Jordan Wright
47619a8426
Fixing CSRF Exceptions
2015-10-03 15:55:06 -05:00
Jordan Wright
906c4e8a93
Adjusted CSRF whitelisted paths so remove dependency on / in path.
...
Fixes #31
2015-10-03 15:16:11 -05:00
unknown
fc2aa71e91
Fixed settings - can now reset password, api key.
2015-08-15 16:03:39 -05:00
unknown
0e496bdf73
Migrated settings (at least it loads).
...
Working on making the template syntax consistent across all the files, cleaning them up, etc.
2015-06-21 16:10:47 -05:00
unknown
e1eadc3892
Re-organizing files to use Jquery instead of Angular
2015-06-15 16:49:16 -05:00
unknown
7af35237a7
Working on tracking and email handling - want to make it as smooth as possible
...
Removed flash that shouldn't have been on the campaigns page
Added small time delay to prevent connection overload - might remove it later, but it'll be tricky
2015-06-12 23:12:43 -05:00
unknown
03b25f5fee
Cleaning up a bit of controllers.js #12
...
Working on site clone and email import
2015-06-12 18:22:17 -05:00
unknown
66dbe2e799
Cleaned up error messages - *all* errors in JSON format
...
Cleaned up flashes - fixes #13
Added specified errors - more to come soon
Added Campaign validation
Added Group validation
Cleaned up the way angular errors are handled. Will double check, but for the most part fixes #11
Results are now shown on the webui with most recent shown first
Added comments, additional cleanup, etc.
2015-02-21 00:11:22 -06:00
unknown
759f86447d
Working on importing emails from source (still doesn't work yet!)
2015-02-15 21:53:30 -06:00
unknown
4211abe78b
Previewing Landing pages in a different window seems to work now.
...
Working on getting some site clone functionality working.
2015-02-08 18:37:07 -06:00
unknown
f21d40d77a
Registration works again.
...
Additional cleanup, removing unused code
2015-02-07 17:30:22 -06:00
unknown
669d96d279
More work implementing pages.
...
More cleanup - changing *all* API errors to be returned via JSON
Fixed bug where /api/pages/ was not csrf exempt
Changed db column/table names to be more user friendly in the case of acronyms (Id, SMTP, etc.)
2015-02-07 14:31:41 -06:00
unknown
c8be0ddb74
Still working on pages integration. Added skeleton for page HTML previewing in a new browser.
...
Additional cleanup, documentation
Changed return values for /api/templates and /api/pages to return empty array [] if no results (like /api/campaigns was already doing)
2015-02-07 10:41:53 -06:00
unknown
c318424ac0
Starting to integrate landing page functionality (still not working).
...
Also did some minor cleanup.
2015-02-06 20:24:10 -06:00
unknown
d567153d2a
Time to get back to work - starting with some simple comment fixes.
2015-01-28 17:56:56 -06:00
Jordan
cc2ae713e5
Made models more consistent
...
Added UserId field to result (for use in looking up campaign when result is clicked)
2014-07-06 21:34:02 -05:00
Jordan
02c7c4b5b1
Moved models.Result into its own file
...
Added initial dashboard template (some updates and changes will be needed)
Added some documentation
2014-07-01 20:32:34 -05:00
Jordan
0f603e6501
Added http handler for phishing endpoint - Will add content soon
...
Updated config.go to reflect the new changes
2014-06-29 16:44:16 -05:00
Jordan
efec86ae56
Added util package for handling misc. tasks
...
Added basic (*not finished*) functionality for handling bulk user insert
2014-06-21 21:06:16 -05:00
Jordan
af44dbb07c
Changed writeJSON to JSONResponse and added a status code argument
2014-06-02 20:56:30 -05:00
Jordan
96cefc4931
Cleaned up possible (very unlikely?) permission issue
...
Better logging in controllers module
DRY changes to API
Added Data attribute to models.Response struct
Added GetTemplateByName (will be used in filling out campaign)
Changed modal to be 800px on large screens for better previews
2014-06-01 23:38:21 -05:00
Jordan
31aa5614a0
Moving JSON Responses to a standard Response object
...
Added cursor:pointer styling to dropdown menus
2014-06-01 22:30:23 -05:00
Jordan
7b39096e3f
Added async settings update
...
Removed /settings GET endpoint (not needed, since AngularJS in use)
TODO: Move the anon struct in use to a model as appropriate
2014-05-28 23:29:41 -05:00
Jordan
9b216c5466
Major design change - more dashboard-ish.
...
Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend
Moved templates to partials for angular
Using FlatUI color scheme
2014-05-26 20:29:12 -05:00
Jordan
584d7dbc23
Major refactoring - modularized models into separate files. Removed db package (moved to models)
...
I will be looking to migrate to gorm (instead of gorp) soon!
2014-03-24 22:31:33 -05:00
Jordan
b3e3dd8ff1
Added "templates" Template, View, and Route
...
Added "unsafe" filter per stackoverflow
Updated side nav to include links to "/templates"
2014-03-18 15:20:34 -05:00
Jordan
ef371f68bd
Set StrictSlash on API router to automatically redirect to correct url if slash is not provided
2014-03-18 13:58:08 -05:00
Jordan
9b94971a1d
Implementing Template API calls (todo: PUT, DELETE)
...
Cleaning up documentation for templates
Bugfix for DB Tables
2014-03-16 22:18:48 -05:00
Jordan
3f30d08bf5
Working on implementing templates
2014-03-16 22:02:06 -05:00
Jordan
5f1bd43344
Working on adding campaign results page
2014-03-13 15:12:03 -05:00
Jordan
631cd1ad13
Fixed the way Angular POSTS data
...
Added error code to checkError to support responses such as BadRequest, NotFound, etc.
2014-02-12 10:43:54 -06:00
Jordan
eb8491c144
Implemented ChangePassword() (now password can be changed from /settings)
...
A couple of UI fixes in tables
2014-02-10 13:02:44 -06:00
Jordan
b471a886e3
Updated angular ui to support adding group
...
Updated POST /api/groups/ to successfully add group
Fixed CSRF in API issue
Moved PUT and DELETE to /api/groups/:id (TODO: Implement)
Changed SQL to use user_id instead of API key
It is now possible to add a new group! Will propagate logic to campaigns soon.
2014-02-09 19:34:47 -06:00
Jordan
6cbc47e80c
Added ng-table support (for future pagination, sorting, etc.)
...
Created services for campaigns/groups
Changed modals to be binded to the data. Will improve on this soon!
Added trailing slash to api endpoints (I hope to be able to remove this later)
2014-02-07 19:40:16 -06:00
Jordan
40cd2ae837
Cleaned up some errors
...
Implemented using db.* helpers (ie GetUser)
Implemented ChangePassword (not reachable from UI currently)
Fixed angular issue in settings.html template
2014-02-06 10:49:53 -06:00
Jordan
af7a8f4c4e
Added easier support for Flashes
...
Moving DB access (as much as possible) into `db` package.
2014-02-05 10:57:53 -06:00
Jordan
50292da53f
Implemented Registration
...
Created auth.GenerateSecureKey to handle generating API Keys
2014-02-04 18:39:01 -06:00
Jordan
359fa01c1c
Cleaned up csrf exemptions
...
Cleaned up models
Added UNIQUE constraint on many-many tables
Added form parsing/ userid from API key lookup in middleware
2014-02-04 15:23:09 -06:00
Jordan
7045c7f3e2
Refined CSRF Protection Exempt Glob (/api/* to /api/*/*) to provide CSRF protection /api/reset
...
Added stub for /api/campaigns/:id/launch
2014-02-03 23:41:31 -06:00
Jordan
e0e15221b1
Updated README
...
Added CSRF Protection to login, /api/reset functions
Added auto highlighting of API key when clicked
2014-02-03 17:21:56 -06:00
Jordan
ca884fd384
Implemented Logout function
2014-02-02 16:55:26 -06:00
Jordan
43417d160f
Cleaning up some broken links
...
Changed default admin password to 'gophish'
Fixed bug in POST /api/campaigns
Starting to implements groups and users functionality
2014-02-02 16:37:36 -06:00
Jordan
e312e90570
Added ability to reset API token
...
Cleaned up session flash handling
2014-02-02 14:47:06 -06:00
Jordan
2cfe2b8f8f
Cleaning up documentation
...
Added targets, groups, group_target tables
2014-02-01 16:35:16 -06:00
Jordan
3edcc11e61
Cleaning up router
...
/campaigns - depreciated
/api/doc - now /api/
2014-01-31 21:49:35 -06:00
Jordan
87fbd41184
Changing int to int64
...
Starting to implement angularjs
Implemented /api/campaigns/:id GET
Changed template delims to {{% and %}}
2014-01-31 20:49:22 -06:00
Jordan
c4c57639e2
Implemented POST /api/campaigns
...
Renamed "apikey" table to "api_key" for consistency
Bug fix in checkError()
2014-01-31 16:25:02 -06:00
Jordan
c60b9d584b
- Working on implementing the API (started working on /api/campaigns)
...
- Implemented APIKey middleware
- Changed settings template to look a bit nicer and to, you know, work.
2014-01-30 22:46:25 -06:00
Jordan
e9aa8d2c88
Updated settings template and route to show basic user info
2014-01-30 15:15:12 -06:00
Jordan
c59415a133
Adding some models - Incorporated use of `gorp` package to allow ORM'ish functionality
2014-01-30 15:08:14 -06:00
Jordan
6944854005
Added support for --setup flag to reset database
2014-01-12 22:39:40 -06:00
Jordan
2a88b259b3
Working on API layout
2014-01-12 20:00:20 -06:00
Jordan
cdb4181406
Renamed CheckLogin to Login
...
Changed encryption cookie to be 32 bytes (64 bytes not supported)
2014-01-11 00:10:52 -06:00
Jordan
2a62f62bc6
Cleaned API even more (everything is via HandlerFunc)
...
Sessions are now encrypted as well as signed.
2014-01-10 22:37:42 -06:00
Jordan
42d7c463df
Moved Use() to controllers from middleware for cleaner usage (I'll consider moving it back if it doesn't logically make sense)
...
Renamed Base_Campaigns to Campaigns
2014-01-10 22:11:44 -06:00
Jordan
61ef18b3b4
Implemented auth.GetUser(id)
...
Impemented RequireLogin() middleware
Login is now working, just need to clean up the architecture a bit
2014-01-09 22:21:12 -06:00
Jordan
bb627396ee
Implemented Flashes (Model and functionality)
...
Working on login functionality
Changed the way templates are loaded and rendered
2014-01-09 21:21:54 -06:00
Jordan
7eb90b27ad
Moved DB to root folder
...
Created db package to handle DB connection/queries
Removed Setup.go (now handled in db package)
Setup context in middleware
2014-01-09 17:18:49 -06:00
Jordan
7f084760f9
Major refactoring - created auth, config, models, controllers, and middleware packages. Should help provide modularity and a clean architecture.
...
Added doc.go for each package
2014-01-09 00:42:05 -06:00