Commit Graph

381 Commits (60902dbcdc5bf983653537f33be440044e6c38d0)

Author SHA1 Message Date
Stefano Ortolani 60902dbcdc Fix missing redis password 2024-08-16 14:04:16 +01:00
Stefano Ortolani 8197b9b1d0
Add password to redis (#107) 2024-08-13 14:23:45 +01:00
Stefano Ortolani a8ea7e0923
Add support for encryption key (#108) 2024-08-13 14:23:37 +01:00
olekristoffer eaba308269
Balance quotes as requred by podman 4.9.4 (#109)
Podman 4.9.4 requires all quotes to be balanced when processing heredoc build statements, including in comments. Without the change building the container yields the following ERROR: "unexpected end of statement while looking for matching single-quote"
2024-08-13 14:23:29 +01:00
Stefano Ortolani 5ef80d3d0e Add syncservers pull rules 2024-08-06 13:18:32 +01:00
Stefano Ortolani 2f24067089 Remove bundled python dependencies in favour of pip installed ones 2024-08-06 12:37:15 +01:00
Stefano Ortolani 1a2a515fe0 Bump MISP version 2024-08-02 09:55:30 +01:00
marjatech 2739a8c02f
hide nginx version from response headers (#99) 2024-08-02 09:54:59 +01:00
Stefano Ortolani 130a6ba8c0 Bump misp-modules and backport fixes 2024-07-19 16:43:15 +01:00
Stefano Ortolani 0b5dd32b65 Remove pip after installation 2024-07-19 11:30:36 +01:00
Stefano Ortolani a128f24247 Split build job in two and reduce misp-modules build time 2024-07-19 09:43:28 +01:00
Stefano Ortolani 8911811384 Backport some fixes 2024-07-18 15:54:57 +01:00
marjatech b085e2b90c
set php parameters sid_length and use_strict_mode (#97)
these shall be set to 
sid_length > 32
use_strict_mode = 1

Otherwise even MISP will complain about this in the Diagnostics
2024-07-18 15:36:20 +01:00
Stefano Ortolani 162f99f541
Update to Debian bookworm and python 3.12 (#92)
* Update to debian bookworm and python 3.12

* Ship lock file
2024-07-18 15:36:06 +01:00
Stefano Ortolani 1c89ebcd67 Make sure numpy2 is not pulled in even on aarch64 2024-07-09 15:12:30 +01:00
marjatech 27bd316a71
keep environment, so curl will know about https_proxy (#87) 2024-07-04 07:41:37 +01:00
UFOSmuggler 1842fd5689
add new misp-core health check endpoint (#80) 2024-06-26 14:38:09 +01:00
Stefano Ortolani ab79ea270b Bump version and improve escaping documentation 2024-06-26 14:35:40 +01:00
Shykh Smyr|شيخ سمير 1fd8070094
Added note for escaping LDAP password in template.env (#84)
If the LDAP password contains special characters that need escaping, they must be doubly escaped inside .env.

Added a reminder against the password field for that.
2024-06-26 14:19:49 +01:00
Stefano Ortolani 5d641c75e4 Fix template 2024-06-20 09:01:30 +01:00
David Manzano c140a40f0d
Make SMTP host setting configurable (#77)
* Allows to configure a STMP server different from the one in docker-compose

* Addresses @ostefano regarding envvars with defaults

* Ensures default is present in template.env
2024-06-20 08:57:30 +01:00
Stefano Ortolani b6aaed52c7 Disable health-check until a safe heartbeat endpoint is available 2024-06-14 13:52:57 +01:00
UFOSmuggler 8aaec5d836
Bring forward when database updates occur (#76)
Remove await_settings_db() entirely

Linebuffer some outputs so they look nicer

Move redis specific config items to minimum_config*json

Add start_interval to docker-compose.yml to avoid runUpdates race condition caused by health check which could lead to bad db updates, which seems to have been an issue for quite a while but is very hard to reproduce
2024-06-14 13:41:55 +01:00
Stefano Ortolani 303ea9d2f9 Revert some changes to unblock new users 2024-06-12 15:28:38 +01:00
UFOSmuggler 261c541749
Update set_up_proxy(), add DEBUG envar, minor fixes (#71)
* added missing PROXY_ENABLE envar to docker-compose.yml

add default value of false is PROXY_ENABLE unset

altered set_up_proxy() in configure_misp.sh to use json-based config system

fixed MISP.ca_path setting to use --force, since doesn't end in .pem

* Add DEBUG envar

Works in both config.php and system_settings table.
2024-06-11 12:36:39 +01:00
Tal Katz da3e3ae4f5
Update README.md (#70)
MISP.system.setting_db in README should be MISP.system_setting_db
2024-06-10 15:56:24 +01:00
Stefano Ortolani b0bdfc7351 Bump misp-core and misp-modules 2024-06-07 11:32:12 +01:00
Stefano Ortolani 16ec637742 Bump misp-modules and revert some defaults 2024-06-06 12:56:36 +01:00
Thibault Van Win 76fadc5496
Add option to configure proxy using environment vars (#69)
Co-authored-by: Thibault Van Win <thibault.van.win@axsguard.com>
2024-06-06 12:41:12 +01:00
UFOSmuggler d56c893f4d
Introduce new system to persist mandatory and optional settings (#66)
* Make safe settings functions handling config json objects. 
* Also, update cake's cacerts. Previous method was using ubuntu's crts, which weren't pem.
* Bring config inline with previous config.php template version.
* Move settings into files in /etc/misp-docker.
* Fix Security.auth kludge.
* Rename functions and settings json files for a bit more clarity.
* Add documentation to README.md.
* Add a bit of context around adding new envars.
* Add ENABLE_DB_SETTINGS envar for turning on MISP.system_setting_db.
* Add documentation regarding new envar, and add to docker-compose.yml and template.php.
* Move "weird default" ZeroMQ setting to initialisation settings.
* Move some settings to cli_only.
* Add code to disable DB settings when applying cli_only settings.
* Change system_settings table availability check to until loop.
* Some language changes for clarity.
2024-06-06 09:30:12 +01:00
Stefano Ortolani 639d6e746b Add documentation and fix default values for OIDC_ROLES_MAPPING 2024-05-09 10:03:55 +01:00
Stefano Ortolani 887d1b3443 Build re-tagged misp-core 2024-05-03 15:18:32 +01:00
Stefano Ortolani 0cd3c81238 Bump misp-core 2024-05-03 14:25:48 +01:00
UFOSmuggler aeff7b3e3e
Fix issue where searching for 'php' returns an error (#54) 2024-05-01 14:25:16 +01:00
ftoppi a20eece2d5
Add healthchecks to docker-compose.yml (#36)
Add healthchecks
2024-04-24 13:00:23 +01:00
Stefano Ortolani 66a683c075 Bump MISP 2024-04-24 12:37:49 +01:00
Christian Morales Guerrero 313681a344
Support optional OIDC_ISSUER parameter (#52) 2024-04-24 12:26:22 +01:00
Christian Morales Guerrero b8d722a86b
Allow Redis over TLS (#49) 2024-04-22 09:20:59 +01:00
Stefano Ortolani c9b4ee2e42 Replace redis image with valkey 2024-04-21 13:18:11 +01:00
Stefano Ortolani e407e127d3 Bump MISP 2024-04-20 19:54:43 +01:00
shieldsurge 67d4a0ea32
Fix missing AadAuth env var (#44) 2024-04-12 19:54:43 +01:00
Stefano Ortolani 52db2da71d Bump version 2024-04-11 08:45:25 +01:00
shieldsurge 0c24160035
Add AadAuth support in configure_misp.sh (#39) 2024-04-10 16:56:44 +01:00
Daan Willems 0673b30b2d
Add exemption to entrypoint_nginx for taxonomies (#41) 2024-04-10 16:22:55 +01:00
Stefano Ortolani 485feba927 Fix permission bug and bump version 2024-03-24 15:32:21 +00:00
Kelke vl 92c22192dc
add subject alternative names to self-siged certificate (#30) 2024-03-24 15:20:18 +00:00
Lorenzo Riccucci 940e9e6e73
Preserve custom images files on container start. (#33)
* Preserve custom images files on container start.

* Removed one too many spaces between the bracket and semicolon
2024-03-24 15:19:53 +00:00
Stefano Ortolani fe531d5806 Bump version and fix bugs
Changes:
- Bump to version 2.4.187
- Fix error when not disabling ipv6 or ssl redirect
- Enable ztsd php extension
- Catch when .env file is not created
2024-03-08 10:43:28 +00:00
Stefano Ortolani 6f8dd83d9a Allow disabling of SSL redirection 2024-03-04 13:26:18 +00:00
Stefano Ortolani 81c9d9e00e Bump MISP version 2024-02-29 15:46:41 +00:00