iglocska
4c75abbb70
new: [fast api auth] added
...
- added a new optional functionality to temporarily store hashed API keys in redis
- The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
- the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
- this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
2024-04-23 13:23:31 +02:00
iglocska
fa9ff6f88e
fix: [benchmarking] speculative fix for using db settings and benchmarking, fixes #9702
...
- causes issues for some users, couldn't reproduce it, but addressed the potential issues
2024-04-23 07:14:31 +02:00
Raphaël Vinot
35fe93fc02
chg: Bump PyMISP
2024-04-18 13:03:10 +02:00
iglocska
a55a19cd09
Merge branch 'develop' of github.com:MISP/MISP into develop
2024-04-17 15:10:30 +02:00
iglocska
4544ef2516
new: [benchmarking suite] added
...
- collect metrics about the usage of MISP
- stored in redis
- per endpoint / user / user-agent collection
- collection of execution time, php memory use, sql execution time, sql query count
- the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
2024-04-17 15:08:38 +02:00
Sami Mokaddem
b5b0412022
chg: [ui:galaxy_matrix] Resize matrix header on load
2024-04-11 16:35:58 +02:00
Sami Mokaddem
004b18e1d9
fix: [component:restSearch] Restored behavior of searching for org and cluster metadata
2024-04-10 12:16:49 +02:00
Sami Mokaddem
05be803393
fix: [dashboard:updating] Prevent sending multiple time the same save request[1;5D
2024-04-08 16:41:46 +02:00
Raphaël Vinot
5b5584596c
chg: [PyMISP] Bump
2024-03-20 14:15:17 +01:00
Raphaël Vinot
08367489c9
chg: [PyMISP] Update
2024-03-07 14:51:35 +01:00
Raphaël Vinot
7cd28317de
chg: [PyMISP] Bump
2024-02-28 00:25:04 +01:00
Sami Mokaddem
6f99b148f0
Merge remote-tracking branch 'origin/develop' into notes
2024-02-16 15:29:03 +01:00
Raphaël Vinot
e4e6f1625a
chg: [PyMISP] Bump version
2024-02-16 14:50:47 +01:00
Sami Mokaddem
509708a2a2
chg: [app:queryVersion] Bumped version
2024-02-07 15:21:58 +01:00
Sami Mokaddem
ea7e48b2a7
Merge remote-tracking branch 'origin/develop' into notes
2024-02-06 15:04:09 +01:00
iglocska
c691965480
chg: [appcontroller] versions bump
2024-02-02 15:28:32 +01:00
Sami Mokaddem
ceb423ae76
chg: [permission:analyst-data] Added new permission `perm_analyst_data`
2024-01-31 15:05:49 +01:00
Sami Mokaddem
c920ca2c8a
fix: [appController:harvestParameters] Always support page and limit parameters while harvesting parameters
...
There is not point in not always supporting these two parameters
2024-01-24 12:48:41 +01:00
Jakub Onderka
e8a18d2eae
fix: [API] Return proper exception for rest search
2024-01-22 09:39:26 +01:00
Jakub Onderka
5f5048a989
fix: [internal] Rate limiting
2024-01-14 20:00:41 +01:00
Jakub Onderka
1413a13d52
chg: [auth] Do not log auth_fail for JSON requests
2024-01-09 16:06:34 +01:00
Jakub Onderka
c944c4ae3d
fix: [internal] Do not use deprecated method
2024-01-04 17:36:58 +01:00
Jakub Onderka
9ac760110c
fix: [internal] Remove unused variables
2024-01-04 17:33:26 +01:00
Jakub Onderka
b5fe0722eb
fix: [internal] Session destroy
2024-01-04 16:16:52 +01:00
Raphaël Vinot
0f268782cc
chg: [PyMISP] Bump version
2024-01-04 13:41:18 +01:00
Jakub Onderka
af4644f534
fix: [internal] Code cleanup for IP logging
2023-12-29 09:59:10 +01:00
iglocska
f8632849c6
new: [garbage collection] added for temporary files
2023-12-22 15:50:20 +01:00
iglocska
c51d0a1adb
fix: [datasource] added to valid datasources list
2023-12-21 09:46:00 +01:00
Raphaël Vinot
5ce35df6ce
chg: [PyMISP] Bump
2023-12-14 12:54:31 +01:00
Christophe Vandeplas
0934ab6580
fix: [customauth] missing Class init fixes #9425
2023-12-01 08:35:34 +01:00
iglocska
d63fbfaf87
new: [api] added X-MISP-AUTH as an alternative header to Authorization, fixes #9418
2023-11-29 19:59:43 +01:00
Christophe Vandeplas
7e2cb89f97
Feature/user login profiles2 ( #9379 )
...
* new: [userloginprofiles] start over with previous code
* fix: [user_login_profiles] fixes catching up the backlog
* chg: [userloginprofile] email to org_admin for suspicious login
* chg: [userloginprofile] only inform new device
* chg: [userloginprofiles] view_login_history instead of view_auth_history
* chg: [userloginprofile] make login history visually better
* chg: [userloginprofile] inform admins of malicious report
* fix: [userloginprofile] cleanup
* fix: [userloginprofile] fixes Attribute include in Console
* fix: [userloginprofile] db schema and changes
* chg: [CI] log emails
* chg: [PyMISP] branch change
* chg: [test] test
* fix: [userloginprofile] unique rows
* fix: [userloginprofile] unique rows
* chg: [cleanup]
* Revert "chg: [PyMISP] branch change"
This reverts commit 3f6fb46fee
.
* fix: [userloginprofile] fix worksers with monolog=1.25 browcap=5.1
* fix: [db] dump schema version
* fix: [CI] newer php versions
* fix: [composer] php version
* fix: [php] revert to normal php7.4 tests
---------
Co-authored-by: iglocska <andras.iklody@gmail.com>
2023-11-24 13:47:59 +01:00
Raphaël Vinot
79e91820ef
chg: [PyMISP] Bump version
2023-11-23 13:47:57 +01:00
iglocska
dfe3b786a9
Merge branch 'nohooks' into develop
2023-11-23 09:18:57 +01:00
iglocska
b82093bfe3
fix: [login] action replaced with hard coded route to baseurl . /users/login
2023-11-23 09:14:01 +01:00
Sami Mokaddem
8d01368bf7
fix: [events:view] Remove any tooltip upon closing the popover form
...
This will make @iglocska happy.
2023-10-25 15:39:25 +02:00
Sami Mokaddem
fb1c6bb0bc
chg: [workflow] Jinja template rendering is done automatically based on param options
2023-10-25 10:52:59 +02:00
Raphaël Vinot
8407961025
chg: [PyMISP] Bump version
2023-10-24 15:10:57 +02:00
Sami Mokaddem
28179ced9c
chg: [config:customAuth_header] Default to upper case.
...
- See $_SERVER make passed headers upper case
2023-09-22 11:43:02 +02:00
Raphaël Vinot
ed381cae97
chg: [PyMISP] Bump
2023-09-15 10:37:04 +02:00
iglocska
37ecf81b84
fix: [internal] improved parameter parsing
2023-09-14 12:55:17 +02:00
Raphaël Vinot
6ac212311d
chg: [PyMISP] Bump
2023-08-23 14:01:02 +02:00
Sami Mokaddem
3c097f8202
fix: [dashboard:csvExport] Quote elements and correctly apply line break
2023-08-09 14:56:24 +02:00
Sami Mokaddem
123b1d07c2
new: [dashboard:export] Added CSV export functionality
2023-08-07 14:32:21 +02:00
Raphaël Vinot
f22c82e87a
chg: [PyMISP] Bump.
2023-07-31 12:08:29 +02:00
Sami Mokaddem
967d01b4a1
Merge branch 'develop' of github.com:MISP/MISP into feature_workflows/enrichment-improvements
2023-07-31 09:41:47 +02:00
Luciano Righetti
7c28cee942
fix: revert loginAction override
2023-07-28 15:29:46 +02:00
Sami Mokaddem
26779f7753
chg: Bumped queryVersion
2023-07-28 10:42:38 +02:00
Mathieu Rollet
9e15f352d0
explicitly set loginAction with baseurl
2023-07-17 16:14:49 +02:00
Raphaël Vinot
fccbc08185
chg: [PyMISP] Bump version
2023-07-10 16:19:05 +02:00