Christophe Vandeplas
0cafc7ec6b
fix documentation link
2013-06-10 12:26:32 +02:00
Christophe Vandeplas
d81ffe56b7
Performance improvement with static urls
2013-06-10 11:31:46 +02:00
Christophe Vandeplas
0d66ef931a
UI tooltip love
2013-06-06 18:06:22 +02:00
Christophe Vandeplas
a4d4964630
UI hide top links when not logged in
2013-06-03 16:37:13 +02:00
Andras
a27b3d7208
More UI changes
2013-06-02 13:51:41 +02:00
Christophe Vandeplas
bd50135fe6
UI events partial improvements
2013-06-01 08:46:21 +02:00
Christophe Vandeplas
d0afda8df5
minor improvements
2013-05-30 11:40:07 +02:00
Christophe Vandeplas
0fa30912a3
mirated first parts of nice GUI proposed by Alexandru of CERT-EU
2013-05-30 11:14:00 +02:00
iglocska
0a06ceed3b
E-mailing system for site-admins
...
- site admins able to contact users by e-mail from within the system
- PGP encrypted where available
- Password reset with automatic temporary key generation
- all of the above options have a mass-email version where every user is
contacted at once
- Potential new users can be contacted too (GPG key can be supplied)
2013-03-25 16:38:56 +01:00
iglocska
32de082c88
New export feature
...
- To restrict the authentication key from being used by interactive users,
implemented a new export page that uses the uses cake's user
authentication
- the old export features still exist for users with perm_auth enabled
accounts - renamed to automation
- Exporting the events that found attributes belong to in a search
attributes result page
- exporting of individual events to file by clicking a link in event view
2013-03-18 11:48:36 +01:00
Andras Iklody
fad8e809ad
Minor changes
...
- some changes to the access control
- re-renabled regexp and blacklists, will need a closer look though
- editing a role should update ACL
- some other minor things
2013-02-21 17:24:41 +01:00
Andras Iklody
07621afa2d
Update to the menu
...
- minor cosmetic change
2013-02-19 17:29:35 +01:00
Andras Iklody
e88a3a9cf7
Updates to security
...
- perm_auth new toggle, can disable auth key usage for a role
- prevents sync / rest with a perm_auth == false key
- some changes to sync to provide better feedback on why it failed
- rewording of distribution options
2013-02-06 17:45:43 +01:00
Noud de Brouwer
9d9dd7b4af
coding standards
...
Coding Standards.
2013-01-28 11:05:23 +00:00
Andras Iklody
504599fbcc
Org admin privileges
...
Added restrictions for org admins and regular users to be able to see
regexp/whitelist/blacklist information without being able to edit them.
Org admins can also see the roles but not edit them.
2013-01-28 11:44:09 +01:00
Noud de Brouwer
2215f1a579
Blacklist
...
AdminCrud looking for Blacklist Flash message
and Import Blacklist menu button.
2013-01-09 15:04:48 +00:00
Noud de Brouwer
1e518f8bc0
Import Regexp
...
Renamed Import Whitelist to Import Regexp.
2012-12-20 18:47:38 +00:00
Noud de Brouwer
a17eaa69ad
log & code duplication
...
$this->Html->image($nonExistingImage)
showed up in tmp/logs/error.log and
the origin this is in 2 Views, so a View Element was created.
2012-12-20 10:33:54 +00:00
Charlie Root
e474b8e189
generateAllFor<FieldName>
...
conflicts with CAKE/Model/Model::_call() so no findBy<FieldName>.
(and various very minor other things.)
2012-12-19 10:30:10 +00:00
Noud de Brouwer
ea9aa8eb3a
coding standards
...
Coding Standards.
2012-12-18 19:25:12 +00:00
noud
26c8ad57ee
Role
...
renamed everything group to role (i.s.o. renaming just the visable).
2012-12-12 16:15:01 +01:00
noud
8119d26d35
RBAC and Roles
...
did add Acl Admin and Audit.
2012-12-11 17:40:57 +01:00
noud
75dfba2ae1
sync
...
have sync option in role.
and only display the Sync Actions when sync option or admin.
(still has to be disabled if role is below manage org events.
2012-12-07 15:00:40 +01:00
noud
ad942503e5
regex white/blacklist
...
correct nameing of the buttons.
2012-12-03 10:54:02 +01:00
noud
2af02aa100
input regex
...
use RegexBehavior on Event.info and Attribute.value.
2012-11-30 13:52:09 +01:00
noud
957b3e27b8
Merge branch 'master' into develop
...
Conflicts:
app/Controller/ServersController.php
2012-11-20 11:01:18 +01:00
noud
4d132d4cd7
RBAC
...
do not show New Event if no right.
2012-11-09 10:26:16 +01:00
noud
12ebfafe16
RBAC
...
role only add could still publish her own events,
this should be not possible anymore.
2012-11-07 16:02:36 +01:00
noud
3e46eaa5ea
logout
...
moved logout from footer right to Global Actions.
2012-11-05 12:55:14 +01:00
noud
60910ae5db
RBAC
...
name all Role i.s.o. Group.
2012-10-31 17:10:59 +01:00
noud
bf6f86c5aa
RBAC
...
We have a rule(?), if so:
$isAclAdd || $event['Event']['user_id'] == $me['id'].
This rule, i "have add right OR the event was and is already mine".
if that's correct, that was forgotten in the actions_menu.ctp.
2012-10-26 10:34:24 +02:00
noud
e1aed1c4c1
RBAC
...
removed a leftover on in-activating buttons that did show on IE.
2012-10-10 15:51:18 +02:00
noud
8f3d624c1a
Merge branch 'master' into develop
...
Conflicts:
app/Controller/AppController.php
app/Controller/AttributesController.php
app/Controller/EventsController.php
app/Controller/ServersController.php
app/Controller/UsersController.php
app/Model/Attribute.php
app/Model/Event.php
app/Model/Server.php
app/Model/User.php
app/View/Attributes/edit.ctp
app/View/Attributes/index.ctp
app/View/Elements/actions_menu.ctp
app/View/Events/add.ctp
app/View/Events/index.ctp
app/View/Events/view.ctp
app/View/Events/xml/view.ctp
app/View/Servers/index.ctp
app/View/Users/admin_index.ctp
2012-09-24 16:02:01 +02:00
noud
94a367c2f5
CakePHP Coding Standards
...
http://book.cakephp.org/2.0/en/contributing/cakephp-coding-conventions.html
Eclipse:
Window->Preferences
General->Editors->Text Editors
Displayed tab width: 4
Insert spaces for tabs NOT
PHP->Code Style->Formatter
Tab policy: Tabs
File->Convert Line Delimeters To->Unix [default]
http://mark-story.com/posts/view/static-analysis-tools-for-php
for instance:
phpcs --standard=CakePHP app/Model/
Not yet done is all camel caps format.
2012-09-18 15:30:32 +02:00
noud
253d8e1b58
Merge branch 'master' into develop
...
Conflicts:
app/Controller/EventsController.php
app/Model/Attribute.php
app/View/Events/view.ctp
2012-09-17 13:02:53 +02:00
noud
b24acfb4a5
Whitelist.
...
An admin can maintain a whitelist of host, domain name and ip numbers.
In the NIDS export lines containing whitelist items are commented out.
2012-08-06 10:42:46 +02:00
noud
66c5312ea6
DataBase migrate, Audit and Access Control granulation.
2012-06-28 17:24:12 +02:00
root
b4558887ce
Revert "Audit and ACL first cut."
...
This reverts commit 5818231f48
.
2012-06-26 09:40:52 +02:00
noud
5818231f48
Audit and ACL first cut.
2012-06-25 15:54:52 +02:00
Christophe Vandeplas
e4feaaa013
Part of the documentation added - docu written by Miguel Soria Machado
...
(CERT-EU)
2012-05-25 14:56:58 +02:00
Christophe Vandeplas
93c96ff7c3
minor layout improvement
2012-05-21 13:42:16 +02:00
Christophe Vandeplas
87e12448ab
Start of documentation concerning REST.
2012-04-07 09:38:15 +02:00
Christophe Vandeplas
a45b70bc8d
Add, edit, delete and (basic) Manual Sync server functionality added
2012-04-04 20:22:22 +02:00
Christophe Vandeplas
98402c0faa
Fix admin routing
2012-03-27 09:31:41 +02:00
Christophe Vandeplas
7c4394682d
Renamed Signature to Attribute
2012-03-26 19:56:44 +02:00
Christophe Vandeplas
da2687846b
Implemented file-upload of attachment or password protected
...
malware-samples. Base code contributed by Andrzej Dereszowski
2012-03-23 20:04:22 +01:00
Christophe Vandeplas
23572019bb
Signature is now known as Attribute
2012-03-21 21:25:16 +01:00
Christophe Vandeplas
865a24d0bd
Migration to CakePHP 2.1.
...
Most of the functionality migrated, Q&A review required.
2012-03-15 15:06:45 +01:00