empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-07 17:28:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,494 Commits 3 Branches 0 Tags 561 MiB
e956b0ba04
Commit Graph

132 Commits

Author SHA1 Message Date
Omereshone Kelvin
2302606ca0
Standard query library: add query for running docker containers (#3137) 
Query: Get running docker containers
 2021-12-01 09:42:56 -05:00
Tomas Touceda
925d4df8f7
Add new disable_failing_policies query parameter to list hosts (#3123) 
* Update documentation

* Update based on review comments

* Explain why the switch exists
 2021-11-29 18:04:33 -03:00
Tomas Touceda
036093874d
Add cursor pagination to list hosts (#3120) 
* Add cursor pagination to list hosts

* Update docs

* Update based on review comments
 2021-11-29 15:06:00 -03:00
Lucas Manuel Rodriguez
964f85b174
Amend policy creation and spec (for proprietary query), and add update APIs (#2890) 
* Amend policy creation (proprietary query), add update APIs

* Fix Datastore.SavePolicy bug (and add tests)

* Add integration tests for new policy APIs

* Add author email

* Add activities

* Push breaking changes for return policy fields

* WIP

* Add integration test for host policies

* Make more improvements to policy representation

* Improve upgrade code (from PR review comments)

* PR changes

* Revert activities for policies

* Use *uint instead of uint for queryID, use fleet.PolicyPayload

* Filter out other schemas

* New policy flow (#2922)

* created new policy flow -- no API connection

* added api props

* fixed prop name

* lint fixes

* removed unused modal; fixed style

* name, desc icons; created global components

* lint fixes

* ignoring certain files and lines for prettier

* Update frontend/pages/policies/PolicyPage/PolicyPage.tsx

* Make policy names unique across deployment

* Amend upgrade script

* Fix migration for unique names

* Do not deduplicate but instead rename policies

Co-authored-by: Martavis Parker <47053705+martavis@users.noreply.github.com>
 2021-11-24 14:16:42 -03:00
RachelElysia
5dd2b5c0ad
Update 13-Vulnerability-Processing.md (#3025) 
Co-authored-by: Noah Talerman <47070608+noahtalerman@users.noreply.github.com>
Co-authored-by: Noah Talerman <noahtal@umich.edu>
 2021-11-23 15:53:40 -05:00
Tomas Touceda
c65f8507fe
Remove host counts from software (#3082) 
* Remove host counts from software

* Actually remove the host count from the struct

* Fix get test
 2021-11-23 15:50:51 -03:00
Noah Talerman
cca1e2e043
Update "Adding hosts" documentation to emphasize osquery installers (#2956) 
- Emphasize generating an "osquery installer" (also referred as "Orbit") using the `fleetctl package` command
- Add instructions for adding multiple hosts and automatically adding hosts to a team
- Remove instructions for generating an enrollment package with the tooling in `tools/mac/`
- Remove the `tools/mac/` directory from the repository because it is no longer used or referenced in any documentation
- Update "Automatically adding hosts to a team" section of "Teams" documentation to point to "Adding hosts" documentation
- Add instructions for migrating from plain osquery to Fleet's osquery installers
 2021-11-19 09:38:01 -05:00
gillespi314
bfdedd65e8
Allow API user to delete all team secrets (#2941) 2021-11-17 10:26:24 -06:00
eashaw
b7f2f3a0f0
Add questions to using Fleet FAQ and deployment FAQ (#2912) 
* add faq questions

* Apply suggestions from code review

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>

* fix broken links

* Update FAQ.md

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-11-15 17:55:57 -06:00
RachelElysia
a7c6b3e7d7
Add/Edit/Delete enroll secret UI (#2645) 2021-11-15 16:16:06 -05:00
Martin Angers
a4b0d9d4a1
Add team_id to host summary when filtered for a specific team (#2869) 2021-11-15 09:56:13 -05:00
Martin Angers
348841c90b
Add explanation output to fleetctl package (#2864) 2021-11-15 08:40:58 -05:00
Noah Talerman
8c0c00884f
Fix broken link in "Osquery logs" documentation (#2906) 
- Fix a broken link in the summary of the "Osquery logs" documentation
- Update instructions for linking to a specific section within a page in the Fleet documentation in product handbook
 2021-11-12 17:40:32 -05:00
gillespi314
6520e90006
Update API docs for host.users.shell 2021-11-12 16:03:11 -06:00
Benjamin Edwards
44add9cc2b
snowflake & splunk logging destination documentation (#2889) 
Add documentation for forwarding osquery logs to Splunk and Snowflake.
 2021-11-12 17:01:58 -05:00
Noah Talerman
de1084e920
Update documentation for /policies API routes (#2892) 
- Update note to inform users to expect breaking changes in Fleet 4.7.0
 2021-11-12 09:08:02 -05:00
Lucas Manuel Rodriguez
1f560c56a2
Return all scheduled queries and their stats on the host fetch API (#2855) 
* Return all scheduled queries and their stats on the host fetch API (pack_stats)

* Use 'pack' instead of null and wrap errs with ctxerr
 2021-11-12 08:18:25 -03:00
Tomas Touceda
a0730ca643
Add update invite API (#2837) 2021-11-11 17:33:06 -03:00
gillespi314
229b91b530
Add endpoint for management of team enroll secrets (#2849) 2021-11-11 10:45:39 -06:00
Noah Talerman
f9d249882c
In API docs, update description for GET /software parameters (#2870) 
- Update the specified filterable and searchable fields in `order_key`'s and `query`'s descriptions
 2021-11-11 10:06:05 -05:00
Tomas Touceda
b802af6f44
Add host count to software API (#2879) 
* Add host count to software API

* Update docs

* Update fleetctl tests to account for host counts

* Update docs to mention host_count special case

* Update func comment
 2021-11-11 08:49:17 -03:00
Martin Angers
b57b64ccb2
Add total and per platform counts to host summary endpoint (#2845) 2021-11-09 09:35:36 -05:00
Noah Talerman
ce4a3a84d2
Update documentation for /policies API routes (#2840) 
- Add note that calls out breaking changes coming in the planned Fleet 4.6.0 release
- Add example policy
 2021-11-08 13:57:08 -05:00
Martin Angers
1b5ec19cf5
Add author_email to payload of queries (Get/List) (#2798) 2021-11-08 09:06:56 -05:00
eashaw
76c5e2944f
Update adding hosts documentation (#2810) 
* orbit -> fleetctl package

* Update docs/01-Using-Fleet/04-Adding-hosts.md

* Update docs/01-Using-Fleet/04-Adding-hosts.md

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-11-05 12:20:28 +09:00
Lucas Manuel Rodriguez
21908f31cf
GET packs to always return disabled field (#2799) 2021-11-04 14:25:08 -03:00
Noah Talerman
5d926a4aed
Add a new "API for contributors" documentation page (#2743) 
- Add `07-API-for-contributors.md` documentation page
- Move all API routes used exclusively by the Fleet UI and fleetctl clients into the new documentation page
 2021-11-01 11:38:34 -04:00
Noah Talerman
45c5e29ca0
Update permissions documentation (#2721) 
- Removed create/edit/delete enroll secret permissions from team level users
- Update verbiage to clarify the distinction between users with global access and users with team access.
 2021-10-28 13:27:03 -05:00
eashaw
59a6dde7d1
fix code block and indentation (#2672) 2021-10-28 10:24:52 -05:00
Noah Talerman
e65bfc8185
Update "Learn how to use Fleet" (#2722) 
* Add 3 policies and update contributor instructions

* Update capitalization

* Add policy kind option

* Add policies spec

* Remove the 'purpose' field

* Add single policy yaml documents. Update Learn how to use Fleet.

* Remove no longer relevant screenshot of live query results

* Revert changes to standard query library

* Revert changes to standard query library

* Update docs/01-Using-Fleet/00-Learn-how-to-use-Fleet.md

typo fix.

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-10-28 12:31:59 +09:00
eashaw
37a960e15d
Add documentation about vulnerability processing results (#2688) 
* add faq entry about CVE detection

* Add line about where to find CVE detections

* Revert "add faq entry about CVE detection"

This reverts commit 13f623c147efbd9f29294839be7089c5b204a542.

* results section

* Update 13-Vulnerability-Processing.md

* Update 13-Vulnerability-Processing.md

* Apply suggestions from code review

Co-authored-by: Noah Talerman <47070608+noahtalerman@users.noreply.github.com>

* changing placeholder text to use brackets instead of `<>`

Co-authored-by: Noah Talerman <47070608+noahtalerman@users.noreply.github.com>
 2021-10-28 12:28:50 +09:00
Tomas Touceda
623a38aa9d
Live queries post merge fixes (#2684) 
* Refactor based on PR review comments

* Use deadline instead of duration

* Address review comments

* Only set the timeout once
 2021-10-26 16:12:07 -03:00
Tomas Touceda
79f2c7c391
Issue 1798 rest api for live queries (#2675) 
* wip

* wip

* Make tests not flaky

* Add changes file

* Make logging and authz thread safe

* Move cancel defer below err check
 2021-10-26 11:33:31 -03:00
Lucas Manuel Rodriguez
fb1e78d039
Make /refetch run labels and policies for the host (#2651) 
* Make /refetch run labels and policies for the host

* PR rework changes
 2021-10-25 15:46:49 -03:00
Noah Talerman
11ecb7c1f7
Fix query syntax for several queries in the standard query library (#2664) 
Fix syntax for the following queries:
- Get user files matching a specific hash
- Check for artifacts of the Floxif trojan
- Get malicious Python backdoors
 2021-10-25 11:37:28 -04:00
eashaw
675f14b16b
Standard query library updates (#2546) 
* update Floxif trojan query description, Add puffyCid's query, update query description styles

* Update standard-query-library.yml
 2021-10-23 06:58:34 +09:00
RachelElysia
36babcc510
UI feature: Frontend of performance impact bubbles (#2589) 
Includes backend fixes and test
Co-authored-by: Tomas Touceda <chiiph@gmail.com>
 2021-10-22 16:05:49 -04:00
Benjamin Edwards
0fb6416d45
Add Cloudwatch monitoring to AWS Terraform configs (#2485) 
* add support for minio backend file carving
* add changes file
* rds alarm and sns topic
* added cloudwatch alarm documenation
* Update docs/01-Using-Fleet/06-Monitoring-Fleet.md
* update aws provider version to fix bug in ecs container insights, add more redis alerts
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
 2021-10-22 15:38:00 -04:00
Noah Talerman
887b3fa3ed
Add FAQ question and answer for "Why my host is not updating a policy's response" (#2641) 2021-10-22 15:28:43 -04:00
Lucas Manuel Rodriguez
54805b5b72
Perform early session check on fleetctl commands (#2620) 
* Perform early session check on fleetctl

* Add fleetctl test for the early session check
 2021-10-22 15:41:17 -03:00
Luke Heath
99673eb148
Fix broken links to docs (#2561) 2021-10-22 12:39:20 -05:00
Lucas Manuel Rodriguez
91ae5ba870
By default, force password reset on CreateUser (#2570) 
* By default, force password reset on CreateUser

* Use ptr.Bool and add test

* Add changes file

* Simple fix for e2e tests

* Add API changes
 2021-10-21 15:00:38 -03:00
m4wh6k
b856f351b0
Fix broken link on QueriesListWrapper and in docs to std query lib docs (#2614) 2021-10-20 16:53:01 -07:00
Tomas Touceda
c2696c1261
Issue 1892 query perf everywhere (#2580) 
* wip

* wip

* wip

* Add performance stats

* Add docs and other self review fixes

* lint

* Update based on review comments

* Add quick cleanup first and then reset to 1hr

* Reduce the load in the test
 2021-10-20 18:35:38 -03:00
Tomas Touceda
cbe931c0e9
Add vulnerable filter for software and also wire up the query search (#2604) 
* Add vulnerable filter for software and also wire up the query search

* Add documentation

* Update to use software list options
 2021-10-20 18:01:20 -03:00
Zach Wasserman
92e3e83a74
Remove software object in list host API example (#2608) 2021-10-20 13:27:33 -07:00
Zach Wasserman
0a94cc9fa0
Update enroll secrets/teams docs (#2588) 2021-10-20 10:14:35 -07:00
Tomas Touceda
c3f7577bd8
Add query description and resolution to the list of policies in hosts (#2584) 
* Add query description and resolution to the list of policies in hosts

* Add docs

* Fix get host tests
 2021-10-20 12:07:16 -03:00
Tomas Touceda
89c6d18ed2
Issue 2293 reveal failing policies list host (#2528) 
* Add host issues

* Update docs

* Remove comment

* Update tests
 2021-10-15 07:34:30 -03:00
Tomas Touceda
d3a0d62902
Issue 2456 policies yaml (#2512) 
* wip

* Add policy specs support

* Add documentation

* Make policy apply idempotent

* Fold in code

* Improve tests and simplify auth checks

* Lint and fix test
 2021-10-15 07:34:11 -03:00
Tomas Touceda
bb1dc401a3
Load vulnerabilities alongisde the software (#2518) 
* Load vulnerabilities alongisde the software

* Update docs
 2021-10-14 13:51:41 -03:00
Tomas Touceda
0510075398
Issue 2134 add team admin role (#2499) 
* wip

* Add team admin role and tests

* Revert change in invites

* Update permission doc

* Fix lint
 2021-10-13 12:34:59 -03:00
eashaw
f97072f2a4
Update using fleet FAQ (#2483) 
* add question to faq

* Update docs/01-Using-Fleet/FAQ.md

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-10-12 17:11:03 -05:00
Benjamin Edwards
16c5823692
add support for minio backend file carving (#2448) 
* add support for minio backend file carving
* add changes file
Co-authored-by: Zach Wasserman <zach@fleetdm.com>
 2021-10-12 15:32:06 -04:00
Tomas Touceda
782f276e0b
Issue 2050 add software filter list hosts (#2486) 
* Add software_id filter to list hosts

* Add integration test for API endpoint

* Add doc

* Simplify sql query
 2021-10-12 11:38:12 -03:00
RachelElysia
981028705e
Sentence Case: Throughout UI, tests, validators, docs (#2455) 2021-10-11 10:58:27 -04:00
Mike Thomas
f4c6c8e534
Update 00-Learn-how-to-use-Fleet.md (#2393) 
Update to enroll device command to remove line-break.
 2021-10-07 23:43:02 +09:00
eashaw
14ac341b30
Normalize docs and handbook headings (#2428) 
* header styles

* update headers

* updated headings

* update padding

* handbook headings, update landing page breadcrumbs

* update heading and font-size

* Update 03-Example-deployment-scenarios.md

* handbook styles

* Update basic-handbook.page.js

* lint fixes
 2021-10-07 23:40:22 +09:00
Martin Angers
3aef96e15c
Add test for fleetctl preview (#2388) 
* Start a fleetctl preview test

* Add tests for fleetctl preview

* Fix setting of fleetctl auth token in test

* Add fleet instance vulnerabilities config to response of GetAppConfig

* Add checks that fleetctl preview enables vulnerability detection

* Adjust doc for get config API response

* Add the include-server-config flag to fleetctl get config

* Update test now that some of the PRs have been merged

Co-authored-by: Tomas Touceda <chiiph@gmail.com>
 2021-10-07 10:19:10 -03:00
Tomas Touceda
876aa0e366
Add host count API (#2356) 
* Add host count API

* Add rest api docs

* Add host count for labels and address review comments

* Add regex for id
 2021-10-07 08:25:35 -03:00
Tomas Touceda
9b809a2d35
Issue 1890 host details policy (#2410) 
* wip

* Add policies to hosts
 2021-10-07 08:11:10 -03:00
Noah Talerman
a067fc1145
Update GET /software documentation to reflect the current response (#2348) 
- Remove the `hosts_count` property from the `GET /api/v1/fleet/software` API route because this property is not currently included in the response.
 2021-10-06 10:05:14 -04:00
eashaw
87b3563db7
Add questions to Contributing and Using Fleet FAQ (#2366) 
* Update FAQ.md

* Update FAQ.md

* Update docs/01-Using-Fleet/FAQ.md

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>

* Update docs/01-Using-Fleet/FAQ.md

I couldn't make a decision about the correct science around the mum and baby reference, so I just deleted to be safe 😅

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-10-06 11:51:00 +09:00
eashaw
afc8bdd093
Update instructions in Enroll your own device (#2364) 2021-10-05 21:28:52 +09:00
eashaw
ac45bc0706
Docs image updates (#2297) 
* addred cropped images to replace images in configuration.md, fixed duplicated alt text, added box-shadow to images

* more cropping

* reduce padding on ordered lists, point urls in markdown to where images will be

* Update 02-Configuration.md

* Update build-static-content.js

* remove box-shadow on images

* Update 02-Configuration.md

* Added handbook entry about images

* changed img tags to markdown links to be consistent

* undo small style change

* Update build-static-content.js

* Update handbook/product.md

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>

Co-authored-by: Mike Thomas <78363703+mike-j-thomas@users.noreply.github.com>
 2021-10-05 08:25:34 +09:00
eashaw
5de5b13223
Dynamic titles for documentation, query, and handbook pages (#2298) 
* handling redirect

* clean up redirect/notFound flow

* dynamic query titles and description

* dynamic docs titles

* Remove locals from queries and docs, updated comment and variable names

* handling FAQ page titles

* update comment, title in meta, and adjust get started title

* remove unneeded meta tag

* handbook titles

* cleaning up conditionals

* update comments

* removed added meta tags, change meta variable names

* passing in meta description if provided, update conditionals and comments

* Update FAQ.md
 2021-09-30 21:14:02 -05:00
RachelElysia
f397b77c1a
Schedule Page: Team maintainer can modify their team's schedule (#2243) 
* Change permissions to schedule UI to include team maintainers
* Update e2e tests
 2021-09-30 10:30:44 -04:00
Mike McNeil
d3a2083188
add example query that checks a malware artifact (#2296) 2021-09-29 22:08:39 -05:00
Tomas Touceda
36b4c0df5d
Allow team maintainers to read global policies and schedule (#2282) 
* Allow team maintainers to read global policies and schedules

* Update docs
 2021-09-29 14:07:10 -03:00
Tomas Touceda
d9f34b2c19
Issue 1840 bulk delete hosts (#2268) 
* wp

* Add test by ids

* Add changes file

* Update docs and remove unneeded return values

* Address review comments

* Improve integration tests

* Use TearDownTest
 2021-09-29 13:13:23 -03:00
Tomas Touceda
435178e93c
Add bundle identifier to software when available (#2220) 
* Add bundle identifier to software when available

* Update docs

* Delete unneeded test
 2021-09-28 18:13:34 -03:00
Tomas Touceda
e2caf46d6d
Issue 2133 team maintainer can edit delete queries (#2256) 
* wip

* Team maintainers can edit and delete queries they authored

* Update documentation

* Fix test
 2021-09-28 14:53:05 -03:00
Tomas Touceda
2033d8208c
Add policy updated at (#2246) 
* wip

* Add policy updated at interval and update the UI to use that

* Update rest api

* Fix tests
 2021-09-27 16:27:38 -03:00
Tomas Touceda
5653f1e868
Update URLs from team to teams, add tests for policy auth (#2228) 
* Update URLs from team to teams, add tests for policy auth

* Fix test

* Address review comments
 2021-09-27 14:02:11 -03:00
noahtalerman
97750d1e07
Improve examples and API documentation for managing teams with fleetctl (#2199) 
- Add example `team.yml` configuration file. A file with this format can be used to apply teams using `fleetctl apply`
- Add `spec/teams` API route to API docs
 2021-09-27 10:08:40 -04:00
Mike Thomas
429875d4e5
Update 00-Learn-how-to-use-Fleet.md (#2217) 
Updated to reflect latest UI and query library content changes in Fleet 4.3.0.
 2021-09-27 20:25:23 +09:00
Benjamin Edwards
655b57789d
add faq about host team enrollment 2021-09-23 23:38:21 -04:00
Zach Wasserman
a859d46af9
Fixes to fleetctl debug archive docs (#2203) 2021-09-23 08:50:34 -07:00
Renee Jackson
ca27bd9d5c
fix broken links by adding missing 0 (#2187) 
* fix broken links by adding missing 0

* fix broken links take 2

gather links missed in first pass
 2021-09-22 13:28:25 -03:00
eashaw
470889ba3a
Update code blocks in documentation (#2151) 
* updated css to be compatible with Chrome 87 and earlier

* fixed JSON syntax code blocks, remove empty response data

* Update code-blocks.less

* fix broken links
 2021-09-20 20:59:45 -05:00
noahtalerman
bcb5288f71
Add Policies feature to permissions documentation (#2153) 2021-09-20 18:40:11 -04:00
Martavis Parker
4f3f6187d6
Top-level seed data doc and re-numbering (#2109) 
* created separate doc for seeding data

* re-numbered doc names
 2021-09-20 11:48:24 -07:00