Changelog
All notable changes to this project will be documented in this file.
2.18.1 - 2021-08-10
------------------
**Fixed**
* canceled malware scans no longer block SiteProtection malware scans
* /site-protection/sp-chart/get-user-data-for-user-management endpoint only shows non deleted users for the corresponding ServerProtection user.
**Changed**
* SiteProtection malware scan checks if there is a scan running on the server and if it is a full scan
* NodeJs memory limit increased 512MB -> 1200MB
* Service maximal memory usage increased 1024 -> 1500
* REST API health check memory usage threshold modified to 80% of available memory
* All requests body sizes are logged so large data transfers can be detected
**Added**
* /site-protection/malware/check-scan
2.18.0 - 2021-08-05
------------------
**Added**
Return the config that belongs to a server. If there is no specific config then the global config will be returned.
Dev ninjas can now query and modify server configs if necessary.
* bn-agent-congig-ini microservice swagger URL added
2.17.53 - 2021-07-15
------------------
**Changed**
* User management query is optimized
* If the limit in the reseller API key is exceeded then no further servers can be added to the account
* /malware/whitelist endpoint limit increased
* getFileIncidentsForSpUser: incident queries are optimized
2.17.52 - 2021-06-23
------------------
**Added**
* /v2/malware/catch/malwareinfo/{signatureId} GET
Based on malware signatureId Returns the path and name of the first 100 related files.
2.17.51 - 2021-05-25
------------------
**Changed**
* Firewall endpoints can accept a server parameter for IP addresses and countries
**Added**
New endpoints for ID-based IP deletion and update on black and whitelist.
* firewall/blacklist/ip/{id} PATCH
* firewall/blacklist/ip/{id} DELETE
* firewall/whitelist/ip/{id} PATCH
* firewall/whitelist/ip/{id} DELETE
* firewall/blacklist/country/{id} PATCH
* firewall/blacklist/country/{id} DELETE
* firewall/whitelist/country/{id} PATCH
* firewall/whitelist/country/{id} DELETE
2.17.50 - 2021-05-25
------------------
**Added**
Endpoints to handle scheduled scan settings
* malware/{serverId}/scheduledScan POST
* malware/{serverId}/scheduledScan PUT
* malware/{serverId}/scheduledScan GET
* malware/{serverId}/scheduledScan DELETE
2.17.49 - 2021-05-10
------------------
**Changed**
* At IP and country variables were renamed to camelCase
**Fixed**
* Rollbar fixes
**Added**
* sp-finance swagger URL added
2.17.48 - 2021-05-04
------------------
**Changed**
* New Ninja RPC updated
* IP validation is removed from REST API
* expiration_date can be added to IP addresses and countries when allow listing or block listing them
**Fixed**
* Sonarlint fixes
2.17.47 - 2021-04-22
------------------
**Changed**
* Path for/v2/malware/scan/start and stop endpoints are updated
2.17.46 - 2021-04-12
------------------
**Fixed**
* Audit fix
* Mongoose fixed to 5.9 version to fix typescript build fails
**Added**
* bn-agent-version handler swagger link added
* Npm update: New patched NinjaRPC
* Latest version of NinjaRPC
2.17.45 - 2021-03-16
------------------
**Fixed**
* SiteProtection user could not start a scan if wanted to scan all
* SiteProtection dashboard did not display the filePath correctly at malware
* SiteProtection get-phishing-sites only returns phishing sites for the given user and not all phishing sites from the server
* memUsage logging fixed
**Added**
* link to sp-badge swagger
**Changed**
* Memory usage is logged at all info log
* logging is changed from debug to info
2.17.44 - 2021-03-08
------------------
**Fixed**
* Build process was failing
**Changed**
* log only catch results removed from malware/file-incidents endpoint
**Added**
* /v2/license/container-protection endpoint
* Added endpoints for starting and stopping malware scans
* new generalResponse response format added
2.17.42 - 2021-02-23
------------------
**Added**
* Check scan status endpoint
2.17.41 - 2021-02-18
------------------
**Changed**
* malware-signature DTO got new fields cuckoScore:number cuckoSeverity: string
2.17.40 - 2021-02-17
------------------
**Fixed**
* at signature creation the response was an empty array Error handling was also adjusted accordingly
2.17.39 - 2021-02-16
------------------
**Changed**
* Signature is set to optional at signature generation if there is no signature then the signature will be generated from filebase64Content
2.17.38 - 2021-02-04
------------------
**Added**
* bn-malware-cloud-scanner swagger URL added
2.17.37 - 2021-02-03
------------------
**Changed**
* malware/signature/user/blacklist enpoint now can return validating state signatures
* signature/user/blacklist/byState/validating returns a descending by catchCount list
2.17.36 - 2021-02-02
------------------
**Fixed**
* Cursor not found error fixed
2.17.35 - 2021-02-01
------------------
**Changed**
* Signature file query response now includes a new signature property
2.17.34 - 2021-02-01
------------------
**Added**
* bn-malware-source swagger link
2.17.33 - 2021-02-01
------------------
**Fixed**
* /v2/site-protection/malware/start-scan domain detection fixed
2.17.32 - 2021-01-28
------------------
**Fixed**
* Removed a not yet developed microservice's link from swagger
2.17.31 - 2021-01-25
------------------
**Fixed**
* Signature transition caused 500 error, on the REST API side, when there was no signature by name
2.17.30 - 2021-01-25
------------------
**Changed**
* Bodyparser limit increased: 10MB -> 15MB
* npm i deleted from start:dev command
2.17.29 - 2021-01-18
------------------
**Added**
* Endpoint to query how many users have the same Malware signature
* Endpoint to query block listed signatures by the state
* generatedBy and catchCount fields added to signature DTO
**Fixed:**
* MalwareAgentUserBlacklistResponsePaginatedDTO[] changed to MalwareSignatureResponsePaginatedDTO at
* v2/malware/signature/user/blacklist
* v2/malware/signature/user/blacklist/byState/:state
2.17.26 - 2021-01-12
------------------
**Fixed:**
* Not yet fully implemented microservice link removed from swagger
2.17.25 - 2021-01-11
------------------
**Fixed:**
* Enable/disable SiteProtection Phishing site checker endpoint adjusted to new spUser schema
2.17.24 - 2020-12-16
------------------
**Changed:**
* bn-server-network swagger link added
* bn-user swagger link removed
2.17.23 - 2020-12-09
------------------
**Fixed:**
* The linuxUserName variable was always empty
2.17.22 - 2020-12-09
------------------
**Fixed:**
* spUser database schema fixed
**Added**
* site-protection/sp-chart/get-overview-data
* site-protection/sp-chart/get-user-data-for-user-management
* site-protection/sp-chart/get-server-data-for-integration
* site-protection/sp-chart/login-with-sp-user
2.17.19 - 2020-12-02
------------------
**Fixed:**
* Phishing site endpoints got the missing /v2/site-protection prefix
2.17.18 - 2020-11-27
------------------
**Added:**
* site-protection​/sp-domain-validation Returns a hash for validation If there is no hash to return it will create one and save it to the database
* site-protection​/sp-domain-validation​/get-domain-validation-via-dns
* site-protection​/sp-domain-validation​/get-domain-validation-via-metatag
* site-protection/sp-domain-validation/get-domain-validation-via-file
2.17.17 - 2020-11-17
------------------
**Added:**
* SiteProtection Start manual scan: enables users to start malware scan for a specified domain.
2.17.16 - 2020-11-17
------------------
**Added:**
* SiteProtection get Phishing sites
* Enable/disable SiteProtection Phishing site checker
2.17.14 - 2020-11-05
------------------
**Added:**
* SiteProtection user login logger microservice: the corresponding path is added to the swagger
2.17.13 - 2020-10-28
------------------
**Fixed:**
* ServiceDetection duplicates handled
2.17.10 - 2020-10-22
------------------
**Fixed:**
* ServiceDetection fixed, all necessary data is sent to the API
2.17.9 - 2020-10-21
------------------
**Added:**
* serviceDetection new DTO
* querying the services saved by serviceDetection
**Changed**
* Server OS is now included in the server response
2.17.8 - 2020-10-14
------------------
**Fixed:**
* SiteProtection Malware scan status check fixed
2.17.7 - 2020-10-12
------------------
**Added:**
* Iptables report
2.17.6 - 2020-10-08
------------------
**Added:**
* Start scan endpoint for SiteProtection users: SiteProtection users can start a scan for the document roots of their domains
* Added an endpoint to check if a SiteProtection user can start a scan
2.17.5 - 2020-09-30
------------------
**Changed:**
* Anti-malware overview shows monthly malware catches instead of the last 24 hour catches.
* Malware catches can be viewed in 24-hour breakdown and 4-hour breakdowns
2.17.2 - 2020-09-15
------------------
**Changed:**
* While sending a report the API will use the server ID from JWT
* The API will not wait for the responses
* Responses will be cached
* No reply queue on bn-server-report's side
2.15.0 - 2020-08-27
------------------
**Added:**
* Quarantined file info endpoint for SiteProtection
2.13.0 - 2020-08-21
------------------
**Added:**
* External scan report's PDF link is included in the response
2.12.1 - 2020-07-29
------------------
**Added:**
* Send config to bn-server-report endpoint
2.12.0 - 2020-07-21
------------------
**Added:**
* Option to accept Firewall-reports
2.11.0 - 2020-07-02
==================
**Fixed:**
* License queries will also return data regarding trial licenses
2.10.0 - 2020-06-24
==================
**Added:**
* The IP address of users logged in to the SiteProtection dashboard will be allow listed for 24 hours
2.9.0 - 2020-06-15
==================
**Added:**
* SiteProtection scan endpoints
**Fixed:**
* Resellers IP based licenses are working without any issues
2.8.2 - 2020-05-08
==================
**Added:**
* SiteProtection user incidents by domain
2.8.1 - 2020-05-07
==================
**Changed:**
* Performance improvement in SiteProtection incident endpoints
2.8.0 - 2020-05-06
==================
**Added:**
* SiteProtection users incident related endpoints
2.7.8 - 2020-04-23
==================
**Changed:**
* License endpoints had misleading "type" property. Not it shows "subscription"
to help understand the response.
2.7.7 - 2020-04-15
==================
**Added:**
* Agents are able to change hostname in dashboard without issue
* Every user is able to have several servers with the same hostname without
issue at statistics
2.7.6 - 2020-04-01
==================
**Changed:**
* Server responses contains more fields
**Fixed:**
* Sometimes agents couldn't activate their license
2.7.5 - 2020-03-27
==================
**Fixed:**
* Plesk licenses are usable with the new agent from now
2.7.4 - 2020-03-27
==================
**Fixed:**
* Server protection license plans endpoint removed according to GDPR
2.7.3 - 2020-03-27
==================
**Fixed:**
* Fixed connection issues with microservices
2.7.2 - 2020-03-18
==================
**Fixed:**
* Servers won't duplicate in dashboard after agent update.
2.7.1 - 2020-03-12
==================
**Added:**
* More specific endpoint for malware signatures
**Fixed:**
* Malware signature transitions won't fail
2.7.0 - 2020-03-06
==================
**Added:**
* New license format is supported
2.6.0 - 2020-02-28
==================
**Added:**
* Malware signatures
2.5.4 - 2020-01-17
==================
**Added:**
* QA specific endpoints
2.5.3 - 2020-01-09
==================
**Fixed:**
* Performance improvement, better monitoring
2.5.2 - 2019-11-28
==================
**Fixed:**
* AccessToken and refreshToken for SiteProtection users
2.5.1 - 2019-11-21
==================
**Added:**
* Endpoints for BitNinja agent about SiteProtection users
2.5.0 - 2019-11-19
==================
**Added:**
* Login to SiteProtection via cPanel
2.4.0 - 2019-10-21
==================
**Added:**
* Authentication gives accessToken and refreshToken as well
**Fixed:**
* Improved performance
2.3.0 - 2019-10-01
==================
**Added:**
* Phishing site checker
* Autonomous System Number (ASN) block list
2.2.0 - 2019-09-26
==================
**Added:**
* Autonomous System Number (ASN) allow list
**Fixed:**
* Swagger paginated responses are correct from now
2.1.2 - 2019-09-09
==================
**Fixed:**
* Health check page has been fixed
2.1.1 - 2019-09-05
==================
**Fixed:**
* Random server crashes has been fixed
2.1.0 - 2019-09-04
==================
**Added:**
* Firewall block list-allow list management
* Server reporting
**Changed:**
* Paginated responses in [GET] requests
2.0.0 - 2019-08-30
==================
**Added:**
* Login via credentials
* Login via license code
* User config management
* User notification management
* Server management
* Malware management
* Firewall trusted proxy management