vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-21 01:54:34 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
15919 commits 26 branches 19 tags 460 MiB
Commit graph

203 commits

Author SHA1 Message Date
Alfredo Cardigliano
e14c227ebe Add logout page (WIP) 2022-01-31 13:08:53 +01:00
Luca Deri
edfb31b4ec Warning fixes 2022-01-30 21:20:08 +01:00
Luca Deri
63d2e261ac Warning fixes 2022-01-13 17:50:05 +01:00
Alfredo Cardigliano
f2060f2488 Copyright update (C) 2022-01-03 09:35:09 +01:00
Luca Deri
a4481fc48f Minor cosmetic change of the ntopng startup message 2021-12-22 10:31:57 +01:00
Luca Deri
ed9bb187cf Added check on session cookie to request login in case a non-REST request does not have a valid session id 2021-12-09 17:23:28 +01:00
Luca Deri
f4c512d552 Code cleanup and stubs for supporting ClickHouse (via -F clickhouse) 2021-10-21 11:58:08 +02:00
Alfredo Cardigliano
8fc8566f2a Slack endpoint improvements 2021-07-22 10:47:05 +02:00
Alfredo Cardigliano
be546f064d Check 'session' cookie in addition to the session key in case the REST API is used (fix #5413) 2021-05-28 18:36:50 +02:00
Luca Deri
d81d8a3295 Fixes bug that precvented session key to work when multiple ntopng instances are started per host 2021-05-21 23:29:15 +02:00
Luca Deri
1a3713394b Compilation fix 2021-04-09 16:02:48 +02:00
Alfredo Cardigliano
5d27dde70d Add SNMP polling in nEdge (implement #3872) 2021-03-25 14:36:56 +00:00
Simone Mainardi
e8b9721479 Fixes string truncation possibly causing limited auth bypass 2021-03-04 17:51:29 +01:00
Alfredo Cardigliano
7493b02a07 Print failure message on wrong login credentials (fix #5042) 2021-02-19 12:20:54 +01:00
Luca Deri
9a8d3c521a Portable across Linux/non-Linux platforms fix 2021-01-26 11:37:25 +01:00
Luca Deri
30094c7c79 Linux compilation fix 2021-01-26 11:33:23 +01:00
Luca Deri
14c23188bb Added ntop.getStaticFileEpoch() mathos for handling static file lifecycle 2021-01-26 11:09:39 +01:00
Luca Deri
a1178a0791 Updated (C) 2021-01-02 12:08:23 +01:00
Luca Deri
ecd9383ec6 Added missing Server header 2020-12-28 16:23:52 +01:00
Luca Deri
75e4b89beb Warning fix 2020-12-03 12:10:30 +01:00
Alfredo Cardigliano
91e431efae Fix 32 in 64 wrap (SNMP::handle_async_response) 2020-12-02 17:00:57 +00:00
Simone Mainardi
72502711ea Additional cleanup of unused volatile members 2020-11-26 19:00:19 +01:00
Luca Deri
494513181d Impemented CORS support 2020-11-19 21:51:28 +01:00
gabryon99
48316d5067 add per user token creation gui (#4735, #4721) 2020-11-17 18:29:58 +01:00
Simone Mainardi
e88e13450e Implements tokens for the REST API 2020-11-16 18:07:01 +01:00
Luca Deri
33925fa6bb Implemented authorization token 2020-11-16 17:49:14 +01:00
Alfredo Cardigliano
77ae074b90 Cleanup generate_session_id api 2020-11-16 16:08:08 +01:00
Ricter Zheng
4990491d06
fix #4703 (#4726) 
* fix #4703

* treat public scope datasources/widgets as authorized
 2020-11-16 09:39:50 +01:00
Alfredo Cardigliano
e3ca57daf7 Add auth_session_duration parameter to the v1/create/ntopng/session.lua REST API 2020-11-11 16:10:23 +01:00
Alfredo Cardigliano
0c5de96a44 New lua API ntop.createUserSession. New REST API rest/v1/get/ntopng/session.lua to generate session cookies. 2020-07-30 18:08:03 +02:00
Alfredo Cardigliano
e35a35d73f Split set_cookie and create_session 2020-07-30 14:45:15 +02:00
Luca Deri
3ac5c98aec Added startup refresh when ntopng is starting up 2020-07-25 10:56:03 +02:00
Luca Deri
f2c3ee137c Host stats cleanup 2020-07-13 23:56:46 +02:00
Luca Deri
643e78f8d5 Implements most of #4113 
- Removed unused google assistant scripts
- Cleaned up existing REST calls using _POST["payload"]

The _GET["parameter"] element is still present and it will be removed soon
 2020-07-06 18:06:40 +02:00
Simone Mainardi
fed5cc9577 Enforces CSRF checks only when a session is used 
When direct username:password are submitted, there is no need to enforce
such checks as it cannot be a CSRF attack. Indeed, CSRF attacks rely
on a session.

Fixes #4014
 2020-06-03 09:59:31 +02:00
Simone Mainardi
8ed40ee159 Fixes broken redirect with --http-prefix 
Addresses #3957
 2020-05-20 13:10:58 +02:00
emanuele-f
279c4fd470 Improve plugins directory code 2020-05-20 09:56:17 +02:00
Alfredo Cardigliano
c318b13989 Replace json_object_object_get with json_object_object_get_ex (deprecated) 2020-05-15 08:55:59 +00:00
emanuele-f
6b4c507492 Move CSRF token from request to session 
Now the CSRF token is bound to the user session.
This addresses the issues outlined in #3866 , in particular the CSRF expiration issues.
 2020-05-06 13:04:12 +02:00
Luca Deri
d80e0a43d5 HTTP errors are now also reported in huma readeable format 2020-04-29 12:18:37 +02:00
emanuele-f
0ad1b65512 Add plugins support for httpdocs, HTML templates and Lua modules 
Such resources can be placed into the following plugin subdirs:

- ./httpdocs: javascript, css and similar, see plugins_utils.getHttpdocsDir
- ./modules: Lua modules, see plugins_utils.loadModule
- ./templates: HTML templates, see plugins_utils.renderTemplate
 2020-04-14 17:53:25 +02:00
Luca Deri
da443ff5e6 Fix for preventing .pem files to be served 2020-04-14 15:37:28 +02:00
Luca Deri
0a80fa663e Widget and datasource improvements 2020-04-13 22:08:07 +02:00
Luca Deri
db08c2a233 Datasource and widget consolidation (work in progress) 2020-04-13 18:56:08 +02:00
Luca Deri
7eca89e9f5 Merge branch 'dev' of https://github.com/ntop/ntopng into dev 2020-04-02 19:58:56 +02:00
Luca Deri
48b3fbc348 Reworked error messages 2020-04-02 19:50:31 +02:00
Alfredo Cardigliano
a254a3ad6b Support for Enterprise L license 2020-04-02 11:02:56 +00:00
emanuele-f
ead1dc0545 Fix plugins menu integration 
Fixes #3655
 2020-03-27 12:48:37 +01:00
emanuele-f
88eccc4eaa http options index fix 2020-03-25 19:03:57 +01:00
emanuele-f
6608182920 Rework HTTP server startup 
Now the HTTP server starts accepting requests only after
startup.lua has completed. This prevents spurius errors
from occurring during startup, e.g. #3595 .
 2020-03-25 18:56:11 +01:00