Commit Graph

11064 Commits

Author SHA1 Message Date
RachelElysia
b2c089c351
Fleet FE: Do not pass empty search string to API for bulk transfer/delete hosts (#17525) 2024-03-11 12:08:41 -04:00
Tim Lee
d4ba30cfa1
17257 validate bulk ops request filters (#17514) 2024-03-11 10:02:51 -06:00
Eric
94cd621360
Website: Update signup.js (#17470)
Related to: https://github.com/fleetdm/confidential/issues/5695

Changes:
- Updated `signup.js` to send a request to Zapier.
2024-03-11 10:48:41 -05:00
Eric
fdcf255d6c
Website: update cards on pricing page (#17506)
Closes: #17325

Changes:
- Added a third card to the pricing page that directs users to the "talk
to us" form on the contact page
2024-03-11 13:17:40 +09:00
RachelElysia
1c442963e0
[unreleased nits] Vuln feature: missing tooltips, wrong software view… (#17516) 2024-03-08 16:58:16 -05:00
Victor Lyuboslavsky
b174a476a2
Fixing unreleased spec bug in team host status webhook feature. (#17502)
Fixing unreleased spec bug in team host status webhook feature #17094.
Bug #17498
# Checklist for submitter

<!-- Note that API documentation changes are now addressed by the
product design team. -->

- [ ] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
  - Not needed. Part of new feature.
- [x] Added/updated tests
- [x] Manual QA for all new/changed functionality
2024-03-08 15:09:33 -06:00
Eric
b667227ce3
Website: (docs) Fix indentation of code blocks nested in ordered lists (#17512)
Closes: #17475

Changes:
- Updated `basic-documentation.less` to fix the indentation of the text
content inside code blocks that are nested in ordered lists
2024-03-08 14:28:43 -06:00
Roberto Dip
525233efea
fix unreleased bug with ADE profile assignment (#17509)
for unreleased #17508
2024-03-08 16:45:18 -03:00
Gabriel Hernandez
944082d014
fix server url column header name (#17504)
real quick fix to the server url column header name.
2024-03-08 18:54:43 +00:00
Dante Catalfamo
3e55ddd955
Add macos-vm-auto-enroll script (#17448)
Script will build a fleet-osquery package, launch a fresh macos VM and
install it. It will also download the correct MDM profile and prepare it
to be enabled
2024-03-08 13:54:12 -05:00
Victor Lyuboslavsky
3ad98164e0
Update workstations.yml - gitops demo for dogfood (#17505)
# Checklist for submitter

If some of the following don't apply, delete the relevant line.

<!-- Note that API documentation changes are now addressed by the
product design team. -->

- [ ] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [ ] Documented any permissions changes (docs/Using
Fleet/manage-access.md)
- [ ] Input data is properly validated, `SELECT *` is avoided, SQL
injection is prevented (using placeholders for values in statements)
- [ ] Added support on fleet's osquery simulator `cmd/osquery-perf` for
new osquery data ingestion features.
- [ ] Added/updated tests
- [ ] If database migrations are included, checked table schema to
confirm autoupdate
- For database migrations:
- [ ] Checked schema for all modified table for columns that will
auto-update timestamps during migration.
- [ ] Confirmed that updating the timestamps is acceptable, and will not
cause unwanted side effects.
- [ ] Manual QA for all new/changed functionality
  - For Orbit and Fleet Desktop changes:
- [ ] Manual QA must be performed in the three main OSs, macOS, Windows
and Linux.
- [ ] Auto-update manual QA, from released version of component to new
version (see [tools/tuf/test](../tools/tuf/test/README.md)).
2024-03-08 11:20:11 -06:00
Eric
41d1822684
Website: update heading on landing pages (#17503)
changes:
- "Empowering IT teams" » "Empowering security and IT teams, globally"

@mikermcneil I went with "Empowering security and IT teams, globally"
instead of "Empowering security and IT teams" because it was already
used on the vulnerability management page.
2024-03-08 11:02:30 -06:00
Eric
a6aa260992
Website: Add tooltips to features on the pricing page (#17362)
Closes: https://github.com/fleetdm/confidential/issues/4864

Changes:
 - Added tooltips to the features table on the pricing page.
2024-03-08 10:47:03 -06:00
Austin Culter
917b8b0d85
Update broken URL to fleet-deployment.yml on "Deploy Fleet on Kubernetes" docs (#17486)
The _"Fleet's best practice `fleet-deployment.yml` file"_ link on the
["Deploy Fleet on Kubernetes" docs
page](https://fleetdm.com/docs/deploy/deploy-fleet-on-kubernetes)
doesn't actually target the YAML file it purports to and, instead, it
just points to the Markdown version of the "Deploy Fleet on Kubernetes"
docs on GitHub.

This PR changes the target URL so that link actually goes to the place
where one would expect it to (the YAML file).
2024-03-08 10:46:30 -06:00
Roberto Dip
7d0513000f
fix link in scripts docs (#17488) 2024-03-08 13:45:45 -03:00
Jacob Shandling
2584f6794a
Add integration test for change password endpoint (#17319)
## Addresses #16863 

- [x] Added/updated tests

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2024-03-08 08:28:00 -08:00
Jacob Shandling
aa1845a06b
UI – Fix sw detail error handling (#17478)
## Addresses:
-  unreleased bug with error handling on the vulnerability details page
- miscellaneous code and style improvements

Bug (404 and 403s not being omitted from throwing and error as
intended):

![image](https://github.com/fleetdm/fleet/assets/61553566/4d5e556e-c812-497c-85b8-bdc3af0bc805)

Fixed:
<img width="1277" alt="Screenshot 2024-03-07 at 3 37 22 PM"
src="https://github.com/fleetdm/fleet/assets/61553566/55c28bda-7d2f-49e7-ad69-094df8d66b46">

- [x] Manual QA for all new/changed functionality

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
Co-authored-by: RachelElysia <71795832+RachelElysia@users.noreply.github.com>
2024-03-08 08:21:48 -08:00
Roberto Dip
a39932b013
ammendment to properly fix #17489 (#17499)
for #17489, found an edge case during extra testing.
2024-03-08 13:15:04 -03:00
Lucas Manuel Rodriguez
37885d0932
Remove filtering of private IPs in public IP field (#17352)
#11102

- [X] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [X] Added/updated tests
- [x] Manual QA for all new/changed functionality
2024-03-08 12:57:18 -03:00
Sarah Gillespie
b0803559e7
Trucate MDM server url in hosts table UI (#17497) 2024-03-08 09:57:07 -06:00
RachelElysia
75e280e090
[unreleased bugs] Vuln details page: missing cards, incorrect link (#17495) 2024-03-08 10:53:02 -05:00
Sarah Gillespie
ed5191cf8a
Fix tooltip font size in settings page UI (#17474) 2024-03-08 09:49:05 -06:00
Gabriel Hernandez
1ca3e3e7ff
remove unneeded table boarders on mdm page (#17492)
remove unneeded header boarders on mdm pages.

**before:**


![image](https://github.com/fleetdm/fleet/assets/1153709/6fd93f49-1218-468c-a83b-aa80ca7b0384)


**after:**


![image](https://github.com/fleetdm/fleet/assets/1153709/ad885532-c88e-474e-b88c-90155c5416e3)


- [x] Manual QA for all new/changed functionality
2024-03-08 15:46:38 +00:00
Roberto Dip
1be3aa2ffb
improve MDM detection with enrollment state checks (#17494)
for #17489
2024-03-08 12:21:07 -03:00
RachelElysia
cbce4621ec
[unreleased bugs] Fleet UI: Missing vulnerability filter block / incorrect link param (#17473) 2024-03-08 09:22:25 -05:00
RachelElysia
563aa1e9bf
Fleet UI/docs: Update notes about public IP address (#17383) 2024-03-08 09:21:56 -05:00
Eric
954634c6fe
Website: Update vulnerability management image on homepage (#17483) 2024-03-07 21:08:26 -06:00
Noah Talerman
d52643b3eb
Add OS updates to permissions table (#17384)
- Maintainers and up can edit OS udpates
2024-03-07 17:47:54 -05:00
RachelElysia
7e264b386f
[P1] Fleet UI: Hide bulk selection when unsupported filter (#17463) 2024-03-07 16:38:25 -05:00
Luke Heath
70d369dcf7
Update Releasing-Fleet.md (#17436) 2024-03-07 15:17:37 -06:00
Victor Lyuboslavsky
165917b492
Doc changes for running live queries with team_id=0 (No team) (#17267)
Doc changes for #16350
2024-03-07 14:23:18 -06:00
Sharon Katz
2be6a32295
Update Releasing-Fleet.md (#17233)
Swap steps 1 and 3

---------

Co-authored-by: Luke Heath <luke@fleetdm.com>
2024-03-07 15:07:00 -05:00
Tim Lee
2e67ef61d4
Bugfix: Revert host filters fix (#17390) (#17464)
This reverts commit 4b2ebdc8dc.
2024-03-07 12:57:27 -07:00
Eric
447baf32d3
Website: Update "Talk to us" form redirect (#17465)
Changes:
- Updated the "Talk to us" form on the /contact page to redirect users
who have <700 hosts to the "Lets get you set up" Calendly event
(https://calendly.com/fleetdm/chat)
2024-03-07 13:47:28 -06:00
RachelElysia
6b73816548
Fleet UI: Fix host summary data styling bug (#17421) 2024-03-07 14:46:13 -05:00
Eric
dcaf2d0a4c
Website: update relative link validation in markdown content (#17213)
Closes: #16797

Changes:
- Updated `build-static-content` to throw an error if an extensionless
Markdown link containing a hash link is found.
- Fixed two broken relative links in the contributing documentation
2024-03-07 13:45:41 -06:00
Victor Lyuboslavsky
e01c79ca7f
Updating server config docs. (#17214)
Server config doc updates for:
https://github.com/fleetdm/fleet/issues/16331
2024-03-07 13:22:03 -06:00
Victor Lyuboslavsky
58f30aaf99
Allowing GitOps role to read org configs -- doc change. (#17238)
Allowing GitOps role to read org configs.

Docs for https://github.com/fleetdm/fleet/pull/17223
2024-03-07 13:21:14 -06:00
Victor Lyuboslavsky
a173be8f52
For fleetctl gitops, when MDM configs are not explicitly defined in gitops yml file, they are now set to default values. (#17223)
For fleetctl gitops, when MDM configs are not explicitly defined in
gitops yml file, they are now set to default values.
#17209

Gitops role can now read org config/settings. This is used to determine
whether license is Premium.
Doc changes for permission access:
https://github.com/fleetdm/fleet/pull/17238

# Checklist for submitter

If some of the following don't apply, delete the relevant line.

<!-- Note that API documentation changes are now addressed by the
product design team. -->

- [x] Changes file added for user-visible changes in `changes/` or
`orbit/changes/`.
See [Changes
files](https://fleetdm.com/docs/contributing/committing-changes#changes-files)
for more information.
- [x] Documented any permissions changes (docs/Using
Fleet/manage-access.md)
- [x] Added/updated tests
- [x] Manual QA for all new/changed functionality
2024-03-07 13:20:14 -06:00
Drew Baker
6e31da558b
Update handbook for LinkedIn promoted posts. (#17236)
Added LinkedIn promoted posts to communications page and demand. ...

---------

Co-authored-by: Sam Pfluger <108141731+Sampfluger88@users.noreply.github.com>
2024-03-07 12:36:12 -06:00
Brock Walters
b112626874
Update apple-developer-certificates-on-linux-for-configuration-profil… (#17461)
…e-signing.md

Changed a typo in the SCP instruction for username & domain & one
sentence near the end.

---------

Co-authored-by: JD <spokanemac@users.noreply.github.com>
2024-03-07 08:45:59 -08:00
Roberto Dip
53c270e3cd
add webserver to unmanage Jamf devices for MDM migration (#17458)
# Checklist for submitter

- [x] Manual QA for all new/changed functionality
2024-03-07 12:52:02 -03:00
Sarah Gillespie
06d5c9cada
Fix UI styling of host name in ran script activity item (#17437) 2024-03-07 09:28:24 -06:00
Roberto Dip
e8b7ce81dc
don't run SCEP test in parallel to avoid race in dependency (#17457)
The https://pkg.go.dev/go.mozilla.org/pkcs7 package uses an unguarded
package-level variable:


33d05740a3/ber.go (L19-L21)

This was causing this data race during tests:

```
==================
WARNING: DATA RACE
Read at 0x0000009b89b0 by goroutine 22:
  go.mozilla.org/pkcs7.asn1Structured.EncodeTo()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/ber.go:21 +0x56
  go.mozilla.org/pkcs7.(*asn1Structured).EncodeTo()
      <autogenerated>:1 +0xa5
  go.mozilla.org/pkcs7.ber2der()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/ber.go:68 +0xdb
  go.mozilla.org/pkcs7.Parse()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/pkcs7.go:160 +0x12f
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep.ParsePKIMessage()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep.go:234 +0x1d2
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep_test.testParsePKIMessage()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep_test.go:21 +0x56
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep_test.TestNewCSRRequest.func1()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep_test.go:198 +0x7e5
  testing.tRunner()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1595 +0x261
  testing.(*T).Run.func1()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x44

Previous write at 0x0000009b89b0 by goroutine 23:
  go.mozilla.org/pkcs7.asn1Structured.EncodeTo()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/ber.go:21 +0x6e
  go.mozilla.org/pkcs7.(*asn1Structured).EncodeTo()
      <autogenerated>:1 +0xa5
  go.mozilla.org/pkcs7.ber2der()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/ber.go:68 +0xdb
  go.mozilla.org/pkcs7.Parse()
      /home/runner/go/pkg/mod/go.mozilla.org/pkcs7@v0.0.0-20210826202110-33d05740a352/pkcs7.go:160 +0x12f
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep.(*PKIMessage).DecryptPKIEnvelope()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep.go:344 +0xde
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep_test.TestNewCSRRequest.func1()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep_test.go:199 +0x7fa
  testing.tRunner()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1595 +0x261
  testing.(*T).Run.func1()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x44

Goroutine 22 (running) created at:
  testing.(*T).Run()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x845
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep_test.TestNewCSRRequest()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep_test.go:165 +0x3ac
  testing.tRunner()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1595 +0x261
  testing.(*T).Run.func1()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x44

Goroutine 23 (running) created at:
  testing.(*T).Run()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x845
  github.com/fleetdm/fleet/v4/server/mdm/scep/scep_test.TestNewCSRRequest()
      /home/runner/work/fleet/fleet/server/mdm/scep/scep/scep_test.go:165 +0x3ac
  testing.tRunner()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1595 +0x261
  testing.(*T).Run.func1()
      /opt/hostedtoolcache/go/1.21.7/x64/src/testing/testing.go:1648 +0x44
==================
    testing.go:1465: race detected during execution of test
=== NAME  TestNewCSRRequest/KeyEncipherment_not_set_with_NOP_certificates_selector
```
2024-03-07 12:01:52 -03:00
Noah Talerman
d0467de86e
Update features.yml w/ new timelines (#17323)
- Add "Fleet gets in your calendar" (#17230)
- "Declaration (DDM) profiles" (#14550) before "App deployment" (#14921)
  - Deploy apps => Deploy security agents
  - Pushes deploy security agents to Q2 (2024-04-22)

Note: Upcoming activity (unified queue) won't guarantee
first-in-first-out in Q1
...
2024-03-06 21:48:57 -06:00
Mike Thomas
a55c7a397d
Updated text content (#17389)
Mike, let me know what you think of these text and order changes based
on your screen recording.
Also updated the hero image to match the updated color palette.

> I think we need to be leading with report what matters.

>And I think followed by deep context from the environment with the eye
to rewriting that section a bit later.

>I think we close out with up to date scans because it engages with the
problem, but it doesn’t really, right. We could swap that out later with
we look at the actual content.

![Image from
iOS](https://github.com/fleetdm/fleet/assets/78363703/551c8262-7cee-4f45-ad03-fd9f1bbf9917)
2024-03-06 21:46:55 -06:00
Noah Talerman
7143887e15
Disk encryption is the same as “Encrypt macOS hard disks with FileVault” (#17358)
- Remove "Encrypt macOS hard disks with FileVault" because it's the same
thing as disk encryption
- Update "Disk encryption" to Fleet Premium
...
2024-03-06 21:44:52 -06:00
Noah Talerman
854faa0c3d
Update pricing page (#17382)
- Fix double asterisk

<img width="348" alt="Screenshot 2024-03-05 at 3 44 18 PM"
src="https://github.com/fleetdm/fleet/assets/47070608/5e447437-8588-4f62-a64e-a38735476b9f">

...
2024-03-06 21:43:22 -06:00
Noah Talerman
e4766ad27e
Update features.yml (#17398)
- Clarify "Native macOS update reminders"...
2024-03-06 21:41:14 -06:00
Jacob Shandling
e957292746
Update reference in mdm integration test (#17452)
Add one missed update

---------

Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2024-03-06 23:01:21 -03:00