mokaddem
106fa7300a
new: [events] endpoint `runTaxonomyExclusivityCheck` for event elements
2020-11-05 16:08:17 +01:00
Jakub Onderka
553be8ab5a
fix: [ACL] Add missing controllers from EventReports
2020-10-30 08:04:33 +01:00
Jakub Onderka
cb9f66e973
fix [internal] Removed unused EventsController::viewEventGraph method
2020-10-18 22:22:10 +02:00
Jakub Onderka
d57b559bd3
fix: [UI] Remove not used organisation landing page
2020-10-11 10:28:47 +02:00
mokaddem
ce257b54b8
fix: [ACLComponent] Added missing entry and removed invalid warnings
2020-10-09 17:11:31 +02:00
mokaddem
b628e15eb9
Merge remote-tracking branch 'origin/2.4' into feature-event-report
2020-10-09 14:54:47 +02:00
Jakub Onderka
faa9e373ea
chg: [internal] Move more global menu rules to ACLComponent
2020-10-03 16:12:44 +02:00
Jakub Onderka
3be0ab9169
chg: [internal] Use ACLComponent for menu item permission
2020-10-03 16:12:44 +02:00
mokaddem
02725982cc
Merge branch '2.4' of github.com:MISP/MISP into feature-event-report
2020-10-01 10:38:28 +02:00
mokaddem
7d3748f403
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-09-23 18:17:54 +02:00
Jakub Onderka
21e00a996b
fix: [internal] Fix tests for missing ACL
2020-09-23 17:28:01 +02:00
mokaddem
eb84b3344f
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-09-22 12:08:12 +02:00
mokaddem
4408a17dff
Merge remote-tracking branch 'origin/2.4' into feature-event-report
2020-09-22 10:15:22 +02:00
mokaddem
b78b13d428
chg: [eventReport] Added comments
2020-09-21 11:48:05 +02:00
mokaddem
aba72c2a56
chg: [eventReport] Generic improvements and light integration with
...
fetchEvent and sync support
2020-09-17 15:06:55 +02:00
mokaddem
1494c9d5bf
chg: [aclcomponent] Added recovery features in ACLComponent
2020-09-16 10:35:54 +02:00
Golbark
3a0bedb104
chg: [internal] Using Allowedlist instead of Whitelist
2020-09-01 16:28:20 +02:00
Golbark
3fb47d1cce
chg: [internal] Using blocklist instead of blacklist
2020-09-01 16:27:36 +02:00
Loïc Fortemps
8844fd7ada
Event ID translation feature ( #6212 )
...
* new: [sync] Event ID translation between sync servers
2020-08-26 10:01:14 +02:00
iglocska
7d253f87fd
new: [ACL] event blacklisting fully opened up to host org users
...
- also added a new special permission for the ACL system host_org_user - which will evaluate whether the user is in the org configured in the MISP.host_org_id directive
2020-08-21 13:41:48 +02:00
mokaddem
84c5a2d634
fix: [ACLComponent] Updated permissions
2020-07-31 10:23:14 +02:00
mokaddem
dc28348684
chg: [ACLComponent] Added cluster blocklist endpoints
2020-07-14 08:24:37 +02:00
mokaddem
38da0d2461
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-07-07 07:39:43 +02:00
Jakub Onderka
0d93a45807
fix: [security] Remove ShadowAttributesController::{getProposalsByUuid,getProposalsByUuidList}
...
These methods are not used, but they let sync users to access proposals for any event.
2020-07-06 12:26:43 +02:00
Jakub Onderka
df6916a312
fix: [security] Remove ShadowAttributesController::{fetchEditForm,editField}
...
These methods are not used, but they allow to access attribute data without proper ACL checks.
2020-07-06 09:08:07 +02:00
mokaddem
f3a9481c61
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-07-01 16:22:55 +02:00
Jakub Onderka
eed9ebf64b
chg: [ACL] Allow to access to fetchOrgsForSG and fetchServersForSG just with perm_sharing_group
2020-06-30 13:44:04 +02:00
iglocska
1a573e9b50
fix: [acl] Added event block rule
2020-06-30 13:15:58 +02:00
mokaddem
7590408dc3
chg: [galaxyCluster] Centralized permission checks and code refactoring
2020-06-18 15:26:55 +02:00
mokaddem
864ecbdcce
new: [galaxyCluster] Added `published` flag to clusters
2020-06-16 16:36:49 +02:00
mokaddem
f0f5f02ef1
fix: [ACLComponent] Put `pushClusters` into the correct section.
...
Also removed useless condition
2020-06-16 09:18:04 +02:00
mokaddem
a0e2e96b8f
fix: [clusterRelation] Added entry in ACLComponent and improved rest error
...
message
2020-06-15 09:01:47 +02:00
mokaddem
3d6ccfcd53
chg: [ACLComponent] Added entry galaxy_clusters/restSearch
2020-06-10 16:00:03 +02:00
mokaddem
e48f0ddd5f
chg: [acl] Updated endpoints and sidebar permissions
2020-06-09 12:13:22 +02:00
mokaddem
5c04b9a8c1
Merge remote-tracking branch 'origin/2.4' into galaxy-cluster2.0
2020-05-28 14:06:30 +02:00
mokaddem
176e29c94f
chg: [server:push] Drafty version of galaxyCluster push
2020-05-26 15:08:24 +02:00
Jakub Onderka
3249821134
fix: [internal] Notices in PHP 7.4 for login page
2020-05-24 09:59:46 +02:00
iglocska
8e256a8ce1
fix: [ACL] added objects/restSearch
2020-05-06 13:25:08 +02:00
Golbark
3436bc6ae5
Merge branch '2.4' into email-otp-implementation
...
Conflicts:
app/Model/Server.php
2020-04-20 12:16:25 +02:00
iglocska
59ab1c144c
chg: [ACL] updated
2020-04-17 14:23:54 +02:00
mokaddem
dd1be03597
Merge branch '2.4' of github.com:MISP/MISP into galaxy-cluster2.0
2020-04-09 14:26:48 +02:00
iglocska
4ebc0a7988
new: [inbox] system added
...
- user self-registration is the first use-case
- if the feature is enabled, users can unauthenticated send a registration request to MISP
- request includes information on desired org and some privileges (sync / org admin / publisher)
- requests land in the inbox, admins can inspect the registration requests
- they can accept/discard them individually or en masse
- users will be notified of their credentials automatically
- quick user creation if the user asks for an org that doesn't exist yet
2020-04-07 13:21:01 +02:00
Golbark
309bbc6814
new: usr: Implementation of email-based OTP
2020-03-25 07:45:09 -07:00
iglocska
d7e3674987
new: [audit] Added user monitoring
...
- site admins can set the monitoring flag on a user if the feature is enabled on the instance
- monitored users will have all requests logged along with POST bodies
- keep in mind this functionality is quite heavy and intrusive - so use it with care. The idea is that this allows us to track potentially malicious users during an investigation
2020-03-25 11:49:33 +01:00
mokaddem
04dcdebb1f
new: [galaxyCluster] Initial import of Galaxy2.0 codebase - WiP
2020-03-12 10:26:09 +01:00
iglocska
9c36d5292c
fix: [ACL] added deleteTemplate
2020-03-10 15:11:13 +01:00
iglocska
8d02332b31
new: [dashboard] persistence package
...
- export dashboard state
- import dashboard state
- save dashboard state
- make it available to others on the instance on demand
- admins can set a default password for users that don't have anything configured yet
- load another template based on what the community has shared
- added Whoami widget which was an outcome of the ESDC training
- various improvements, new fields for genericElements, etc
2020-03-08 23:36:27 +01:00
iglocska
6c4ea364db
fix: [ACL] added new function to ACL
2020-03-06 15:02:44 +01:00
iglocska
0d4df7c98b
new: [Dashboard] system
...
- Dashboard
- modular similar to restSearch
- build your own widgets
- use a set of visualisation options (more coming!)
- full access to internal functions for queries
- auto discover core and 3rd party widgets
- rearrange / configure widgets for each user individually
- rearrange / resize widgets
- settings can be configured by a site-admin on behalf of others
- modules have a self-explain mode to guide users
- caching mechanism for the modules / org
- set homepage / user
- various other fixes
2020-03-01 18:05:21 +01:00
mokaddem
6e66256f7a
Merge branch '2.4' of github.com:MISP/MISP into pr-5210
2020-02-10 11:09:14 +01:00
mokaddem
a1fdea754d
Merge branch 'zoidberg-timeline' into zoidberg-final
2019-12-06 15:40:51 +01:00
iglocska
02fcf3d9a7
fix: [ACL] added restsearch on the appcontroller
2019-11-29 10:55:31 +01:00
iglocska
1c5afa49ed
new: [refactor] Massive internal refactor and cleanup of deprecated APIs
...
- new centralised restSearch function in AppController as entry point via all controllers
- new component handling restSearch related support functions, such as parameter mapping
- hollowed out all deprecated export functions on the event/attribute controller
- replaced with a new functionality that remaps them to restSearch
- all functionality should be maintained with all additional advantages introduced with restsearch
- additional cleanup (some unused functions removed)
2019-11-29 10:11:30 +01:00
iglocska
7ab85143de
fix: [ACL] added /events/publishSightings
2019-11-25 16:49:07 +01:00
Richard van den Berg
dd963c2e21
Sync sightings on push, pull and push on add
2019-11-22 21:53:51 +01:00
Andras Iklody
5d19b3a2e9
fix: [ACL] added missing function
2019-11-21 10:41:05 +01:00
iglocska
0c15043cfa
new: [sync] view remote user tool added to the server index
...
- should help with debugging what user is being used
2019-11-13 19:09:37 +01:00
mokaddem
f03a5c7b5f
chg: [diagnostic] Exposed dbSchemaDiagnostic to the API
2019-11-08 13:52:00 +01:00
mokaddem
3babd222ac
Merge branch '2.4' of github.com:MISP/MISP into revisedUpdateProcess
2019-11-08 11:42:27 +01:00
iglocska
c4f1d4d15e
new: [SightingDB] Added integration with SightingDB
...
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
2019-11-06 21:20:04 +01:00
mokaddem
582112014a
chg: [ACL] Added missing route to ACLComponent
2019-10-15 09:45:07 +02:00
mokaddem
b44b369eec
Merge remote-tracking branch 'origin/2.4' into zoidberg-timeline
2019-10-02 14:35:00 +02:00
mokaddem
bb3cf85776
Merge branch '2.4' into zoidberg-timeline
2019-10-02 11:23:04 +02:00
iglocska
946602a696
new: [User settings] Added user settings system
...
- set settings / user
- settings can be set by user themselves or their org admin / site admin
- added first setting: publish_alert_filter
- accepts boolean branched filter options
- supports deep logical trees
- OR/NOT/AND
- currently supports filtering on tags and the creator organisation
2019-09-25 11:50:54 +02:00
Jakub Onderka
a9f6af9fcb
chg: [user] GPG key fetching by server
2019-09-23 22:09:02 +02:00
iglocska
0a1165dead
fix: [ACL] priority change for servers tied into the ACL
2019-09-13 13:22:23 +02:00
mokaddem
cfafc2e51f
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-09-12 13:35:35 +02:00
Andras Iklody
bf55db64e4
fix: [regression] removed readded invalid acl entry
2019-09-12 06:45:58 +02:00
iglocska
fdf1379f3f
fix: [ACL] removed two unused functions
2019-09-11 17:25:49 +02:00
mokaddem
f3860ade80
Merge remote-tracking branch 'origin/2.4' into decaying
2019-09-10 15:40:25 +02:00
Andras Iklody
6b42f089cd
Merge pull request #5129 from JakubOnderka/array-copy-remove
...
chg: [users] Remove unused method UsersController::arrayCopy
2019-09-10 11:32:30 +02:00
iglocska
e6e5f737d3
fix: [ACL] Added resetremoteauthkey to the ACL system
2019-09-10 10:25:14 +02:00
Jakub Onderka
1cd2ff5ca6
chg: [users] Remove unused method UsersController::arrayCopy
2019-09-09 23:37:37 +02:00
iglocska
d1e3f0455a
fix: [sync] Post test fixed for sync users
2019-09-09 15:36:30 +02:00
iglocska
75acd63c46
fix: [security] Fix to a vulnerability related to the server index
...
- along with various support tools
- more information coming soon
2019-09-09 13:00:21 +02:00
mokaddem
4dbbf79c59
fix: [acl:decaying] Fixed ACL permissions
2019-08-29 16:01:55 +02:00
mokaddem
a5d06d1333
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-08-29 10:52:18 +02:00
iglocska
6407938475
chg: [ACL] Added new community functions to the ACL component
2019-08-29 09:27:19 +02:00
mokaddem
fd30141cdf
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-08-27 08:20:42 +02:00
iglocska
209c4903dd
fix: [ACL] allow users to see delegations
2019-08-26 11:58:37 +02:00
mokaddem
26afe1765d
chg: [roles] Added `perm_decaying` role
2019-08-20 16:37:06 +02:00
mokaddem
cd5c9f7d1d
Merge remote-tracking branch 'origin/2.4' into decaying
2019-08-20 15:00:38 +02:00
iglocska
fb100a037a
fix: [ACL] Fixed read only users not being able to list the sightings, fixes #5022
2019-08-20 11:51:11 +02:00
mokaddem
a683b420bd
fix: [decaying:acl] Various ACL fixes
2019-08-19 15:19:01 +02:00
iglocska
e8c5dba4f3
new: [API] get a single server setting via /servers/getSetting/[setting_name], fixes #4964
2019-08-15 20:01:36 +02:00
mokaddem
76cddeb264
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-07-03 13:45:49 +02:00
mokaddem
2ea4916051
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-timeline
2019-06-24 09:06:11 +02:00
iglocska
c06aa1fd79
fix: [API] Simple worker management added
...
- /servers/startWorker/[queue]
- /servers/stopWorker/[pid]
- /servers/getWorkers
2019-06-19 14:08:06 +02:00
mokaddem
e7f3d0d9df
new: [timeline/*-seen] Initial import of the timeline code from the
...
zoidberg branch
2019-06-13 09:16:34 +02:00
mokaddem
c6fee5bc4f
new: [eventBlacklist] Added support of bulk deletion of entries. Fix
2019-06-12 15:27:39 +02:00
mokaddem
d6093b9659
chg: [object:fromAttributes] Method only accesible via AJAX and regular
...
users can use the feature
2019-06-12 11:17:17 +02:00
mokaddem
8d2c55fa69
Merge branch '2.4' of github.com:MISP/MISP into mergeAttributeIntoObjects
2019-06-05 12:02:17 +02:00
iglocska
3bcaab013e
new: [cleanup] Added admin tool to remove all published empty events
...
- part of the solution to the empty event sync issue introduced in 2.4.107
- skips the event blacklisting
2019-06-04 19:45:28 +02:00
iglocska
aae9307106
new: [Sync] Add a tool to create MISP sync configuration JSONs and to ingest them, fixes #4696
...
- sync user can log into remote instance, extract config JSON
- paste it into own instance as site admin to add MISP sync connection
2019-05-30 14:42:29 +02:00
mokaddem
b2766f2adf
chg: [ACL] Updated routing
2019-05-24 16:14:38 +02:00
mokaddem
44d71a327a
chg: [object:fromAttributes] Shows selected types and started
...
implementaion of the actual object creation - WiP
2019-05-20 14:30:20 +02:00
mokaddem
a90ac883aa
chg: [object:fromAttribute] Continue of web and controller
...
implementation - WiP
2019-05-16 17:13:18 +02:00
mokaddem
ee735f00d4
new: [update] Injected update-related files/changes from zoidberg
2019-04-26 09:45:03 +02:00
iglocska
156d979133
fix: [ACL] HELLO @RichieB2B! fixed invalid capitalisation in the queryACL
2019-04-10 10:31:21 +02:00
iglocska
29598c2475
new: [API] Update JSON exposed to the API
2019-04-10 10:09:25 +02:00
mokaddem
e4bc67463b
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-04-10 08:39:13 +02:00
Steve Clement
c8274c476e
Merge pull request #4427 from mokaddem/submoduleUpdatev3
...
Submodule updateV3
2019-04-05 18:18:35 +09:00
mokaddem
3778c4686b
fix: [acl] added route
2019-04-05 10:54:32 +02:00
Andras Iklody
c484f01449
Fix: [acl] added missing entry
...
This message was sent from my Blackberry.
2019-04-04 17:35:34 +02:00
iglocska
c6974d217e
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-04-01 16:21:30 +02:00
iglocska
dc39255be5
fix: [ACL] Added ACL for the new cache searches
2019-04-01 16:16:16 +02:00
iglocska
76d14c00cb
Merge branch 'thumbnail' into 2.4
2019-03-29 20:29:37 +01:00
Steve Clement
823ea745be
Merge pull request #4337 from mokaddem/submoduleDiagnostic
...
Submodule diagnostic
2019-03-27 17:27:53 +01:00
chrisr3d
4858b0181c
fix: [ACL Component] Added new function (for new modules format) in the list
2019-03-25 15:53:15 +01:00
mokaddem
016893210d
new: [cluster] Display heatmap on the Att&ck Matrix for all tagged data.
...
fix #4344
2019-03-20 14:30:05 +01:00
iglocska
7141f70b20
Merge branch 'kafka' into 2.4
2019-03-19 17:23:05 +01:00
iglocska
e028c1a886
fix: [ACL] fixed
2019-03-19 16:32:20 +01:00
iglocska
9a863b3bb2
fix: [ACL] Fixed ACL
2019-03-19 11:18:12 +01:00
iglocska
7fbc4dc34c
new: [REST client] Added history/bookmarks
2019-03-19 10:55:27 +01:00
mokaddem
600e4b0573
new: [diagnostic] Fetch submodules git status
2019-03-18 16:17:10 +01:00
Nikos Filippakis
9d59b10368
Publish events to Kafka
...
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
2019-03-18 15:53:22 +01:00
mokaddem
051a7594e1
Merge branch '2.4' of github.com:MISP/MISP into thumbnail
2019-03-18 08:49:34 +01:00
Alexandre Dulaunoy
ae2c513b62
Merge pull request #4309 from mokaddem/extendedDistributionGraph
...
Improvement on distribution visualization
2019-03-15 16:05:17 +01:00
mokaddem
aa03357aaa
fix: [ACL] Whitelisted `genDistributionGraph`
2019-03-15 15:32:18 +01:00
mokaddem
749c9ea544
fix: [ACL] Whitelisted `viewPicture`
2019-03-15 15:19:39 +01:00
iglocska
42e1777a50
new: [galaxies] Allow deleting full galaxies
2019-03-15 14:33:31 +01:00
iglocska
fc34510eda
new: [Feeds] New overlap tool finished
...
- compare a feed against a combination of feeds/servers to find if you can cover the contents with a combination of other cached feeds
2019-03-10 18:09:46 +01:00
mokaddem
8e78d77cc5
chg: [decaying] UI skeleton - WiP
2019-03-05 14:54:19 +01:00
Steve Clement
f03c519038
Merge pull request #3658 from ancailliau/issue-3639
...
Fixes issue #3639
2019-03-03 07:35:13 +05:30
iglocska
99b2dad95d
fix: [ACL] added toggleToIDS
2019-02-27 20:29:56 +01:00
mokaddem
9fa063cbe8
chg: [galaxy_matrix] renamed view_matrix into view_galaxy_matrix
2019-02-15 09:41:17 +01:00
mokaddem
12ed3457e8
chg: [galaxy_matrix] cleanup in variable names to be more generic
2019-02-15 09:24:52 +01:00
iglocska
09cbbe3b93
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2019-02-10 21:36:03 +01:00
iglocska
b3d94d1ebe
fix: [ACL] tags/search added to the ACL
2019-02-10 21:34:45 +01:00
Christophe Vandeplas
67efc70bf5
fix: [style] consistent space indentation
2019-02-10 13:08:55 +01:00
iglocska
13993eb1c7
new: [Tag collections] Export/import tag collections added
2019-01-21 15:15:10 +01:00
iglocska
498a7ae77c
new: [feeds] Opened up feed inspection to host org users and added servers to overlap matrix
2019-01-20 10:19:05 +01:00
iglocska
b1d1597468
fix: [ACL] ACL updated
2019-01-18 16:18:23 +01:00
iglocska
76497420fa
new: [publishing] Unpublish function added
...
- users were jumping through hoops to unpublish an event
2019-01-17 08:27:16 +01:00
iglocska
c09992d2d9
fix: [ACL] Added ajax function to ACL
2019-01-06 17:37:13 +01:00
iglocska
6aa366138c
fix: [ACL] Added missing function
2019-01-02 10:06:39 +01:00
iglocska
760dbed37d
new: [tag collections] First feature complete minimal version of the tag collection system
2019-01-01 16:38:57 +01:00
iglocska
8a223f6ace
fix: [ACL] ACL updated
2018-11-23 15:52:18 +01:00
iglocska
2d0259ce13
fix: [CS] coding standards script re-run
2018-11-23 14:11:33 +01:00
mokaddem
5c1522bc74
fix: [acl] bumped ACLComponent
2018-10-30 22:00:04 +01:00
Sami Mokaddem
d1fb94c332
fix: [ACL] bumped queryACL
2018-10-23 13:28:48 +02:00
Sami Mokaddem
731a4d5e2b
new: [Sightings/API] Added possiblity to get sightings based on a
...
timerange/source/...
2018-10-22 23:27:58 +02:00
iglocska
7a01de5359
new: [API] Added a way to use the API to throw values at the warninglist for quick evaluations of the values
2018-10-16 17:57:14 +02:00
iglocska
e7ae566c40
fix: [ACL] Added exportSearch to the ACL
2018-10-04 23:07:44 +02:00
iglocska
8280994a03
fix: [ACL] Appease Travis (admin only function explicitly named)
2018-09-14 08:30:05 +02:00
Antoine Cailliau
d7f3f27208
Fixes issue #3639
2018-09-10 13:45:23 +02:00
iglocska
17e16e34f1
new: [ACL] Added soft validation for available API enumeration
2018-09-05 07:42:20 +02:00
iglocska
630a1a0150
fix: [ACL] getApiInfo added to acl
2018-09-02 05:54:40 +02:00
iglocska
40d7c216d8
fix: [ACL] exclude afterfilter from the api checks
2018-08-31 16:08:46 +02:00
iglocska
c8fcb16881
new: [feature] Built in REST client added to test / interact with the API directly from MISP
...
- no more shitty chrome extensions that crash during trainings, rejoice!
2018-08-08 11:29:38 +02:00
iglocska
a81894f14c
chg: [CS] Changed to PSR-2
...
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
2018-07-19 11:48:22 +02:00
Sami Mokaddem
692b410f92
chg: [eventGraph] refacto after comments from the Overmind
2018-07-10 08:43:38 +00:00
Sami Mokaddem
75dd257941
chg: [eventGraph] renaming EventNetworkHistory into simply EventGraph
2018-07-06 13:17:59 +00:00
Sami Mokaddem
f836b5650e
Merge remote-tracking branch 'upstream/2.4' into sharingGraph
2018-07-06 09:23:50 +00:00
Sami Mokaddem
e1c9b21b8e
chg: [ACL] bumped to reflect networkHistory controller
2018-07-06 09:12:26 +00:00
Sami Mokaddem
93ba5617ea
chg: [eventGraph] Implemented saving/deleting feature
2018-07-05 11:57:28 +00:00
iglocska
c3158b50ba
new: [edit strategy API] To support a smoother integration with the Hive, new API that describes what the edit strategy is for an event
...
- GET on /events/getEditStrategy/[id]
- where id can be either a local ID or a UUID
- returns a JSON dictionary with the following fields:
- strategy: edit | extend (edit if it's an own event, extend otherwise)
- extensions: list of dictionaries with existing extensions created by the user's org (containing the id, uuid, info fields)
- The algorithms implementing this should prioritise as such:
1. Check if user can edit the event (strategy == edit) - if yes, edit
2. If no, check if extensions exist - if yes, edit one of those
3. If no, create a new extension to the original event
2018-07-02 17:29:53 +02:00
Sami Mokaddem
6637d19e46
fix: bump query_version and updated queryACL
2018-06-22 13:37:49 +00:00
Sami Mokaddem
1f685bf625
fix: [attackMatrix] added missing entries in ACL component
2018-06-18 12:21:45 +00:00
iglocska
1a980185d4
fix: [ACL] added new functions to the ACL
2018-06-12 16:39:08 +02:00
iglocska
e3eb71b29a
new: [ACL] Added new role permission: publish_zmq
...
- permission flag to use the "publish to ZMQ" button
2018-06-07 17:52:01 +02:00
iglocska
a21fcadd94
fix: Ignore camelised vs underscored controller name differences in the ACL
2018-05-17 09:39:15 +02:00
iglocska
2be71c596c
version bump
2018-05-14 23:22:18 +02:00
iglocska
db7419c96e
fix: Don't lowercase the controllername for the ACL Component
2018-05-10 11:55:10 +02:00
iglocska
e1721e0177
fix: [ACL] Made the ACL system's behaviour more lax when it comes to capitalisation mistakes in the URL, fixes #3240
2018-05-09 13:23:30 +02:00
iglocska
05cf0563e1
new: First implementation of the Noticelist system ready
2018-05-07 10:43:21 +02:00
Sami Mokaddem
56b37d08fc
Merge remote-tracking branch 'upstream/2.4' into distributionGraph
2018-04-25 07:08:54 +00:00
iglocska
e0f975e4cc
fix: Added event enrichment to the ACL
2018-04-24 17:32:20 +02:00
Sami Mokaddem
99af821871
Updated ACLComponent
2018-04-24 10:09:50 +00:00
iglocska
3c438243f4
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2018-04-17 13:45:04 +02:00
iglocska
9b2e212b3d
new: Added getEventInfoById API
2018-04-17 13:43:47 +02:00
Sami Mokaddem
56daf7f494
updated ACLComponent
2018-04-16 12:43:12 +00:00
Sami Mokaddem
921224ed40
Merge branch 'quick-fix-metacategory-graph' into ref_graph
2018-04-06 07:50:27 +00:00
Sami Mokaddem
5e83caf8fb
Added retreiving of object templates in order to let the user choose the field we want to see in the event graph
2018-03-29 16:05:19 +00:00
iglocska
d547726faa
fix: Tied the new diagnostic tool into the ACL
2018-03-26 12:11:50 +02:00
Sami Mokaddem
4ec83b9903
Registrered funciton in ACLComponent
2018-03-23 07:58:39 +00:00
iglocska
824ebb5aea
fix: Tied the clearjobs function into the ACL and fixed a small text error
2018-03-14 02:31:25 +01:00
iglocska
39b5d06f29
new: Temp diagnostic tool for orphaned object attributes
2018-03-01 22:34:20 +01:00
iglocska
ef3f28a93a
fix: Various fixes to the module api
...
- query function renamed to query enrichment
- added check for disabled modules and for modules that the current user is not allowed to use
- removed the module config from the index function to avoid exposing API keys / credentials to users
- some formating fixes
2018-02-16 14:36:57 +01:00
Juan C. Montes
6b8e508cf0
fix: ModulesController
2018-02-16 11:22:28 +01:00
Juan C. Montes
4d71eeb72a
new: ModulesQueryAPI
...
ModulesQuery controller to can communicate from MISP API to misp_modules
2018-02-13 13:31:10 +01:00
iglocska
65f032fcca
fix: Hop over commented out functions in the queryACL tests
2018-02-09 15:06:35 +01:00
iglocska
9af6130d43
new: Added STIX import directly to the UI
2018-02-09 11:30:28 +01:00
iglocska
4b722e0b61
fix: Added new APIs to ACL component
...
- wooooops
2018-02-02 14:09:15 +01:00
iglocska
771a262b0d
fix: Missing action added to ACL system
2018-01-16 14:56:30 +01:00
iglocska
dedfea3610
new: Mass enable/disable feeds
...
- protecting the sanity of MISP admins since 2012!
2018-01-15 17:25:11 +01:00
iglocska
3fb5ccdab2
fix: tie warninglist delete into the ACL
2017-12-22 13:16:31 +01:00
iglocska
9259f072fe
chg: ACL updated
2017-10-08 20:33:59 +02:00
truckydev
f607398852
user right update
...
Make all user access to /attributes/describeTypes.json
2017-09-27 17:52:36 +02:00
iglocska
242fbce3e1
fix: ACL updated
2017-09-18 00:42:26 +02:00
iglocska
aa07299abe
Merge branch '2.4' into objects_wip
2017-08-10 07:29:50 +02:00
iglocska
f9053ed3e3
chg: Restrict tag editor permission to only create tags
...
- deleting/eding tags indirectly modifies events created by others
- reduced to site admin only functionality
2017-08-09 14:22:54 +02:00
iglocska
092b2247da
fix: Add object functions to ACL
2017-07-05 08:43:17 +02:00
iglocska
c9784cc4f8
fix: Moved attachment access diagnostic tool to attributes controller
2017-06-18 10:12:48 +02:00
root
e489f431d9
Adding small diagnostic on Server Setting > Diagnostics page to check if some attachments
...
referenced in database doesn't exist on filesystem.
2017-05-11 14:11:08 +02:00
iglocska
96574ec335
new: First implementation of the feed analysis system
2017-05-08 14:22:27 +02:00
iglocska
ded4cb2769
fix: Added missing ACL entry
2017-03-24 10:33:58 +01:00
iglocska
e79ba76c43
fix: Some ACL tightening
2017-03-02 09:57:23 +01:00
iglocska
e9edeed22c
new: User management convenience functions added
...
- quick e-mail: send an e-mail to a user quickly
- orgadmin: see the org admins of a user and contact them
- pgp key issues shown on the user view
- pgp fingerprint shown on the user view
- copy paste auth keys and pgp keys quickly by clicking on them
2017-02-22 17:12:32 +01:00
iglocska
9fbf6a0569
chg: sightings role added to ACL
2017-02-20 11:13:02 +01:00