Commit Graph

7058 Commits

Author SHA1 Message Date
Luke Heath
3e97749e50
Add agile principles and populate why scrum (#10318) 2023-03-08 15:57:52 -06:00
Zachary Winnerman
0ee617778a
Dogfood returns (#10345)
# Checklist for submitter

If some of the following don't apply, delete the relevant line.

- [ ] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [ ] Documented any API changes (docs/Using-Fleet/REST-API.md or
docs/Contributing/API-for-contributors.md)
- [ ] Documented any permissions changes
- [ ] Input data is properly validated, `SELECT *` is avoided, SQL
injection is prevented (using placeholders for values in statements)
- [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for
new osquery data ingestion features.
- [ ] Added/updated tests
- [ ] Manual QA for all new/changed functionality
  - For Orbit and Fleet Desktop changes:
- [ ] Manual QA must be performed in the three main OSs, macOS, Windows
and Linux.
- [ ] Auto-update manual QA, from released version of component to new
version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2023-03-08 16:38:53 -05:00
Martin Angers
0d6b9b98d4
Add mdm.macos_settings disk encryption fields to the response of GET /hosts/{id} and device. (#10371) 2023-03-08 15:42:23 -05:00
Noah Talerman
9aa2ddd7ce
MDM docs: Correct config option (#10391)
- Correct name for config option required for MDM beta
2023-03-08 15:22:25 -05:00
Noah Talerman
50125b7ac3
Using Fleet docs: Add turn off MDM FAQ (#10237)
- Add FAQ that informs the user what does turning off MDM means and how
do I turn it back on

Addresses docs for the Turn off MDM story:
https://github.com/fleetdm/fleet/issues/8206#issuecomment-1448728160
2023-03-08 12:19:04 -08:00
Mike McNeil
12fff6b5fb
fix copypasta in new hiring process (#10393) 2023-03-08 13:43:23 -06:00
Jacob Shandling
4fb958770c
UI: Aggregate mac settings indicators (#10303)
**Addresses** #9415 

**Implements**
<img width="1225" alt="Screenshot 2023-03-03 at 3 29 06 PM"
src="https://user-images.githubusercontent.com/61553566/222854277-5585f6d7-cb4d-4946-881f-01f79bf8342a.png">

**Demo**
https://www.loom.com/share/1cb3dbb9a1194581be89102029b0d6ba

If some of the following don't apply, delete the relevant line.

- [x] Changes file added for user-visible changes in `changes/` 
- [x] Updated [testing
inventory](https://docs.google.com/spreadsheets/d/1HyKnq7jTk4IJmDHVwU-x9kcH7bgvjDTxohML4hPGfK8/edit#gid=0)
- [x] Manual QA for all new/changed functionality

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-03-08 11:43:00 -08:00
Noah Talerman
63337690fd
MDM docs: Update contributor docs and add feature flags (#10373)
- Update configuration docs to include config options required for beta
users: feature flags and SCEP challenge
- Update contributor docs to point to user facing docs for generating
APNs and ABM cert and keys.
2023-03-08 13:57:02 -05:00
Sharon Katz
312ad09e6d
Separate YMLs (#10386) 2023-03-08 13:55:55 -05:00
Sharon Katz
eae7ca23fa
empty non-complited yml (#10389) 2023-03-08 13:46:23 -05:00
Robert Fairburn
e4803819a1
Update references from fleet-infra to confidential (#10388)
Updates to support https://github.com/fleetdm/fleet/issues/10330
2023-03-08 12:38:40 -06:00
Eric
243e0bc6f1
Update send-data-to-vanta script (#10384)
Changes:
- Updated the send-data-to-vanta to set a boolean value for the
`isManaged` property of Windows and macOS hosts if the
`enrollment_status` of a host's `mdm` property is either "On (automatic)
or "On (manual)".
2023-03-08 12:06:16 -06:00
Marcos Oviedo
b15f2b877b
Issue 10300 self healing (#10335)
This relates to #10300 

# Checklist for submitter

If some of the following don't apply, delete the relevant line.

- [X] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [X] Manual QA for all new/changed functionality
  - For Orbit and Fleet Desktop changes:
- [X] Manual QA must be performed in the three main OSs, macOS, Windows,
and Linux.
- [X] Auto-update manual QA from the released version of the component
to the new version (see [tools/tuf/test](../tools/tuf/test/README.md))
---------

Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2023-03-08 14:49:03 -03:00
Jacob Shandling
0b71e04e2e
UI: Fix list misalignment via better CSS (#10376)
## Addresses #10231 

## Now 
<img width="1566" alt="Screenshot 2023-03-07 at 3 59 14 PM"
src="https://user-images.githubusercontent.com/61553566/223583545-b1d82002-2355-40b5-be1c-cff20c335e20.png">

# Checklist for submitter
- [ ] Manual QA for all new/changed functionality

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-03-08 09:39:03 -08:00
Jacob Shandling
c34d046b11
Fix profile upload button hover/click issues (#10377)
## Addresses #10302 

## Now


https://user-images.githubusercontent.com/61553566/223589009-c1d22dd3-9432-4569-aece-d895630c1d4b.mov




# Checklist for submitter
- [x] Manual QA for all new/changed functionality

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-03-08 09:38:51 -08:00
Mike McNeil
6ea64d745e
Extrapolate things from hiring template (#10387)
relates to https://github.com/fleetdm/confidential/pull/2150
2023-03-08 11:34:35 -06:00
Gabriel Hernandez
5f30d2eafb
removing cypress references for e2e and add docs for QA wolf (#10382)
Documentation updates around cypress and new QA wolf platform for e2e
testing
2023-03-08 16:00:57 +00:00
Mo Zhu
f031011938
Clarify reproduction steps in QA process (#10101)
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
2023-03-08 07:53:15 -08:00
Eric
403b067056
Update Vanta integration to sync Windows hosts (#10346)
Closes: #9735

Changes:
- Updated the `send-data-to-vanta` script to:
   - Sync Windows hosts with Vanta.
   - Report the MDM status of macOS hosts.
- Updated the notes on the `/connect-vanta` page to link to the screen
lock policy for Windows.
2023-03-08 09:45:53 -06:00
Luke Heath
b5602105c0
Add candidate correspondence section (#10172) 2023-03-08 09:44:12 -06:00
Eric
4cc7709675
Website: Update expiration timestamp sent to create-license-key helper (#10375)
Changes:
- Updated the `expiresAt` value sent to the `create-license-key` helper
in `save-billing-info-and-subscribe` action to be a JS timestamp
2023-03-08 09:07:10 -06:00
Luke Heath
182846a686
Add disclaimer about setting FLEET_DEV_MDM_ENABLED (#10315)
- Required feature flag for MDM beta
2023-03-08 09:06:49 -05:00
Martin Angers
765c8754b6
Add enabled/disabled disk encryption activities and trigger profiles generation (#10319) 2023-03-08 08:31:53 -05:00
Mike McNeil
1b8d8d9526
Reduce words and explain source of truth (#10323)
Related to https://github.com/fleetdm/confidential/pull/2113
.
2023-03-07 20:35:45 -06:00
Mike McNeil
21a0bf876d
Sentence case (#10372)
Please see
https://fleetdm.com/handbook/marketing/content-style-guide#sentence-case


Behold! The offending "S":
<img width="690" alt="image"
src="https://user-images.githubusercontent.com/618009/223569059-b1adc776-5003-49c8-ae6e-701b79bcc389.png">
2023-03-07 20:35:11 -06:00
Josh Brower
4316fe945f
Initial cut for CIS 9.1.x (#10307) 2023-03-07 17:30:12 -05:00
Luke Heath
917e07b67a
Add FLEET_DEV_MDM_ENABLED to MDM setup documentation (#10314) 2023-03-07 13:01:32 -06:00
Roberto Dip
7c3a281c23
add schema tables to support DEP Okta flow (#10290)
For #10271 and #10273, this adds the underlying table that will support
the Okta DEP flow.
2023-03-07 10:57:26 -03:00
Mike McNeil
7fdf15a29f
RIP "👩‍🏭 Roles (job descriptions)" (#10333)
["👩‍🏭 Roles (job
descriptions)"](https://docs.google.com/document/d/1wS5jFfrZtO4xMH-3U_S8pE59gNXOTR3rS1WWD8pkq9E/edit#heading=h.9o3hx5rchpit)
is now fleetdm.com/handbook/company#open-positions


Relates to https://github.com/fleetdm/confidential/pull/2132

.
2023-03-07 03:27:15 -06:00
Mike McNeil
37e4ad8c16
Position filled (revenue-operations-manager.md) (#10331)
.
2023-03-07 00:36:23 -06:00
Mike McNeil
8466671cef
Exclude draft PRs from KPIs (#10327)
@eashaw DEF check this code, please. I didn't test it at all and wrote
it during a meeting and lots of interruptions.
2023-03-06 15:57:53 -06:00
RachelElysia
04169ec84b
Fleet UI: Critical icon on policy table (#10313) 2023-03-06 15:57:15 -05:00
Zachary Winnerman
281cb07b2b
Decision: Zero tolerance for 5xx errors, failed scheduled jobs, failed requests, timeouts, and out-of-SLA response times (#10311) 2023-03-06 14:09:26 -06:00
Roberto Dip
9fb8fa464c
restore restrictive permissions for GET /mdm/apple and adjust UI (#10282)
Related to #10121 this reverts #10107, and modifies the UI to use
`mdm.enabled_and_configured` instead of the `GET /mdm/apple` endpoint so
we don't face permissions issues and Maintainers are able to see the
Controls page.

More details and rationale in
https://github.com/fleetdm/fleet/issues/10121#issuecomment-1450335235

Tested with Admins, Maintainers and Observers
2023-03-06 16:54:37 -03:00
Juan Fernandez
6ff2c449cf
Improve test coverage and bug fix (#10301)
Addresses https://github.com/fleetdm/fleet/issues/10112

Improved test coverage, also fixed a bug related to vulnerability processing for mac office apps.
2023-03-06 15:07:27 -04:00
Mike McNeil
1528c87f34
add advisors/investors (#10320) 2023-03-06 13:02:26 -06:00
gillespi314
6ae052c17d
Optimize sql for mdm profile status counts (#10304)
Local performance results with 2000+ records in hosts (no index for
hosts.uuid) and 4000+ records in host_mdm_apple_profiles:

New query (30ms)
<img width="1166" alt="Screenshot 2023-03-03 at 3 41 22 PM"
src="https://user-images.githubusercontent.com/73313222/222861016-4adab32a-697b-48ab-9e1e-6043ea9ba561.png">

Old query (900ms)
<img width="1166" alt="Screenshot 2023-03-03 at 3 41 49 PM"
src="https://user-images.githubusercontent.com/73313222/222861104-a6f4758b-0c17-4d25-b0aa-20292c932108.png">
2023-03-06 15:41:27 -03:00
Roberto Dip
074ea7dc8d
add config values for MDM Okta integration (#10295)
For #10228 , all new config values are automagically tested by
`TestConfigRoundtrip`.
2023-03-06 14:47:29 -03:00
Benjamin Edwards
b7b307c244
fix fleetctl apply with default configuration (#10305) 2023-03-06 10:44:40 -05:00
Roberto Dip
aa7466b819
fix test race in schedule mock (#10309)
This fixes the races that are occurring on tests
([example](https://github.com/fleetdm/fleet/actions/runs/4339799935))
2023-03-06 12:24:40 -03:00
Gabriel Hernandez
b8fa08b53c
implement mdm scripts page UI (#10092)
relates to #9831

Implements the mdm mac OS scripts UI. This is just the UI atm and is not
accessible in the application at the moment.
2023-03-06 15:03:48 +00:00
Martin Angers
50a2739609
Allow updating enable_disk_encryption via the Modify Team endpoint (#10208) 2023-03-06 09:54:51 -05:00
Mike McNeil
48b33a22f7
How to queue up an equity grant? (Plus fix board) (#10280)
.
2023-03-03 22:48:57 -06:00
gillespi314
36ac72d697
Add mdm profiles status filter to hosts endpoints (#10246) 2023-03-03 18:19:46 -06:00
Jacob Shandling
55fe65e062
Update aggregate profiles api (#10274)
* Change order of returned json fields
* Change field "failed" to "failing"

- [x] Manual QA
- [x] Updated docs

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-03-03 15:35:47 -08:00
Artemis Tosini
07a045301b
Add macOS CIS 2.6.7 (Administrator password for preferences) (#10259)
This adds a test for if passwords are required are required to access
some system-wide preferences on macOS. It's marked as "Manual" in the
CIS pdf but I wasn't sure how to copy that into here.
2023-03-03 15:41:51 -05:00
Benjamin Edwards
dc210d594b
missed config translation (#10294)
missed setting the new rotation configs when wiring up all the
dependencies in fleet serve
2023-03-03 15:28:58 -05:00
Sharon Katz
cf18f1f79f
CIS_MAC13_5.2.5 (#10251) 2023-03-03 15:14:00 -05:00
Sharon Katz
2295575fdb
CIS_MAC13_2.8.1 (#10192) 2023-03-03 15:12:23 -05:00
Marcos Oviedo
a2e8a787c9
Pushing CIS policies check for 2.2.8 to 2.2.39 (#10283)
This relates to #9848
2023-03-03 17:05:07 -03:00