MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
1,017 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

48 Commits (4242108b3e4a32c3681162056ed84186fceacc8d)

Author SHA1 Message Date
Christophe Vandeplas 0cafc7ec6b fix documentation link 2013-06-10 12:26:32 +02:00
Christophe Vandeplas d81ffe56b7 Performance improvement with static urls 2013-06-10 11:31:46 +02:00
Christophe Vandeplas 0d66ef931a UI tooltip love 2013-06-06 18:06:22 +02:00
Christophe Vandeplas a4d4964630 UI hide top links when not logged in 2013-06-03 16:37:13 +02:00
Andras a27b3d7208 More UI changes 2013-06-02 13:51:41 +02:00
Christophe Vandeplas bd50135fe6 UI events partial improvements 2013-06-01 08:46:21 +02:00
Christophe Vandeplas d0afda8df5 minor improvements 2013-05-30 11:40:07 +02:00
Christophe Vandeplas 0fa30912a3 mirated first parts of nice GUI proposed by Alexandru of CERT-EU 2013-05-30 11:14:00 +02:00
iglocska 0a06ceed3b E-mailing system for site-admins 
- site admins able to contact users by e-mail from within the system
- PGP encrypted where available
- Password reset with automatic temporary key generation
- all of the above options have a mass-email version where every user is
  contacted at once
- Potential new users can be contacted too (GPG key can be supplied)
 2013-03-25 16:38:56 +01:00
iglocska 32de082c88 New export feature 
- To restrict the authentication key from being used by interactive users,
implemented a new export page that uses the uses cake's user
authentication

- the old export features still exist for users with perm_auth enabled
  accounts - renamed to automation

- Exporting the events that found attributes belong to in a search
  attributes result page

- exporting of individual events to file by clicking a link in event view
 2013-03-18 11:48:36 +01:00
Andras Iklody fad8e809ad Minor changes 
- some changes to the access control

- re-renabled regexp and blacklists, will need a closer look though

- editing a role should update ACL

- some other minor things
 2013-02-21 17:24:41 +01:00
Andras Iklody 07621afa2d Update to the menu 
- minor cosmetic change
 2013-02-19 17:29:35 +01:00
Andras Iklody e88a3a9cf7 Updates to security 
- perm_auth new toggle, can disable auth key usage for a role

- prevents sync / rest with a perm_auth == false key

- some changes to sync to provide better feedback on why it failed

- rewording of distribution options
 2013-02-06 17:45:43 +01:00
Noud de Brouwer 9d9dd7b4af coding standards 
Coding Standards.
 2013-01-28 11:05:23 +00:00
Andras Iklody 504599fbcc Org admin privileges 
Added restrictions for org admins and regular users to be able to see
regexp/whitelist/blacklist information without being able to edit them.
Org admins can also see the roles but not edit them.
 2013-01-28 11:44:09 +01:00
Noud de Brouwer 2215f1a579 Blacklist 
AdminCrud looking for Blacklist Flash message
and Import Blacklist menu button.
 2013-01-09 15:04:48 +00:00
Noud de Brouwer 1e518f8bc0 Import Regexp 
Renamed Import Whitelist to Import Regexp.
 2012-12-20 18:47:38 +00:00
Noud de Brouwer a17eaa69ad log & code duplication 
$this->Html->image($nonExistingImage)
showed up in tmp/logs/error.log and
the origin this is in 2 Views, so a View Element was created.
 2012-12-20 10:33:54 +00:00
Charlie Root e474b8e189 generateAllFor<FieldName> 
conflicts with CAKE/Model/Model::_call() so no findBy<FieldName>.
(and various very minor other things.)
 2012-12-19 10:30:10 +00:00
Noud de Brouwer ea9aa8eb3a coding standards 
Coding Standards.
 2012-12-18 19:25:12 +00:00
noud 26c8ad57ee Role 
renamed everything group to role (i.s.o. renaming just the visable).
 2012-12-12 16:15:01 +01:00
noud 8119d26d35 RBAC and Roles 
did add Acl Admin and Audit.
 2012-12-11 17:40:57 +01:00
noud 75dfba2ae1 sync 
have sync option in role.
and only display the Sync Actions when sync option or admin.
(still has to be disabled if role is below manage org events.
 2012-12-07 15:00:40 +01:00
noud ad942503e5 regex white/blacklist 
correct nameing of the buttons.
 2012-12-03 10:54:02 +01:00
noud 2af02aa100 input regex 
use RegexBehavior on Event.info and Attribute.value.
 2012-11-30 13:52:09 +01:00
noud 957b3e27b8 Merge branch 'master' into develop 
Conflicts:
	app/Controller/ServersController.php
 2012-11-20 11:01:18 +01:00
noud 4d132d4cd7 RBAC 
do not show New Event if no right.
 2012-11-09 10:26:16 +01:00
noud 12ebfafe16 RBAC 
role only add could still publish her own events,
this should be not possible anymore.
 2012-11-07 16:02:36 +01:00
noud 3e46eaa5ea logout 
moved logout from footer right to Global Actions.
 2012-11-05 12:55:14 +01:00
noud 60910ae5db RBAC 
name all Role i.s.o. Group.
 2012-10-31 17:10:59 +01:00
noud bf6f86c5aa RBAC 
We have a rule(?), if so:
$isAclAdd || $event['Event']['user_id'] == $me['id'].
This rule, i "have add right OR the event was and is already mine".
if that's correct, that was forgotten in the actions_menu.ctp.
 2012-10-26 10:34:24 +02:00
noud e1aed1c4c1 RBAC 
removed a leftover on in-activating buttons that did show on IE.
 2012-10-10 15:51:18 +02:00
noud 8f3d624c1a Merge branch 'master' into develop 
Conflicts:
	app/Controller/AppController.php
	app/Controller/AttributesController.php
	app/Controller/EventsController.php
	app/Controller/ServersController.php
	app/Controller/UsersController.php
	app/Model/Attribute.php
	app/Model/Event.php
	app/Model/Server.php
	app/Model/User.php
	app/View/Attributes/edit.ctp
	app/View/Attributes/index.ctp
	app/View/Elements/actions_menu.ctp
	app/View/Events/add.ctp
	app/View/Events/index.ctp
	app/View/Events/view.ctp
	app/View/Events/xml/view.ctp
	app/View/Servers/index.ctp
	app/View/Users/admin_index.ctp
 2012-09-24 16:02:01 +02:00
noud 94a367c2f5 CakePHP Coding Standards 
http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html

Eclipse:
Window->Preferences
	General->Editors->Text Editors
		Displayed tab width:	4
		Insert spaces for tabs	NOT
	PHP->Code Style->Formatter
		Tab policy:	Tabs
File->Convert Line Delimeters To->Unix [default]

http://mark-story.com/posts/view/static-analysis-tools-for-php
for instance:
phpcs --standard=CakePHP app/Model/

Not yet done is all camel caps format.
 2012-09-18 15:30:32 +02:00
noud 253d8e1b58 Merge branch 'master' into develop 
Conflicts:
	app/Controller/EventsController.php
	app/Model/Attribute.php
	app/View/Events/view.ctp
 2012-09-17 13:02:53 +02:00
noud b24acfb4a5 Whitelist. 
An admin can maintain a whitelist of host, domain name and ip numbers.
In the NIDS export lines containing whitelist items are commented out.
 2012-08-06 10:42:46 +02:00
noud 66c5312ea6 DataBase migrate, Audit and Access Control granulation. 2012-06-28 17:24:12 +02:00
root b4558887ce Revert "Audit and ACL first cut." 
This reverts commit 5818231f48.
 2012-06-26 09:40:52 +02:00
noud 5818231f48 Audit and ACL first cut. 2012-06-25 15:54:52 +02:00
Christophe Vandeplas e4feaaa013 Part of the documentation added - docu written by Miguel Soria Machado 
(CERT-EU)
 2012-05-25 14:56:58 +02:00
Christophe Vandeplas 93c96ff7c3 minor layout improvement 2012-05-21 13:42:16 +02:00
Christophe Vandeplas 87e12448ab Start of documentation concerning REST. 2012-04-07 09:38:15 +02:00
Christophe Vandeplas a45b70bc8d Add, edit, delete and (basic) Manual Sync server functionality added 2012-04-04 20:22:22 +02:00
Christophe Vandeplas 98402c0faa Fix admin routing 2012-03-27 09:31:41 +02:00
Christophe Vandeplas 7c4394682d Renamed Signature to Attribute 2012-03-26 19:56:44 +02:00
Christophe Vandeplas da2687846b Implemented file-upload of attachment or password protected 
malware-samples. Base code contributed by Andrzej Dereszowski
 2012-03-23 20:04:22 +01:00
Christophe Vandeplas 23572019bb Signature is now known as Attribute 2012-03-21 21:25:16 +01:00
Christophe Vandeplas 865a24d0bd Migration to CakePHP 2.1. 
Most of the functionality migrated, Q&A review required.
 2012-03-15 15:06:45 +01:00