MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
25,553 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

504 Commits (4544ef251675e43de8a02d81ba112f9410f8b370)

Author SHA1 Message Date
iglocska 4544ef2516
new: [benchmarking suite] added 
- collect metrics about the usage of MISP
  - stored in redis
  - per endpoint / user / user-agent collection
  - collection of execution time, php memory use, sql execution time, sql query count
  - the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
 2024-04-17 15:08:38 +02:00
Sami Mokaddem abcbc575c1
fix: [users:login401] Usage of Image->base64 to follow what users:login does 2024-02-23 12:07:45 +01:00
Sami Mokaddem af1ba18319
fix: [user:login] Make sure welcome_logos exists before trying to render them 2024-02-23 12:03:35 +01:00
Sami Mokaddem 6655697dbc
fix: [users:login] Check file existence in the correct location 2024-02-22 10:30:15 +01:00
Sami Mokaddem b8c2c7be64
fix: [login:UI] Reverted change that swapped `main_logo` with `home_logo` 2024-02-22 10:20:11 +01:00
Jakub Onderka 2c43d5c277 fix: [UI] Custom logos 2024-02-20 16:17:43 +01:00
Alexandre Dulaunoy e965203484
Merge pull request #9481 from Wachizungu/add-totp-setup-clarifications 
chg: [totp] add clarifications to totp setup view
 2024-01-10 14:28:06 +01:00
Jeroen Pinoy 11e8cf4278
chg: [totp] add clarifications to totp setup view 2024-01-09 15:38:31 +01:00
Jakub Onderka 54fa92be71 fix: [internal] Code style 2024-01-04 10:11:14 +01:00
Christophe Vandeplas e319a6a234 fix: [TOTP] allow deletion of TOTP from edit page 2023-12-13 11:26:20 +01:00
Christophe Vandeplas bdc1ef9241 fix: [login_history] fixes str_contains #9433 2023-12-07 12:31:06 +01:00
Christophe Vandeplas 7e2cb89f97
Feature/user login profiles2 (#9379) 
* new: [userloginprofiles] start over with previous code

* fix: [user_login_profiles] fixes catching up the backlog

* chg: [userloginprofile] email to org_admin for suspicious login

* chg: [userloginprofile] only inform new device

* chg: [userloginprofiles] view_login_history instead of view_auth_history

* chg: [userloginprofile] make login history visually better

* chg: [userloginprofile] inform admins of malicious report

* fix: [userloginprofile] cleanup

* fix: [userloginprofile] fixes Attribute include in Console

* fix: [userloginprofile] db schema and changes

* chg: [CI] log emails

* chg: [PyMISP] branch change

* chg: [test] test

* fix: [userloginprofile] unique rows

* fix: [userloginprofile] unique rows

* chg: [cleanup]

* Revert "chg: [PyMISP] branch change"

This reverts commit 3f6fb46fee.

* fix: [userloginprofile] fix worksers with monolog=1.25 browcap=5.1

* fix: [db] dump schema version

* fix: [CI] newer php versions

* fix: [composer] php version

* fix: [php] revert to normal php7.4 tests

---------

Co-authored-by: iglocska <andras.iklody@gmail.com>
 2023-11-24 13:47:59 +01:00
Jeroen Pinoy d684b2e112
[users] fix user view totp delete checks (#9301) 2023-09-28 11:49:49 +02:00
Sami Mokaddem 28179ced9c
chg: [config:customAuth_header] Default to upper case. 
- See $_SERVER make passed headers upper case
 2023-09-22 11:43:02 +02:00
Jeroen Pinoy 7ce06cad9f
new: [Users] add last password change timestamp for users 2023-08-29 13:47:24 +02:00
Sami Mokaddem 543212a6ca
fix: [users:periodicReport] Update URL based on the selected number of days 2023-08-10 14:40:03 +02:00
Sami Mokaddem 664504f7f6
new: [user:periodicReporting] Allow setting the number of days to look back (UI only) 2023-08-09 15:19:58 +02:00
iglocska c45734ce5d
fix: [otp] autofocus added 2023-07-11 13:11:16 +02:00
iglocska 3028132fcf
fix: [login] screen small visual fix 2023-07-10 15:39:28 +02:00
iglocska 8ff6dc2ea1
new: [forgotten password] optional feature added 2023-07-10 15:30:28 +02:00
iglocska acf3e41e9d
fix: [removing totp] was a postlink, causing unprompted removal 
- use a GET to display a modal with the prompt
 2023-05-31 15:13:56 +02:00
Christophe Vandeplas cb74ad507f chg: [security] OTP support for HOTP 2023-05-25 23:28:14 +02:00
Christophe Vandeplas 6311f7d3e6 Merge branch 'develop' into feature/totp 2023-05-25 20:53:06 +02:00
Christophe Vandeplas a5f5a4e113 chg: [user] log last_api_access hourly if MISP.store_api_access_time is not set 2023-05-21 20:12:44 +02:00
Christophe Vandeplas acb258cc52 chg: [security] User index inactive user filter 2023-05-21 19:29:56 +02:00
Christophe Vandeplas 81db5958d9 chg: [security] Allow enforcement of TOTP 2023-05-20 08:56:40 +02:00
Christophe Vandeplas 856a9e4b4c chg: [security] admins can delete user TOTP 2023-05-20 08:05:48 +02:00
Christophe Vandeplas 28cec403b9 chg: [security] TOTP UI love 2023-05-20 07:01:14 +02:00
Christophe Vandeplas 61573392ea chg: [security] allow creation of TOTP token 2023-05-19 20:56:52 +02:00
Christophe Vandeplas 6caccac94d new: [security] TOTP authentication 2023-05-19 06:57:16 +02:00
iglocska e77a4fced7
fix: [php7.2 compat] make 7.2 happy with no trailing comma in the funciton params 2023-03-10 14:30:20 +01:00
Anders Einar Hilden da5278d349 [new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint. 2023-03-10 10:34:05 +01:00
Anders Einar Hilden ec495da477 [new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth 
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
 2023-03-10 10:34:05 +01:00
Jakub Onderka 4ba72eb14e fix: [UI] Fix user sorting 2022-12-15 10:05:13 -05:00
Jakub Onderka ce850e209c fix: [UI] Remove duplicate autoalert field in user profile 2022-12-15 10:05:13 -05:00
Jakub Onderka ef3d0e33b7 chg: [UI] Nicer user edit for notifications 2022-12-15 10:05:13 -05:00
Jakub Onderka 697ced2737 chg: [UI] Nicer user view for notifications 2022-12-15 10:05:12 -05:00
Christophe Vandeplas bdda94529d chg: [roles] set default role to User if none is set 2022-12-06 10:39:53 +01:00
iglocska 8267d80e15
Merge branch 'develop' of github.com:MISP/MISP into develop 2022-12-01 14:09:34 +01:00
iglocska b6a2c854a4
new: [session killswitch] added endpoint to kill existing sessions for a user 
- required for integration in MeliCERTes II
 2022-12-01 14:07:48 +01:00
Christophe Vandeplas b34933a4a5 chg: [logs] user can see own logs 2022-12-01 10:03:22 +01:00
Jakub Onderka 0b775c77a2 fix: [internal] Cleanup code for UserController 2022-10-23 10:08:56 +02:00
Jakub Onderka cf625a9318
Merge pull request #8646 from JakubOnderka/periodic-summary-empty 
fix: [notification] Do not send email when no new event for period
 2022-10-18 21:19:22 +02:00
Jakub Onderka 4e7af6e87a fix: [notification] Do not send email when no new event for period 2022-10-07 14:34:18 +02:00
Jakub Onderka 82698a5fa0
Merge pull request #8518 from JakubOnderka/disable-key-fetching 
new: [UI] Allow to disable PGP key fetching
 2022-10-06 17:23:41 +02:00
Jakub Onderka 7aab946d20
Merge pull request #8405 from JakubOnderka/ui-fixes-vol2 
chg: [UI] Do not show comment if not defined
 2022-10-01 10:26:31 +02:00
Christophe Vandeplas c2f3e47c24 fix: [user] removes autocomplete on admin user pages, fixes #8556 2022-09-24 17:19:05 +02:00
Sami Mokaddem da2a881cfd
new: [user:periodic_notification] Added option to set the number of period for trending 2022-09-23 14:01:14 +02:00
Sami Mokaddem 2f939d219b
new: [periodic_notification] Added support of new correlation 
A correlation is considered as "new" if the event published during the considered timeframe has a correlating attribute that has been modified since then.
 2022-09-14 09:07:13 +02:00
Sami Mokaddem a0612d05aa
chg: [periodic_notification] Generate tag trendings for mitre ATTACK if none are provided 2022-09-12 08:55:56 +02:00