cerebrate-project
/
cerebrate
mirror of https://github.com/cerebrate-project/cerebrate
1
0
Fork 0
Code Issues Releases Wiki Activity
1,428 Commits
11 Branches
25 Tags
20 MiB
Commit Graph

435 Commits (9506142de57f30702e1a7065815f194c6769daf8)

Author SHA1 Message Date
Sami Mokaddem 9506142de5
fix: [broods:add] Correctly index organisations by their ID 2023-01-11 09:56:56 +01:00
iglocska 6da27dd2a4
fix: [security] destroy session on logout 
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2023-01-03 15:45:42 +01:00
iglocska da2f904554
fix: [security] reworked the Individual handling of user creations / modifications 
- creating a new user with the e-mail address of an already existing individual should NOT overwrite the first/last name fields
- it merely connects the individual to the new user

- disallow changing the individual behind an existing user altogether
- allow capturing individuals without updates

- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2022-12-23 16:47:44 +01:00
iglocska 5edf477c2f
fix: [security] fixed ACL for the user view endpoint 
- arbitrary resource access fixed

- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
 2022-12-14 10:42:46 +01:00
Sami Mokaddem 0b052aaebf
fix: [users:view] Gracefully handle the case where user exist in cerebrate but not in keycloak 2022-12-13 15:44:37 +01:00
Sami Mokaddem e13dc152e7
fix: [users:registration] Fixed and improved user registration 2022-12-12 16:02:41 +01:00
Sami Mokaddem 7526f8364f
chg: [users:index] Added comment 2022-12-09 12:19:29 +01:00
Sami Mokaddem a3fd138b4d
fix: [crud:edit] Always specify the table alias when fetching by id 2022-12-09 11:56:03 +01:00
Sami Mokaddem af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak 2022-12-09 11:54:34 +01:00
Sami Mokaddem d1aa20c5fb
security: [users:edit] Prevent edit of all users with lower privileges by any org_admins 2022-12-08 12:12:10 +01:00
Sami Mokaddem 6945e602b8
chg: [users:edit] Added role associated data for the user to be edited 2022-12-08 11:35:22 +01:00
Sami Mokaddem 1b47b669ff
fix: [users:view] Fallback value if Keycloak was never configured 2022-12-08 11:32:26 +01:00
Sami Mokaddem 561f6d1c77
fix: [user:add/edit] Correctly index orgs by their IDs 2022-12-08 10:54:55 +01:00
Sami Mokaddem a9ef415f9d
fix: [organisation:index] Indentation fix 2022-11-15 14:54:01 +01:00
Sami Mokaddem ae8ecf3955
chg: [organisation:index] Added quickfilter showing all orgs having the same nationality as logged user.org 2022-11-15 11:41:30 +01:00
Sami Mokaddem 31750da7c9
chg: [organisation:index] Removed ENISA-specific quick filters 
But kept them as develop documentation...
 2022-11-15 11:40:59 +01:00
Sami Mokaddem 6ed9978661
chg: [inbox:filtering] Possibility to filter on severity 2022-11-15 11:22:02 +01:00
Sami Mokaddem d23cf2e2c6
new: [inbox:index] Added support of various context filtering 
- My notification includes message without user_ids
- User registration
- Inter-connection requests
- Data changed
- severity:*
 2022-11-15 11:21:26 +01:00
Sami Mokaddem 62c228c44e
chg: [auditLogs:index] Added possibility to view and filter logs base on `created` field 2022-11-14 16:11:18 +01:00
Sami Mokaddem 0b26bd629f
fix: [crud:index] requestedEntryAmount doesn't reset the query anymore 2022-11-14 15:55:07 +01:00
Sami Mokaddem b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown 2022-11-14 14:53:02 +01:00
iglocska f3023eb82c
fix: [individual edit] permission check fix 2022-11-14 11:37:58 +01:00
iglocska 260e1d30a1
new: [individuals] rework 
- allow modifications for org admins of individuals associated to their users
  - unless they're site admins
- add user information to the individual index to bring clarity to the individual vs users confusion
- rework of the user form field object
 2022-11-13 11:09:34 +01:00
iglocska ab5cee58ad
fix: [crud] speculative fix for notice error on metatemplates being accessed that aren't loaded 2022-11-11 15:30:55 +01:00
iglocska f6f94983e4
fix: [users] several fixes 
- User enrollment in KC moved to the aftersave (we consider cerebrate to be authoritative)
- adhere to restriction parameters in deletion
 2022-11-11 15:08:56 +01:00
iglocska c2bff49185
fix: [beforesave] hook removed on get requests 2022-11-11 15:08:23 +01:00
iglocska f4b33d1852
fix: [keycloak sync] not needed on user index 
- was a test that was left in
 2022-11-11 10:07:35 +01:00
iglocska b1f09dc97e
new: [permission limitations] subsystem added 
- add limitations for users with given meta fields
  - x number / org and y number / globally
- add comments to the limitations
- enforced on user creation/modification
 2022-11-09 14:09:27 +01:00
iglocska 10ce8beb30
chg: [CRUD] component - only try to unlink MetaFields if it's actually loaded 2022-11-09 13:58:02 +01:00
iglocska 540fd63423
fix: [API] cleaned up the individual API 2022-11-04 09:33:39 +01:00
iglocska 7504bfab10
fix: [API] rearrange component - handle collections correctly 
- return a new collection with the individual values transferred to it after changes
- avoids some weird quirks with unsetting related Objects not taking effect
 2022-11-04 09:31:46 +01:00
iglocska 73ad04906a
fix: [typo] capitalisation mistake blocking org edits 2022-11-02 12:11:56 +01:00
iglocska 11510ea28f
new: [individual] editing enabled for org admins 
- requires that a user exist for the given individual
 2022-10-31 14:42:58 +01:00
iglocska 2a31e39762
new: [keycloak] automatically set mappings 2022-10-31 13:26:12 +01:00
iglocska 2f4b6ed2ff
chg: [keycloak] integration rework 
- switch to the use of attributes
- several minor fixes
 2022-10-31 11:31:38 +01:00
Sami Mokaddem 03bd4aba30
new: [genericElement:group_table_action] Added support of `show # element` in the table 2022-10-28 09:13:15 +02:00
Sami Mokaddem 0db625ce45
chg: [inbox:index] Added filtering on `created` time 2022-10-27 15:57:35 +02:00
Sami Mokaddem aeda393bba
chg: [component:CRUD] Improved filtering to support form type based on database column type 2022-10-27 15:56:39 +02:00
Sami Mokaddem e1499fb705
chg: [inbox:index] Added quick filter on scope 2022-10-27 11:22:55 +02:00
Sami Mokaddem c8ff7bb4b2
new: [adminNotificationBehavior] Added first version of new behavior and associated inboxProcessor 
This behavior allows to specify on which fields modification site-admins should be notified by receiving a message in their inbox
 2022-10-26 17:10:04 +02:00
iglocska 9c41fd548f
fix: [auth] added keycloak logout 2022-10-25 15:08:41 +02:00
Sami Mokaddem 3d5508055a
chg: [inbox:index] Allow filtering index by user.id and user.name 2022-10-25 14:50:39 +02:00
Sami Mokaddem eb6dec8b64
fix: [component:CRUD] Default custom contextual filters do not override search parameters anymore 2022-10-25 14:50:11 +02:00
Sami Mokaddem 00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column 2022-10-25 14:38:16 +02:00
Sami Mokaddem 8d7e2b0df2
chg: [inboxes:UI] Renamed `request` into `message` 2022-10-25 10:26:03 +02:00
Sami Mokaddem 726dab255e
chg: [inbox:index] Changed quick filter to show `my notification` by default 2022-10-25 10:24:01 +02:00
Sami Mokaddem 745340adff
fix: [component:CRUD] Only show metafields filters wjen the model has the behavior 2022-10-25 10:23:11 +02:00
Sami Mokaddem fc0920c7c3
chg: [component:APIRearrange] Rearrange for all iterators 2022-10-21 15:56:53 +02:00
Sami Mokaddem d1d88391e1
fix: [auditlogs:index] Typo preventing showing the `changed` field 2022-10-21 15:55:31 +02:00
iglocska 41a241cada
new: [pgp] library ported from MISP 
- added proper view elements for encryption keys
- added key information extraction
 2022-10-21 15:25:52 +02:00