Commit Graph

873 Commits (4c75abbb706beafe661a116509c1fe96c9298e5f)

Author SHA1 Message Date
iglocska 4c75abbb70
new: [fast api auth] added
- added a new optional functionality to temporarily store hashed API keys in redis
  - The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
  - the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
  - this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
2024-04-23 13:23:31 +02:00
iglocska fa9ff6f88e
fix: [benchmarking] speculative fix for using db settings and benchmarking, fixes #9702
- causes issues for some users, couldn't reproduce it, but addressed the potential issues
2024-04-23 07:14:31 +02:00
Raphaël Vinot 35fe93fc02 chg: Bump PyMISP 2024-04-18 13:03:10 +02:00
iglocska a55a19cd09
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-04-17 15:10:30 +02:00
iglocska 4544ef2516
new: [benchmarking suite] added
- collect metrics about the usage of MISP
  - stored in redis
  - per endpoint / user / user-agent collection
  - collection of execution time, php memory use, sql execution time, sql query count
  - the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
2024-04-17 15:08:38 +02:00
Sami Mokaddem b5b0412022
chg: [ui:galaxy_matrix] Resize matrix header on load 2024-04-11 16:35:58 +02:00
Sami Mokaddem 004b18e1d9
fix: [component:restSearch] Restored behavior of searching for org and cluster metadata 2024-04-10 12:16:49 +02:00
Sami Mokaddem 05be803393
fix: [dashboard:updating] Prevent sending multiple time the same save request[1;5D 2024-04-08 16:41:46 +02:00
Raphaël Vinot 5b5584596c chg: [PyMISP] Bump 2024-03-20 14:15:17 +01:00
Raphaël Vinot 08367489c9 chg: [PyMISP] Update 2024-03-07 14:51:35 +01:00
Raphaël Vinot 7cd28317de chg: [PyMISP] Bump 2024-02-28 00:25:04 +01:00
Sami Mokaddem 6f99b148f0
Merge remote-tracking branch 'origin/develop' into notes 2024-02-16 15:29:03 +01:00
Raphaël Vinot e4e6f1625a chg: [PyMISP] Bump version 2024-02-16 14:50:47 +01:00
Sami Mokaddem 509708a2a2
chg: [app:queryVersion] Bumped version 2024-02-07 15:21:58 +01:00
Sami Mokaddem ea7e48b2a7
Merge remote-tracking branch 'origin/develop' into notes 2024-02-06 15:04:09 +01:00
iglocska c691965480
chg: [appcontroller] versions bump 2024-02-02 15:28:32 +01:00
Sami Mokaddem ceb423ae76
chg: [permission:analyst-data] Added new permission `perm_analyst_data` 2024-01-31 15:05:49 +01:00
Sami Mokaddem c920ca2c8a
fix: [appController:harvestParameters] Always support page and limit parameters while harvesting parameters
There is not point in not always supporting these two parameters
2024-01-24 12:48:41 +01:00
Jakub Onderka e8a18d2eae fix: [API] Return proper exception for rest search 2024-01-22 09:39:26 +01:00
Jakub Onderka 5f5048a989 fix: [internal] Rate limiting 2024-01-14 20:00:41 +01:00
Jakub Onderka 1413a13d52 chg: [auth] Do not log auth_fail for JSON requests 2024-01-09 16:06:34 +01:00
Jakub Onderka c944c4ae3d fix: [internal] Do not use deprecated method 2024-01-04 17:36:58 +01:00
Jakub Onderka 9ac760110c fix: [internal] Remove unused variables 2024-01-04 17:33:26 +01:00
Jakub Onderka b5fe0722eb fix: [internal] Session destroy 2024-01-04 16:16:52 +01:00
Raphaël Vinot 0f268782cc chg: [PyMISP] Bump version 2024-01-04 13:41:18 +01:00
Jakub Onderka af4644f534 fix: [internal] Code cleanup for IP logging 2023-12-29 09:59:10 +01:00
iglocska f8632849c6
new: [garbage collection] added for temporary files 2023-12-22 15:50:20 +01:00
iglocska c51d0a1adb
fix: [datasource] added to valid datasources list 2023-12-21 09:46:00 +01:00
Raphaël Vinot 5ce35df6ce chg: [PyMISP] Bump 2023-12-14 12:54:31 +01:00
Christophe Vandeplas 0934ab6580 fix: [customauth] missing Class init fixes #9425 2023-12-01 08:35:34 +01:00
iglocska d63fbfaf87
new: [api] added X-MISP-AUTH as an alternative header to Authorization, fixes #9418 2023-11-29 19:59:43 +01:00
Christophe Vandeplas 7e2cb89f97
Feature/user login profiles2 (#9379)
* new: [userloginprofiles] start over with previous code

* fix: [user_login_profiles] fixes catching up the backlog

* chg: [userloginprofile] email to org_admin for suspicious login

* chg: [userloginprofile] only inform new device

* chg: [userloginprofiles] view_login_history instead of view_auth_history

* chg: [userloginprofile] make login history visually better

* chg: [userloginprofile] inform admins of malicious report

* fix: [userloginprofile] cleanup

* fix: [userloginprofile] fixes Attribute include in Console

* fix: [userloginprofile] db schema and changes

* chg: [CI] log emails

* chg: [PyMISP] branch change

* chg: [test] test

* fix: [userloginprofile] unique rows

* fix: [userloginprofile] unique rows

* chg: [cleanup]

* Revert "chg: [PyMISP] branch change"

This reverts commit 3f6fb46fee.

* fix: [userloginprofile] fix worksers with monolog=1.25 browcap=5.1

* fix: [db] dump schema version

* fix: [CI] newer php versions

* fix: [composer] php version

* fix: [php] revert to normal php7.4 tests

---------

Co-authored-by: iglocska <andras.iklody@gmail.com>
2023-11-24 13:47:59 +01:00
Raphaël Vinot 79e91820ef chg: [PyMISP] Bump version 2023-11-23 13:47:57 +01:00
iglocska dfe3b786a9
Merge branch 'nohooks' into develop 2023-11-23 09:18:57 +01:00
iglocska b82093bfe3
fix: [login] action replaced with hard coded route to baseurl . /users/login 2023-11-23 09:14:01 +01:00
Sami Mokaddem 8d01368bf7
fix: [events:view] Remove any tooltip upon closing the popover form
This will make @iglocska happy.
2023-10-25 15:39:25 +02:00
Sami Mokaddem fb1c6bb0bc
chg: [workflow] Jinja template rendering is done automatically based on param options 2023-10-25 10:52:59 +02:00
Raphaël Vinot 8407961025 chg: [PyMISP] Bump version 2023-10-24 15:10:57 +02:00
Sami Mokaddem 28179ced9c
chg: [config:customAuth_header] Default to upper case.
- See $_SERVER make passed headers upper case
2023-09-22 11:43:02 +02:00
Raphaël Vinot ed381cae97 chg: [PyMISP] Bump 2023-09-15 10:37:04 +02:00
iglocska 37ecf81b84
fix: [internal] improved parameter parsing 2023-09-14 12:55:17 +02:00
Raphaël Vinot 6ac212311d chg: [PyMISP] Bump 2023-08-23 14:01:02 +02:00
Sami Mokaddem 3c097f8202
fix: [dashboard:csvExport] Quote elements and correctly apply line break 2023-08-09 14:56:24 +02:00
Sami Mokaddem 123b1d07c2
new: [dashboard:export] Added CSV export functionality 2023-08-07 14:32:21 +02:00
Raphaël Vinot f22c82e87a chg: [PyMISP] Bump. 2023-07-31 12:08:29 +02:00
Sami Mokaddem 967d01b4a1
Merge branch 'develop' of github.com:MISP/MISP into feature_workflows/enrichment-improvements 2023-07-31 09:41:47 +02:00
Luciano Righetti 7c28cee942 fix: revert loginAction override 2023-07-28 15:29:46 +02:00
Sami Mokaddem 26779f7753
chg: Bumped queryVersion 2023-07-28 10:42:38 +02:00
Mathieu Rollet 9e15f352d0
explicitly set loginAction with baseurl 2023-07-17 16:14:49 +02:00
Raphaël Vinot fccbc08185 chg: [PyMISP] Bump version 2023-07-10 16:19:05 +02:00