MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
25,098 Commits
34 Branches
365 Tags
188 MiB
Commit Graph

390 Commits (4be80d39a80d4375dc80a45e43d8e67db0125793)

Author SHA1 Message Date
Jakub Onderka 7f935f4cec chg: [internal] Faster check for session destruction 2024-01-30 18:54:11 +01:00
Jakub Onderka 01c3a0329f fix: [internal] Email new login sending 2024-01-29 15:44:40 +01:00
Jakub Onderka b5f3c2fae5 chg: [CLI] Optimise cake user authkey_valid 2024-01-15 20:04:46 +01:00
Jakub Onderka ad8666369c new: [CLI] cake User init command 
Deprecate cake UserInit
 2024-01-14 17:35:25 +01:00
Jakub Onderka edd6d3f157
Merge pull request #9473 from JakubOnderka/logging 
chg: [internal] Do not log in audit log last_api_access
 2024-01-04 16:38:02 +01:00
Jakub Onderka b5fe0722eb fix: [internal] Session destroy 2024-01-04 16:16:52 +01:00
Jakub Onderka 54fa92be71 fix: [internal] Code style 2024-01-04 10:11:14 +01:00
Jakub Onderka 2b159eb025 chg: [internal] ECS: Add specific log for emails 2023-12-28 12:14:37 +01:00
Jakub Onderka 6eb5a66878 chg: [internal] Code cleanup for logging 2023-12-23 14:32:07 +01:00
Jakub Onderka 786becad1a chg: [internal] Code cleanup for user login profile 2023-12-22 22:52:02 +01:00
iglocska e5809fdccf
fix: [case sensitivity] fix 2023-12-07 16:14:12 +01:00
iglocska 5bed463416
chg: [logging] fail silently if logging entry can't be saved 
- can happen when the log change is too large for example
- no need to roll back / break sync for example if a log entry is too large, just fail silently.
 2023-12-07 15:17:58 +01:00
Christophe Vandeplas 7e2cb89f97
Feature/user login profiles2 (#9379) 
* new: [userloginprofiles] start over with previous code

* fix: [user_login_profiles] fixes catching up the backlog

* chg: [userloginprofile] email to org_admin for suspicious login

* chg: [userloginprofile] only inform new device

* chg: [userloginprofiles] view_login_history instead of view_auth_history

* chg: [userloginprofile] make login history visually better

* chg: [userloginprofile] inform admins of malicious report

* fix: [userloginprofile] cleanup

* fix: [userloginprofile] fixes Attribute include in Console

* fix: [userloginprofile] db schema and changes

* chg: [CI] log emails

* chg: [PyMISP] branch change

* chg: [test] test

* fix: [userloginprofile] unique rows

* fix: [userloginprofile] unique rows

* chg: [cleanup]

* Revert "chg: [PyMISP] branch change"

This reverts commit 3f6fb46fee.

* fix: [userloginprofile] fix worksers with monolog=1.25 browcap=5.1

* fix: [db] dump schema version

* fix: [CI] newer php versions

* fix: [composer] php version

* fix: [php] revert to normal php7.4 tests

---------

Co-authored-by: iglocska <andras.iklody@gmail.com>
 2023-11-24 13:47:59 +01:00
Jeroen Pinoy 02e173b769
new: [User] Add setting to limit site admin roles to instance's host org. 2023-10-04 12:40:04 +02:00
Jeroen Pinoy 7ce06cad9f
new: [Users] add last password change timestamp for users 2023-08-29 13:47:24 +02:00
Luciano Righetti 225b74bf93 chg: skip if email disabled, avoids logging exception on each email attempt fixes #9251 2023-08-24 11:07:38 +02:00
Sami Mokaddem 664504f7f6
new: [user:periodicReporting] Allow setting the number of days to look back (UI only) 2023-08-09 15:19:58 +02:00
iglocska 68cb56037f
fix: [password reset] various issues 2023-07-10 15:58:28 +02:00
iglocska fb15d48c34
chg: [forgotten password] reset text clarifications 
- to avoid dumdum users from sharing their quasi-passwords
 2023-07-10 15:46:08 +02:00
iglocska 8ff6dc2ea1
new: [forgotten password] optional feature added 2023-07-10 15:30:28 +02:00
Christophe Vandeplas a5f5a4e113 chg: [user] log last_api_access hourly if MISP.store_api_access_time is not set 2023-05-21 20:12:44 +02:00
Jakub Onderka 2c5074ea4e chg: [internal] Keep connection to OIDC when sending emails 2022-12-15 10:04:46 -05:00
iglocska b6a2c854a4
new: [session killswitch] added endpoint to kill existing sessions for a user 
- required for integration in MeliCERTes II
 2022-12-01 14:07:48 +01:00
Jakub Onderka 0b775c77a2 fix: [internal] Cleanup code for UserController 2022-10-23 10:08:56 +02:00
Jakub Onderka d0fdf4c56f chg: [intetrnal] Cleanup code for User::getUsersWithAccess 2022-10-22 14:35:41 +02:00
Jakub Onderka c99b0f7a27 chg: [internal] Cleanup code for User::beforeSave 2022-10-22 14:35:41 +02:00
Jakub Onderka cf625a9318
Merge pull request #8646 from JakubOnderka/periodic-summary-empty 
fix: [notification] Do not send email when no new event for period
 2022-10-18 21:19:22 +02:00
iglocska 72ab102147
fix: [logging] Don't try to push syslog messages when no valid log entry was created in the first place. 2022-10-12 15:18:22 +02:00
Jakub Onderka 5553eeba98 new: [UI] Show warning if user don't have permission to use API 2022-10-07 15:21:10 +02:00
Jakub Onderka 4e7af6e87a fix: [notification] Do not send email when no new event for period 2022-10-07 14:34:18 +02:00
Sami Mokaddem 44c5fceb63
new: [user:periodic_report] Added security recommendations section showing course of actions related to attack techniques 2022-10-04 16:01:09 +02:00
iglocska 1bbbafddd2
Merge branch '2.4' into develop 2022-09-26 13:10:04 +02:00
Sami Mokaddem 2e815627db
Merge branch 'develop' of github.com:MISP/MISP into develop 2022-09-23 14:04:00 +02:00
Sami Mokaddem da2a881cfd
new: [user:periodic_notification] Added option to set the number of period for trending 2022-09-23 14:01:14 +02:00
Jakub Onderka f169d23be1 fix: [internal] Code style 2022-09-22 15:28:38 +02:00
Jakub Onderka d4296ebf64
Merge pull request #8600 from JakubOnderka/periodic-summary-task 
fix: [periodic summary] Fetch just users from database that are enabled
 2022-09-21 14:24:15 +02:00
Jakub Onderka 75a1e6e9da fix: [periodic summary] Fetch just users from database that are enabled 2022-09-21 12:47:50 +02:00
Jakub Onderka 26653054d1 chg: [internal] Do not fetch scores when not necessary 2022-09-20 18:48:41 +02:00
Jakub Onderka f661204ed1
Merge pull request #8593 from JakubOnderka/fix-periodic-extract 
fix: [internal] Extracting periodic setting for user
 2022-09-20 18:48:22 +02:00
Jakub Onderka 5a2da23b87 fix: [internal] Do not fetch full clusters for periodic summary 2022-09-20 18:00:41 +02:00
Jakub Onderka cb6f10fd69 chg: [internal] Change method name User::{extractPeriodicSettingForUser->fetchPeriodicSettingForUser} 2022-09-20 13:43:35 +02:00
Jakub Onderka 5204be7a7d fix: [internal] Refresh session after notification change 2022-09-20 13:42:14 +02:00
Jakub Onderka 5874633a77 fix: [internal] Extracting periodic setting for user 2022-09-20 13:02:01 +02:00
Jakub Onderka 32e2b4f527 fix: [internal] Remove unused code 2022-09-20 09:36:27 +02:00
Sami Mokaddem 9f0b72576c
fix: [user:periodic_notification] Show the correct start date of the report 2022-09-15 09:27:53 +02:00
Sami Mokaddem 2f939d219b
new: [periodic_notification] Added support of new correlation 
A correlation is considered as "new" if the event published during the considered timeframe has a correlating attribute that has been modified since then.
 2022-09-14 09:07:13 +02:00
Sami Mokaddem 1c636e1e6a
fix: [user:extractPeriodicSummary] Fallback default values for periodic settings 2022-09-12 15:11:55 +02:00
Sami Mokaddem bb968c57df
fix: [user:extractPeriodicSummary] Fallback default values for periodic settings 2022-09-12 15:03:47 +02:00
Sami Mokaddem f6a8d45554
chg: [peridioc_notification] Compute event score instead of event base_score taking into account publish_timestamp 2022-09-12 09:16:24 +02:00
Sami Mokaddem ed6dc118c4
chg: [peridioc_notification] Compute event score instead of event base_score taking into account publish_timestamp 2022-09-12 09:16:06 +02:00