Christophe Vandeplas
e6001bc9fa
Revert "Feature/api log and pin ip ( #8965 )"
...
This reverts commit d5ce838ddc
.
2023-03-29 09:53:29 +08:00
Christophe Vandeplas
d5ce838ddc
Feature/api log and pin ip ( #8965 )
...
* fix: [sightings] don't be case insensitive on code side
* chg: [AuthKey] store IPs used to connect and show them
* chg: [AuthKey] db change
* fix: [AuthKeys] prevent race condition with double IPs
* chg: [git] exclude DebugKit plugin from git
* fix: [AuthKey] integrate mokaddem's remarks
* chg: [authkey] One-click IP as only allowed IP
* chg: [authkey] pin IP on view page
---------
2023-03-29 09:18:47 +08:00
iglocska
13d99cfaca
chg: [pymisp] bump
2023-03-27 11:01:42 +02:00
iglocska
e498158208
chg: [pymisp] version string bump
2023-03-27 10:51:41 +02:00
iglocska
aa9dffb03f
fix: [galaxyCluster index] filter by galaxy should accept UUID too not just ID
2023-03-17 15:50:47 +01:00
iglocska
8594d2ab47
fix: [Galaxy index search] fixed
...
- seems to be using the Cerebrate format rather than MISP?
2023-03-17 15:25:40 +01:00
Raphaël Vinot
68c130a099
chg: Bump PyMISP
2023-03-10 15:14:22 +02:00
Sami Mokaddem
8dbcd43b42
Merge branch 'pr-8948' into develop
2023-03-10 11:22:16 +01:00
Sami Mokaddem
a78b2d7b77
Merge branch 'pr-8946' into develop
2023-03-10 11:19:42 +01:00
Anders Einar Hilden
b2ad8fc687
new: [ApacheAuthenticate] Add STARTTLS support for LDAP connection
...
Controlled by setting `ApacheSecureAuth.starttls`. Default (`ApacheSecureAuth.starttls undefined`) is `false`, since it is a new feature.
config.default.php is updated with `ApacheSecureAuth.starttls = true` as default and extra explanations.
2023-03-10 10:34:26 +01:00
Anders Einar Hilden
da5278d349
[new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint.
2023-03-10 10:34:05 +01:00
Anders Einar Hilden
ec495da477
[new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth
...
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
2023-03-10 10:34:05 +01:00
Sami Mokaddem
34ebd89c43
Merge branch '2.4' into develop
2023-02-20 15:05:10 +01:00
Sami Mokaddem
3bb6f9f43f
fix: [objects:group_attributes_into_object] Typo in find options
2023-02-20 15:04:31 +01:00
Sami Mokaddem
6df6924ca3
fix: [attribute:bro] Restored bro export
...
The broExport should probably be rewritten to sue the standard restSearch export later on
2023-02-17 16:16:49 +01:00
Sami Mokaddem
2c30e9af7e
fix: [attribute:bro] Restored bro export
...
The broExport should probably be rewritten to sue the standard restSearch export later on
2023-02-17 16:14:00 +01:00
Sami Mokaddem
edfdc5bfa2
chg: [events:add_misp_export] Handle case of missing Event key
2023-02-17 15:59:34 +01:00
Sami Mokaddem
d51bebcbf4
chg: [events:populate] Added support of regeneration of UUIDs
2023-02-14 08:59:06 +01:00
Sami Mokaddem
dab1abb2af
chg: [events:populate] Improved support of MISP core format
2023-02-14 08:34:47 +01:00
Sami Mokaddem
92d88f6f9d
fix: [dashboard:widget_render] Use the correct render when using cache
2023-02-09 11:42:21 +01:00
iglocska
a7905b40ce
Merge branch 'develop' into 2.4
2023-02-01 14:37:06 +01:00
Christophe Vandeplas
827bf50f3c
chg: [auth] group authentication code
2023-01-27 02:42:40 +01:00
Sami Mokaddem
b074a4c1d9
Merge branch 'develop' of github.com:MISP/MISP into develop
2023-01-25 11:51:49 +01:00
Sami Mokaddem
6aa5f32215
fix: [shadowAttribute:accept] Restored accepting functionality
...
Replace cake's magic finder by the standard way to fetch data
2023-01-25 11:51:41 +01:00
Raphaël Vinot
5edcd9083f
chg: [PyMISP] Bump
2023-01-23 10:09:01 +01:00
Sami Mokaddem
56b9aefb49
chg: [servers:testConnection] Prematurely close the session allowing concurrent requests
2023-01-20 11:02:54 +01:00
Sami Mokaddem
93bf15d3bd
fix: [security] Prevent unauthorized access to decaying import function
...
- as reported by Cyber Controls from SIX Group
2023-01-18 15:05:46 +01:00
Sami Mokaddem
9b6a9d2ef6
Merge branch 'develop' of github.com:MISP/MISP into develop
2023-01-10 10:05:43 +01:00
Sami Mokaddem
f7238fe5e7
fix: [security] XSS in authkey add
...
- as reported by Dawid Czarnecki from Zigrin Security
2023-01-10 10:05:22 +01:00
Christophe Vandeplas
9115a30423
minor code cosmetic fix
2023-01-06 09:19:36 +01:00
Andras Iklody
faa1fc5300
fix: [querystring] bumped
2023-01-03 12:20:35 +01:00
iglocska
e3d716b9a7
fix: [postTest] speculative fix for case sensitivity of headers
...
- as reported by @DavoDirty
2023-01-02 12:29:33 +01:00
iglocska
5667a3dd84
chg: [event index] changed to the indextable generator
2022-12-24 06:28:42 +01:00
iglocska
206f540f02
chg: [runaway function] split into easier to comprehend ones
2022-12-22 15:35:30 +01:00
iglocska
1edbc25699
chg: [cleanup] indexfilter unused leftover functionality reworked
2022-12-22 13:11:57 +01:00
Jakub Onderka
ea2e0421b6
Merge pull request #8613 from JakubOnderka/fix-ui
...
Fix UI
2022-12-22 12:54:56 +01:00
Raphaël Vinot
68571e8534
chg: [PyMISP] Bump version
2022-12-22 11:37:28 +01:00
Jakub Onderka
c2b9c472f9
chg: [internal] Add blackhole exception logging
2022-12-15 10:05:13 -05:00
Jakub Onderka
7613016cac
fix: [UI] Undefined shortDist array
2022-12-15 10:05:13 -05:00
Jakub Onderka
f1c1d95b1c
chg: [UI] Show exception message to user when importing MISP file
2022-12-15 10:05:13 -05:00
Jakub Onderka
511d2aa0db
fix: [UI] Galaxy cluster distribution levels
2022-12-15 10:05:13 -05:00
Jakub Onderka
ed4cf8172a
fix: [UI] Galaxy cluster UI cleanup
2022-12-15 10:05:13 -05:00
Jakub Onderka
a3d44283dc
fix: [UI] Show correct message when creating event when MISP.unpublishedprivate is enabled
2022-12-15 10:05:13 -05:00
Jakub Onderka
dac0feb164
new: [UI] Show similar objects when creating object from freetext
2022-12-15 10:05:13 -05:00
Jakub Onderka
9153234885
new: [UI] Allow to create object from freetext
2022-12-15 10:05:13 -05:00
Jakub Onderka
119000bf3e
chg: [internal] Move finding object similarities from controller to model
2022-12-15 10:05:13 -05:00
Jakub Onderka
e35c13d0f4
new: [UI] Preparation for creating object from freetext
2022-12-15 10:05:13 -05:00
Jakub Onderka
fba49a5a04
chg: [internal] Simplify ObjectTemplate::checkTemplateConformityBasedOnTypes method
2022-12-15 10:05:13 -05:00
Jakub Onderka
b959b94bbb
chg: [UI] Cleanup for resolved_attributes template
2022-12-15 10:05:13 -05:00
Jakub Onderka
fd37c0b0c7
chg: [internal] Add object code cleanup
2022-12-15 10:05:13 -05:00