MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
19,436 Commits
34 Branches
365 Tags
189 MiB
Commit Graph

692 Commits (a61caa3a6a541e6f9761ae99c033c7457050bc0b)

Author SHA1 Message Date
iglocska 850159627a
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-09-13 11:51:05 +02:00
iglocska ffc9147018
new: [sync] Added sync priority system to prioritise the order of instances to push to 2019-09-13 11:49:12 +02:00
mokaddem cfafc2e51f
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-09-12 13:35:35 +02:00
iglocska 290a92808d
fix: [customauth] default setting for use_header_namespace should adhere to what is displayed (true) 
- as requested by the MELiCERTES consortium for CSP
 2019-09-11 09:28:45 +02:00
mokaddem 35e2c62947
chg: [app] bumped queryversion 2019-09-10 15:43:20 +02:00
mokaddem f3860ade80
Merge remote-tracking branch 'origin/2.4' into decaying 2019-09-10 15:40:25 +02:00
iglocska 77f767ff02
fix: [internal] blackhole function default fixed 2019-09-10 15:22:55 +02:00
iglocska 33f7444fe9
new: [auth key fail logging throttle] Throttle the auth key failed log entries to 1 / hour / key 2019-09-09 14:09:18 +02:00
mokaddem 1d378fd7bd
Merge remote-tracking branch 'origin/2.4' into decaying 2019-09-06 16:21:17 +02:00
iglocska 2053d7e74f
fix: [authentication] prepend the baseurl to the login/logout redirects - fixes #3871 2019-08-30 15:24:29 +02:00
iglocska 145730fe60
chg: [VERSION] bump 2019-08-30 13:09:41 +02:00
mokaddem 673b314ce6
chg: bumped query version 2019-08-29 13:03:25 +02:00
mokaddem a5d06d1333
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-29 10:52:18 +02:00
mokaddem 82e70fee12
fix: [appController] Fixed updateProgress redirection link. Fix #5068 2019-08-27 15:02:02 +02:00
mokaddem 26afe1765d
chg: [roles] Added `perm_decaying` role 2019-08-20 16:37:06 +02:00
iglocska e296288f59
chg: [version] bump 2019-08-16 19:04:17 +02:00
iglocska 519e110f9f
new: [internal / API] new component added to handle repeatable code across all controllers (toolbox controller) 
- added UUID -> ID lookup function and integrated it across several functions
- fixes #4990
- fixes #4999
- fixes #4993
- fixes #4991
- fixes #4989
- fixes #4987
 2019-08-14 15:01:31 +02:00
iglocska 1cb9489839
fix: [sessions] Several minor fixes to the session handling 
- cookieTimeout setting fixed
- moved the session massaging into a separate function
- added some translation calls for some of the setting errors involved
 2019-08-09 15:57:15 +02:00
iglocska 539a7431a4
new: [session handling] Session handling fixes 
- changed the cookie name to MISP-[MISP.uuid] to rely on a unique data-point instead of the URL. This solves issues with multiple MISPs running on the same host via port based virtualhosts sharing sessions
- timeout issues potentially fixed when using the recommended PHP session handler. If the garbage collection is configured in php.ini it could previously purge sessions that based on the session timeout should still be valid
 2019-08-09 14:41:17 +02:00
iglocska fc3a38d463
fix: [pymisp / querystring] versions bumped 2019-08-02 17:06:17 +02:00
iglocska 4781d68a44
chg: [UI] Added the new user name helper 2019-08-02 10:45:55 +02:00
iglocska 1434759135
new: [API] Disable background processing on-demand via URL parameters 2019-07-31 15:56:33 +02:00
Andras Iklody 046704b735
Merge pull request #4878 from RichieB2B/ncsc-nl/fix-destroy 
Fix session_destroy errors
 2019-07-16 18:11:53 +02:00
mokaddem 458bd23937
chg: bumped queryversion 2019-07-16 16:08:28 +02:00
Richard van den Berg 50846595c8 Destroy the CakeSession, not the php one. Fixes #4808 2019-07-16 11:56:56 +02:00
Alexandre Dulaunoy 5122299cd4
chg: [version] align PyMISP version with core 2019-07-13 09:16:37 +02:00
iglocska c8018d7daa
new: [API] Proposal sync rework done 2019-07-12 16:03:08 +02:00
mokaddem 41615b7ce4
fix: [eventGraph] Correctly pick the first-matching requiredOneOff to 
generate the object's label
 2019-07-03 11:38:07 +02:00
mokaddem 4ab4318eb2
chg: [event:view] Make `Related *` scrollable 2019-06-24 14:00:51 +02:00
iglocska d69188f66a
new: [correlation graph] Toggle physics on/off 
.,/#&&@@@@@@@@&%(*.
                                                         #@@@@%*..,..,.,,.,,.,.,.,,,,..,*#@@@@(
                                                  .&@@%,,.,,.,,,*#%&&&%#(/**,,**/(%&&&%(/,.......(@@@,
                                              %@@(,,,,,,(&&%*..........  ...*,*..,.........../&,....,%@@,
                                          &@&,,,,,*&&(....  .*....*..//.../../(...*.*(...%..........#&(....*@@/
                                      ,@@,,,.,#......#..#*..(#..(*./,..,...*(...*.,.*..........#/#.....%&,..,/@@.
                                   /@%,,,,(&(.....#/,...#../.(#...,/.,,../,..*(...*...%,.........,*...#./....#&,.,,@@.
                                .@&,.,,%&....,,....(*,.../.(,..(...,..,..*#..,,..,..,...*,....../#...,..(//.....,&/..,&@.
                              %@,,,,#&...,,/./**....(,,..(,.//..,*..............................,.....././(.,..*...,&/,,,@&
                            @%,,.(&,../(*..(#../#....(*. /....................................../,..*.*..//,,..,/.....,&...%@
                         .@(..,&&,......%,,/..../(..(................................................/(..(.,.*.....**....%#,,*@,
                        @(,,*&%*.........*((....*#.......................................................(*.,,.......*,#...*&..,@*
                      @#,,/&%,.(*..........#,/.............................................................../...*..*(.......*&.,*@,
                    #@,.,&&*.#&/(.,...............................................................................,...(...,.,,.*%..*@
                   @*,,%@/......#*(................................................................................./. (./.#.....#%..%@
                 &@,,/..........#,../................................................................................,.#.........&*,,@*
                @/,,&@,............/(..................................................................................#............*&../@
               @*,/&&.................................................................................................................&,..@
             (@,,(&(...................................................................................................................%%..@(
            (&,,#&*.....................................................................................................................,%../%
           #@,,%&........................................................*/,...../(*......................................................&..*@
          /&,,%&....................................................,                  **..................................................&..,@
         *@,,%&..................................................,     . . ..       .  .  *,................................................&..*@
         @*,#%,................................................*   ..                       (................................................&.,*%
        @/,*#*...............................................*%/,,,***,...,,.  ..............,&..............................................,&..&(
       %&,,%@...............................................%**,..,,,,,,,......,. ........   ,,%#............................................./(,.@
       @*,(%................................................*,..*(*.*,,...*,/..*,.. ... .,.*... ...............................................&*..@
      &(,,#,...............................(/**,,,.,,(.*/,%&&%#*/#(....,* .,...... */. ..,/**/(##% *,,.,,.( .   .(..............................&..##
      @*,%#................................*.... .(/..... %,,.,,*.,**.,,,,,,*((*,..... .(. . . .. ,.,,,..,. .....,..............................#(..@
     ,,/,................................*.  ...........#,*.,/*.,,,,,,,,,,,...,*.......  .(. .  *              %...............................&..*#
     @/,##.................#*..,*,,,,..(/,,,*.,***/,,,,/*/*.,,,,,,,,,,,//***,,,**...... ..   ./.%.,*.(*,,,..,.,/,..,***/*#...*%(...............%(..@
    .@*.#*..........,,,,,*,%....,/,**/...,//(/...*/((,.,/&%((/***/*//**///////********,,,,......./%(..........      . .,,,,.....#*.. ...,.........%..%/
    #(*//..........%,.,,,,.%........... . ...............*/****,*,,,,**,,,,,,,,,,,,,..,,.........(,,,,,*,,,*,,,.........     ....( ...../.........&.,.@
    @/,(/........%%,.,,*,(%/*/*...,.,,*,..............,,.,/%%%###%%##%####(#%####%%(/((###(//(%((..................,   .  ....,%%((((//(&.......#/..@
    @/,((..........%......#*...........,..............,.../,//****/***/**,,*/,,/(*,*,,........**.(.,.................*...........&     .*.........,%..@
    @/,#/..........(,,.,,,(*.........../..............,.../,/*/((((//*//*,*#***,./,/,,,........*./...................*...........%....../..........%..%.
    @/,#*..........#......*/...........*..................*.**/,.,*(//**/,..,..,...*,,,..,*,...*.(...................*...........%   .../..........&..(,
   .@(*#,..........%......//...........,.,......,,*,**....*./**(,##,(//*/,/%&&&%%&//,,,..,//,.,*.(...../,,,,.........*.,.,.,.....& .. ../..........&../,
    @(*#,..........#...(,,&/.....,%##(,*.......,,/*,(.,..,*./*/(*/**(/*,/,///***,.*/,,,..,../.,*./.....*/..(........./,*,*#......&,../..*..........&..(,
    @(*#/..........#..*...%/...,.*,..#,,.......,,,..#,,.,,*./*/(*//*(//,(**//,,,,.*/,.,.,*../../,/...../(..(.........(.,..(.,....#. ..*.,,.........%..%
    @/*/*..........#..,...%*...,.*,..#.,.......,*,..(.,,..*,**(#*((/(//,/********,*/*,,,.*..*.,/,(.,...*(..(.........(.,..(......#... *.*,.........%..@
    &//*,..........%..*...&,...../...(,,......,,*...(.,,,,,.///(*/////(*(,/*/***,,*/*.,.,*..*.,*./.,...*(../.........#,,..(......#.   /./..........#..@
    *%/,#..........%..,...%,...........,.......,*...#.,,,./.**((*//*(//*(,/*/**,*,//*,,..,..*.,/,(...,.*#../,........#. .,......./.   /.*.........**..@
     @/,(,.........%..    %....,..,....,,......,*...(,,,,/.,/,./*/(,(((/%#*,(///*//((,...*..*.,*,,#.,,,//  ,.........#...........#.   . ,.........&..%/
     @(/,/....,.........,*..,.........,,.....,.,.,,*,,,*//***,,,,,,**,***,****//(((##%%#######(#(#(..,.***,,,........#............./...    ..,*...%..@
     ,@/,#,...,..,.,**,,,..,,,.,,.....,.,.,...,,/***/,,//(/////////**///(////**,,,,,,**,,,,......./.*,,**,,,,........#.............*,,,*,,,..**..#*.,%
      @/**/...............................,,,,,,,,,,,*&&%%%###%%%%%%%%%&&&&&&%%##((/////***,*,,,,*/#%(&%###%%%%%&&&&&&%########((//**,...........%..@
       @/,/...........,%...............................**,,,,,,,*******//((###%%%&&&&@@@@@@@@@@@@@@%...............................,,,,,,,*/*.**.*&
       /,#.....,*.,%&&%...........,.,..,*.....*,&/......*.*,/....&(#%......,.....*. ,.....,,,............../*........ .............../,..#*,..%..@
        @/*,/..,*@*...../(...........%*(,*%....,/#../#....*%( /.....(*.....,*,....(,......../.,......(,......#(.....#...#...........,.....//...&..%,
         @/,**.*(....(,%./%.........*%,#.,&.....,(..&.....*%.##.....((.....,/.....*/........(........(,......#(....../../........../.......((.**.*&
         (@/,(*..%#....,.,&........................................................................................................#*....../.,%..@
          #%/,(,..**/,..*%..*....................................................................................................,..#,.**(#..#..@
           @%/*#*.,....%*.#*%,,...................................................................................................%.........%.,@
            /,(/...,%.%./.*@*,................../&//...................................................,#*................../#*....&*./..%.,@
             &&/,(%..,./.(&....,/,..............,#(/,/. ,..............................................(*,,.,,...............,*..&..*../.,#.,@
              /&/,*%..,%,....*.(&*%............##.,...*&., ,....................................../.#...,,.../................%,..../&,.*,.,@
               ,@/**%*......,&(...&.#................*&..,(,./(,*.............................*..%./*.....#*,............*......,%.*,..&.,/%
                 @(/*#&..*/@.......%#(%............,/&...,(*#..(#./#.................,*.,.%,, .( ....,*.................,#...,.....(..#,.@*
                  #&/**&%......,,(&/..*.,................,%..../%(,..........///,#(.,*.....(.#,.,....#(...............%.*..%.....(..%,,,@
                    @(/*(&*...*&.((...../%/..................,/(.............*......./##,...(,..#*.....................,#.,..%.*..,/,,@*
                     #@//*#@..##%..../.%...%....................,............(/.../..(*..,../...................#/.....#..%...,..%..*@
                       @&(**%@,.,/.,.(*...//...................................%&(................................& &,..*..%,..%,,.@
                         @&(*/#&(..((..,.#/....../.*.*.......................................................%.,...%*..%/....%...@.
                           @&(//(&@...%#/.......#/%..*.( /,..........................................*,,...../*%*,...#..../(.,.@.
                             &@(///%&/...........,/#.....*/##(.....................................,*,........(.%%#,/...%,.,*@
                               /@#((/(%&*.....*/..((%...*/#...,*((#&.  ,,*///*..............(*.../*.,.*,......&......%#.,,@%
                                  &@((//#%&*...#(**#.../,/...*#*/../,,.*.*...(*,,..((....../,.....,,./........(...%/,,,#@
                                     @@(((((%%&,....../,/...,.**/..*,*..,,,(/..,,.,.,......(,.....(,..(, ...../%*.,,(@*
                                        #@%////#%%&*....#.,(.,#*,..*,...*,./*.....#(........(,....(.......(%/,,,,&@.
                                           .&@#////(#%%&(.....*&&*/*(...*,,..*./,...(...............,/%/,,,,,%@#
                                                #@@/*////(#%%&&/.........,*(#*..(,/*.........,*#%//,,*,,*@@(
                                                     /@@@(/(////((((###%&&&&%%%%%%%%&%%##(/*******/&@@(
                                                            ,%@@@@%#((//////******/////(/#%@@@@%,
                                                                          .,***/***,.
 2019-06-20 17:46:39 +02:00
Andras Iklody 1470d21813
Merge pull request #4674 from juju4/devel-globalstrict 
strict typing - snuffleupagus tests
 2019-06-18 09:29:12 +01:00
mokaddem b42f803110 chg: bumped queryversion 2019-06-12 15:31:06 +02:00
iglocska 3bcd7c57a3
chg: [querystring] bump 2019-06-12 14:24:14 +02:00
mokaddem 210477eaaa chg: bumped queryversion 2019-06-12 14:13:25 +02:00
iglocska 3733f3dd00
fix: [CSRF] END THIS NIGHTMARE 2019-06-07 15:25:32 +02:00
iglocska ab86fd658b
fix: [CSRF] Potential fix for the CSRF issues via tag/galaxy additions 2019-06-07 14:44:39 +02:00
iglocska 75dcaa14e0
fix: [session] Fix to automatic session destruction in previous attempt to fix the overflow of API sessions 2019-06-07 08:49:30 +02:00
iglocska d6fc4272ad
fix: [API] Destroy the session at the end of the execution 2019-06-06 20:31:56 +02:00
juju4 492b076f12 strict typing - snuffleupagus tests 2019-05-26 09:06:16 -04:00
mokaddem 46be1e918e chg: [event:view] Correctly display title to large by truncating 
(+ellipsis)
 2019-05-23 15:07:43 +02:00
mokaddem 6d5fac0a6c chg: Bumped queryversion 2019-05-21 10:11:04 +02:00
mokaddem 75d92190cb chg: bumped queryversion 2019-05-21 09:52:09 +02:00
iglocska 1aef957d5f
new: [paranoid logging] Added POST/PUT body logging on demand 2019-05-17 12:04:19 +02:00
iglocska f71bb17ea4
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-05-17 11:46:12 +02:00
iglocska e89b4525ad
new: [logging] Added paranoid logging mode 
- will log ANY query's (UI/API):
  - http method
  - requested URL

- optionally disable DB logging for paranoid log entries
 2019-05-17 11:45:20 +02:00
mokaddem 711f9d398e chg: Bumped queryVersion 2019-05-16 17:28:40 +02:00
mokaddem ffbbb9292d chg: [eventgraph] Force constant color for the eventgraph's nodes. Fix #4536 2019-05-06 15:19:22 +02:00
Steve Clement fc8f7982df
Zoidberg's son: Update system (#4534) 
Zoidberg's son: Update system
 2019-05-01 18:24:41 +09:00
mokaddem 02719517c7 chg: [object:similiar] Added back button, improved highlight and text 2019-04-30 10:05:39 +02:00
mokaddem 47e13c8369 chg: [updates] Implented changes requested by the PR's review #4534. 2019-04-29 11:09:04 +02:00
mokaddem ee735f00d4 new: [update] Injected update-related files/changes from zoidberg 2019-04-26 09:45:03 +02:00
Raphaël Vinot aa58cf4ff2 chg: Bump PyMISP 2019-04-24 17:07:05 +02:00
iglocska 260b156135 fix: [UI] Modifying push/pull rules fails via the server edit 2019-04-17 11:17:13 +02:00
iglocska 76d14c00cb Merge branch 'thumbnail' into 2.4 2019-03-29 20:29:37 +01:00
iglocska 1380a4797a new: [UI] FA5 update finalised 
- includes helpers to untangle the branded icon mess
 2019-03-26 10:17:59 +01:00
iglocska 5f87ee0d2a fix: [UI] Inconsistend pluralisation fixed, fixes #4360 2019-03-25 12:34:17 +01:00
iglocska f3d2b1d15a new: [tagging] Stop pre-populating forms for tagging / attaching of galaxies 
- avoids any potential CSRF issues, the form is fetched just in time for the submission
 2019-03-20 11:21:40 +01:00
iglocska 7141f70b20 Merge branch 'kafka' into 2.4 2019-03-19 17:23:05 +01:00
iglocska 7fbc4dc34c new: [REST client] Added history/bookmarks 2019-03-19 10:55:27 +01:00
Nikos Filippakis 9d59b10368 Publish events to Kafka 
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
 2019-03-18 15:53:22 +01:00
mokaddem 57f8a46129 chg: [viewPicture] Adaptative behavior if php-gd not loaded 2019-03-15 12:18:45 +01:00
Raphaël Vinot a300cf5a2e chg: Bump PyMISP to 2.4.103 2019-03-02 00:33:52 -08:00
iglocska f11a0dad0d chg: [recommended versions] Added note on deprecating PHP 7.1 and Python 2.7 2019-03-01 06:56:02 +01:00
iglocska ad8eb0ed47 new: [UI] Added quickfilter for the server settings 
- no more **** around trying to find the right settings!
 2019-02-23 17:50:32 +01:00
iglocska 384a51e144 chg: [querystring] bumped 2019-02-23 16:20:15 +01:00
Hannah Ward 451a9db3a1
new: Add CORS settings for external integration 2019-02-14 16:32:50 +00:00
iglocska f8923f6ed8 fix: [UI] Potential fix for the weird popover behaviour 2019-02-13 08:46:18 +01:00
iglocska 5be753022e new: [UI] metaview refactor 
- event view uses the new parametrised system
- massive reduction of weird custom UI stuff to prepare MISP for a move to bootstrap 4
- should fix the dodgy UI issues that @rommelfs was experiencing on his Playmobil laptop
 2019-02-07 16:57:29 +01:00
iglocska 242770db0c fix: [UI] UI experts at work 2019-02-04 11:16:36 +01:00
iglocska b63d01df34 Revert "fix: [UI] small fix" 
This reverts commit 1c8d725f8d.
 2019-02-04 11:12:45 +01:00
iglocska 1c8d725f8d fix: [UI] small fix 2019-02-04 11:10:10 +01:00
Raphaël Vinot 6a45f8e059 chg: [PyMISP] Bump version. 2019-02-03 12:48:26 +01:00
iglocska 97a4b5e54c fix: [php min version] Bumped to 7 
- not enforced yet
 2019-02-02 22:51:58 +01:00
iglocska db772213f0 fix: [redirect on login] Fixed an issue where ajax queries would store their URL in the redirect URL field 2019-01-30 09:14:29 +01:00
Raphaël Vinot d7d3d3d601 chg: Bump PyMISP 2019-01-28 17:27:10 +01:00
iglocska 9afd0d8600 fix: [redirect] Correctly redirect to the requested URL after a login, fixes #4005, fixes #1301 2019-01-28 17:02:04 +01:00
iglocska 5c97a8725e fix: [API] Fixed the handling of AND-ed and OR-ed URL parameters 2019-01-26 10:39:20 +01:00
iglocska 631184a2ca Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-01-20 22:17:39 +01:00
iglocska 498a7ae77c new: [feeds] Opened up feed inspection to host org users and added servers to overlap matrix 2019-01-20 10:19:05 +01:00
iglocska 076cd002c9 chg: [query] Query string bump 2019-01-19 07:04:56 +01:00
mokaddem 5e6dc0524f fix: [App] Bump queryVersion 2019-01-17 15:48:52 +01:00
iglocska 76497420fa new: [publishing] Unpublish function added 
- users were jumping through hoops to unpublish an event
 2019-01-17 08:27:16 +01:00
iglocska 16bf6bbefc fix: [API] correctly handle custom delimiters in the filter builder 2019-01-15 23:29:13 +01:00
iglocska 8d44c78f4f fix: [tag collections] Fixed hook to reload galaxies 2019-01-06 21:22:01 +01:00
Raphaël Vinot 083beae502
chg: Bump PyMISP recommended version 2018-12-06 15:27:02 +01:00
Raphaël Vinot 24fdc34df8
chg: Bump PyMISP recommended version. 2018-12-03 17:15:23 +01:00
iglocska 2d0259ce13 fix: [CS] coding standards script re-run 2018-11-23 14:11:33 +01:00
iglocska 4cd3811142 new: Various fixes to the reporting of validation errors for saving attributes 
- view the failed/succeeded saves in batch imports, fixes #3866
- fixed a bug that inserted junk into the flash messages, fixes #3863
- fixed a bug that removed all but the last entry in a failed batch import #3865
 2018-11-13 11:48:12 +01:00
iglocska cfe934fb93 new: [search] Rework of the UI attribute search complete 2018-11-12 11:59:56 +01:00
iglocska 28cd032264 chg: [seach] WIP, more work on the attribute search's JS components 2018-11-11 23:13:25 +01:00
iglocska 7ab8b0e90a fix: [attribute search] Fixed invalid JS calls introduced as part of the rework (WiP) 2018-11-04 22:54:29 +01:00
iglocska 1187fb2a27 new: [API] Added CSV as return format for event index 2018-10-21 22:47:22 +02:00
Raphaël Vinot e63d8edd21 chg: Bump PyMISP & recommended version 2018-10-12 16:02:56 +02:00
iglocska 24d84c8388 fix: [search] Multiple lines didn't correctly get parsed as separate values in the attribute search 2018-10-11 18:23:04 +02:00
iglocska 1b028ee15a new: [related tags] View the related tags of attributes on the event view (via a toggle) 
,,.,,+zznzzzzzzzzzzzzzzzzzzzzzzzzzzxMMMMMMMMMMMMMMMMMMMMMxMxMMWMMMWMMz*ii****iiiiiiiii**iiii,....
,,.,,#zzzzzzzzzzzzzzzzzzzzzzzznxMMMMMWMMMMMMMMMMMMMMMMMMxMxMMMWWWWWWWWx+*iii*iiiiiiiii*iiiii,,,..
,,,,,#zzzzzzzzzzzzzzzzzzzzzzznMWWMMMMMMMMMMMMMMMMMMMMMMMWWMxnnzxxMWWWWMn*iiiiiiiiiiiiiiiiiii..,..
,,,,,#znzzzzzzzzzzzzzzzzzzzznMMMMMMWWWWMMMMMMMMMMMMMMMMWWWMMMxnxxxxMMMMW#*iiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzzzznMMMMMMMMMWMMMMMMMMMMMMMMMMMMMMWxMMMMMMxxxxnxxz*iiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzzzzxMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMWWWMWWWWMWMMMxxxni*iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzzznMMMMMMMMMMMMMMMMMMMMMMMMMMMMMWWWWMMWWMWMMWWWMMMni*iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzzzxWMMMMMMMMMMMMMMMMMMMMMMMMMMMWMMMWMMMMMMWMWWMMMMMz*iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznzzznMMMMMMMMMMMWMMMMMMMMMMMMMMMMMMMMMMMMWWWWMMMMMMMMMWn*iiiiiiiiiiii*i,.,.,
,,.,,#zzzzzzzzzzzzzzznzzzxMMMMMMMMMMMWMMMMMMMMMMMMMMMMMMMMMWWWWWWWWWWWMMMMMWWM+*iiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzznzzznzznMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMWMWWWWWWWWWWWWWMMWWn*iiiiiiiiii*i,.,.,
,,.,,#zzzzzzzzzzznzzzznzxMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMWMMMMWWWWMMWWWWWMMMM**iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzznMMMMMMMMMMMMMWMMMMMWMMMMMMMMMMMMMMWWWWWMMMMMMMMWWWWWMWM#iiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzxMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMWWWWWWWWWWMMMMMMMWWWWMzi*iiiiiiii*i,.,.,
,,.,,#zzzzzzzzzzzzzzzzzMMMMMMMMMMMMMMMWMnzxMMMMMMMMMMMMMWWWWWWWWWWWWMMMMMMMWWWWni*iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzWMMMMMMMMMMMMMMMnnzznxMWMMMMMMMMMMWWWWWWWWWWWWWWWWWMMWWMn**iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzMMMMMMMMMMMWMMMMzz#+#znxMWMMMMMMMMMMMMMWWWWWWWWWWWWWMWWMn**iiiiiiii*i,.,,,
,,.,,#zzzzzzzzzzzzzzzzzxMMMMMMMMMMMMMMxz#*i**+zznMMMMMMMMMMMMMMMWWWWWWWMWWWWWWWx**iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzxMMMMMMMMMMWWMMn#*iii*i*+znxMWMMMMMMMMMMMMWWWWWMMMMMMMMMM+*iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzznMWMMMMMMMMMMMMn#*iiii*i*i+#znMMWWMMMMMWMWMMWWWMMMMMMMMWWx+iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzMMMMMMMMMMMMMx#i*iii**iiii*#znxMWMMMMMMMMMMMWWMMMMWWWWWWniiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznzMMMMMMMMMMMMxn+ii**i**iiii*i*zznMMMMMMMMMMMMMMMMMxMWWWMMx*iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznnMMMMMMMMMMMMxz*ii*iiiiiiiii:;*+znMWMMMMMMMMMMMMMMMMMWWWMx**iiiiiiii*i,.,,.
,,.,,#zzzzzzzzzzzzzzzznMMMMMMMMMMMMMn+ii*iiiii**;;:.:i*zznxMMMMMMMMMMMMMMWWWWWWni*ii**iiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzxMMMMMMMMMMMMMn*ii*iii*i;:,.,..,.,;+znxxMMMMMMMMMMMMMMWWWziiii**iiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznxMMMMMMMMMMMMxzi*ii*ii*;,,,,,,,,,,,,:i*i#znnnxMWWMMMMMMMWn*iii*iiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznxMMMMMMMMMMMMz*i*i*i*;:,.,,,,,,,,,,,,.,,,;i*#zznxMMMMMMWWM+iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznMMMWMMMMMMMMx#iii*i*i:.,.,,,.,.,,,,,,,,,,,,,,;i#znxMMMMMWM+iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznMMMWMMMMMMMMx#iiiiii:.,,.,,.......,,,,..,,,,,,,,iznxMMMMWM*iiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznMMMMMMMMMMMMx#ii*ii:.,,,,,,..........,.....,,,,,,:*#MMMMWxi*iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzMMMMMMMMMMMMn+i*i;:,.,,,......,.............,....,,;xMMMWniiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznzzMMMMMMMMMWMn+iiii;,,,,,,.,..........,....,.,...,,,,.zMMMMxiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznznMMMMMMMMMMnz*iiii:,,,,,,,,,,,,................,,,...zMMMMzi*iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznznMMMMMMMMMxzz**ii;..,,,.,,,,,,.................,,,...nMMMM#**iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznzzMMMMMMMWxzzz+iii:.,,,,.,,,,,....,............,,,,..,nMMWx*iiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznznMMMMMMMWnzzzn+i*,...,,..,,,.,..,.,...,........,,,.,;MWMM+iiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznMMMMMMMWnzzzzzzii*++++z+;,,,.,,,,,,,,,...,.....,...;MWMxii**iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznMMMMMMMWnzzznzzzzznnnzzzn#i,,,.,...................,MWM#iii*iiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzxMMMMMMMMzz+#znzznznMWWMMWMx#i:,,,,,,,,,,,,,,.,,..,,:MMx*iiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzxMMMMMMMxzz**#znMMnnxxxxxMWWWMnz;,,,,,.,.,,,,,,,,,,,,MMziiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzMMMMxMMMnzz*ii#nWWWWMWWnMMMWWWWWn*,,;i;i;**+#zzz+i,,,Mx*iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzMMMMMMMxzzzi*;,+xWWMnxMnx+xMWWMWWn,.,znMMMxxMMMMxni:*Mziiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzznxnxMMMMxznziii.,:+nxiinn*.iMMMWMM+,,.*WWWWWWM#:,:#z##M*iiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzznzznxzMWMMMxznziii,..,+#n:,:,,,izzMM#;,,,+WWWWWzxn+i,:zzzMi**iiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzznzznnzxMMMMxzz#ii;,,,,:**++i::,:::zx;,,,,#MM#zxxMznWx#+izxiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzxnzMWMMMnzzz*i:.,,,,,,,i;i;,,.,*n,,,,,+#+::#n*,#xni,,zniiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzxnzMMMMWnzzz**;..,,,.,..,;,,,,,;n,.,,:*;,:::,,,:*,.,,n#i*iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzznxzMWMMMnzzz**i,..,,.,,,,,,,,,,+#,...,i,.,;**++*:.,,:x***iiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzznzznnxWWMxnzzzz+*i,,,,,.,,,,,,,,,:z;,,..,:..,,,,::.,..,;xi*iiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzznxxxzzzzzz+ii,...,.,,,,,,.,,+zi.,,.,,.,,.,,..,,,,,++iiiiiiiiiiiiiiii*i,.,,.
,,.,,#zzzzzzzzzzzzzzzzzznMzzzznz#ii:.,.,..,,,,,,,izn:,..,.,,..,...,,.,,,#*iiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzznxzzzzzz#ii;.,.,..,,,,.,:zzz,,..,,,,.,...,,,,,,:+*iiiiiiiiiiiiiiii*i,.,,.
,,.,,#zzzzzzzzzzzzzzzznzxxzzzznzz*i;..,,,.,,,,..;zz*..,.,,,,........,.,**iiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzznzxMnzzznzz*ii,.,,,,,,,,,,ii:,,,,,,,,,,,,,,.,,.,;+*iiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzxMzzzzzzz**i,,.,..,,,,,;*:*,,,.,,...,,,,,,.,,,**iiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzzzzzMMnnzzzzz*ii:.,,,,,,..,#nnn#+,,,,,..,,....,.,i+i*iiiiiiiiiiiiiiiii*i,.,,.
,,.,,#zzzzzzzzzzzznzznnzMMnxzzzzz**i;.,,,,.,,.,zxWWWxi,,,:*,,,..,.,,,#**iiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzzznM+WMxxzzzzz***;..,,,,,,..;xWWWWn+**#;,,,,.,,,.i#*iiiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzznW#zWMxnnzzzz*iii,.,,,,,,,,,+nWMWWWMx+,,,,,.,,,,++i*iiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzznMM,zWMMnnzzz#*ii*;.,,,,,,::iznxMMWWWWn#;,,.,,,,*#**iiiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzzzzMWz,zMMMxxznn#*ii*i::;i++#zznxWxxxWWWxxxzi,.,,,,#+iiiiiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzznMWW#,#MMMMMnznz*ii**izzzzzzxMMWWnxM@WMMMMzzi,.,,+*+iiiiiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzznMWWW#,*xMMMMnznz*iiii+MnnnnnxMWWWxxMxMxMxxxnz*,,,*+*iiii**iiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzzzMWWWW#;;zMMMMMnnz#*i*#MWxxxxxMWMxMMxMxMWWWWxMzn;.i:#*iiii**iiiiiiiiiiiiiii*i,.,..
,,,,,#zzzzzznnzxWWWWW#:;+MMMMMxzzz#*zzxWMWMWxMWWMMWWMMWWWWMxxMn:,*:#iiiiiiiiiiiiiiiiiiiiii*i,.,..
,,.,,#zzzzzzzzxWWWWWWz::inMMMMMxznzzzzznxMMMxxxMMxxxzxMWWWMMWWx:ii+*iiiiiiiiiiiiiiiiiiiiii*i,.,..
....,#zzzzzzznWWWWWWWz;,;+MMMMMMxzzzzzzzzznz#**i;::,,:;#nxxWMM+;*;+*iiiiiiiiiiiiiiiiiiiiii*i,.,..
...,,#zzzzzznMWWWWWWWni,,*nWMMMMMxnzzzzzzzz#i*i,,,,:,,,,:+#z##i#+#*iiiiiiiiiiiiiiiiiiiiiii*i,.,..
...,,#zzznnnxWWWWWWWWx*,.i+MMMMMMMMxxnzz#+****i,i**#z+;,:*iiii*zz+*iiiiiiiiiiiiiiiiiiiiiii*i,.,..
,,,,,#nzzzxMMWWWWWWWWW*;.:*#WMMMMMMMMxz+**iiiii;*++####:;i****zz#*iiiiiiiiiiiiiiiiiiiiiiii*i,.,,.
,,,,,#zznMWxWWWWWWWWWWz;,.;*nWMMMMMMMMnz#ii:.....,,,,,,,,ii*+zzz*ii**iiiiiiiiiiiiiiiiiiiii*i,.,..
,,,,,#nxWWMxWWWWWWWWWWW;:,,*+xMMMMMMMMMxnz*:.,,,,,..,,,,,,i#nnx+i*i*iiiiiiiiiiiiiiiiiiiiii*i,.,..
,,,,,zWWWWMxWWWWWWWWWWW*;,.,*+MMMMMMWMMWMx#*:,,,,....,,,,:#nMM#+*ii*iiiiiiiiiiiiiiiiiiiiii*i,.,..
,,,,,xWWWWxWWWWWWWWWWWWx::,,:;+MMMMMMWMWMMnz+:....,,.,,,,+MWMM*#z+*iiiiiiii**iiiiiiiiiiiii*i,.,..
,,,,,xWWWMxWWWWWWWWWWWWW+:,,,;:+MMMMMMMMMMMxnz*;,,:,,,i+#xM++W#+nz#iii*iiiiiiiiiiiiiiiiiii*i,.,..
,,,,,xWWWMMWWWWWWWWWWWWWx,,..,;,*xWMMMMMMMWMWxnn####+##nxx#,+Wx*nznz:i**iiiiiiiiiiiiiiiiii*i,.,..
,,.,,xWWWxMWWWWWWWWWWWWWWi.,,,,:,*#MMMMMMMMMMWMMxxxxxxxMnn,.zWM#;zzMn;*i*iiiiiiiiiiiiiiiii*i,.,..
,..,,xWWWxWWWWWWWWWWWWWWWx,,,,,,:,;+MMWMMMMWWWWWWWMMMMMxn:..nWWni+nzMn#niii**iiiiiiiiiiiii*i,.,..
,..,,xWWMxWWWWWWWWWWWWWWWWi,,,,.,:,,;xWMMMMMMMMMMMMMMxnni...xMWxz;znnMxxM#;i*i**iiiiiiiiii*i,.,..
,..,,xWWMMWWWWWWWWWWWWWWWWz.,,...::,,;zWMMMMMMMMMMMMnzzi,,,,MMMMx*innxMxxWx+iiii**iiiiiiii*i,.,..
,..,,xWWMMWWWWWWWWWWWWWWWWM:,,...,:,,,,+xWMMMMMMMMxnnzi,.,,,MMMMMzinxMxMxxMMM#;i**iiiiiiii*i,.,..
,..,,xWWxWWWWWWWWWWWWWWWWWW*.,.,.,,:,,.,i+xWWMMMMxnnni,,,,,.WMMMMMz#nMMxMMMMMWxi;i*iiii*ii*i,,,..
,..,,xWWxWWWWWWWWWWWWWWWWWWz.,,,,.,,:,,,,::#@WMMxnnn;..,,.,:WMWMMMMznxWxxWMMMMMM#;iiiiiiii*i,,,..
,..,.nWMMWWWWWWWWWWWWWWWWWWM,.,,,...,,..,.,.iMWMxnz:.,.,,.,;WMWMMMMnzxMMxMMMMMMWMxi;i*iii*ii..,..
,..,,nWWMMWWWWWWWWWWWWWWWWWWi,,,....,.,,.,,,,:nxxz:,.,,,...iWMWMMMWMznMMMxMMMMMMMMMzi;i**iii..,.,
,..,,xWWWMMWWWWWWWWWWWWWWWWW#:.....,....,.,,..:#+,..,,,....:WWMMMMMMxnnMMMxWMMMMMMMWM#;;*i*i,.,..
,..,,xWWWWWMMWWWWWWWWWWWWWWWxi:..,.......,,,,..;;,...,,...,,@WMMMMMMMxzxMMxxMMWMMMMMMWx+;iii,,,..
,..,,xWWWWWWMMMWWWWWWWWWWWWWM*i,,,,......,,,,,;MWx+,..,,,..,@WMMMMMMMMnzxxnMMMMMMMMMMMWWx+ii,,,,.
,..,,xWWWWWWWMxWWWWWWWWWWWWWW+*;,,,,.....,,.,,xWWW@n:.,,,,.,WWMMMMMMMMMnnnMMMMMMMMMMMMWMWMxz,,,..
,..,,xWWWWWWWWMxWWWWWWWWWWWWWzi*;,,,,.....,,,nWMMMWWM:.,,,..MWMMMWMMMMMMnMMMMMMMMMMMMMMMMMMx,.,.,
,..,,xWWWWWWWWMxWWWWWWWWWWWWWMiii;,,.,,...,.zWWWWWWWWn,.....zWMMMMMMMMMMMxMMMMMMMMMMMMMMMMMx,,,..
,..,,xWWWWWWWWMWWWWWWWWWWWWWWWiii*;,,,,,,.,z@WWWWWWWWW*,..,,zWMMMMMMMMMMMMnMMMMMMMMMMMMMMMMx,,,..
,..,,xWWWWWWWMWWWWWWWWWWWWWWW@+,;ii:,,.,,,zWWWWWWWWWWWM:.,,,#WMMMMMMMMMMMMxnMMWMMMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWz,.;i*:...,ixWWWWWWWWWMMW+,,,.+WMMMMMMMMMMMMMxxMWWMMMMMMMMMMMx,,,..
,..,.xWWWWWWWWWWWWWWWWWWWWWWWWM,,,iii,,,;i+WWWWWWWWW#+xx;,,.+WWMMMMMMMMMMMWMxxMMMMMMMMMMMMMx,,,,,
,..,.xWWWMWWWWWWWWWWWWWWWWWWWWW;.,:iii,:ii*xWWWWWWWW+i*Mz,.,*WWMMMMMMMMMMMMWMxnMMMMMMMMMMMMx,,,..
,..,.xWWWMWWWWWWWWWWWWWWWWWWWWWz.,.;i*iiiiinWWWWWWWW*i*+z*.,iWWMMMMMMMMMMMMMMMxxMMMMMMMMMMMx,,,..
,..,.xWWWMMWWWWWWWWWWWWWWWWWWWWx,,,.i***;:i#WWWWWWWMi*ii*zi,;WWMMMMMMMMMMMMMMMMxMMMMMMMMMMMx,,,,.
,..,,xWWWWMMWWWWWWWWWWWWWWWWWWWW;,,.:*ii,,i+WWWWWWWM::iiiizi:WWMMMMMMMMMMMMMMMMMMMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWW+,,,.,i,,,;*WWWWWWWx:.:iii*z*MWMMMMMMMMMMMMMMMMMWMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWWn,,,,...,,:*MWWWWWWn:..;ii**xWWMMMMMMMMMMMMMMMMWWMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWWW:.,.,,,.,,iMWWWWWWz,.,,i*i*nWWMMMMMMMMMMMMMMMWWMMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWW@*..,,,..,,ixWWWWWWz..,.,i*inWWMMMMMMMMMMMMMMMWWMMMMMMMMMMMx,,,,.
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWWWn,.,,,,,,,;n@WWWWWn..,,,:*izWWMMMMMMMMMMMMMMWWWWMMMMMMMMMMx,,,..
,..,,xWWWWWWWWWWWWWWWWWWWWWWWWWWWM:.,,,....:xWWWWWWM,,,,,.:izMWMMMMMMMMMMMMMMMWWMMMMMMMMMMMx,,,..
,..,,nMWWWWWWWWWWWWWWWWWWWWWMWWWWM#*********MWWWWWWW+*******nMWMMMMMMMMMMMMMMMMMMMMMMMMMMMMx,,,..
,..,,nMWWMMMMMMMMMMMMMMMMWWMMMMMWMMMWWMMMWWMMMMMMMMMMMMWWMWWMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMMx,,,..
 2018-10-11 17:37:58 +02:00
iglocska c74953a2fc fix: [Auth] Correctly handle users accounts getting deleted whilst the users are logged in 
- deauthed users would end up in a forced loop having to read the news creating a new blank user with each page refresh
 2018-10-09 10:33:15 +02:00
Sami Mokaddem f3d043a37f chg: bumped js version 2018-10-02 12:01:05 +02:00
Hannah Ward f5fbb3fb12
fix: Headers are case-sentitive, do not strtoupper 2018-10-02 15:40:28 +01:00
iglocska 3ee3c6a34d chg: [debugkit] Added the commented out loading of debugkit for convenience 2018-09-27 23:02:15 +02:00
Raphaël Vinot ed64988ffd
chg: Bump recommended pyMispVersion 2018-09-06 11:27:02 -07:00
iglocska 6850d7dff3 fix: [internal] AppController minor fix 
- fix bug of invalid forcing of JSON export type in certain conditions
 2018-09-03 17:46:35 +02:00
iglocska 69b1b741b6 chg: [API] legacy passing of the api key via URL parameters caused an invalid response type 
- automatically selects json now
 2018-09-03 10:07:47 +02:00
iglocska f2a81866c1 new: [internal] SQL debug API tool added 
- just pass /sql:1 to any query via the API to see a dump of all queries
- Response isn't very clean, JSON pushed infront of whatever the output is
- requires debug mode = 2
 2018-08-31 13:22:31 +02:00
iglocska 2a10276d07 Merge branch '2.4' into feature/api_rework 2018-08-22 17:39:56 +02:00
Steve Clement 1bac3749c5 fix: [i18n] Variables are in no need to be translated, it will break stuff, horribly. 
upd: [i18n] Update default.pot again
 2018-08-21 14:48:23 +03:00
iglocska 3371ad4494 chg: [querystring] version bumped 2018-08-21 07:56:33 +02:00
iglocska b407aba746 fix: [CS] Updated recent changes 2018-08-20 10:50:09 +02:00
iglocska 4c604636d4 fix: [API] allow other returnFormats besides download to work for restsearch 2018-08-09 16:26:12 +02:00
iglocska 8907517330 new: [internal] Added new internal functions to be used by all export APIs in the future 
- authenticate user via URL params if not already authenticated (to support legacy APIs)
- harvest parameters in a standardised way for filtering all export APIs
 2018-08-06 10:46:52 +02:00
iglocska a81894f14c chg: [CS] Changed to PSR-2 
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
 2018-07-19 11:48:22 +02:00
Sami Mokaddem 225c34ef0b Merge remote-tracking branch 'upstream/2.4' into sharingGraph 2018-07-12 14:47:14 +00:00
iglocska cbc09e4540 fix: [i18n] Added default language 2018-07-12 16:12:15 +02:00
iglocska 0d45dbc27a new: [API] Check for malformed JSON requests 2018-07-11 10:16:19 +02:00
Sami Mokaddem b7a16803f3 chg: [appController] bumped query version 2018-07-06 14:48:14 +00:00
Alexandre Dulaunoy e8d8d80aba
chg: [PyMISP] released as 2.4.93 2018-07-01 18:26:06 +02:00
iglocska 81c0fc2279 new: [API] Added unsafe URL parameter to authenticate users 
- for legacy tools that cannot pass headers in HTTP requests for some insane reason
- Needs to be enabled by a site admin - default is that it is disabled
- MISP's diagnostic tool WILL complain if this is ever enabled
 2018-06-27 14:25:40 +02:00
Sami Mokaddem 6637d19e46 fix: bump query_version and updated queryACL 2018-06-22 13:37:49 +00:00
iglocska 72050ec5ea fix: [UI] Fixed a bug with galaxies not being addable 2018-06-22 12:08:26 +02:00
iglocska 437793a65f fix: Fixed a bug where users couldn't add galaxies after paginating/filtering on event attributes 2018-06-21 09:07:38 +02:00
iglocska a930fdeaeb new: [i18n] Added tools to switch between languages via the server settings 2018-06-20 15:11:43 +02:00
iglocska 381a4b8895 fix: Don't require API users to acept the terms / change password to get going 
- to get the API key they need to log in anyway via the interface
 2018-06-20 07:55:04 +02:00
iglocska 5d925cbf96 fix: [bug] Endless loop when terms are not accepted / password not reset fixed, fixes #3336 2018-06-12 22:41:57 +02:00
iglocska ac0663862f chg: [version bump] querystring bumped 2018-06-12 16:10:49 +02:00
iglocska e3eb71b29a new: [ACL] Added new role permission: publish_zmq 
- permission flag to use the "publish to ZMQ" button
 2018-06-07 17:52:01 +02:00
Raphaël Vinot 4ee0e8dced
chg: Bump PyMISP version. 2018-06-07 12:12:29 +02:00
iglocska e3c8f80421 new: batch delete should hard delete if event hasn't been published yet, fixes #3311 2018-06-05 17:50:26 +02:00
iglocska a2746418ae fix: Allow updateDatabase to accept numbers 2018-05-31 14:39:28 +02:00
iglocska 2ed4ecec02 new: Stricter validation of baseurl when coming via the API tool 2018-05-26 06:55:28 +02:00
iglocska 9ffd05e57d fix: [API] Add object request has been black-holed. #3271 
- blanket disabling the security component for API requests clashes with explicit disabling of certain security component features in the objects controller causing exceptions
 2018-05-23 10:33:40 +02:00
iglocska 68b8266584 new: New flash message system, fixes #3252 
- 3 types of flash messages (success, error, warning)
- uses bootstrap's own classes/structure
 2018-05-16 19:32:38 +02:00
iglocska d49a190f99 fix: Version bump 2018-05-14 23:22:35 +02:00
iglocska 5acfac3539 fix: Some cleanup 2018-05-12 17:26:16 +02:00
iglocska 42d86d7b18 fix: [API] Tightened the disabling of the security component to counter the effects of cakephp 2.10.x 2018-05-09 13:08:42 +02:00
iglocska 776084130f fix: Remove form tampering for REST requests 
- makes MISP compatible with 2.10.x
- No point in running the security component's test since no form is submitted via REST anyway.
 2018-05-08 18:50:27 +02:00
Sami Mokaddem 680311f68f chg: [Controllers] sets the ajax variable globally 
As well as removing useless set in controllers and accessing it instead
of passing through the request.
 2018-05-07 14:44:59 +00:00
Sami Mokaddem 6d476814b0 Merge remote-tracking branch 'upstream/2.4' into distributionGraphDonut 2018-05-03 13:52:40 +00:00
Sami Mokaddem 50ac404da7 chg: update __query version 2018-05-03 09:58:44 +00:00
Alexandre Dulaunoy d960ce3642
fix: PyMISP version 2.4.90 2018-04-25 11:59:55 +02:00
Sami Mokaddem c7496c67ca fix: changed "xhtml:body" into "xhtml:div", to avoid creating a body DOM 
which cause listener on the original body to bug. Incremented js number
and check if request is ajax or not in ObjectController
 2018-04-23 07:35:52 +00:00
iglocska 279a6459ff new: Preview the extended event ID / UUID 
- Also, cleanup of the nasty event tag code
 2018-04-19 13:56:50 +02:00
iglocska e89d7ebc16 new: Added separation between enabled feeds and feeds enabled for caching 2018-03-30 23:30:54 +02:00
StefanKelm a57ed6f3cd
Update AppController.php 2018-03-27 15:38:53 +02:00
iglocska 41fdf6da8b new: Allow further role settings 
- exclude a role from non site admin assignment
- set max memory usage and execution time / role
 2018-03-24 21:43:46 +01:00
Alexandre Dulaunoy bc5eb68919
fix: PyMISP version is 2.4.89 2018-03-23 10:57:53 +01:00
Alexandre Dulaunoy ebe39b834e
fix: PyMISP recommended version fixed 2018-03-23 10:52:28 +01:00
iglocska ddf481042f chg: Query string bumped 2018-03-23 09:40:02 +01:00
iglocska ee6f5f46e2 fix: Fixed annoying download list only having one side clickable 
- it was annoying to brigadier general @adulau
 2018-02-22 12:02:34 +01:00
iglocska a0d7cececc new: Reowkred organisation merge workflow, #fixes 2931 
- Organisation merge is now offered to the user by the edit page if a UUID was used to edit an organisation that is already in use
- Merging a local org with 1+ user(s) into an external organisation converts the target organisation into a local one
- Merging a local organisation with a logo into an organisation without one will move the current logo to over
  - caveat: this will only happen for organisations already using the new logo naming ([id].png as opposed to [name].png)
 2018-02-16 16:34:12 +01:00
Raphaël Vinot c6cafce47f
chg: Bump PyMISP recommended version 2018-01-28 20:59:57 +01:00
iglocska 24801272cf chg: Get rid of the weird http:// baseurls and set some helper variables for the views 
- Also load the new OrgImg helper
- @SteveClement wubs global view variables
 2018-01-19 15:38:01 +01:00
iglocska dedfea3610 new: Mass enable/disable feeds 
- protecting the sanity of MISP admins since 2012!
 2018-01-15 17:25:11 +01:00
iglocska e1900ba7ee chg: Version bumps for everyone! 2017-12-22 17:46:07 +01:00
iglocska 84f5e8ff5a fix: Collapse attribute correlations 2017-12-22 17:22:49 +01:00
Christophe Vandeplas 64116c54d7 fixes bug where Server model might not yet be loaded 2017-12-20 11:21:46 +01:00
Andras Iklody 6e7a9da729
Merge pull request #2684 from JanSkalny/fix_baseurl_trailing_slash 
fix: remove trailing slash from MISP.baseurl
 2017-12-19 20:09:22 +01:00
Raphaël Vinot 94408193a8 chg: Bump PyMISP 2017-12-13 18:04:30 +01:00
iglocska 1dc795dc4d fix: Updated pyMISP recommended version 2017-12-06 11:30:53 +01:00
iglocska 77acb7c666 fix: Fixed PyMISP version 2017-12-06 00:52:26 +01:00
iglocska fd8c4ede24 chg: Version strings updated 2017-12-06 00:24:04 +01:00
iglocska 4f6dba5f35 new: various improvements 
- use the feed uuid caches to link directly to affected MISP events
- various UI improvements
- Feed preview pagination / POSTed event ID filters added
 2017-12-05 00:05:11 +01:00
iglocska 3d0fb9a688 fix: Updated the duplicate attribute removal tool to actually remove instead of trying to deduplicate 2017-11-30 09:52:34 +01:00
Jan Skalny 6933050e2e fix: remove trailing slash from MISP.baseurl 2017-11-23 01:10:19 +01:00
iglocska a659664447 fix: Fixed a reflected XSS in the sharing group creator tool 
- Fixed a reflected XSS in the sharing group editor that requires malicious organisation names

- Low impact due to the following requirements:
  - organisation names with malicious org names (JS in the orgname)
  - sharing group editor user has to manually add an organisation to the list that has javascript in the org name
  - only vulnerable view is the editor itself, so the impact is limited to
    users that manually add organisations with malicious names to the list themselves / edit such sharing groups

- As reported by Dawid Czarnecki
 2017-11-13 09:25:44 +01:00
dawid-czarnecki b3c35e7b4f
Download terms redirect fix 
When server setting MISP.terms_download=true and MISP.terms_file exists under MISP/app/files/terms directory user wasn't able to download terms and conditions before accepting it.
 2017-11-12 01:57:23 +01:00
iglocska f7418f2d6c chg: PyMISP version bump 2017-11-10 07:53:19 +01:00
iglocska 22804d2eac fix: PyMISP and warninglists updated 2017-10-09 16:20:57 +02:00
iglocska 30d2f8f992 chg: submodules updated 2017-10-09 16:12:07 +02:00
iglocska cd9fe1883e fix: Some cleanup of the attribute filtering 2017-10-05 11:59:59 +02:00
iglocska 36f6c9685d fix: Invalid uuid used in the objectreferences add form 2017-09-27 15:12:45 +02:00
iglocska 5854a15d4c fix: Fixed query string and pymisp version 2017-09-19 09:51:06 +02:00
iglocska 74894a6c95 chg: Update for the version release 
- querystring bump
- version bump
- PyMISP version bump
 2017-08-25 14:40:35 +02:00
iglocska d8123b18d9 fix: Fixes to issues introduced by the ajax JSON rework, fixes #2384 2017-08-09 17:32:47 +02:00
iglocska b0ac802a86 chg: Version bump 2017-08-06 12:39:10 +02:00
iglocska a2d716c4b1 fix: Potential fix to the template element adding issue throwing ajax only exceptions 2017-07-31 13:51:23 +02:00
iglocska f4041cd100 fix: Updated pyMisp and querystring versions 2017-07-12 16:16:20 +02:00
iglocska 3317f56ca1 fix: Upgraded hashing algorithm used and added requirement to confirm password for user profile changes 
- Added method to upgrade all passwords to blowfish transparently
- All profile edit pages (/users/edit, /admin/users/edit, /users/change_pw) now require the user's password to be confirmed

- Thanks to cert.govt.nz for the security report.
 2017-07-12 15:38:34 +02:00
iglocska a724b69a12 Merge branch 'badattch' into 2.4 2017-06-18 10:13:40 +02:00
iglocska c9784cc4f8 fix: Moved attachment access diagnostic tool to attributes controller 2017-06-18 10:12:48 +02:00
iglocska bb20f232f8 fix: New way of checking for API access 
- meant to resolve some issues such as being redirected to the news page if a new news item exists while running a CSV export via the API
 2017-06-15 09:57:46 +02:00
iglocska 6fad375685 new: Mass delete events 
- simply use the multi select on the event index via the UI
- for the API, simply POST to /events/delete with a payload in the following format:
  `{"id": [15, 16, 17]}`

- if you've accidentally deleted all your events using this functionality, feel free to contact @rommelfs or contact the NSA for backups
 2017-06-01 09:45:10 +02:00
iglocska 1efe4a89ce chg: Querystring version bump 2017-05-30 18:10:24 +02:00
iglocska 314daa4551 new: Add instance uuid 2017-05-11 10:49:23 +02:00
iglocska 6d39e6f191 chg: Version bump on the queryVersion 2017-05-08 16:24:50 +02:00
iglocska 23ecf2738f chg: Querystring bump 2017-04-14 15:56:50 +02:00
iglocska cc57e0eca4 fix: Updated JS to fix Infinite loading when adding an attribute fails, fixes #2102 2017-04-12 23:51:41 +02:00
iglocska 5b13205f44 fix: query string version bump 2017-04-12 11:54:48 +02:00
iglocska 1bc5b51ea2 chg: bumped versions 
- pymisp
- query string version
- php recommended version
 2017-04-11 15:26:44 +02:00
iglocska 72470bacca fix: Cleanup of the role add/edit checkboxes 2017-04-11 11:28:25 +02:00
iglocska 1b3fafc806 fix: Invalid lookup for the queryversion 2017-04-10 10:29:44 +02:00
iglocska 73d90466eb fix: Fixed issues with popups across the board for low res displays, fixes #2101 
- Popups get scrollbars / realligned for potato resolutions
- General cleanup of popup related functions in the JS
- Added version querystring to the css files, no more ctrl+f5ing after some updates
 2017-04-04 10:28:21 +02:00
iglocska 1936ee961d chg: Changed js query string 2017-03-26 18:24:44 +02:00
iglocska 3fbfe08f87 new: Added a POST server connection test 
- hopefully it should help debug some issues
 2017-03-23 11:52:07 +01:00
iglocska 84e4a62aba new: Update MISP from the diagnostics page 
- right now it's pretty dumb, it simply pulls the same branch that the current user is on
- Any failure is shown but not acted upon, if the git pull fails the user will see it but it needs to be resolved via the command line
 2017-03-23 10:01:29 +01:00
iglocska 1b306c94e9 fix: JS version bump 2017-03-10 11:21:50 +01:00
iglocska 99558c9b79 chg: PyMISP update 2017-03-09 17:07:21 +01:00
iglocska 46695b8ca2 fix: Several blacklist related fixes 
- turned the functionality to a default on feature
- added indexes
- fixed some default values
 2017-03-07 17:39:44 +01:00
iglocska 65e0a31f61 chg: Made the role add/edit forms a bit more sane 
- allow for some permissions to be given out to read only users
- hide the permissions that can't be selected for the given access level
 2017-02-20 13:26:49 +01:00
iglocska 41f50bc6ec new: Sightings column added to sightings table 2017-02-20 11:12:43 +01:00
iglocska b02c76f544 fix: Fixed an annoying effect when adding a sighting 
- also, js file renamed to current version
 2017-02-17 09:10:51 +01:00
Raphaël Vinot 8b44ee6849 Update PyMISP 2017-02-09 16:53:30 +01:00
iglocska 1f9a631182 fix: Added missing view file, some small fixes, pymisp version bump 2017-01-31 10:54:33 +01:00
iglocska ad472e8c4b fix: Removing tags now spans its own CSRF tokens in the confirmation popup 
- fixes some CSRF issues
- improves rendering performance
 2017-01-31 09:58:21 +01:00
iglocska c3ef68ea19 fix: PyMISP version bump 2017-01-26 09:44:48 +01:00
Iglocska d39a4857b7 fix: Just force utf8 encoding if it's not set 2017-01-19 17:17:34 +01:00
Iglocska fbcb7480a0 chg: Update of the JS filename 2017-01-17 13:54:51 +01:00
iglocska 2b187d48fc new: Add a new api to check the supported PyMISP version 2017-01-08 20:20:49 +01:00
iglocska ffe880621e new: Disable correlation 
- globally
- on an event level
- on an attribute level
 2016-12-22 15:30:06 +01:00
Liviu Valsan 4c022beafc - Performance improvements when exporting a large number of attributes into Bro format. 
- Fixed file header formatting for the export to Bro format (tabs used consistently).
- Computing the time needed for generating the export to Bro format when done using a background job.
- When generating the Bro export from the UI all the attributes are generated in one single text file similar to the CSV export instead of a zip file with different files inside.
- Changed the file extension of Bro export files from ".intel" to ".txt".
- Removed the allowNonIDS option from the Bro export as it doesn’t make sense to have it (Bro is an IDS).
- Fixed some of the API endpoints which were not accepted (ACL issues).
- Added support for a list of events that should be / should not be included in the export.
- Added a new "meta.desc" column (added in Bro 2.5, see https://www.bro.org/sphinx/frameworks/intel.html) containing the description of the event and of the attribute.
- Sanitized the exported data for Bro.
- Fixed a number of value substitutions which were imported from Snort/Suricata and which were not working for Bro. Did instead substitutions needed for Bro.
 2016-12-07 16:33:17 +01:00
Iglocska 8cc30bc6ba new: First commit for the user API rework and the new response handler 2016-10-22 15:28:57 +02:00
Iglocska 0c83211796 fix: Don't destroy the session on failed customauth login if customauth is not enforced 2016-10-20 16:42:55 +02:00
Iglocska ef9afedcf2 fix: If the custom auth is not required, throw the user to the usual login if the custom auth login failed 2016-10-20 16:36:49 +02:00
Iglocska 0695efe81b new: Added a way to disable the default HTTP_ header namespace or to alter it to something else for the custom auth plugin 2016-10-20 16:25:45 +02:00
Iglocska 07a358eed9 fix: Fixed an issue with the type restrictions, fixes #1603 
- fixes an issue where the type list in the attribute add/edit view wouldn't automatically restrict to the valid options
 2016-10-10 09:22:18 +02:00
Andreas Ziegler 25e52a6786 chg: remove some references to variables 2016-09-15 17:08:58 +02:00
Iglocska ab50d00b15 fix: Fix the broken bruteforce protection 
- Moved the bruteforce protection directly to the login action
- Fixed the datetime format used by the protection
- Cleaned up the logging of failed attempts
 2016-09-12 11:20:26 +02:00
Andreas Ziegler 4b8a82098d chg: replace 4 spaces after tab by double tab 2016-09-05 00:45:51 +02:00
Andras Iklody 619966fa24 Merge pull request #1448 from TheDr1ver/2.4 
Add support to export an OpenIOC file via API
 2016-09-03 23:50:04 +02:00
Andras Iklody 6cda3fb39b Merge pull request #1485 from MISP/feature/postgresql 
support PostgreSQL database backend
 2016-09-01 09:35:14 +02:00
iglocska 80ed1cf65d fix: Removed filename check from the AppController 
- rerouted all calls to the method to the Model equivalent
 2016-09-01 09:18:54 +02:00
Andreas Ziegler 9bf0e16ac6 new: add basic experimental support for PostgreSQL 2016-08-31 04:11:49 +02:00
iglocska bf370e3f8b fix: inverse conditional for cleaning up the expired sessions 2016-08-30 09:39:40 +02:00
iglocska 48d46c1b0c fix: Fixes to the internal server setup 
- Only allow enabling internal mode if the host organisation is set and it is chosen as the remote organisation when adding the server sync
- This ensures that internal sync only happens when the same organisation owns both instances
 2016-08-28 21:56:56 +02:00
iglocska 873b201eb0 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2016-08-25 11:38:59 +02:00
iglocska 822b0bf8fa chg: Cleanup of the controllers and models 
- removed incorrect, useless boiler plate comments
- kept useful comments intact
- added some missing line breaks to make the codebase a bit more uniform
- removed some obviously obsolete TODO comments
 2016-08-25 11:38:37 +02:00
Andreas Ziegler e8599fb16c chg: new filename regex & separate functions 2016-08-24 15:31:17 +02:00
Andreas Ziegler fa8300adea chg: fix indention in some files 2016-08-22 03:40:17 +02:00
Nick Driver 4d32a16da8 Add support to export an OpenIOC file via API 
(Change spaces to tabs)
 2016-08-18 10:04:54 -04:00
iglocska 06aa741a0e fix: Added check for instances not using database sessions to skip the automatic session cleanup 
- But... Use database sessions.
 2016-08-17 18:08:22 +02:00
iglocska bf37230735 fix: Some performance tuning for the auto-session-cleanup 2016-08-15 23:20:27 +02:00
iglocska 5ffa4cf842 fix: Added automatic cleanup of expired sessions 
- on page load for site admins
 2016-08-15 22:43:46 +02:00
iglocska 7b6604de5b chg: Added the tracking to all queued jobs 2016-08-15 16:30:37 +02:00
iglocska 3846e9dce6 fix: invalid permission check order leads to a notice 2016-08-15 15:41:54 +02:00
iglocska 4dd4e16b20 fix: Permissions for non-auth enabled users to use the API fixed 2016-08-11 16:14:26 +02:00
Cristian Bell 86a0ff5ac1 GET misp2.4.49.js - 404 Not Found #1428 2016-08-11 09:54:53 +02:00
Iglocska e65bc0db53 Merge branch '2.4' into 2.4.49 
Conflicts:
	app/Controller/AppController.php
 2016-07-22 13:29:27 +02:00
Iglocska 4c186337e4 fix: Don't require users to accept the terms and conditions if they are not set, fixes #1381 2016-07-22 11:16:00 +02:00
Iglocska b14e6e2f5f Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2016-07-20 12:38:04 +02:00
Iglocska 80b6bca48f new: Added a php version check to teh diagnostics page 2016-07-20 12:37:09 +02:00
Cristian Bell 4f169a8ffa fix: Remove the default defined salt #625 2016-07-20 11:17:23 +02:00
Iglocska e24c421a00 Merge branch 'perm_delegate' into 2.4 2016-07-18 00:50:09 +02:00
Iglocska 0fcf90a926 chg: Added the sharing group roaming setting to various parts of the application 
- sharing group add/edit
- summary view
- push rule checks
 2016-07-18 00:13:12 +02:00
Iglocska 9522c96d54 Revert "Revert "chg: remove obsolete uuid() wrapper"" 
This reverts commit bae6eadfe7.
 2016-07-11 00:59:47 +02:00
Iglocska bae6eadfe7 Revert "chg: remove obsolete uuid() wrapper" 
This reverts commit 77ca0f8dd4.
 2016-07-08 14:50:00 +02:00
Andreas Ziegler 77ca0f8dd4 chg: remove obsolete uuid() wrapper 2016-07-07 15:13:16 +02:00
Richard van den Berg ca2fb7de96 - Allow delegation when unpublishedprivate is set 
- Use perm_delegate instead of perm_publish for delegation
 2016-07-06 09:36:13 +02:00
Cristian Bell 7b65a52a44 issue 993: Graceful maintenance message. 2016-06-30 17:33:23 +02:00
Iglocska bad3f801c0 fix: Empty comments may be added to events #1263 
- moved to plain jquery
- check on back+frontend
- better responses when adding events
- fixed an issue with the org_id not being selected for posts
 2016-06-20 19:11:39 +02:00
Andreas Ziegler 985451642e add space after keywords if/for/foreach/while/switch/catch 2016-06-04 15:45:39 +02:00
Andreas Ziegler 0fe692c56a remove whitespace at end of line 2016-06-04 01:10:45 +02:00
Andreas Ziegler 898ea1d97c remove whitespace (space/tab) from empty lines 2016-06-04 01:08:16 +02:00