MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
23,726 Commits
34 Branches
365 Tags
188 MiB
Commit Graph

398 Commits (a7905b40cededa7fb54e2c735b8196c9aae03f94)

Author SHA1 Message Date
Jakub Onderka d57b559bd3 fix: [UI] Remove not used organisation landing page 2020-10-11 10:28:47 +02:00
mokaddem ce257b54b8
fix: [ACLComponent] Added missing entry and removed invalid warnings 2020-10-09 17:11:31 +02:00
mokaddem b628e15eb9
Merge remote-tracking branch 'origin/2.4' into feature-event-report 2020-10-09 14:54:47 +02:00
Jakub Onderka faa9e373ea chg: [internal] Move more global menu rules to ACLComponent 2020-10-03 16:12:44 +02:00
Jakub Onderka 3be0ab9169 chg: [internal] Use ACLComponent for menu item permission 2020-10-03 16:12:44 +02:00
mokaddem 02725982cc
Merge branch '2.4' of github.com:MISP/MISP into feature-event-report 2020-10-01 10:38:28 +02:00
mokaddem 7d3748f403
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-09-23 18:17:54 +02:00
Jakub Onderka 21e00a996b fix: [internal] Fix tests for missing ACL 2020-09-23 17:28:01 +02:00
mokaddem eb84b3344f
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-09-22 12:08:12 +02:00
mokaddem 4408a17dff
Merge remote-tracking branch 'origin/2.4' into feature-event-report 2020-09-22 10:15:22 +02:00
mokaddem b78b13d428
chg: [eventReport] Added comments 2020-09-21 11:48:05 +02:00
mokaddem aba72c2a56
chg: [eventReport] Generic improvements and light integration with 
fetchEvent and sync support
 2020-09-17 15:06:55 +02:00
mokaddem 1494c9d5bf
chg: [aclcomponent] Added recovery features in ACLComponent 2020-09-16 10:35:54 +02:00
Golbark 3a0bedb104 chg: [internal] Using Allowedlist instead of Whitelist 2020-09-01 16:28:20 +02:00
Golbark 3fb47d1cce chg: [internal] Using blocklist instead of blacklist 2020-09-01 16:27:36 +02:00
Loïc Fortemps 8844fd7ada
Event ID translation feature (#6212) 
* new: [sync] Event ID translation between sync servers
 2020-08-26 10:01:14 +02:00
iglocska 7d253f87fd
new: [ACL] event blacklisting fully opened up to host org users 
- also added a new special permission for the ACL system host_org_user - which will evaluate whether the user is in the org configured in the MISP.host_org_id directive
 2020-08-21 13:41:48 +02:00
mokaddem 84c5a2d634
fix: [ACLComponent] Updated permissions 2020-07-31 10:23:14 +02:00
mokaddem dc28348684
chg: [ACLComponent] Added cluster blocklist endpoints 2020-07-14 08:24:37 +02:00
mokaddem 38da0d2461
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-07-07 07:39:43 +02:00
Jakub Onderka 0d93a45807 fix: [security] Remove ShadowAttributesController::{getProposalsByUuid,getProposalsByUuidList} 
These methods are not used, but they let sync users to access proposals for any event.
 2020-07-06 12:26:43 +02:00
Jakub Onderka df6916a312 fix: [security] Remove ShadowAttributesController::{fetchEditForm,editField} 
These methods are not used, but they allow to access attribute data without proper ACL checks.
 2020-07-06 09:08:07 +02:00
mokaddem f3a9481c61
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-07-01 16:22:55 +02:00
Jakub Onderka eed9ebf64b chg: [ACL] Allow to access to fetchOrgsForSG and fetchServersForSG just with perm_sharing_group 2020-06-30 13:44:04 +02:00
iglocska 1a573e9b50
fix: [acl] Added event block rule 2020-06-30 13:15:58 +02:00
mokaddem 7590408dc3
chg: [galaxyCluster] Centralized permission checks and code refactoring 2020-06-18 15:26:55 +02:00
mokaddem 864ecbdcce
new: [galaxyCluster] Added `published` flag to clusters 2020-06-16 16:36:49 +02:00
mokaddem f0f5f02ef1
fix: [ACLComponent] Put `pushClusters` into the correct section. 
Also removed useless condition
 2020-06-16 09:18:04 +02:00
mokaddem a0e2e96b8f
fix: [clusterRelation] Added entry in ACLComponent and improved rest error 
message
 2020-06-15 09:01:47 +02:00
mokaddem 3d6ccfcd53
chg: [ACLComponent] Added entry galaxy_clusters/restSearch 2020-06-10 16:00:03 +02:00
mokaddem e48f0ddd5f
chg: [acl] Updated endpoints and sidebar permissions 2020-06-09 12:13:22 +02:00
mokaddem 5c04b9a8c1
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0 2020-05-28 14:06:30 +02:00
mokaddem 176e29c94f
chg: [server:push] Drafty version of galaxyCluster push 2020-05-26 15:08:24 +02:00
Jakub Onderka 3249821134 fix: [internal] Notices in PHP 7.4 for login page 2020-05-24 09:59:46 +02:00
iglocska 8e256a8ce1
fix: [ACL] added objects/restSearch 2020-05-06 13:25:08 +02:00
Golbark 3436bc6ae5 Merge branch '2.4' into email-otp-implementation 
Conflicts:
	app/Model/Server.php
 2020-04-20 12:16:25 +02:00
iglocska 59ab1c144c
chg: [ACL] updated 2020-04-17 14:23:54 +02:00
mokaddem dd1be03597
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0 2020-04-09 14:26:48 +02:00
iglocska 4ebc0a7988
new: [inbox] system added 
- user self-registration is the first use-case
- if the feature is enabled, users can unauthenticated send a registration request to MISP
  - request includes information on desired org and some privileges (sync / org admin / publisher)
- requests land in the inbox, admins can inspect the registration requests
  - they can accept/discard them individually or en masse
  - users will be notified of their credentials automatically
  - quick user creation if the user asks for an org that doesn't exist yet
 2020-04-07 13:21:01 +02:00
Golbark 309bbc6814 new: usr: Implementation of email-based OTP 2020-03-25 07:45:09 -07:00
iglocska d7e3674987
new: [audit] Added user monitoring 
- site admins can set the monitoring flag on a user if the feature is enabled on the instance
- monitored users will have all requests logged along with POST bodies

- keep in mind this functionality is quite heavy and intrusive - so use it with care. The idea is that this allows us to track potentially malicious users during an investigation
 2020-03-25 11:49:33 +01:00
mokaddem 04dcdebb1f
new: [galaxyCluster] Initial import of Galaxy2.0 codebase - WiP 2020-03-12 10:26:09 +01:00
iglocska 9c36d5292c
fix: [ACL] added deleteTemplate 2020-03-10 15:11:13 +01:00
iglocska 8d02332b31
new: [dashboard] persistence package 
- export dashboard state
- import dashboard state
- save dashboard state
  - make it available to others on the instance on demand
  - admins can set a default password for users that don't have anything configured yet
  - load another template based on what the community has shared
- added Whoami widget which was an outcome of the ESDC training
- various improvements, new fields for genericElements, etc
 2020-03-08 23:36:27 +01:00
iglocska 6c4ea364db
fix: [ACL] added new function to ACL 2020-03-06 15:02:44 +01:00
iglocska 0d4df7c98b
new: [Dashboard] system 
- Dashboard
  - modular similar to restSearch
  - build your own widgets
  - use a set of visualisation options (more coming!)
  - full access to internal functions for queries
  - auto discover core and 3rd party widgets
  - rearrange / configure widgets for each user individually
  - rearrange / resize widgets
  - settings can be configured by a site-admin on behalf of others
  - modules have a self-explain mode to guide users
  - caching mechanism for the modules / org

- set homepage / user
- various other fixes
 2020-03-01 18:05:21 +01:00
mokaddem 6e66256f7a
Merge branch '2.4' of github.com:MISP/MISP into pr-5210 2020-02-10 11:09:14 +01:00
mokaddem a1fdea754d
Merge branch 'zoidberg-timeline' into zoidberg-final 2019-12-06 15:40:51 +01:00
iglocska 02fcf3d9a7
fix: [ACL] added restsearch on the appcontroller 2019-11-29 10:55:31 +01:00
iglocska 1c5afa49ed
new: [refactor] Massive internal refactor and cleanup of deprecated APIs 
- new centralised restSearch function in AppController as entry point via all controllers
- new component handling restSearch related support functions, such as parameter mapping
- hollowed out all deprecated export functions on the event/attribute controller
  - replaced with a new functionality that remaps them to restSearch
  - all functionality should be maintained with all additional advantages introduced with restsearch
- additional cleanup (some unused functions removed)
 2019-11-29 10:11:30 +01:00
iglocska 7ab85143de
fix: [ACL] added /events/publishSightings 2019-11-25 16:49:07 +01:00
Richard van den Berg dd963c2e21 Sync sightings on push, pull and push on add 2019-11-22 21:53:51 +01:00
Andras Iklody 5d19b3a2e9
fix: [ACL] added missing function 2019-11-21 10:41:05 +01:00
iglocska 0c15043cfa
new: [sync] view remote user tool added to the server index 
- should help with debugging what user is being used
 2019-11-13 19:09:37 +01:00
mokaddem f03a5c7b5f
chg: [diagnostic] Exposed dbSchemaDiagnostic to the API 2019-11-08 13:52:00 +01:00
mokaddem 3babd222ac
Merge branch '2.4' of github.com:MISP/MISP into revisedUpdateProcess 2019-11-08 11:42:27 +01:00
iglocska c4f1d4d15e
new: [SightingDB] Added integration with SightingDB 
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
 2019-11-06 21:20:04 +01:00
mokaddem 582112014a
chg: [ACL] Added missing route to ACLComponent 2019-10-15 09:45:07 +02:00
mokaddem b44b369eec
Merge remote-tracking branch 'origin/2.4' into zoidberg-timeline 2019-10-02 14:35:00 +02:00
mokaddem bb3cf85776
Merge branch '2.4' into zoidberg-timeline 2019-10-02 11:23:04 +02:00
iglocska 946602a696
new: [User settings] Added user settings system 
- set settings / user
- settings can be set by user themselves or their org admin / site admin
- added first setting: publish_alert_filter
- accepts boolean branched filter options
  - supports deep logical trees
  - OR/NOT/AND
  - currently supports filtering on tags and the creator organisation
 2019-09-25 11:50:54 +02:00
Jakub Onderka a9f6af9fcb chg: [user] GPG key fetching by server 2019-09-23 22:09:02 +02:00
iglocska 0a1165dead
fix: [ACL] priority change for servers tied into the ACL 2019-09-13 13:22:23 +02:00
mokaddem cfafc2e51f
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-09-12 13:35:35 +02:00
Andras Iklody bf55db64e4
fix: [regression] removed readded invalid acl entry 2019-09-12 06:45:58 +02:00
iglocska fdf1379f3f
fix: [ACL] removed two unused functions 2019-09-11 17:25:49 +02:00
mokaddem f3860ade80
Merge remote-tracking branch 'origin/2.4' into decaying 2019-09-10 15:40:25 +02:00
Andras Iklody 6b42f089cd
Merge pull request #5129 from JakubOnderka/array-copy-remove 
chg: [users] Remove unused method UsersController::arrayCopy
 2019-09-10 11:32:30 +02:00
iglocska e6e5f737d3
fix: [ACL] Added resetremoteauthkey to the ACL system 2019-09-10 10:25:14 +02:00
Jakub Onderka 1cd2ff5ca6 chg: [users] Remove unused method UsersController::arrayCopy 2019-09-09 23:37:37 +02:00
iglocska d1e3f0455a
fix: [sync] Post test fixed for sync users 2019-09-09 15:36:30 +02:00
iglocska 75acd63c46
fix: [security] Fix to a vulnerability related to the server index 
- along with various support tools
- more information coming soon
 2019-09-09 13:00:21 +02:00
mokaddem 4dbbf79c59
fix: [acl:decaying] Fixed ACL permissions 2019-08-29 16:01:55 +02:00
mokaddem a5d06d1333
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-29 10:52:18 +02:00
iglocska 6407938475
chg: [ACL] Added new community functions to the ACL component 2019-08-29 09:27:19 +02:00
mokaddem fd30141cdf
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-27 08:20:42 +02:00
iglocska 209c4903dd
fix: [ACL] allow users to see delegations 2019-08-26 11:58:37 +02:00
mokaddem 26afe1765d
chg: [roles] Added `perm_decaying` role 2019-08-20 16:37:06 +02:00
mokaddem cd5c9f7d1d
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-20 15:00:38 +02:00
iglocska fb100a037a
fix: [ACL] Fixed read only users not being able to list the sightings, fixes #5022 2019-08-20 11:51:11 +02:00
mokaddem a683b420bd
fix: [decaying:acl] Various ACL fixes 2019-08-19 15:19:01 +02:00
iglocska e8c5dba4f3
new: [API] get a single server setting via /servers/getSetting/[setting_name], fixes #4964 2019-08-15 20:01:36 +02:00
mokaddem 76cddeb264
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-07-03 13:45:49 +02:00
mokaddem 2ea4916051 Merge branch '2.4' of github.com:MISP/MISP into zoidberg-timeline 2019-06-24 09:06:11 +02:00
iglocska c06aa1fd79
fix: [API] Simple worker management added 
- /servers/startWorker/[queue]
- /servers/stopWorker/[pid]
- /servers/getWorkers
 2019-06-19 14:08:06 +02:00
mokaddem e7f3d0d9df new: [timeline/*-seen] Initial import of the timeline code from the 
zoidberg branch
 2019-06-13 09:16:34 +02:00
mokaddem c6fee5bc4f new: [eventBlacklist] Added support of bulk deletion of entries. Fix 2019-06-12 15:27:39 +02:00
mokaddem d6093b9659 chg: [object:fromAttributes] Method only accesible via AJAX and regular 
users can use the feature
 2019-06-12 11:17:17 +02:00
mokaddem 8d2c55fa69 Merge branch '2.4' of github.com:MISP/MISP into mergeAttributeIntoObjects 2019-06-05 12:02:17 +02:00
iglocska 3bcaab013e
new: [cleanup] Added admin tool to remove all published empty events 
- part of the solution to the empty event sync issue introduced in 2.4.107
- skips the event blacklisting
 2019-06-04 19:45:28 +02:00
iglocska aae9307106
new: [Sync] Add a tool to create MISP sync configuration JSONs and to ingest them, fixes #4696 
- sync user can log into remote instance, extract config JSON
- paste it into own instance as site admin to add MISP sync connection
 2019-05-30 14:42:29 +02:00
mokaddem b2766f2adf chg: [ACL] Updated routing 2019-05-24 16:14:38 +02:00
mokaddem 44d71a327a chg: [object:fromAttributes] Shows selected types and started 
implementaion of the actual object creation - WiP
 2019-05-20 14:30:20 +02:00
mokaddem a90ac883aa chg: [object:fromAttribute] Continue of web and controller 
implementation - WiP
 2019-05-16 17:13:18 +02:00
mokaddem ee735f00d4 new: [update] Injected update-related files/changes from zoidberg 2019-04-26 09:45:03 +02:00
iglocska 156d979133 fix: [ACL] HELLO @RichieB2B! fixed invalid capitalisation in the queryACL 2019-04-10 10:31:21 +02:00
iglocska 29598c2475 new: [API] Update JSON exposed to the API 2019-04-10 10:09:25 +02:00
mokaddem e4bc67463b Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-04-10 08:39:13 +02:00
Steve Clement c8274c476e
Merge pull request #4427 from mokaddem/submoduleUpdatev3 
Submodule updateV3
 2019-04-05 18:18:35 +09:00
mokaddem 3778c4686b fix: [acl] added route 2019-04-05 10:54:32 +02:00
Andras Iklody c484f01449
Fix: [acl] added missing entry 
This message was sent from my Blackberry.
 2019-04-04 17:35:34 +02:00
iglocska c6974d217e Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-04-01 16:21:30 +02:00
iglocska dc39255be5 fix: [ACL] Added ACL for the new cache searches 2019-04-01 16:16:16 +02:00
iglocska 76d14c00cb Merge branch 'thumbnail' into 2.4 2019-03-29 20:29:37 +01:00
Steve Clement 823ea745be
Merge pull request #4337 from mokaddem/submoduleDiagnostic 
Submodule diagnostic
 2019-03-27 17:27:53 +01:00
chrisr3d 4858b0181c
fix: [ACL Component] Added new function (for new modules format) in the list 2019-03-25 15:53:15 +01:00
mokaddem 016893210d new: [cluster] Display heatmap on the Att&ck Matrix for all tagged data. 
fix #4344
 2019-03-20 14:30:05 +01:00
iglocska 7141f70b20 Merge branch 'kafka' into 2.4 2019-03-19 17:23:05 +01:00
iglocska e028c1a886 fix: [ACL] fixed 2019-03-19 16:32:20 +01:00
iglocska 9a863b3bb2 fix: [ACL] Fixed ACL 2019-03-19 11:18:12 +01:00
iglocska 7fbc4dc34c new: [REST client] Added history/bookmarks 2019-03-19 10:55:27 +01:00
mokaddem 600e4b0573 new: [diagnostic] Fetch submodules git status 2019-03-18 16:17:10 +01:00
Nikos Filippakis 9d59b10368 Publish events to Kafka 
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
 2019-03-18 15:53:22 +01:00
mokaddem 051a7594e1 Merge branch '2.4' of github.com:MISP/MISP into thumbnail 2019-03-18 08:49:34 +01:00
Alexandre Dulaunoy ae2c513b62
Merge pull request #4309 from mokaddem/extendedDistributionGraph 
Improvement on distribution visualization
 2019-03-15 16:05:17 +01:00
mokaddem aa03357aaa fix: [ACL] Whitelisted `genDistributionGraph` 2019-03-15 15:32:18 +01:00
mokaddem 749c9ea544 fix: [ACL] Whitelisted `viewPicture` 2019-03-15 15:19:39 +01:00
iglocska 42e1777a50 new: [galaxies] Allow deleting full galaxies 2019-03-15 14:33:31 +01:00
iglocska fc34510eda new: [Feeds] New overlap tool finished 
- compare a feed against a combination of feeds/servers to find if you can cover the contents with a combination of other cached feeds
 2019-03-10 18:09:46 +01:00
mokaddem 8e78d77cc5 chg: [decaying] UI skeleton - WiP 2019-03-05 14:54:19 +01:00
Steve Clement f03c519038
Merge pull request #3658 from ancailliau/issue-3639 
Fixes issue #3639
 2019-03-03 07:35:13 +05:30
iglocska 99b2dad95d fix: [ACL] added toggleToIDS 2019-02-27 20:29:56 +01:00
mokaddem 9fa063cbe8 chg: [galaxy_matrix] renamed view_matrix into view_galaxy_matrix 2019-02-15 09:41:17 +01:00
mokaddem 12ed3457e8 chg: [galaxy_matrix] cleanup in variable names to be more generic 2019-02-15 09:24:52 +01:00
iglocska 09cbbe3b93 Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-02-10 21:36:03 +01:00
iglocska b3d94d1ebe fix: [ACL] tags/search added to the ACL 2019-02-10 21:34:45 +01:00
Christophe Vandeplas 67efc70bf5 fix: [style] consistent space indentation 2019-02-10 13:08:55 +01:00
iglocska 13993eb1c7 new: [Tag collections] Export/import tag collections added 2019-01-21 15:15:10 +01:00
iglocska 498a7ae77c new: [feeds] Opened up feed inspection to host org users and added servers to overlap matrix 2019-01-20 10:19:05 +01:00
iglocska b1d1597468 fix: [ACL] ACL updated 2019-01-18 16:18:23 +01:00
iglocska 76497420fa new: [publishing] Unpublish function added 
- users were jumping through hoops to unpublish an event
 2019-01-17 08:27:16 +01:00
iglocska c09992d2d9 fix: [ACL] Added ajax function to ACL 2019-01-06 17:37:13 +01:00
iglocska 6aa366138c fix: [ACL] Added missing function 2019-01-02 10:06:39 +01:00
iglocska 760dbed37d new: [tag collections] First feature complete minimal version of the tag collection system 2019-01-01 16:38:57 +01:00
iglocska 8a223f6ace fix: [ACL] ACL updated 2018-11-23 15:52:18 +01:00
iglocska 2d0259ce13 fix: [CS] coding standards script re-run 2018-11-23 14:11:33 +01:00
mokaddem 5c1522bc74 fix: [acl] bumped ACLComponent 2018-10-30 22:00:04 +01:00
Sami Mokaddem d1fb94c332 fix: [ACL] bumped queryACL 2018-10-23 13:28:48 +02:00
Sami Mokaddem 731a4d5e2b new: [Sightings/API] Added possiblity to get sightings based on a 
timerange/source/...
 2018-10-22 23:27:58 +02:00
iglocska 7a01de5359 new: [API] Added a way to use the API to throw values at the warninglist for quick evaluations of the values 2018-10-16 17:57:14 +02:00
iglocska e7ae566c40 fix: [ACL] Added exportSearch to the ACL 2018-10-04 23:07:44 +02:00
iglocska 8280994a03 fix: [ACL] Appease Travis (admin only function explicitly named) 2018-09-14 08:30:05 +02:00
Antoine Cailliau d7f3f27208 Fixes issue #3639 2018-09-10 13:45:23 +02:00
iglocska 17e16e34f1 new: [ACL] Added soft validation for available API enumeration 2018-09-05 07:42:20 +02:00
iglocska 630a1a0150 fix: [ACL] getApiInfo added to acl 2018-09-02 05:54:40 +02:00
iglocska 40d7c216d8 fix: [ACL] exclude afterfilter from the api checks 2018-08-31 16:08:46 +02:00
iglocska c8fcb16881 new: [feature] Built in REST client added to test / interact with the API directly from MISP 
- no more shitty chrome extensions that crash during trainings, rejoice!
 2018-08-08 11:29:38 +02:00
iglocska a81894f14c chg: [CS] Changed to PSR-2 
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
 2018-07-19 11:48:22 +02:00
Sami Mokaddem 692b410f92 chg: [eventGraph] refacto after comments from the Overmind 2018-07-10 08:43:38 +00:00
Sami Mokaddem 75dd257941 chg: [eventGraph] renaming EventNetworkHistory into simply EventGraph 2018-07-06 13:17:59 +00:00
Sami Mokaddem f836b5650e Merge remote-tracking branch 'upstream/2.4' into sharingGraph 2018-07-06 09:23:50 +00:00
Sami Mokaddem e1c9b21b8e chg: [ACL] bumped to reflect networkHistory controller 2018-07-06 09:12:26 +00:00
Sami Mokaddem 93ba5617ea chg: [eventGraph] Implemented saving/deleting feature 2018-07-05 11:57:28 +00:00
iglocska c3158b50ba new: [edit strategy API] To support a smoother integration with the Hive, new API that describes what the edit strategy is for an event 
- GET on /events/getEditStrategy/[id]
  - where id can be either a local ID or a UUID

- returns a JSON dictionary with the following fields:
  - strategy: edit | extend (edit if it's an own event, extend otherwise)
  - extensions: list of dictionaries with existing extensions created by the user's org (containing the id, uuid, info fields)

- The algorithms implementing this should prioritise as such:

1. Check if user can edit the event (strategy == edit) - if yes, edit
2. If no, check if extensions exist - if yes, edit one of those
3. If no, create a new extension to the original event
 2018-07-02 17:29:53 +02:00
Sami Mokaddem 6637d19e46 fix: bump query_version and updated queryACL 2018-06-22 13:37:49 +00:00
Sami Mokaddem 1f685bf625 fix: [attackMatrix] added missing entries in ACL component 2018-06-18 12:21:45 +00:00
iglocska 1a980185d4 fix: [ACL] added new functions to the ACL 2018-06-12 16:39:08 +02:00
iglocska e3eb71b29a new: [ACL] Added new role permission: publish_zmq 
- permission flag to use the "publish to ZMQ" button
 2018-06-07 17:52:01 +02:00
iglocska a21fcadd94 fix: Ignore camelised vs underscored controller name differences in the ACL 2018-05-17 09:39:15 +02:00
iglocska 2be71c596c version bump 2018-05-14 23:22:18 +02:00
iglocska db7419c96e fix: Don't lowercase the controllername for the ACL Component 2018-05-10 11:55:10 +02:00
iglocska e1721e0177 fix: [ACL] Made the ACL system's behaviour more lax when it comes to capitalisation mistakes in the URL, fixes #3240 2018-05-09 13:23:30 +02:00
iglocska 05cf0563e1 new: First implementation of the Noticelist system ready 2018-05-07 10:43:21 +02:00
Sami Mokaddem 56b37d08fc Merge remote-tracking branch 'upstream/2.4' into distributionGraph 2018-04-25 07:08:54 +00:00
iglocska e0f975e4cc fix: Added event enrichment to the ACL 2018-04-24 17:32:20 +02:00
Sami Mokaddem 99af821871 Updated ACLComponent 2018-04-24 10:09:50 +00:00
iglocska 3c438243f4 Merge branch '2.4' of github.com:MISP/MISP into 2.4 2018-04-17 13:45:04 +02:00
iglocska 9b2e212b3d new: Added getEventInfoById API 2018-04-17 13:43:47 +02:00
Sami Mokaddem 56daf7f494 updated ACLComponent 2018-04-16 12:43:12 +00:00
Sami Mokaddem 921224ed40 Merge branch 'quick-fix-metacategory-graph' into ref_graph 2018-04-06 07:50:27 +00:00
Sami Mokaddem 5e83caf8fb Added retreiving of object templates in order to let the user choose the field we want to see in the event graph 2018-03-29 16:05:19 +00:00
iglocska d547726faa fix: Tied the new diagnostic tool into the ACL 2018-03-26 12:11:50 +02:00
Sami Mokaddem 4ec83b9903 Registrered funciton in ACLComponent 2018-03-23 07:58:39 +00:00
iglocska 824ebb5aea fix: Tied the clearjobs function into the ACL and fixed a small text error 2018-03-14 02:31:25 +01:00
iglocska 39b5d06f29 new: Temp diagnostic tool for orphaned object attributes 2018-03-01 22:34:20 +01:00
iglocska ef3f28a93a fix: Various fixes to the module api 
- query function renamed to query enrichment
- added check for disabled modules and for modules that the current user is not allowed to use
- removed the module config from the index function to avoid exposing API keys / credentials to users
- some formating fixes
 2018-02-16 14:36:57 +01:00
Juan C. Montes 6b8e508cf0 fix: ModulesController 2018-02-16 11:22:28 +01:00
Juan C. Montes 4d71eeb72a
new: ModulesQueryAPI 
ModulesQuery controller to can communicate from MISP API to misp_modules
 2018-02-13 13:31:10 +01:00
iglocska 65f032fcca fix: Hop over commented out functions in the queryACL tests 2018-02-09 15:06:35 +01:00
iglocska 9af6130d43 new: Added STIX import directly to the UI 2018-02-09 11:30:28 +01:00
iglocska 4b722e0b61 fix: Added new APIs to ACL component 
- wooooops
 2018-02-02 14:09:15 +01:00
iglocska 771a262b0d fix: Missing action added to ACL system 2018-01-16 14:56:30 +01:00
iglocska dedfea3610 new: Mass enable/disable feeds 
- protecting the sanity of MISP admins since 2012!
 2018-01-15 17:25:11 +01:00
iglocska 3fb5ccdab2 fix: tie warninglist delete into the ACL 2017-12-22 13:16:31 +01:00
iglocska 9259f072fe chg: ACL updated 2017-10-08 20:33:59 +02:00
truckydev f607398852 user right update 
Make all user access to /attributes/describeTypes.json
 2017-09-27 17:52:36 +02:00
iglocska 242fbce3e1 fix: ACL updated 2017-09-18 00:42:26 +02:00
iglocska aa07299abe Merge branch '2.4' into objects_wip 2017-08-10 07:29:50 +02:00
iglocska f9053ed3e3 chg: Restrict tag editor permission to only create tags 
- deleting/eding tags indirectly modifies events created by others
- reduced to site admin only functionality
 2017-08-09 14:22:54 +02:00
iglocska 092b2247da fix: Add object functions to ACL 2017-07-05 08:43:17 +02:00
iglocska c9784cc4f8 fix: Moved attachment access diagnostic tool to attributes controller 2017-06-18 10:12:48 +02:00
root e489f431d9 Adding small diagnostic on Server Setting > Diagnostics page to check if some attachments 
referenced in database doesn't exist on filesystem.
 2017-05-11 14:11:08 +02:00
iglocska 96574ec335 new: First implementation of the feed analysis system 2017-05-08 14:22:27 +02:00
iglocska ded4cb2769 fix: Added missing ACL entry 2017-03-24 10:33:58 +01:00
iglocska e79ba76c43 fix: Some ACL tightening 2017-03-02 09:57:23 +01:00
iglocska e9edeed22c new: User management convenience functions added 
- quick e-mail: send an e-mail to a user quickly
- orgadmin: see the org admins of a user and contact them
- pgp key issues shown on the user view
- pgp fingerprint shown on the user view
- copy paste auth keys and pgp keys quickly by clicking on them
 2017-02-22 17:12:32 +01:00
iglocska 9fbf6a0569 chg: sightings role added to ACL 2017-02-20 11:13:02 +01:00
iglocska fde867d7a8 fix: ACL updated 2017-02-17 10:05:05 +01:00
iglocska de1b3cf4c8 fix: Added new functionality to the ACL 2017-01-31 10:52:32 +01:00
iglocska 76c0cb4e52 new: Add and remove tags from object by uuid 
- /tags/attachTagToObject/uuid/tag
- /tags/removeTagFromObject/uuid/tag

- tag can be tag ID or tag name (must be an exact match)
- Affects events and attributes
 2017-01-27 19:05:43 +01:00