search

MISP / misp-dashboard

A live dashboard for a real-time overview of threat intelligence from MISP instances
GNU Affero General Public License v3.0
194 stars 65 forks source link

Auth with Misp Saml #156

Open Prodian0013 opened 3 years ago

Prodian0013 commented 3 years ago

For Misp auth we are using Saml. I have tried to use the auth_enabled = True but it's not redirecting properly. Running the diagnostic script returns a login error.

# ./diagnostic.py 
✔ Virtual environment and packages
✔ Configuration
✔ File permission
✔ Redis
✔ Zmq
✔ Processes status: Both processes are running
✔ Subscriber status: subscriber is running and populating the buffer
ℹ Buffer queue: Currently 1 items in the buffer
✔ Buffer change rate: Buffer is consumed faster than being populated
✔ Dispatcher status: Took 0.47s to complete
✔ Server listening: http://127.0.0.1:8001/_get_log_head reached. Status code [200]
✖ Server dynamic enpoint: Redirected to `loging` caused by: Redirected to `loging` caused by an unknown error

Any suggestions for getting Saml to work with misp-dashboard? Thanks.

mokaddem commented 3 years ago

Unfortunately, misp-dashboard does not support MISP custom auth. You'll have to use the auth_enabled = False option for it to work. (or propose a PR to make misp-dashboard supports custom auth ;) ).

Prodian0013 commented 3 years ago

Yeah i did that rewrote the auth to use oauth2 in my fork not sure if anyone else would want that though

mokaddem commented 3 years ago

I would say, if you can share the code please do so. It could be used as a good start if someone wants to build something similar. Feel free to open a pull request with your changes. Thanks in advance! :)