Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-23 08:58:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 111
6100 commits 3336 branches 577 tags 2.4 GiB
Commit graph

976 commits

Author SHA1 Message Date
RachelElysia
c04ebbc490
Fleet UI: Missing host and low disk space filters on dashboard and manage host page (#7728) 2022-10-14 15:21:30 -05:00
RachelElysia
3eaceec64d
Fleet UI: App-wide use of host's display_name (#8169) 2022-10-14 14:26:15 -05:00
gillespi314
59876d37ea
Add usage statistics to measure policy violations (#8199) 2022-10-14 13:55:37 -05:00
Gabriel Hernandez
a950e9d095
Feat/update query doc sidepanel (#8214) 
* create new components for query side panel

* add reusable icon component that uses svg for icons

* integrate with new osquery_fleet_schema.json data

* update UI to work with osquery_fleet_schema.json

* add remark-gfm to safely support direct urls in markdown

* move fleet ace into markdown component so we can render code with ace editor

* add testing for new query sidebar

* remove incomplete tests for query sidepanel
 2022-10-14 17:45:57 +01:00
Lucas Manuel Rodriguez
c16ab5f823
Fix undetected missing migrations (#8228) 2022-10-14 13:26:04 -03:00
RachelElysia
7804406aa8
Fix mdm enrollment status api call (#8218) 2022-10-14 09:29:40 -05:00
RachelElysia
5084ea2783
Fleet UI: Select all fix on table checkboxes (#8198) 2022-10-13 09:29:30 -04:00
RachelElysia
564a25883f
Fleet UI: Fix padding between multiple enroll secrets (#8193) 2022-10-13 09:28:59 -04:00
Martin Angers
fae8e4ca2c
Translate the AppConfig and Team validation messages to be more user-friendly (#8171) 2022-10-12 17:10:50 -04:00
Juan Fernandez
6939af045d
Fleet desktop should use lightweight endpoint for getting failing policies count (#8159) 
Fleet desktop should use lightweight endpoint for getting failing policies count
 2022-10-12 17:13:43 -03:00
Juan Fernandez
91ea7bf244
Vulnerabilities not detected if NVD CVE feed is unavailable or rate limited (#8191) 
If there is any problem when synching NVD source, proceed with vuln scan
 2022-10-12 15:09:18 -04:00
Juan Fernandez
72cfdac634
Only ingest installed deb_packages (#8160) 
Only ingest deb_packages with status = 'install ok installed'
 2022-10-12 14:27:07 -04:00
Roberto Dip
4042f8d826
add browser-related security headers to HTML responses (#8180) 
related to #8031, this adds the following headers to HTML responses:

- Strict-Transport-Security: informs browsers that the site should only
  be accessed using HTTPS, and that any future attempts to access it
  using HTTP should automatically be converted to HTTPS.
- X-Frames-Options: disallows embedding the UI in other sites via
  <frame>, <iframe>, <embed> or <object>, which can prevent attacks like
  clickjacking.
- X-Content-Type-Options: prevents browsers from trying to guess the MIME
  type which can cause browsers to transform non-executable content into
  executable content.
- Referrer-Policy: prevents leaking the origin of the referrer in the
  Referer.

additionally, this ensures we set `X-Content-Type-Options` for CSV and
installer responses.
 2022-10-12 10:19:21 -03:00
Martin Angers
d321cfc68e
Add inherited policies to the team's list policies response payload (#8068) 2022-10-12 08:35:36 -04:00
Lucas Manuel Rodriguez
42c47a6fa7
Add missing return to ingestKubequeryInfo (#8178) 
* Add missing return to ingestKubequeryInfo

* No need to log error twice
 2022-10-12 09:00:49 -03:00
Tomas Touceda
d912376f02
Handle tcp read timeouts (#8163) 
* Handle tcp read timeouts properly

* Add changes file

* Fix bad mini refactor after nailing the test

* Update based on review

* Update comment
 2022-10-11 13:58:52 -03:00
RachelElysia
7de1b847ea
Fleet UI: Host's software details links to software, improved responsiveness (#8080) 2022-10-11 09:27:20 -04:00
Roberto Dip
e630fabf89
token rotation for fleet desktop (#7779) 
This implements what's described in detail here https://github.com/fleetdm/fleet/blob/main/proposals/fleet-desktop-token-rotation.md
 2022-10-10 17:15:35 -03:00
gillespi314
ca379e7459
Fix directIngestOSWindows error in query ingestion for non-Windows hosts (#8148) 2022-10-10 13:27:15 -05:00
RachelElysia
6d94472224
Fleet UI: Move status from route param to query param (#8035) 2022-10-10 14:07:47 -04:00
Gabriel Hernandez
bc194d18c7
Feat/update live query states (#8122) 
* add awaitng results state to live query search

* make spinner more reusable and add it to query page awaiting results

* create common QueryResultsHeader component to use on query policy flows
 2022-10-10 15:39:49 +01:00
Frank Sievertsen
1eacecf637
Add new missing value to existing status URL parameter at the GET /hosts endpoint (#7916) 2022-10-10 07:45:39 -04:00
Frank Sievertsen
b25e74b285
add missing_30_days_count to host_summary response (#7915) 2022-10-08 08:58:27 -04:00
Frank Sievertsen
e9f7066d87
7135 host display name (#7873) 2022-10-08 08:57:46 -04:00
Roberto Dip
bfe698d090
cleanup all policy memberships for a host on re-enrollment (#8120) 
Related to #7664, this cleans up all policy memberships for a host when its re-enrolled, afterwards only the relevant policy memberships for the host will be created.
 2022-10-07 11:36:17 -03:00
RachelElysia
34088aaab9
Fleet UI: /login route redirects to /dashboard if logged in (#8102) 2022-10-06 13:33:32 -04:00
RachelElysia
92d6161edb
Fleet UI: Clarify last fetched and last seen time on Manage Host Page (#8087) 2022-10-06 09:15:40 -04:00
Noah Talerman
e98941aeaf
Prepare for 4.21.0 (#8011) 
This PR addresses the instructions under number (1) in the releasing Fleet steps: https://fleetdm.com/docs/contributing/releasing-fleet#what-to-do

- Update CHANGELOG
- Bump versions
 2022-10-05 13:18:22 -07:00
Martin Angers
c23a15394e
Keep created_at timestamp of existing enroll secrets (#8062) 2022-10-05 08:35:36 -04:00
RachelElysia
ee2f28e890
Fleet UI: Rename to machine serial and private IP address (#8074) 2022-10-04 13:35:32 -04:00
RachelElysia
69ee2bd4c1
Fleet UI: Update create team name suggestions (#8073) 2022-10-04 13:35:15 -04:00
Zach Wasserman
44dc5ab175
Add handling for Apple Team ID in Notarization (#7991) 
Fleet's Notarization workflows no longer work without this argument, so this is added as an optional argument for Notarization.
 2022-10-04 09:48:21 -07:00
gillespi314
e3590beaf7
Ingest ReleaseId from Windows registry (#8030) 2022-10-04 10:34:08 -05:00
RachelElysia
fe9effa575
Update Docs: Add file carving and links to permissions documentation (#8064) 2022-10-04 11:12:10 -04:00
RachelElysia
01654925c7
Fleet UI: Add optional tooltip delay used on compatibility tooltip (#8065) 2022-10-04 10:03:51 -04:00
Juan Fernandez
812d3c85de
Fixes various bugs with NVD vulnerability detection (#7963) 
- Improved NVD CPE matching process.
- Fixed bug with the 'software/<id>' endpoint not showing the generated_cpe value.
 2022-10-04 07:04:48 -04:00
Frank Sievertsen
a5912bedea
API Bugs: Team view (fleet/teams/{id}) #6970 
Fix host_count and user_count being always returned as `0` in `teams/{id}` endpoint.
 2022-10-04 09:26:04 +02:00
Lucas Manuel Rodriguez
a4d7e81475
Orbit to support environments with revoked enroll secrets (#8056) 
* Support environments with revoked enroll secrets

* Add instructions on how to fix Orbit enroll

* Rename to last_recorded_error

* Add alternative instructions
 2022-10-03 17:28:19 -03:00
Roberto Dip
c0bb0cc4e7
avoid panic when storing a nil pointer in cached_mysql (#8020) 
related to #7420, this improves the logic of the clone function in cached_mysql to properly handle nil and nil pointers.
 2022-10-03 13:29:20 -03:00
Roberto Dip
cd2ab6b17c
add server side validation for emails (#8022) 
related to https://github.com/fleetdm/fleet/issues/7199, this adds email validation to the `verifyCreateShared` which is used for user creation in the server.

validation messages come directly from Go's `net/mail` package.

```
~/fleet $ curl 'https://localhost:8080/api/latest/fleet/users/admin' -X POST -H 'Authorization: Bearer $TOKEN' --data-raw '{"email":"asdf","name":"asdf@asd.com","password":"as;lkdfjasdlk;fja3234@","global_role":"observer","teams":[]}'
{
  "message": "Validation Failed",
  "errors": [
    {
      "name": "email",
      "reason": "mail: missing '@' or angle-addr"
    }
  ]
}
```
 2022-10-03 13:29:01 -03:00
Martin Angers
8eee0b35f3
Add validations for agent options' command-line flags section. (#7979) 2022-10-03 08:29:41 -04:00
Gabriel Hernandez
64fa2bafe4
fix sso input values with leading or trailing spaces by adding trimming (#8000) 
* add trimming to sso form data values

* add sso login failure error message on login form
 2022-09-30 14:59:43 +01:00
gillespi314
2a6895b015
Log user email upon successful SSO login (#8012) 2022-09-29 09:25:45 -05:00
RachelElysia
7cdc2e2027
Fleet UI: Helpful team agent errors (#8001) 2022-09-28 13:31:44 -04:00
Gabriel Hernandez
7147859de1
fix label filter showing under table header and adding no custom filter state (#7998) 2022-09-28 15:12:37 +01:00
RachelElysia
b9046da481
Fleet UI: Print mode fixed (#7982) 2022-09-27 21:05:12 -04:00
RachelElysia
0291a709e2
Fleet UI Bug Fix: Error adding integration doesn't clear fields (#7988) 2022-09-27 21:04:19 -04:00
gillespi314
749ff9ec2b
Add logging to capture user email upon successful login (#7927) 
* Log user email upon successful login

* Add user email to logger context

* Use logging.With Extras for login email
 2022-09-27 16:32:46 -03:00
Martin Angers
142e298631
Update osquery validations from 5.4.0 to 5.5.1 (#7960) 2022-09-27 08:35:57 -04:00
Juan Fernandez
d7ca8fcd66
Reverted changes made to Fleet Desktop - should not use the lightweight 'desktop' endpoint (#7919) 
Reverted changes made to Fleet Desktop. Desktop should not use the lightweight 'desktop' endpoint
 2022-09-23 15:18:19 -04:00
Sharvil Shah
7d4e2e2b4b
Orbit remote management for flags (#7246) 
Co-authored-by: Roberto Dip <dip.jesusr@gmail.com>
 2022-09-24 00:30:23 +05:30
Gabriel Hernandez
fca5ad3158
add edit agent options activity text (#7695) 2022-09-23 12:05:07 -04:00
RachelElysia
b23374ad16
Fleet UI: Placeholder text vertical padding (#7828) 2022-09-23 10:44:14 -04:00
Martin Angers
5477acb688
Add low_disk_space_count property to GET /host_summary (#7872) 2022-09-21 15:56:17 -04:00
Martin Angers
db24cf32fa
Add new low_disk_space URL parameter to the GET /hosts endpoint (and GET /hosts/count) (#7853) 2022-09-21 15:16:31 -04:00
Zach Wasserman
bdad9ac1d3
Use Group SID on fleetctl on Windows (#7854) 
This is intended to allow packages to be built on localizations other than English.

See #5065.

Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
 2022-09-21 11:39:26 -07:00
RachelElysia
eacc75b585
Fleet UI: Add es_process_file_events, password_policy, windows_update_history to osquery tables (#7831) 
* Add es_process_file_events to osquery tables

* Correct change file

* Add password_policy and windows_update_history to fleet/frontend/osquery_tables

* Update changelog
 2022-09-20 08:52:53 -04:00
RachelElysia
299a4e54fc
Fleet UI: Dashboard summary tiles clickable with new component (#7826) 2022-09-19 16:47:43 -04:00
RachelElysia
f98e9885ef
Fix side panel scroll issue (#7829) 2022-09-19 15:30:03 -04:00
Martin Angers
478b4d3f69
Validate team and appconfig payloads, with dry-run and force modes (#7731) 2022-09-19 13:53:44 -04:00
Roberto Dip
15c93f02ea
add retry logic for native notarization and codesigning (#7806) 
Related to #7130, this adds logic to retry native notarization up to three times if it fails for some reason.

Since we're adding retries in various places, I added a new package under pkg for this purpose.
 2022-09-19 13:08:39 -03:00
Noah Talerman
dab45f1180
Prepare for 4.20.1 (#7783) 2022-09-15 14:28:23 -05:00
Zachary Winnerman
a1a80c775f
Upgrade database to mysql 8 compatible (#7703) 
* Upgrade database to mysql 8 compatible

* fixup

* Added changelog for mysql8 upgrade
 2022-09-15 13:29:59 -04:00
Juan Fernandez
4ef883b311
Feature 6946: Fleet Desktop should use minimal api end-point for data (#7536) 
Updated desktop client to use new EE desktop endpoint.
 2022-09-15 12:12:50 -04:00
RachelElysia
7a5663bebf
Fleet UI: Disable save host status without required dropdowns selected (#7759) 2022-09-15 12:03:28 -04:00
Zach Wasserman
486b67caca
Add initial support for kubequery (#6863) 
Configuration and fixes for the Fleet server and frontend to add support
for https://github.com/Uptycs/kubequery.

Co-authored-by: Michal Nicpon <michal@fleetdm.com>
 2022-09-15 10:02:17 -06:00
RachelElysia
b32f2b04aa
Fleet UI: Fix styling on query modal buttons (#7756) 2022-09-14 11:38:25 -05:00
Juan Fernandez
765031d962
Bug 6717: Duplicate calls on vulnerability third party integrations. (#7698) 
If the same vulnerability was present in more than one software, then duplicated third party integration calls were being issued.
 2022-09-13 10:41:52 -04:00
Juan Fernandez
b60d535d4a
Feature 7084: Add new EE endpoint for Fleet Desktop (#7530) 
Added new EE endpoint, that is meant to be used by Fleet Desktop only. The new endpoint will return the number of failed policies.
 2022-09-12 15:37:38 -04:00
Juan Fernandez
14d0499c4b
Bug 7682: Fixed issue with migration not running on MariaDB (#7701) 
Update migration to account for different FK name under MariaDB.
 2022-09-12 15:36:55 -04:00
Juan Fernandez
98e4d6e0bc
Feature 7394: Use MSRC parser to generate security bulletin artifacts (#7491) 
Generate security artifacts using the MSRC parser.
 2022-09-12 15:17:13 -04:00
Gabriel Hernandez
eb06ef8049
simplify TeamsDropdown component and update ManageHostPage to keep po… (#7606) 
* simplify TeamsDropdown component and update ManageHostPage to keep policy filter across team change

* fix TeamDropdown for users not on global team
 2022-09-12 16:18:12 +01:00
RachelElysia
7fa483d847
Indicate hoverable text with grey font (#7655) 2022-09-12 11:00:39 -04:00
Frank Sievertsen
dd8cf37a85
#7624 accept empty bearer authorization token. (#7685) 
* Fix #7624 accept empty bearer authorization token.

* add changes file
 2022-09-12 16:09:41 +02:00
Noah Talerman
26b610dde4
Prepare for 4.20.0 (#7651) 2022-09-09 16:01:03 -05:00
Martin Angers
988f50fa34
Document all keys in config and team YAML documents (#7449) 
- Add a new "Configuration for contributors" doc page. Move settings that are not recommended for production use
- Remove settings modified in the `config` YAML document from the deploying/configuration doc page
- Document all keys in `config` and `teams` YAML documents
- Add comments to several `.go` files and remove unused struct
 2022-09-08 17:57:38 -04:00
Roberto Dip
740aafd817
Revert token rotation (#7628) 
This reverts all changes related to token rotation.
 2022-09-08 15:04:02 -03:00
Martin Angers
5809348164
Update hostsEnrolledByOperatingSystem examples to match actual platform/version values (#7621) 2022-09-08 11:08:03 -05:00
RachelElysia
cd8e42ba82
Fleet UI: Fix bug to view more than 20 teams (#7623) 2022-09-08 11:13:20 -04:00
RachelElysia
13cb716674
Fleet UI: Update software automation preview payload modal (#7607) 2022-09-07 14:09:25 -04:00
RachelElysia
b6c63af55f
Fleet UI: Fix add host button disappearing (#7600) 2022-09-07 09:37:58 -04:00
Roberto Dip
9174c7c711
token rotation for Fleet Desktop (#7517) 
See https://github.com/fleetdm/fleet/issues/6348 for a very detailed rundown

Co-authored-by: Martin Angers <martin.n.angers@gmail.com>
 2022-09-06 20:25:29 -03:00
Juan Fernandez
b6d084deec
Feature 7559: Include 3rd party severity scores in the vulnerability web-hook payload (#7581) 
Premium users should receive vulnerability scores as part of the web-hook payload.
 2022-09-06 15:12:17 -04:00
RachelElysia
88d70954f7
Fleet UI: Bug fix, flakey count rerender (#7590) 2022-09-06 11:41:53 -04:00
RachelElysia
4083aefd8e
Fleet UI: Bug fix user page pagination (#7584) 2022-09-06 11:40:20 -04:00
Juan Fernandez
e86aa9d99b
Bug 7465: Bump out of date migrations (#7478) 
Bump out of date migrations
 2022-09-06 10:58:10 -04:00
Martin Angers
aa0102d6b6
Remove aggregate host counts from GET /hosts responses (#7510) 2022-09-06 10:34:06 -04:00
RachelElysia
f9737cdb48
Fleet UI: macOS dashboard Munki issues (#7096) 2022-09-02 17:05:07 -05:00
RachelElysia
55b844715d
UI: Consistent code for anchor elements, specifically external links (#6542) 2022-09-02 15:28:42 -04:00
RachelElysia
9f0f1fbe29
Fleet UI Bug: Fix double scroll bar from tooltip rendering off page (#7567) 2022-09-02 15:27:03 -04:00
RachelElysia
c0a947e948
Fleet UI: Fix welcome to fleet button styling (#7541) 2022-09-02 14:11:21 -04:00
gillespi314
26753ef62b
Add issues count to GET /labels/{id}/hosts response (#7381) 2022-09-02 09:13:53 -05:00
RachelElysia
3e310ba150
Fleet UI: Fix bug with label sidebar not collapsing (#7402) 2022-09-01 17:42:25 -04:00
Noah Talerman
15a7f8a18c
Prepare for 4.19.1 (#7453) 2022-09-01 12:14:44 -05:00
Michal Nicpon
0709d1bc5c
improve vuln cpe matching on macos (#6985) 
* add cpe translations
* fix matching on target_sw
 2022-09-01 10:02:07 -06:00
Gabriel Hernandez
8c017c3ef0
add error message when setup fails on registration page (#7395) 
* add error message when setup fails on registration page

* add test for error

Co-authored-by: Luke Heath <luke@fleetdm.com>
 2022-08-31 17:17:27 +01:00
RachelElysia
2f10e53082
Fleet UI: Fix clearing filters on manage host page (#7466) 2022-08-31 08:31:21 -07:00
Juan Fernandez
2699c22143
Feature 7077: Add MSRC feed parser (#7424) 
Added parser for MSRC
 2022-08-30 16:39:50 -04:00
Juan Fernandez
87717df1da
Bug 7441: Upgrading to 4.19.0 might fail due to migration (#7446) 
* Make Change software vendor width mig. more robust

If there are two or more entries in the software table with the same name, version, source, release and arch but different vendors then the migration used for increasing the vendor width will fail.
 2022-08-30 11:20:48 -04:00
gillespi314
8157359f84
Ingest Windows host display version for hosts table (#7403) 2022-08-30 10:16:48 -05:00