iglocska
003053f13d
new: [API rearrange] added a simplifier for commonly used objects
...
- let's only return the subset of the data required to identify and retrieve the related data
2022-11-04 09:58:55 +01:00
iglocska
540fd63423
fix: [API] cleaned up the individual API
2022-11-04 09:33:39 +01:00
iglocska
7504bfab10
fix: [API] rearrange component - handle collections correctly
...
- return a new collection with the individual values transferred to it after changes
- avoids some weird quirks with unsetting related Objects not taking effect
2022-11-04 09:31:46 +01:00
iglocska
73ad04906a
fix: [typo] capitalisation mistake blocking org edits
2022-11-02 12:11:56 +01:00
iglocska
11510ea28f
new: [individual] editing enabled for org admins
...
- requires that a user exist for the given individual
2022-10-31 14:42:58 +01:00
iglocska
675b6f29e9
new: [cnw] meta template for permissions
...
- first revision
2022-10-31 13:40:49 +01:00
iglocska
8dbbb21dff
chg: [users] add metafields behaviour
2022-10-31 13:38:31 +01:00
iglocska
5ec0471cce
chg: [keycloak mapper] also pushes default mappings if they don't exist
2022-10-31 13:36:53 +01:00
iglocska
ce6575cfb6
chg: [User] Entity - added rearrangeForAPI() to rearrange meta fields
2022-10-31 13:26:44 +01:00
iglocska
2a31e39762
new: [keycloak] automatically set mappings
2022-10-31 13:26:12 +01:00
iglocska
3bf52c701f
chg: [keycloak] sync script updated
2022-10-31 11:32:15 +01:00
iglocska
2f4b6ed2ff
chg: [keycloak] integration rework
...
- switch to the use of attributes
- several minor fixes
2022-10-31 11:31:38 +01:00
iglocska
9c41fd548f
fix: [auth] added keycloak logout
2022-10-25 15:08:41 +02:00
iglocska
9a8372be12
fix: [return type] validation removed
2022-10-25 11:01:23 +02:00
iglocska
84537c52f9
new: [user enrollment] send keycloak welcome email to users when enrolled
2022-10-25 10:57:18 +02:00
Sami Mokaddem
b555aed178
chg: [auditLog:entity] unset useless noise from user-settings
2022-10-21 16:06:09 +02:00
Sami Mokaddem
fc0920c7c3
chg: [component:APIRearrange] Rearrange for all iterators
2022-10-21 15:56:53 +02:00
Sami Mokaddem
d1d88391e1
fix: [auditlogs:index] Typo preventing showing the `changed` field
2022-10-21 15:55:31 +02:00
Sami Mokaddem
cfae8cb914
chg: [indexTable:indexStatistic] better support of themes
2022-10-21 15:36:08 +02:00
Sami Mokaddem
25b6db7303
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop
2022-10-21 15:31:41 +02:00
Sami Mokaddem
5389f02b4f
new: [scss:boostrap-additional] Added `btn-outline-text` to ease integration with themes
2022-10-21 15:29:45 +02:00
iglocska
41a241cada
new: [pgp] library ported from MISP
...
- added proper view elements for encryption keys
- added key information extraction
2022-10-21 15:25:52 +02:00
Sami Mokaddem
815e3e0671
fix: [metaTemplates:updateAll] Fixed missing form preventing to update
2022-10-21 14:15:08 +02:00
Sami Mokaddem
ddfc83af6f
chg: [navigation:socialProvider] Improved UI for SSO profile management
2022-10-21 14:14:38 +02:00
Sami Mokaddem
0f27435251
fix: [metaTemplates] Correctly show update message
2022-10-21 14:07:41 +02:00
Sami Mokaddem
455daba4d4
fix: [navigation:meta-template] Correctly show badge for new templates
2022-10-21 14:06:46 +02:00
Sami Mokaddem
a091edbf22
fix: [user:beforeSave] Only call the user-update callback if the user is not new
2022-10-21 09:00:49 +02:00
Sami Mokaddem
c65978f8f2
fix: [behavior:authKeycloak] Correctly check if the user was saved
2022-10-21 08:59:36 +02:00
Sami Mokaddem
96041cc71a
chg: [genericIndex:select_visible_columns] Show meta-template versions
2022-09-29 17:54:58 +02:00
Sami Mokaddem
21403995e3
new: [user:edit] Added keycloak updates when a user gets modified
2022-09-21 10:11:09 +02:00
Sami Mokaddem
37094e0abb
fix: [user:validation] Allow user edition when `username` is not set
2022-09-21 10:10:02 +02:00
Sami Mokaddem
80277e4bdf
chg: [command:keycloakSync] Make sure User model is loaded
2022-09-21 10:09:12 +02:00
Sami Mokaddem
f2db6b3b5e
chg: [users:add] Missing comma
2022-09-21 10:08:40 +02:00
Sami Mokaddem
2c87b1e500
fix: [authKeycloakBehavior] Added missing association preventing user to log via keycloak
2022-09-21 10:07:51 +02:00
Sami Mokaddem
69fee02498
fix: [authKeycloakBehavior] Re-indexing array preventing roles to be parsed by keycloak
2022-09-21 10:06:33 +02:00
Sami Mokaddem
efe917c824
fix: [authKeycloakBehavior] Typo preventing roles to be saved
2022-09-21 10:05:55 +02:00
Sami Mokaddem
8d26be28a2
chg: [auditlogs:index] Reverse sort by ID
2022-09-20 15:31:42 +02:00
Sami Mokaddem
f37cea1cad
fix: [migration:unique_usernames] Table 'users' is specified twice, both as a target and as a separate source
2022-09-20 11:13:24 +02:00
iglocska
760badd268
fix: [alignments] missing contains added
2022-09-19 02:17:36 +02:00
iglocska
fd6d3466d7
fix: [authkey] should only be used in a rest context
...
- otherwise some weird authentication snafus can happen
- as reported by SK-CERT
2022-09-19 02:14:57 +02:00
iglocska
3b215a5ec0
fix: [alignments] fixed invalid urls in alignment fields lacking a /
...
- as reported by SK-CERT
2022-09-19 01:59:23 +02:00
iglocska
4c0c6ef4ac
fix: [counter graphs] fixed to disallow invalid interval entries
...
- as reported by SK-CERT
2022-09-19 01:46:57 +02:00
iglocska
ca65c4b68e
fix: [alignments] added an index view template
...
- Can't see any usefulness in this, but why not
- As reported by SK-CERT
2022-09-19 01:39:38 +02:00
iglocska
5e0ab5cc38
new: [users] username validation added
...
- >5 && <50 in length required
- trim username to test to avoid whitespace names
- as reported by SK-CERT
2022-09-19 01:22:53 +02:00
iglocska
9a50a5693e
fix: [users] added uniqueness to usernames
...
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)
- As reported by SK-CERT
2022-09-19 01:12:14 +02:00
iglocska
a9eccb3097
fix: [security] X-FRAME-OPTIONS: DENY added to all responses
...
- as reported by SK-CERT
2022-09-19 01:11:18 +02:00
iglocska
af1e2fd632
new: [security] Bruteforce protection added
...
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP
- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
iglocska
07a8d1dfcb
chg: [dead variable] removed
2022-09-19 00:24:29 +02:00
iglocska
254fdc3b84
chg: [security] keycloak enabled - disallow multiple users from being created for the same individual
...
- as reported by SK-CERT
2022-09-18 19:26:24 +02:00
iglocska
10ea126a93
fix: [security] KeyCloak login getUser fixes
...
- removed dead code
- tightened check on the user profile, if the KC user's email address and that of the Cerebrate user disagree, block the authentication
- as reported by SK-CERT
2022-09-18 18:51:05 +02:00