ee5adaf971
chg: [behavior:adminNotification] Added support of watched fields and improved metafield integration
2022-10-27 10:12:06 +02:00
c8ff7bb4b2
new: [adminNotificationBehavior] Added first version of new behavior and associated inboxProcessor
...
This behavior allows to specify on which fields modification site-admins should be notified by receiving a message in their inbox
2022-10-26 17:10:04 +02:00
00c1ae616f
new: [inboxes] Added `severity` level and `message` and removed `description` column
2022-10-25 14:38:16 +02:00
6d40968f24
chg: [appTable] Set string format of FrozenTime to ISO 8601-like by default
2022-10-25 10:27:58 +02:00
b555aed178
chg: [auditLog:entity] unset useless noise from user-settings
2022-10-21 16:06:09 +02:00
41a241cada
new: [pgp] library ported from MISP
...
- added proper view elements for encryption keys
- added key information extraction
2022-10-21 15:25:52 +02:00
a091edbf22
fix: [user:beforeSave] Only call the user-update callback if the user is not new
2022-10-21 09:00:49 +02:00
c65978f8f2
fix: [behavior:authKeycloak] Correctly check if the user was saved
2022-10-21 08:59:36 +02:00
21403995e3
new: [user:edit] Added keycloak updates when a user gets modified
2022-09-21 10:11:09 +02:00
37094e0abb
fix: [user:validation] Allow user edition when `username` is not set
2022-09-21 10:10:02 +02:00
2c87b1e500
fix: [authKeycloakBehavior] Added missing association preventing user to log via keycloak
2022-09-21 10:07:51 +02:00
69fee02498
fix: [authKeycloakBehavior] Re-indexing array preventing roles to be parsed by keycloak
2022-09-21 10:06:33 +02:00
efe917c824
fix: [authKeycloakBehavior] Typo preventing roles to be saved
2022-09-21 10:05:55 +02:00
5e0ab5cc38
new: [users] username validation added
...
- >5 && <50 in length required
- trim username to test to avoid whitespace names
- as reported by SK-CERT
2022-09-19 01:22:53 +02:00
9a50a5693e
fix: [users] added uniqueness to usernames
...
- added upgrade script with removal of duplicate usernames
- added unique index to username field
- massaging the usernames before insertion (trim + lowercasing)
- As reported by SK-CERT
2022-09-19 01:12:14 +02:00
af1e2fd632
new: [security] Bruteforce protection added
...
- logins allow for 5 attempts every 5 minutes
- Code ported and updated from MISP
- As reported by SK-CERT
2022-09-19 00:25:15 +02:00
07a8d1dfcb
chg: [dead variable] removed
2022-09-19 00:24:29 +02:00
10ea126a93
fix: [security] KeyCloak login getUser fixes
...
- removed dead code
- tightened check on the user profile, if the KC user's email address and that of the Cerebrate user disagree, block the authentication
- as reported by SK-CERT
2022-09-18 18:51:05 +02:00
94bfafb743
fix: [meta template] fixes
2022-08-23 16:02:52 +02:00
095dd4513c
chg: [rearrange] moved to Entity
2022-08-23 11:42:30 +02:00
1077251f8b
fix: [keycloak] fixed encoding issue with urlencoded usernames created in keycloak
2022-08-23 11:05:07 +02:00
d96353ee4f
chg: [APIRearrange] component tied into rest response
2022-08-19 13:02:25 +02:00
a5c9f68316
fix: [deprecation] futher toList() call updated
2022-08-17 13:49:52 +02:00
60d8a8f655
fix: [deprecation] toList() queries updated
2022-08-17 13:49:11 +02:00
f513f8ec99
chg: [kc] disabled user capturing
...
- Cerebrate is now authoritative
2022-05-17 11:00:30 +02:00
398307e414
fix: [user enrollment] fixed via KC
2022-05-17 10:16:47 +02:00
a88318c5df
fix: [auditlogs] more monkey fixing the logging errors via CLI
2022-05-17 09:26:23 +02:00
11c9900580
chg: revert
2022-05-17 09:24:37 +02:00
23c41008d4
chg: [audit logs] fix test
2022-05-17 09:23:08 +02:00
8cf325d263
fix: [audit logs] monkey fix for the missing fields when coming from a CLI query
2022-05-17 09:06:16 +02:00
32a559cc3b
new: [keycloak] command line tool
...
- automateable sync
- fixed various issues
- added logging of issues
2022-05-17 04:01:10 +02:00
5a965c5ffd
new: [keycloak] sync added
...
- created/updates users
- creates/updates/removes roles
- creates/updates/removes orgs
2022-05-17 02:42:14 +02:00
3e4d0a4544
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable
2022-03-09 11:44:26 +01:00
938354119b
fix: [metaFields] Added timestamp behavior
2022-03-09 11:15:41 +01:00
39d89efb53
chg: [meta-template:update] Default update strategy to be `create_new`
2022-03-09 08:21:27 +01:00
7a16c2c792
fix: [metaTemplate:view] Repair `Field` child
2022-03-08 17:49:18 +01:00
033792396c
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable
2022-03-08 17:13:19 +01:00
503b9e53b7
chg: [instance:getStatistics] Usage of cake's FrozenTime instead of DateTime
2022-03-08 16:51:10 +01:00
9a2c6a4c4b
new: add api tests for MetaTemplates and openapi spec, fix minor issues.
2022-03-08 15:51:07 +01:00
b91f4b5d01
chg: [settingProvider:cerebrate] Typo in `password_auth.enabled`'s name
2022-03-01 13:56:54 +01:00
a78864912e
chg: [metaTemplates:computeConflicts] Usage of subqueries instead of array of IDs
2022-03-01 11:32:30 +01:00
134b7bfc3e
chg: [metafields] Passed argument can either be an object or array
2022-03-01 11:30:22 +01:00
bb94765243
Merge branch 'develop' of github.com:cerebrate-project/cerebrate into develop-unstable
2022-03-01 09:52:57 +01:00
505e9a0973
chg: [metaFields] Added metafield type validation
2022-03-01 09:52:27 +01:00
4b5b2bc7e2
chg: [behaviors:metafields] Moved type handlers to the meta-template-fields table
2022-03-01 09:49:33 +01:00
ad6362eed4
chg: [instance:searchAll] Sharinggroup filter on org membership in addition to owner
2022-02-28 14:35:06 +01:00
bc04fd0336
fix: [instance:searchAll] Get the correct count if after filter is applied
2022-02-28 14:34:14 +01:00
8293312f90
fix: [instance:search_all] Support of conditions and afterFind when using global search
2022-02-28 14:16:12 +01:00
4b95b49854
fix: [behavior:metafields] Switch to text filtering if meta-template-field is not provided
2022-02-28 10:49:34 +01:00
61cda0af33
fix: [minor fixes] with the keycloak integration
2022-02-28 10:27:17 +01:00
Sami Mokaddem