Christophe Vandeplas
d5ce838ddc
Feature/api log and pin ip ( #8965 )
...
* fix: [sightings] don't be case insensitive on code side
* chg: [AuthKey] store IPs used to connect and show them
* chg: [AuthKey] db change
* fix: [AuthKeys] prevent race condition with double IPs
* chg: [git] exclude DebugKit plugin from git
* fix: [AuthKey] integrate mokaddem's remarks
* chg: [authkey] One-click IP as only allowed IP
* chg: [authkey] pin IP on view page
---------
2023-03-29 09:18:47 +08:00
Jakub Onderka
276085668c
chg: [UI] Change event alert field
2022-12-15 10:04:45 -05:00
Sami Mokaddem
8a98815b75
fix: [workflows] Removed unused views and fix end of files
2022-07-25 13:50:11 +02:00
Sami Mokaddem
b07433374a
chg: [workflowBlueprint] Added mermaid support
...
Created new generic field for markdown
2022-07-13 14:43:13 +02:00
Sami Mokaddem
b15e03f511
chg: [workflow] Better integration with misp-module + few fixes
2022-06-01 09:24:20 +02:00
Jakub Onderka
eea43a49fe
fix: [UI] Show event description just when needed
2022-05-23 19:53:41 +02:00
Jakub Onderka
6d7f4bf500
chg: [UI] Use faster method
2022-05-21 11:39:50 +02:00
Jakub Onderka
b4571b0502
chg: [internal] Ingest key just for protected events
2022-05-21 11:39:50 +02:00
Jakub Onderka
781de7dd6a
chg: [internal] Do not use uniqid() and openssl_random_pseudo_bytes() methods
2022-05-15 13:04:32 +02:00
iglocska
60c85b80e3
fix: [security] XSS in cerebrate view
...
- low probability XSS in the cerebrate view's URL field
- a malicious administrator could set a javascript: url
- another administrator would have to click the suspicious looking URL to be affected
- As reported by Dawid Czarnecki of Zigrin Security on behalf of the Luxembourg Army
2022-04-18 00:58:31 +02:00
Jakub Onderka
f6d1015f95
chg: [UI] Open modal without onclick
2022-03-20 14:21:32 +01:00
Jakub Onderka
ec0fae0c94
fix: [internal] Code style
2022-03-20 14:21:31 +01:00
iglocska
90d232bde2
fix: [signing] removed colour coding of protected/unprotected events
...
- gave the idea that one is "right" and one is "wrong", whilst they're just for different use-cases
2022-03-17 14:50:14 +01:00
iglocska
f16d83c60c
fix: [event view] distribution field fixed
...
- didn't display the sharing groups
2022-03-17 14:38:06 +01:00
iglocska
47a997363c
chg: [CI] make the tests happy
...
- trailing comma after the last parameter in a function is not allowed in some PHP versions
2022-03-17 02:09:22 +01:00
iglocska
0ceeaf5242
new: [single view factory] added key_info constructor key for meta fields
...
- will display a font awesome info icon with a configurable title text
2022-03-17 00:45:11 +01:00
iglocska
57199cabd8
new: [protected event field] in the event view
...
- added tooltips with explanations
- added a warning if the instance's signing key is not included
2022-03-17 00:44:07 +01:00
iglocska
b86b8be7f2
new: [protected event mode] view elements added
2022-03-13 12:34:36 +01:00
iglocska
7537d62e7f
chg: [event view] rework
...
- use the factories
- a host of new elements added
- new side panels
- changed the behaviour of several existing functionalities
- various other small improvements
2022-03-06 23:51:25 +01:00
iglocska
0c4f225e71
fix: [singleview factory] modelField element now handles empty data fields gracefully
2022-03-02 02:05:02 +01:00
iglocska
a226655aa4
new: [json field] added to single view factory
2022-03-02 02:03:38 +01:00
mokaddem
a400f564f2
Merge branch 'develop' of github.com:MISP/MISP into migration-taxonomy
2021-09-07 09:06:38 +02:00
Luciano Righetti
8cd5953d39
chg: migrate sharing_views/view/[id] to factory
2021-08-11 10:50:47 +02:00
Luciano Righetti
d55a689ce3
chg: migrate /templates/view/:id to view factory
2021-07-22 11:07:32 +02:00
mokaddem
40aa613379
chg: [ui] Various improvements in factories
2021-06-09 14:56:05 +02:00
Luciano Righetti
99cd8d8b61
add search bar, fix col widths, show ref field as links
2021-04-21 15:11:26 +02:00
Jakub Onderka
599819f7f9
new: [authkeys] Allowed IPs
2021-03-03 09:23:07 +01:00
Jakub Onderka
e82c2b6544
chg: [UI] Use TimeHelper for datetime formatting
2021-02-09 15:48:36 +01:00
Jakub Onderka
5e72a9622a
fix: [UI] Days to expire count
2020-12-17 13:50:25 +01:00
Jakub Onderka
35e470eb4d
new: [UI] Show number of unique IPs for key usage
2020-12-17 13:50:25 +01:00
Jakub Onderka
ee8a495d89
new: [internal] Show auth key usage in key view page
2020-12-17 13:49:32 +01:00
Jakub Onderka
523db69292
Merge pull request #6691 from JakubOnderka/shibb-new-org-local
...
chg: [shibb] Newly created org should be local
2020-12-04 21:11:35 +01:00
Jakub Onderka
0bfc0bf38a
fix: [security] XSS in authkey comment field
2020-12-04 16:20:02 +01:00
iglocska
37af48d8dd
new: [view factories rework]
...
indextable:
- org lookup field cleaned up and made more resilient
- remote status: status field for checking of the local vs remote state of objects added
- pagination system updated to allow for ajax pagination
- random named container added for the index table's scaffolding
side menu:
- added cerebrate options
side panels:
- new factory type added for side panel elements (for the usual 2:1 split views)
- added logo element
single views:
- child reworked to use the accordion element
- added side panel support
2020-11-30 23:30:44 +01:00
Jakub Onderka
1c5b3c8e3d
chg: [UI] Change colors for auth key expiration field
2020-11-19 13:19:43 +01:00
Jakub Onderka
8b5538c93d
chg: [UI] Always use auth key with space in UI
2020-11-19 13:19:43 +01:00
Jakub Onderka
55fd2dbd97
fix: [UI] Correct path to user profile from authkey view
2020-11-15 18:04:34 +01:00
iglocska
a8addc3378
chg: [boolean] field added to the single view fields
2020-11-11 10:49:21 +01:00
iglocska
8192ded7dd
new: [indextable] scaffolding added along with a list of improvements
2020-11-11 10:42:41 +01:00
iglocska
d7a8f343a6
new: [SingleView factories] added
2020-10-20 01:47:17 +02:00