Sami Mokaddem
c2e9fd3b75
chg: [meta-template:index] Added link to metaTemplateNameDirectory
2023-03-13 11:38:32 +01:00
Sami Mokaddem
47bebe5b68
chg: [metaTemplate:update] Gracefully handle case when template on disk is not readable
2023-03-13 11:37:58 +01:00
Sami Mokaddem
acb66ac4a0
fix: [individuals:delete] Gracefully catches deletion of individuals associated to a user
2023-03-13 08:05:32 +01:00
Sami Mokaddem
3ca6b68429
fix: [acl:metaTemplate] Added missing entry
2023-02-27 12:17:04 +01:00
Sami Mokaddem
6fc568e80e
new: [metaTemplateNameDirectory] Added index to see the known template and their associated saved meta-templates
2023-02-27 12:16:36 +01:00
Sami Mokaddem
ce8a7ba1be
fix: [individuals:canEdit] Changed function from public to private
2023-02-27 12:14:13 +01:00
Sami Mokaddem
59f8608d50
new: [user:permissionLimitation] Added current permission status while in `add` or `edit` context
...
Also moved the notification key from meta-fields to meta-template-fields
2023-02-24 15:22:18 +01:00
Sami Mokaddem
aead79a4c3
chg: [component:CRUD] Added `afterFind` support in add
2023-02-24 15:20:29 +01:00
Sami Mokaddem
fda8aa5866
chg: [component:CRUD] Include meta-template before calling `afterFind`
2023-02-24 14:57:40 +01:00
Sami Mokaddem
af8f1e9e74
chg: [tags:org/individual] Relaxed ACL on tagging
...
- Before only `site_admin` could add tags.
- Now `org_admins` can add tags for their orgs and individuals
- Regular users can self manage their own individual tag
2023-02-24 11:17:55 +01:00
Sami Mokaddem
c148b0993a
chg: [encryptionKeys:beforeSave] Updated ACL to disable management of keys for regular orgs
2023-02-24 10:35:25 +01:00
Sami Mokaddem
1620fd3e59
chg: [encryptionKey] Made key searchable with substring strategy
2023-02-24 10:31:33 +01:00
Sami Mokaddem
487670e522
chg: [authkeys:add] Select logged-in user by default
2023-02-23 14:57:58 +01:00
Sami Mokaddem
7ccf925247
security: [authkey:add] Restrict creation of API keys for users in the same org and for other org_admins
2023-02-23 14:57:42 +01:00
Sami Mokaddem
e9056a7b4c
chg: [audit:filter] Made request_action a multiple search
2023-02-23 13:04:33 +01:00
Sami Mokaddem
4d4642770f
new: [crud:filter] Added support of IN searches using dropdown
2023-02-23 12:55:18 +01:00
Sami Mokaddem
fdd876b1b2
new: [component:CRUD] Added support of IN condition when filtering index
2023-02-23 11:40:07 +01:00
Sami Mokaddem
0b2f7c31b2
Merge branch 'develop-unstable' into develop
2023-02-21 13:54:13 +01:00
Sami Mokaddem
e375e24a6d
chg: [component:CRUD] Added validation of order fields
2023-02-20 10:17:20 +01:00
Sami Mokaddem
e4c132374e
fix: [crud:renderInVariable] Fixed deprecation notice
2023-02-16 15:13:52 +01:00
Sami Mokaddem
0850c92e89
chg: [users:index] Added setting to allow the deletion of users
...
Fix #119
2023-02-16 15:07:06 +01:00
Sami Mokaddem
88abecfe8f
fix: [sharingGroups:addOrg] Use correct index to add to the group
2023-02-16 14:55:43 +01:00
Sami Mokaddem
62b2a1b264
new: [crud:auditlog] Added auditlogs for entity being viewed
2023-02-16 14:52:05 +01:00
Sami Mokaddem
97a151aff5
new: [metaTemplate:metaFieldMigration] Added support of force migrate
...
Remove conflicting meta-fields and migrate non-conflicting ones
2023-02-16 13:35:38 +01:00
Sami Mokaddem
27673b54c9
chg: [metaTemplate:migrateMetaField] Ignore metafield with empty value
2023-02-16 09:32:27 +01:00
Sami Mokaddem
20eebd097d
new: [meta-template] Improvement of the update system
...
- Changed default update strategy from `create_new` to `update_existing`
- Added mechanism to automatically migrate meta-fields to newest template
- Improved validation and conflict detection strategies
- Fixed various UI bugs and improved QoL
2023-02-14 14:42:35 +01:00
Sami Mokaddem
3fcb58c081
chg: [brood:queryIndex] Added support of pagination and filtering
2023-02-13 15:39:25 +01:00
Sami Mokaddem
b9292473de
fix: [crud:index] Only include requested metafields for non-API queries
2023-02-13 15:38:12 +01:00
Sami Mokaddem
fce564f798
chg: [crud:index] Added better support of pagination for API
2023-02-13 15:36:21 +01:00
Sami Mokaddem
72932c582d
chg: [users:index] Includes metafields by default when API query
2023-02-13 15:32:40 +01:00
Sami Mokaddem
d7a530924f
fix: [navigation:metaTemplates] Allow toggling template enabled state
2023-02-13 15:32:00 +01:00
Sami Mokaddem
2915ced971
chg: [organisations:index] Always include metafields for API requests
2023-02-13 15:12:54 +01:00
Sami Mokaddem
f1de7fbf49
chg: [broods:testConnection] Prematurely close session to allow concurrent requests
2023-02-13 15:08:57 +01:00
Sami Mokaddem
7cda322223
fix: [users:view] Temporary measure to gracefully catch connection issue with keycloak
2023-01-18 15:47:59 +01:00
Sami Mokaddem
79a97efa70
Merge branch 'chg-sync-improvements' into develop-unstable
2023-01-18 15:40:54 +01:00
Sami Mokaddem
fc31ce8b08
fix: [alignments:add] Index individuals and orgs by ID instead of array index
2023-01-17 09:25:11 +01:00
Sami Mokaddem
715ba1d75b
chg: [ui:generic_index] Only show enabled meta-templates in table options
2023-01-17 09:17:49 +01:00
Sami Mokaddem
9506142de5
fix: [broods:add] Correctly index organisations by their ID
2023-01-11 09:56:56 +01:00
iglocska
6da27dd2a4
fix: [security] destroy session on logout
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:45:42 +01:00
iglocska
da2f904554
fix: [security] reworked the Individual handling of user creations / modifications
...
- creating a new user with the e-mail address of an already existing individual should NOT overwrite the first/last name fields
- it merely connects the individual to the new user
- disallow changing the individual behind an existing user altogether
- allow capturing individuals without updates
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2022-12-23 16:47:44 +01:00
iglocska
5edf477c2f
fix: [security] fixed ACL for the user view endpoint
...
- arbitrary resource access fixed
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2022-12-14 10:42:46 +01:00
Sami Mokaddem
0b052aaebf
fix: [users:view] Gracefully handle the case where user exist in cerebrate but not in keycloak
2022-12-13 15:44:37 +01:00
Sami Mokaddem
e13dc152e7
fix: [users:registration] Fixed and improved user registration
2022-12-12 16:02:41 +01:00
Sami Mokaddem
7526f8364f
chg: [users:index] Added comment
2022-12-09 12:19:29 +01:00
Sami Mokaddem
a3fd138b4d
fix: [crud:edit] Always specify the table alias when fetching by id
2022-12-09 11:56:03 +01:00
Sami Mokaddem
af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak
2022-12-09 11:54:34 +01:00
Sami Mokaddem
d1aa20c5fb
security: [users:edit] Prevent edit of all users with lower privileges by any org_admins
2022-12-08 12:12:10 +01:00
Sami Mokaddem
6945e602b8
chg: [users:edit] Added role associated data for the user to be edited
2022-12-08 11:35:22 +01:00
Sami Mokaddem
1b47b669ff
fix: [users:view] Fallback value if Keycloak was never configured
2022-12-08 11:32:26 +01:00
Sami Mokaddem
561f6d1c77
fix: [user:add/edit] Correctly index orgs by their IDs
2022-12-08 10:54:55 +01:00
Sami Mokaddem
53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP
...
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
2022-12-07 14:54:28 +01:00
Sami Mokaddem
89a13a12a0
chg: [organisations:index] Added support of `full` option to include metafields
2022-12-02 09:51:28 +01:00
Sami Mokaddem
e5080e6fda
fix: [brood:preview] Restored searching capability on browsing
2022-11-29 11:51:03 +01:00
Sami Mokaddem
a9ef415f9d
fix: [organisation:index] Indentation fix
2022-11-15 14:54:01 +01:00
Sami Mokaddem
ae8ecf3955
chg: [organisation:index] Added quickfilter showing all orgs having the same nationality as logged user.org
2022-11-15 11:41:30 +01:00
Sami Mokaddem
31750da7c9
chg: [organisation:index] Removed ENISA-specific quick filters
...
But kept them as develop documentation...
2022-11-15 11:40:59 +01:00
Sami Mokaddem
6ed9978661
chg: [inbox:filtering] Possibility to filter on severity
2022-11-15 11:22:02 +01:00
Sami Mokaddem
d23cf2e2c6
new: [inbox:index] Added support of various context filtering
...
- My notification includes message without user_ids
- User registration
- Inter-connection requests
- Data changed
- severity:*
2022-11-15 11:21:26 +01:00
Sami Mokaddem
62c228c44e
chg: [auditLogs:index] Added possibility to view and filter logs base on `created` field
2022-11-14 16:11:18 +01:00
Sami Mokaddem
0b26bd629f
fix: [crud:index] requestedEntryAmount doesn't reset the query anymore
2022-11-14 15:55:07 +01:00
Sami Mokaddem
b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown
2022-11-14 14:53:02 +01:00
iglocska
f3023eb82c
fix: [individual edit] permission check fix
2022-11-14 11:37:58 +01:00
iglocska
260e1d30a1
new: [individuals] rework
...
- allow modifications for org admins of individuals associated to their users
- unless they're site admins
- add user information to the individual index to bring clarity to the individual vs users confusion
- rework of the user form field object
2022-11-13 11:09:34 +01:00
iglocska
ab5cee58ad
fix: [crud] speculative fix for notice error on metatemplates being accessed that aren't loaded
2022-11-11 15:30:55 +01:00
iglocska
f6f94983e4
fix: [users] several fixes
...
- User enrollment in KC moved to the aftersave (we consider cerebrate to be authoritative)
- adhere to restriction parameters in deletion
2022-11-11 15:08:56 +01:00
iglocska
c2bff49185
fix: [beforesave] hook removed on get requests
2022-11-11 15:08:23 +01:00
iglocska
f4b33d1852
fix: [keycloak sync] not needed on user index
...
- was a test that was left in
2022-11-11 10:07:35 +01:00
iglocska
b1f09dc97e
new: [permission limitations] subsystem added
...
- add limitations for users with given meta fields
- x number / org and y number / globally
- add comments to the limitations
- enforced on user creation/modification
2022-11-09 14:09:27 +01:00
iglocska
10ce8beb30
chg: [CRUD] component - only try to unlink MetaFields if it's actually loaded
2022-11-09 13:58:02 +01:00
iglocska
540fd63423
fix: [API] cleaned up the individual API
2022-11-04 09:33:39 +01:00
iglocska
7504bfab10
fix: [API] rearrange component - handle collections correctly
...
- return a new collection with the individual values transferred to it after changes
- avoids some weird quirks with unsetting related Objects not taking effect
2022-11-04 09:31:46 +01:00
iglocska
73ad04906a
fix: [typo] capitalisation mistake blocking org edits
2022-11-02 12:11:56 +01:00
iglocska
11510ea28f
new: [individual] editing enabled for org admins
...
- requires that a user exist for the given individual
2022-10-31 14:42:58 +01:00
iglocska
2a31e39762
new: [keycloak] automatically set mappings
2022-10-31 13:26:12 +01:00
iglocska
2f4b6ed2ff
chg: [keycloak] integration rework
...
- switch to the use of attributes
- several minor fixes
2022-10-31 11:31:38 +01:00
Sami Mokaddem
03bd4aba30
new: [genericElement:group_table_action] Added support of `show # element` in the table
2022-10-28 09:13:15 +02:00
Sami Mokaddem
0db625ce45
chg: [inbox:index] Added filtering on `created` time
2022-10-27 15:57:35 +02:00
Sami Mokaddem
aeda393bba
chg: [component:CRUD] Improved filtering to support form type based on database column type
2022-10-27 15:56:39 +02:00
Sami Mokaddem
e1499fb705
chg: [inbox:index] Added quick filter on scope
2022-10-27 11:22:55 +02:00
Sami Mokaddem
c8ff7bb4b2
new: [adminNotificationBehavior] Added first version of new behavior and associated inboxProcessor
...
This behavior allows to specify on which fields modification site-admins should be notified by receiving a message in their inbox
2022-10-26 17:10:04 +02:00
iglocska
9c41fd548f
fix: [auth] added keycloak logout
2022-10-25 15:08:41 +02:00
Sami Mokaddem
3d5508055a
chg: [inbox:index] Allow filtering index by user.id and user.name
2022-10-25 14:50:39 +02:00
Sami Mokaddem
eb6dec8b64
fix: [component:CRUD] Default custom contextual filters do not override search parameters anymore
2022-10-25 14:50:11 +02:00
Sami Mokaddem
00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column
2022-10-25 14:38:16 +02:00
Sami Mokaddem
8d7e2b0df2
chg: [inboxes:UI] Renamed `request` into `message`
2022-10-25 10:26:03 +02:00
Sami Mokaddem
726dab255e
chg: [inbox:index] Changed quick filter to show `my notification` by default
2022-10-25 10:24:01 +02:00
Sami Mokaddem
745340adff
fix: [component:CRUD] Only show metafields filters wjen the model has the behavior
2022-10-25 10:23:11 +02:00
Sami Mokaddem
fc0920c7c3
chg: [component:APIRearrange] Rearrange for all iterators
2022-10-21 15:56:53 +02:00
Sami Mokaddem
d1d88391e1
fix: [auditlogs:index] Typo preventing showing the `changed` field
2022-10-21 15:55:31 +02:00
iglocska
41a241cada
new: [pgp] library ported from MISP
...
- added proper view elements for encryption keys
- added key information extraction
2022-10-21 15:25:52 +02:00
Sami Mokaddem
ddfc83af6f
chg: [navigation:socialProvider] Improved UI for SSO profile management
2022-10-21 14:14:38 +02:00
Sami Mokaddem
0f27435251
fix: [metaTemplates] Correctly show update message
2022-10-21 14:07:41 +02:00
Sami Mokaddem
455daba4d4
fix: [navigation:meta-template] Correctly show badge for new templates
2022-10-21 14:06:46 +02:00
Sami Mokaddem
8d26be28a2
chg: [auditlogs:index] Reverse sort by ID
2022-09-20 15:31:42 +02:00
iglocska
760badd268
fix: [alignments] missing contains added
2022-09-19 02:17:36 +02:00
iglocska
fd6d3466d7
fix: [authkey] should only be used in a rest context
...
- otherwise some weird authentication snafus can happen
- as reported by SK-CERT
2022-09-19 02:14:57 +02:00
iglocska
4c0c6ef4ac
fix: [counter graphs] fixed to disallow invalid interval entries
...
- as reported by SK-CERT
2022-09-19 01:46:57 +02:00
iglocska
a9eccb3097
fix: [security] X-FRAME-OPTIONS: DENY added to all responses
...
- as reported by SK-CERT
2022-09-19 01:11:18 +02:00
iglocska
af1e2fd632
new: [security] Bruteforce protection added
...
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP
- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
iglocska
254fdc3b84
chg: [security] keycloak enabled - disallow multiple users from being created for the same individual
...
- as reported by SK-CERT
2022-09-18 19:26:24 +02:00