mirror of
https://github.com/valitydev/wazuh-kibana-app.git
synced 2024-11-06 18:05:20 +00:00
51 KiB
51 KiB
Change Log
All notable changes to the Wazuh app project will be documented in this file.
Wazuh v3.4.0 - Kibana v6.3.1 - Revision 399
Added
- Support for Wazuh v3.4.0.
Wazuh v3.3.0/v3.3.1 - Kibana v6.3.1 - Revision 399
Added
- Added a new Angular.js factory to store the Wazuh app configuration values. Also this factory is being used by the pre-routes functions (resolves), this way we are sure about having the real configuration at any time. These pre-routes functions have been improved too. (#670)
- Added extended information for reports from reporting feature (#701)
Changed
- Tables have been improved. Now they are truncating long fields and adding a tooltip if needed (#671)
- Services have been improved (#715)
- CSV formatted files have been improved. Now they are showing a more human readable column names (#717, #726).
- Added/Modified some visualization titles (#728)
- Improved Discover perfomance when in background mode (#719)
- Reports from reporting feature have suffered a fully redesign (#701)
Fixed
- Fixed the top menu API indicator when checking API connection and the manager/cluster information had been changed (#668)
- Fixed our logger module which was not writting logs the very first time Kibana is started neither after a log rotation (#667)
- Fixed a regular expression in the server side when parsing URLs before registering a new Wazuh API (#690)
- Fixed filters from specific visualization regarding to FIM section (#694)
- Fixed filters parsing when generating a report. It was not parsing negated filters as expected (#696)
- Fixed visualization counter from OSCAP tab (#722)
Removed
- Temporary removed CSV download from agent inventory section due to Wazuh API bug (#727)
Wazuh v3.3.0/v3.3.1 - Kibana v6.3.0 - Revision 398
Added
- Improvements for latest app redesign (#652):
- The Welcome tabs have been simplified, following a more Elastic design.
- Added again the
md-nav-bar
component with refined styles and limited to specific sections. - The Settings > Welcome tab has been removed. You can use the nav bar to switch tabs.
- Minor CSS adjustments and reordering.
- Small app UI improvements (#634):
- Added link to Agents Preview on the Agents tab breadcrumbs.
- Replaced the Generate report button with a smaller one.
- Redesigned Management > Ruleset
md-chips
to look similar to Kibana filter pills. - Added agent information bar from Agents > General to Agents > Welcome too.
- Refactored flex layout on Welcome tabs to fix a height visual bug.
- Removed duplicated loading rings on the Agents tab.
- Improvements for app tables (#627):
- Now the current page will be highlighted.
- The gap has been fixed to the items per page value.
- If there are no more pages for Next or Prev buttons, they will be hidden.
- Improvements for app health check (#637):
- Improved design for the view.
- The checks have been placed on a table, showing the current status of each one.
- Changes to our reporting feature (#639):
- Now the generated reports will include tables for each section.
- Added a parser for getting Elasticsearch data table responses.
- The reporting feature is now a separated module, and the code has been refactored.
- Improvements for app tables pagination (#646).
Changed
- Now the
pretty
parameter on the Dev tools tab will be ignored to avoidUnexpected error
messages (#624). - The
pdfkit
dependency has been replaced bypdfmake
(#639). - Changed some Kibana tables for performance improvements on the reporting feature (#644).
- Changed the method to refresh the list of known fields on the index pattern (#650):
- Now when restarting Kibana, the app will update the fieldset preserving the custom user fields.
Fixed
- Fixed bug on Agents CIS-CAT tab who wasn't loading the appropriate visualizations (#626).
- Fixed a bug where sometimes the index pattern could be
undefined
during the health check process, leading into a false error message when loading the app (#640). - Fixed several bugs on the Settings > API tab when removing, adding or editing new entries.
Removed
- Removed the app login system (#636):
- This feature was unstable, experimental and untested for a long time. We'll provide much better RBAC capabilities in the future.
- Removed the new Kuery language option on Discover app search bars.
- This feature will be restored in the future, after more Elastic v6.3.0 adaptations.
Wazuh v3.3.0/v3.3.1 - Kibana v6.3.0 - Revision 397
Added
- Support for Elastic Stack v6.3.0 (#579 & #612 & #615).
- Brand-new Wazuh app redesign for the Monitoring tab (#581):
- Refactored and optimized UI for these tabs, using a breadcrumbs-based navigability.
- Used the same guidelines from the previous redesign for Overview and Agents tabs.
- New tab for Agents - Inventory (#582):
- Get information about the agent host, such as installed packages, motherboard, operating system, etc.
- This tab will appear if the agent has the
syscollector
wodle enabled.
- Brand-new extension - CIS-CAT Alerts (#601):
- A new extension, disabled by default.
- Visualize alerts related to the CIS-CAT benchmarks on the Overview and Agents tabs.
- Get information about the last performed scan and its score.
- Several improvements for the Dev tools tab (#583 & #597):
- Now you can insert queries using inline parameters, just like in a web browser.
- You can combine inline parameters with JSON-like parameters.
- If you use the same parameter on both methods with different values, the inline parameter has precedence over the other one.
- The tab icon has been changed for a more appropriate one.
- The
Execute query
button is now always placed on the first line of the query block.
- Refactoring for all app tables (#582):
- Replaced the old
wz-table
directive with a new one, along with a new data factory. - Now the tables are built with a pagination system.
- Much easier method for building tables for the app.
- Performance and stability improvements when fetching API data.
- Now you can see the total amount of items and the elapsed time.
- Replaced the old
Changed
- Moved some logic from the Agents preview tab to the server, to avoid excessive client-side workload (#586).
- Changed the UI to use the same loading ring across all the app tabs (#593 & #599).
- Changed the No results message across all the tabs with visualizations (#599).
Fixed
- Fixed a bug on the Settings/Extensions tab where enabling/disabling some extensions could make other ones to be disabled (#591).
Wazuh v3.3.0/v3.3.1 - Kibana v6.2.4 - Revision 396
Added
- Support for Wazuh v3.3.1.
- Brand-new Wazuh app redesign for the Settings tab (#570):
- Refactored and optimized UI for these tabs, using a breadcrumbs-based navigability.
- Used the same guidelines from the previous redesign for Overview and Agents tabs.
- Refactoring for Overview and Agents controllers (#564):
- Reduced duplicated code by splitting it into separate files.
- Code optimization for a better performance and maintainability.
- Added new services to provide similar functionality between different app tabs.
- Added
data.vulnerability.package.condition
to the list of known fields (#566).
Changed
- The
wazuh-logs
andwazuh-monitoring
folders have been moved to the Kibana'soptimize
directory in order to avoid some error messages when using thekibana-plugin list
command (#563).
Fixed
- Fixed a bug on the Settings tab where updating an API entry with wrong credentials would corrupt the existing one (#558).
- Fixed a bug on the Settings tab where removing an API entry while its edit form is opened would hide the
Add API
button unless the user reloads the tab (#558). - Fixed some Audit visualizations on the Overview and Agents tabs that weren't using the same search query to show the results (#572).
- Fixed undefined variable error on the
wz-menu
directive (#575).
Wazuh v3.3.0 - Kibana v6.2.4 - Revision 395
Fixed
- Fixed a bug on the Agent Configuration tab where the sync status was always
NOT SYNCHRONIZED
(#569).
Wazuh v3.3.0 - Kibana v6.2.4 - Revision 394
Added
- Support for Wazuh v3.3.0.
- Updated some backend API calls to include the app version in the request header (#560).
Wazuh v3.2.4 - Kibana v6.2.4 - Revision 393
Added
- Brand-new Wazuh app redesign for Overview and Agents tabs (#543):
- Updated UI for these tabs using breadcrumbs.
- New Welcome screen, presenting all the tabs to the user, with useful links to our documentation.
- Overall design improved, adjusted font sizes and reduced HTML code.
- This base will allow the app to increase its functionality in the future.
- Removed the
md-nav-bar
component for a better user experience on small screens. - Improved app performance removing some CSS effects from some components, such as buttons.
- New filter for agent version on the Agents Preview tab (#537).
- New filter for cluster node on the Agents Preview tab (#538).
Changed
- Now the report generation process will run in a parallel mode in the foreground (#523).
- Replaced the usage of
$rootScope
with two new factories, along with more controller improvements (#525). - Now the Extensions tab on Settings won't edit the
.wazuh
index to modify the extensions configuration for all users (#545).- This allows each new user to always start with the base extensions configuration, and modify it to its needs storing the settings on a browser cookie.
- Now the GDPR requirements description on its tab won't be loaded if the Wazuh API version is not v3.2.3 or higher (#546).
Fixed
- Fixed a bug where the app crashes when attempting to download huge amounts of data as CSV format (#521).
- Fixed a bug on the Timelion visualizations from Management/Monitoring which were not properly filtering and showing the cluster nodes information (#530).
- Fixed several bugs on the loading process when switching between tabs with or without visualizations in the Overview and Agents tab (#531 & #533).
- Fixed a bug on the
wazuh-monitoring
index feature when using multiple inserted APIs, along with several performance improvements (#539). - Fixed a bug where the OS filter on the Agents Preview tab would exclude the rest of filters instead of combining them (#552).
- Fixed a bug where the Extensions settings were restored every time the user opened the Settings tab or pressed the Set default manager button (#555 & #556).
Wazuh v3.2.3/v3.2.4 - Kibana v6.2.4 - Revision 392
Added
- Support for Wazuh v3.2.4.
- New functionality - Reporting (#510):
- Generate PDF logs on the Overview and Agents tabs, with the new button next to Panels and Discover.
- The report will contain the current visualizations from the tab where you generated it.
- List all your generated reports, download or deleted them at the new Management/Reporting tab.
- Warning: If you leave the tab while generating a report, the process will be aborted.
- Added warning/error messages about the total RAM on the server side (#502):
- None of this messages will prevent the user from accessing the app, it's just a recommendation.
- If your server has less than 2GB of RAM, you'll get an error message when opening the app.
- If your server has between 2GB and 3GB of RAM, you'll get a warning message.
- If your server has more than 3GB of RAM, you won't get any kind of message.
- Refactoring and added loading bar to Manager Logs and Groups tabs (#505).
- Added more Syscheck options to Management/Agents configuration tabs (#509).
Fixed
- Added more fields to the
known-fields.js
file to avoid warning messages on Discover when using Filebeat for alerts forwarding (#497). - Fixed a bug where clicking on the Check connection button on the Settings tab threw an error message although the API connected successfully (#504).
- Fixed a bug where the Agents tab was not properly showing the total of agents due to the new Wazuh cluster implementation (#517).
Wazuh v3.2.3 - Kibana v6.2.4 - Revision 391
Added
- Support for Wazuh v3.2.3.
- Brand-new extension - GDPR Alerts (#453):
- A new extension, enabled by default.
- Visualize alerts related to the GDPR compliance on the Overview and Agents tabs.
- The Ruleset tab has been updated to include GDPR filters on the Rules subtab.
- Brand-new Management tab - Monitoring (#490):
- Visualize your Wazuh cluster, both master and clients.
- Get the current cluster configuration.
- Nodes listing, sorting, searching, etc.
- Get a more in-depth cluster status thanks to the newly added Timelion visualizations.
- The Detail view gives you a summary of the node's healthcheck.
- Visualize your Wazuh cluster, both master and clients.
- Brand-new tab - Dev tools (#449):
- Find it on the top navbar, next to Discover.
- Execute Wazuh API requests directly from the app.
- This tab uses your currently selected API from Settings.
- You can type different API requests on the input window, select one with the cursor, and click on the Play button to execute it.
- You can also type comments on the input window.
- More improvements for the Manager/Ruleset tab (#446):
- A new colour palette for regex, order and rule description arguments.
- Added return to List view on Ruleset button while on Detail view.
- Fixed line height on all table headers.
- Removed unused, old code from Ruleset controllers.
- Added option on
config.yml
to enable/disable thewazuh-monitoring
index (#441):- Configure the frequency time to generate new indices.
- The default frequency time has been increased to 1 hour.
- When disabled, useful metrics will appear on Overview/General replacing the Agent status visualization.
- Added CSV exporting button to the app (#431):
- Implemented new logic to fetch data from the Wazuh API and download it in CSV format.
- Currently available for the Ruleset, Logs and Groups sections on the Manager tab and also the Agents tab.
- More refactoring to the app backend (#439):
- Standardized error output from the server side.
- Drastically reduced the error management logic on the client side.
- Applied the Facade pattern when importing/exporting modules.
- Deleted unused/deprecated/useless methods both from server and client side.
- Some optimizations to variable type usages.
- Refactoring to Kibana filters management (#452 & #459):
- Added new class to build queries from the base query.
- The filter management is being done on controllers instead of the
discover
directive. - Now we are emitting specific events whenever we are fetching data or communicating to the
discover
directive. - The number of useless requests to fetch data has been reduced.
- The synchronization actions are working as expected regardless the amount of data and/or the number of machine resources.
- Fixed several bugs about filter usage and transition to different app tabs.
- Added confirmation message when the user deletes an API entry on Settings/API (#428).
- Added support for filters on the Manager/Logs tab when realtime is enabled (#433).
- Added more filter options to the Detail view on Manager/Ruleset (#434).
Changed
- Changed OSCAP visualization to avoid clipping issues with large agent names (#429).
- Now the related Rules or Decoders sections on Manager/Ruleset will remain hidden if there isn't any data to show or while it's loading (#434).
- Added a 200ms delay when fetching iterable data from the Wazuh API (#445 & #450).
- Fixed several bugs related to Wazuh API timeout/cancelled requests (#445).
- Added
ENOTFOUND
,EHOSTUNREACH
,EINVAL
,EAI_AGAIN
options for API URL parameter checking (#463). - Now the Settings/Extensions subtab won't appear unless there's at least one API inserted (#465).
- Now the index pattern selector on Settings/Pattern will also refresh the known fields when changing it (#477).
- Changed the Manager tab into Management (#490).
Fixed
- Fixed a bug where toggling extensions after deleting an API entry could lead into an error message (#465).
- Fixed some performance bugs on the
dataHandler
service (#442 & #486). - Fixed a bug when loading the Agents preview tab on Safari web browser (#447).
- Fixed a bug where a new extension (enabled by default) appears disabled when updating the app (#456).
- Fixed a bug where pressing the Enter key on the Discover's tab search bar wasn't working properly (#488).
Removed
- Removed the
rison
dependency from thepackage.json
file (#452). - Removed unused Elasticsearch request to avoid problems when there's no API inserted (#460).
Wazuh v3.2.1/v3.2.2 - Kibana v6.2.4 - Revision 390
Added
- Support for Wazuh v3.2.2.
- Refactoring on visualizations use and management (#397):
- Visualizations are no longer stored on an index, they're built and loaded on demand when needed to render the interface.
- Refactoring on the whole app source code to use the import/export paradigm.
- Removed old functions and variables from the old visualization management logic.
- Removed cron task to clean remaining visualizations since it's no longer needed.
- Some Kibana functions and modules have been overridden in order to make this refactoring work.
- This change is not intrusive in any case.
- New redesign for the Manager/Ruleset tab (#420):
- Rules and decoders list now divided into two different sections: List view and Detail view.
- Removed old expandable tables to move the rule/decoder information into a new space.
- Enable different filters on the detail view for a better search on the list view.
- New table for related rules or decoders.
- And finally, a bunch of minor design enhancements to the whole app.
- Added a copyright notice to the whole app source code (#395).
- Updated
.gitignore
with the Node template (#395). - Added new module to the
package.json
file,rison
(#404). - Added the
errorHandler
service to the blank screen scenario (#413):- Now the exact error message will be shown to the user, instead of raw JSON content.
- Added new option on the
config.yml
file to disable the new X-Pack RBAC capabilities to filter index-patterns (#417).
Changed
- Small minor enhancements to the user interface (#396):
- Reduced Wazuh app logo size.
- Changed buttons text to not use all-capitalized letters.
- Minor typos found in the HTML/CSS code have been fixed.
- Now the app log stores the package revision (#417).
Fixed
- Fixed bug where the Agents tab didn't preserve the filters after reloading the page (#404).
- Fixed a bug when using X-Pack that sometimes threw an error of false "Not enough privileges" scenario (#415).
- Fixed a bug where the Kibana Discover auto-refresh functionality was still working when viewing the Agent configuration tab (#419).
Wazuh v3.2.1 - Kibana v6.2.4 - Revision 389
Changed
- Changed severity and verbosity to some log messages (#412).
Fixed
- Fixed a bug when using the X-Pack plugin without security capabilities enabled (#403).
- Fixed a bug when the app was trying to create
wazuh-monitoring
indices without checking the existence of the proper template (#412).
Wazuh v3.2.1 - Kibana v6.2.4 - Revision 388
Added
- Support for Elastic Stack v6.2.4.
- App server fully refactored (#360):
- Added new classes, reduced the amount of code, removed unused functions, and several optimizations.
- Now the app follows a more ES6 code style on multiple modules.
- Overview/Agents visualizations have been ordered into separated files and folders.
- Now the app can use the default index defined on the
/ect/kibana/kibana.yml
file. - Better error handling for the visualizations directive.
- Added a cron job to delete remaining visualizations on the
.kibana
index if so. - Also, we've added some changes when using the X-Pack plugin:
- Better management of users and roles in order to use the app capabilities.
- Prevents app loading if the currently logged user has no access to any index pattern.
- Added the
errorHandler
service to thedataHandler
factory (#340). - Added Syscollector section to Manager/Agents Configuration tabs (#359).
- Added
cluster.name
field to thewazuh-monitoring
index (#377).
Changed
- Increased the query size when fetching the index pattern list (#339).
- Changed active colour for all app tables (#347).
- Changed validation regex to accept URLs with non-numeric format (#353).
- Changed visualization removal cron task to avoid excessive log messages when there weren't removed visualizations (#361).
- Changed filters comparison for a safer access (#383).
- Removed some
server.log
messages to avoid performance errors (#384). - Changed the way of handling the index patterns list (#360).
- Rewritten some false error-level logs to just information-level ones (#360).
- Changed some files from JSON to CommonJS for performance improvements (#360).
- Replaced some code on the
kibana-discover
directive with a much cleaner statement to avoid issues on the Agents tab (#394).
Fixed
- Fixed a bug where several
agent.id
filters were created at the same time when navigating between Agents and Groups with different selected agents (#342). - Fixed logic on the index-pattern selector which wasn't showing the currently selected pattern the very first time a user opened the app (#345).
- Fixed a bug on the
errorHandler
service who was preventing a proper output of some Elastic-related backend error messages (#346). - Fixed panels flickering in the Settings tab (#348).
- Fixed a bug in the shards and replicas settings when the user sets the value to zero (0) (#358).
- Fixed several bugs related to the upgrade process from Wazuh 2.x to the new refactored server (#363).
- Fixed a bug in Discover/Agents VirusTotal tabs to avoid conflicts with the
agent.name
field (#379). - Fixed a bug on the implicit filter in Discover/Agents PCI tabs (#393).
Removed
- Removed clear API password on
checkPattern
response (#339). - Removed old dashboard visualizations to reduce loading times (#360).
- Removed some unused dependencies due to the server refactoring (#360).
- Removed completely
metricService
from the app (#389).
Wazuh v3.2.1 - Kibana v6.2.2/v6.2.3 - Revision 387
Added
- New logging system (#307):
- New module implemented to write app logs.
- Now a trace is stored every time the app is re/started.
- Currently, the
initialize.js
andmonitoring.js
files work with this system. - Note: the logs will live under
/var/log/wazuh/wazuhapp.log
on Linux systems, on Windows systems they will live underkibana/plugins/
. It rotates the log whenever it reaches 100MB.
- Better cookies handling (#308):
- New field on the
.wazuh-version
index to store the last time the Kibana server was restarted. - This is used to check if the cookies have consistency with the current server status.
- Now the app is clever and takes decisions depending on new consistency checks.
- New field on the
- New design for the Agents/Configuration tab (#310):
- Added "group" column on the agents list in Agents (#312):
- If you click on the group, it will redirect the user to the specified group in Manager/Groups.
- New option for the
config.yml
file,ip.selector
(#313):- Define if the app will show or not the index pattern selector on the top navbar.
- This setting is set to
true
by default.
- More CSS cleanup and reordering (#315):
- New
typography.less
file. - New
layout.less
file. - Removed
cleaned.less
file. - Reordering and cleaning of existing CSS files, including removal of unused classes, renaming, and more.
- The Settings tab has been refactored to correct some visual errors with some card components.
- Small refactoring to some components from Manager/Ruleset (#323).
- New
- New design for the top navbar (#326):
- Cleaned and refactored code
- Revamped design, smaller and with minor details to follow the rest of Wazuh app guidelines.
- New design for the wz-chip component to follow the new Wazuh app guidelines (#323).
- Added more descriptive error messages when the user inserts bad credentials on the Add new API form in the Settings tab (#331).
- Added a new CSS class to truncate overflowing text on tables and metric ribbons (#332).
- Support for Elastic Stack v6.2.2/v6.2.3.
Changed
- Improved the initialization system (#317):
- Now the app will re-create the index-pattern if the user deletes the currently used by the Wazuh app.
- The fieldset is now automatically refreshed if the app detects mismatches.
- Now every index-pattern is dynamically formatted (for example, to enable the URLs in the Vulnerabilities tab).
- Some code refactoring for a better handling of possible use cases.
- And the best thing, it's no longer needed to insert the sample alert!
- Improvements and changes to index-patterns (#320 & #333):
- Added a new route,
/get-list
, to fetch the index pattern list. - Removed and changed several functions for a proper management of index-patterns.
- Improved the compatibility with user-created index-patterns, known to have unpredictable IDs.
- Now the app properly redirects to
/blank-screen
if the length of the index patterns list is 0. - Ignored custom index patterns with auto-generated ID on the initialization process.
- Now it uses the value set on the
config.yml
file.
- Now it uses the value set on the
- If the index pattern is no longer available, the cookie will be overwritten.
- Added a new route,
- Improvements to the monitoring module (#322):
- Minor refactoring to the whole module.
- Now the
wazuh-monitoring
index pattern is regenerated if it's missing. - And the best thing, it's no longer needed to insert the monitoring template!
- Now the app health check system only checks if the API and app have the same
major.minor
version (#311):- Previously, the API and app had to be on the same
major.minor.patch
version.
- Previously, the API and app had to be on the same
- Adjusted space between title and value in some cards showing Manager or Agent configurations (#315).
- Changed red and green colours to more saturated ones, following Kibana style (#315).
Fixed
- Fixed bug in Firefox browser who was not properly showing the tables with the scroll pagination functionality (#314).
- Fixed bug where visualizations weren't being destroyed due to ongoing renderization processes (#316).
- Fixed several UI bugs for a better consistency and usability (#318).
- Fixed an error where the initial index-pattern was not loaded properly the very first time you enter the app (#328).
- Fixed an error message that appeared whenever the app was not able to found the
wazuh-monitoring
index pattern (#328).
Wazuh v3.2.1 - Kibana v6.2.2 - Revision 386
Added
- New design for the Manager/Groups tab (#295).
- New design for the Manager/Configuration tab (#297).
- New design of agents statistics for the Agents tab (#299).
- Added information ribbon into Overview/Agent SCAP tabs (#303).
- Added information ribbon into Overview/Agent VirusTotal tabs (#306).
- Added information ribbon into Overview AWS tab (#306).
Changed
- Refactoring of HTML and CSS code throughout the whole Wazuh app (#294, #302 & #305):
- A big milestone for the project was finally achieved with this refactoring.
- We've removed the Bootstrap dependency from the
package.json
file. - We've removed and merged many duplicated rules.
- We've removed HTML and
angular-md
overriding rules. Now we have more own-made classes to avoid undesired results on the UI. - Also, this update brings tons of minor bugfixes related to weird HTML code.
- Wazuh app visualizations reviewed (#301):
- The number of used buckets has been limited since most of the table visualizations were surpassing acceptable limits.
- Some visualizations have been checked to see if they make complete sense on what they mean to show to the user.
- Modified some app components for better follow-up of Kibana guidelines (#290 & #297).
- Also, some elements were modified on the Discover tab in order to correct some mismatches.
Fixed
- Adjusted information ribbon in Agents/General for large OS names (#290 & #294).
- Fixed unsafe array access on the visualization directive when going directly into Manager/Ruleset/Decoders (#293).
- Fixed a bug where navigating between agents in the Agents tab was generating duplicated
agent.id
implicit filters (#296). - Fixed a bug where navigating between different tabs from Overview or Agents while being on the Discover sub-tab was causing data loss in metric watchers (#298).
- Fixed incorrect visualization of the rule level on Manager/Ruleset/Rules when the rule level is zero (0) (#298).
Removed
- Removed almost every
md-tooltip
component from the whole app (#305). - Removed unused images from the
img
folder (#305).
Wazuh v3.2.1 - Kibana v6.2.2 - Revision 385
Added
- Support for Wazuh v3.2.1.
- Brand-new first redesign for the app user interface (#278):
- This is the very first iteration of a work-in-progress UX redesign for the Wazuh app.
- The overall interface has been refreshed, removing some unnecessary colours and shadow effects.
- The metric visualizations have been replaced by an information ribbon under the filter search bar, reducing the amount of space they occupied.
- A new service was implemented for a proper handling of the metric visualizations watchers (#280).
- The rest of the app visualizations now have a new, more detailed card design.
- New shards and replicas settings to the
config.yml
file (#277):- Now you can apply custom values to the shards and replicas for the
.wazuh
and.wazuh-version
indices. - This feature only works before the installation process. If you modify these settings after installing the app, they won't be applied at all.
- Now you can apply custom values to the shards and replicas for the
Changed
- Now clicking again on the Groups tab on Manager will properly reload the tab and redirect to the beginning (#274).
- Now the visualizations only use the
vis-id
attribute for loading them (#275). - The colours from the toast messages have been replaced to follow the Elastic 6 guidelines (#286).
Fixed
- Fixed wrong data flow on Agents/General when coming from and going to the Groups tab (#273).
- Fixed sorting on tables, now they use the sorting functionality provided by the Wazuh API (#274).
- Fixed column width issues on some tables (#274).
- Fixed bug in the Agent configuration JSON viewer who didn't properly show the full group configuration (#276).
- Fixed excessive loading time from some Audit visualizations (#278).
- Fixed Play/Pause button in timepicker's auto-refresh (#281).
- Fixed unusual scenario on visualization directive where sometimes there was duplicated implicit filters when doing a search (#283).
- Fixed some Overview Audit visualizations who were not working properly (#285).
Removed
- Deleted the
id
attribute from all the app visualizations (#275).
Wazuh v3.2.0 - Kibana v6.2.2 - Revision 384
Added
- New directives for the Wazuh app:
wz-table
,wz-table-header
andwz-search-bar
(#263):- Maintainable and reusable components for a better-structured app.
- Several files have been changed, renamed and moved to new folders, following best practices.
- The progress bar is now within its proper directive (#266).
- Minor typos and refactoring changes to the new directives.
- Support for Elastic Stack v6.2.2.
Changed
- App buttons have been refactored. Unified CSS and HTML for buttons, providing the same structure for them (#269).
- The API list on Settings now shows the latest inserted API at the beginning of the list (#261).
- The check for the currently applied pattern has been improved, providing clever handling of Elasticsearch errors (#271).
- Now on Settings, when the Add or Edit API form is active, if you press the other button, it will make the previous one disappear, getting a clearer interface (#9df1e31).
Fixed
- Fixed visualizations directive to properly load the Manager/Ruleset visualizations (#262).
- Fixed a bug where the classic extensions were not affected by the settings of the
config.yml
file (#266). - Fixed minor CSS bugs from the conversion to directives to some components (#266).
- Fixed bug in the tables directive when accessing a member it doesn't exist (#266).
- Fixed browser console log error when clicking the Wazuh logo on the app (#6647fbc).
Removed
- Removed the
kbn-dis
directive from Manager/Ruleset (#262). - Removed the
filters.js
andkibana_fields_file.json
files (#263). - Removed the
implicitFilters
service (#270). - Removed visualizations loading status trace from controllers and visualization directive (#270).
Wazuh v3.2.0 - Kibana v6.2.1 - Revision 383
Added
- Support for Wazuh 3.2.0.
- Compatibility with Kibana 6.1.0 to Kibana 6.2.1.
- New tab for vulnerability detector alerts.
Changed
- The app now shows the index pattern selector only if the list length is greater than 1.
- If it's exactly 1 shows the index pattern without a selector.
- Now the index pattern selector only shows the compatible ones.
- It's no longer possible to select the
wazuh-monitoring
index pattern.
- It's no longer possible to select the
- Updated Bootstrap to 3.3.7.
- Improved filter propagation between Discover and the visualizations.
- Replaced the login route name from /login to /wlogin to avoid conflict with X-Pack own login route.
Fixed
- Several CSS bugfixes for better compatibility with Kibana 6.2.1.
- Some variables changed for adapting new Wazuh API requests.
- Better error handling for some Elastic-related messages.
- Fixed browser console error from top-menu directive.
- Removed undesired md-divider from Manager/Logs.
- Adjusted the width of a column in Manager/Logs to avoid overflow issues with the text.
- Fixed a wrong situation with the visualizations when we refresh the Manager/Rules tab.
Removed
- Removed the
travis.yml
file.
Wazuh v3.1.0 - Kibana v6.1.3 - Revision 380
Added
- Support for Wazuh 3.1.0.
- Compatibility with Kibana 6.1.3.
- New error handler for better app errors reporting.
- A new extension for Amazon Web Services alerts.
- A new extension for VirusTotal alerts.
- New agent configuration tab:
- Visualize the current group configuration for the currently selected agent on the App.
- Navigate through the different tabs to see which configuration is being used.
- Check the synchronization status for the configuration.
- View the current group of the agent and click on it to go to the Groups tab.
- New initial health check for checking some app components.
- New YAML config file:
- Define the initial index pattern.
- Define specific checks for the healthcheck.
- Define the default extensions when adding new APIs.
- New index pattern selector dropdown on the top navbar.
- The app will reload applying the new index pattern.
- Added new icons for some sections of the app.
Changed
- New visualizations loader, with much better performance.
- Improved reindex process for the .wazuh index when upgrading from a 2.x-5.x version.
- Adding 365 days expiring time to the cookies.
- Change default behaviour for the config file. Now everything is commented with default values.
- You need to edit the file, remove the comment mark and apply the desired value.
- Completely redesigned the manager configuration tab.
- Completely redesigned the groups tab.
- App tables have now unified CSS classes.
Fixed
- Play real-time button has been fixed.
- Preventing duplicate APIs from feeding the wazuh-monitoring index.
- Fixing the check manager connection button.
- Fixing the extensions settings so they are preserved over time.
- Much more error handling messages in all the tabs.
- Fixed OS filters in agents list.
- Fixed autocomplete lists in the agents, rules and decoders list so they properly scroll.
- Many styles bugfixes for the different browsers.
- Reviewed and fixed some visualizations not showing accurate information.
Removed
- Removed index pattern configuration from the
package.json
file. - Removed unnecessary dependencies from the
package.json
file.
Wazuh v3.0.0 - Kibana v6.1.0 - Revision 371
Added
- You can configure the initial index-pattern used by the plugin in the initialPattern variable of the app's package.json.
- Auto
.wazuh
reindex from Wazuh 2.x - Kibana 5.x to Wazuh 3.x - Kibana 6.x.- The API credentials will be automatically migrated to the new installation.
- Dynamically changed the index-pattern used by going to the Settings -> Pattern tab.
- Wazuh alerts compatibility auto detection.
- New loader for visualizations.
- Better performance: now the tabs use the same Discover tab, only changing the current filters.
- New Groups tab.
- Now you can check your group configuration (search its agents and configuration files).
- The Logs tab has been improved.
- You can sort by field and the view has been improved.
- Achieved a clearer interface with implicit filters per tab showed as unremovable chips.
Changed
- Dynamically creating .kibana index if necessary.
- Better integration with Kibana Discover.
- Visualizations loaded at initialization time.
- New sync system to wait for Elasticsearch JS.
- Decoupling selected API and pattern from backend and moved to the client side.
Wazuh v2.1.0 - Kibana v5.6.1 - Revision 345
Added
- Loading icon while Wazuh loads the visualizations.
- Add/Delete/Restart agents.
- OS agent filter
Changed
- Using genericReq when possible.
Wazuh v2.0.1 - Kibana v5.5.1 - Revision 339
Changed
- New index in Elasticsearch to save Wazuh set up configuration
- Short URL's is now supported
- A native base path from kibana.yml is now supported
Fixed
- Search bar across panels now support parenthesis grouping
- Several CSS fixes for IE browser