MISP
/
misp-docker
mirror of https://github.com/MISP/misp-docker
2
0
Fork 0
Code Issues Releases Wiki Activity
293 Commits
2 Branches
0 Tags
3 MiB
Commit Graph

79 Commits (ce8fac533905c752e1caf0e8f76b57f7a78c41fe)

Author SHA1 Message Date
Øivind Hoel 5a3d5a9e0a
Create smaller image, faster build times, rework dependencies (#27) 
Changes:
* fetch pymisp version from submodule, remove erroneous module from additional dependencies
* fix heredoc indentation, move files dist and permission to same layer to avoid duplicating
* fix cybox addition, codecov removal
* pinned pip versions for our own imports
* size optimization by applying the intended file permissions from later step in initial copy
* bind-mount wheels to reduce image size
* fix var init, rework py module add script to require version and only overwrite when we have a version defined
* handle missing MISP/MODULES_TAG in env
* remove git package and (almost all of) .git directory
* split MISP and PyMISP steps to allow faster iteration in module step
 2023-09-15 11:50:30 +01:00
Anders Einar Hilden 2078a599fb Add/document AUTOGEN_ADMIN_KEY, AUTOCONF_GPG, MISP_EMAIL, MISP_CONTACT 
AUTOCONF_ADMIN_KEY renamed to AUTOGEN_ADMIN_KEY. If ADMIN_KEY is set,
that will still be set, AUTOGEN_ADMIN_KEY only turns off automatic
generation.
AUTOCONF_GPG behaves as before.
MISP_EMAIL sets MISP.email and GPG-related email.
MISP_CONTACT sets MISP.contact (support email)
 2023-08-11 11:15:29 +01:00
Stefano Ortolani 3429540b78 Bump version and allow selectively disabling auto configuration 2023-08-01 11:21:12 +01:00
Stefano Ortolani 9447c93b29 Upgrade composer to latest stable 2023-06-15 11:43:41 +01:00
Anders Einar Hilden b46e9eef63 Improve image size and better handle poetry-based PyMISP 2023-06-04 13:46:46 +01:00
Stefano Ortolani 77bff61b5a Forcing CA path setting when bundle does not have pem extension 2023-06-02 10:23:37 +01:00
Stefano Ortolani d838706dd1 Initialize 'ca_path' to system CA bundle 2023-05-24 09:57:59 +01:00
Stefano Ortolani 14c042f41e Export optional environment variables 2023-05-17 14:07:21 +01:00
Stefano Ortolani 5c78c3492c Bump misp and misp-modules 2023-05-16 15:26:20 +01:00
Stefano Ortolani 0f158150a0 Read hostname and cron user id from environment variables 2023-05-15 12:13:25 +01:00
Stefano Ortolani 366fb0e6b0 Fix first execution bugs and allow admin password to be changed 
Changes:
- Allow admin password to be changed
- Fix updating email.php the first time the container starts
 2023-05-14 16:56:55 +01:00
Stefano Ortolani e548b22ffa Refactor handling of syncserver variables 2023-05-13 14:17:53 +01:00
Stefano Ortolani 808c41483a Set sessions to be stored in Redis rather than files 2023-05-12 13:42:23 +01:00
Stefano Ortolani aceee6d225 Remove plugin configuration and refactor REST client functions 2023-05-09 15:11:07 +01:00
Stefano Ortolani 51075b4f37 Refactor the whole image and allow external customization 2023-04-24 10:55:25 +01:00
Stefano Ortolani ed3b00b52a Finalize fork 2022-12-07 08:52:49 +00:00
Stefano Ortolani 25dd423617
Tidy things up before publishing (#11) 
Co-authored-by: Stefano Ortolani <ortolanis@vmware.com>
 2022-12-06 17:13:23 +00:00
Sebastiano Mariani 814379c22f
Add nginx route (/feeds) that exposes various MISP feeds (#9) 
Signed-off-by: Sebastiano Mariani <smariani@vmware.com>
 2022-11-30 08:51:29 -08:00
Stefano Ortolani 212a9ca557
Fix entrypoints and improve disk performance (#10) 
Co-authored-by: Stefano Ortolani <ortolanis@vmware.com>
 2022-11-30 16:42:16 +00:00
Stefano Ortolani 231d099a9f
Fix how cron are launched and managed (#8) 
Changes:
- cron is now launched with the -l option
- pipe cron/tail is now a fifo so sigterm is handled properly

Co-authored-by: Stefano Ortolani <ortolanis@vmware.com>
 2022-11-30 09:51:57 +00:00
Sebastiano Mariani 54705719de
Add ability to specify new organizations that needs to be register at startup time (#5) 
Signed-off-by: Sebastiano Mariani <smariani@vmware.com>
 2022-11-17 15:15:56 -08:00
Stefano Ortolani 07c886b1ba Fix bugs and improve reliability 2022-11-15 14:18:37 -08:00
Stefano Ortolani e919ed8cf7 Instantiate custom entrypoint 2022-11-15 14:18:35 -08:00
Jason Kendall cec3f31b9d Initial Bullseye work 2022-01-05 12:25:27 -05:00
Jason Kendall f987fe180f
Merge pull request #103 from garrit-schroeder/oidc2 
Install dependencies for Open ID Connect implementation for MISP v2.4.140
 2021-04-21 10:50:07 -04:00
E. Balsa ec8c9c3c73 Allow defining the number of parallel workers 2021-04-20 09:13:09 +02:00
Jason Kendall df3b7efeb1
Merge pull request #107 from drcursor/addcertauth 
Add required parameters for cert authentication
 2021-04-19 10:37:47 -04:00
E. Balsa dccadb0337 Change config file permissions 2021-04-14 14:58:22 +02:00
Eduardo Balsa 42a936b3d4
Spacing OCD 2021-04-08 08:40:57 +02:00
Eduardo Balsa a0c35d7720
Making codacy happy take 2 2021-04-08 08:34:57 +02:00
Eduardo Balsa 2acb7d4a97
Making codacy happy 2021-04-08 08:26:44 +02:00
Eduardo Balsa 0c84e0b71b
Configuring nginx for cert authentication 
If the user enables cert authentication on the docker-compose file we must do the following changes to allow CertAuth to work
- Pass on SSL_CLIENT_I_DN and SSL_CLIENT_S_DN to PHP
- Enable ssl_client_certificate using  /etc/nginx/certs/ca.pem
- Enable the CertAuth ( https://github.com/MISP/MISP/tree/2.4/app/Plugin/CertAuth ) plugin on the bootstrap.php file
 2021-04-07 16:42:20 +02:00
Garrit Schroeder c6545a7299 forward url parameters to php 2021-03-15 16:47:08 +01:00
Sentinel Bot d00c31ef33
Replace redis 127.0.0.1 in cake config 2020-12-29 22:40:32 +00:00
James Droste 6b4ae09b08
Allow customization of the MISP Modules server 
Similar to redis, we should allow the ability to customize this value, as it gets overwritten on startup
 2020-08-25 17:04:06 -07:00
Anders Einar Hilden efcb8a7da9 entrypoint_nginx.sh: Make it "safe" to run with INIT=true multiple times 2020-07-27 15:38:25 +00:00
Jason Kendall 270e20806d Move SSL certs /etc/nginx/certs - fixes #53 2020-05-28 20:23:33 -04:00
Jason Kendall 6fb8b182a9 Prevent globbing and word splitting 2020-05-28 19:51:41 -04:00
Jason Kendall 3773870ae3 Ensure upstream files are synced to virtual mount - closes 52 2020-05-28 19:49:27 -04:00
Jason Kendall 29949f8f5f Default to modern nginx security - resolves #50 2020-05-28 19:38:33 -04:00
Jason Kendall 9d2e722140 Default to modern nginx security - resolves #50 2020-05-28 19:33:54 -04:00
Jason Kendall b77ce6c623 Set DB name from VAR closes #45, cleanup docker-compose env 2020-03-21 12:10:13 -04:00
Jason Kendall 7e997fb3fd Don't recreate symlinks - closes #42 2020-03-21 11:48:43 -04:00
Jason Kendall a676d0b65f Match nginx max upload to php 2020-03-20 10:14:53 -04:00
Jason Kendall 5efd4dd8f6 Add FPM timeout to nginx 2020-03-17 18:32:01 -04:00
Jason Kendall 6a7f555def Disable IPv6 option 2020-03-12 09:40:27 -04:00
Jason Kendall dcd893e069 Sync Servers now set be ENV SYNCSERVERS - Closes #40 2020-03-11 14:00:10 -04:00
Jason Kendall 49f65a9b54 Always use Bash, make fifo if it doesn't exist, closes #39 2020-03-06 11:09:11 -05:00
Jason Kendall 003d4cd1d7 Add custom entrypoint closes #15 2020-03-06 11:00:35 -05:00
Jason Kendall 0170dc6427 Simplify workers entrypoint 2020-03-05 11:22:23 -05:00