iglocska
e05dc512a4
fix: [security] tightened checks for restricting users from tagging data they shouldn't be allowed to tag
...
As reported by Christophe Vandeplas
2019-11-26 11:36:49 +01:00
iglocska
17bb03193b
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-11-25 17:01:32 +01:00
iglocska
7ab85143de
fix: [ACL] added /events/publishSightings
2019-11-25 16:49:07 +01:00
iglocska
dbc229c83c
new: [sync] Added sighting sync publish button to the event view
2019-11-25 16:21:42 +01:00
iglocska
95f17d6acd
fix: [sync] Some minor changes to the sighting push
...
- correctly handle anonymisation
- only push sightings, not rest of the event (decide on sender side)
- handle receiving sanitised sightings
2019-11-25 14:32:22 +01:00
Steve Clement
a9a6260cef
Merge branch '2.4' into REST_Client_python
2019-11-24 20:27:46 +09:00
Richard van den Berg
dd963c2e21
Sync sightings on push, pull and push on add
2019-11-22 21:53:51 +01:00
Andras Iklody
5d19b3a2e9
fix: [ACL] added missing function
2019-11-21 10:41:05 +01:00
iglocska
8438db4565
fix: [user view] server issues fixed
2019-11-20 16:17:18 +01:00
iglocska
965b00d164
chg: [internal] switch intval to (int)
2019-11-20 15:53:38 +01:00
iglocska
af87a64111
fix: [API] bro deprecation message was premature
...
- needs to be added to restsearch first
2019-11-20 15:36:48 +01:00
iglocska
7aed94c391
fix: [deprecation] Added missing component
2019-11-20 15:34:37 +01:00
iglocska
a1dcfb1931
new: [deprecation] Added a new library to handle deprecations
...
- send X-Deprecation-Warning via the API
- set new Warning flash messages via the UI
- counting the use of these functionalities / API endpoint and / user
- added a diagnsitic tool to view the outcome of the collection
- sharing of these collections with the MISP-Project will be optionally available in the future
- two modes of operation:
- hard deprecation (functions certainly to be removed, reported to the users via API/UI)
- soft deprecation (gauging interest for the continued use of these functions)
2019-11-20 15:30:06 +01:00
iglocska
846b1989c8
fix: [API] fixed notice errors for compact() in PHP 7.3+
2019-11-18 15:58:06 +01:00
iglocska
e4c82eb9ff
fix: [API] adding objects now has better validation errors
...
- instead of silently dropping attributes in certain cases
2019-11-15 14:11:24 +01:00
Steve Clement
35c739980e
chg: [REST] Updated to ExpandedPyMISP
2019-11-15 10:13:49 +09:00
Steve Clement
4bb4d52a5c
fix: [REST] Python has no 'Null' type, it is called 'None'
2019-11-15 09:50:50 +09:00
iglocska
4f9e3ec6d3
chg: [API] described how to add attachments to /attributes/add and /attributes/edit
2019-11-14 10:51:30 +01:00
iglocska
0c15043cfa
new: [sync] view remote user tool added to the server index
...
- should help with debugging what user is being used
2019-11-13 19:09:37 +01:00
mokaddem
fde4073b1f
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-11-13 14:08:59 +01:00
mokaddem
5a38a33f9d
fix: [attribute:massTagging] Check for POST data in `post` code path.
...
Fix #5359
2019-11-13 14:07:50 +01:00
iglocska
7d7af8eb65
fix: [tagging] Events will be unpublished when a local tag is removed #5363
2019-11-13 14:07:12 +01:00
iglocska
936a7faca0
chg: [UI] Small refactor of the event add/edit views
...
- added new flag to form elements for the generator: stayInLine:1 - skip linebreak after field
- removed edit view
- modified add view to work as both add/edit
2019-11-13 09:38:46 +01:00
chrisr3d
222dd10977
fix: [UI] With the correct field name, it works better ;-)
...
- threat_level_id is the name of the field, and
now the hover description works :D
2019-11-12 14:57:57 +01:00
chrisr3d
5ed87a6f78
fix: [UI] Passing the distribution, threat level & analysis description for the edit event view
2019-11-12 14:54:41 +01:00
chrisr3d
f750d211af
fix: Just an indent fix for the eyes
2019-11-12 14:52:10 +01:00
iglocska
fc5c9d0db6
Revert "Revert "Merge pull request #5304 from JakubOnderka/version-loading""
...
This reverts commit 623bb20cb0
.
2019-11-12 13:12:42 +01:00
chrisr3d
9ab6f7c1f0
Merge branch '2.4' of https://github.com/MISP/MISP into 2.4
2019-11-12 11:03:36 +01:00
Raphaël Vinot
623bb20cb0
Revert "Merge pull request #5304 from JakubOnderka/version-loading"
...
This reverts commit 71fb7fcbd7
, reversing
changes made to 11ee95aeb3
.
Note: broke freetext import.
2019-11-12 10:16:36 +01:00
chrisr3d
832f53a04b
chg: [UI] Using generic form in the add event view
2019-11-11 23:35:53 +01:00
iglocska
89a3d9b3fe
fix: [internal] better error messages for attaching a tag failing
2019-11-11 16:11:39 +01:00
iglocska
f3a62f34e3
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-11-11 15:34:23 +01:00
iglocska
05aaf07e05
fix: [internal] tag attacher could run into a situation where an invalid tag's creation failure is not caught
...
- returns puzzling error messages
2019-11-11 15:33:15 +01:00
Andras Iklody
71fb7fcbd7
Merge pull request #5304 from JakubOnderka/version-loading
...
fix: [internal] Load MISP version just once in AppController
2019-11-11 15:15:20 +01:00
iglocska
11ee95aeb3
new: [API] Added attribute_timestamp flag to attributes/restSearch
...
Explanation of the 4 timestamp filters:
timestamp: Filters on attribute AND event timestamp
event_timestamp: Filters on event timestamp
attribute_timestamp: Filters on attribute timestamp
publish_timestamp: Filters on event.publish_timestamp
2019-11-11 14:43:47 +01:00
iglocska
463b98c275
new: [API] SQL dump now includes two modes
...
- sql_dump:1 - append the SQL dump to the response
- sql_dump:2 - only return the SQL dump in the response
2019-11-11 08:19:00 +01:00
iglocska
21088005d4
chg: [internal] Hooked the sql_dump flag into the normal flow
2019-11-11 08:13:14 +01:00
iglocska
9f3d41b595
new: [API] Cleaner API debugging via the API
...
- passing sql:1 as a url parameter will try to add the sql_dump key to the response if SQL debugging is enabled
- allows for the easier debugging of for example search queries
2019-11-11 08:10:28 +01:00
mokaddem
f03a5c7b5f
chg: [diagnostic] Exposed dbSchemaDiagnostic to the API
2019-11-08 13:52:00 +01:00
mokaddem
e32dcf3c69
fix: [releaseUpdateLock] Fixed error message to reflect the reality
2019-11-08 11:51:53 +01:00
mokaddem
a2ab30fcab
chg: [queryversion] Bumped queryversion
2019-11-08 11:47:13 +01:00
mokaddem
3babd222ac
Merge branch '2.4' of github.com:MISP/MISP into revisedUpdateProcess
2019-11-08 11:42:27 +01:00
iglocska
5f25f451df
chg: [sightingdb] Added support for bulk lookups and namespacing
...
- aligned with the latest version of the sightingdb (support for the /rb endpoint)
- added namespacing as an option / sightingdb connection, defaults to "all" if left empty
2019-11-08 08:24:04 +01:00
iglocska
d24f23b5bd
Merge branch '2.4' into sightingdb
2019-11-06 21:22:00 +01:00
iglocska
c4f1d4d15e
new: [SightingDB] Added integration with SightingDB
...
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
2019-11-06 21:20:04 +01:00
iglocska
28028869da
new: [UI] Added the index filter component
2019-11-06 21:16:50 +01:00
mokaddem
b78d7825b9
Merge branch '2.4' of github.com:MISP/MISP into revisedUpdateProcess
2019-11-05 13:48:39 +01:00
mokaddem
be8f6f0bb0
fix: [Tag:exclusive] Code clean up
2019-11-04 15:46:53 +01:00
mokaddem
c291ebfdee
chg: [attribute:addTag] Added support of `exclusive` at Attribute level
2019-11-04 15:12:55 +01:00
mokaddem
0222b8c090
chg: [tag:exclusive] Added support of local while checking for
...
exclusivity
2019-11-04 14:55:43 +01:00