Commit 9ea601f
# Backport
This will backport the following commits from `main` to `8.14`:
- [es query rule - get time field from data view instead of rule
(#182883)](#182883)
<!--- Backport version: 9.4.3 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Matthew
Kime","email":"matt@mattki.me"},"sourceCommit":{"committedDate":"2024-05-08T22:00:24Z","message":"es
query rule - get time field from data view instead of rule
(#182883)\n\n## Summary\r\n\r\nPreviously it was possible to create a
rule with a data view and change\r\nthe data view but the previous time
field would still be referenced. Now\r\nthe time field is always pulled
from the current data view.\r\n\r\n\r\nCloses
https://github.com/elastic/kibana/issues/182879\r\n\r\n#### Release
note\r\n\r\nFixed issue where an ES query rule could be created with a
data view,\r\nthen the data view is changed but there's still a
reference to the\r\nprevious data view's timestamp field. Now the
timestamp field is always\r\ntaken from the currently configured data
view.\r\n\r\n---------\r\n\r\nCo-authored-by: Davis McPhee
<davis.mcphee@elastic.co>","sha":"bc103c7016245901a04fc4921c1b213a4fbe2695","branchLabelMapping":{"^v8.15.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:fix","Team:DataDiscovery","backport:prev-minor","v8.15.0"],"title":"es
query rule - get time field from data view instead of
rule","number":182883,"url":"https://github.com/elastic/kibana/pull/182883","mergeCommit":{"message":"es
query rule - get time field from data view instead of rule
(#182883)\n\n## Summary\r\n\r\nPreviously it was possible to create a
rule with a data view and change\r\nthe data view but the previous time
field would still be referenced. Now\r\nthe time field is always pulled
from the current data view.\r\n\r\n\r\nCloses
https://github.com/elastic/kibana/issues/182879\r\n\r\n#### Release
note\r\n\r\nFixed issue where an ES query rule could be created with a
data view,\r\nthen the data view is changed but there's still a
reference to the\r\nprevious data view's timestamp field. Now the
timestamp field is always\r\ntaken from the currently configured data
view.\r\n\r\n---------\r\n\r\nCo-authored-by: Davis McPhee
<davis.mcphee@elastic.co>","sha":"bc103c7016245901a04fc4921c1b213a4fbe2695"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v8.15.0","branchLabelMappingKey":"^v8.15.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/182883","number":182883,"mergeCommit":{"message":"es
query rule - get time field from data view instead of rule
(#182883)\n\n## Summary\r\n\r\nPreviously it was possible to create a
rule with a data view and change\r\nthe data view but the previous time
field would still be referenced. Now\r\nthe time field is always pulled
from the current data view.\r\n\r\n\r\nCloses
https://github.com/elastic/kibana/issues/182879\r\n\r\n#### Release
note\r\n\r\nFixed issue where an ES query rule could be created with a
data view,\r\nthen the data view is changed but there's still a
reference to the\r\nprevious data view's timestamp field. Now the
timestamp field is always\r\ntaken from the currently configured data
view.\r\n\r\n---------\r\n\r\nCo-authored-by: Davis McPhee
<davis.mcphee@elastic.co>","sha":"bc103c7016245901a04fc4921c1b213a4fbe2695"}}]}]
BACKPORT-->
Co-authored-by: Matthew Kime <matt@mattki.me>
1 parent c7f1657 commit 9ea601f
3 files changed
Lines changed: 12 additions & 10 deletions
File tree
- x-pack/plugins/stack_alerts/server/rule_types/es_query
- lib
Lines changed: 2 additions & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
59 | 59 | | |
60 | 60 | | |
61 | 61 | | |
62 | | - | |
| 62 | + | |
| 63 | + | |
63 | 64 | | |
64 | 65 | | |
65 | 66 | | |
| |||
Lines changed: 6 additions & 7 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
112 | 112 | | |
113 | 113 | | |
114 | 114 | | |
115 | | - | |
| 115 | + | |
116 | 116 | | |
117 | | - | |
118 | | - | |
| 117 | + | |
| 118 | + | |
119 | 119 | | |
120 | 120 | | |
121 | 121 | | |
122 | 122 | | |
123 | | - | |
124 | 123 | | |
125 | 124 | | |
126 | | - | |
| 125 | + | |
127 | 126 | | |
128 | 127 | | |
129 | 128 | | |
| |||
135 | 134 | | |
136 | 135 | | |
137 | 136 | | |
138 | | - | |
| 137 | + | |
139 | 138 | | |
140 | 139 | | |
141 | 140 | | |
| |||
150 | 149 | | |
151 | 150 | | |
152 | 151 | | |
153 | | - | |
| 152 | + | |
154 | 153 | | |
155 | 154 | | |
156 | 155 | | |
| |||
Lines changed: 4 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
633 | 633 | | |
634 | 634 | | |
635 | 635 | | |
| 636 | + | |
636 | 637 | | |
637 | 638 | | |
638 | 639 | | |
| |||
701 | 702 | | |
702 | 703 | | |
703 | 704 | | |
704 | | - | |
| 705 | + | |
705 | 706 | | |
706 | 707 | | |
707 | 708 | | |
708 | 709 | | |
709 | | - | |
| 710 | + | |
710 | 711 | | |
711 | 712 | | |
712 | 713 | | |
| |||
717 | 718 | | |
718 | 719 | | |
719 | 720 | | |
| 721 | + | |
720 | 722 | | |
721 | 723 | | |
722 | 724 | | |
| |||
0 commit comments