Commit graph

34932 commits

Author SHA1 Message Date
Devin W. Hurley 56de45d156
[Security Solution] [Detections] Fixes bug for determining when we hit max signals after filtering with lists (#71768)
update signal counter with filtered results, not with direct search results.
2020-07-14 21:27:44 -04:00
Nicolas Chaulet a885f8ac1e
[Ingest Manager] Better display of Fleet requirements (#71686) 2020-07-14 21:09:05 -04:00
Tyler Smalley 18dcd24fe9 [tests] Temporarily skipped to promote snapshot
Will be re-enabled in #71727

Signed-off-by: Tyler Smalley <tyler.smalley@elastic.co>
2020-07-14 17:59:00 -07:00
Pete Harverson e010ed3d09
[ML] Edits labelling of SIEM module and jobs from SIEM to Security (#71696)
## Summary

Edits all references to 'SIEM' in the ML SIEM modules to 'Security'. The following parts of the configurations were edited:
- Module titles
- Module descriptions
- Job descriptions
- `siem` job group changed to `security`

The `siem#/` portion of the custom URLs was also edited to `security/`.

Also removes the 'beta' label from module and job descriptions.

![image](https://user-images.githubusercontent.com/7405507/87452224-dbe4fd00-c5f8-11ea-887b-89c47e3467d2.png)

![image (26)](https://user-images.githubusercontent.com/7405507/87452265-edc6a000-c5f8-11ea-94a8-e101126666fa.png)


Part of #69319
2020-07-14 18:36:06 -06:00
Spencer a0f7dced13
[kbn/optimizer] report sizes of assets produced by optimizer (#71319)
* Revert "Report page load asset size (#66224)"

This reverts commit 6f57fa0b2d.

* [kbn/optimizer] report sizes of assets produced by optimizer

* coalese the fast-glob versions we're using to prevent additional installs

* update kbn/pm dist

* Revert "update kbn/pm dist"

This reverts commit 68e24f0fad.

* Revert "coalese the fast-glob versions we're using to prevent additional installs"

This reverts commit 4201fb60b6.

* remove fast-glob, just recursivly call readdirSync()

* update integration tests to use new chunk filename

Co-authored-by: spalger <spalger@users.noreply.github.com>
Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 17:23:14 -07:00
Wylie Conlon 58b4127b68
Unskip functional tests for feature controls (#71173)
* Unskip functional tests for feature controls

* Update Maps test

* Update test title

* Fix hidden case-sensitive issue in saved queries

* Fix test separation issues

* Improve saved query retry logic

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 20:13:44 -04:00
Thomas Neirynck de4d65cc75
[Maps] Remove .mvt feature flag (#71779)
The layer wizard to add 3rd party .mvt tiles now shows by default.
2020-07-14 19:41:13 -04:00
Tyler Smalley 86733f60ff [tests] Temporarily skipped to promote snapshot
Will be re-enabled in #71727

Signed-off-by: Tyler Smalley <tyler.smalley@elastic.co>
2020-07-14 16:02:49 -07:00
Brent Kimmel 654d4da904
[Security_Solution][Bug] Handle non-ecs categories in events (#71714)
* Make resolver related event categories permissive
2020-07-14 18:51:59 -04:00
Lee Drengenberg 1f340969ee
re-fix navigate path for master add SAML login to login_page (#71337) 2020-07-14 17:28:03 -05:00
spalger e318ea76dc fix triggered job name 2020-07-14 15:10:01 -07:00
spalger b1433e6317 remove unnecessary context reference from trigger job
(cherry picked from commit 817fdf9b439e85c3ddfda126b3efb4e45c36006b)
2020-07-14 15:08:29 -07:00
Devin W. Hurley e42630d1c5
[Security Solution] [DETECTIONS] Set rule status to failure only on large gaps (#71549)
* only display gap error when a gap is too large for the gap mitigation code to cover, general code cleanup, adds some tests for separate function

* removes throwing of errors and log error and return null for maxCatchup, ratio, and gapDiffInUnits properties

* forgot to delete commented out code

* remove math.abs since we fixed this bug by switching around logic when calculating gapDiffInUnits in getGapMaxCatchupRatio fn

* updates tests for when a gap error should be written to rule status

* fix typo
2020-07-14 18:08:20 -04:00
Nathan Reese 0e7c3c7ff0
[Maps] increase DEFAULT_MAX_BUCKETS_LIMIT to 65535 (#70313)
Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 16:07:22 -06:00
spalger a81d8b55ab rename visual_baseline -> baseline_capture 2020-07-14 15:01:39 -07:00
Brian Seeders a5c9c4ec43 [CI] Add baseline trigger job 2020-07-14 15:01:32 -07:00
Luke Elmers 8ecbb25ab5
[expressions] AST Builder (#64395) 2020-07-14 15:57:22 -06:00
Chris Roberson 06b1820df7
[Monitoring] Out of the box alerting (#68805)
* First draft, not quite working but a good start

* More working

* Support configuring throttle

* Get the other alerts working too

* More

* Separate into individual files

* Menu support as well as better integration in existing UIs

* Red borders!

* New overview style, and renamed alert

* more visual updates

* Update cpu usage and improve settings configuration in UI

* Convert cluster health and license expiration alert to use legacy data model

* Remove most of the custom UI and use the flyout

* Add the actual alerts

* Remove more code

* Fix formatting

* Fix up some errors

* Remove unnecessary code

* Updates

* add more links here

* Fix up linkage

* Added nodes changed alert

* Most of the version mismatch working

* Add kibana mismatch

* UI tweaks

* Add timestamp

* Support actions in the enable api

* Move this around

* Better support for changing legacy alerts

* Add missing files

* Update alerts

* Enable alerts whenever any page is visited in SM

* Tweaks

* Use more practical default

* Remove the buggy renderer and ensure setup mode can show all alerts

* Updates

* Remove unnecessary code

* Remove some dead code

* Cleanup

* Fix snapshot

* Fixes

* Fixes

* Fix test

* Add alerts to kibana and logstash listing pages

* Fix test

* Add disable/mute options

* Tweaks

* Fix linting

* Fix i18n

* Adding a couple tests

* Fix localization

* Use http

* Ensure we properly handle when an alert is resolved

* Fix tests

* Hide legacy alerts if not the right license

* Design tweaks

* Fix tests

* PR feedback

* Moar tests

* Fix i18n

* Ensure we have a control over the messaging

* Fix translations

* Tweaks

* More localization

* Copy changes

* Type
2020-07-14 17:50:22 -04:00
Garrett Spong 8da80fe827
[Security] Adds field mapping support to rule creation Part II (#71402)
## Summary

Followup to https://github.com/elastic/kibana/pull/70288, which includes:

- [X] Rule Execution logic for:
  - [X] Severity Override
  - [X] Risk Score Override
  - [X] Rule Name Override
  - [X] Timestamp Override
- [X] Support for toggling display of Building Block Rules:
  - [X] Main Detections Page
  - [X] Rule Details Page
- [X] Integrates `AutocompleteField` for:
  - [X] Severity Override
  - [X] Risk Score Override
  - [X] Rule Name Override
  - [X] Timestamp Override
- [X] Fixes rehydration of `EditAboutStep` in `Edit Rule`
- [X] Fixes `Rule Details` Description rollup


Additional followup cleanup:
- [ ] Adds risk_score` to `risk_score_mapping`
- [ ] Improves field validation
- [ ] Disables override fields for ML Rules
- [ ] Orders `SeverityMapping` by `severity` on create/update
- [ ] Allow unbounded max-signals


### Checklist

Delete any items that are not applicable to this PR.

- [X] Any text added follows [EUI's writing guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses sentence case text and includes [i18n support](https://github.com/elastic/kibana/blob/master/packages/kbn-i18n/README.md)
- [ ] [Documentation](https://github.com/elastic/kibana/blob/master/CONTRIBUTING.md#writing-documentation) was added for features that require explanation or tutorials
  - Syncing w/ @benskelker
- [X] [Unit or functional tests](https://github.com/elastic/kibana/blob/master/CONTRIBUTING.md#cross-browser-compatibility) were updated or added to match the most common scenarios
### For maintainers

- [X] This was checked for breaking API changes and was [labeled appropriately](https://github.com/elastic/kibana/blob/master/CONTRIBUTING.md#release-notes-process)
2020-07-14 15:39:26 -06:00
Christos Nasikas 754ade5130
[SIEM] Fix custom date time mapping bug (#70713)
Co-authored-by: Xavier Mouligneau <xavier.mouligneau@elastic.co>
Co-authored-by: Xavier Mouligneau <189600+XavierM@users.noreply.github.com>
Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-15 00:26:39 +03:00
Kaarina Tungseth 9506dc90ca
[DOCS] Adds ID to logstash pipeline (#71726) 2020-07-14 16:25:31 -05:00
Nathan Reese 34c54ed31b
[Maps] fix custom icon palettes UI not being displayed (#71482)
* [Maps] fix custom icon palettes UI not being displayed

* cleanup test

* remove uneeded change to vector style defaults

* fix jest tests

* review feedback

* fix jest tests
2020-07-14 15:19:51 -06:00
Kaarina Tungseth 0c87aa506d
[DOCS] Adds API keys to API docs (#71738)
* [DOCS] Adds API keys to API docs

* Fixes link title

* Update docs/api/using-api.asciidoc

Co-authored-by: Brandon Morelli <bmorelli25@gmail.com>

Co-authored-by: Brandon Morelli <bmorelli25@gmail.com>
2020-07-14 16:18:32 -05:00
Steph Milovic f5259ed373
[Security solution] [Hosts] Endpoint overview on host details page (#71466) 2020-07-14 15:18:17 -06:00
John Schulz 04cdb5ad6f
Use updated onPreAuth from Platform (#71552)
* Use updated onPreAuth from Platform

* Add config flag. Increase default value.

* Set max connections flag default to 0 (disabled)

* Don't use limiting logic on checkin route

* Confirm preAuth handler only added when max > 0

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 17:13:30 -04:00
Alison Goryachev 919e0f6263
[Index Management] Adopt data stream API changes (#71682) 2020-07-14 14:09:03 -07:00
Tyler Smalley e4546b3bf5 [tests] Temporarily skipped to promote snapshot
Will be re-enabled in https://github.com/elastic/kibana/pull/71727

Signed-off-by: Tyler Smalley <tyler.smalley@elastic.co>
2020-07-14 14:04:14 -07:00
Kevin Logan 3f95b7a1f9
adjust query to include agents without endpoint as unenrolled (#71715) 2020-07-14 17:00:35 -04:00
Nicolas Chaulet c16bffc203
[Ingest Manager] Copy change enroll new agent -> Add Agent (#71691) 2020-07-14 16:49:00 -04:00
Tim Sullivan 820f9ede2d
[Reporting] Move a few server files for shorter paths (#71591) 2020-07-14 13:47:38 -07:00
Marta Bondyra cdbe12ff57
[Lens] XY chart -long legend overflows chart in editor Feature:Lens (#70702) 2020-07-14 22:41:58 +02:00
Shahzad c7eaf39bfe
[Uptime] Visitors breakdowns and enable rum view only via URL (#71428)
Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 22:39:44 +02:00
MadameSheema 6d5a18732c
removes timeline callout (#71718) 2020-07-14 22:17:50 +02:00
CJ Cenizal debcdbac33
Fix mappings for Upgrade Assistant reindexOperationSavedObjectType. (#71710) 2020-07-14 13:01:12 -07:00
Kaarina Tungseth 0b675b8908
[DOCS] Fixes to API docs (#71678)
* [DOCS] Fixes to API docs

* Fixes rogue -u
2020-07-14 14:59:21 -05:00
Sandra Gonzales fd1809c3c2
[Ingest Manager] Refactor Package Installation (#71521)
* refactor installation to add/remove installed assets as they are added/removed

* update types

* uninstall assets when installation fails

* refactor installation to add/remove installed assets as they are added/removed

* update types

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 15:55:12 -04:00
MadameSheema b48162b47b
[SIEM][Timeline] Updates all events text timeline (#71701)
* updates 'All events' timeline text to 'All'

* updates jest test

* fixes test issue
2020-07-14 21:29:42 +02:00
Ryland Herrick 9e2ebe2040
[Security Solution][Detections] Update telemetry to use ML contract (#71665)
* Update security solution telemetry to use ML providers

This interface recently changed and we're now able to use the ML
contract to retrieve these values. A few unnecessary arguments are
stubbed as we're in a non-user, non-request context.

* Simplify our capabilities stub assignment

This is more legible but still gets the point across; the intermediate
variable was explicit but ultimately unnnecessary.

* Update tests following telemetry refactor

We're not calling different methods, so our mocks need to change
slightly.
2020-07-14 14:20:24 -05:00
spalger 513d0e09e1 skip flaky suite (#71713) 2020-07-14 11:49:16 -07:00
Pete Harverson 6e30ce1ff2
[ML] Fix error toasts shown when starting or editing jobs (#71618)
* [ML] Fix error toasts shown when starting or editing jobs

* [ML] Adds toast_notification_service.ts file

* [ML] Fix Jest and type_check tests

* [ML] Alter check for statusCode in error object handling

* [ML] Fix errors Jest test
2020-07-14 19:45:10 +01:00
Josh Dover 8db71dee09
[DOCS] Clarify 'fields' option in SO.find docs (#71491) 2020-07-14 12:43:08 -06:00
Jonathan Buttner 23ddd27f94
[EPM][IngestManager][SecuritySolution] Correctly handle nested types (#71680)
* Correctly handling nested types

* Correct test names
2020-07-14 14:32:45 -04:00
Gidi Meir Morris d0c9fe9284
merged lodash imports (#71672)
This is just a code cleanup.
A previous PR accidentally added a second import of the same module into alerts_client.ts.
This PR corrects that.
2020-07-14 19:08:19 +01:00
MadameSheema f0e75e80b5
updates edit exception text save button (#71684) 2020-07-14 19:56:49 +02:00
Shahzad 981d678e42
[Uptime] Duration Anomaly Alert (#71208) 2020-07-14 19:53:14 +02:00
Ryland Herrick 8f8736cce8
Fix bug where lists "needs configuration" while index is being created (#71653)
The behavior here was that you'd be redirected to detections from
wherever you were, with no warning/indication.

When we knew we needed an index, and that we could create one,
needsConfiguration was incorrectly 'true' during the time between
realizing this fact and creating the index. That intermediate state is
now captured in needsIndexConfiguration, which is true if we either
can't create the index or we failed our attempt to do so.
2020-07-14 12:45:15 -05:00
Quynh Nguyen c24f180391
[ML] Anomaly Detection: Annotations enhancements (#70198)
Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 12:36:01 -05:00
Yara Tercero 65c804efa7
[Security Solution][Lists] - Update exception comments logic in API (#71602)
### Summary

Updated the logic so that newly added exception item comments are shown as expected.
2020-07-14 13:13:20 -04:00
Sonja Krause-Harder ef2a583981
[Ingest Manager] Send kibana version on requests to package registry (#71443)
* Send kibana version on requests to registry search.

* Only use semver part of kibanaVersion.

* Adjust test.

Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
2020-07-14 19:03:28 +02:00
Cauê Marcondes 7243e97883
[Observability] Landing page: Add promo panel for Ingest Manager (#71213)
* adding ingest manager panel

* adding ingest manager panel

* changing url

* removing git conflicts
2020-07-14 18:59:46 +02:00