wazuh-kibana-app/CHANGELOG.md
2018-07-24 19:05:08 +02:00

51 KiB

Change Log

All notable changes to the Wazuh app project will be documented in this file.

Wazuh v3.4.0 - Kibana v6.3.1 - Revision 399

Added

  • Support for Wazuh v3.4.0.

Wazuh v3.3.0/v3.3.1 - Kibana v6.3.1 - Revision 399

Added

  • Added a new Angular.js factory to store the Wazuh app configuration values. Also this factory is being used by the pre-routes functions (resolves), this way we are sure about having the real configuration at any time. These pre-routes functions have been improved too. (#670)
  • Added extended information for reports from reporting feature (#701)

Changed

  • Tables have been improved. Now they are truncating long fields and adding a tooltip if needed (#671)
  • Services have been improved (#715)
  • CSV formatted files have been improved. Now they are showing a more human readable column names (#717, #726).
  • Added/Modified some visualization titles (#728)
  • Improved Discover perfomance when in background mode (#719)
  • Reports from reporting feature have suffered a fully redesign (#701)

Fixed

  • Fixed the top menu API indicator when checking API connection and the manager/cluster information had been changed (#668)
  • Fixed our logger module which was not writting logs the very first time Kibana is started neither after a log rotation (#667)
  • Fixed a regular expression in the server side when parsing URLs before registering a new Wazuh API (#690)
  • Fixed filters from specific visualization regarding to FIM section (#694)
  • Fixed filters parsing when generating a report. It was not parsing negated filters as expected (#696)
  • Fixed visualization counter from OSCAP tab (#722)

Removed

  • Temporary removed CSV download from agent inventory section due to Wazuh API bug (#727)

Wazuh v3.3.0/v3.3.1 - Kibana v6.3.0 - Revision 398

Added

  • Improvements for latest app redesign (#652):
    • The Welcome tabs have been simplified, following a more Elastic design.
    • Added again the md-nav-bar component with refined styles and limited to specific sections.
    • The Settings > Welcome tab has been removed. You can use the nav bar to switch tabs.
    • Minor CSS adjustments and reordering.
  • Small app UI improvements (#634):
    • Added link to Agents Preview on the Agents tab breadcrumbs.
    • Replaced the Generate report button with a smaller one.
    • Redesigned Management > Ruleset md-chips to look similar to Kibana filter pills.
    • Added agent information bar from Agents > General to Agents > Welcome too.
    • Refactored flex layout on Welcome tabs to fix a height visual bug.
    • Removed duplicated loading rings on the Agents tab.
  • Improvements for app tables (#627):
    • Now the current page will be highlighted.
    • The gap has been fixed to the items per page value.
    • If there are no more pages for Next or Prev buttons, they will be hidden.
  • Improvements for app health check (#637):
    • Improved design for the view.
    • The checks have been placed on a table, showing the current status of each one.
  • Changes to our reporting feature (#639):
    • Now the generated reports will include tables for each section.
    • Added a parser for getting Elasticsearch data table responses.
    • The reporting feature is now a separated module, and the code has been refactored.
  • Improvements for app tables pagination (#646).

Changed

  • Now the pretty parameter on the Dev tools tab will be ignored to avoid Unexpected error messages (#624).
  • The pdfkit dependency has been replaced by pdfmake (#639).
  • Changed some Kibana tables for performance improvements on the reporting feature (#644).
  • Changed the method to refresh the list of known fields on the index pattern (#650):
    • Now when restarting Kibana, the app will update the fieldset preserving the custom user fields.

Fixed

  • Fixed bug on Agents CIS-CAT tab who wasn't loading the appropriate visualizations (#626).
  • Fixed a bug where sometimes the index pattern could be undefined during the health check process, leading into a false error message when loading the app (#640).
  • Fixed several bugs on the Settings > API tab when removing, adding or editing new entries.

Removed

  • Removed the app login system (#636):
    • This feature was unstable, experimental and untested for a long time. We'll provide much better RBAC capabilities in the future.
  • Removed the new Kuery language option on Discover app search bars.
    • This feature will be restored in the future, after more Elastic v6.3.0 adaptations.

Wazuh v3.3.0/v3.3.1 - Kibana v6.3.0 - Revision 397

Added

  • Support for Elastic Stack v6.3.0 (#579 & #612 & #615).
  • Brand-new Wazuh app redesign for the Monitoring tab (#581):
    • Refactored and optimized UI for these tabs, using a breadcrumbs-based navigability.
    • Used the same guidelines from the previous redesign for Overview and Agents tabs.
  • New tab for Agents - Inventory (#582):
    • Get information about the agent host, such as installed packages, motherboard, operating system, etc.
    • This tab will appear if the agent has the syscollector wodle enabled.
  • Brand-new extension - CIS-CAT Alerts (#601):
    • A new extension, disabled by default.
    • Visualize alerts related to the CIS-CAT benchmarks on the Overview and Agents tabs.
    • Get information about the last performed scan and its score.
  • Several improvements for the Dev tools tab (#583 & #597):
    • Now you can insert queries using inline parameters, just like in a web browser.
    • You can combine inline parameters with JSON-like parameters.
    • If you use the same parameter on both methods with different values, the inline parameter has precedence over the other one.
    • The tab icon has been changed for a more appropriate one.
    • The Execute query button is now always placed on the first line of the query block.
  • Refactoring for all app tables (#582):
    • Replaced the old wz-table directive with a new one, along with a new data factory.
    • Now the tables are built with a pagination system.
    • Much easier method for building tables for the app.
    • Performance and stability improvements when fetching API data.
    • Now you can see the total amount of items and the elapsed time.

Changed

  • Moved some logic from the Agents preview tab to the server, to avoid excessive client-side workload (#586).
  • Changed the UI to use the same loading ring across all the app tabs (#593 & #599).
  • Changed the No results message across all the tabs with visualizations (#599).

Fixed

  • Fixed a bug on the Settings/Extensions tab where enabling/disabling some extensions could make other ones to be disabled (#591).

Wazuh v3.3.0/v3.3.1 - Kibana v6.2.4 - Revision 396

Added

  • Support for Wazuh v3.3.1.
  • Brand-new Wazuh app redesign for the Settings tab (#570):
    • Refactored and optimized UI for these tabs, using a breadcrumbs-based navigability.
    • Used the same guidelines from the previous redesign for Overview and Agents tabs.
  • Refactoring for Overview and Agents controllers (#564):
    • Reduced duplicated code by splitting it into separate files.
    • Code optimization for a better performance and maintainability.
    • Added new services to provide similar functionality between different app tabs.
  • Added data.vulnerability.package.condition to the list of known fields (#566).

Changed

  • The wazuh-logs and wazuh-monitoring folders have been moved to the Kibana's optimize directory in order to avoid some error messages when using the kibana-plugin list command (#563).

Fixed

  • Fixed a bug on the Settings tab where updating an API entry with wrong credentials would corrupt the existing one (#558).
  • Fixed a bug on the Settings tab where removing an API entry while its edit form is opened would hide the Add API button unless the user reloads the tab (#558).
  • Fixed some Audit visualizations on the Overview and Agents tabs that weren't using the same search query to show the results (#572).
  • Fixed undefined variable error on the wz-menu directive (#575).

Wazuh v3.3.0 - Kibana v6.2.4 - Revision 395

Fixed

  • Fixed a bug on the Agent Configuration tab where the sync status was always NOT SYNCHRONIZED (#569).

Wazuh v3.3.0 - Kibana v6.2.4 - Revision 394

Added

  • Support for Wazuh v3.3.0.
  • Updated some backend API calls to include the app version in the request header (#560).

Wazuh v3.2.4 - Kibana v6.2.4 - Revision 393

Added

  • Brand-new Wazuh app redesign for Overview and Agents tabs (#543):
    • Updated UI for these tabs using breadcrumbs.
    • New Welcome screen, presenting all the tabs to the user, with useful links to our documentation.
    • Overall design improved, adjusted font sizes and reduced HTML code.
    • This base will allow the app to increase its functionality in the future.
    • Removed the md-nav-bar component for a better user experience on small screens.
    • Improved app performance removing some CSS effects from some components, such as buttons.
  • New filter for agent version on the Agents Preview tab (#537).
  • New filter for cluster node on the Agents Preview tab (#538).

Changed

  • Now the report generation process will run in a parallel mode in the foreground (#523).
  • Replaced the usage of $rootScope with two new factories, along with more controller improvements (#525).
  • Now the Extensions tab on Settings won't edit the .wazuh index to modify the extensions configuration for all users (#545).
    • This allows each new user to always start with the base extensions configuration, and modify it to its needs storing the settings on a browser cookie.
  • Now the GDPR requirements description on its tab won't be loaded if the Wazuh API version is not v3.2.3 or higher (#546).

Fixed

  • Fixed a bug where the app crashes when attempting to download huge amounts of data as CSV format (#521).
  • Fixed a bug on the Timelion visualizations from Management/Monitoring which were not properly filtering and showing the cluster nodes information (#530).
  • Fixed several bugs on the loading process when switching between tabs with or without visualizations in the Overview and Agents tab (#531 & #533).
  • Fixed a bug on the wazuh-monitoring index feature when using multiple inserted APIs, along with several performance improvements (#539).
  • Fixed a bug where the OS filter on the Agents Preview tab would exclude the rest of filters instead of combining them (#552).
  • Fixed a bug where the Extensions settings were restored every time the user opened the Settings tab or pressed the Set default manager button (#555 & #556).

Wazuh v3.2.3/v3.2.4 - Kibana v6.2.4 - Revision 392

Added

  • Support for Wazuh v3.2.4.
  • New functionality - Reporting (#510):
    • Generate PDF logs on the Overview and Agents tabs, with the new button next to Panels and Discover.
    • The report will contain the current visualizations from the tab where you generated it.
    • List all your generated reports, download or deleted them at the new Management/Reporting tab.
    • Warning: If you leave the tab while generating a report, the process will be aborted.
  • Added warning/error messages about the total RAM on the server side (#502):
    • None of this messages will prevent the user from accessing the app, it's just a recommendation.
    • If your server has less than 2GB of RAM, you'll get an error message when opening the app.
    • If your server has between 2GB and 3GB of RAM, you'll get a warning message.
    • If your server has more than 3GB of RAM, you won't get any kind of message.
  • Refactoring and added loading bar to Manager Logs and Groups tabs (#505).
  • Added more Syscheck options to Management/Agents configuration tabs (#509).

Fixed

  • Added more fields to the known-fields.js file to avoid warning messages on Discover when using Filebeat for alerts forwarding (#497).
  • Fixed a bug where clicking on the Check connection button on the Settings tab threw an error message although the API connected successfully (#504).
  • Fixed a bug where the Agents tab was not properly showing the total of agents due to the new Wazuh cluster implementation (#517).

Wazuh v3.2.3 - Kibana v6.2.4 - Revision 391

Added

  • Support for Wazuh v3.2.3.
  • Brand-new extension - GDPR Alerts (#453):
    • A new extension, enabled by default.
    • Visualize alerts related to the GDPR compliance on the Overview and Agents tabs.
    • The Ruleset tab has been updated to include GDPR filters on the Rules subtab.
  • Brand-new Management tab - Monitoring (#490):
    • Visualize your Wazuh cluster, both master and clients.
      • Get the current cluster configuration.
      • Nodes listing, sorting, searching, etc.
    • Get a more in-depth cluster status thanks to the newly added Timelion visualizations.
    • The Detail view gives you a summary of the node's healthcheck.
  • Brand-new tab - Dev tools (#449):
    • Find it on the top navbar, next to Discover.
    • Execute Wazuh API requests directly from the app.
    • This tab uses your currently selected API from Settings.
    • You can type different API requests on the input window, select one with the cursor, and click on the Play button to execute it.
    • You can also type comments on the input window.
  • More improvements for the Manager/Ruleset tab (#446):
    • A new colour palette for regex, order and rule description arguments.
    • Added return to List view on Ruleset button while on Detail view.
    • Fixed line height on all table headers.
    • Removed unused, old code from Ruleset controllers.
  • Added option on config.yml to enable/disable the wazuh-monitoring index (#441):
    • Configure the frequency time to generate new indices.
    • The default frequency time has been increased to 1 hour.
    • When disabled, useful metrics will appear on Overview/General replacing the Agent status visualization.
  • Added CSV exporting button to the app (#431):
    • Implemented new logic to fetch data from the Wazuh API and download it in CSV format.
    • Currently available for the Ruleset, Logs and Groups sections on the Manager tab and also the Agents tab.
  • More refactoring to the app backend (#439):
    • Standardized error output from the server side.
    • Drastically reduced the error management logic on the client side.
    • Applied the Facade pattern when importing/exporting modules.
    • Deleted unused/deprecated/useless methods both from server and client side.
    • Some optimizations to variable type usages.
  • Refactoring to Kibana filters management (#452 & #459):
    • Added new class to build queries from the base query.
    • The filter management is being done on controllers instead of the discover directive.
    • Now we are emitting specific events whenever we are fetching data or communicating to the discover directive.
    • The number of useless requests to fetch data has been reduced.
    • The synchronization actions are working as expected regardless the amount of data and/or the number of machine resources.
    • Fixed several bugs about filter usage and transition to different app tabs.
  • Added confirmation message when the user deletes an API entry on Settings/API (#428).
  • Added support for filters on the Manager/Logs tab when realtime is enabled (#433).
  • Added more filter options to the Detail view on Manager/Ruleset (#434).

Changed

  • Changed OSCAP visualization to avoid clipping issues with large agent names (#429).
  • Now the related Rules or Decoders sections on Manager/Ruleset will remain hidden if there isn't any data to show or while it's loading (#434).
  • Added a 200ms delay when fetching iterable data from the Wazuh API (#445 & #450).
  • Fixed several bugs related to Wazuh API timeout/cancelled requests (#445).
  • Added ENOTFOUND, EHOSTUNREACH, EINVAL, EAI_AGAIN options for API URL parameter checking (#463).
  • Now the Settings/Extensions subtab won't appear unless there's at least one API inserted (#465).
  • Now the index pattern selector on Settings/Pattern will also refresh the known fields when changing it (#477).
  • Changed the Manager tab into Management (#490).

Fixed

  • Fixed a bug where toggling extensions after deleting an API entry could lead into an error message (#465).
  • Fixed some performance bugs on the dataHandler service (#442 & #486).
  • Fixed a bug when loading the Agents preview tab on Safari web browser (#447).
  • Fixed a bug where a new extension (enabled by default) appears disabled when updating the app (#456).
  • Fixed a bug where pressing the Enter key on the Discover's tab search bar wasn't working properly (#488).

Removed

  • Removed the rison dependency from the package.json file (#452).
  • Removed unused Elasticsearch request to avoid problems when there's no API inserted (#460).

Wazuh v3.2.1/v3.2.2 - Kibana v6.2.4 - Revision 390

Added

  • Support for Wazuh v3.2.2.
  • Refactoring on visualizations use and management (#397):
    • Visualizations are no longer stored on an index, they're built and loaded on demand when needed to render the interface.
    • Refactoring on the whole app source code to use the import/export paradigm.
    • Removed old functions and variables from the old visualization management logic.
    • Removed cron task to clean remaining visualizations since it's no longer needed.
    • Some Kibana functions and modules have been overridden in order to make this refactoring work.
      • This change is not intrusive in any case.
  • New redesign for the Manager/Ruleset tab (#420):
    • Rules and decoders list now divided into two different sections: List view and Detail view.
    • Removed old expandable tables to move the rule/decoder information into a new space.
    • Enable different filters on the detail view for a better search on the list view.
    • New table for related rules or decoders.
    • And finally, a bunch of minor design enhancements to the whole app.
  • Added a copyright notice to the whole app source code (#395).
  • Updated .gitignore with the Node template (#395).
  • Added new module to the package.json file, rison (#404).
  • Added the errorHandler service to the blank screen scenario (#413):
    • Now the exact error message will be shown to the user, instead of raw JSON content.
  • Added new option on the config.yml file to disable the new X-Pack RBAC capabilities to filter index-patterns (#417).

Changed

  • Small minor enhancements to the user interface (#396):
    • Reduced Wazuh app logo size.
    • Changed buttons text to not use all-capitalized letters.
    • Minor typos found in the HTML/CSS code have been fixed.
  • Now the app log stores the package revision (#417).

Fixed

  • Fixed bug where the Agents tab didn't preserve the filters after reloading the page (#404).
  • Fixed a bug when using X-Pack that sometimes threw an error of false "Not enough privileges" scenario (#415).
  • Fixed a bug where the Kibana Discover auto-refresh functionality was still working when viewing the Agent configuration tab (#419).

Wazuh v3.2.1 - Kibana v6.2.4 - Revision 389

Changed

  • Changed severity and verbosity to some log messages (#412).

Fixed

  • Fixed a bug when using the X-Pack plugin without security capabilities enabled (#403).
  • Fixed a bug when the app was trying to create wazuh-monitoring indices without checking the existence of the proper template (#412).

Wazuh v3.2.1 - Kibana v6.2.4 - Revision 388

Added

  • Support for Elastic Stack v6.2.4.
  • App server fully refactored (#360):
    • Added new classes, reduced the amount of code, removed unused functions, and several optimizations.
    • Now the app follows a more ES6 code style on multiple modules.
    • Overview/Agents visualizations have been ordered into separated files and folders.
    • Now the app can use the default index defined on the /ect/kibana/kibana.yml file.
    • Better error handling for the visualizations directive.
    • Added a cron job to delete remaining visualizations on the .kibana index if so.
    • Also, we've added some changes when using the X-Pack plugin:
      • Better management of users and roles in order to use the app capabilities.
      • Prevents app loading if the currently logged user has no access to any index pattern.
  • Added the errorHandler service to the dataHandler factory (#340).
  • Added Syscollector section to Manager/Agents Configuration tabs (#359).
  • Added cluster.name field to the wazuh-monitoring index (#377).

Changed

  • Increased the query size when fetching the index pattern list (#339).
  • Changed active colour for all app tables (#347).
  • Changed validation regex to accept URLs with non-numeric format (#353).
  • Changed visualization removal cron task to avoid excessive log messages when there weren't removed visualizations (#361).
  • Changed filters comparison for a safer access (#383).
  • Removed some server.log messages to avoid performance errors (#384).
  • Changed the way of handling the index patterns list (#360).
  • Rewritten some false error-level logs to just information-level ones (#360).
  • Changed some files from JSON to CommonJS for performance improvements (#360).
  • Replaced some code on the kibana-discover directive with a much cleaner statement to avoid issues on the Agents tab (#394).

Fixed

  • Fixed a bug where several agent.id filters were created at the same time when navigating between Agents and Groups with different selected agents (#342).
  • Fixed logic on the index-pattern selector which wasn't showing the currently selected pattern the very first time a user opened the app (#345).
  • Fixed a bug on the errorHandler service who was preventing a proper output of some Elastic-related backend error messages (#346).
  • Fixed panels flickering in the Settings tab (#348).
  • Fixed a bug in the shards and replicas settings when the user sets the value to zero (0) (#358).
  • Fixed several bugs related to the upgrade process from Wazuh 2.x to the new refactored server (#363).
  • Fixed a bug in Discover/Agents VirusTotal tabs to avoid conflicts with the agent.name field (#379).
  • Fixed a bug on the implicit filter in Discover/Agents PCI tabs (#393).

Removed

  • Removed clear API password on checkPattern response (#339).
  • Removed old dashboard visualizations to reduce loading times (#360).
  • Removed some unused dependencies due to the server refactoring (#360).
  • Removed completely metricService from the app (#389).

Wazuh v3.2.1 - Kibana v6.2.2/v6.2.3 - Revision 387

Added

  • New logging system (#307):
    • New module implemented to write app logs.
    • Now a trace is stored every time the app is re/started.
    • Currently, the initialize.js and monitoring.js files work with this system.
    • Note: the logs will live under /var/log/wazuh/wazuhapp.log on Linux systems, on Windows systems they will live under kibana/plugins/. It rotates the log whenever it reaches 100MB.
  • Better cookies handling (#308):
    • New field on the .wazuh-version index to store the last time the Kibana server was restarted.
    • This is used to check if the cookies have consistency with the current server status.
    • Now the app is clever and takes decisions depending on new consistency checks.
  • New design for the Agents/Configuration tab (#310):
    • The style is the same as the Manager/Configuration tab.
    • Added two more sections: CIS-CAT and Commands (#315).
    • Added a new card that will appear when there's no group configuration at all (#323).
  • Added "group" column on the agents list in Agents (#312):
    • If you click on the group, it will redirect the user to the specified group in Manager/Groups.
  • New option for the config.yml file, ip.selector (#313):
    • Define if the app will show or not the index pattern selector on the top navbar.
    • This setting is set to true by default.
  • More CSS cleanup and reordering (#315):
    • New typography.less file.
    • New layout.less file.
    • Removed cleaned.less file.
    • Reordering and cleaning of existing CSS files, including removal of unused classes, renaming, and more.
    • The Settings tab has been refactored to correct some visual errors with some card components.
    • Small refactoring to some components from Manager/Ruleset (#323).
  • New design for the top navbar (#326):
    • Cleaned and refactored code
    • Revamped design, smaller and with minor details to follow the rest of Wazuh app guidelines.
  • New design for the wz-chip component to follow the new Wazuh app guidelines (#323).
  • Added more descriptive error messages when the user inserts bad credentials on the Add new API form in the Settings tab (#331).
  • Added a new CSS class to truncate overflowing text on tables and metric ribbons (#332).
  • Support for Elastic Stack v6.2.2/v6.2.3.

Changed

  • Improved the initialization system (#317):
    • Now the app will re-create the index-pattern if the user deletes the currently used by the Wazuh app.
    • The fieldset is now automatically refreshed if the app detects mismatches.
    • Now every index-pattern is dynamically formatted (for example, to enable the URLs in the Vulnerabilities tab).
    • Some code refactoring for a better handling of possible use cases.
    • And the best thing, it's no longer needed to insert the sample alert!
  • Improvements and changes to index-patterns (#320 & #333):
    • Added a new route, /get-list, to fetch the index pattern list.
    • Removed and changed several functions for a proper management of index-patterns.
    • Improved the compatibility with user-created index-patterns, known to have unpredictable IDs.
    • Now the app properly redirects to /blank-screen if the length of the index patterns list is 0.
    • Ignored custom index patterns with auto-generated ID on the initialization process.
      • Now it uses the value set on the config.yml file.
    • If the index pattern is no longer available, the cookie will be overwritten.
  • Improvements to the monitoring module (#322):
    • Minor refactoring to the whole module.
    • Now the wazuh-monitoring index pattern is regenerated if it's missing.
    • And the best thing, it's no longer needed to insert the monitoring template!
  • Now the app health check system only checks if the API and app have the same major.minor version (#311):
    • Previously, the API and app had to be on the same major.minor.patch version.
  • Adjusted space between title and value in some cards showing Manager or Agent configurations (#315).
  • Changed red and green colours to more saturated ones, following Kibana style (#315).

Fixed

  • Fixed bug in Firefox browser who was not properly showing the tables with the scroll pagination functionality (#314).
  • Fixed bug where visualizations weren't being destroyed due to ongoing renderization processes (#316).
  • Fixed several UI bugs for a better consistency and usability (#318).
  • Fixed an error where the initial index-pattern was not loaded properly the very first time you enter the app (#328).
  • Fixed an error message that appeared whenever the app was not able to found the wazuh-monitoring index pattern (#328).

Wazuh v3.2.1 - Kibana v6.2.2 - Revision 386

Added

  • New design for the Manager/Groups tab (#295).
  • New design for the Manager/Configuration tab (#297).
  • New design of agents statistics for the Agents tab (#299).
  • Added information ribbon into Overview/Agent SCAP tabs (#303).
  • Added information ribbon into Overview/Agent VirusTotal tabs (#306).
  • Added information ribbon into Overview AWS tab (#306).

Changed

  • Refactoring of HTML and CSS code throughout the whole Wazuh app (#294, #302 & #305):
    • A big milestone for the project was finally achieved with this refactoring.
    • We've removed the Bootstrap dependency from the package.json file.
    • We've removed and merged many duplicated rules.
    • We've removed HTML and angular-md overriding rules. Now we have more own-made classes to avoid undesired results on the UI.
    • Also, this update brings tons of minor bugfixes related to weird HTML code.
  • Wazuh app visualizations reviewed (#301):
    • The number of used buckets has been limited since most of the table visualizations were surpassing acceptable limits.
    • Some visualizations have been checked to see if they make complete sense on what they mean to show to the user.
  • Modified some app components for better follow-up of Kibana guidelines (#290 & #297).
    • Also, some elements were modified on the Discover tab in order to correct some mismatches.

Fixed

  • Adjusted information ribbon in Agents/General for large OS names (#290 & #294).
  • Fixed unsafe array access on the visualization directive when going directly into Manager/Ruleset/Decoders (#293).
  • Fixed a bug where navigating between agents in the Agents tab was generating duplicated agent.id implicit filters (#296).
  • Fixed a bug where navigating between different tabs from Overview or Agents while being on the Discover sub-tab was causing data loss in metric watchers (#298).
  • Fixed incorrect visualization of the rule level on Manager/Ruleset/Rules when the rule level is zero (0) (#298).

Removed

  • Removed almost every md-tooltip component from the whole app (#305).
  • Removed unused images from the img folder (#305).

Wazuh v3.2.1 - Kibana v6.2.2 - Revision 385

Added

  • Support for Wazuh v3.2.1.
  • Brand-new first redesign for the app user interface (#278):
    • This is the very first iteration of a work-in-progress UX redesign for the Wazuh app.
    • The overall interface has been refreshed, removing some unnecessary colours and shadow effects.
    • The metric visualizations have been replaced by an information ribbon under the filter search bar, reducing the amount of space they occupied.
      • A new service was implemented for a proper handling of the metric visualizations watchers (#280).
    • The rest of the app visualizations now have a new, more detailed card design.
  • New shards and replicas settings to the config.yml file (#277):
    • Now you can apply custom values to the shards and replicas for the .wazuh and .wazuh-version indices.
    • This feature only works before the installation process. If you modify these settings after installing the app, they won't be applied at all.

Changed

  • Now clicking again on the Groups tab on Manager will properly reload the tab and redirect to the beginning (#274).
  • Now the visualizations only use the vis-id attribute for loading them (#275).
  • The colours from the toast messages have been replaced to follow the Elastic 6 guidelines (#286).

Fixed

  • Fixed wrong data flow on Agents/General when coming from and going to the Groups tab (#273).
  • Fixed sorting on tables, now they use the sorting functionality provided by the Wazuh API (#274).
  • Fixed column width issues on some tables (#274).
  • Fixed bug in the Agent configuration JSON viewer who didn't properly show the full group configuration (#276).
  • Fixed excessive loading time from some Audit visualizations (#278).
  • Fixed Play/Pause button in timepicker's auto-refresh (#281).
  • Fixed unusual scenario on visualization directive where sometimes there was duplicated implicit filters when doing a search (#283).
  • Fixed some Overview Audit visualizations who were not working properly (#285).

Removed

  • Deleted the id attribute from all the app visualizations (#275).

Wazuh v3.2.0 - Kibana v6.2.2 - Revision 384

Added

  • New directives for the Wazuh app: wz-table, wz-table-header and wz-search-bar (#263):
    • Maintainable and reusable components for a better-structured app.
    • Several files have been changed, renamed and moved to new folders, following best practices.
    • The progress bar is now within its proper directive (#266).
    • Minor typos and refactoring changes to the new directives.
  • Support for Elastic Stack v6.2.2.

Changed

  • App buttons have been refactored. Unified CSS and HTML for buttons, providing the same structure for them (#269).
  • The API list on Settings now shows the latest inserted API at the beginning of the list (#261).
  • The check for the currently applied pattern has been improved, providing clever handling of Elasticsearch errors (#271).
  • Now on Settings, when the Add or Edit API form is active, if you press the other button, it will make the previous one disappear, getting a clearer interface (#9df1e31).

Fixed

  • Fixed visualizations directive to properly load the Manager/Ruleset visualizations (#262).
  • Fixed a bug where the classic extensions were not affected by the settings of the config.yml file (#266).
  • Fixed minor CSS bugs from the conversion to directives to some components (#266).
  • Fixed bug in the tables directive when accessing a member it doesn't exist (#266).
  • Fixed browser console log error when clicking the Wazuh logo on the app (#6647fbc).

Removed

  • Removed the kbn-dis directive from Manager/Ruleset (#262).
  • Removed the filters.js and kibana_fields_file.json files (#263).
  • Removed the implicitFilters service (#270).
  • Removed visualizations loading status trace from controllers and visualization directive (#270).

Wazuh v3.2.0 - Kibana v6.2.1 - Revision 383

Added

  • Support for Wazuh 3.2.0.
  • Compatibility with Kibana 6.1.0 to Kibana 6.2.1.
  • New tab for vulnerability detector alerts.

Changed

  • The app now shows the index pattern selector only if the list length is greater than 1.
    • If it's exactly 1 shows the index pattern without a selector.
  • Now the index pattern selector only shows the compatible ones.
    • It's no longer possible to select the wazuh-monitoring index pattern.
  • Updated Bootstrap to 3.3.7.
  • Improved filter propagation between Discover and the visualizations.
  • Replaced the login route name from /login to /wlogin to avoid conflict with X-Pack own login route.

Fixed

  • Several CSS bugfixes for better compatibility with Kibana 6.2.1.
  • Some variables changed for adapting new Wazuh API requests.
  • Better error handling for some Elastic-related messages.
  • Fixed browser console error from top-menu directive.
  • Removed undesired md-divider from Manager/Logs.
  • Adjusted the width of a column in Manager/Logs to avoid overflow issues with the text.
  • Fixed a wrong situation with the visualizations when we refresh the Manager/Rules tab.

Removed

  • Removed the travis.yml file.

Wazuh v3.1.0 - Kibana v6.1.3 - Revision 380

Added

  • Support for Wazuh 3.1.0.
  • Compatibility with Kibana 6.1.3.
  • New error handler for better app errors reporting.
  • A new extension for Amazon Web Services alerts.
  • A new extension for VirusTotal alerts.
  • New agent configuration tab:
    • Visualize the current group configuration for the currently selected agent on the App.
    • Navigate through the different tabs to see which configuration is being used.
    • Check the synchronization status for the configuration.
    • View the current group of the agent and click on it to go to the Groups tab.
  • New initial health check for checking some app components.
  • New YAML config file:
    • Define the initial index pattern.
    • Define specific checks for the healthcheck.
    • Define the default extensions when adding new APIs.
  • New index pattern selector dropdown on the top navbar.
    • The app will reload applying the new index pattern.
  • Added new icons for some sections of the app.

Changed

  • New visualizations loader, with much better performance.
  • Improved reindex process for the .wazuh index when upgrading from a 2.x-5.x version.
  • Adding 365 days expiring time to the cookies.
  • Change default behaviour for the config file. Now everything is commented with default values.
    • You need to edit the file, remove the comment mark and apply the desired value.
  • Completely redesigned the manager configuration tab.
  • Completely redesigned the groups tab.
  • App tables have now unified CSS classes.

Fixed

  • Play real-time button has been fixed.
  • Preventing duplicate APIs from feeding the wazuh-monitoring index.
  • Fixing the check manager connection button.
  • Fixing the extensions settings so they are preserved over time.
  • Much more error handling messages in all the tabs.
  • Fixed OS filters in agents list.
  • Fixed autocomplete lists in the agents, rules and decoders list so they properly scroll.
  • Many styles bugfixes for the different browsers.
  • Reviewed and fixed some visualizations not showing accurate information.

Removed

  • Removed index pattern configuration from the package.json file.
  • Removed unnecessary dependencies from the package.json file.

Wazuh v3.0.0 - Kibana v6.1.0 - Revision 371

Added

  • You can configure the initial index-pattern used by the plugin in the initialPattern variable of the app's package.json.
  • Auto .wazuh reindex from Wazuh 2.x - Kibana 5.x to Wazuh 3.x - Kibana 6.x.
    • The API credentials will be automatically migrated to the new installation.
  • Dynamically changed the index-pattern used by going to the Settings -> Pattern tab.
    • Wazuh alerts compatibility auto detection.
  • New loader for visualizations.
  • Better performance: now the tabs use the same Discover tab, only changing the current filters.
  • New Groups tab.
    • Now you can check your group configuration (search its agents and configuration files).
  • The Logs tab has been improved.
    • You can sort by field and the view has been improved.
  • Achieved a clearer interface with implicit filters per tab showed as unremovable chips.

Changed

  • Dynamically creating .kibana index if necessary.
  • Better integration with Kibana Discover.
  • Visualizations loaded at initialization time.
  • New sync system to wait for Elasticsearch JS.
  • Decoupling selected API and pattern from backend and moved to the client side.

Wazuh v2.1.0 - Kibana v5.6.1 - Revision 345

Added

  • Loading icon while Wazuh loads the visualizations.
  • Add/Delete/Restart agents.
  • OS agent filter

Changed

  • Using genericReq when possible.

Wazuh v2.0.1 - Kibana v5.5.1 - Revision 339

Changed

  • New index in Elasticsearch to save Wazuh set up configuration
  • Short URL's is now supported
  • A native base path from kibana.yml is now supported

Fixed

  • Search bar across panels now support parenthesis grouping
  • Several CSS fixes for IE browser