Commit Graph

71 Commits (57ce60ab6653f988be67a1c10a2629320936ab3d)

Author SHA1 Message Date
Stefano Ortolani e131f85e55 Bump modules plus many other changes 2024-08-24 13:50:19 +01:00
Stefano Ortolani 02f81b886e Allow more redis options to be configured 2024-08-20 22:30:28 +01:00
Stefano Ortolani 8197b9b1d0
Add password to redis (#107) 2024-08-13 14:23:45 +01:00
Stefano Ortolani a8ea7e0923
Add support for encryption key (#108) 2024-08-13 14:23:37 +01:00
Stefano Ortolani 5ef80d3d0e Add syncservers pull rules 2024-08-06 13:18:32 +01:00
Stefano Ortolani 2f24067089 Remove bundled python dependencies in favour of pip installed ones 2024-08-06 12:37:15 +01:00
UFOSmuggler 1842fd5689
add new misp-core health check endpoint (#80) 2024-06-26 14:38:09 +01:00
David Manzano c140a40f0d
Make SMTP host setting configurable (#77)
* Allows to configure a STMP server different from the one in docker-compose

* Addresses @ostefano regarding envvars with defaults

* Ensures default is present in template.env
2024-06-20 08:57:30 +01:00
Stefano Ortolani b6aaed52c7 Disable health-check until a safe heartbeat endpoint is available 2024-06-14 13:52:57 +01:00
UFOSmuggler 8aaec5d836
Bring forward when database updates occur (#76)
Remove await_settings_db() entirely

Linebuffer some outputs so they look nicer

Move redis specific config items to minimum_config*json

Add start_interval to docker-compose.yml to avoid runUpdates race condition caused by health check which could lead to bad db updates, which seems to have been an issue for quite a while but is very hard to reproduce
2024-06-14 13:41:55 +01:00
UFOSmuggler 261c541749
Update set_up_proxy(), add DEBUG envar, minor fixes (#71)
* added missing PROXY_ENABLE envar to docker-compose.yml

add default value of false is PROXY_ENABLE unset

altered set_up_proxy() in configure_misp.sh to use json-based config system

fixed MISP.ca_path setting to use --force, since doesn't end in .pem

* Add DEBUG envar

Works in both config.php and system_settings table.
2024-06-11 12:36:39 +01:00
Thibault Van Win 76fadc5496
Add option to configure proxy using environment vars (#69)
Co-authored-by: Thibault Van Win <thibault.van.win@axsguard.com>
2024-06-06 12:41:12 +01:00
UFOSmuggler d56c893f4d
Introduce new system to persist mandatory and optional settings (#66)
* Make safe settings functions handling config json objects. 
* Also, update cake's cacerts. Previous method was using ubuntu's crts, which weren't pem.
* Bring config inline with previous config.php template version.
* Move settings into files in /etc/misp-docker.
* Fix Security.auth kludge.
* Rename functions and settings json files for a bit more clarity.
* Add documentation to README.md.
* Add a bit of context around adding new envars.
* Add ENABLE_DB_SETTINGS envar for turning on MISP.system_setting_db.
* Add documentation regarding new envar, and add to docker-compose.yml and template.php.
* Move "weird default" ZeroMQ setting to initialisation settings.
* Move some settings to cli_only.
* Add code to disable DB settings when applying cli_only settings.
* Change system_settings table availability check to until loop.
* Some language changes for clarity.
2024-06-06 09:30:12 +01:00
ftoppi a20eece2d5
Add healthchecks to docker-compose.yml (#36)
Add healthchecks
2024-04-24 13:00:23 +01:00
Stefano Ortolani c9b4ee2e42 Replace redis image with valkey 2024-04-21 13:18:11 +01:00
shieldsurge 67d4a0ea32
Fix missing AadAuth env var (#44) 2024-04-12 19:54:43 +01:00
shieldsurge 0c24160035
Add AadAuth support in configure_misp.sh (#39) 2024-04-10 16:56:44 +01:00
Stefano Ortolani fe531d5806 Bump version and fix bugs
Changes:
- Bump to version 2.4.187
- Fix error when not disabling ipv6 or ssl redirect
- Enable ztsd php extension
- Catch when .env file is not created
2024-03-08 10:43:28 +00:00
Stefano Ortolani 6f8dd83d9a Allow disabling of SSL redirection 2024-03-04 13:26:18 +00:00
phil c8cebcfdab
Add ApacheSecureAuth configuration option 2024-02-21 17:04:41 +00:00
Stefano Ortolani 70b32a739c Rename variable 'HOSTNAME' to 'BASE_URL' 2023-12-22 11:02:20 +01:00
Christos Arvanitis 2039141369 Check for required env variables on OIDC 2023-12-11 13:40:48 +01:00
Christos Arvanitis 526c47a6e8 Expose OIDC config parameters 2023-12-11 11:23:04 +01:00
Stefano Ortolani fffaa51572 Make variable names consistent 2023-12-08 08:45:49 +00:00
Stefano Ortolani a861906dcf Finalize package split 2023-12-07 22:25:21 +00:00
Stefano Ortolani 98ba9c3e0d Remove attestation 2023-12-07 10:02:08 +00:00
Stefano Ortolani abbc73f655 Prepare post https://github.com/MISP/MISP/pull/9304 merge 2023-10-25 08:45:03 +01:00
Stefano Ortolani 65a4e20b6c Fix MySQL config mangling and workaround VirtioFS bug 2023-10-16 10:20:00 +01:00
Stefano Ortolani 8ef11e85a7
Add option to disable IPv6 completely (#29) 2023-09-25 21:40:13 +01:00
Stefano Ortolani 969c131c84
Fix build arguments and pin pymisp (#28) 2023-09-17 12:37:02 +01:00
Stefano Ortolani 0f158150a0 Read hostname and cron user id from environment variables 2023-05-15 12:13:25 +01:00
Stefano Ortolani 366fb0e6b0 Fix first execution bugs and allow admin password to be changed
Changes:
- Allow admin password to be changed
- Fix updating email.php the first time the container starts
2023-05-14 16:56:55 +01:00
Stefano Ortolani e548b22ffa Refactor handling of syncserver variables 2023-05-13 14:17:53 +01:00
Stefano Ortolani aceee6d225 Remove plugin configuration and refactor REST client functions 2023-05-09 15:11:07 +01:00
Stefano Ortolani 971e6a0ed8 Remove leftover from refactory 2023-04-24 11:11:00 +01:00
Stefano Ortolani 51075b4f37 Refactor the whole image and allow external customization 2023-04-24 10:55:25 +01:00
Stefano Ortolani ed3b00b52a Finalize fork 2022-12-07 08:52:49 +00:00
Stefano Ortolani 25dd423617
Tidy things up before publishing (#11)
Co-authored-by: Stefano Ortolani <ortolanis@vmware.com>
2022-12-06 17:13:23 +00:00
Sebastiano Mariani 814379c22f
Add nginx route (/feeds) that exposes various MISP feeds (#9)
Signed-off-by: Sebastiano Mariani <smariani@vmware.com>
2022-11-30 08:51:29 -08:00
Stefano Ortolani 212a9ca557
Fix entrypoints and improve disk performance (#10)
Co-authored-by: Stefano Ortolani <ortolanis@vmware.com>
2022-11-30 16:42:16 +00:00
Sebastiano Mariani e4bafc776e Add Github actions to build and push images to Docker Hub (#1)
Signed-off-by: Sebastiano Mariani <smariani@vmware.com>
2022-11-15 14:18:37 -08:00
Stefano Ortolani 07c886b1ba Fix bugs and improve reliability 2022-11-15 14:18:37 -08:00
Stefano Ortolani e919ed8cf7 Instantiate custom entrypoint 2022-11-15 14:18:35 -08:00
E. Balsa ec8c9c3c73 Allow defining the number of parallel workers 2021-04-20 09:13:09 +02:00
Eduardo Balsa 2ab1940bea
Add new option CERTAUTH 2021-04-07 16:46:05 +02:00
Sean Whalen 553eb00e24
Prevent runaway mysql log
We recently ran into an issue where the mysql console output was filling up the disk with

> mbind: Operation not permitted

It turns out this is a common problem with the `mysql` docker image. This is the fix.

https://stackoverflow.com/questions/55559386/how-to-fix-mbind-operation-not-permitted-in-mysql-error-log
2020-12-11 11:10:36 -05:00
James Droste 3cfe803426 Add usage of MISP_MODULES_FQDN 2020-08-25 22:47:41 -07:00
Jason Kendall e3e47efc7d
Update docker-compose.yml
Add note about MySQL passwords being AlphaNum - Closes #56
2020-07-27 15:42:44 -04:00
Jason Kendall 270e20806d Move SSL certs /etc/nginx/certs - fixes #53 2020-05-28 20:23:33 -04:00
Jason Kendall 9d2e722140 Default to modern nginx security - resolves #50 2020-05-28 19:33:54 -04:00