Commit Graph

47 Commits (57ce60ab6653f988be67a1c10a2629320936ab3d)

Author SHA1 Message Date
Stefano Ortolani 57ce60ab66 Fix race conditions and typos 2024-08-25 13:44:18 +01:00
Stefano Ortolani e131f85e55 Bump modules plus many other changes 2024-08-24 13:50:19 +01:00
Stefano Ortolani 05f73f6c4c Enable workflows by default 2024-08-23 18:21:30 +01:00
Stefano Ortolani 02f81b886e Allow more redis options to be configured 2024-08-20 22:30:28 +01:00
Stefano Ortolani 3fbf7bff00 Fix default value (again) 2024-08-20 20:12:00 +01:00
Stefano Ortolani da02fb9b1e Fix default value 2024-08-20 14:04:07 +01:00
Stefano Ortolani 7ef14a06f5 Remove default value in favour of env var 2024-08-19 12:33:49 +01:00
Stefano Ortolani 60902dbcdc Fix missing redis password 2024-08-16 14:04:16 +01:00
Stefano Ortolani 8197b9b1d0
Add password to redis (#107) 2024-08-13 14:23:45 +01:00
Stefano Ortolani a8ea7e0923
Add support for encryption key (#108) 2024-08-13 14:23:37 +01:00
olekristoffer eaba308269
Balance quotes as requred by podman 4.9.4 (#109)
Podman 4.9.4 requires all quotes to be balanced when processing heredoc build statements, including in comments. Without the change building the container yields the following ERROR: "unexpected end of statement while looking for matching single-quote"
2024-08-13 14:23:29 +01:00
Stefano Ortolani 5ef80d3d0e Add syncservers pull rules 2024-08-06 13:18:32 +01:00
Stefano Ortolani 2f24067089 Remove bundled python dependencies in favour of pip installed ones 2024-08-06 12:37:15 +01:00
marjatech 2739a8c02f
hide nginx version from response headers (#99) 2024-08-02 09:54:59 +01:00
Stefano Ortolani 130a6ba8c0 Bump misp-modules and backport fixes 2024-07-19 16:43:15 +01:00
Stefano Ortolani 0b5dd32b65 Remove pip after installation 2024-07-19 11:30:36 +01:00
Stefano Ortolani 8911811384 Backport some fixes 2024-07-18 15:54:57 +01:00
marjatech b085e2b90c
set php parameters sid_length and use_strict_mode (#97)
these shall be set to 
sid_length > 32
use_strict_mode = 1

Otherwise even MISP will complain about this in the Diagnostics
2024-07-18 15:36:20 +01:00
Stefano Ortolani 162f99f541
Update to Debian bookworm and python 3.12 (#92)
* Update to debian bookworm and python 3.12

* Ship lock file
2024-07-18 15:36:06 +01:00
marjatech 27bd316a71
keep environment, so curl will know about https_proxy (#87) 2024-07-04 07:41:37 +01:00
David Manzano c140a40f0d
Make SMTP host setting configurable (#77)
* Allows to configure a STMP server different from the one in docker-compose

* Addresses @ostefano regarding envvars with defaults

* Ensures default is present in template.env
2024-06-20 08:57:30 +01:00
UFOSmuggler 8aaec5d836
Bring forward when database updates occur (#76)
Remove await_settings_db() entirely

Linebuffer some outputs so they look nicer

Move redis specific config items to minimum_config*json

Add start_interval to docker-compose.yml to avoid runUpdates race condition caused by health check which could lead to bad db updates, which seems to have been an issue for quite a while but is very hard to reproduce
2024-06-14 13:41:55 +01:00
Stefano Ortolani 303ea9d2f9 Revert some changes to unblock new users 2024-06-12 15:28:38 +01:00
UFOSmuggler 261c541749
Update set_up_proxy(), add DEBUG envar, minor fixes (#71)
* added missing PROXY_ENABLE envar to docker-compose.yml

add default value of false is PROXY_ENABLE unset

altered set_up_proxy() in configure_misp.sh to use json-based config system

fixed MISP.ca_path setting to use --force, since doesn't end in .pem

* Add DEBUG envar

Works in both config.php and system_settings table.
2024-06-11 12:36:39 +01:00
Stefano Ortolani 16ec637742 Bump misp-modules and revert some defaults 2024-06-06 12:56:36 +01:00
Thibault Van Win 76fadc5496
Add option to configure proxy using environment vars (#69)
Co-authored-by: Thibault Van Win <thibault.van.win@axsguard.com>
2024-06-06 12:41:12 +01:00
UFOSmuggler d56c893f4d
Introduce new system to persist mandatory and optional settings (#66)
* Make safe settings functions handling config json objects. 
* Also, update cake's cacerts. Previous method was using ubuntu's crts, which weren't pem.
* Bring config inline with previous config.php template version.
* Move settings into files in /etc/misp-docker.
* Fix Security.auth kludge.
* Rename functions and settings json files for a bit more clarity.
* Add documentation to README.md.
* Add a bit of context around adding new envars.
* Add ENABLE_DB_SETTINGS envar for turning on MISP.system_setting_db.
* Add documentation regarding new envar, and add to docker-compose.yml and template.php.
* Move "weird default" ZeroMQ setting to initialisation settings.
* Move some settings to cli_only.
* Add code to disable DB settings when applying cli_only settings.
* Change system_settings table availability check to until loop.
* Some language changes for clarity.
2024-06-06 09:30:12 +01:00
Stefano Ortolani 639d6e746b Add documentation and fix default values for OIDC_ROLES_MAPPING 2024-05-09 10:03:55 +01:00
UFOSmuggler aeff7b3e3e
Fix issue where searching for 'php' returns an error (#54) 2024-05-01 14:25:16 +01:00
Christian Morales Guerrero 313681a344
Support optional OIDC_ISSUER parameter (#52) 2024-04-24 12:26:22 +01:00
Christian Morales Guerrero b8d722a86b
Allow Redis over TLS (#49) 2024-04-22 09:20:59 +01:00
Stefano Ortolani 52db2da71d Bump version 2024-04-11 08:45:25 +01:00
shieldsurge 0c24160035
Add AadAuth support in configure_misp.sh (#39) 2024-04-10 16:56:44 +01:00
Daan Willems 0673b30b2d
Add exemption to entrypoint_nginx for taxonomies (#41) 2024-04-10 16:22:55 +01:00
Stefano Ortolani 485feba927 Fix permission bug and bump version 2024-03-24 15:32:21 +00:00
Kelke vl 92c22192dc
add subject alternative names to self-siged certificate (#30) 2024-03-24 15:20:18 +00:00
Lorenzo Riccucci 940e9e6e73
Preserve custom images files on container start. (#33)
* Preserve custom images files on container start.

* Removed one too many spaces between the bracket and semicolon
2024-03-24 15:19:53 +00:00
Stefano Ortolani fe531d5806 Bump version and fix bugs
Changes:
- Bump to version 2.4.187
- Fix error when not disabling ipv6 or ssl redirect
- Enable ztsd php extension
- Catch when .env file is not created
2024-03-08 10:43:28 +00:00
Stefano Ortolani 6f8dd83d9a Allow disabling of SSL redirection 2024-03-04 13:26:18 +00:00
phil ca6f598eed
use correct LDAP_READER env variables (#18) 2024-02-27 14:10:50 +00:00
phil c8cebcfdab
Add ApacheSecureAuth configuration option 2024-02-21 17:04:41 +00:00
Félix Herrenschmidt 5b91567810
Fix #16 Remote Servers Certificates persistence issue 2024-02-21 17:03:57 +00:00
Stefano Ortolani 70b32a739c Rename variable 'HOSTNAME' to 'BASE_URL' 2023-12-22 11:02:20 +01:00
Christos Arvanitis 2039141369 Check for required env variables on OIDC 2023-12-11 13:40:48 +01:00
Christos Arvanitis 526c47a6e8 Expose OIDC config parameters 2023-12-11 11:23:04 +01:00
Stefano Ortolani fffaa51572 Make variable names consistent 2023-12-08 08:45:49 +00:00
Stefano Ortolani a861906dcf Finalize package split 2023-12-07 22:25:21 +00:00