-
Notifications
You must be signed in to change notification settings - Fork 8.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
URL drilldown #55324
Comments
Pinging @elastic/kibana-app-arch (Team:AppArch) |
Had a thought during meeting: We have Example GitHub url were we could drilldown to issue list of a team: |
@streamich, wonder what do you meant by "phase"?
My confusion is that: this feature won't go live without phase 1-4 implemented, but phase 5 (sso) is an improvement on top? So what do you think of moving phase 5 (sso) to different issue and not touch it at all for now? (This was my impression after last drilldowns sync meeting) |
By "phase" I just mean a separate piece of work, I guess "phase" is not the best word here.
Yes, I think we will move all 5 phases into separate issues. |
I think this isn't right? |
Url Drilldowns unknowns: gdoc |
Old plan: Implement Dashboard-to-URL drilldown. It should be available under Gold license. Phase 1Solve security issue of storing URLs in Kibana app state. Kibana app state itself is stored in the URL, thus a hacker could send you a Kibana URL with a malicious drilldown URL in it.
Issue: #67982 Phase 2Implement the URL drilldown.
Phase 3Create user-facing website docs.
Phase 4Add ability to allow-list URL drilldown origins (protocol + domain + port).
# Option to disable URL drilldown entirely:
xpack.ui_actions_enhanced.url_drilldown.enabled: false
# Option to opt-in into allow-list behavior:
xpack.ui_actions_enhanced.url_drilldown.origin_allowlist_enabled: true
# Option to specify origin allow-list:
xpack.ui_actions_enhanced.url_drilldown.origin_allowlist:
- http://google.com
- http://bing.com Maybe Phase 5Implement redirection to external URL through Kibana server (instead of directly from browser). This will allow us to support SSO authentication features, will allow users signed-in with SSO to authenticate with destination URL.
|
is it possible to use URL drill-down for a number range in the free version without having a gold license |
Thank you for contributing to this issue, however, we are closing this issue due to inactivity as part of a backlog grooming effort. If you believe this feature/bug should still be considered, please reopen with a comment. |
URL Drilldown MVP
<textarea>
as input (Embeddable to URL) . [wip] URL drilldown #68235 POC URL drilldown: trigger picker #70421elastic.co
website.Next
Vague ideas & backlog
#if
statement.Better previews and validationNotes
Currently dashboard state (including drilldown state) in edit mode is synced to browser URL. For URL drilldown project we agreed it is OK to use this existing functionality, it is up to KibanaApp team to decide if they want to remove state from the URL in the future.
We also agreed not to build external URL allow-list specifically for the URL drilldown, but in the future Kibana will have a allow-list with which URL drilldown will integrate.
Part of #42845 #61785
The text was updated successfully, but these errors were encountered: