iglocska
4544ef2516
new: [benchmarking suite] added
...
- collect metrics about the usage of MISP
- stored in redis
- per endpoint / user / user-agent collection
- collection of execution time, php memory use, sql execution time, sql query count
- the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
2024-04-17 15:08:38 +02:00
Sami Mokaddem
abcbc575c1
fix: [users:login401] Usage of Image->base64 to follow what users:login does
2024-02-23 12:07:45 +01:00
Sami Mokaddem
af1ba18319
fix: [user:login] Make sure welcome_logos exists before trying to render them
2024-02-23 12:03:35 +01:00
Sami Mokaddem
6655697dbc
fix: [users:login] Check file existence in the correct location
2024-02-22 10:30:15 +01:00
Sami Mokaddem
b8c2c7be64
fix: [login:UI] Reverted change that swapped `main_logo` with `home_logo`
2024-02-22 10:20:11 +01:00
Jakub Onderka
2c43d5c277
fix: [UI] Custom logos
2024-02-20 16:17:43 +01:00
Alexandre Dulaunoy
e965203484
Merge pull request #9481 from Wachizungu/add-totp-setup-clarifications
...
chg: [totp] add clarifications to totp setup view
2024-01-10 14:28:06 +01:00
Jeroen Pinoy
11e8cf4278
chg: [totp] add clarifications to totp setup view
2024-01-09 15:38:31 +01:00
Jakub Onderka
54fa92be71
fix: [internal] Code style
2024-01-04 10:11:14 +01:00
Christophe Vandeplas
e319a6a234
fix: [TOTP] allow deletion of TOTP from edit page
2023-12-13 11:26:20 +01:00
Christophe Vandeplas
bdc1ef9241
fix: [login_history] fixes str_contains #9433
2023-12-07 12:31:06 +01:00
Christophe Vandeplas
7e2cb89f97
Feature/user login profiles2 ( #9379 )
...
* new: [userloginprofiles] start over with previous code
* fix: [user_login_profiles] fixes catching up the backlog
* chg: [userloginprofile] email to org_admin for suspicious login
* chg: [userloginprofile] only inform new device
* chg: [userloginprofiles] view_login_history instead of view_auth_history
* chg: [userloginprofile] make login history visually better
* chg: [userloginprofile] inform admins of malicious report
* fix: [userloginprofile] cleanup
* fix: [userloginprofile] fixes Attribute include in Console
* fix: [userloginprofile] db schema and changes
* chg: [CI] log emails
* chg: [PyMISP] branch change
* chg: [test] test
* fix: [userloginprofile] unique rows
* fix: [userloginprofile] unique rows
* chg: [cleanup]
* Revert "chg: [PyMISP] branch change"
This reverts commit 3f6fb46fee
.
* fix: [userloginprofile] fix worksers with monolog=1.25 browcap=5.1
* fix: [db] dump schema version
* fix: [CI] newer php versions
* fix: [composer] php version
* fix: [php] revert to normal php7.4 tests
---------
Co-authored-by: iglocska <andras.iklody@gmail.com>
2023-11-24 13:47:59 +01:00
Jeroen Pinoy
d684b2e112
[users] fix user view totp delete checks ( #9301 )
2023-09-28 11:49:49 +02:00
Sami Mokaddem
28179ced9c
chg: [config:customAuth_header] Default to upper case.
...
- See $_SERVER make passed headers upper case
2023-09-22 11:43:02 +02:00
Jeroen Pinoy
7ce06cad9f
new: [Users] add last password change timestamp for users
2023-08-29 13:47:24 +02:00
Sami Mokaddem
543212a6ca
fix: [users:periodicReport] Update URL based on the selected number of days
2023-08-10 14:40:03 +02:00
Sami Mokaddem
664504f7f6
new: [user:periodicReporting] Allow setting the number of days to look back (UI only)
2023-08-09 15:19:58 +02:00
iglocska
c45734ce5d
fix: [otp] autofocus added
2023-07-11 13:11:16 +02:00
iglocska
3028132fcf
fix: [login] screen small visual fix
2023-07-10 15:39:28 +02:00
iglocska
8ff6dc2ea1
new: [forgotten password] optional feature added
2023-07-10 15:30:28 +02:00
iglocska
acf3e41e9d
fix: [removing totp] was a postlink, causing unprompted removal
...
- use a GET to display a modal with the prompt
2023-05-31 15:13:56 +02:00
Christophe Vandeplas
cb74ad507f
chg: [security] OTP support for HOTP
2023-05-25 23:28:14 +02:00
Christophe Vandeplas
6311f7d3e6
Merge branch 'develop' into feature/totp
2023-05-25 20:53:06 +02:00
Christophe Vandeplas
a5f5a4e113
chg: [user] log last_api_access hourly if MISP.store_api_access_time is not set
2023-05-21 20:12:44 +02:00
Christophe Vandeplas
acb258cc52
chg: [security] User index inactive user filter
2023-05-21 19:29:56 +02:00
Christophe Vandeplas
81db5958d9
chg: [security] Allow enforcement of TOTP
2023-05-20 08:56:40 +02:00
Christophe Vandeplas
856a9e4b4c
chg: [security] admins can delete user TOTP
2023-05-20 08:05:48 +02:00
Christophe Vandeplas
28cec403b9
chg: [security] TOTP UI love
2023-05-20 07:01:14 +02:00
Christophe Vandeplas
61573392ea
chg: [security] allow creation of TOTP token
2023-05-19 20:56:52 +02:00
Christophe Vandeplas
6caccac94d
new: [security] TOTP authentication
2023-05-19 06:57:16 +02:00
iglocska
e77a4fced7
fix: [php7.2 compat] make 7.2 happy with no trailing comma in the funciton params
2023-03-10 14:30:20 +01:00
Anders Einar Hilden
da5278d349
[new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint.
2023-03-10 10:34:05 +01:00
Anders Einar Hilden
ec495da477
[new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth
...
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
2023-03-10 10:34:05 +01:00
Jakub Onderka
4ba72eb14e
fix: [UI] Fix user sorting
2022-12-15 10:05:13 -05:00
Jakub Onderka
ce850e209c
fix: [UI] Remove duplicate autoalert field in user profile
2022-12-15 10:05:13 -05:00
Jakub Onderka
ef3d0e33b7
chg: [UI] Nicer user edit for notifications
2022-12-15 10:05:13 -05:00
Jakub Onderka
697ced2737
chg: [UI] Nicer user view for notifications
2022-12-15 10:05:12 -05:00
Christophe Vandeplas
bdda94529d
chg: [roles] set default role to User if none is set
2022-12-06 10:39:53 +01:00
iglocska
8267d80e15
Merge branch 'develop' of github.com:MISP/MISP into develop
2022-12-01 14:09:34 +01:00
iglocska
b6a2c854a4
new: [session killswitch] added endpoint to kill existing sessions for a user
...
- required for integration in MeliCERTes II
2022-12-01 14:07:48 +01:00
Christophe Vandeplas
b34933a4a5
chg: [logs] user can see own logs
2022-12-01 10:03:22 +01:00
Jakub Onderka
0b775c77a2
fix: [internal] Cleanup code for UserController
2022-10-23 10:08:56 +02:00
Jakub Onderka
cf625a9318
Merge pull request #8646 from JakubOnderka/periodic-summary-empty
...
fix: [notification] Do not send email when no new event for period
2022-10-18 21:19:22 +02:00
Jakub Onderka
4e7af6e87a
fix: [notification] Do not send email when no new event for period
2022-10-07 14:34:18 +02:00
Jakub Onderka
82698a5fa0
Merge pull request #8518 from JakubOnderka/disable-key-fetching
...
new: [UI] Allow to disable PGP key fetching
2022-10-06 17:23:41 +02:00
Jakub Onderka
7aab946d20
Merge pull request #8405 from JakubOnderka/ui-fixes-vol2
...
chg: [UI] Do not show comment if not defined
2022-10-01 10:26:31 +02:00
Christophe Vandeplas
c2f3e47c24
fix: [user] removes autocomplete on admin user pages, fixes #8556
2022-09-24 17:19:05 +02:00
Sami Mokaddem
da2a881cfd
new: [user:periodic_notification] Added option to set the number of period for trending
2022-09-23 14:01:14 +02:00
Sami Mokaddem
2f939d219b
new: [periodic_notification] Added support of new correlation
...
A correlation is considered as "new" if the event published during the considered timeframe has a correlating attribute that has been modified since then.
2022-09-14 09:07:13 +02:00
Sami Mokaddem
a0612d05aa
chg: [periodic_notification] Generate tag trendings for mitre ATTACK if none are provided
2022-09-12 08:55:56 +02:00