iglocska
81ae16e4ec
chg: [version] bump
2023-01-03 15:47:36 +01:00
iglocska
6da27dd2a4
fix: [security] destroy session on logout
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:45:42 +01:00
iglocska
13bb031167
fix: [keycloak status] - handle gracefully if user not found in KC
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:41:09 +01:00
iglocska
a5eb016fc4
fix: [security] disallow multiple individuals with the same e-mail address
...
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:30:26 +01:00
iglocska
e0f92aa8e0
fix: [validation] Tightened the validation rules for users to avoid 500 errors when the requirements are not met
...
- ensure that username is unique
- (optional) ensure that individual->user assignment is unique
- (optional) ensure that usernames are e-mail addresses
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2023-01-03 15:03:06 +01:00
iglocska
da2f904554
fix: [security] reworked the Individual handling of user creations / modifications
...
- creating a new user with the e-mail address of an already existing individual should NOT overwrite the first/last name fields
- it merely connects the individual to the new user
- disallow changing the individual behind an existing user altogether
- allow capturing individuals without updates
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2022-12-23 16:47:44 +01:00
iglocska
7afcc3977f
Merge branch 'main' into develop
2022-12-16 16:46:09 +01:00
iglocska
f121027660
chg: [skeleton module] added extra explanations
2022-12-16 16:45:28 +01:00
iglocska
256bfa8702
fix: [users] handle saving of a user without KC
2022-12-16 15:32:29 +01:00
iglocska
5edf477c2f
fix: [security] fixed ACL for the user view endpoint
...
- arbitrary resource access fixed
- As reported by Matúš Mikuláš, Adam Gajdošík, Milan Pikula of SK-CERT
2022-12-14 10:42:46 +01:00
iglocska
d4c827c662
fix: [kc] attribute update fixed
2022-12-14 06:46:42 +01:00
iglocska
675cac8944
new: [custom attribute saving] wip
2022-12-14 06:22:04 +01:00
Sami Mokaddem
35a395c68c
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop
2022-12-13 15:45:44 +01:00
Sami Mokaddem
0b052aaebf
fix: [users:view] Gracefully handle the case where user exist in cerebrate but not in keycloak
2022-12-13 15:44:37 +01:00
iglocska
d9330a1ddc
chg: [param] order changed
2022-12-13 11:00:30 +01:00
Sami Mokaddem
8c94aae994
fix: [behavior:notifyAdmin] Removed required parameter after optional
2022-12-13 10:56:05 +01:00
iglocska
c700800d8c
chg: [version] bump
2022-12-13 09:45:09 +01:00
Sami Mokaddem
d293cb52f8
chg: [behavior:keycloak] Gracefully handle issues while syncing with keycloak
2022-12-12 16:56:51 +01:00
Sami Mokaddem
178a5b658f
chg: [behavior:keycloak] Perform case insensitive comparison
...
For both cerebrate and keycloak users
2022-12-12 16:49:52 +01:00
Sami Mokaddem
e13dc152e7
fix: [users:registration] Fixed and improved user registration
2022-12-12 16:02:41 +01:00
Sami Mokaddem
e366da6171
fix: [behavior:keycloak] Trying to lower fever the best I can
2022-12-12 08:45:02 +01:00
Sami Mokaddem
7526f8364f
chg: [users:index] Added comment
2022-12-09 12:19:29 +01:00
Sami Mokaddem
a3fd138b4d
fix: [crud:edit] Always specify the table alias when fetching by id
2022-12-09 11:56:03 +01:00
Sami Mokaddem
af622dd19b
new: [users:view] Added keycloak status showing the potential differences between Cerebrate and Keycloak
2022-12-09 11:54:34 +01:00
Sami Mokaddem
b121399304
fix: [user:checkPermissionRestriction] Refactor the function to support more edge-cases
2022-12-08 15:39:28 +01:00
Sami Mokaddem
9a2e94989f
fix: [permissionlimitation:getLimitations] Mirror the permission limit if only one scope (global or org) is defined
2022-12-08 15:38:04 +01:00
Sami Mokaddem
409c116ad7
chg: [permissionlimitation:validation] Added rule for max_occurence
2022-12-08 15:35:02 +01:00
Sami Mokaddem
d1aa20c5fb
security: [users:edit] Prevent edit of all users with lower privileges by any org_admins
2022-12-08 12:12:10 +01:00
Sami Mokaddem
6945e602b8
chg: [users:edit] Added role associated data for the user to be edited
2022-12-08 11:35:22 +01:00
Sami Mokaddem
1b47b669ff
fix: [users:view] Fallback value if Keycloak was never configured
2022-12-08 11:32:26 +01:00
Sami Mokaddem
561f6d1c77
fix: [user:add/edit] Correctly index orgs by their IDs
2022-12-08 10:54:55 +01:00
Sami Mokaddem
4ab9761fb5
fix: [behavior:notifyAdmins] Typo resetting a variable
2022-12-08 10:25:13 +01:00
Sami Mokaddem
f3ee43ed46
chg: [user:NotifyAdminBehavior] Track modification on meta_fields
2022-12-08 10:24:09 +01:00
Sami Mokaddem
c61c16c83c
fix: [user:beforeSave] Make sure variable is initialized
2022-12-08 10:19:28 +01:00
Sami Mokaddem
f24d6c2cc8
chg: [command:summary] Added support of destination folder
2022-11-28 08:44:30 +01:00
Sami Mokaddem
41e425cfa2
new: [metaTemplateField] Added `index_type` virtual property to use the correct index_table element
2022-11-15 14:54:44 +01:00
Sami Mokaddem
a9ef415f9d
fix: [organisation:index] Indentation fix
2022-11-15 14:54:01 +01:00
Sami Mokaddem
ae8ecf3955
chg: [organisation:index] Added quickfilter showing all orgs having the same nationality as logged user.org
2022-11-15 11:41:30 +01:00
Sami Mokaddem
31750da7c9
chg: [organisation:index] Removed ENISA-specific quick filters
...
But kept them as develop documentation...
2022-11-15 11:40:59 +01:00
Sami Mokaddem
6ed9978661
chg: [inbox:filtering] Possibility to filter on severity
2022-11-15 11:22:02 +01:00
Sami Mokaddem
d23cf2e2c6
new: [inbox:index] Added support of various context filtering
...
- My notification includes message without user_ids
- User registration
- Inter-connection requests
- Data changed
- severity:*
2022-11-15 11:21:26 +01:00
Sami Mokaddem
62c228c44e
chg: [auditLogs:index] Added possibility to view and filter logs base on `created` field
2022-11-14 16:11:18 +01:00
Sami Mokaddem
0b26bd629f
fix: [crud:index] requestedEntryAmount doesn't reset the query anymore
2022-11-14 15:55:07 +01:00
Sami Mokaddem
84069cfe40
chg: [metaTemplateField] More generic way to specify form type
2022-11-14 15:45:28 +01:00
Sami Mokaddem
b6fdf37d54
fix: [metafields:dropdown] Patched saving multiple fields with custom value
2022-11-14 15:38:50 +01:00
Sami Mokaddem
b53f2681b4
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into feature-metafield-dropdown
2022-11-14 14:53:02 +01:00
iglocska
cbe2f7f684
chg: [version] bump
2022-11-14 12:38:45 +01:00
iglocska
7f92e6401d
Merge remote-tracking branch 'origin/cli-modification-summary' into develop
2022-11-14 12:37:34 +01:00
Sami Mokaddem
7940eb065f
new: [command] Summary tool to collect changes done by nationalities
...
Currently supporting individual, organisation and user
2022-11-14 12:36:36 +01:00
iglocska
f3023eb82c
fix: [individual edit] permission check fix
2022-11-14 11:37:58 +01:00