Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue/2559 Display all indicators/observables contained in reports which contain a specific entity(#2559) #3764

Merged
merged 55 commits into from
Aug 2, 2023
Merged

Issue/2559 Display all indicators/observables contained in reports which contain a specific entity(#2559) #3764

merged 55 commits into from
Aug 2, 2023

Conversation

marieflorescontact
Copy link
Member

@marieflorescontact marieflorescontact commented Jul 13, 2023
edited

This is the 1st part of the issue applied to the Threat Actor Individual, once approved we will extend it to the rest of the entities concerned.

Related Brainstorm

Explanation of code structure and opening on the next step

Proposed changes

  • Remove Indicators tab from the knowledge Topbar
  • Indicators are now accesible from the knowledge right bar above Observables
  • Add contextual view that displays Observables/Indicators that are contained in Reports/Case/Grouping that contains the Entity
  • Create reusable view component to display EntistixCorerelationships : EntitiesView / RelationshipView / ContextualView
  • Add filtering on Pattern Type and Indicator type for Indicators entities view

Related issues

Checklist

  • I consider the submitted work as finished
  • I tested the code for its functionality
  • I wrote test cases for the relevant uses case
  • I added/update the relevant documentation (either on github or on notion)
  • Where necessary I refactored code to improve the overall quality

Further comments

If this is a relatively large or complex change, kick off the discussion by explaining why you chose the solution you did and what alternatives you considered, etc...

@Kedae Kedae added the filigran team use to identify PR from the Filigran team label Jul 17, 2023
@RomuDeuxfois RomuDeuxfois force-pushed the issue/2559 branch 3 times, most recently from 3d97215 to daea399 Compare July 25, 2023 12:45
@RomuDeuxfois RomuDeuxfois marked this pull request as ready for review July 25, 2023 14:31
@yassine-ouaamou yassine-ouaamou self-requested a review July 26, 2023 08:44
yassine-ouaamou
yassine-ouaamou reviewed Jul 26, 2023
View reviewed changes
Copy link
Member

@yassine-ouaamou yassine-ouaamou left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

When adding a relationship with indicators, if we do it from "Entities view", we have the possiblity to create "indicates" or "related to" relationships.
If done from "Relationships views", only "indicates" is possible.
possible relationships

Is it normal?

@yassine-ouaamou
Copy link
Member

yassine-ouaamou commented Jul 26, 2023
edited

  • The columns are misaligned in the "Entites view"

image

  • In the "Relationship view", the links to the indicators are broken.
  • "Related entities" seems to be broken too. Maybe it's just me

@marieflorescontact
Copy link
Member Author

PR status

  • all previous comments have been taken into account.

1 new issue to be fixed:

  • It crashes when sorting by relationship_type on the relationship view and switching to the contextual view

@marieflorescontact
Copy link
Member Author

PR status

  • all previous comments have been taken into account.
  • bug on ordering fixed

PR ready for review

@Archidoit
Copy link
Member

Overview of a threat actor individual: bad display of 'details' (content of 'goals' in the second column whereas the 'goals' title is in the first one, bad seperation after the '-' of description...) :
image

@Archidoit
Copy link
Member

Archidoit commented Aug 1, 2023
edited

  • in a threat actor individual > Knowledge > Indicator > contextual view : bad alignement of the selection squares:
    image

  • missing translation: 'Relationships view'
    image

yassine-ouaamou
yassine-ouaamou reviewed Aug 1, 2023
View reviewed changes
...cti-platform/opencti-graphql/src/modules/threatActorIndividual/threatActorIndividual.graphql Outdated
@@ -85,7 +85,6 @@ type ThreatActorIndividual implements BasicObject & StixObject & StixCoreObject
filters: [StixCoreRelationshipsFiltering]
filterMode: FilterMode
): [Distribution] @auth(for: [KNOWLEDGE, EXPLORE])
# StixDomainObject
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you put back this comment, please?

@RomuDeuxfois
Copy link
Member

PR status

  • all previous comments have been taken into account.

PR ready for review 🔥 🔥 🔥

RomuDeuxfois and others added 26 commits August 2, 2023 11:50
@RomuDeuxfois
[backend/frontend] Fix bugs
726a76c
@RomuDeuxfois
[backend/frontend] Fix bugs
956692f
@RomuDeuxfois
[backend/frontend] Reorganize files
3e7a359
@RomuDeuxfois
[frontend] Fix display indicator on contextual view
2f4426b
@marieflorescontact @RomuDeuxfois
[frontend] rename props interface
17af17d
@RomuDeuxfois
[frontend] Fix bugs pagination updates
e0597b2
@marieflorescontact @RomuDeuxfois
[frontend] fix deepscan
46c0dda
@marieflorescontact @RomuDeuxfois
[frontend] refacto ...
0057008
@marieflorescontact @RomuDeuxfois
[frontend] fix front test
f6d29a1
@RomuDeuxfois
[frontend] Remove true when not usefull
2d4d544
@RomuDeuxfois
[frontend] Remove delete button on entities indicators view & improv …
ef528f2 
…sorting
@RomuDeuxfois
[backend/frontend] Filter on container for contextual view
5a790ec
@RomuDeuxfois
[frontend] Improv contextual view
b8f938e
@RomuDeuxfois
[frontend] Clean code
6d5c46f
@RomuDeuxfois
[frontend] Clean code
1168108
@RomuDeuxfois
[frontend] Align icon
ece7e79
@RomuDeuxfois
[frontend] Remove unused link
e056bef
@RomuDeuxfois
[frontend] Remove unused link
3279ff4
@marieflorescontact @RomuDeuxfois
[frontend] Add relationshipTypes as prop in EntityStixCoreRelationshi…
73ef07f 
…psStixCyberObservable component and fix StixCoreRelationshipCreationFromEntity
@marieflorescontact @RomuDeuxfois
[frontend] Fix link to relationship from indicators > relationship view
1587c94
@marieflorescontact @RomuDeuxfois
[frontend] Fix related entities
8cea4cd
@marieflorescontact @RomuDeuxfois
[backend] Remove unused stixCoreObjectFromContainer
bc5f223
@marieflorescontact @RomuDeuxfois
[frontend] Fix column alignment
cc52109
@marieflorescontact @RomuDeuxfois
[frontend] Fix ordering issue
d761de1
@RomuDeuxfois
[frontend] PR feedbacks
1b3abf5
@RomuDeuxfois
[frontend] Extend searchContext type
0cece93
@RomuDeuxfois RomuDeuxfois merged commit 1861183 into master Aug 2, 2023
6 checks passed
@RomuDeuxfois RomuDeuxfois deleted the issue/2559 branch August 2, 2023 12:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@SouadHadjiat SouadHadjiat SouadHadjiat left review comments

@yassine-ouaamou yassine-ouaamou yassine-ouaamou approved these changes

@Archidoit Archidoit Archidoit approved these changes

Assignees

@RomuDeuxfois RomuDeuxfois

@marieflorescontact marieflorescontact

Labels
filigran team use to identify PR from the Filigran team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@marieflorescontact @yassine-ouaamou @Archidoit @RomuDeuxfois @SouadHadjiat @Kedae