From 80da44b7b3ffe21d364f2051039c488a423417f0 Mon Sep 17 00:00:00 2001 From: "Freddy R. Laffita Almaguer" Date: Tue, 27 Feb 2024 15:19:28 -0500 Subject: [PATCH 1/4] Moving changes from main to RC (#512) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Adding backend xss attack prevention (#285) * Configuring Content Security Policy (CSP) * Changing security policy in application * Allowing to change only the user_img field value for the UtmImages entity * Adding image verification and validation in the UtmImagesResource update, to mitigate XSS attack --------- Co-authored-by: Leonardo Mora López * support timeline * update security policy * updating security policy * Updating CSP (#295) * Configuring Content Security Policy (CSP) * Changing security policy in application * Allowing to change only the user_img field value for the UtmImages entity * Adding image verification and validation in the UtmImagesResource update, to mitigate XSS attack * Updating Content Security Policy * Revert "Updating Content Security Policy" This reverts commit 61f3988c7ffeb07daae4d535f5917ba0346b23ba. * Updating Content Security Policy --------- Co-authored-by: Leonardo Mora López * Optimizing code and dependencies (#296) * Removing jhipster files and removing elasticsearch dependencies: - org.elasticsearch:elasticsearch:7.4.1 - org.elasticsearch.client:elasticsearch-rest-high-level-client:.4.1 * Removing Twilio dependencies and implementation * Optimizing imports * Optimizing code and dependencies (296) (#298) * Bump google.golang.org/grpc from 1.58.0 to 1.58.3 in /log-auth-proxy (#278) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.0 to 1.58.3. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.58.0...v1.58.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/net from 0.9.0 to 0.17.0 in /agent-manager (#280) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.9.0 to 0.17.0. - [Commits](https://github.com/golang/net/compare/v0.9.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/net from 0.14.0 to 0.17.0 in /agent/agent (#281) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/net/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump follow-redirects from 1.15.2 to 1.15.5 in /frontend (#275) Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.2 to 1.15.5. - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.2...v1.15.5) --- updated-dependencies: - dependency-name: follow-redirects dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump jinja2 from 3.1.2 to 3.1.3 in /mutate (#276) Bumps [jinja2](https://github.com/pallets/jinja) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/3.1.2...3.1.3) --- updated-dependencies: - dependency-name: jinja2 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump pycryptodome from 3.19.0 to 3.19.1 in /mutate (#279) Bumps [pycryptodome](https://github.com/Legrandin/pycryptodome) from 3.19.0 to 3.19.1. - [Release notes](https://github.com/Legrandin/pycryptodome/releases) - [Changelog](https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst) - [Commits](https://github.com/Legrandin/pycryptodome/compare/v3.19.0...v3.19.1) --- updated-dependencies: - dependency-name: pycryptodome dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/net from 0.12.0 to 0.17.0 in /log-auth-proxy (#282) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.12.0 to 0.17.0. - [Commits](https://github.com/golang/net/compare/v0.12.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/gorilla/mux from 1.8.0 to 1.8.1 in /bdgz (#289) Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux) from 1.8.0 to 1.8.1. - [Release notes](https://github.com/gorilla/mux/releases) - [Commits](https://github.com/gorilla/mux/compare/v1.8.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/gorilla/mux dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/utmstack/config-client-go from 1.0.3 to 1.1.0 in /bdgz (#290) Bumps [github.com/utmstack/config-client-go](https://github.com/utmstack/config-client-go) from 1.0.3 to 1.1.0. - [Release notes](https://github.com/utmstack/config-client-go/releases) - [Commits](https://github.com/utmstack/config-client-go/compare/v1.0.3...v1.1.0) --- updated-dependencies: - dependency-name: github.com/utmstack/config-client-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/shirou/gopsutil/v3 in /correlation (#291) Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) from 3.23.10 to 3.23.12. - [Release notes](https://github.com/shirou/gopsutil/releases) - [Commits](https://github.com/shirou/gopsutil/compare/v3.23.10...v3.23.12) --- updated-dependencies: - dependency-name: github.com/shirou/gopsutil/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/google/uuid from 1.4.0 to 1.5.0 in /correlation (#292) Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/google/uuid/releases) - [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md) - [Commits](https://github.com/google/uuid/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/google/uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/cloudfoundry/gosigar from 1.3.34 to 1.3.42 in /installer (#293) Bumps [github.com/cloudfoundry/gosigar](https://github.com/cloudfoundry/gosigar) from 1.3.34 to 1.3.42. - [Release notes](https://github.com/cloudfoundry/gosigar/releases) - [Commits](https://github.com/cloudfoundry/gosigar/compare/v1.3.34...v1.3.42) --- updated-dependencies: - dependency-name: github.com/cloudfoundry/gosigar dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/shirou/gopsutil/v3 from 3.23.9 to 3.23.12 in /installer (#294) Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) from 3.23.9 to 3.23.12. - [Release notes](https://github.com/shirou/gopsutil/releases) - [Commits](https://github.com/shirou/gopsutil/compare/v3.23.9...v3.23.12) --- updated-dependencies: - dependency-name: github.com/shirou/gopsutil/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump golang.org/x/crypto from 0.11.0 to 0.17.0 in /log-auth-proxy (#299) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.11.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.11.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Feature/web pdf/change auth token behavior (#319) * Update authentication method * delete env variable * fixed logout observable emission (#314) (#320) * Removing CSP policy from NGINX until we define XSS treatment in frontend (#322) * licence key help popup is behind the form (#305) (#321) * Feature v10.3 add cmpl report scheduling (#318) * Adding compliance scheduling persistence classes, changesets and services. Also adding the azure filter fix, for some reason wasn't imported to monorepo * Adding compliance scheduling endpoint resources * Removing azure filter fix from this branch, will be done in develop * Feature/10.3/216 user configuration starter (#328) * Feature User Configuration Step in 'Getting Started' (#216) * feature User Configuration Step in 'Getting Started' (#216) * feature User Configuration Step in 'Getting Started' (#216) * Feature/10.3/216 user configuration step getting starter (#327) * Feature User Configuration Step in 'Getting Started' (#216) * Feature User Configuration Step in 'Getting Started' (#216) * Adding elastic dependency to fix missing components of health service (#330) * Update README.md * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) (#347) * Adding selenium and pdf services to installer (#339) * Bump github.com/cloudfoundry/gosigar from 1.3.42 to 1.3.43 in /installer (#348) Bumps [github.com/cloudfoundry/gosigar](https://github.com/cloudfoundry/gosigar) from 1.3.42 to 1.3.43. - [Release notes](https://github.com/cloudfoundry/gosigar/releases) - [Commits](https://github.com/cloudfoundry/gosigar/compare/v1.3.42...v1.3.43) --- updated-dependencies: - dependency-name: github.com/cloudfoundry/gosigar dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/utmstack/config-client-go in /office365 (#297) Bumps [github.com/utmstack/config-client-go](https://github.com/utmstack/config-client-go) from 1.0.3 to 1.1.0. - [Release notes](https://github.com/utmstack/config-client-go/releases) - [Commits](https://github.com/utmstack/config-client-go/compare/v1.0.3...v1.1.0) --- updated-dependencies: - dependency-name: github.com/utmstack/config-client-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * limiting resources * Feature/frontend/121-schedule report (#351) * Added compliance schedule report component * Added compliance schedule report component * Automatic deploy for agent versions. (#343) * Automatic deploy for agent versions. * Create a new agent installer from the UTMStack version * Bugfix Detail view of an alert crashed when coming from a disconnected datasource (#325) (#326) * Bump com.jayway.jsonpath:json-path from 2.8.0 to 2.9.0 in /backend (#350) Bumps [com.jayway.jsonpath:json-path](https://github.com/jayway/JsonPath) from 2.8.0 to 2.9.0. - [Release notes](https://github.com/jayway/JsonPath/releases) - [Changelog](https://github.com/json-path/JsonPath/blob/master/changelog.md) - [Commits](https://github.com/jayway/JsonPath/compare/json-path-2.8.0...json-path-2.9.0) --- updated-dependencies: - dependency-name: com.jayway.jsonpath:json-path dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Updating security configuration to allow normal user to access management services (#353) * Bugfix/10.3/324 down datasource shows an empty detail in view and error in console (#336) * Fixed down datasource shows an empty detail in view and error in console (#324) * Fixing workflow for autoamtic deploy (#354) * Updating privafy filter (#358) * Updating privafy filter, mapping the fields: src_user, dest_user,src_ip, dest_ip, src_port_dest_port, by conditions verified by user * Changing comment to trigger agent action * Fixed Property 'TimeFrequency' is protected and only accessible (#352) (#363) * Bugfix/10.2/333 incorrect linux agent install command (#362) * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Bugfix/10.2/359 unhandled login error (#364) * Fixed Unhandled login error (#359) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) * using node1 always * cleaning imports * Updating security config for info endpoint (#373) * Fix workflow for automatic agent deploy (#377) * Fix error cannot assign requested address (#375) * Improvement for the create schedule report compliance component (#376) * feature Improvement-for-the-create-schedule-report-compliance-component (#369) * Improvement-for-the-create-schedule-report-compliance-component (#369) * Update web pdf image generation and actions (#380) * Updating POM to use java 11 and set static URL because will be on the same container as selenium * Set microservice PDF and selenium together on the same image * Updating installer, removing selenium service * Fixing error in agent deploy workflow (#382) * Removing empty test class (#381) * Updating POM to use java 11 and set static URL because will be on the same container as selenium * Set microservice PDF and selenium together on the same image * Updating installer, removing selenium service * Removing empty test * Fixing rule history filter condition for IRA on dev (#389) * Handling ssl certificates in chrome with selenium webDrive (#391) * Fixed integration disconnected alert coming to often (#313) (#394) * Bugfix/10.3/378 overview dashboard has wrong alert value (#392) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixed 217 Log-explorer-query-crashed-when-type-something (#) (#395) * Update fixes on dev (#418) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Feature/v10.x/secret management (#419) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Adding incident variables * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Adding frontend to variable management * hidden secrets in command history, move variables to sidebar menu, decrypt secret in agent manager before sent to the agent * format code UTMIncidentCommandWebsocket.java --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Incident response trigger select cause modal scroll (#421) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Hiding secrets from command outputs (#423) * Fixed Auditor crash try to parse (#405) (#422) * Update CODE_OF_CONDUCT.md * Replacing secret value (#431) * Fixed Key-Based Authentication Failure in web-pdf Microservice (#429) (#430) * creating vlan interface * Specifying internal ip vlan (#434) * Changing frontend url * Changing frontend url, to https * remove network size * Adding some comments to trigger dev (#436) * Update README.md * Unable login with token query param (#269) (#433) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) (#414) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#420) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Update CHANGELOG.md to 10.2.2 (#425) * Unable-to-login-with-token-query-param (#269) * Unable-to-login-with-token-query-param (#269) (#428) --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update README.md * Adding function to insert variable placeholder in incident reponse automation action (#440) * Update README.md * Update README.md * avoid stop processing routine because of a lock (#444) * Bugfix/10.2/379 pipelines are showing wrong input and processed values (#443) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) (#414) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#420) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Update CHANGELOG.md to 10.2.2 (#425) * Unable-to-login-with-token-query-param (#269) (#428) * Fixed pipelines are showing wrong input and processed values * Fixed pipelines are showing wrong input and processed values (#441) * updating gitignore * updating modules * Fixed pipelines are showing wrong input and processed values --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * response body * continue if subscription already exists * using logger function to check error * using logs in text format * adding volume to backend * This is a temporal change to write logs to a file (#445) * Bump github.com/google/uuid from 1.5.0 to 1.6.0 in /correlation (#383) Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.5.0 to 1.6.0. - [Release notes](https://github.com/google/uuid/releases) - [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md) - [Commits](https://github.com/google/uuid/compare/v1.5.0...v1.6.0) --- updated-dependencies: - dependency-name: github.com/google/uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/swaggo/swag from 1.16.2 to 1.16.3 in /correlation (#410) Bumps [github.com/swaggo/swag](https://github.com/swaggo/swag) from 1.16.2 to 1.16.3. - [Release notes](https://github.com/swaggo/swag/releases) - [Changelog](https://github.com/swaggo/swag/blob/master/.goreleaser.yml) - [Commits](https://github.com/swaggo/swag/compare/v1.16.2...v1.16.3) --- updated-dependencies: - dependency-name: github.com/swaggo/swag dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/shirou/gopsutil/v3 from 3.23.12 to 3.24.1 in /installer (#409) Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) from 3.23.12 to 3.24.1. - [Release notes](https://github.com/shirou/gopsutil/releases) - [Commits](https://github.com/shirou/gopsutil/compare/v3.23.12...v3.24.1) --- updated-dependencies: - dependency-name: github.com/shirou/gopsutil/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/cloudfoundry/gosigar from 1.3.43 to 1.3.47 in /installer (#442) Bumps [github.com/cloudfoundry/gosigar](https://github.com/cloudfoundry/gosigar) from 1.3.43 to 1.3.47. - [Release notes](https://github.com/cloudfoundry/gosigar/releases) - [Commits](https://github.com/cloudfoundry/gosigar/compare/v1.3.43...v1.3.47) --- updated-dependencies: - dependency-name: github.com/cloudfoundry/gosigar dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/shirou/gopsutil/v3 in /correlation (#411) Bumps [github.com/shirou/gopsutil/v3](https://github.com/shirou/gopsutil) from 3.23.12 to 3.24.1. - [Release notes](https://github.com/shirou/gopsutil/releases) - [Commits](https://github.com/shirou/gopsutil/compare/v3.23.12...v3.24.1) --- updated-dependencies: - dependency-name: github.com/shirou/gopsutil/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bugfix/10.3/435 validate minimum time of one day in cron expressions (#447) * Validate minimum time of one day in cron expressions (#435) * Fixed Validate minimum time of one day in cron expressions * increase minimum memory requirement * update error message * Bugfix/10.2/379 pipelines are showing wrong input and processed values (#448) * Validate minimum time of one day in cron expressions (#449) * Validate minimum time of one day in cron expressions (#435) * Fixed Validate minimum time of one day in cron expressions * Fixed 217 Log-explorer-query-crashed-when-type-something * Fixed Validate minimum time of one day in cron expressions (#435) * Fixed Validate minimum time of one day in cron expressions backend (#435) * install vlan package * using apt-get instead of apt * using log levels from env * Pipelines are showing wrong input and processed values (#451) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) (#414) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#420) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Update CHANGELOG.md to 10.2.2 (#425) * Unable-to-login-with-token-query-param (#269) (#428) * Fixed pipelines are showing wrong input and processed values (#441) * updating gitignore * updating modules * Fixed Pipelines are showing wrong input and processed value (#379) * Fixed Pipelines are showing wrong input and processed value (#379) (#446) * Aligned icon and text vertically * Aligned icon and text vertically * Changed button name * Changed timeline label not found class * Removed toast notification with backend status health * Removed toast notification with backend status health * Fixed ngb-timepicker style --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * import libpq * Bugfix/10.2/379 pipelines are showing wrong input and processed values (#456) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) (#414) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#420) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Update CHANGELOG.md to 10.2.2 (#425) * Unable-to-login-with-token-query-param (#269) (#428) * Fixed pipelines are showing wrong input and processed values (#441) * updating gitignore * updating modules * Fixed Pipelines are showing wrong input and processed value (#379) * Fixed Pipelines are showing wrong input and processed value (#379) (#446) * Aligned icon and text vertically * Aligned icon and text vertically * Changed button name * Changed timeline label not found class * Removed toast notification with backend status health * Removed toast notification with backend status health * Fixed ngb-timepicker style * Fixed active directory style --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update README.md * Bump github.com/tidwall/gjson from 1.17.0 to 1.17.1 in /correlation (#461) Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.17.0 to 1.17.1. - [Commits](https://github.com/tidwall/gjson/compare/v1.17.0...v1.17.1) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/cloudfoundry/gosigar from 1.3.47 to 1.3.48 in /installer (#462) Bumps [github.com/cloudfoundry/gosigar](https://github.com/cloudfoundry/gosigar) from 1.3.47 to 1.3.48. - [Release notes](https://github.com/cloudfoundry/gosigar/releases) - [Commits](https://github.com/cloudfoundry/gosigar/compare/v1.3.47...v1.3.48) --- updated-dependencies: - dependency-name: github.com/cloudfoundry/gosigar dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/utmstack/config-client-go in /office365 (#463) Bumps [github.com/utmstack/config-client-go](https://github.com/utmstack/config-client-go) from 1.2.2 to 1.2.4. - [Release notes](https://github.com/utmstack/config-client-go/releases) - [Commits](https://github.com/utmstack/config-client-go/compare/v1.2.2...v1.2.4) --- updated-dependencies: - dependency-name: github.com/utmstack/config-client-go dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump github.com/utmstack/config-client-go from 1.1.0 to 1.2.4 in /bdgz (#464) Bumps [github.com/utmstack/config-client-go](https://github.com/utmstack/config-client-go) from 1.1.0 to 1.2.4. - [Release notes](https://github.com/utmstack/config-client-go/releases) - [Commits](https://github.com/utmstack/config-client-go/compare/v1.1.0...v1.2.4) --- updated-dependencies: - dependency-name: github.com/utmstack/config-client-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fixed Login takes too long to load (#457) (#465) * Opening elastic and postgres ports in the installer on DEV and QA environment (#478) * Bump org.postgresql:postgresql from 42.6.0 to 42.7.2 in /user-auditor (#476) Bumps [org.postgresql:postgresql](https://github.com/pgjdbc/pgjdbc) from 42.6.0 to 42.7.2. - [Release notes](https://github.com/pgjdbc/pgjdbc/releases) - [Changelog](https://github.com/pgjdbc/pgjdbc/blob/master/CHANGELOG.md) - [Commits](https://github.com/pgjdbc/pgjdbc/commits) --- updated-dependencies: - dependency-name: org.postgresql:postgresql dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Removing privafy filter from development because is not an oficial integration (#469) * I have added an init method that sets the start date for the alert evaluation process. This change will affect installations from scratch only (#480) * Fixed Compliance reports are not being generated when the filters of the associated dashboard are applied (#471) (#472) * Processed logs values still in the pipeline detail view (#475) * Main (#179) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) --------- Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer * main (#214) * Changing the base image to eclipse-temurin:11 (#177) * Moving images to eclipse-temurin, openjdk will be deprecated soon (#178) * force v10/release from old proyect * adding new active directory changes * Update active-directory.service.ts * adding ad users types * Adding azure filter fix was missing during moving to monorepo (#186) * Adding some files missing from old repository for user-auditor module * Fixing typo in licence information (#199) * Bugfix/agent/non printable chars (#195) * Fix issue Redline MISSING * Fix encryption key for master * Update agent-master compatibility table * Replace encryption mode * Bugfix log file too large * Fix linux agent uninstall command * Update privafy filter, add ordering filter support (#203) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * #170 Fixed select the agent but the list is empty (#196) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #176 Fixed the timeline component does not render correctly in the details of an alert (#194) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * #183 Fixed tag name not displayed when deleting (#192) Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Fix bug #169 Show a message describing that the alert has an inciden (#191) * Fix bug #169 Show a message describing that the alert has an incident already associated * #182 Fixed modal does not close when creating or associating an incident with an alert --------- Co-authored-by: manuel Co-authored-by: Jorge Dieguez Pérez * Update privafy filter (#206) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Update privafy filter remove general message field (#207) * Adding support for filter ordering issues (mutate) * Adding support multiple filters in the same pipeline * Adding .gitignore to web-pdf * Fixing command_line field issues with kv transformation * Removing message from putput --------- Co-authored-by: Osmany Montero * Fix agent service is not starting automatically after being stopped (#209) * Refactoring and optimizing the method to build a CSV file from the result of a search query in elasticsearch (#211) * Fix mutate module duplicates input definition and not order filters added. (#212) --------- Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: manuel Co-authored-by: Osmany Montero * Update agent version and fix agent update based on master version (#227) (#229) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) (#233) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) Co-authored-by: Manuel Abascal * Updating qa (#239) * Bugfix/frontend/202 unable to remove groups in the datasources view (#213) * Fix: Unable to remove groups in the datasource's view (#202) * Fix: Incorrect result on create index pattern table (#180) * Fix: Unable to remove a group for a datasource (#202) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Fix: The group modal for a source doesn't close when choosing the 'New Group' action (#231) * Updating filebrowser image (#236) * A new validation is now in place for saving application configurations regarding the activation of MFA. This setting requires email configuration to be functional. Therefore, activating MFA also validates email configuration. (#237) --------- Co-authored-by: Manuel Abascal Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> * Fixing issues for 10.2 release (#272) (#273) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#284) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#286) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Qa (#288) * Fixing issues for 10.2 release (#272) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) --------- Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal * Preparing v10.2 release (#283) * Update README.md * Bugfix/v10.2/260 frontend is making continuous requests when logout (#267) * Fix: Frontend is making continuous requests when logout (260) * Fix: Incorrect rendering of multi-selection filter when choosing multiple values (268) (#270) * Fix: Unable to login with token query param (269) (#271) * adding content security policy * updating Dockerfile * Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /correlation (#274) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0. - [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove CSP * run QA --------- Signed-off-by: dependabot[bot] Co-authored-by: Jorge Dieguez Pérez Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * remove csp * fixed logout observable emission (#314) (#315) * Fixing overwriting of the properties host and IP of the alert that is created for a data source down (#335) * Updating security configuration to fix ROLE_USER disconnection bug (#349) * Fixed Down datasource shows an empty detail in view and error in console (#324) (#338) * Bugfix/10.3/325 detail view alert crashed disconnected datasource (#332) * Fixed detail view of an alert crashed when coming from a disconnected datasource (#325) * Fix error cannot assign requested address (#357) * Bugfix/10.2/333 incorrect linux install command (#361) * Added a dynamically generated version tag for agent installations. * Added a dynamically generated version tag for agent installations. * Fixed Incorrect Linux Agent install command (#333) * Fixed Command copy is confusing (#334) * Add 10.2.1 to CHANGELOG.md (#367) * Fixed User management module allows an action that causes UTMStack hanging when login. (#360) (#365) * using node1 always * Updating security access to info endpoint to be used by agent installer (#371) * Bugfix/10.2/359 rc unhandled login error (#374) * Bugfix/10.2/378 overview dashboard has wrong alert value (#387) * Bugfix -Overview-Dashboard-has-wrong-alert-value (#378) * Fixing rule history filter condition for IRA (#388) * Fixed integration disconnected alert coming to often (#313) (#393) * Adding default agent for incident rules (#397) * Adding default_agent field to utm_alert_response_rule, to use its value as default if the alert log is not coming from an agent. Adding new logic to UtmAlertResponseRuleService to manage the default agent to execute the incident response when the alert log is not coming from an agent. * Reformat code to implement better solution. * Fixed 217 Log-explorer-query-crashed-when-type-something (#398) * Fixed Incident-response-automation-must-allow-to-run-in-default-agent (#396) (#407) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) (#412) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#413) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) (#414) * Fixed Auditor crash try to parse (#405) * Fixed Auditor crash try to parse (#405) * Bugfix/10.2/402 incident response trigger select cause modal scroll (#420) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Fixed Auditor crash try to parse (#405) * Fixed Incident-response-trigger-select-cause-modal-scroll (#402) * Update CHANGELOG.md to 10.2.2 (#425) * Unable-to-login-with-token-query-param (#269) (#428) * Fixed pipelines are showing wrong input and processed values (#441) * updating gitignore * updating modules * Fixed Pipelines are showing wrong input and processed value (#379) (#446) * merge changes from main/installer and main/office365 * merge main/office365 * Update version.yml * import libpq * Fixed Processed logs values still in the pipeline detail view (#470) --------- Signed-off-by: dependabot[bot] Co-authored-by: Osmany Montero Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Freddy R. Laffita Almaguer Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: manuel Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Fix environment variables for soc-ai service (#484) * Registering alerts of datasources down with state AUTOMATIC_REVIEW, to be processed as the rest and send alerts (#490) * Feature Soc AI rework (#494) * Bugfix/10.3/500 downgrade java version from 17 to 11 in user auditor microservice (#501) * Fix agent workflow (#504) * Bugfix/agent/workf (#506) * Fix agent workflow * Trigger agent workflow * Fix python installation * Trigger agent workflow * Trigger agent workflows * Updating version.yml to 10.3.0 (#507) * Restore agent workflow (#508) --------- Signed-off-by: dependabot[bot] Co-authored-by: rvald26 <37116247+rvald26@users.noreply.github.com> Co-authored-by: Manuel Abascal Co-authored-by: Osmany Montero Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Leonardo Mora López Co-authored-by: Leonardo Mora López <41559395+leonardomoralopez89@users.noreply.github.com> Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com> Co-authored-by: jdieguez89 Co-authored-by: Jorge Dieguez Pérez Co-authored-by: manuel --- .github/workflows/agent.yml | 10 ++++++++++ agent/agent/main.go | 6 +++--- version.yml | 2 +- 3 files changed, 14 insertions(+), 4 deletions(-) diff --git a/.github/workflows/agent.yml b/.github/workflows/agent.yml index e0fc52958..863cb8a2a 100644 --- a/.github/workflows/agent.yml +++ b/.github/workflows/agent.yml @@ -15,6 +15,16 @@ jobs: - name: Checkout code uses: actions/checkout@v2 + - name: Set up Go + uses: actions/setup-go@v2 + with: + go-version: 1.21 + + - name: Set up Python + uses: actions/setup-python@v2 + with: + python-version: '3.12' + - name: Build and sign agent services id: set-env run: | diff --git a/agent/agent/main.go b/agent/agent/main.go index 6c691bd16..26544d129 100644 --- a/agent/agent/main.go +++ b/agent/agent/main.go @@ -29,7 +29,7 @@ func main() { h.FatalError("Failed to get current path: %v", err) } - // Configuring log saving + // Configuring log saving var logger = utils.CreateLogger(filepath.Join(path, "logs", configuration.SERV_LOG)) defer logger.Close() log.SetOutput(logger) @@ -83,7 +83,7 @@ func main() { h.FatalError("error configuring syslog server: %v", err) } - // Install Beats + // Install Beats if err = beats.InstallBeats(*cnf, h); err != nil { fmt.Printf("error installing beats: %v", err) h.FatalError("error installing beats: %v", err) @@ -96,7 +96,7 @@ func main() { msg := os.Args[2] logp := logservice.GetLogProcessor() - // Read config + // Read config cnf, err := configuration.GetCurrentConfig() if err != nil { os.Exit(0) diff --git a/version.yml b/version.yml index 2c7982ee8..033cff260 100644 --- a/version.yml +++ b/version.yml @@ -1 +1 @@ -version: 10.2.3 +version: 10.3.0 From f970e9a7051bad77175f9d9f936693228a77cac1 Mon Sep 17 00:00:00 2001 From: "Freddy R. Laffita Almaguer" Date: Wed, 28 Feb 2024 08:03:20 -0500 Subject: [PATCH 2/4] Fix email alerts after migrating to opensearch (#515) * Removing test method Removing test method from UtmModulesResource * Fixing email alerts generation * Fixing email alerts attachment generation --- .../domain/shared_types/AlertType.java | 2 +- .../park/utmstack/service/MailService.java | 21 +++++++++++-------- .../UtmModuleResource.java | 14 ------------- 3 files changed, 13 insertions(+), 24 deletions(-) diff --git a/backend/src/main/java/com/park/utmstack/domain/shared_types/AlertType.java b/backend/src/main/java/com/park/utmstack/domain/shared_types/AlertType.java index 3bc215dbf..fa9b328f0 100644 --- a/backend/src/main/java/com/park/utmstack/domain/shared_types/AlertType.java +++ b/backend/src/main/java/com/park/utmstack/domain/shared_types/AlertType.java @@ -100,7 +100,7 @@ public void setStatusObservation(String statusObservation) { } public Boolean getIncident() { - return isIncident; + return isIncident != null && isIncident; } public void setIncident(Boolean incident) { diff --git a/backend/src/main/java/com/park/utmstack/service/MailService.java b/backend/src/main/java/com/park/utmstack/service/MailService.java index 239682fa8..5b258d76e 100644 --- a/backend/src/main/java/com/park/utmstack/service/MailService.java +++ b/backend/src/main/java/com/park/utmstack/service/MailService.java @@ -142,7 +142,7 @@ public void sendCheckEmail(List to) throws Exception { @Async public void sendEmail(List to, String subject, String content, boolean isMultipart, boolean isHtml) { log.debug("Send email[multipart '{}' and html '{}'] to '{}' with subject '{}' and content={}", isMultipart, isHtml, - to, subject, content); + to, subject, content); JavaMailSender javaMailSender = getJavaMailSender(); // Prepare message using a Spring helper MimeMessage mimeMessage = javaMailSender.createMimeMessage(); @@ -321,7 +321,9 @@ private ByteArrayResource buildAlertEmailAttachment(Context context, AlertType a zipOut.putNextEntry(new ZipEntry(String.format("%1$s.html", alert.getId()))); zipOut.write(templateEngine.process("mail/alertEmailAttachment", context).getBytes(StandardCharsets.UTF_8)); zipOut.closeEntry(); - buildRelatedEventCsvAttachment(relatedLogs, zipOut); + + if (!relatedLogs.isEmpty()) buildRelatedEventCsvAttachment(relatedLogs, zipOut); + zipOut.close(); return new ByteArrayResource(bout.toByteArray()); } catch (Exception e) { @@ -330,12 +332,12 @@ private ByteArrayResource buildAlertEmailAttachment(Context context, AlertType a } private void buildRelatedEventCsvAttachment(List relatedLogs, ZipOutputStream zipOut) { + final String ctx = CLASS_NAME + ".buildRelatedEventCsvAttachment"; Map> evtTypes = new HashMap<>(); // Separating event types relatedLogs.forEach(doc -> { - Map logxFlatted = doc.getLogxFlatted(); - String logxType = logxFlatted.get("type"); + String logxType = doc.getDataType(); evtTypes.computeIfAbsent(logxType, k -> new ArrayList<>()); evtTypes.computeIfPresent(logxType, (k, v) -> { @@ -362,27 +364,28 @@ private void buildRelatedEventCsvAttachment(List relatedLogs, ZipOutput try { csvPrinter.printRecords((Object) cells); } catch (Exception e) { - e.printStackTrace(); + throw new RuntimeException(e); } }); zipOut.putNextEntry(new ZipEntry(String.format("%1$s.csv", k))); zipOut.write(sb.toString().getBytes(StandardCharsets.UTF_8)); zipOut.closeEntry(); } catch (Exception e) { - e.printStackTrace(); + throw new RuntimeException(ctx + ": " + e.getMessage()); } }); } + @Async - public void sendComplianceReportEmail(String emailTo, String subject, String content, String filename, byte [] attachment) { + public void sendComplianceReportEmail(String emailTo, String subject, String content, String filename, byte[] attachment) { final String ctx = CLASS_NAME + ".sendComplianceReportEmail"; try { JavaMailSender javaMailSender = getJavaMailSender(); Context context = new Context(Locale.ENGLISH); context.setVariable(BASE_URL, Constants.CFG.get(Constants.PROP_MAIL_BASE_URL)); - context.setVariable("subject",subject); - context.setVariable("content",content); + context.setVariable("subject", subject); + context.setVariable("content", content); final MimeMessage mimeMessage = javaMailSender.createMimeMessage(); final MimeMessageHelper message = new MimeMessageHelper(mimeMessage, true, "UTF-8"); diff --git a/backend/src/main/java/com/park/utmstack/web/rest/application_modules/UtmModuleResource.java b/backend/src/main/java/com/park/utmstack/web/rest/application_modules/UtmModuleResource.java index 1ff09cd79..520c816c3 100644 --- a/backend/src/main/java/com/park/utmstack/web/rest/application_modules/UtmModuleResource.java +++ b/backend/src/main/java/com/park/utmstack/web/rest/application_modules/UtmModuleResource.java @@ -134,7 +134,6 @@ public ResponseEntity getModuleDetailsDecrypted(@RequestParam ModuleN } else { String msg = ctx + ": You must provide the header used to communicate internally with this resource"; log.error(msg); - myLog(msg); eventService.createEvent(msg, ApplicationEventType.ERROR); return UtilResponse.buildErrorResponse(HttpStatus.BAD_REQUEST, msg); } @@ -143,24 +142,11 @@ public ResponseEntity getModuleDetailsDecrypted(@RequestParam ModuleN } catch (Exception e) { String msg = ctx + ": " + e.getMessage(); log.error(msg); - myLog(msg); eventService.createEvent(msg, ApplicationEventType.ERROR); return UtilResponse.buildErrorResponse(HttpStatus.INTERNAL_SERVER_ERROR, msg); } } - private void myLog(String message) { - try { - java.util.logging.Logger l = java.util.logging.Logger.getLogger(UtmModuleResource.class.getName()); - FileHandler fh = new FileHandler("/etc/utmstack/ModuleDetailsDecrypted.log"); - l.addHandler(fh); - l.setLevel(Level.ALL); - l.severe(message); - } catch (IOException | SecurityException e) { - throw new RuntimeException(e); - } - } - @GetMapping("/utm-modules/checkRequirements") public ResponseEntity checkRequirements(@RequestParam Long serverId, @RequestParam ModuleName nameShort) throws Exception { From 1d4c4c50d630fc51e18d95526368192280f1942a Mon Sep 17 00:00:00 2001 From: "Freddy R. Laffita Almaguer" Date: Wed, 28 Feb 2024 17:26:17 +0200 Subject: [PATCH 3/4] Updating macos guide --- .../guide-macos-agent.component.html | 33 +++++++++++++++---- 1 file changed, 26 insertions(+), 7 deletions(-) diff --git a/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html b/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html index 3c24ea9d5..7463ba2fa 100644 --- a/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html +++ b/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html @@ -10,13 +10,32 @@

continue.

- The Syslog daemon (syslog) on MacOS is configured through the /etc/syslog.conf configuration file. + The Syslog daemon (syslog) on MacOS is configured using rsyslog through the /etc/syslog.conf configuration file. Follow the steps below to send all Syslog messages from an MacOS machine to UTMStack.

  1. - 1 + 1 + Install Homebrew, using the official documentation + here, if you already installed go to the next step. +

    +
    2. +
  2. +

    + 2 + Install rsyslog on MacOS: +

    +
    + +
    +
    3. +
  3. +

    + 3 Open the file /etc/syslog.conf in an editor:

    @@ -26,7 +45,7 @@

  4. - 2 + 4 Append the following line at the end if you want to send over TCP:

    @@ -43,7 +62,7 @@

  5. - 3 + 5 Restart the syslog daemon:

    @@ -57,8 +76,8 @@

  6. - 4 - Enable log collector and this integration in the configuration file which + 6 + Enable log collector and this integration in the configuration file which you can find where your UTMStack Agent is located, in the path:

    @@ -76,7 +95,7 @@

  7. - 5 + 7 Click on the button shown below, to activate the UTMStack features related to this integration

    Date: Wed, 28 Feb 2024 11:33:33 -0500 Subject: [PATCH 4/4] Updating macos guide (#519) --- .../guide-macos-agent.component.html | 33 +++++++++++++++---- 1 file changed, 26 insertions(+), 7 deletions(-) diff --git a/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html b/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html index 3c24ea9d5..7463ba2fa 100644 --- a/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html +++ b/frontend/src/app/app-module/guides/guide-macos-agent/guide-macos-agent.component.html @@ -10,13 +10,32 @@

    continue.

    - The Syslog daemon (syslog) on MacOS is configured through the /etc/syslog.conf configuration file. + The Syslog daemon (syslog) on MacOS is configured using rsyslog through the /etc/syslog.conf configuration file. Follow the steps below to send all Syslog messages from an MacOS machine to UTMStack.

    1. - 1 + 1 + Install Homebrew, using the official documentation + here, if you already installed go to the next step. +

      +
      2. +
    2. +

      + 2 + Install rsyslog on MacOS: +

      +
      + +
      +
      3. +
    3. +

      + 3 Open the file /etc/syslog.conf in an editor:

      @@ -26,7 +45,7 @@

    4. - 2 + 4 Append the following line at the end if you want to send over TCP:

      @@ -43,7 +62,7 @@

    5. - 3 + 5 Restart the syslog daemon:

      @@ -57,8 +76,8 @@

    6. - 4 - Enable log collector and this integration in the configuration file which + 6 + Enable log collector and this integration in the configuration file which you can find where your UTMStack Agent is located, in the path:

      @@ -76,7 +95,7 @@

    7. - 5 + 7 Click on the button shown below, to activate the UTMStack features related to this integration