Update to Vue (#172)

* add vue ui * fix color styles * Update README.md (#173) * case change --------- Co-authored-by: Michael Kouremetis <[email protected]>
mitre · Feb 13, 2024 · 37f998f · 37f998f
1 parent a4a4bd3
commit 37f998f
Show file tree

Hide file tree

Showing 16 changed files with 559 additions and 22 deletions.
diff --git a/app/flags/advanced/flag_2.py b/app/flags/advanced/flag_2.py
@@ -5,7 +5,7 @@ class AdvancedFlag2(Flag):
     name = 'Add new user'
     challenge = 'Add new red-team user credentials, using "test" as both the username and password.'
     extra_info = (
-        'During an adversary emulation operation, multiple users may need access to the CALDERA server.\n'
+        'During an adversary emulation operation, multiple users may need access to the Caldera server.\n'
         'This flag requires making direct changes to the configuration file at conf/local.yml. Make sure the server is '
         'turned off before editing this file, or else changes will be overwritten.'
     )

diff --git a/app/flags/adversaries/flag_1.py b/app/flags/adversaries/flag_1.py
@@ -6,7 +6,7 @@ class AdversariesFlag1(Flag):
     challenge = 'Add the Nosy Neighbor adversary to the Certifiable adversary and save it'
     extra_info = """A TTP is often connected to a series of other TTPs to form an attack. For example, an adversary may
      have a procedure for locating all PDF files on a host. This may be followed by a procedure to exfiltrate all the
-     found files. In CALDERA, this chain of TTPs being used is considered an adversary."""
+     found files. In Caldera, this chain of TTPs being used is considered an adversary."""
 
     async def verify(self, services):
         for a in await services.get('data_svc').locate('adversaries', dict(name='Certifiable')):

diff --git a/app/flags/developers/flag_2.py b/app/flags/developers/flag_2.py
@@ -3,7 +3,7 @@
 
 class DevelopersFlag2(Flag):
     name = 'Bypass authentication'
-    challenge = 'Ensure that logging in to CALDERA is not required if the browser address is 127.0.0.1'
+    challenge = 'Ensure that logging in to Caldera is not required if the browser address is 127.0.0.1'
     extra_info = ''
 
     async def verify(self, services):

diff --git a/app/training_api.py b/app/training_api.py
@@ -81,6 +81,11 @@ async def retrieve_flags(self, request):
                 logging.error(e)
         return web.json_response(dict(badges=[b.display for b in badges]))
 
+    async def retrieve_certs(self, request):
+        access = dict(access=tuple(await self.auth_svc.get_permissions(request)))
+        certifications = await self.data_svc.locate('certifications', match=access)
+        return web.json_response(dict(certificates=[cert.display for cert in certifications]))
+
     async def reset_flag(self, request):
         """
         Allows cert takers to reset the latest flag if something went wrong with running the automatic operation.