warning when fetching PGP key
2022-05-22 19:59:11 +02:00
Jakub Onderka
dba9d60ed9
Merge pull request #8180 from JakubOnderka/event_alert_default_enabled
...
new: [test] MISP.default_publish_alert
2022-05-07 12:48:54 +02:00
Jakub Onderka
ece53cf11d
new: [test] MISP.default_publish_alert
2022-05-07 12:39:29 +02:00
Jakub Onderka
5371623ad7
fix: [UI] Terms and Conditions
2022-05-07 11:46:13 +02:00
Jakub Onderka
9827449a37
chg: [UI] Asset loader for statistics
2022-05-02 10:05:05 +02:00
Jakub Onderka
809a1b07b0
fix: [UI] Put back jQuery UI
2022-04-30 18:02:49 +02:00
iglocska
68a59df77c
fix: [boolean case] fixed uppercasing of the boolean values
...
- Javascript != Python
2022-04-17 19:00:15 +02:00
iglocska
9623de2f5c
fix: [security] XSS in LinOTP login field fixed
...
- fixed a stored XSS in the LinOTP login
- also fixed invalid calls to check MISP settings from a javascript scope
- as reported by Dawid Czarnecki of Zigrin Security
2022-04-17 18:56:45 +02:00
iglocska
07b091778a
Merge branch '2.4' into develop
2022-03-17 15:51:06 +01:00
Luciano Righetti
8cc93687dc
fix: [security] lfi via custom terms file setting, as reported by Ianis BERNARD - NATO Cyber Security Centre
2022-03-17 15:36:35 +01:00
Hendrik Baecker
eb7a1301bb
[chg] LinOTP now with enable/disable as config feature
2022-03-17 15:19:58 +01:00
iglocska
61d4d36705
fix: [security] stored XSS in the user add/edit forms
...
- a malicious site administrator could store an XSS payload in the custom auth name which would be executed each time the administrator modifies a user
- as reported by Ianis BERNARD - NATO Cyber Security Centre
2022-03-17 14:10:09 +01:00
iglocska
a15dff4da5
chg: [logo] update
2022-03-13 12:37:57 +01:00
Hendrik Baecker
5937be4647
[chg] Add link to LinOTP selfservice
2022-01-13 13:37:37 +01:00
Hendrik Baecker
12ba2981ef
LinOTP: nitpicking and failsafe
...
Also one CodeFactor fix
2021-12-21 15:59:55 +01:00
Hendrik Baecker
e2cd8ba8b1
[chg] Add OTP Form Field if LinOTP active
2021-12-14 17:52:25 +01:00
iglocska
d9ee59c87b
fix: [user creation] don't show old style API key in the UI if advanced authkeys are enabled
...
- confusing and unusable anyway
2021-11-18 23:05:31 +01:00
Jakub Onderka
1c58bd21b4
chg: [UI] PGP error message
2021-09-16 16:24:10 +02:00
Luciano Righetti
4ec7ad726e
Merge branch 'develop' into migrate-feeds-controller-to-crud-component
2021-06-24 16:02:25 +02:00
Luciano Righetti
1bc44f5b0d
fix: add type dropdown in all generic forms.
2021-06-24 16:01:56 +02:00
iglocska
adb77afaed
fix: [external auth key / password] fields changed, fixes #7488
...
- show what's relevant based on the customauth settings and hide that which is not
2021-06-16 14:31:12 +02:00
iglocska
8ff015f97f
chg: [logo] reverted to the non-birthday version
2021-06-07 14:57:47 +02:00
iglocska
e9d0dd48cb
chg: [birthday] logo added
...
- to be removed on the next release
2021-05-14 12:22:05 +02:00
mokaddem
0952609718
Merge branch 'develop' of github.com:MISP/MISP into migration-users-views
2021-05-05 15:03:07 +02:00
mokaddem
748bc65daa
new: [users:index] Batch toggleable fields
2021-05-05 14:30:20 +02:00
Jakub Onderka
88f6038b28
new: [log] Audit Log statistics
2021-05-03 13:44:44 +02:00
mokaddem
bacf072c59
chg: [users:index] Migrated view to factory
2021-04-28 09:14:54 +02:00
Jeroen Pinoy
a0ead60b4d
chg: [statistics] fix typo in statistics_data view - monthly attributes styling check
2021-03-24 08:30:57 +01:00