Commit Graph

969 Commits (perm_community_admin)

Author SHA1 Message Date
Sami Mokaddem e13dc152e7
fix: [users:registration] Fixed and improved user registration 2022-12-12 16:02:41 +01:00
Sami Mokaddem e366da6171
fix: [behavior:keycloak] Trying to lower fever the best I can 2022-12-12 08:45:02 +01:00
Sami Mokaddem 7526f8364f
chg: [users:index] Added comment 2022-12-09 12:19:29 +01:00
Sami Mokaddem a3fd138b4d
fix: [crud:edit] Always specify the table alias when fetching by id 2022-12-09 11:56:03 +01:00
Sami Mokaddem af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak 2022-12-09 11:54:34 +01:00
Sami Mokaddem b121399304
fix: [user:checkPermissionRestriction] Refactor the function to support more edge-cases 2022-12-08 15:39:28 +01:00
Sami Mokaddem 9a2e94989f
fix: [permissionlimitation:getLimitations] Mirror the permission limit if only one scope (global or org) is defined 2022-12-08 15:38:04 +01:00
Sami Mokaddem 409c116ad7
chg: [permissionlimitation:validation] Added rule for max_occurence 2022-12-08 15:35:02 +01:00
Sami Mokaddem d1aa20c5fb
security: [users:edit] Prevent edit of all users with lower privileges by any org_admins 2022-12-08 12:12:10 +01:00
Sami Mokaddem 6945e602b8
chg: [users:edit] Added role associated data for the user to be edited 2022-12-08 11:35:22 +01:00
Sami Mokaddem 1b47b669ff
fix: [users:view] Fallback value if Keycloak was never configured 2022-12-08 11:32:26 +01:00
Sami Mokaddem 561f6d1c77
fix: [user:add/edit] Correctly index orgs by their IDs 2022-12-08 10:54:55 +01:00
Sami Mokaddem 4ab9761fb5
fix: [behavior:notifyAdmins] Typo resetting a variable 2022-12-08 10:25:13 +01:00
Sami Mokaddem f3ee43ed46
chg: [user:NotifyAdminBehavior] Track modification on meta_fields 2022-12-08 10:24:09 +01:00
Sami Mokaddem c61c16c83c
fix: [user:beforeSave] Make sure variable is initialized 2022-12-08 10:19:28 +01:00
Sami Mokaddem 53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
2022-12-07 14:54:28 +01:00
Sami Mokaddem 89a13a12a0
chg: [organisations:index] Added support of `full` option to include metafields 2022-12-02 09:51:28 +01:00
Sami Mokaddem 813ec6f0a5
new: [utility:utils] Added utils file and support of arary_diff_recursive 2022-12-02 09:50:09 +01:00
Sami Mokaddem c49e3ac508
new: [bootstrap-helper:badge] Added support of ID and icon 2022-12-02 09:49:37 +01:00
Sami Mokaddem 6e6107dc46
fix: [bootstrap-helper:table] Relax some argument typing 2022-12-02 09:49:03 +01:00
Sami Mokaddem 7ce6507e94
fix: [user:login] Added support of `redirect` after login 2022-11-30 10:31:07 +01:00
Sami Mokaddem e5080e6fda
fix: [brood:preview] Restored searching capability on browsing 2022-11-29 11:51:03 +01:00
Sami Mokaddem 3dddd96eeb
chg: [element:metafield_panel] Metafield now relying on their index type when being displayed on singleViews 2022-11-28 12:12:01 +01:00
Sami Mokaddem abd9e04a0f
chg: [helper:bootstrap] Added more documentation and typing 2022-11-28 10:01:18 +01:00
Sami Mokaddem b7a446cd56
chg: [helper:bootstrap] Added documentation 2022-11-28 09:06:24 +01:00
Sami Mokaddem ae5a8eef32
Merge branch 'develop-unstable' into chg-bootstrap-elements 2022-11-28 08:44:55 +01:00
Sami Mokaddem f24d6c2cc8
chg: [command:summary] Added support of destination folder 2022-11-28 08:44:30 +01:00
Sami Mokaddem e1115c1f64
chg: [helper:bootstrapModal] Improved doc 2022-11-28 08:43:45 +01:00
Sami Mokaddem 71164e5135
chg: [layout:user_profile] Improved UI 2022-11-28 08:37:00 +01:00
Sami Mokaddem 2c840c7d4f
chg: [herlper:bootstrap] Major refactor of the BootstrapHelper to make it more modular + added documentation 2022-11-28 08:36:17 +01:00
Sami Mokaddem 41e425cfa2
new: [metaTemplateField] Added `index_type` virtual property to use the correct index_table element 2022-11-15 14:54:44 +01:00
Sami Mokaddem a9ef415f9d
fix: [organisation:index] Indentation fix 2022-11-15 14:54:01 +01:00
Sami Mokaddem ae8ecf3955
chg: [organisation:index] Added quickfilter showing all orgs having the same nationality as logged user.org 2022-11-15 11:41:30 +01:00
Sami Mokaddem 31750da7c9
chg: [organisation:index] Removed ENISA-specific quick filters
But kept them as develop documentation...
2022-11-15 11:40:59 +01:00
Sami Mokaddem 6ed9978661
chg: [inbox:filtering] Possibility to filter on severity 2022-11-15 11:22:02 +01:00
Sami Mokaddem d23cf2e2c6
new: [inbox:index] Added support of various context filtering
- My notification includes message without user_ids
- User registration
- Inter-connection requests
- Data changed
- severity:*
2022-11-15 11:21:26 +01:00
Sami Mokaddem 62c228c44e
chg: [auditLogs:index] Added possibility to view and filter logs base on `created` field 2022-11-14 16:11:18 +01:00
Sami Mokaddem 0b26bd629f
fix: [crud:index] requestedEntryAmount doesn't reset the query anymore 2022-11-14 15:55:07 +01:00
Sami Mokaddem 84069cfe40
chg: [metaTemplateField] More generic way to specify form type 2022-11-14 15:45:28 +01:00
Sami Mokaddem b6fdf37d54
fix: [metafields:dropdown] Patched saving multiple fields with custom value 2022-11-14 15:38:50 +01:00
Sami Mokaddem b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown 2022-11-14 14:53:02 +01:00
iglocska cbe2f7f684
chg: [version] bump 2022-11-14 12:38:45 +01:00
iglocska 7f92e6401d
Merge remote-tracking branch 'origin/cli-modification-summary' into develop 2022-11-14 12:37:34 +01:00
Sami Mokaddem 7940eb065f
new: [command] Summary tool to collect changes done by nationalities
Currently supporting individual, organisation and user
2022-11-14 12:36:36 +01:00
iglocska f3023eb82c
fix: [individual edit] permission check fix 2022-11-14 11:37:58 +01:00
Sami Mokaddem 7d6696e079
new: [metaFields] Adding support of sane_default + improving form & crud - WiP 2022-11-14 09:04:35 +01:00
iglocska 5c02f1c6a4
chg: [cleanup] of the default role setting for keycloak
- not used in any sensible way anymore
2022-11-13 11:18:54 +01:00
iglocska 260e1d30a1
new: [individuals] rework
- allow modifications for org admins of individuals associated to their users
  - unless they're site admins
- add user information to the individual index to bring clarity to the individual vs users confusion
- rework of the user form field object
2022-11-13 11:09:34 +01:00
iglocska ab5cee58ad
fix: [crud] speculative fix for notice error on metatemplates being accessed that aren't loaded 2022-11-11 15:30:55 +01:00
iglocska 6d41622129
new: [user deletion] tied into KeyCloak
- remove user from KC when possible
- proceed for local users
2022-11-11 15:10:04 +01:00
iglocska f6f94983e4
fix: [users] several fixes
- User enrollment in KC moved to the aftersave (we consider cerebrate to be authoritative)
- adhere to restriction parameters in deletion
2022-11-11 15:08:56 +01:00
iglocska c2bff49185
fix: [beforesave] hook removed on get requests 2022-11-11 15:08:23 +01:00
iglocska f4b33d1852
fix: [keycloak sync] not needed on user index
- was a test that was left in
2022-11-11 10:07:35 +01:00
iglocska 2a06b3101e
chg: [version] bump 2022-11-09 14:15:06 +01:00
iglocska 99febe19db
fix: [keycloak] re-enabled the getUser function, removed the placeholder forced user fetch 2022-11-09 14:10:54 +01:00
iglocska b1f09dc97e
new: [permission limitations] subsystem added
- add limitations for users with given meta fields
  - x number / org and y number / globally
- add comments to the limitations
- enforced on user creation/modification
2022-11-09 14:09:27 +01:00
iglocska 9d2c152a4e
chg: [bootstrap helper] added warning/info/danger fields 2022-11-09 14:03:16 +01:00
iglocska 16a3826cef
chg: [encryption keys] rearranged for the API 2022-11-09 13:59:39 +01:00
iglocska 4ec052a2ac
chg: [soacialauth] listener updated to not save the user
- it wasn't making any changes anyway, but triggering a slow process
2022-11-09 13:58:39 +01:00
iglocska 10ce8beb30
chg: [CRUD] component - only try to unlink MetaFields if it's actually loaded 2022-11-09 13:58:02 +01:00
iglocska 7675e27e90
chg: [user index] API refactored 2022-11-04 09:59:48 +01:00
iglocska 003053f13d
new: [API rearrange] added a simplifier for commonly used objects
- let's only return the subset of the data required to identify and retrieve the related data
2022-11-04 09:58:55 +01:00
iglocska 540fd63423
fix: [API] cleaned up the individual API 2022-11-04 09:33:39 +01:00
iglocska 7504bfab10
fix: [API] rearrange component - handle collections correctly
- return a new collection with the individual values transferred to it after changes
- avoids some weird quirks with unsetting related Objects not taking effect
2022-11-04 09:31:46 +01:00
iglocska 73ad04906a
fix: [typo] capitalisation mistake blocking org edits 2022-11-02 12:11:56 +01:00
iglocska 11510ea28f
new: [individual] editing enabled for org admins
- requires that a user exist for the given individual
2022-10-31 14:42:58 +01:00
iglocska 8dbbb21dff
chg: [users] add metafields behaviour 2022-10-31 13:38:31 +01:00
iglocska 5ec0471cce
chg: [keycloak mapper] also pushes default mappings if they don't exist 2022-10-31 13:36:53 +01:00
iglocska ce6575cfb6
chg: [User] Entity - added rearrangeForAPI() to rearrange meta fields 2022-10-31 13:26:44 +01:00
iglocska 2a31e39762
new: [keycloak] automatically set mappings 2022-10-31 13:26:12 +01:00
iglocska 3bf52c701f
chg: [keycloak] sync script updated 2022-10-31 11:32:15 +01:00
iglocska 2f4b6ed2ff
chg: [keycloak] integration rework
- switch to the use of attributes
- several minor fixes
2022-10-31 11:31:38 +01:00
Sami Mokaddem 03bd4aba30
new: [genericElement:group_table_action] Added support of `show # element` in the table 2022-10-28 09:13:15 +02:00
Sami Mokaddem 351b90d843
fix: [helper:boostrap] Make sure all properties are passed to the button component 2022-10-28 09:11:21 +02:00
Sami Mokaddem 0db625ce45
chg: [inbox:index] Added filtering on `created` time 2022-10-27 15:57:35 +02:00
Sami Mokaddem aeda393bba
chg: [component:CRUD] Improved filtering to support form type based on database column type 2022-10-27 15:56:39 +02:00
Sami Mokaddem e1499fb705
chg: [inbox:index] Added quick filter on scope 2022-10-27 11:22:55 +02:00
Sami Mokaddem dde7bbe75f
chg: [behavior:notifyAdmin] Small refactor to better handle deletions 2022-10-27 11:07:21 +02:00
Sami Mokaddem 225913f9c6
new: [organisation] Added `notifyAdmin` behavior.
Might be removed later on if needed
2022-10-27 10:14:57 +02:00
Sami Mokaddem d0119b2dba
new: [user] Added `notifyAdmin` behavior 2022-10-27 10:14:09 +02:00
Sami Mokaddem ee5adaf971
chg: [behavior:adminNotification] Added support of watched fields and improved metafield integration 2022-10-27 10:12:06 +02:00
Sami Mokaddem c8ff7bb4b2
new: [adminNotificationBehavior] Added first version of new behavior and associated inboxProcessor
This behavior allows to specify on which fields modification site-admins should be notified by receiving a message in their inbox
2022-10-26 17:10:04 +02:00
iglocska 9c41fd548f
fix: [auth] added keycloak logout 2022-10-25 15:08:41 +02:00
Sami Mokaddem 3d5508055a
chg: [inbox:index] Allow filtering index by user.id and user.name 2022-10-25 14:50:39 +02:00
Sami Mokaddem eb6dec8b64
fix: [component:CRUD] Default custom contextual filters do not override search parameters anymore 2022-10-25 14:50:11 +02:00
Sami Mokaddem 00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column 2022-10-25 14:38:16 +02:00
iglocska 9a8372be12
fix: [return type] validation removed 2022-10-25 11:01:23 +02:00
iglocska 84537c52f9
new: [user enrollment] send keycloak welcome email to users when enrolled 2022-10-25 10:57:18 +02:00
Sami Mokaddem e98290fcba
chg: [helper:bootstrap] Added support of icon in confirm modal button 2022-10-25 10:30:11 +02:00
Sami Mokaddem 6d40968f24
chg: [appTable] Set string format of FrozenTime to ISO 8601-like by default 2022-10-25 10:27:58 +02:00
Sami Mokaddem 8d7e2b0df2
chg: [inboxes:UI] Renamed `request` into `message` 2022-10-25 10:26:03 +02:00
Sami Mokaddem 726dab255e
chg: [inbox:index] Changed quick filter to show `my notification` by default 2022-10-25 10:24:01 +02:00
Sami Mokaddem 745340adff
fix: [component:CRUD] Only show metafields filters wjen the model has the behavior 2022-10-25 10:23:11 +02:00
Sami Mokaddem b555aed178
chg: [auditLog:entity] unset useless noise from user-settings 2022-10-21 16:06:09 +02:00
Sami Mokaddem fc0920c7c3
chg: [component:APIRearrange] Rearrange for all iterators 2022-10-21 15:56:53 +02:00
Sami Mokaddem d1d88391e1
fix: [auditlogs:index] Typo preventing showing the `changed` field 2022-10-21 15:55:31 +02:00
iglocska 41a241cada
new: [pgp] library ported from MISP
- added proper view elements for encryption keys
- added key information extraction
2022-10-21 15:25:52 +02:00
Sami Mokaddem ddfc83af6f
chg: [navigation:socialProvider] Improved UI for SSO profile management 2022-10-21 14:14:38 +02:00
Sami Mokaddem 0f27435251
fix: [metaTemplates] Correctly show update message 2022-10-21 14:07:41 +02:00
Sami Mokaddem 455daba4d4
fix: [navigation:meta-template] Correctly show badge for new templates 2022-10-21 14:06:46 +02:00
Sami Mokaddem a091edbf22
fix: [user:beforeSave] Only call the user-update callback if the user is not new 2022-10-21 09:00:49 +02:00
Sami Mokaddem c65978f8f2
fix: [behavior:authKeycloak] Correctly check if the user was saved 2022-10-21 08:59:36 +02:00
Sami Mokaddem 96041cc71a
chg: [genericIndex:select_visible_columns] Show meta-template versions 2022-09-29 17:54:58 +02:00
Sami Mokaddem 21403995e3
new: [user:edit] Added keycloak updates when a user gets modified 2022-09-21 10:11:09 +02:00
Sami Mokaddem 37094e0abb
fix: [user:validation] Allow user edition when `username` is not set 2022-09-21 10:10:02 +02:00
Sami Mokaddem 80277e4bdf
chg: [command:keycloakSync] Make sure User model is loaded 2022-09-21 10:09:12 +02:00
Sami Mokaddem 2c87b1e500
fix: [authKeycloakBehavior] Added missing association preventing user to log via keycloak 2022-09-21 10:07:51 +02:00
Sami Mokaddem 69fee02498
fix: [authKeycloakBehavior] Re-indexing array preventing roles to be parsed by keycloak 2022-09-21 10:06:33 +02:00
Sami Mokaddem efe917c824
fix: [authKeycloakBehavior] Typo preventing roles to be saved 2022-09-21 10:05:55 +02:00
Sami Mokaddem 8d26be28a2
chg: [auditlogs:index] Reverse sort by ID 2022-09-20 15:31:42 +02:00
iglocska 760badd268
fix: [alignments] missing contains added 2022-09-19 02:17:36 +02:00
iglocska fd6d3466d7
fix: [authkey] should only be used in a rest context
- otherwise some weird authentication snafus can happen
- as reported by SK-CERT
2022-09-19 02:14:57 +02:00
iglocska 4c0c6ef4ac
fix: [counter graphs] fixed to disallow invalid interval entries
- as reported by SK-CERT
2022-09-19 01:46:57 +02:00
iglocska 5e0ab5cc38
new: [users] username validation added
- >5 && <50 in length required
- trim username to test to avoid whitespace names

- as reported by SK-CERT
2022-09-19 01:22:53 +02:00
iglocska 9a50a5693e
fix: [users] added uniqueness to usernames
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)

- As reported by SK-CERT
2022-09-19 01:12:14 +02:00
iglocska a9eccb3097
fix: [security] X-FRAME-OPTIONS: DENY added to all responses
- as reported by SK-CERT
2022-09-19 01:11:18 +02:00
iglocska af1e2fd632
new: [security] Bruteforce protection added
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP

- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
iglocska 07a8d1dfcb
chg: [dead variable] removed 2022-09-19 00:24:29 +02:00
iglocska 254fdc3b84
chg: [security] keycloak enabled - disallow multiple users from being created for the same individual
- as reported by SK-CERT
2022-09-18 19:26:24 +02:00
iglocska 10ea126a93
fix: [security] KeyCloak login getUser fixes
- removed dead code
- tightened check on the user profile, if the KC user's email address and that of the Cerebrate user disagree, block the authentication

- as reported by SK-CERT
2022-09-18 18:51:05 +02:00
iglocska 85e8a35091
fix: [api rearrange] shouldn't trigger when dealing with arrays 2022-09-18 18:27:00 +02:00
iglocska 370995ab50
fix: [audit log] error due to compressible fields not being streams when compression not enabled 2022-09-18 18:16:34 +02:00
iglocska 3857de8499
fix: [notice] errors when not logged in removed 2022-08-24 14:47:40 +02:00
iglocska fac19e0a3c
fix: [exception] speculative fix to a check causing a 500 2022-08-24 11:43:36 +02:00
iglocska 4c1ce31d50
fix: [unauthed] users internal error fixed 2022-08-24 11:42:38 +02:00
iglocska d35a674505
chg: [navigation] added keycloak self management
- also some changes to the navigation system
2022-08-24 11:39:56 +02:00
iglocska 94bfafb743
fix: [meta template] fixes 2022-08-23 16:02:52 +02:00
iglocska 8bc3088e12
fix: [revert] meta fields unindexing
- required for the saving of vchanges
2022-08-23 14:50:13 +02:00
iglocska 095dd4513c
chg: [rearrange] moved to Entity 2022-08-23 11:42:30 +02:00
iglocska 1077251f8b
fix: [keycloak] fixed encoding issue with urlencoded usernames created in keycloak 2022-08-23 11:05:07 +02:00
iglocska d96353ee4f
chg: [APIRearrange] component tied into rest response 2022-08-19 13:02:25 +02:00
iglocska 3e0d015f69
fix: [meta] template loading reworked
- no more crappy string numeric keys among others
2022-08-19 13:01:47 +02:00
iglocska b9e5b76766
new: [component] APIRearrange component added
- alter the data's format before passing it back via the RestResponseComponent
  - to be used to clean up UI specific artifacts / junk
  - also to maintain compability between versions/tools
2022-08-19 13:00:19 +02:00
iglocska cbb737e18e
fix: [deprecation] pagination component's use removed to comply with 4.4 requirements 2022-08-17 14:00:38 +02:00
iglocska a5c9f68316
fix: [deprecation] futher toList() call updated 2022-08-17 13:49:52 +02:00
iglocska 60d8a8f655
fix: [deprecation] toList() queries updated 2022-08-17 13:49:11 +02:00
iglocska a8c42969ab
chg: [VERSION] bump 2022-06-09 14:14:19 +02:00
Sami Mokaddem fa68d62890
fix: [component:CRUD] Removed deprecation notice when trying to extract without requesting the collection 2022-06-08 11:56:09 +02:00
Sami Mokaddem 8c4c75d83a
fix: [localTools:action] Catch error if local tool's action returned unexpected data 2022-06-08 11:51:52 +02:00
Sami Mokaddem d55c1fd5d1
fix: [helper:bootstrap] Allow HTML param to have value equal to 0 2022-06-08 11:05:55 +02:00
iglocska f513f8ec99
chg: [kc] disabled user capturing
- Cerebrate is now authoritative
2022-05-17 11:00:30 +02:00
iglocska be064bb0c9
new: [KC] profile link added 2022-05-17 10:42:44 +02:00
iglocska 398307e414
fix: [user enrollment] fixed via KC 2022-05-17 10:16:47 +02:00
iglocska a88318c5df
fix: [auditlogs] more monkey fixing the logging errors via CLI 2022-05-17 09:26:23 +02:00
iglocska 11c9900580
chg: revert 2022-05-17 09:24:37 +02:00
iglocska 23c41008d4
chg: [audit logs] fix test 2022-05-17 09:23:08 +02:00
iglocska 8cf325d263
fix: [audit logs] monkey fix for the missing fields when coming from a CLI query 2022-05-17 09:06:16 +02:00
iglocska 4575406b33
fix: [users] edit
- various issues fixed with the edit function
- re-added the chance to change organisations of a user as a site admin
- tighter checks on the options for the drop downs
2022-05-17 04:02:06 +02:00
iglocska 32a559cc3b
new: [keycloak] command line tool
- automateable sync
- fixed various issues
- added logging of issues
2022-05-17 04:01:10 +02:00
iglocska 5a965c5ffd
new: [keycloak] sync added
- created/updates users
- creates/updates/removes roles
- creates/updates/removes orgs
2022-05-17 02:42:14 +02:00
Sami Mokaddem 2289e91aca
fix: [component:CRUD] Avoid patching entity if it wasn't modified 2022-03-09 12:01:15 +01:00
Sami Mokaddem 3e4d0a4544
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-03-09 11:44:26 +01:00
Sami Mokaddem 938354119b
fix: [metaFields] Added timestamp behavior 2022-03-09 11:15:41 +01:00
Luciano Righetti c0a76d3f99 fix: error when entity has no meta_fields 2022-03-09 09:27:53 +01:00
Sami Mokaddem 61736531b1
chg: [indexTable:context_filters] Support of default context filter
This filter is used by default if none is provided
2022-03-09 08:55:59 +01:00
Sami Mokaddem 39d89efb53
chg: [meta-template:update] Default update strategy to be `create_new` 2022-03-09 08:21:27 +01:00
Sami Mokaddem 7a16c2c792
fix: [metaTemplate:view] Repair `Field` child 2022-03-08 17:49:18 +01:00
Sami Mokaddem 033792396c
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-03-08 17:13:19 +01:00
Sami Mokaddem 503b9e53b7
chg: [instance:getStatistics] Usage of cake's FrozenTime instead of DateTime 2022-03-08 16:51:10 +01:00
Sami Mokaddem f6900b0843
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2022-03-08 16:04:14 +01:00
Luciano Righetti e5d0ffa041 fix: remove filter 2022-03-08 15:55:23 +01:00
Luciano Righetti 1a5ee2767f fix: remove commented line 2022-03-08 15:54:38 +01:00
Luciano Righetti 9a2c6a4c4b new: add api tests for MetaTemplates and openapi spec, fix minor issues. 2022-03-08 15:51:07 +01:00
Sami Mokaddem c064ca6f53
fix: Bumped ACLComponent 2022-03-01 15:23:44 +01:00
Sami Mokaddem 71cd1e307d
chg: [Component:CRUD] Only show used meta-template in view pages 2022-03-01 15:21:56 +01:00
Sami Mokaddem 5fa0280f15
fix: [sharingrGroup:delete] Missing params variable 2022-03-01 14:08:16 +01:00
Sami Mokaddem f8c8bbcb0b
fix: [component:CRUD] Fixed typo massageMetaFields 2022-03-01 14:07:20 +01:00
Sami Mokaddem 0fb03aae91
fix: [Component:CRUD] Removed confusing `get` parameter
- It was confusing and using it could lead to unwanted consequences
- It's clearer to implement the desired logic on controller's side
2022-03-01 14:02:26 +01:00
Sami Mokaddem b91f4b5d01
chg: [settingProvider:cerebrate] Typo in `password_auth.enabled`'s name 2022-03-01 13:56:54 +01:00
Sami Mokaddem a78864912e
chg: [metaTemplates:computeConflicts] Usage of subqueries instead of array of IDs 2022-03-01 11:32:30 +01:00
Sami Mokaddem 134b7bfc3e
chg: [metafields] Passed argument can either be an object or array 2022-03-01 11:30:22 +01:00
Sami Mokaddem bb94765243
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-03-01 09:52:57 +01:00
Sami Mokaddem 505e9a0973
chg: [metaFields] Added metafield type validation 2022-03-01 09:52:27 +01:00
Sami Mokaddem 713f867082
chg: [component:CRUD] Better validation messages 2022-03-01 09:51:51 +01:00
Sami Mokaddem 4b5b2bc7e2
chg: [behaviors:metafields] Moved type handlers to the meta-template-fields table 2022-03-01 09:49:33 +01:00
Sami Mokaddem ad6362eed4
chg: [instance:searchAll] Sharinggroup filter on org membership in addition to owner 2022-02-28 14:35:06 +01:00
Sami Mokaddem bc04fd0336
fix: [instance:searchAll] Get the correct count if after filter is applied 2022-02-28 14:34:14 +01:00
Sami Mokaddem 8450e83607
chg: [sharingroup:index] Changed conditions allowing member org to view a sharing group
Previously only the SG owner could see the SG
2022-02-28 14:23:40 +01:00
Sami Mokaddem b628bc38ae
fix: [sharinggroups:view] Typo skipping org membership check 2022-02-28 14:23:00 +01:00
Sami Mokaddem 8293312f90
fix: [instance:search_all] Support of conditions and afterFind when using global search 2022-02-28 14:16:12 +01:00
Sami Mokaddem aa351b3ccb
fix: [Component:CRUD] Prevent duplication of first metafield if it was unmodified 2022-02-28 11:08:42 +01:00
Sami Mokaddem c13fb53ae0
chg: [organisations] Added meta-field global filtering 2022-02-28 10:50:04 +01:00
Sami Mokaddem 4b95b49854
fix: [behavior:metafields] Switch to text filtering if meta-template-field is not provided 2022-02-28 10:49:34 +01:00
iglocska 61cda0af33
fix: [minor fixes] with the keycloak integration 2022-02-28 10:27:17 +01:00
iglocska 8a6f0ed751
fix: [settings] invalid setting name fixed 2022-02-28 10:23:23 +01:00
Sami Mokaddem 3ef64911f9
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-02-28 09:51:51 +01:00
Sami Mokaddem 9fe7f06265
new: [metafields-types:ipv6] Support of ipv6 2022-02-28 09:45:43 +01:00
Sami Mokaddem 0363a91310
chg: [metafield-type:ipv4] Usage of Cdir tool 2022-02-28 09:42:49 +01:00
Sami Mokaddem 97501642b8
new: [tools:CidrTool] Ported CidrTool from MISP 2022-02-28 09:42:09 +01:00
Sami Mokaddem 7c153e6164
chg: [metafield-types:ipv4] Improved logics 2022-02-28 09:40:19 +01:00
Sami Mokaddem 4089623eaa
chg: [users] Removed useless imports 2022-02-28 09:37:29 +01:00
iglocska 5734d74a17
Merge branch 'develop' into main 2022-02-28 08:27:54 +01:00
iglocska 1e6b6a5abc
fix: [settings] added test for keycloak enabled
- always require one auth method to be enabled
2022-02-28 08:27:22 +01:00
iglocska 498efcf671
Merge branch 'develop' into main 2022-02-28 08:21:11 +01:00
Sami Mokaddem 04b82d356e
chg: [indexTable:filtering] Initial work on supporting custom operators 2022-02-25 15:36:55 +01:00
Sami Mokaddem 6cb9887f03
new: [metaFields] Support of meta-fields types 2022-02-25 15:22:57 +01:00
iglocska 9d04533e14
chg: [users] restrict org admins from creating other org admins
- temporary solution for a single community, make this optional in the future
2022-02-25 10:20:25 +01:00
Sami Mokaddem a9570426db
fix: [component:CRUD] Fix edit where query parameters where not passed correctly
It fixes meta-fields duplication while saving
2022-02-25 08:19:01 +01:00
iglocska 4902a3f8a6
new: [password auth] added setting to disable password auth
- not needed in some cases for keycloak enabled instances
2022-02-25 00:33:00 +01:00
iglocska 79459838eb
chg: [user add] if no password was set, set a random one
- can't be used so far as we have no emailing in place
- it allows user creation when username/password mode is disabled
2022-02-25 00:31:19 +01:00
iglocska 6f6c10670e
new: [CRUD] added beforeMarshal hook 2022-02-25 00:30:50 +01:00
iglocska 3790244ce4
new: [individuals] new finder method to find by alignment 2022-02-24 13:47:08 +01:00
iglocska 8fdb8668c8
fix: [alignments] saving of the alignment was omitted before 2022-02-24 13:46:35 +01:00
iglocska 828946a97f
new: [users] several changes
- make usernames immutable
- restrict user creation to aligned individuals (org admin only)
- optionally create individual while creating a user
2022-02-24 13:45:10 +01:00
Sami Mokaddem 64cb0f920a
chg: [mailinglist] Added ACL conditions on mailing list operations
- Site admins have all authorizations
- Org admins can manipulate the list their user own (can be later replaced by organisation_id instead of user_id)
- Other users can see the all lists they are included in
2022-02-23 10:03:12 +01:00
Sami Mokaddem d2c98fc3c5
chg: [Component:ACL] Added entries for mailing list 2022-02-23 10:01:18 +01:00
Sami Mokaddem ba047885c9
chg: [Component:ACL] Added entry for audit log filtering 2022-02-23 10:00:42 +01:00
Sami Mokaddem 20d896ad47
chg: [Component:CRUD] Allow to filter out rows from the index with afterFind
Filtering can be achieved by returning `false` instead of the row in the `afterFind` function
2022-02-23 09:58:55 +01:00
Sami Mokaddem bf3e31c59a
fix: [Component:CRUD] Typo in merge conflict 2022-02-23 08:18:08 +01:00
Sami Mokaddem 4e4cb34b22
chg: [metaTemplates] Removed comment 2022-02-21 15:42:23 +01:00
Sami Mokaddem bce4c5fde9
chg: [Component:CRUD] Removed comment and init correct variable type 2022-02-21 11:51:05 +01:00
Sami Mokaddem aeac86cb52
chg: [Component:CRUD] Typo 2022-02-21 11:48:41 +01:00
Sami Mokaddem 7ea5acb167
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-02-21 11:17:05 +01:00
iglocska b67c221476
fix: [copy pasta fail] left previous assignment in that is now superseeded by the if branch above 2022-02-20 15:07:58 +01:00
iglocska 3af0b0afc5
fix: [misp connector] validations with notEmpty() deprecated, replaced with notEmptyString() 2022-02-20 15:02:07 +01:00
iglocska e2bb58d3c7
fix: [flood protection] default to 127.0.0.1 if no remote_addr is set as we're dealing with a local CLI script 2022-02-20 15:00:15 +01:00
iglocska c005cb7f66
fix: [error code] adding an authkey for a user you are not authorised to modify resulted in a 404 instead of a 405 2022-02-20 14:56:21 +01:00
iglocska b046990153
fix: [flood protection] default to REMOTE_ADDR if the selected default logging IP source header is not populated 2022-02-20 11:49:57 +01:00
iglocska 3745739158
chg: [flood protection] Changed the description of the setting based on the used IP source
- added a warning about the IP source setting affecting the efficacy of the flood protection in regards to an attacker being potentially able to spoof their IP
- Warn the admin to make sure that the reverse proxy used (the main reason to use the alternate headers in the first place) needs to be configured to correctly overwrite the header

- as reported by Dawid Czarnecki of Zigrin Security
2022-02-19 01:42:24 +01:00
iglocska 283299bf36
fix: [security] flood protection control enabled by default
- as reported by Dawid Czarnecki from Zigrin Security
2022-02-19 01:34:07 +01:00
iglocska 6e67a5b239
fix: [security] Sharing group creation on behalf of other organisation fixed
- org admin could create sharing groups on behalf of other organisations
- can lead to misleading sharing groups being created

- as reported by Dawid Czarnecki of Zigrin Security
2022-02-19 01:21:29 +01:00
iglocska b41b0dd712
fix: [security] privilege escalation via user edit fixed
- org admins could circumvent the role restrictions and elevate themselves to a site admin

- as reported by Dawid Czarnecki from Zigrin Security
2022-02-19 01:02:49 +01:00
iglocska 2da9d8f7d2
new: [keycloak] log enrollment outcome in the audit log 2022-02-18 11:47:33 +01:00
Sami Mokaddem 20907a45da
chg: [organisation] Removed useless class variable 2022-02-09 15:41:58 +01:00
Sami Mokaddem d8807cce92
chg: [behavior:meta-fields] Renamed finder function 2022-02-09 15:18:24 +01:00
Sami Mokaddem a77e29fa38
new: [layout:sidebar] Notifications in the sidebar 2022-02-08 17:58:30 +01:00
Sami Mokaddem d1cf408163
new: [helpers:bootstrap] Added notification bubble 2022-02-08 17:57:20 +01:00
Sami Mokaddem 62ca877f0b
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-02-08 08:42:25 +01:00
Sami Mokaddem b01d75aaa6
fix: [helpers:bootstrap] Support of cell variant in table 2022-02-07 13:25:33 +01:00
Sami Mokaddem ad3e89199b
chg: [settingTable] Added value validation before saving the setting 2022-02-07 12:01:07 +01:00
Sami Mokaddem 336dfb091c
chg: [settingTable] Gracefully handle if file not writeable 2022-02-07 11:11:25 +01:00
Sami Mokaddem 14ec995c2b
fix: [userSettings] Perform URI validation for bookmarks
- As reported by Dawid Czarnecki from Zigrin Security
2022-02-07 10:48:55 +01:00
iglocska c7b226f844
chg: [flood protection] added cleanup 2022-02-07 02:14:53 +01:00
iglocska d45a4dc499
new: [registration] added optional registration flood protection
- As reported by Dawid Czarnecki from Zigrin Security
2022-02-07 02:03:41 +01:00
iglocska e6643365d2
new: [flood protection] behaviour added
simple expiration system to allow flood protections to be added to any functionality
2022-02-07 02:01:59 +01:00
iglocska a9c1619bda
new: [Exception] 429 added 2022-02-07 01:59:33 +01:00
iglocska 88f3cc7944
fix: [security] user settings allow enumeration of usernames
- as reported by Dawid Czarnecki from Zigrin Security
2022-02-04 00:45:42 +01:00
iglocska a263234917
fix: [security] open endpoints should only be open when enabled
- as reported by Dawid Czarnecki from Zigrin Security
2022-02-04 00:36:31 +01:00
iglocska 15190b930e
fix: [security] Sharing group ACL fixes
- added indirect object reference protection
- added correct ACL functionalities to delete, addOrg, removeOrg

- as reported by Dawid Czarnecki from Zigrin Security
2022-02-04 00:16:24 +01:00
iglocska 5fbd53883f
fix: [sync] created field rules added
- should stop issues of SG/Individual downloads from remote brood
2022-01-31 09:35:33 +01:00
iglocska 788feab011
chg: [Version] bump 2022-01-27 22:12:35 +01:00
iglocska cf67c3d1f0
fix: [roles] setting default should be exclusive
- added aftersave action to remove default from other roles
2022-01-27 22:06:26 +01:00
iglocska 1ca0f21b86
chg: [user add] form defaults
- org will default to own org for site admins
- role will default to the default role (if set)
2022-01-27 21:54:59 +01:00
iglocska 93d4917953
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2022-01-27 21:00:32 +01:00
iglocska c983c6f130
fix: [Keycloak baseurl] remove trailing slashes 2022-01-27 20:59:58 +01:00
iglocska eb5f7aa675
chg: [base settings provider] pass settings by reference for evaluation
- opens it up for modifications by the hooking functions
2022-01-27 20:59:20 +01:00
iglocska 7834ab3d62
chg: [settingsTable] Use settings array for the actual saving in saveSetting
- allows us to modify a value in the processing steps before the value is committed to disk
2022-01-27 20:57:35 +01:00
Andras Iklody 6443f36650
Merge pull request #86 from righel/add-inter-connection-tests
Add inter-connection test
2022-01-27 16:13:35 +01:00
Sami Mokaddem 7de1c14407
chg: [userSettings:add] Adhere to the passed user context 2022-01-27 10:44:47 +01:00
Sami Mokaddem 789bd9926f
chg: [navigation:users] Restored breadcrumb navigation to access user profile settings 2022-01-27 08:41:31 +01:00