cerebrate-project
/
cerebrate
mirror of https://github.com/cerebrate-project/cerebrate
1
0
Fork 0
Code Issues Releases Wiki Activity
1,465 Commits
10 Branches
24 Tags
20 MiB
Commit Graph

260 Commits (79a97efa70b805c1398518e7e194c9c0694f15fe)

Author SHA1 Message Date
Sami Mokaddem 79a97efa70
Merge branch 'chg-sync-improvements' into develop-unstable 2023-01-18 15:40:54 +01:00
Sami Mokaddem 025dcd9054
chg: [alignment] Added validation rule to avoid duplicates 2023-01-17 09:24:36 +01:00
Sami Mokaddem d9df6ed4c3
fix: [permissionLimitations] Prevent error for org without users 2023-01-17 09:23:24 +01:00
iglocska a5eb016fc4
fix: [security] disallow multiple individuals with the same e-mail address 
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2023-01-03 15:30:26 +01:00
iglocska e0f92aa8e0
fix: [validation] Tightened the validation rules for users to avoid 500 errors when the requirements are not met 
- ensure that username is unique
- (optional) ensure that individual->user assignment is unique
- (optional) ensure that usernames are e-mail addresses

- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2023-01-03 15:03:06 +01:00
iglocska da2f904554
fix: [security] reworked the Individual handling of user creations / modifications 
- creating a new user with the e-mail address of an already existing individual should NOT overwrite the first/last name fields
- it merely connects the individual to the new user

- disallow changing the individual behind an existing user altogether
- allow capturing individuals without updates

- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2022-12-23 16:47:44 +01:00
iglocska 256bfa8702
fix: [users] handle saving of a user without KC 2022-12-16 15:32:29 +01:00
Sami Mokaddem af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak 2022-12-09 11:54:34 +01:00
Sami Mokaddem b121399304
fix: [user:checkPermissionRestriction] Refactor the function to support more edge-cases 2022-12-08 15:39:28 +01:00
Sami Mokaddem 9a2e94989f
fix: [permissionlimitation:getLimitations] Mirror the permission limit if only one scope (global or org) is defined 2022-12-08 15:38:04 +01:00
Sami Mokaddem 409c116ad7
chg: [permissionlimitation:validation] Added rule for max_occurence 2022-12-08 15:35:02 +01:00
Sami Mokaddem f3ee43ed46
chg: [user:NotifyAdminBehavior] Track modification on meta_fields 2022-12-08 10:24:09 +01:00
Sami Mokaddem c61c16c83c
fix: [user:beforeSave] Make sure variable is initialized 2022-12-08 10:19:28 +01:00
Sami Mokaddem 53f669e25c
new: [sync+meta_fields] Initial work on meta_field synchronisation and meta_template_directory - WiP 
The new directory allows to ingest meta_fields without knowing their associated meta_template. Improved the way data is re-arranged, how meta-templates are saved and a helper widget showing the difference local objects have with their remote counter-part
 2022-12-07 14:54:28 +01:00
Sami Mokaddem 3dddd96eeb
chg: [element:metafield_panel] Metafield now relying on their index type when being displayed on singleViews 2022-11-28 12:12:01 +01:00
Sami Mokaddem b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown 2022-11-14 14:53:02 +01:00
Sami Mokaddem 7d6696e079
new: [metaFields] Adding support of sane_default + improving form & crud - WiP 2022-11-14 09:04:35 +01:00
iglocska 5c02f1c6a4
chg: [cleanup] of the default role setting for keycloak 
- not used in any sensible way anymore
 2022-11-13 11:18:54 +01:00
iglocska 260e1d30a1
new: [individuals] rework 
- allow modifications for org admins of individuals associated to their users
  - unless they're site admins
- add user information to the individual index to bring clarity to the individual vs users confusion
- rework of the user form field object
 2022-11-13 11:09:34 +01:00
iglocska b1f09dc97e
new: [permission limitations] subsystem added 
- add limitations for users with given meta fields
  - x number / org and y number / globally
- add comments to the limitations
- enforced on user creation/modification
 2022-11-09 14:09:27 +01:00
iglocska 11510ea28f
new: [individual] editing enabled for org admins 
- requires that a user exist for the given individual
 2022-10-31 14:42:58 +01:00
iglocska 8dbbb21dff
chg: [users] add metafields behaviour 2022-10-31 13:38:31 +01:00
iglocska 2a31e39762
new: [keycloak] automatically set mappings 2022-10-31 13:26:12 +01:00
Sami Mokaddem 225913f9c6
new: [organisation] Added `notifyAdmin` behavior. 
Might be removed later on if needed
 2022-10-27 10:14:57 +02:00
Sami Mokaddem d0119b2dba
new: [user] Added `notifyAdmin` behavior 2022-10-27 10:14:09 +02:00
Sami Mokaddem 00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column 2022-10-25 14:38:16 +02:00
iglocska 84537c52f9
new: [user enrollment] send keycloak welcome email to users when enrolled 2022-10-25 10:57:18 +02:00
Sami Mokaddem 6d40968f24
chg: [appTable] Set string format of FrozenTime to ISO 8601-like by default 2022-10-25 10:27:58 +02:00
iglocska 41a241cada
new: [pgp] library ported from MISP 
- added proper view elements for encryption keys
- added key information extraction
 2022-10-21 15:25:52 +02:00
Sami Mokaddem a091edbf22
fix: [user:beforeSave] Only call the user-update callback if the user is not new 2022-10-21 09:00:49 +02:00
Sami Mokaddem 21403995e3
new: [user:edit] Added keycloak updates when a user gets modified 2022-09-21 10:11:09 +02:00
Sami Mokaddem 37094e0abb
fix: [user:validation] Allow user edition when `username` is not set 2022-09-21 10:10:02 +02:00
iglocska 5e0ab5cc38
new: [users] username validation added 
- >5 && <50 in length required
- trim username to test to avoid whitespace names

- as reported by SK-CERT
 2022-09-19 01:22:53 +02:00
iglocska 9a50a5693e
fix: [users] added uniqueness to usernames 
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)

- As reported by SK-CERT
 2022-09-19 01:12:14 +02:00
iglocska af1e2fd632
new: [security] Bruteforce protection added 
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP

- As reported by SK-CERT
 2022-09-19 00:25:15 +02:00
iglocska a5c9f68316
fix: [deprecation] futher toList() call updated 2022-08-17 13:49:52 +02:00
iglocska 60d8a8f655
fix: [deprecation] toList() queries updated 2022-08-17 13:49:11 +02:00
iglocska a88318c5df
fix: [auditlogs] more monkey fixing the logging errors via CLI 2022-05-17 09:26:23 +02:00
iglocska 11c9900580
chg: revert 2022-05-17 09:24:37 +02:00
iglocska 23c41008d4
chg: [audit logs] fix test 2022-05-17 09:23:08 +02:00
iglocska 8cf325d263
fix: [audit logs] monkey fix for the missing fields when coming from a CLI query 2022-05-17 09:06:16 +02:00
Sami Mokaddem 3e4d0a4544
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-03-09 11:44:26 +01:00
Sami Mokaddem 938354119b
fix: [metaFields] Added timestamp behavior 2022-03-09 11:15:41 +01:00
Sami Mokaddem 39d89efb53
chg: [meta-template:update] Default update strategy to be `create_new` 2022-03-09 08:21:27 +01:00
Sami Mokaddem 7a16c2c792
fix: [metaTemplate:view] Repair `Field` child 2022-03-08 17:49:18 +01:00
Sami Mokaddem 033792396c
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable 2022-03-08 17:13:19 +01:00
Sami Mokaddem 503b9e53b7
chg: [instance:getStatistics] Usage of cake's FrozenTime instead of DateTime 2022-03-08 16:51:10 +01:00
Luciano Righetti 9a2c6a4c4b new: add api tests for MetaTemplates and openapi spec, fix minor issues. 2022-03-08 15:51:07 +01:00
Sami Mokaddem b91f4b5d01
chg: [settingProvider:cerebrate] Typo in `password_auth.enabled`'s name 2022-03-01 13:56:54 +01:00
Sami Mokaddem a78864912e
chg: [metaTemplates:computeConflicts] Usage of subqueries instead of array of IDs 2022-03-01 11:32:30 +01:00