MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
13,459 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

3780 Commits (745512e71e09580ae533a1e14dfc3026cd9f9cd2)

Author SHA1 Message Date
iglocska 6407938475
chg: [ACL] Added new community functions to the ACL component 2019-08-29 09:27:19 +02:00
iglocska 3aecc82804
fix: [cleanup] removed unused functions 2019-08-29 09:27:00 +02:00
iglocska feb7fe82dd
new: [communities] Added support for requesting access for known communities 
- site admins can list the misp-project maintained community list
- request access to any of the communities
 2019-08-29 09:24:33 +02:00
Andras Iklody 8a15089237
Merge pull request #5079 from zaphodef/fix/contact_event_api 
fix: contact reporter via API
 2019-08-28 15:35:57 +02:00
Pierre-Jean Grenier 14314ebd75 fix: contact reporter via API 2019-08-28 14:07:55 +02:00
mokaddem c333d23f2d
chg: [decaying] Improved embedded JSONs saving 2019-08-28 12:03:37 +02:00
mokaddem 82e70fee12
fix: [appController] Fixed updateProgress redirection link. Fix #5068 2019-08-27 15:02:02 +02:00
mokaddem 5fdfdb0028
chg: [decaying:base_score_config] Added reason of taxonomy exclusion 2019-08-27 13:59:36 +02:00
Andras Iklody 6275cdfbd3
Merge pull request #5066 from zaphodef/feature/encapsulation_api 
chg: No need to encapsulate data in API request
 2019-08-27 13:06:23 +02:00
Pierre-Jean Grenier 74c019f8c5 chg: No need to encapsulate data in API request 2019-08-27 10:54:15 +02:00
iglocska 5916de9d5e
fix: [API] Fixed output of the attribute histogram 
- no more STIX-ish barf inducing numeric string keys for dictionaries
 2019-08-27 10:34:29 +02:00
mokaddem fd30141cdf
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-27 08:20:42 +02:00
Andras Iklody a53ccf8976
Merge pull request #5062 from zaphodef/fix/undefined_distribution 
fix: Default to 0 when no distribution is specified
 2019-08-26 23:25:25 +02:00
Pierre-Jean Grenier 0645e19dd0 fix: Default to 0 when no distribution is specified 
The current behavior conducted to set distribution to -1 in the returned json, and raise an 'Undefined index' notice
 2019-08-26 16:49:08 +02:00
mokaddem 37f474280d
chg: [decaying] Improved response when adding a model 2019-08-26 16:26:02 +02:00
Pierre-Jean Grenier a7bef2aba1 chg: Delegate to org by UUID 2019-08-26 16:08:04 +02:00
iglocska 209c4903dd
fix: [ACL] allow users to see delegations 2019-08-26 11:58:37 +02:00
Jakub Onderka 6174c9c698
fix: [UI] Info message should not be error 2019-08-23 19:40:20 +02:00
iglocska e4708c0b6c
fix: [UI] Multi select and deletion of events fixed, #5046 2019-08-23 11:56:50 +02:00
iglocska 8769bed9ec
new: [delegations] Added delegation index, fixes #5023 
/event_delegations/index

accepts context as a parameter with the following possible values:
- pending: all delegations awaiting my organisation's review (default)
- issued: all delegations issued by my organisation

parameters can be passed via key:value parameters or via json objects
 2019-08-23 11:38:47 +02:00
mokaddem 07f1c43d55
fix: [decaying:tool] Correctly update the state of the enable/disable 
button after editing
 2019-08-23 10:39:07 +02:00
mokaddem 446cf9d823
fix: [decaying:tool] Prevent Object types overriding attribute types 2019-08-23 10:23:19 +02:00
mokaddem 82972c4850
fix: [decaying:tool] Set `isEditable` parameter after editing a model 2019-08-23 09:01:04 +02:00
mokaddem ed98d73be7
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-22 15:33:09 +02:00
mokaddem 5a9a905c8d
chg: [decaying] Added formula description in multiple location 2019-08-22 11:47:57 +02:00
mokaddem 3a64405bd9
chg: [decayingMapping] Refacto - Comments and code optimization 2019-08-22 11:31:50 +02:00
iglocska f6f5a8f0f5
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-22 10:42:26 +02:00
iglocska 96475f59f6
fix: [admin] Invalid domain restriction check for site admins, fixes #5035 2019-08-22 10:41:30 +02:00
Andras Iklody 59d8dae2db
Merge pull request #5036 from zaphodef/feature/events_contact_api 
chg: /events/contact/{event_id} can now be properly called from API
 2019-08-22 09:11:48 +02:00
Pierre-Jean Grenier 9f983ed071 chg: /events/contact/{event_id} can now be properly called from API 2019-08-21 17:53:04 +02:00
iglocska eaae866397
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-21 17:02:33 +02:00
iglocska bbc05b229f
new: [diagnostics] Added SQL table size tool 
- along with various other small fixes
- increased recommended memory size additionally
 2019-08-21 17:01:52 +02:00
mokaddem 86ca816dcf
chg: [decaying] refact - Accept PUT and added comment for attribute 
removal in restSearch
 2019-08-21 15:53:13 +02:00
mokaddem 3f78f0e260
chg: [decaying] Code refactoring, commenting and slight optimization 2019-08-21 15:42:14 +02:00
mokaddem efa1897c34
chg: [decaying] Renamed `tau` and `delta` into `lifetime` and 
`decay_speed`
 2019-08-21 10:02:26 +02:00
Pierre-Jean Grenier 851cfb84e4 chg: Setting the 'Tag' key when editing a tag through API is not mandatory (consistency) 2019-08-20 17:46:44 +02:00
iglocska 02376113a3
fix: [API] Made delegateEvent API friendly, fixes #5026 2019-08-20 16:45:52 +02:00
iglocska 3e9752a6a8
fix: [API] delegate events by UUID, fixes #5024 2019-08-20 16:38:48 +02:00
mokaddem 26afe1765d
chg: [roles] Added `perm_decaying` role 2019-08-20 16:37:06 +02:00
Andras Iklody d2c7eb6b9b
Merge pull request #5006 from JakubOnderka/not-found-exception 
fix: Replace not exists MethodNotFoundException with NotFoundException
 2019-08-20 16:30:02 +02:00
mokaddem cd5c9f7d1d
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-20 15:00:38 +02:00
Andras Iklody 69885806b0
Merge pull request #5021 from zaphodef/feature/return_sighting_add_rest 
chg: Return the sighting when adding one through REST API
 2019-08-20 13:45:55 +02:00
Andras Iklody cafef3dfae
Merge pull request #5020 from zaphodef/rest_import_module 
fix: Import modules using 'misp_standard' format can be called via RE…
 2019-08-20 13:40:18 +02:00
iglocska fb100a037a
fix: [ACL] Fixed read only users not being able to list the sightings, fixes #5022 2019-08-20 11:51:11 +02:00
Pierre-Jean Grenier 8207a64890 chg: Return the sighting when adding one through REST API 2019-08-20 10:52:12 +02:00
mokaddem 0866077fc6
chg: [decaying] Improved ACL integration for the UI 2019-08-20 10:06:15 +02:00
mokaddem 3979c29b61
fix: [decaying] Fixes on UI, Basescore overflow and unauthorized 
edition
 2019-08-20 09:25:48 +02:00
Pierre-Jean Grenier d6d91c56f3 fix: Import modules using 'misp_standard' format can be called via REST API 2019-08-19 16:44:49 +02:00
mokaddem a683b420bd
fix: [decaying:acl] Various ACL fixes 2019-08-19 15:19:01 +02:00
mokaddem b6e84f74d4
fix: [decaying:.json] Restored working behavior of `.json` views 2019-08-19 12:07:48 +02:00
mokaddem 7be53e6b5b
chg: [decaying:tool] Added table filtering buttons 2019-08-19 11:59:40 +02:00
mokaddem d31f34fed0
chg: [decaying:index] Added quick filter buttons 2019-08-19 10:57:58 +02:00
iglocska e296288f59
chg: [version] bump 2019-08-16 19:04:17 +02:00
mokaddem 8d8526977d
chg: [decaying] Slightly improved `Model/DecayingModel` with shortcuts 
code quality and options
 2019-08-16 16:52:36 +02:00
mokaddem d813460118
chg: [decaying] More consistency about `parameters.settings` when empty 2019-08-16 15:42:01 +02:00
mokaddem 128cdb7744
chg: [decaying] Renamed function and started true implemention of ACL 
for models
 2019-08-16 10:52:00 +02:00
mokaddem 3a356a51e4
chg: [decaying] Added restricted edition and `all_orgs`` flag - WiP 2019-08-16 10:33:58 +02:00
iglocska e8c5dba4f3
new: [API] get a single server setting via /servers/getSetting/[setting_name], fixes #4964 2019-08-15 20:01:36 +02:00
iglocska 591b83405b
fix: [internal] Feed lookup by UUID removed as feeds don't actually have UUIDs, fixes #4998 2019-08-15 19:49:55 +02:00
iglocska 85a9926b07
fix: [ToolboxComponent] fixed model name lookup by moving to Model->alias over Model->name, fixes #5003 2019-08-15 19:46:52 +02:00
iglocska 09add56ac1
fix: [internal] Breaking bug with the feed edit fixed 2019-08-15 19:43:54 +02:00
Jakub Onderka 4ef9595023 fix: Replace not exists MethodNotFoundException with NotFoundException 2019-08-14 21:27:05 +02:00
iglocska cf6bc6f204
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-14 17:04:28 +02:00
iglocska 7a56d9ff43
fix: [API] invalid object reference fixed in objects/view, fixes #5003 
- the Copy Pasta God(tm) strikes again
 2019-08-14 17:03:47 +02:00
Andras Iklody bb475784f0
Merge pull request #5001 from zaphodef/feature/uuid_sharing_group 
chg: Show sharing groups' uuids
 2019-08-14 16:14:57 +02:00
iglocska 50db8c9a45
new: [API] Allow posting freetext data for ingestion via the event uuid instead of ID, fixes #4995 2019-08-14 15:17:25 +02:00
iglocska 60e68d1459
fix: [API] get organisation by uuid for sightings/listSightings, fixes #4992 2019-08-14 15:08:37 +02:00
iglocska eb4e5bf765
fix: [API] Misp object delete's uuid lookup fixed 2019-08-14 15:07:11 +02:00
iglocska 519e110f9f
new: [internal / API] new component added to handle repeatable code across all controllers (toolbox controller) 
- added UUID -> ID lookup function and integrated it across several functions
- fixes #4990
- fixes #4999
- fixes #4993
- fixes #4991
- fixes #4989
- fixes #4987
 2019-08-14 15:01:31 +02:00
Pierre-Jean Grenier 8dcbbf7674 chg: Show sharing groups' uuids 2019-08-14 14:54:26 +02:00
iglocska bbd881d4f7
fix: [API] removed testing exception 2019-08-14 14:38:02 +02:00
iglocska 0a9219411f
fix: [API] Swapped error messages' content from "don't" to "do not" to avoid weird sanitisation artifacts coming from the exception handler 2019-08-14 14:33:20 +02:00
iglocska 0fd2466878
fix: [API] error message 2019-08-14 14:27:51 +02:00
iglocska 20a250ec6f
fix: [API] Attribute edit fixed 2019-08-14 14:24:41 +02:00
iglocska d7733102fe
Revert "Revert "fix: Fix error messages"" 
This reverts commit a12ea04a4c.
 2019-08-14 14:17:58 +02:00
iglocska a12ea04a4c
Revert "fix: Fix error messages" 
This reverts commit d501c56e5f.
 2019-08-14 13:58:00 +02:00
Andras Iklody 299be5c170
Merge pull request #5000 from zaphodef/bad_permissions 
fix: Fix error messages
 2019-08-14 13:53:28 +02:00
Pierre-Jean Grenier d501c56e5f fix: Fix error messages 2019-08-14 13:31:32 +02:00
iglocska 6e23cb18bf
fix: [API] /galaxies/view by uuid added, fixes #4993 2019-08-14 11:56:06 +02:00
iglocska 74bf393ead
fix: [API] Delete sightings by UUID, fixes #4987 2019-08-14 11:43:14 +02:00
iglocska 5028b7250a
fix: [API] /objects/view should accept UUID as a parameter instead of just ID, fixes #4991 2019-08-14 11:39:51 +02:00
iglocska 879c564d0c
fix: [API] Delete organisations by UUID, fixes #4989 2019-08-14 11:30:11 +02:00
iglocska 332f4e6c8b
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-14 11:25:37 +02:00
iglocska b176e4d027
fix: [API] Access event proposals by uuid via shadow_attributes/index/[uuid], fixes #4988 2019-08-14 11:25:20 +02:00
mokaddem 30ba0a5a5a
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-14 10:48:42 +02:00
mokaddem 05fe5e18e8
chg: [decaying] Allow for model parameteres override 2019-08-14 10:48:13 +02:00
Pierre-Jean Grenier 36f4471055 chg: delete an object by its uuid, similar syntax to attribute's deletion 2019-08-13 18:12:52 +02:00
mokaddem 6ba45b27f8
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-13 16:32:58 +02:00
mokaddem b415f8ffc7
chg: [decaying] Added list of available formulas and model settings - 
WiP
 2019-08-13 14:21:58 +02:00
iglocska ecfe1ee596
fix: [sharing groups] Fix the behaviour of roaming mode sharing groups, fixes #4983 
- creating sharing groups without roaming mode and without any sharing group servers should automatically add the own server
- adapt the new roaming mode behaviour from a few months ago on push: No explicit roaming mode set means no push, even if no servers are added
 2019-08-13 13:25:01 +02:00
iglocska 6b58b51bd3
fix: [Sharing groups] Various fixes to align the reported local instance URL as the external_baseurl if set, as opposed to always using the baseurl, fixes #4982 2019-08-13 13:00:24 +02:00
mokaddem bd1aacafea
new: [event:view] Added support of decay score 2019-08-12 16:34:26 +02:00
iglocska b2f3481806
fix: [sync] Sync object builder tool fixed 
- was picking the wrong org as the owner of the remote side
 2019-08-12 11:51:37 +02:00
iglocska a4462f717e
fix: [API] /events/delete now accepts UUID as parameter 2019-08-11 21:22:38 +02:00
iglocska 1cb9489839
fix: [sessions] Several minor fixes to the session handling 
- cookieTimeout setting fixed
- moved the session massaging into a separate function
- added some translation calls for some of the setting errors involved
 2019-08-09 15:57:15 +02:00
iglocska 539a7431a4
new: [session handling] Session handling fixes 
- changed the cookie name to MISP-[MISP.uuid] to rely on a unique data-point instead of the URL. This solves issues with multiple MISPs running on the same host via port based virtualhosts sharing sessions
- timeout issues potentially fixed when using the recommended PHP session handler. If the garbage collection is configured in php.ini it could previously purge sessions that based on the session timeout should still be valid
 2019-08-09 14:41:17 +02:00
iglocska 7b6a7a5a65
fix: [API] /servers/restartWorkers response fixed for API users, fixes #4966 2019-08-08 11:19:21 +02:00
iglocska e53a0046a9
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-07 15:04:51 +02:00
iglocska a46e7a680d
chg: [API] servers/serverSettingsEdit now accepts the force parameter in a posted JSON object 2019-08-07 15:03:32 +02:00
iglocska 14685c45fb
fix: [API] Further fixes to /attributes/add 2019-08-06 16:33:16 +02:00
iglocska edf0657a1d
fix: [API] Fixes to the new attribute add 2019-08-06 16:01:09 +02:00
iglocska 786d53d30b
new: [API] Attribute add rework - WIP 
- handle attribute creation in a unified manner via captureAttributes
 2019-08-06 15:55:16 +02:00
iglocska e18e7c1807
fix: [API] fixed an incorrect fix to the object references add function from earlier today, fixes #4866 2019-08-05 16:49:25 +02:00
iglocska cad286d239
fix: [API] the returned data when adding object references doesn't include the object_uuid, fixes #4866 2019-08-05 16:06:51 +02:00
iglocska dcaebb8cc4
fix: [API] Consistency in returned attribute fields when modifying it 2019-08-05 15:31:43 +02:00
iglocska ae28d7b461
fix: [API] Object edit clusterfudge fixed 2019-08-05 13:41:23 +02:00
iglocska 166fbf0da4
fix: [objects] Fix various issues with objects/edit 
- value1 and value2 should not be included in the repsonse, fixes #4944
- fixed input being misunderstood in certain situations
 2019-08-05 10:50:39 +02:00
iglocska fc3a38d463
fix: [pymisp / querystring] versions bumped 2019-08-02 17:06:17 +02:00
iglocska e5cfd152cf
fix: [local tags] Host org non admin users should be able to tag data owned by others, partially fixes #4925 2019-08-02 16:53:30 +02:00
iglocska 630c6bc1f9
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-02 14:43:41 +02:00
iglocska d6692c44a0
new: [sync] Previewing a remote instance now passes pagination rules in the request instead of fetching the full data-set and paginating in memory 
- fixes issues with empty preview pages
- massive performance boost
- requires the remote side to be the same version or newer
 2019-08-02 14:42:23 +02:00
iglocska 1d47e37f5c
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-08-02 14:39:15 +02:00
iglocska 7b9b58356c
new: [sync] Event index cleaned up, total count of listd events added as X-Result-Count header 2019-08-02 14:38:28 +02:00
iglocska 7003faa00c
new: [API] new parameters added to attributes/restSearch to include additional context, fixes #4935, fixes #4940, affects MISP/PyMISP#415 
- includeSightings: include sightings for all attributes returned
- includeCorrelations: include the correlations to other attributes (includes a light-weight event object with each attribute)
 2019-08-02 13:41:20 +02:00
iglocska 4781d68a44
chg: [UI] Added the new user name helper 2019-08-02 10:45:55 +02:00
iglocska a39306dfe5
fix: [API] Exception on /sharingGroups/removeOrg fixed, fixes #4884 2019-08-01 11:16:44 +02:00
iglocska 5d90a8ffc7
fix: [API] /attriutes/index fixed for non admin users 2019-08-01 11:12:59 +02:00
iglocska 220842edff
fix: [API] Freetext import now correctly handles the response of non-background processed tasks 2019-07-31 15:57:25 +02:00
iglocska 1434759135
new: [API] Disable background processing on-demand via URL parameters 2019-07-31 15:56:33 +02:00
iglocska 5f9e04aa4f
fix: [rest client] Potential fix to the skip ssl validation flag not working on wrong CN name 2019-07-31 14:10:19 +02:00
iglocska dc0f4741be
Revert "fix: [rest client] Potential fix to the SSL validation skip not working" 
This reverts commit 293871cee8.
 2019-07-31 14:03:22 +02:00
iglocska 293871cee8
fix: [rest client] Potential fix to the SSL validation skip not working 2019-07-31 13:58:34 +02:00
iglocska b83ac37ff4
new: [API] Allow adding tags via /attributes/add directly 2019-07-30 12:03:49 +02:00
Andras Iklody de228e083f
Merge pull request #4927 from 4ekin/fix-postgresql-issues 
fix: some PostgreSQL issues
 2019-07-30 09:16:11 +02:00
iglocska d6a15438f7
fix: [proposals] POST on shadow_attributes/edit/{attribute_id} inconsistent, fixes #4857 2019-07-29 17:10:21 +02:00
iglocska b2e9bbd7ef
fix: [API] taxonomy/addTag now correctly responds if queried via the API instead of redirecting, fixes #4865 2019-07-29 17:01:28 +02:00
iglocska e60f0beff9
fix: [API] sightings/listSightings should also support JSON parameters, fixes #4875 2019-07-29 16:46:02 +02:00
iglocska 30e7b49632
fix: [API] Organisation edit now also accepts UUID instead of ID via the URL param, fixes #4896 2019-07-29 16:32:24 +02:00
iglocska ed1e55b76b
fix: [API] Fixed an edge case when the attribute historgram throws a notice error 
- no idea how to reproduce it, the organisation referenced in an event orgc_id not existing is a pre-condition

- fixes #4880
 2019-07-29 16:28:42 +02:00
iglocska ebf054e0d0
fix: [API] Adding attributes via the freetext importer using the API resulted in several issues 
- adhereToWarninglists was not correctly adhered to
- the response didn't reflect what was saved, only what was pushed to be saved (excluding removals by warnintlists, several attributes added by adding more than one valid type, etc)

fixes #4881
 2019-07-29 16:15:00 +02:00
iglocska d75c6c9e3b
fix: [sharing groups] Add sharing group returns a list instead of a sharing group object, fixes #4882 2019-07-29 15:20:51 +02:00
iglocska 191983d27b
fix: [API] Exception on POST sharingGroups/addOrg, fixes #4884 2019-07-29 13:12:09 +02:00
iglocska 954b7e6727
fix: [proposals] shadow_attributes/index default behavior modified to show all proposals by default, fixes #4936 2019-07-29 11:38:20 +02:00
iglocska 118fb6649b
fix: [API] Server deletion now responds correctly via the API 2019-07-29 10:23:00 +02:00
iglocska a89b32d0c4
chg: Server pull/push endpoints allow the passing of the parameters as a POSTed JSON in addition to URL parameters, partially fixes #4889 2019-07-29 10:14:49 +02:00
mokaddem 791ef0d21c
chg: [decaying:rest] Renamed `decayed` into `excludeDecayed` for better 
usability
 2019-07-25 16:21:12 +02:00
mokaddem 28f080e581
new: [decaying:rest] Filtering out of decayed attributes 2019-07-25 16:13:42 +02:00
mokaddem e4cc20b054
new: [decaying] Partial API support - WiP 2019-07-25 15:45:33 +02:00
mokaddem 8611c2069f
new: [restResponse] Added entries in Attribute/RestSearch for decaying 
model support
 2019-07-25 11:52:16 +02:00
mokaddem 5e2968df42
chg: [decaying] Full support of enable/disable model 2019-07-24 15:41:23 +02:00
mokaddem e1d9d53390
new: [decaying] Added models import and export feature 2019-07-24 10:51:58 +02:00
Bechkalo Evgeny 76d58e6e53 fix: some PostgreSQL issues 
Closes: #3066, #3067
Fixes issues:
- wrong boolean and smallint conversion;
- postgresql table and field naming (field 1_event_id is wrong name for
field for example);
- postgresql grouping (you cannot select columns without grouping them);
- wrong checkbox rendering without keyword.
 2019-07-23 11:17:56 +03:00
mokaddem 52d143e030
chg: [decaying:tool] Dynamic redraw of the model table to support 
dynamic update
 2019-07-23 10:04:43 +02:00
mokaddem 821785273a
Merge remote-tracking branch 'origin/2.4' into decaying 2019-07-22 10:03:57 +02:00
mokaddem 194e4b5e2d
fix: [event:view] Ensure sync users do not get local tags through ajax 2019-07-19 16:23:15 +02:00
mokaddem e50f624894
fix: [tag:local] Allow users (with correct authorization) to detach 
tags
 2019-07-19 15:28:13 +02:00
mokaddem 7394385de6
chg: [decaying:model] Added support of default base_score 2019-07-18 15:08:13 +02:00
mokaddem 4817c38ac3
chg: [decaying:simulation] Added support of base_score computation, 
various UI improvements and different method to compute scores
 2019-07-17 16:14:24 +02:00
Andras Iklody 046704b735
Merge pull request #4878 from RichieB2B/ncsc-nl/fix-destroy 
Fix session_destroy errors
 2019-07-16 18:11:53 +02:00
mokaddem 458bd23937
chg: bumped queryversion 2019-07-16 16:08:28 +02:00