Commit Graph

77 Commits (6270ae8e18228146ae0c33319381dca0ab82a65a)

Author SHA1 Message Date
iglocska 6270ae8e18
new: [metafield editor permission] added
- users/org admins/group admins/community admins can now only modify metafield data on any object if the permission is set for their role
- Since some communities use this for ACL to secondary tools, this will allow them to restrict who can modify them
2024-08-24 16:25:58 +02:00
iglocska 25e55a620b
chg: [migration] minor fix for rerunability 2024-08-24 15:47:53 +02:00
iglocska 2655241265
new: [extended logger] added
- Added more information about the request to the stack traces
- logs user name / ID
- logs request x-forwarded-for
2024-06-18 13:39:38 +02:00
iglocska deae8bad3b
fix: [encryption keys] allow for large keys
- @adulau has a massive... key.
2024-05-16 10:05:24 +02:00
iglocska 6907ed2842
fix: [settings] invalid bootstrap loading of config.json
- it was dependent on the app_local.php file existing
2024-05-15 13:15:56 +02:00
Sami Mokaddem 2c8c967c06
fix: [app:bootstrap] Automatically cast `debug` setting in bootstrap.php to migrate config 2024-04-09 12:47:45 +02:00
Sami Mokaddem f0ba0d8316
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop 2023-11-02 08:10:01 +01:00
Sami Mokaddem 63593cfd56
new: [CRUD:index] Allow exporting data into csv
- Added CSVConverter tool and CSV server request detector
2023-11-02 08:08:06 +01:00
iglocska 9305e7ceea
chg: [wip] sharing group rework / MISP connector improvements 2023-10-31 14:54:08 +01:00
Luciano Righetti eb95c44528
Merge pull request #151 from righel/fix-test-action
fix: fix test workflow action
2023-09-14 16:16:55 +02:00
iglocska 16a4a1cde5
new: [org Groups] added
- Org Groups allow user co-management of sub communities
  - Create an org group with a set of organisations
  - assign administrators to an org group
  - org group admins can modify users of the group
2023-09-12 09:26:07 +02:00
Sami Mokaddem 9be8105565
chg: [config] Force usage of secure cookie for session and csrf protection 2023-09-04 10:30:51 +02:00
iglocska 011f7f452c
new: [enumerations] schema update added 2023-05-26 16:01:01 +02:00
Luciano Righetti 9b7c693bb9 fix: fix some deprecation notices in 8.2 2023-04-06 17:59:22 +02:00
Sami Mokaddem 53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
2022-12-07 14:54:28 +01:00
Sami Mokaddem b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown 2022-11-14 14:53:02 +01:00
Sami Mokaddem 7d6696e079
new: [metaFields] Adding support of sane_default + improving form & crud - WiP 2022-11-14 09:04:35 +01:00
iglocska 951fbeaee5
fix: [audit logs] change field changed to mediumblob
- AAAAAAAaaaaaaaaaaaaaaaaaAAAAAAAAAAAAAAAAAAaaaaaaaaaaAAAAAAAAAAaaaaaaaaAAAAAAAAAAAAaaargh
2022-11-11 15:57:03 +01:00
iglocska b697c527b4
fix: [pgp key length] extended to mediumtext
- Some people drive BMWs, some have pgp keys that exceed the limits of TEXT
2022-11-11 15:51:32 +01:00
iglocska 0d2b4f107d
new: [permission limitations] upgrade script added 2022-11-09 14:10:33 +01:00
Sami Mokaddem 00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column 2022-10-25 14:38:16 +02:00
Sami Mokaddem f37cea1cad
fix: [migration:unique_usernames] Table 'users' is specified twice, both as a target and as a separate source 2022-09-20 11:13:24 +02:00
iglocska 9a50a5693e
fix: [users] added uniqueness to usernames
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)

- As reported by SK-CERT
2022-09-19 01:12:14 +02:00
iglocska af1e2fd632
new: [security] Bruteforce protection added
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP

- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
iglocska 6bd9d7d2f0
chg: [error handler] changed to conform with 4.4 2022-08-17 13:46:59 +02:00
Sami Mokaddem 2859977756
chg: [config:bootstrap] Only get file content if config.json exists 2022-06-08 12:23:35 +02:00
Sami Mokaddem 3c177254d0
chg: [migration] Finalized more-metafields-column script 2022-02-21 11:32:17 +01:00
Sami Mokaddem 62ca877f0b
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-02-08 08:42:25 +01:00
iglocska d1cdbda972
fix: [migrations] initial schema migration fixed for upgrades
- check if a table has already been created and block the execution for instances that get updated from before the initial schema was retroactively added
2022-02-07 02:00:35 +01:00
iglocska 6a2b764b97
new: [flood protection] schema added 2022-02-07 01:59:58 +01:00
Luciano Righetti 6e4dc3a6cd add: github action test workflow 2022-01-20 16:23:48 +01:00
Sami Mokaddem 324ac1ce40
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into refactor-metatemplates 2022-01-20 09:00:45 +01:00
Luciano Righetti 25b7d167f1 chg: remove the /api/v1 prefix for api endpoints 2022-01-19 16:22:44 +01:00
Luciano Righetti f774f68ede add: add api tests for tags and orgs, extend openapi spec, fix routes for tags plugin 2022-01-11 12:33:34 +01:00
Luciano Righetti 3923064d07 chg: migrate mysql.sql initial schema to a phinx migration 2022-01-07 14:37:04 +01:00
Luciano Righetti a69608530c new: add /api openapi spec view with redoc, add faker to fixtures, validate api responses with openapi spec, add /api/v1/ prefix to api routes 2022-01-07 13:45:52 +01:00
Luciano Righetti a473a9d3fb new: initial api and integration tests. 2022-01-05 17:44:02 +01:00
Sami Mokaddem 02cc0c30a3
chg: [metaTemplate] Major refactoring and documentation - WiP 2021-12-14 15:09:40 +01:00
Sami Mokaddem e119610ed5
chg: [migration] Meta-templates can have duplicated UUID thanks to their version 2021-12-08 11:13:16 +01:00
iglocska cc5c750de8
chg: [audit log] change field renamed to changed
- change is a reserved keyword
- this way quoting of field names is no longer needed in the cakePHP settings
2021-11-25 00:57:31 +01:00
iglocska b981b3f942
fix: [conflict] resolved in user_org update script 2021-11-25 00:43:22 +01:00
iglocska 1ee895cedf
Merge branch 'main' into develop 2021-11-25 00:36:25 +01:00
iglocska b009191aa6
fix: [migrations] user org further fixes 2021-11-24 23:39:27 +01:00
iglocska 94457d3b97
fix: [migration] userorg migration fixed 2021-11-24 23:36:24 +01:00
Sami Mokaddem 999f4c8539
fix: [migration:user_org] Fixed if org_id column does not exist 2021-11-24 22:49:40 +01:00
iglocska 9619989a94
new: [migration] organisation_id added to users
- also, grab the first org for a default
2021-11-24 01:24:25 +01:00
iglocska 72bd564120
new: [migration] scripts added
- also updated mysql.sql
2021-11-17 15:40:44 +01:00
Sami Mokaddem c55088aa85
chg: [metaTemplate] Continuation of refactoring - WiP
Editing meta field from entities working
2021-11-04 08:10:32 +01:00
DocArmoryTech 8df9708258
Added missing 'Cerebrate' section
Second part of resolution to Issue #75

Added missing Cerebrate config section to resolved the following error:

```
warning: Warning (2): in_array() expects parameter 2 to be array, null given in [/var/www/cerebrate/src/Controller/Component/Navigation/sidemenu.php, line 130]
Request URL: /users/login
Referer URL: http://127.0.0.1:8000/users/login?redirect=%2F
Client IP: 127.0.0.1
```
2021-10-28 22:23:38 +01:00
Sami Mokaddem 4ef6738053
chg: [mailinglist] Improved feature
Previously, emails were stored as json encoded string. To add more flexibility and prevent inconsistencies (such as propagating email changes to the mailing list), it has been moved to a table.
2021-10-28 09:00:20 +02:00