adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
47,470 Commits 27 Branches 1,043 Tags
8b324c19d881cbbd56babd151cfe4e5ffd8a010d
Commit Graph

462 Commits

Author SHA1 Message Date
James Barnett 612959d9ab Land #10323, add authentication to REST API 2018-07-18 17:29:22 -05:00
Matthew Kienow ee6de3da39 Make endpoint plural and uniform with the others 2018-07-18 17:35:47 -04:00
Matthew Kienow 3147b8307b Fix issue when adding authenticated data service 
Add authentication to MsfServlet as a simple workaround to an issue
that occurs when data_services cmd is used to add a remote service
that requires an API token and no token or an invalid token are
provided.
 2018-07-18 14:08:30 -04:00
Matthew Kienow 4ff39e3799 Fix error code returned by authentication failure 
Previously an authentication failure message would indicate that the
error was permissions related yet the error code remained 401. The fix
allows the Authentication::Strategies classes to specify an error code
that is returned to the user.
 2018-07-18 14:04:09 -04:00
Matthew Kienow 5d048a6eb2 Use a class variable for auth initialized flag 2018-07-16 18:22:47 -04:00
James Barnett d5814ae9f6 Use the unpkg hosted versions of SwaggerUI 2018-07-16 15:16:27 -05:00
Matthew Kienow 70104ab25e Rename request env variables to conform with Rack 2018-07-16 15:04:05 -04:00
Matthew Kienow f7a4c577d6 Add UserServlet and admin_api scope 2018-07-16 12:56:43 -04:00
Matthew Kienow 4680455041 Implement report_user and password hashing 2018-07-16 12:55:00 -04:00
Matthew Kienow 67721bc616 Refactor strategies to support admin token role 2018-07-16 12:51:41 -04:00
Matthew Kienow f125fd62c8 Add authentication to protected endpoints 2018-06-22 17:14:45 -04:00
Matthew Kienow f38e5af0bf Use external style sheet 2018-06-22 15:38:17 -04:00
Matthew Kienow c0717d9306 Add MSF REST web service authentication support 2018-06-22 15:09:36 -04:00
James Barnett f8317d3ae2 Address code review comments 
- Don't document unsupported session POST
- Hide unimplemented loot/id and session/id GET methods
- Fix URL for msf doc
- Add missing workspace parament to vuln-attempts
- Remove unneccessary code for hosting the doc UI
 2018-05-29 12:24:53 -05:00
James Barnett acf4c2bd08 Merge branch 'master' into local_api_docs 2018-05-29 10:37:27 -05:00
Brent Cook 835281c7cc Land #9979, Add inactive list option to sessions command 2018-05-25 03:28:22 -05:00
Matthew Kienow 7ec5c06738 Change kind_of? to is_a? 2018-05-23 17:40:52 -04:00
Matthew Kienow 2c92e85494 Fix report_session_event with remote data service 
Modify DBManager method to allow session ID retrieval from a Hash
 2018-05-23 15:05:22 -04:00
James Barnett b83ee106f7 Merge branch 'master' into local_api_docs 2018-05-23 10:06:12 -05:00
Matthew Kienow 4ecc1ff551 Modify loots, notes and services search methods 
Modify loots and services method signatures. Remove workspace as a
positional argument, move into opts hash argument and update callers.
Made host search for these models more uniform. Update find_or_create
methods to handle difference in opts between find and report
operations.
 2018-05-21 17:37:51 -04:00
James Barnett 84a8f2100b Merge branch 'master' into local_api_docs 2018-05-16 13:27:28 -05:00
James Barnett fc079138fd Service API doc second pass 2018-05-15 14:34:15 -05:00
Matthew Kienow f482995f74 Minor changes to be similar to other servlets 2018-05-14 17:40:37 -04:00
Matthew Kienow 4b13fbb5a3 Add workaround for race condition in report_host 
Modify to use DBManager methods rather than DataProxy
 2018-05-14 17:36:33 -04:00
Matthew Kienow 262e791dcc Make find_or_create_host opts more consistent 
Modify to use DBManager methods rather than DataProxy
 2018-05-14 17:35:18 -04:00
Matthew Kienow 25fdc02902 Modify to use find_or_create_host 2018-05-14 17:29:57 -04:00
James Barnett 0f33bd08c7 Update swagger UI files 2018-05-08 12:26:46 -05:00
Matthew Kienow 06e178cba2 Add functionality to retrieve sessions 2018-05-05 00:39:56 -04:00
James Barnett a5b9cc8cb8 Add Msf endpoint API doc 2018-05-03 17:16:04 -05:00
James Barnett 40c978e040 First pass at Vuln Attempt API doc 2018-05-03 16:59:30 -05:00
James Barnett 728850c61a First pass at Session Event API doc 2018-05-03 16:00:56 -05:00
James Barnett a11c7220b6 First pass at Event API doc 2018-05-03 14:20:23 -05:00
James Barnett 249db505c8 First pass at Credential API doc 
Also get the workspace from the query string for credentials
 2018-05-02 16:47:39 -05:00
James Barnett 6bc4e2d622 First pass for Nmap api doc 2018-05-02 15:44:07 -05:00
christopher lee 038fe03777 Merge branch 'master' into ms-2962 2018-05-02 15:31:57 -05:00
James Barnett e3c913e104 First pass for Exploit API doc 
Also fixed a few formatting issues in other docs
 2018-05-02 14:47:17 -05:00
James Barnett 5e9bbb4bef Merge branch 'master' into local_api_docs 2018-05-02 11:48:13 -05:00
James Barnett e1827bb2c3 DbExport API doc first pass 2018-05-02 11:40:56 -05:00
James Barnett fd8d30812e Add swagger-ui to view formatted API docs 2018-05-02 10:27:56 -05:00
James Barnett d5838e6411 First pass at sessions api doc 2018-04-30 16:17:27 -05:00
James Barnett d89f403368 First pass for vuln api doc 2018-04-30 13:41:31 -05:00
christopher lee 41307e62f8 remove puts 2018-04-27 15:50:21 -05:00
christopher lee 0a73a5007c Removed duplicated online test 2018-04-27 09:37:17 -05:00
James Barnett 5d32a3264d Workspace API Doc first pass. 2018-04-26 17:55:39 -05:00
James Barnett 5d43e0527f Notes API doc first pass 2018-04-26 17:42:03 -05:00
christopher lee 9c7db375bf Fix broken tests after latest merge with master 2018-04-26 16:39:56 -05:00
christopher lee 516b61ebaa Merged master 2018-04-26 16:02:56 -05:00
James Barnett 49baa2ce41 Initial pass for Services api doc 2018-04-26 14:38:16 -05:00
Matthew Kienow c79e39377e Narrow rescue scope to StandardError 2018-04-26 14:55:41 -04:00
James Barnett f46a3325fc Add loot api docs 2018-04-26 11:24:05 -05:00