Commit Graph

47 Commits (0b73100e009ee8e93cf54521b092451da43d968f)

Author SHA1 Message Date
Jordan Wright bb7de8df3e
Initial Implementation of a Password Policy (#1867)
This PR adds the initial work to implement a password policy as defined in #1538.

Specifically, this implements the following

* Rate limiting for the login handler
* Implementing the ability for system admins to require a user to reset their password
* Implementing a password policy that requires passwords to be a minimum of 8 characters
* Removes the default password (gophish) for admin users to instead have the password randomly generated when Gophish first starts up
* Adds a password strength meter when choosing a new password

Fixes #1538
2020-06-19 22:03:51 -05:00
Jordan Wright 84096b8724
Implement User Management API (#1473)
This implements the first pass for a user management API allowing users with the `ModifySystem` permission to create, modify, and delete users. In addition to this, any user is able to use the API to view or modify their own account information.
2019-05-31 13:58:18 -05:00
Jordan Wright ba8ceb81da
Initial commit of RBAC support. (#1366)
* Initial commit of RBAC support. Closes #1333
2019-02-19 20:33:50 -06:00
Jordan Wright ebc099b6c2 Changed modals to avoid exiting when the user clicks outside them. Fixes #1236 2018-10-15 10:40:57 -05:00
Jordan Wright abafe3526b Moved documentation links to point to docs.getgophish.com. 2018-10-11 12:06:36 -05:00
Jordan Wright 35a8f13990 Improved group CSV parsing. Added ability to download CSV template from the group modal. 2018-06-09 13:22:11 -05:00
Jordan Wright 2131c17c33
Fixing SSRF by requiring an API key for all import endpoints. Fixes #1026 2018-03-26 21:04:22 -05:00
Mike Nickels 779e419ab4 Changed hrefs in sidebar to be consistent with other pages (#715) 2017-08-08 14:02:01 -05:00
Jordan Wright c52981614a Updated nav link to point to the correct User Guide 2017-01-14 17:33:37 -06:00
Jordan Wright 7453fd3b48 Added summary routes for groups.
Routes:
/api/groups/summary
/api/groups/:id/summary

The UI is now using these routes for the "Users & Groups" page.
2017-01-14 17:26:04 -06:00
Jordan Wright 9dfe54ac3d Added gulpfile to minify and concat JS + CSS files for faster loading. 2017-01-08 14:35:08 -06:00
Jordan Wright e7a9fb5666 Moved user guide to github wiki 2016-11-13 20:54:27 -06:00
William Woodson 306d315941 Updated menus to include link to sending_profiles page 2016-02-20 16:39:23 -06:00
Jordan Wright 080b3a6c27 Merge branch 'table-style' of https://github.com/StrangeUSB/gophish into StrangeUSB-table-style
# Conflicts:
#	static/js/app/campaigns.js
#	static/js/app/dashboard.js
#	static/js/app/landing_pages.js
#	static/js/app/templates.js
#	static/js/app/users.js
2016-01-20 21:53:12 -06:00
Justin Gray b9fd654f8a Added no-sort options to tables
Added a no-sort class to column headers where sorting doesn’t make
sense.  Still have the attachments table in the templates page to do,
there was something strange happening.
2016-01-17 15:27:11 -06:00
Justin Gray 84d21ab655 Sample Table Style
Changed the style of the add/manage users table.
2016-01-17 01:31:46 -06:00
Jordan Wright 65005a2805 Moved modal closing to hide.bs.modal - Fixes #71 2016-01-16 19:24:13 -06:00
unknown a78e92a436 Changed look of donut chart legend
Fixed deleteCampaign tooltip
Moved Result Status styles to an object
Dashboard, Users,  now has fancy loading gif
Now only loading ckeditor from templates and landing pages templates
Starting to add maps (coming soon!)
2015-08-11 21:12:09 -05:00
unknown eacb4ddfd4 Fixed /users endpoint to now have the following functionality:
- Edit
- Delete
Also added group validation on PUT /api/groups/:id
2015-08-05 00:23:05 -05:00
unknown 9df97d9d05 Added some loading gifs to make things seem smoother.
Working on fixing up campaign_results.html endpoint to have the graphs, results table, etc.
2015-07-29 22:31:39 -05:00
unknown 1183cc1bee Removed chartjs in favor of chartist-js (better interaction, more customization, etc.)
Made a poc of the dashboard charts - need to work on styling.
Some basic css / nav changes
2015-07-27 19:44:10 -05:00
unknown 4685b36928 Updated font-awesome to 4.3.0
Added buttons for editing/viewing/deleting objects in the tables (actual functionality to follow)
2015-07-06 22:26:08 -05:00
unknown 62323c170e Fixed csv upload on user import
Added moment.js for date formatting
UI Tweaks on pagination
Attachments are now a datatable (table all the things)
2015-06-27 19:21:46 -05:00
unknown ca378f835f UI fixes
Got submitting groups working
Fixed CKEditor integration on templates
2015-06-23 23:02:29 -05:00
unknown 33f240bfe0 Working on group editing 2015-06-17 22:44:05 -05:00
unknown 20b1c80454 Fixed tooltip - still cleaning up /users 2015-06-16 23:23:02 -05:00
unknown cf8c8c4534 Cleaned up sidebar nav links
Moved JS api structure to api.*.get(), etc.
Working on /groups now
2015-06-16 23:09:27 -05:00
unknown e1eadc3892 Re-organizing files to use Jquery instead of Angular 2015-06-15 16:49:16 -05:00
Jordan 9b216c5466 Major design change - more dashboard-ish.
Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend
Moved templates to partials for angular
Using FlatUI color scheme
2014-05-26 20:29:12 -05:00
Jordan bfdf9ca00e Added autofocus
PUT /api/groups/:id can now update the group name and modified date
2014-03-19 20:27:09 -05:00
Jordan b3e411c54c Adding DB table for template attachments (coming soon)
Cleanup API docs for campaigns
Added "omitempty" for Campaign model
2014-03-18 18:08:17 -05:00
Jordan b3e3dd8ff1 Added "templates" Template, View, and Route
Added "unsafe" filter per stackoverflow
Updated side nav to include links to "/templates"
2014-03-18 15:20:34 -05:00
Jordan 79cef0341e Fixed auto completion in campaign groups 2014-03-12 21:49:10 -05:00
Jordan 788a5703d2 Working on front-end integration for adding/editing campaigns 2014-02-17 20:46:57 -06:00
Jordan 2420e19e15 Implemented DELETE /api/groups/:id 2014-02-13 12:05:22 -06:00
Jordan 34b93b7bf4 Updated campaigns view to support ng-table pagination
Updated Edit Group modal to support ng-table pagination
2014-02-10 09:44:15 -06:00
Jordan d72bc4b7df Updated interfacing with ng-table module. Will propagate changes to campaigns soon.
Updated footer copyright year
Cleaned up tables in templates
2014-02-10 01:15:36 -06:00
Jordan b471a886e3 Updated angular ui to support adding group
Updated POST /api/groups/ to successfully add group
Fixed CSRF in API issue
Moved PUT and DELETE to /api/groups/:id (TODO: Implement)
Changed SQL to use user_id instead of API key
It is now possible to add a new group! Will propagate logic to campaigns soon.
2014-02-09 19:34:47 -06:00
Jordan 79ba4fadb6 Improved usability/implementation of adding/editing groups and campaigns. 2014-02-08 15:16:36 -06:00
Jordan 6cbc47e80c Added ng-table support (for future pagination, sorting, etc.)
Created services for campaigns/groups
Changed modals to be binded to the data. Will improve on this soon!
Added trailing slash to api endpoints (I hope to be able to remove this later)
2014-02-07 19:40:16 -06:00
Jordan cb39888c54 Added buttons to appear onhover for the rows (to select Edit/View/Delete etc.) 2014-02-06 19:17:20 -06:00
Jordan 40cd2ae837 Cleaned up some errors
Implemented using db.* helpers (ie GetUser)
Implemented ChangePassword (not reachable from UI currently)
Fixed angular issue in settings.html template
2014-02-06 10:49:53 -06:00
Jordan af7a8f4c4e Added easier support for Flashes
Moving DB access (as much as possible) into `db` package.
2014-02-05 10:57:53 -06:00
Jordan 4c722afe8b Creating layout for group add/edit modal 2014-02-04 10:21:07 -06:00
Jordan 43417d160f Cleaning up some broken links
Changed default admin password to 'gophish'
Fixed bug in POST /api/campaigns
Starting to implements groups and users functionality
2014-02-02 16:37:36 -06:00
Jordan 87fbd41184 Changing int to int64
Starting to implement angularjs
Implemented /api/campaigns/:id GET
Changed template delims to {{% and %}}
2014-01-31 20:49:22 -06:00
Jordan Wright a64b0c10c9 Moved structs to models.go file
Changed config to have "host" string
Working on simple mailing library
Some basic template bug fixes (eventually I might move the side nav to a template)
2013-12-12 00:27:43 -06:00