Christophe Vandeplas
e6001bc9fa
Revert "Feature/api log and pin ip ( #8965 )"
...
This reverts commit d5ce838ddc
.
2023-03-29 09:53:29 +08:00
Christophe Vandeplas
d5ce838ddc
Feature/api log and pin ip ( #8965 )
...
* fix: [sightings] don't be case insensitive on code side
* chg: [AuthKey] store IPs used to connect and show them
* chg: [AuthKey] db change
* fix: [AuthKeys] prevent race condition with double IPs
* chg: [git] exclude DebugKit plugin from git
* fix: [AuthKey] integrate mokaddem's remarks
* chg: [authkey] One-click IP as only allowed IP
* chg: [authkey] pin IP on view page
---------
2023-03-29 09:18:47 +08:00
iglocska
861a9af713
Merge branch '2.4' into develop
2022-03-28 17:49:28 +02:00
iglocska
5052d471e1
fix: [authkeys] adding authkeys by org admins fixed
2022-03-28 17:48:36 +02:00
Jakub Onderka
1a589c64f8
chg [authkeys] Add validation
2022-03-27 18:45:32 +02:00
iglocska
e987019748
fix: [authkeys] tighter controls over adding authkeys
...
- only allow to add authkeys to your own user and any user in your own organisation that is not org admin / site admin
- correctly filter the authkey add dialogue for the requested user if going through a user profile
- as reported by @oivindoh
2022-03-24 23:12:41 +01:00
iglocska
b32684561e
chg: [authkeys] add accepts the user_id via URL params and posted JSON body
2022-03-03 18:57:44 +01:00
iglocska
a7eb8fa9ac
chg: [authkeys add] accept "me" as a valid parameter
2022-03-03 14:38:05 +01:00
Jakub Onderka
b100377a73
chg: [internal] Do not modify session when not necessary
2021-11-25 11:58:32 +01:00
Jakub Onderka
017249451b
new: [API] Read only authkeys
2021-06-28 12:41:10 +02:00
iglocska
e729ad9225
fix: [CRUD] accept contain as a parameter for edit, fixes an issue with auth key edits
2021-06-10 16:21:44 +02:00
Jakub Onderka
8a00af12ba
chg: [UI] Show warning when advanced auth keys are not enabled
2021-05-25 14:09:55 +02:00
Jakub Onderka
599819f7f9
new: [authkeys] Allowed IPs
2021-03-03 09:23:07 +01:00
Jakub Onderka
2dab83c18e
fix: [UI] Enable quick filter for auth keys
2020-12-17 13:50:25 +01:00
Jakub Onderka
e9e47b0a86
fix: [UI] Auth Key index and view changes and fixes
2020-12-17 13:50:25 +01:00
Jakub Onderka
35e470eb4d
new: [UI] Show number of unique IPs for key usage
2020-12-17 13:50:25 +01:00
Jakub Onderka
2b30bab9b0
new: [UI] Show last key usage in index table
2020-12-17 13:50:25 +01:00
Jakub Onderka
790087ca60
fix: [security] Do not return hashed authentication key after creation
2020-12-17 13:50:25 +01:00
Jakub Onderka
c06782226a
fix: [security] Auth key must be always random generated at server side
2020-12-17 13:50:25 +01:00
Jakub Onderka
f27580f1e6
new: [security] Allow to set key validity
2020-12-17 13:50:25 +01:00
Jakub Onderka
4c6ffc6985
chg: [internal] Rename MISP.log_user_ips_auth -> MISP.log_user_ips_authkeys
2020-12-17 13:49:32 +01:00
Jakub Onderka
ee8a495d89
new: [internal] Show auth key usage in key view page
2020-12-17 13:49:32 +01:00
Jakub Onderka
03001303a6
fix: [security] Remove hashed advanced keys from response
2020-11-29 20:34:21 +01:00
Jakub Onderka
000706251b
fix: [security] Proper check who can view new authkeys
2020-11-15 18:04:34 +01:00
iglocska
cea665a97e
fix: [various fixes] to the authkeys controller
...
- invalid admin lookup fixed
- restriction to individual users added when using a user view to access the authkey index
2020-11-13 12:48:27 +01:00
iglocska
5b256405c0
new: [advanced authkey] system
2020-11-11 10:46:38 +01:00
iglocska
8bcd274796
new: [Authkey] system added
2020-10-20 01:48:04 +02:00