[Lists][Exceptions] - Updates exception list item comments structure#68864
Merged
yctercero merged 3 commits intoelastic:masterfrom Jun 11, 2020
Merged
[Lists][Exceptions] - Updates exception list item comments structure#68864yctercero merged 3 commits intoelastic:masterfrom
yctercero merged 3 commits intoelastic:masterfrom
Conversation
Contributor
|
Pinging @elastic/siem (Team:SIEM) |
Contributor
💚 Build SucceededTo update your PR or re-run it, just comment with: |
dhurley14
reviewed
Jun 11, 2020
| comments: { | ||
| properties: { | ||
| comment: { | ||
| type: 'keyword', |
Contributor
There was a problem hiding this comment.
I'm curious if we could change comment type to text instead of keyword so the full content of the comment is searchable?
Contributor
Author
There was a problem hiding this comment.
Good call. I noticed other ones like description was set to keyword. Wasn't sure if that was for a specific reason so I defaulted to keyword. Will update!
Contributor
There was a problem hiding this comment.
No worries I was just curious if it's something we might want. Open to hearing from others with their thoughts on this. Not a big deal either way I think.
Contributor
Author
There was a problem hiding this comment.
Per our chat, I'm planning on updating these in the upcoming PR that addresses entries. I'll link to it once its up as a follow up.
| expect(getPaths(left(message.errors))).toEqual(['invalid keys "extraKey"']); | ||
| expect(message.schema).toEqual({}); | ||
| }); | ||
| }); |
Contributor
There was a problem hiding this comment.
Thanks for the test!
yctercero
commented
Jun 11, 2020
|
|
||
| // TODO: Is it expected behavior for it not to auto-generate a uui or throw | ||
| // error if item_id is not passed in? | ||
| xtest('it should accept an undefined for "item_id" and auto generate a uuid', () => { |
Contributor
Author
There was a problem hiding this comment.
@FrankHassanabad I think I might have seen a to do related to this, but just wanted to double check the expected behavior here.
FrankHassanabad
approved these changes
Jun 11, 2020
Contributor
FrankHassanabad
left a comment
There was a problem hiding this comment.
Looks great! Thanks for the moving so fast on these and the tests!
yctercero
added a commit
to yctercero/kibana
that referenced
this pull request
Jun 11, 2020
…lastic#68864) ### Summary This is part of a series of upcoming changes to the exception list item structure. This PR focuses solely on updating exception_item.comment. The hope is to keep these PRs relatively small. - Updates exception_item.comment structure which was previously a string to exception_item.comments which is an array of { comment: string; created_by: string; created_at: string; } - Adds a few unit tests server side - Fixes some minor misspellings - Updates ExceptionViewer component in the UI to account for new structure
yctercero
added a commit
that referenced
this pull request
Jun 12, 2020
…cture (#68864) (#68907) * [Lists][Exceptions] - Updates exception list item comments structure (#68864) ### Summary This is part of a series of upcoming changes to the exception list item structure. This PR focuses solely on updating exception_item.comment. The hope is to keep these PRs relatively small. - Updates exception_item.comment structure which was previously a string to exception_item.comments which is an array of { comment: string; created_by: string; created_at: string; } - Adds a few unit tests server side - Fixes some minor misspellings - Updates ExceptionViewer component in the UI to account for new structure * Update API review file per CI instructions
2 tasks
yctercero
added a commit
that referenced
this pull request
Jun 26, 2020
…nt structure (#69532) ### Summary This PR is a follow up to #68864 . That PR used a partial to differentiate between new and existing comments, this meant that comments could be updated when they shouldn't. It was decided in our discussion of exception list schemas that comments should be append only. This PR assures that's the case, but also leaves it open to editing comments (via API). It checks to make sure that users can only update their own comments.
yctercero
added a commit
to yctercero/kibana
that referenced
this pull request
Jun 26, 2020
…nt structure (elastic#69532) ### Summary This PR is a follow up to elastic#68864 . That PR used a partial to differentiate between new and existing comments, this meant that comments could be updated when they shouldn't. It was decided in our discussion of exception list schemas that comments should be append only. This PR assures that's the case, but also leaves it open to editing comments (via API). It checks to make sure that users can only update their own comments.
yctercero
added a commit
that referenced
this pull request
Jun 26, 2020
…nt structure (#69532) (#70107) ### Summary This PR is a follow up to #68864 . That PR used a partial to differentiate between new and existing comments, this meant that comments could be updated when they shouldn't. It was decided in our discussion of exception list schemas that comments should be append only. This PR assures that's the case, but also leaves it open to editing comments (via API). It checks to make sure that users can only update their own comments.
Contributor
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
This is part of a series of upcoming changes to the exception list item structure. This PR focuses solely on updating
exception_item.comment. The hope is to keep these PRs relatively small.exception_item.commentstructure which was previously astringtoexception_item.commentswhich is an array of{ comment: string; created_by: string; created_at: string; }ExceptionViewercomponent in the UI to account for new structureSnapshots
As you can see, comments are now appearing on the UI as expected.
Testing
To turn on lists plugin - in kibana.dev.yml
Use the scripts in
x-pack/plugins/lists/server/scriptsto create some sample exception lists and items. You can use the following:./post_exception_list.sh ./exception_lists/new/exception_list_detection.json./post_exception_list_item.sh ./exception_lists/new/exception_list_item_detection_auto_id.json- this script auto generates the item_id so you can run it as many times as you like to create multiple items associated with the list generated in step 1./post_exception_list.sh./post_exception_list_item.sh ./exception_lists/new/exception_list_item_auto_id.json- this script auto generates the item_id so you can run it as many times as you like to create multiple items associated with the list generated in step 3./find_exception_lists.shto get the id of the two lists you createdExceptionsViewercomponent inx-pack/plugins/security_solution/public/alerts/pages/detection_engine/rules/details/index.tsxto something like the following:Navigate to the rules details page and click on the 'Exceptions' tab. Voila!
Checklist