Add Identity Controls + ADM Validation Bypasses Dashboard

[seansica]

There is now a new button to semi-permanently ignore/hide the reminder modal to edit the placeholder identity:

---

When you click No, and stop reminding me, the frontend stores a key in localStorage to remember the user's preference.

(I felt that a stateful user-specific config in the database would be overkill).

---

If you click Yes, edit my identity now, the user is redirected to the edit view for the placeholder identity, as opposed to the /org-settings section. This will make sense why in a moment.

---

The global organization identity is now a drop-down selector!

Identities are now first-class objects in Workbench. They can be viewed, created, edited, and deleted, just like any other STIX object.

---

By default, the MITRE identity is protected. Workbench blocks access to the ?editing=true view, and the REST API will reject all POST, PUT, and DELETE requests on the MITRE identity specifically.

Protecting the MITRE identity can be enabled or disabled using a new endpoint:

// POST /api/config/mitre-identity-writes
{
  "enabled": true | false
}

The frontend exposes a toggle for this — this toggle/section will only appear on the frontend if the MITRE identity actually exists in the database.

Lastly, the system will block you from deleting an identity if it is the organization identity, or more specifically, if any latest, active objects reference it in their created_by_ref or x_mitre_modified_by_ref fields.

---

1. This endpoint maps to a new key in the systemconfigurations collection/entity, called mitre_identity_writes_enabled.

2. Note that the organization_identity_ref is no longer sticky. Whereas before, it was set to the stix.id of the randomly generated Placeholder Organization Identity object; it can now be changed to a completely different identity using the drop-down selector.

---

Lastly, there is a new dashboard for managing the ADM validation bypass rules:

---

There is a complementary set of changes on the backend: mitre-attack/attack-workbench-rest-api#481

[codecov]

Codecov Report

❌ Patch coverage is 31.69811% with 181 lines in your changes missing coverage. Please review.
✅ Project coverage is 31.13%. Comparing base (0193bee) to head (5a2cc07).

Files with missing lines	Patch %	Lines
.../connectors/rest-api/rest-api-connector.service.ts	10.00%	36 Missing ⚠️
...e/org-settings-page/org-settings-page.component.ts	44.61%	36 Missing ⚠️
src/app/services/editor/editor.service.ts	30.00%	28 Missing ⚠️
src/app/classes/stix/identity.ts	13.63%	19 Missing ⚠️
...pp/components/save-dialog/save-dialog.component.ts	35.00%	13 Missing ⚠️
.../stix/string-property/string-property.component.ts	23.07%	10 Missing ⚠️
...p/components/stix/stix-list/stix-list.component.ts	0.00%	8 Missing ⚠️
...tix/list-property/list-edit/list-edit.component.ts	22.22%	7 Missing ⚠️
src/app/classes/stix/stix-object.ts	20.00%	4 Missing ⚠️
...x/identity-property/identity-property.component.ts	20.00%	4 Missing ⚠️
... and 6 more

Additional details and impacted files

@@            Coverage Diff             @@
##             next     #876      +/-   ##
==========================================
- Coverage   31.27%   31.13%   -0.14%     
==========================================
  Files         181      181              
  Lines       18979    19168     +189     
  Branches      247      257      +10     
==========================================
+ Hits         5935     5968      +33     
- Misses      13044    13200     +156     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.