1. 24 Nov, 2021 1 commit
  2. 23 Nov, 2021 1 commit
  3. 22 Nov, 2021 1 commit
  4. 19 Nov, 2021 1 commit
  5. 18 Nov, 2021 1 commit
  6. 17 Nov, 2021 2 commits
  7. 16 Nov, 2021 2 commits
  8. 08 Nov, 2021 1 commit
  9. 05 Nov, 2021 1 commit
  10. 04 Nov, 2021 2 commits
  11. 03 Nov, 2021 1 commit
  12. 27 Oct, 2021 1 commit
  13. 22 Oct, 2021 6 commits
  14. 19 Oct, 2021 1 commit
  15. 18 Oct, 2021 2 commits
  16. 14 Oct, 2021 6 commits
  17. 13 Oct, 2021 1 commit
  18. 12 Oct, 2021 4 commits
    • alaunois's avatar
      Mon 10989 fix side effect (#10258) · b82cd767
      alaunois authored
      
      
      * fix(conf) fix side effect on config list pages
      
      * fix(conf) fix side effect on monitoring and admin list pages
      
      * fix(conf) fix fatal error when duplicating commands
      
      * Update www/include/common/common-Func.php
      
      Co-authored-by: default avatarAdrien Morais <31647811+adr-mo@users.noreply.github.com>
      b82cd767
    • alaunois's avatar
      fix(conf/host) fix enable/disable action anchor (#10164) · 6e88b67e
      alaunois authored
      Refs: MON-10989
      6e88b67e
    • alaunois's avatar
      Mon 10989 - CRSF token vulnerability (#10150) · 99afcc1b
      alaunois authored
      
      
      * fix(secu) add fcts relative to csrf token validation
      
      * fix(secu) check csrf token validity when performing action in list pages
      (contact, contactTemplate, contactGroup, timeperiod)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (host, hostGroup, hostTemplate, hostCategories)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (serviceByHost, serviceByHostGroup, serviceTemplate, serviceGroup, serviceCategories, metaservice)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (command, connector)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (escalation, hostDependency, hostGroupDependency, serviceDependency,
      serviceGroupDependency, metaserviceDependency)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (snmp traps, groups, manufacturer)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (conf/pollers > centreonBroker, nagios, reources, servers)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/performances > componentTemplates, graphTemplates,
      virtualMetrics)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/dowtimes > comments/commentHost, dowtime, recurrentDowtime)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/parameters > ldap, images)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/acl > actionAccess, groupAccess, menuAccess, resourcesAccess)
      
      * fix(secu) add token to individual enable/disable action icon
      
      * fix(secu) corrections following review comments
      
      * fix(secu) corrections following review comments
      
      * Update www/lib/HTML/QuickForm/HTML_QuickFormCustom.php
      
      * fix(secu) modify token verification and deletion following code review
      
      Co-authored-by: default avatarKevin Duret <kduret@centreon.com>
      99afcc1b
    • cg-tw's avatar
      DEVOPS-519 Fix title of api doc (20.10) (#10282) · 1a3bc5a7
      cg-tw authored
      1a3bc5a7
  19. 11 Oct, 2021 3 commits
  20. 08 Oct, 2021 2 commits