Fix alerting health API to consider rules in all spaces (#100879)

* Initial commit * Expand tests Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
2021-06-02 13:08:09 -04:00 · 2021-06-02 13:08:09 -04:00 · e607b58590
parent d87e30e8c3
commit e607b58590
4 changed files with 134 additions and 0 deletions
--- a/x-pack/plugins/alerting/server/health/get_health.ts
+++ b/x-pack/plugins/alerting/server/health/get_health.ts
@ -34,6 +34,7 @@ export const getHealth = async (
    sortOrder: 'desc',
    page: 1,
    perPage: 1,
+    namespaces: ['*'],
  });

  if (decryptErrorData.length > 0) {
@ -51,6 +52,7 @@ export const getHealth = async (
    sortOrder: 'desc',
    page: 1,
    perPage: 1,
+    namespaces: ['*'],
  });

  if (executeErrorData.length > 0) {
@ -68,6 +70,7 @@ export const getHealth = async (
    sortOrder: 'desc',
    page: 1,
    perPage: 1,
+    namespaces: ['*'],
  });

  if (readErrorData.length > 0) {
@ -83,6 +86,7 @@ export const getHealth = async (
    type: 'alert',
    sortField: 'executionStatus.lastExecutionDate',
    sortOrder: 'desc',
+    namespaces: ['*'],
  });
  const lastExecutionDate =
    noErrorData.length > 0
--- a/x-pack/test/alerting_api_integration/common/config.ts
+++ b/x-pack/test/alerting_api_integration/common/config.ts
@ -151,6 +151,7 @@ export function createTestConfig(name: string, options: CreateTestConfigOptions)
          `--xpack.actions.allowedHosts=${JSON.stringify(['localhost', 'some.non.existent.com'])}`,
          '--xpack.encryptedSavedObjects.encryptionKey="wuGNaIhoMpk5sO4UBxgr3NyW1sFcLgIf"',
          '--xpack.alerting.invalidateApiKeysTask.interval="15s"',
+          '--xpack.alerting.healthCheck.interval="1s"',
          `--xpack.actions.enabledActionTypes=${JSON.stringify(enabledActionTypes)}`,
          `--xpack.actions.rejectUnauthorized=${rejectUnauthorized}`,
          `--xpack.actions.tls.verificationMode=${verificationMode}`,
--- a/x-pack/test/alerting_api_integration/security_and_spaces/tests/alerting/health.ts
+++ b/x-pack/test/alerting_api_integration/security_and_spaces/tests/alerting/health.ts
@ -0,0 +1,128 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License
+ * 2.0; you may not use this file except in compliance with the Elastic License
+ * 2.0.
+ */
+
+import expect from '@kbn/expect';
+import { UserAtSpaceScenarios } from '../../scenarios';
+import { FtrProviderContext } from '../../../common/ftr_provider_context';
+import {
+  getUrlPrefix,
+  getTestAlertData,
+  ObjectRemover,
+  AlertUtils,
+  ESTestIndexTool,
+  ES_TEST_INDEX_NAME,
+} from '../../../common/lib';
+
+// eslint-disable-next-line import/no-default-export
+export default function createFindTests({ getService }: FtrProviderContext) {
+  const supertest = getService('supertest');
+  const es = getService('legacyEs');
+  const retry = getService('retry');
+  const supertestWithoutAuth = getService('supertestWithoutAuth');
+  const esTestIndexTool = new ESTestIndexTool(es, retry);
+
+  describe('health', () => {
+    const objectRemover = new ObjectRemover(supertest);
+
+    before(async () => {
+      await esTestIndexTool.destroy();
+      await esTestIndexTool.setup();
+    });
+
+    after(async () => {
+      await esTestIndexTool.destroy();
+    });
+
+    for (const scenario of UserAtSpaceScenarios) {
+      const { user, space } = scenario;
+
+      describe(scenario.id, () => {
+        let alertUtils: AlertUtils;
+        let indexRecordActionId: string;
+
+        before(async () => {
+          const { body: createdAction } = await supertest
+            .post(`${getUrlPrefix(space.id)}/api/actions/connector`)
+            .set('kbn-xsrf', 'foo')
+            .send({
+              name: 'My action',
+              connector_type_id: 'test.index-record',
+              config: {
+                unencrypted: `This value shouldn't get encrypted`,
+              },
+              secrets: {
+                encrypted: 'This value should be encrypted',
+              },
+            })
+            .expect(200);
+          indexRecordActionId = createdAction.id;
+          objectRemover.add(space.id, indexRecordActionId, 'connector', 'actions');
+
+          alertUtils = new AlertUtils({
+            user,
+            space,
+            supertestWithoutAuth,
+            indexRecordActionId,
+            objectRemover,
+          });
+        });
+
+        after(() => objectRemover.removeAll());
+
+        it('should return healthy status by default', async () => {
+          const { body: health } = await supertestWithoutAuth
+            .get(`${getUrlPrefix(space.id)}/api/alerting/_health`)
+            .auth(user.username, user.password);
+          expect(health.is_sufficiently_secure).to.eql(true);
+          expect(health.has_permanent_encryption_key).to.eql(true);
+          expect(health.alerting_framework_heath.decryption_health.status).to.eql('ok');
+          expect(health.alerting_framework_heath.execution_health.status).to.eql('ok');
+          expect(health.alerting_framework_heath.read_health.status).to.eql('ok');
+        });
+
+        it('should return error when a rule in the default space is failing', async () => {
+          const reference = alertUtils.generateReference();
+          const { body: createdRule } = await supertest
+            .post(`${getUrlPrefix(space.id)}/api/alerting/rule`)
+            .set('kbn-xsrf', 'foo')
+            .send(
+              getTestAlertData({
+                schedule: {
+                  interval: '5m',
+                },
+                rule_type_id: 'test.failing',
+                params: {
+                  index: ES_TEST_INDEX_NAME,
+                  reference,
+                },
+              })
+            )
+            .expect(200);
+          objectRemover.add(space.id, createdRule.id, 'rule', 'alerting');
+
+          const ruleInErrorStatus = await retry.tryForTime(30000, async () => {
+            const { body: rule } = await supertest
+              .get(`${getUrlPrefix(space.id)}/api/alerting/rule/${createdRule.id}`)
+              .expect(200);
+            expect(rule.execution_status.status).to.eql('error');
+            return rule;
+          });
+
+          await retry.tryForTime(30000, async () => {
+            const { body: health } = await supertestWithoutAuth
+              .get(`${getUrlPrefix(space.id)}/api/alerting/_health`)
+              .auth(user.username, user.password);
+            expect(health.alerting_framework_heath.execution_health.status).to.eql('warn');
+            expect(health.alerting_framework_heath.execution_health.timestamp).to.eql(
+              ruleInErrorStatus.execution_status.last_execution_date
+            );
+          });
+        });
+      });
+    }
+  });
+}
--- a/x-pack/test/alerting_api_integration/security_and_spaces/tests/alerting/index.ts
+++ b/x-pack/test/alerting_api_integration/security_and_spaces/tests/alerting/index.ts
@ -51,6 +51,7 @@ export default function alertingTests({ loadTestFile, getService }: FtrProviderC
      loadTestFile(require.resolve('./alerts'));
      loadTestFile(require.resolve('./event_log'));
      loadTestFile(require.resolve('./mustache_templates'));
+      loadTestFile(require.resolve('./health'));
    });
  });
 }