Jakub Onderka
23c3034351
new: [UI] Allow to sort orgs by number of orgs
2020-12-23 15:09:22 +01:00
Jakub Onderka
aba8317d89
new: [UI] Find org images also by uuid and support SVG images
2020-12-13 13:09:39 +01:00
Jakub Onderka
20053ea32c
fix: [security] Do not leak org names when hide_organisation_index_from_users enabled
2020-12-10 23:01:08 +01:00
Jakub Onderka
9315fa2296
fix: [internal] User should be able to see his org
2020-12-10 15:16:32 +01:00
Jakub Onderka
30488393c9
chg: [security] For `hide_organisation_index_from_users` hide orgs that make contribution that user cannot see
2020-12-09 20:54:39 +01:00
Jakub Onderka
837dbce85e
chg: [internal] HEAD check if org exists
2020-12-06 22:52:12 +01:00
Jakub Onderka
813a475f4a
chg: [internal] Allow to have empty nationality
2020-10-16 09:21:26 +02:00
Jakub Onderka
7aa9101e84
new: [UI] Show organisation nationality flag
2020-10-16 09:21:26 +02:00
Jakub Onderka
a38afcea2a
chg: [UI] Update country names
2020-10-16 09:21:26 +02:00
Jakub Onderka
d57b559bd3
fix: [UI] Remove not used organisation landing page
2020-10-11 10:28:47 +02:00
iglocska
4ebc0a7988
new: [inbox] system added
...
- user self-registration is the first use-case
- if the feature is enabled, users can unauthenticated send a registration request to MISP
- request includes information on desired org and some privileges (sync / org admin / publisher)
- requests land in the inbox, admins can inspect the registration requests
- they can accept/discard them individually or en masse
- users will be notified of their credentials automatically
- quick user creation if the user asks for an org that doesn't exist yet
2020-04-07 13:21:01 +02:00
iglocska
879c564d0c
fix: [API] Delete organisations by UUID, fixes #4989
2019-08-14 11:30:11 +02:00
iglocska
30e7b49632
fix: [API] Organisation edit now also accepts UUID instead of ID via the URL param, fixes #4896
2019-07-29 16:32:24 +02:00
iglocska
64fafa1913
fix: [api fix] Deletes broken due to invalid boolean
...
- /facepalm
2019-07-10 13:55:33 +02:00
iglocska
ed401d88be
fix: [API] delete http requests properly accepted by some /delete endpoints
2019-07-10 11:57:21 +02:00
4ekin
0e8621f6ff
fix: fixed i18n string representation in Controllers
...
Fixed i18n string representation (flash and exception messages) in
controllers:
* OrganisationController
* RolesController
* TaxonomiesController
2019-03-21 18:10:26 +03:00
Christophe Vandeplas
67efc70bf5
fix: [style] consistent space indentation
2019-02-10 13:08:55 +01:00
Jan Skalny
19163c5f67
fix: [api] editing organisation attributes, other than name
2019-01-02 12:38:59 +01:00
Sascha Rommelfangen
e35ef26400
proposed fix for admin add org with logo
...
proxied via @iglocska
2018-09-12 14:40:05 +02:00
iglocska
a81894f14c
chg: [CS] Changed to PSR-2
...
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
2018-07-19 11:48:22 +02:00
Dawid Czarnecki
124640ce78
chg: Case insensitive sort of organisation list
2018-07-05 11:09:13 +02:00
iglocska
68b8266584
new: New flash message system, fixes #3252
...
- 3 types of flash messages (success, error, warning)
- uses bootstrap's own classes/structure
2018-05-16 19:32:38 +02:00
iglocska
3cf532e876
chg: Added uuid to the org quick filter
2018-04-12 14:13:09 +02:00
iglocska
92310b2fd9
fix: Added domain restrictions to the possible org index filters, fixes #3147
2018-04-11 11:32:07 +02:00
iglocska
a0d7cececc
new: Reowkred organisation merge workflow, #fixes 2931
...
- Organisation merge is now offered to the user by the edit page if a UUID was used to edit an organisation that is already in use
- Merging a local org with 1+ user(s) into an external organisation converts the target organisation into a local one
- Merging a local organisation with a logo into an organisation without one will move the current logo to over
- caveat: this will only happen for organisations already using the new logo naming ([id].png as opposed to [name].png)
2018-02-16 16:34:12 +01:00
iglocska
4182c2963b
fix: Add org with known remote UUID fails silently, fixes #2930
2018-02-16 14:44:47 +01:00
iglocska
a839f93f25
chg: Various fixes to the way organisations are handled
...
- fix a bunch of issues with the org displays
- hide organisation view from users if they haven't yet contributed data and Security.hide_organisation_index_from_users is enabled
2018-01-24 16:44:59 +01:00
iglocska
5a1abae86a
fix: Added missing things for the new org image loader
2018-01-19 16:58:08 +01:00
iglocska
86382a2f45
chg: Save org logos based on the org ID not the org Name
2018-01-19 15:52:48 +01:00
iglocska
4d2e31e771
fix: Fix editing of an organisation that has domain restrictions set
2018-01-19 10:31:00 +01:00
iglocska
45d1ca3451
fix: Fix to invalid role check preventing users from seeing the org index, even if they should have access
2018-01-15 09:50:11 +01:00
iglocska
297802c2cb
fix: Changed checks from isSiteAdmin to isAclSharingGroup for the org index anonymisation
2018-01-13 17:00:44 +01:00
iglocska
7772b9c43e
new: Disable the viewing of a full organisation list by normal users
...
- Only site admins and sharing group editors can see organisation lists
- this includes the org index and various statistics
- Keep in mind: Sharing group editors CAN see the full organisation list - otherwise they wouldn't be able to create sharing groups.
- Also, users CAN enumerate organisations that have created ANY data on the instance by looking at the given data
- this includes events, proposals, discussion entries, etc
2018-01-13 16:55:01 +01:00
iglocska
69423a8bcf
new: Add restrictions for e-mail addresses to certain domains
...
TODO: tie it into the user edit action
2017-11-27 10:22:37 +01:00
iglocska
952fff6252
fix: Fixes to several cases of reflected XSS, fixes #2381
...
- as reported by @import-au
- Additionally enforce content-type on all async APIs called by the UI using CakeResponse
2017-08-08 21:37:03 +02:00
iglocska
a104f7708f
new: Added a way to upload org logos directly from the org add/edit view
2017-03-08 17:26:56 +01:00
iglocska
d6654b258e
new: lookup organisations by uuid using organisations/view
2017-02-06 18:14:22 +01:00
Iglocska
a290e4254d
fix: Fixed the org edit API
...
- it only worked if all fields were set
- switched to a different strategy where any changed field is updated
2017-01-22 17:35:35 +01:00
Iglocska
e8303537e7
fix: Organisation UI and API improvements
...
- opened up the organisations controller to API actions
- this includes index/add/edit/delete
- uses the still new-ish standardised REST library
- send GET requests to add/edit to view the parameters
- reworked the org index to paginate 60 items instead of 20 and to have a view all button
2017-01-20 10:33:38 +01:00
iglocska
a455736560
fix: Cannot list users in own org - but button to do so is shown #1749
...
- normal users saw the option to see their own orgs' users but clicking the button resulted in an exception caused by the ACL
- fixed a bug that caused the button to show up in the first place
2017-01-09 21:13:05 +01:00
Andras Iklody
e9ac6cdfb0
Merge pull request #1443 from rotanid/boolean-datatype-handling
...
change of boolean datatype handling #2
2016-08-18 09:51:29 +02:00
Cristian Bell
862f528088
chg: Org UUID visible on the organisations/view/ page #1445
2016-08-17 19:13:07 +02:00
Andreas Ziegler
fb655c2ff9
chg: use 1/0 not true/false for conditions & other boolean sqlquery elements
2016-08-17 18:52:22 +02:00
iglocska
c94140bc9a
fix: Moved lookup function from controller to model and fixed some other issues
...
- That function has no reason not to be in a model
- Removed invalid contain
- Simple lookup against the users table is more efficient
2016-08-13 23:30:31 +02:00
Cristian Bell
9a80586599
chg: redundant members list and organisations page - tab versus 4spaces
2016-08-04 14:36:20 +02:00
Cristian Bell
72b9bdbb84
chg: redundant members list and organisations page
2016-08-04 13:45:10 +02:00
Iglocska
9522c96d54
Revert "Revert "chg: remove obsolete uuid() wrapper""
...
This reverts commit bae6eadfe7
.
2016-07-11 00:59:47 +02:00
Iglocska
bae6eadfe7
Revert "chg: remove obsolete uuid() wrapper"
...
This reverts commit 77ca0f8dd4
.
2016-07-08 14:50:00 +02:00
Andreas Ziegler
77ca0f8dd4
chg: remove obsolete uuid() wrapper
2016-07-07 15:13:16 +02:00
Andreas Ziegler
1d06f25b38
chg: add newline character before EOF to non-minified (text-)files
2016-06-06 10:09:55 +02:00