1. 17 Nov, 2021 2 commits
  2. 16 Nov, 2021 3 commits
  3. 08 Nov, 2021 1 commit
  4. 05 Nov, 2021 1 commit
  5. 04 Nov, 2021 4 commits
  6. 03 Nov, 2021 1 commit
  7. 27 Oct, 2021 1 commit
  8. 26 Oct, 2021 1 commit
  9. 22 Oct, 2021 4 commits
  10. 21 Oct, 2021 1 commit
  11. 19 Oct, 2021 2 commits
  12. 18 Oct, 2021 2 commits
  13. 15 Oct, 2021 4 commits
  14. 14 Oct, 2021 1 commit
  15. 13 Oct, 2021 4 commits
  16. 12 Oct, 2021 4 commits
    • alaunois's avatar
      Mon 10989 fix side effect (#10258) · 8115fc68
      alaunois authored
      
      
      * fix(conf) fix side effect on config list pages
      
      * fix(conf) fix side effect on monitoring and admin list pages
      
      * fix(conf) fix fatal error when duplicating commands
      
      * Update www/include/common/common-Func.php
      
      Co-authored-by: default avatarAdrien Morais <31647811+adr-mo@users.noreply.github.com>
      8115fc68
    • alaunois's avatar
      fix(conf/host) fix enable/disable action anchor (#10164) · 521280ea
      alaunois authored
      Refs: MON-10989
      521280ea
    • alaunois's avatar
      Mon 10989 - CRSF token vulnerability (#10150) · bb48fe70
      alaunois authored
      
      
      * fix(secu) add fcts relative to csrf token validation
      
      * fix(secu) check csrf token validity when performing action in list pages
      (contact, contactTemplate, contactGroup, timeperiod)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (host, hostGroup, hostTemplate, hostCategories)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (serviceByHost, serviceByHostGroup, serviceTemplate, serviceGroup, serviceCategories, metaservice)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (command, connector)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (escalation, hostDependency, hostGroupDependency, serviceDependency,
      serviceGroupDependency, metaserviceDependency)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (snmp traps, groups, manufacturer)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (conf/pollers > centreonBroker, nagios, reources, servers)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/performances > componentTemplates, graphTemplates,
      virtualMetrics)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/dowtimes > comments/commentHost, dowtime, recurrentDowtime)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/parameters > ldap, images)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/acl > actionAccess, groupAccess, menuAccess, resourcesAccess)
      
      * fix(secu) add token to individual enable/disable action icon
      
      * fix(secu) corrections following review comments
      
      * fix(secu) corrections following review comments
      
      * Update www/lib/HTML/QuickForm/HTML_QuickFormCustom.php
      
      * fix(secu) modify token verification and deletion following code review
      
      Co-authored-by: default avatarKevin Duret <kduret@centreon.com>
      bb48fe70
    • cg-tw's avatar
      DEVOPS-519 Fix title of api doc (21.04) (#10283) · 10954fb0
      cg-tw authored
      10954fb0
  17. 11 Oct, 2021 4 commits