Commit Graph

65 Commits (367012af3670feea9536d8be9ec1766d03fc32fd)

Author SHA1 Message Date
Sami Mokaddem 9be8105565
chg: [config] Force usage of secure cookie for session and csrf protection 2023-09-04 10:30:51 +02:00
iglocska 011f7f452c
new: [enumerations] schema update added 2023-05-26 16:01:01 +02:00
Sami Mokaddem 53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
2022-12-07 14:54:28 +01:00
Sami Mokaddem b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown 2022-11-14 14:53:02 +01:00
Sami Mokaddem 7d6696e079
new: [metaFields] Adding support of sane_default + improving form & crud - WiP 2022-11-14 09:04:35 +01:00
iglocska 951fbeaee5
fix: [audit logs] change field changed to mediumblob
- AAAAAAAaaaaaaaaaaaaaaaaaAAAAAAAAAAAAAAAAAAaaaaaaaaaaAAAAAAAAAAaaaaaaaaAAAAAAAAAAAAaaargh
2022-11-11 15:57:03 +01:00
iglocska b697c527b4
fix: [pgp key length] extended to mediumtext
- Some people drive BMWs, some have pgp keys that exceed the limits of TEXT
2022-11-11 15:51:32 +01:00
iglocska 0d2b4f107d
new: [permission limitations] upgrade script added 2022-11-09 14:10:33 +01:00
Sami Mokaddem 00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column 2022-10-25 14:38:16 +02:00
Sami Mokaddem f37cea1cad
fix: [migration:unique_usernames] Table 'users' is specified twice, both as a target and as a separate source 2022-09-20 11:13:24 +02:00
iglocska 9a50a5693e
fix: [users] added uniqueness to usernames
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)

- As reported by SK-CERT
2022-09-19 01:12:14 +02:00
iglocska af1e2fd632
new: [security] Bruteforce protection added
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP

- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
iglocska 6bd9d7d2f0
chg: [error handler] changed to conform with 4.4 2022-08-17 13:46:59 +02:00
Sami Mokaddem 2859977756
chg: [config:bootstrap] Only get file content if config.json exists 2022-06-08 12:23:35 +02:00
Sami Mokaddem 3c177254d0
chg: [migration] Finalized more-metafields-column script 2022-02-21 11:32:17 +01:00
Sami Mokaddem 62ca877f0b
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-02-08 08:42:25 +01:00
iglocska d1cdbda972
fix: [migrations] initial schema migration fixed for upgrades
- check if a table has already been created and block the execution for instances that get updated from before the initial schema was retroactively added
2022-02-07 02:00:35 +01:00
iglocska 6a2b764b97
new: [flood protection] schema added 2022-02-07 01:59:58 +01:00
Luciano Righetti 6e4dc3a6cd add: github action test workflow 2022-01-20 16:23:48 +01:00
Sami Mokaddem 324ac1ce40
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into refactor-metatemplates 2022-01-20 09:00:45 +01:00
Luciano Righetti 25b7d167f1 chg: remove the /api/v1 prefix for api endpoints 2022-01-19 16:22:44 +01:00
Luciano Righetti f774f68ede add: add api tests for tags and orgs, extend openapi spec, fix routes for tags plugin 2022-01-11 12:33:34 +01:00
Luciano Righetti 3923064d07 chg: migrate mysql.sql initial schema to a phinx migration 2022-01-07 14:37:04 +01:00
Luciano Righetti a69608530c new: add /api openapi spec view with redoc, add faker to fixtures, validate api responses with openapi spec, add /api/v1/ prefix to api routes 2022-01-07 13:45:52 +01:00
Luciano Righetti a473a9d3fb new: initial api and integration tests. 2022-01-05 17:44:02 +01:00
Sami Mokaddem 02cc0c30a3
chg: [metaTemplate] Major refactoring and documentation - WiP 2021-12-14 15:09:40 +01:00
Sami Mokaddem e119610ed5
chg: [migration] Meta-templates can have duplicated UUID thanks to their version 2021-12-08 11:13:16 +01:00
iglocska cc5c750de8
chg: [audit log] change field renamed to changed
- change is a reserved keyword
- this way quoting of field names is no longer needed in the cakePHP settings
2021-11-25 00:57:31 +01:00
iglocska b981b3f942
fix: [conflict] resolved in user_org update script 2021-11-25 00:43:22 +01:00
iglocska 1ee895cedf
Merge branch 'main' into develop 2021-11-25 00:36:25 +01:00
iglocska b009191aa6
fix: [migrations] user org further fixes 2021-11-24 23:39:27 +01:00
iglocska 94457d3b97
fix: [migration] userorg migration fixed 2021-11-24 23:36:24 +01:00
Sami Mokaddem 999f4c8539
fix: [migration:user_org] Fixed if org_id column does not exist 2021-11-24 22:49:40 +01:00
iglocska 9619989a94
new: [migration] organisation_id added to users
- also, grab the first org for a default
2021-11-24 01:24:25 +01:00
iglocska 72bd564120
new: [migration] scripts added
- also updated mysql.sql
2021-11-17 15:40:44 +01:00
Sami Mokaddem c55088aa85
chg: [metaTemplate] Continuation of refactoring - WiP
Editing meta field from entities working
2021-11-04 08:10:32 +01:00
DocArmoryTech 8df9708258
Added missing 'Cerebrate' section
Second part of resolution to Issue #75

Added missing Cerebrate config section to resolved the following error:

```
warning: Warning (2): in_array() expects parameter 2 to be array, null given in [/var/www/cerebrate/src/Controller/Component/Navigation/sidemenu.php, line 130]
Request URL: /users/login
Referer URL: http://127.0.0.1:8000/users/login?redirect=%2F
Client IP: 127.0.0.1
```
2021-10-28 22:23:38 +01:00
Sami Mokaddem 4ef6738053
chg: [mailinglist] Improved feature
Previously, emails were stored as json encoded string. To add more flexibility and prevent inconsistencies (such as propagating email changes to the mailing list), it has been moved to a table.
2021-10-28 09:00:20 +02:00
Sami Mokaddem fe9fbe2e99
new: [mailing-list] Added mailing list feature - WiP 2021-10-25 16:20:36 +02:00
iglocska 5a7f7dfc25
Merge branch 'develop' into main 2021-10-21 13:47:06 +02:00
Sami Mokaddem 9f269f683e
chg: [installation] Improvement installation instructions 2021-10-21 13:43:11 +02:00
iglocska d8b2de7460
chg: [settings] fixes
- use a JSON file for the config
- stop using cake4 dump/load for the process
- move settings back to the root level
- Research Flyer Carapace level 1
2021-10-21 10:58:07 +02:00
Sami Mokaddem 39fdb8ec0d
new: [user-settings] Added user settings feature 2021-10-08 10:27:40 +02:00
iglocska 99a89977c8
Merge branch 'keycloak' into develop-unstable 2021-10-01 13:53:14 +02:00
iglocska f60e411af1
new [keycloak]: WiP user enrollment added
- also moved the keycloak specific functionalities to a behaviour
- added new role permission (org admin)
2021-10-01 13:19:26 +02:00
mokaddem 348792c815 chg: [app] Added timestamp behavior for multiple models 2021-09-28 13:32:51 +02:00
mokaddem b4fdc625da chg: [setting] Support of themes in settings 2021-09-18 11:21:50 +02:00
iglocska 943e184642
chg: [app_local] config defaults 2021-08-11 13:58:12 +02:00
mokaddem 9662e15afe chg: [setting:cerebrate] Remove useless line 2021-07-30 15:21:31 +02:00
mokaddem 14c70a092f new: Decoupled Cerebrate settings from application settings
And included an example of setting provider
2021-07-30 15:12:54 +02:00