Commit Graph

401 Commits (beb62e4dcc90f3db1bd07f7312de033422dae6b9)

Author SHA1 Message Date
Stefano Ortolani beb62e4dcc Bump core and fix setuptools provenance 2024-09-16 09:58:10 +01:00
urfin00djuce d6bc475e91
Fix services names (#145) 2024-09-16 08:59:37 +01:00
Stefano Ortolani 663c154a97 Add support for 'X-Forwarded-For'; merge podman PR by @urfin00djuce 2024-09-12 10:11:15 +01:00
Stefano Ortolani b033daec4f Fix upstream removal of python3-setuptools 2024-09-08 11:05:24 +01:00
Øivind Hoel 043437c83f Move settings and mysql env vars around 2024-09-08 10:31:06 +01:00
Øivind Hoel 7e595ff585 Run component updates in the background 2024-09-08 10:30:13 +01:00
Stefano Ortolani 24690cafe5 Update documentation and reduce benign errors at first bootstrap 2024-09-03 08:55:05 +01:00
Stefano Ortolani 833036ab16 Bump version 2024-09-02 18:52:51 +01:00
Stefano Ortolani da4649dac7 Fix capability name 2024-08-30 08:05:17 +01:00
Stefano Ortolani 14ce181611 Make InnoDB configurable 2024-08-30 07:51:40 +01:00
Stefano Ortolani 9929290c89 Fix healthcheck with user-set base url 2024-08-26 09:10:51 +01:00
Stefano Ortolani 57ce60ab66 Fix race conditions and typos 2024-08-25 13:44:18 +01:00
Stefano Ortolani d6c9bf200e Cleanup 2024-08-24 14:19:53 +01:00
Stefano Ortolani e131f85e55 Bump modules plus many other changes 2024-08-24 13:50:19 +01:00
Stefano Ortolani 05f73f6c4c Enable workflows by default 2024-08-23 18:21:30 +01:00
Stefano Ortolani a556bfc164 Bump MISP core 2024-08-21 14:26:04 +01:00
Stefano Ortolani 02f81b886e Allow more redis options to be configured 2024-08-20 22:30:28 +01:00
Stefano Ortolani 3fbf7bff00 Fix default value (again) 2024-08-20 20:12:00 +01:00
Stefano Ortolani da02fb9b1e Fix default value 2024-08-20 14:04:07 +01:00
Stefano Ortolani 7ef14a06f5 Remove default value in favour of env var 2024-08-19 12:33:49 +01:00
Stefano Ortolani 60902dbcdc Fix missing redis password 2024-08-16 14:04:16 +01:00
Stefano Ortolani 8197b9b1d0
Add password to redis (#107) 2024-08-13 14:23:45 +01:00
Stefano Ortolani a8ea7e0923
Add support for encryption key (#108) 2024-08-13 14:23:37 +01:00
olekristoffer eaba308269
Balance quotes as requred by podman 4.9.4 (#109)
Podman 4.9.4 requires all quotes to be balanced when processing heredoc build statements, including in comments. Without the change building the container yields the following ERROR: "unexpected end of statement while looking for matching single-quote"
2024-08-13 14:23:29 +01:00
Stefano Ortolani 5ef80d3d0e Add syncservers pull rules 2024-08-06 13:18:32 +01:00
Stefano Ortolani 2f24067089 Remove bundled python dependencies in favour of pip installed ones 2024-08-06 12:37:15 +01:00
Stefano Ortolani 1a2a515fe0 Bump MISP version 2024-08-02 09:55:30 +01:00
marjatech 2739a8c02f
hide nginx version from response headers (#99) 2024-08-02 09:54:59 +01:00
Stefano Ortolani 130a6ba8c0 Bump misp-modules and backport fixes 2024-07-19 16:43:15 +01:00
Stefano Ortolani 0b5dd32b65 Remove pip after installation 2024-07-19 11:30:36 +01:00
Stefano Ortolani a128f24247 Split build job in two and reduce misp-modules build time 2024-07-19 09:43:28 +01:00
Stefano Ortolani 8911811384 Backport some fixes 2024-07-18 15:54:57 +01:00
marjatech b085e2b90c
set php parameters sid_length and use_strict_mode (#97)
these shall be set to 
sid_length > 32
use_strict_mode = 1

Otherwise even MISP will complain about this in the Diagnostics
2024-07-18 15:36:20 +01:00
Stefano Ortolani 162f99f541
Update to Debian bookworm and python 3.12 (#92)
* Update to debian bookworm and python 3.12

* Ship lock file
2024-07-18 15:36:06 +01:00
Stefano Ortolani 1c89ebcd67 Make sure numpy2 is not pulled in even on aarch64 2024-07-09 15:12:30 +01:00
marjatech 27bd316a71
keep environment, so curl will know about https_proxy (#87) 2024-07-04 07:41:37 +01:00
UFOSmuggler 1842fd5689
add new misp-core health check endpoint (#80) 2024-06-26 14:38:09 +01:00
Stefano Ortolani ab79ea270b Bump version and improve escaping documentation 2024-06-26 14:35:40 +01:00
Shykh Smyr|شيخ سمير 1fd8070094
Added note for escaping LDAP password in template.env (#84)
If the LDAP password contains special characters that need escaping, they must be doubly escaped inside .env.

Added a reminder against the password field for that.
2024-06-26 14:19:49 +01:00
Stefano Ortolani 5d641c75e4 Fix template 2024-06-20 09:01:30 +01:00
David Manzano c140a40f0d
Make SMTP host setting configurable (#77)
* Allows to configure a STMP server different from the one in docker-compose

* Addresses @ostefano regarding envvars with defaults

* Ensures default is present in template.env
2024-06-20 08:57:30 +01:00
Stefano Ortolani b6aaed52c7 Disable health-check until a safe heartbeat endpoint is available 2024-06-14 13:52:57 +01:00
UFOSmuggler 8aaec5d836
Bring forward when database updates occur (#76)
Remove await_settings_db() entirely

Linebuffer some outputs so they look nicer

Move redis specific config items to minimum_config*json

Add start_interval to docker-compose.yml to avoid runUpdates race condition caused by health check which could lead to bad db updates, which seems to have been an issue for quite a while but is very hard to reproduce
2024-06-14 13:41:55 +01:00
Stefano Ortolani 303ea9d2f9 Revert some changes to unblock new users 2024-06-12 15:28:38 +01:00
UFOSmuggler 261c541749
Update set_up_proxy(), add DEBUG envar, minor fixes (#71)
* added missing PROXY_ENABLE envar to docker-compose.yml

add default value of false is PROXY_ENABLE unset

altered set_up_proxy() in configure_misp.sh to use json-based config system

fixed MISP.ca_path setting to use --force, since doesn't end in .pem

* Add DEBUG envar

Works in both config.php and system_settings table.
2024-06-11 12:36:39 +01:00
Tal Katz da3e3ae4f5
Update README.md (#70)
MISP.system.setting_db in README should be MISP.system_setting_db
2024-06-10 15:56:24 +01:00
Stefano Ortolani b0bdfc7351 Bump misp-core and misp-modules 2024-06-07 11:32:12 +01:00
Stefano Ortolani 16ec637742 Bump misp-modules and revert some defaults 2024-06-06 12:56:36 +01:00
Thibault Van Win 76fadc5496
Add option to configure proxy using environment vars (#69)
Co-authored-by: Thibault Van Win <thibault.van.win@axsguard.com>
2024-06-06 12:41:12 +01:00
UFOSmuggler d56c893f4d
Introduce new system to persist mandatory and optional settings (#66)
* Make safe settings functions handling config json objects. 
* Also, update cake's cacerts. Previous method was using ubuntu's crts, which weren't pem.
* Bring config inline with previous config.php template version.
* Move settings into files in /etc/misp-docker.
* Fix Security.auth kludge.
* Rename functions and settings json files for a bit more clarity.
* Add documentation to README.md.
* Add a bit of context around adding new envars.
* Add ENABLE_DB_SETTINGS envar for turning on MISP.system_setting_db.
* Add documentation regarding new envar, and add to docker-compose.yml and template.php.
* Move "weird default" ZeroMQ setting to initialisation settings.
* Move some settings to cli_only.
* Add code to disable DB settings when applying cli_only settings.
* Change system_settings table availability check to until loop.
* Some language changes for clarity.
2024-06-06 09:30:12 +01:00