MISP/MISP - MISP - Open Cloud Git

Commit Graph

Author	SHA1	Message	Date
Andras Iklody	afed0f2046	Changes to link validation and minor fixes - Links get validated now to filter malicios code - removed a double edit button in the case of an admin editing himself - fixed an error with adding new attributes	2013-02-11 11:26:34 +01:00
Andras Iklody	e88a3a9cf7	Updates to security - perm_auth new toggle, can disable auth key usage for a role - prevents sync / rest with a perm_auth == false key - some changes to sync to provide better feedback on why it failed - rewording of distribution options	2013-02-06 17:45:43 +01:00
Andras Iklody	7f6f166838	Fixes to access rights, some sanitization, etc - Admins cannot manually change anyone's authkey, they need to generate a new one via the reset link - Some pages could be accessed by changing the url - fixed (though needs further testing) - Edited a change in the manual that may have been confusing - Some changes to the way ACL is set up - still needs more work	2013-02-04 17:55:35 +01:00
Andras Iklody	879a5fb282	Temporary fix for file-uploads under windows Added an alternate file-upload/download path creation for PHP_OS == 'WINNT' Also removed autofill for the login field	2013-01-31 10:25:03 +01:00
Andras Iklody	29295e1380	changes to the admin org access and sanitization 1. Some errors fixed in the way redirects worked for org admins 2. fixed some double sanitization resulting in incorrect characters displayed in certain fields	2013-01-30 11:49:55 +01:00
Andras Iklody	6333055cfc	Added hover over event IDs in search attributes view Hovering over the event IDs now shows the event info in the list generated by the search attributes page	2013-01-29 13:33:07 +01:00
Andras Iklody	97f56a2275	Further changes to org admins org admins can manage their own server connections org admins cannot see other orgs' users in the users list	2013-01-29 08:56:38 +01:00
Andras Iklody	2d6d806cca	Small update to the regular import regexp view An empty table cell caused a cosmetic misalignment of the cell border.	2013-01-28 15:11:48 +01:00
Noud de Brouwer	b7464db288	coding standards Coding Standards.	2013-01-28 11:13:51 +00:00
Noud de Brouwer	9d9dd7b4af	coding standards Coding Standards.	2013-01-28 11:05:23 +00:00
Andras Iklody	504599fbcc	Org admin privileges Added restrictions for org admins and regular users to be able to see regexp/whitelist/blacklist information without being able to edit them. Org admins can also see the roles but not edit them.	2013-01-28 11:44:09 +01:00
Noud de Brouwer	729e1e2206	coding standards Coding Standards.	2013-01-28 08:57:30 +00:00
Noud de Brouwer	a6371f5ad8	coding standards Coding Standards.	2013-01-28 08:32:01 +00:00
Noud de Brouwer	78f0d7ce93	coding standards Coding Standards.	2013-01-25 13:02:58 +00:00
Noud de Brouwer	940df96aa5	coding standards Coding Standards.	2013-01-25 12:58:19 +00:00
Andras Iklody	6afc1e993f	Attribute distributions Added feature to block distribution levels that would get overruled by the event distribution. The distribution of the event will be the currently selected distribution when creating an attribute.	2013-01-25 13:44:43 +01:00
Andras Iklody	9739cd1e35	Fix for the org admin privileges Editing / creating users and the organisation permissions for org admins	2013-01-25 12:22:55 +01:00
Andras Iklody	d4c5460d9e	Org admin can only see org logs Added check for the above	2013-01-25 11:21:39 +01:00
Noud de Brouwer	48ad60eb61	GPG start of check/correct.	2013-01-23 15:22:21 +00:00
Noud de Brouwer	125869c1d8	RBAC roles/view/<id>.	2013-01-22 15:12:36 +00:00
Noud de Brouwer	7c33a412b2	RBAC admin must be able to edit role, where-ever.	2013-01-22 14:39:54 +00:00
Andras Iklody	f544ac2e08	Batch search for attributes Implementation of request to be able to do batch attribute searches	2013-01-17 16:03:04 +01:00
Noud de Brouwer	2215f1a579	Blacklist AdminCrud looking for Blacklist Flash message and Import Blacklist menu button.	2013-01-09 15:04:48 +00:00
Noud de Brouwer	5fc0656896	Blacklist A list of stringparts not to be able to enter.	2013-01-09 14:58:52 +00:00
Noud de Brouwer	a9a1bc91a1	AdminCrud and coding standard more AdminCrud and coding standard clean up.	2013-01-04 15:48:46 +00:00
Noud de Brouwer	120f907427	git redo 'git-trigger' change.	2013-01-04 13:13:06 +00:00
Noud de Brouwer	4f9a2a5dd9	git pardon i seem to have had a: Error: messages not turned on: /dev/ttyp3: Operation not permitted	2013-01-02 15:32:47 +00:00
Noud de Brouwer	e14d8d758d	unused & coding standard Removed some total unused code and corrected some toward the CakePHP coding standard.	2013-01-02 14:49:49 +00:00
Noud de Brouwer	4737fdaaf9	Signature Blacklist removed unused view.	2012-12-20 18:57:36 +00:00
Noud de Brouwer	1e518f8bc0	Import Regexp Renamed Import Whitelist to Import Regexp.	2012-12-20 18:47:38 +00:00
Andras Iklody	0f751eb742	Validation field A field in the event index showing it clearly whether the event has been published or not - shows a small image (placeholder atm)	2012-12-20 16:56:56 +01:00
Noud de Brouwer	a17eaa69ad	log & code duplication $this->Html->image($nonExistingImage) showed up in tmp/logs/error.log and the origin this is in 2 Views, so a View Element was created.	2012-12-20 10:33:54 +00:00
Noud de Brouwer	132a10182c	log do not logs/error.log if an img does not exist.	2012-12-19 16:18:08 +00:00
Noud de Brouwer	0b6555fa0c	log & coding standards do not logs/error.log if an img does not exist. and overcome the, Each PHP statement must be on a line by itself.	2012-12-19 14:28:39 +00:00
Noud de Brouwer	f6c140e1dc	coding standards Coding Standards.	2012-12-19 13:34:40 +00:00
Andras Iklody	29cc79255f	Added validation field to the event index A small image at the front of each line showing whether the event has been validated (published) or not. The images are placeholders for now.	2012-12-19 13:13:39 +01:00
Noud de Brouwer	df67254e13	HTML make Pages/using_the_system.ctp valid HTML.	2012-12-19 12:02:44 +00:00
Noud de Brouwer	0c1dd9b0ab	HTML make Events/view.ctp valid HTML.	2012-12-19 11:41:02 +00:00
Charlie Root	e474b8e189	generateAllFor<FieldName> conflicts with CAKE/Model/Model::_call() so no findBy<FieldName>. (and various very minor other things.)	2012-12-19 10:30:10 +00:00
Noud de Brouwer	afd7977929	coding standards Coding Standards.	2012-12-19 02:33:09 +00:00
Noud de Brouwer	31207a5696	coding standards Coding Standards typo.	2012-12-18 20:45:57 +00:00
Noud de Brouwer	5b806d36f7	coding standards Coding Standards.	2012-12-18 19:55:50 +00:00
Noud de Brouwer	ea9aa8eb3a	coding standards Coding Standards.	2012-12-18 19:25:12 +00:00
Noud de Brouwer	8864ee78f7	generateAllFor<FieldName> so we can use an URL like: http://localhost/<TableName>/generateAllFor<FieldName>/newValue/oldValue for example: http://localhost/events/generateAllForAnalysis/0/null http://localhost/users/generateAllForInvitedBy/1/0 http://localhost/users/generateAllForRoleId/1/0	2012-12-18 03:50:52 +00:00
Noud de Brouwer	9211e4d405	search After added feedback on entered search terms for search attributes and search logs, this now also works for LogsController::index() and next and previous page. Signed-off-by: Noud de Brouwer <noud4@home.nl>	2012-12-18 03:01:02 +00:00
Andras Iklody	716559d5e3	added a missing view for password changes	2012-12-17 17:37:37 +01:00
Andras Iklody	099e5d92be	Fix for the Attributes	2012-12-17 17:21:57 +01:00
Andras Iklody	1ceadab700	Added features from branch analysis_levels -Analaysis levels setable for events as per milestone item 94 -Password change forced as per milestone item 109 -Added feedback on entered search terms for search attributes -fixed the authentication issue -some minor fixes	2012-12-17 15:51:30 +01:00
noud	094719fa01	Merge branch 'master' into develop Conflicts: app/Controller/AttributesController.php app/Controller/EventsController.php app/Controller/ServersController.php app/Model/Event.php	2012-12-12 18:01:39 +01:00
noud	b4711463f8	JQuery bump JQuery from 1.8.2(.min) to 1.8.3(.min).	2012-12-12 16:30:19 +01:00

1 2 3 4 5 ...

288 Commits (fd1a9852515f6704016604229febd1875468d0a0)