Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide sensible defaults for xpack.security.session.{lifespan|idleTimeout}. #106061

Merged
merged 2 commits into from
Jul 20, 2021
Merged

Provide sensible defaults for xpack.security.session.{lifespan|idleTimeout}. #106061

merged 2 commits into from
Jul 20, 2021

Conversation

azasypkin
Copy link
Member

@azasypkin azasypkin commented Jul 19, 2021
edited
Loading

Summary

This PR changes default values for the session timeout settings. You can find more details on the decision in #68885

New defaults:

Docs preview link: https://kibana_106061.docs-preview.app.elstc.co/diff

Fixes: #68885

Release note

We are enabling session expiration timeouts by default in Kibana: session idle or inactivity timeout is set to 8 hours, and session maximum lifespan is set to 30 days. Refer to Session management documentation for more info.

@azasypkin azasypkin added release_note:breaking Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! Feature:Security/Authentication Platform Security - Authentication v8.0.0 backport:skip This commit does not require backporting labels Jul 19, 2021
@azasypkin azasypkin marked this pull request as ready for review July 19, 2021 10:07
@azasypkin azasypkin requested a review from a team as a code owner July 19, 2021 10:07
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security (Team:Security)

@azasypkin azasypkin requested a review from jportner July 19, 2021 10:07
thomheymann
thomheymann reviewed Jul 19, 2021
View reviewed changes
Copy link
Contributor

@thomheymann thomheymann left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good code wise but is an hour maybe a little too aggressive for idle timeout?

Imagine having to log into e.g. Gmail every time you don't use it for an hour. Sounds a bit annoying as default.

I would bring idle timeout and lifespan closer together so that customers using Kibana on a daily basis don't have to login all the time but also avoid having super long running sessions.

idleTimeout: 1d
lifespan: 7d

What do you think?

@azasypkin
Copy link
Member Author

What do you think?

Well, we went back and forth on these values and decided to be as close to NIST/ENISA guidelines as possible. Our values is a compromise between industry standards and usability and, actually, even a bit less aggressive than what these standards suggest.

Do you think we missed something important in this discussion - #68885?

I'm not opposed to reconsidering this though, but I'd better stick to what we already agreed on and see how it's perceived by the Kibana devs first (not quite a representative group, but still we're active Kibana users) - we have a reasonable amount of time before 8.0 GA to get enough feedback and pivot if people aren't happy.

@thomheymann
Copy link
Contributor

Do you think we missed something important in this discussion - #68885?

Ah great, thanks for linking to the original issue.

The guidelines seem to say:

  • 30 days for low security baseline
  • 12 hours or 30 minutes of inactivity for medium security baseline
  • 12 hours or 15 minutes of inactivity for high security baseline

Governments institutions with high security requirements will configure these settings manually irregardless of whether we're providing a default or not. I think the default is for those who wouldn't otherwise do so and a 1 hour inactivity idle time makes it pretty unusable / frustrating experience.

I think not having an inactivity timeout and instead specifying a reasonable lifespan might actually be a sensible approach here following the guidelines for low security baseline.

@jportner
Copy link
Contributor

jportner commented Jul 19, 2021
edited
Loading

I think the default is for those who wouldn't otherwise do so and a 1 hour inactivity idle time makes it pretty unusable / frustrating experience.

I think not having an inactivity timeout and instead specifying a reasonable lifespan might actually be a sensible approach here following the guidelines for low security baseline.

@thomheymann I'm curious to know why you think an idle timeout of 1 hour is pretty unusable and frustrating? We've/you've done a lot of work to make the idle timeout based on client side activity and thus pretty seamless. If the user does get logged out, they get redirected back to where they were (granted if they were doing something like editing a role, their changes would not have been saved -- but I think if you're going to walk away or otherwise background a window for 1 hour in the middle of what you were doing, you probably wouldn't stop in the middle of something important).

There are two main reasons for setting an idle timeout:

  1. Prevent attackers from brute-force guessing active sessions -- this is unrealistic for Kibana, as we use a 32-bit SID.
  2. Prevent IRL attacks when the user is idle -- for example, when you walk away from your computer for an extended period and someone decides to walk up to your desk and fool around.

I personally think 1 hour strikes a good balance between usability and security. It's not too aggressive, but it does provide protection in these cases. With both the idle timeout and the lifespan set, the lifespan is basically a fall-back in case a session does get stolen by an attacker, they can't use it indefinitely.

The sad truth is, a lot of system administrators won't ever think about or define security settings like this, but IMO we should do all we can to nudge them towards a more secure setup out-of-the-box. If they find it frustrating they can always extend the idle timeout or disable it!

@thomheymann
Copy link
Contributor

thomheymann commented Jul 19, 2021
edited
Loading

@thomheymann I'm curious to know why you think an idle timeout of 1 hour is pretty unusable and frustrating? We've/you've done a lot of work to make the idle timeout based on client side activity and thus pretty seamless. If the user does get logged out, they get redirected back to where they were (granted if they were doing something like editing a role, their changes would not have been saved -- but I think if you're going to walk away or otherwise background a window for 1 hour in the middle of what you were doing, you probably wouldn't stop in the middle of something important).

I was thinking about a situation where you have 5 tabs open with different visualisations and dashboards and then having to log in or refresh each and every one of them after your lunch break because we kicked you out after an hour. I don't think that would be a good user experience and I don't think that level of security will be justified for the majority of use cases. It's obviously hard to say since customers can store pretty much anything in Elasticsearch and some use cases will require more aggressive timeout policies. I'm not sure if that should be the default though.

e.g. Compare this to Gmail and Github which don't log you out that quickly.

@jportner
Copy link
Contributor

jportner commented Jul 19, 2021
edited
Loading

I was thinking about a situation where you have 5 tabs open with different visualisations and dashboards and then having to log in or refresh each and every one of them after your lunch break because we kicked you out after an hour.

Okay, that's a fair point. And that's not just limited to a lunch break either. If you got up for a long meeting, as long as you didn't set your dashboard to auto-refresh, the same thing would happen. But that's largely the point of the idle timeout 😄

What I'm really hearing is that we have too much friction in our UX for re-authentication when it comes to users who have multiple tabs.
Maybe when someone logs in from one tab, we can leverage our existing use of broadcast-channel to send a message to the other tabs to initiate a page refresh. That would likely need more thought, but we have plenty of time to solve this before 8.0, and it would solve a paint point for 1. existing users that have session idle timeout enabled, and 2. other auth-related issues that cause logouts.

Do you think something like that would alleviate your concerns?

Edit: opened ER for this in case we decide to implement it #106235

e.g. Compare this to Gmail and Github which don't log you out that quickly.

Fair point, but I don't think we are comparing apples to apples here, and in general I think whataboutism often isn't a good argument when it comes to security controls (or lack thereof!)

@azasypkin azasypkin requested a review from jportner July 20, 2021 05:27
@azasypkin
Copy link
Member Author

I don't think that would be a good user experience and I don't think that level of security will be justified for the majority of use cases.

Well, we never know until we try, it'd not hurt to add a bit telemetry around session settings to have some data to support our decisions in the future. I see both types of SDHs - the ones where users want to increase idle timeout and the ones where they want to decrease it, don't really see a single pattern there.

I also investigated how our ESS User console behaves, it seems its session expires after 2 hours of inactivity (ec-session cookie), and after one hour if you logged in with Okta (our own Okta configuration I guess). Unfortunately ESS doesn't allow to configure that.

ESS is not something we should be aligned to (I'd rather say it should be vice versa), just gathering more info on the topic.

Having said, it'd be nice if we can decide by EOD today so that changes are included into 8.0.0 alpha1.

@legrego
Copy link
Member

legrego commented Jul 20, 2021

I empathize with @thomheymann's position -- if Kibana was a central aspect of my job (oh, wait... 😄), then I would get really annoyed if my sessions expired after a single meeting or over a lunch break -- this could happen several times a day based on my schedule, which breaks my flow even more.]

If I'm just viewing a dashboard, then this isn't the end of the world, but (for example) it takes me a while to author a visualization, so it's very possible that I'll work on that piecemeal over the course of a day, as time permits. If my session expires, then I may lose whatever progress I've made along the way. This gets back to Joe's comment about having too much friction in our re-auth flow, but I think more generally it comes down to different apps remembering transient state, which is a tricky problem to get right.

I also think that our upcoming collaboration features could be frustrating to use with a small timeout window as well. I frequently start GitHub comments / issue descriptions, and leave them in the background if I get pulled away into something else (sometimes for days). I could easily see a similarly distracted Kibana user trying to work on a Security Solution Case in their spare time, but they keep losing their progress because of session expiration. This is again a problem of transient state, but I feel like we should consider the entire user experience of our proposal.

Having said all of that, we are not enforcing a session timeout here, but rather suggesting a "sensible default" so that your installation is secure out-of-the-box. One of the goals of the alpha and beta releases is to collect feedback on our proposed changes to the next major release. If we find that this introduces too much friction, then we still have an opportunity to make changes before we go GA.

To that end, I agree with @azasypkin that we should introduce telemetry in both 8.0 and 7.x to determine how our users configure session timeouts today, and how many choose to change the defaults in the future once we GA our new defaults, whatever they may be.

legrego
legrego reviewed Jul 20, 2021
View reviewed changes
Copy link
Member

@legrego legrego left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You might have already planned for this, but can we open a followup PR to add an informational message to the upgrade assistant to let users know that 8.0 will introduce session timeouts if they don't already have one explicitly configured?

@azasypkin
Copy link
Member Author

You might have already planned for this, but can we open a followup PR to add an informational message to the upgrade assistant to let users know that 8.0 will introduce session timeouts if they don't already have one explicitly configured?

Yep, definitely!

jportner
jportner approved these changes Jul 20, 2021
View reviewed changes
Copy link
Contributor

@jportner jportner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@jportner jportner mentioned this pull request Jul 20, 2021
Closed
@azasypkin
Copy link
Member Author

Okay, let's move forward, thanks everyone for feedback!

I'll drop a larger Kibana team a note about this change and ask to come to us if the change makes their lives harder.

@azasypkin azasypkin merged commit ca17b2d into elastic:master Jul 20, 2021
@azasypkin azasypkin deleted the issue-68885-timeouts branch July 20, 2021 16:30
@azasypkin azasypkin mentioned this pull request Jul 26, 2021
Merged
@kibanamachine
Copy link
Contributor

kibanamachine commented Jul 26, 2021
edited
Loading

💔 Build Failed

Failed CI Steps

Test Failures

Kibana Pipeline / general / Chrome UI Functional Tests.test/functional/apps/visualize/_vega_chart·ts.visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has failed 1 times on tracked branches: https://dryrun

[00:00:00]       │
[00:00:00]         └-: visualize app
[00:00:00]           └-> "before all" hook in "visualize app"
[00:00:00]           └-> "before all" hook in "visualize app"
[00:00:00]             │ debg Starting visualize before method
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Loading "mappings.json"
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Loading "data.json.gz"
[00:00:00]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_8.0.0_001/9wwKfBrSRzWLDFttYu4pXw] deleting index
[00:00:00]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_task_manager_8.0.0_001/9GBe-PG2TR2-Aw9KO4YhZg] deleting index
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Deleted existing index ".kibana_8.0.0_001"
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Deleted existing index ".kibana_task_manager_8.0.0_001"
[00:00:00]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_1] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Created index ".kibana_1"
[00:00:00]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] ".kibana_1" settings {"index":{"number_of_replicas":"1","number_of_shards":"1"}}
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Indexed 1 docs into ".kibana"
[00:00:00]             │ debg Migrating saved objects
[00:00:00]             │ proc [kibana]   log   [09:42:19.998] [info][savedobjects-service] [.kibana_task_manager] INIT -> CREATE_NEW_TARGET. took: 3ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.000] [info][savedobjects-service] [.kibana] INIT -> WAIT_FOR_YELLOW_SOURCE. took: 6ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.004] [info][savedobjects-service] [.kibana] WAIT_FOR_YELLOW_SOURCE -> CHECK_UNKNOWN_DOCUMENTS. took: 4ms.
[00:00:00]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_task_manager_8.0.0_001] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_task_manager_8.0.0_001]
[00:00:00]             │ proc [kibana]   log   [09:42:20.014] [info][savedobjects-service] [.kibana] CHECK_UNKNOWN_DOCUMENTS -> SET_SOURCE_WRITE_BLOCK. took: 10ms.
[00:00:00]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] adding block write to indices [[.kibana_1/qTrV3ujcSvGZeyG3OOKHHQ]]
[00:00:00]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] completed adding block write to indices [.kibana_1]
[00:00:00]             │ proc [kibana]   log   [09:42:20.073] [info][savedobjects-service] [.kibana_task_manager] CREATE_NEW_TARGET -> MARK_VERSION_INDEX_READY. took: 75ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.088] [info][savedobjects-service] [.kibana] SET_SOURCE_WRITE_BLOCK -> CREATE_REINDEX_TEMP. took: 74ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.105] [info][savedobjects-service] [.kibana_task_manager] MARK_VERSION_INDEX_READY -> DONE. took: 32ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.106] [info][savedobjects-service] [.kibana_task_manager] Migration completed after 111ms
[00:00:00]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_8.0.0_reindex_temp] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_8.0.0_reindex_temp]
[00:00:00]             │ proc [kibana]   log   [09:42:20.151] [info][savedobjects-service] [.kibana] CREATE_REINDEX_TEMP -> REINDEX_SOURCE_TO_TEMP_OPEN_PIT. took: 63ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.166] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_OPEN_PIT -> REINDEX_SOURCE_TO_TEMP_READ. took: 15ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.179] [info][savedobjects-service] [.kibana] Starting to process 1 documents.
[00:00:00]             │ proc [kibana]   log   [09:42:20.180] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_READ -> REINDEX_SOURCE_TO_TEMP_INDEX. took: 13ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.183] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_INDEX -> REINDEX_SOURCE_TO_TEMP_INDEX_BULK. took: 4ms.
[00:00:00]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_reindex_temp/F40LPYKHQS67_CwbChz2zQ] update_mapping [_doc]
[00:00:00]             │ proc [kibana]   log   [09:42:20.213] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_INDEX_BULK -> REINDEX_SOURCE_TO_TEMP_READ. took: 30ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.223] [info][savedobjects-service] [.kibana] Processed 1 documents out of 1.
[00:00:00]             │ proc [kibana]   log   [09:42:20.223] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_READ -> REINDEX_SOURCE_TO_TEMP_CLOSE_PIT. took: 10ms.
[00:00:00]             │ proc [kibana]   log   [09:42:20.229] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_CLOSE_PIT -> SET_TEMP_WRITE_BLOCK. took: 6ms.
[00:00:00]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] adding block write to indices [[.kibana_8.0.0_reindex_temp/F40LPYKHQS67_CwbChz2zQ]]
[00:00:01]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] completed adding block write to indices [.kibana_8.0.0_reindex_temp]
[00:00:01]             │ proc [kibana]   log   [09:42:20.265] [info][savedobjects-service] [.kibana] SET_TEMP_WRITE_BLOCK -> CLONE_TEMP_TO_TARGET. took: 36ms.
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] applying create index request using existing index [.kibana_8.0.0_reindex_temp] metadata
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_8.0.0_001] creating index, cause [clone_index], templates [], shards [1]/[1]
[00:00:01]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_8.0.0_001]
[00:00:01]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_001/RxF22w4xT1easYOLgGrnAg] create_mapping
[00:00:01]             │ proc [kibana]   log   [09:42:20.377] [info][savedobjects-service] [.kibana] CLONE_TEMP_TO_TARGET -> REFRESH_TARGET. took: 112ms.
[00:00:01]             │ proc [kibana]   log   [09:42:20.382] [info][savedobjects-service] [.kibana] REFRESH_TARGET -> OUTDATED_DOCUMENTS_SEARCH_OPEN_PIT. took: 5ms.
[00:00:01]             │ proc [kibana]   log   [09:42:20.385] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_OPEN_PIT -> OUTDATED_DOCUMENTS_SEARCH_READ. took: 3ms.
[00:00:01]             │ proc [kibana]   log   [09:42:20.395] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_READ -> OUTDATED_DOCUMENTS_SEARCH_CLOSE_PIT. took: 10ms.
[00:00:01]             │ proc [kibana]   log   [09:42:20.399] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_CLOSE_PIT -> UPDATE_TARGET_MAPPINGS. took: 4ms.
[00:00:01]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_001/RxF22w4xT1easYOLgGrnAg] update_mapping [_doc]
[00:00:01]             │ proc [kibana]   log   [09:42:20.462] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS -> UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK. took: 63ms.
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.tasks] creating index, cause [auto(bulk api)], templates [], shards [1]/[1]
[00:00:01]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.tasks]
[00:00:01]             │ info [o.e.t.LoggingTaskListener] [node-01] 706 finished with response BulkByScrollResponse[took=27.9ms,timed_out=false,sliceId=null,updated=1,created=0,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:00:01]             │ proc [kibana]   log   [09:42:20.578] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK -> MARK_VERSION_INDEX_READY. took: 116ms.
[00:00:01]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_8.0.0_reindex_temp/F40LPYKHQS67_CwbChz2zQ] deleting index
[00:00:01]             │ proc [kibana]   log   [09:42:20.612] [info][savedobjects-service] [.kibana] MARK_VERSION_INDEX_READY -> DONE. took: 34ms.
[00:00:01]             │ proc [kibana]   log   [09:42:20.612] [info][savedobjects-service] [.kibana] Migration completed after 618ms
[00:00:01]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] Migrated Kibana index after loading Kibana data
[00:00:02]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] Ensured that default space exists in .kibana
[00:00:02]             │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true,"visualization:visualize:legacyPieChartsLibrary":true}
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Loading "mappings.json"
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Loading "data.json.gz"
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.22] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.22"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.22" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.20] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.20"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.20" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.21] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.21"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.21" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:13]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4633 docs into "logstash-2015.09.22"
[00:00:13]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4757 docs into "logstash-2015.09.20"
[00:00:13]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4614 docs into "logstash-2015.09.21"
[00:00:14]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Loading "mappings.json"
[00:00:14]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Loading "data.json.gz"
[00:00:14]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [long-window-logstash-0] creating index, cause [api], templates [], shards [1]/[0]
[00:00:14]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Created index "long-window-logstash-0"
[00:00:14]             │ debg [test/functional/fixtures/es_archiver/long_window_logstash] "long-window-logstash-0" settings {"index":{"analysis":{"analyzer":{"makelogs_url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:23]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Indexed 14005 docs into "long-window-logstash-0"
[00:00:24]           └-: visualize ciGroup12
[00:00:24]             └-> "before all" hook in "visualize ciGroup12"
[00:33:04]             └-: vega chart in visualize app
[00:33:04]               └-> "before all" hook in "vega chart in visualize app"
[00:33:04]               └-> "before all" hook in "vega chart in visualize app"
[00:33:04]                 │ debg Cleaning all saved objects { space: undefined }
[00:33:04]                 │ info deleting batch of 9 objects
[00:33:04]                 │ succ deleted 9 objects
[00:33:04]                 │ debg resolved import for test/functional/fixtures/kbn_archiver/visualize.json to /dev/shm/workspace/parallel/1/kibana/test/functional/fixtures/kbn_archiver/visualize.json
[00:33:04]                 │ info importing 13 saved objects { space: undefined }
[00:33:05]                 │ succ import success
[00:33:05]                 │ debg replacing kibana config doc: {"defaultIndex":"logstash-*","format:bytes:defaultPattern":"0,0.[000]b","visualization:visualize:legacyChartsLibrary":true,"visualization:visualize:legacyPieChartsLibrary":true}
[00:33:06]                 │ debg navigateToApp visualize
[00:33:06]                 │ debg navigating to visualize url: http://localhost:6111/app/visualize#/
[00:33:06]                 │ debg navigate to: http://localhost:6111/app/visualize#/
[00:33:07]                 │ debg browser[INFO] http://localhost:6111/app/visualize?_t=1627294526173#/ 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:07]                 │
[00:33:07]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:07]                 │ debg ... sleep(700) start
[00:33:07]                 │ debg ... sleep(700) end
[00:33:07]                 │ debg returned from get, calling refresh
[00:33:08]                 │ debg browser[INFO] http://localhost:6111/app/visualize?_t=1627294526173#/ 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:08]                 │
[00:33:08]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:08]                 │ debg currentUrl = http://localhost:6111/app/visualize#/
[00:33:08]                 │          appUrl = http://localhost:6111/app/visualize#/
[00:33:08]                 │ debg TestSubjects.find(kibanaChrome)
[00:33:08]                 │ debg Find.findByCssSelector('[data-test-subj="kibanaChrome"]') with timeout=60000
[00:33:09]                 │ debg ... sleep(501) start
[00:33:09]                 │ debg ... sleep(501) end
[00:33:09]                 │ debg in navigateTo url = http://localhost:6111/app/visualize#/?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:33:09]                 │ debg --- retry.tryForTime error: URL changed, waiting for it to settle
[00:33:10]                 │ debg ... sleep(501) start
[00:33:10]                 │ debg ... sleep(501) end
[00:33:10]                 │ debg in navigateTo url = http://localhost:6111/app/visualize#/?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:33:10]                 │ debg isGlobalLoadingIndicatorVisible
[00:33:10]                 │ debg TestSubjects.exists(globalLoadingIndicator)
[00:33:10]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:33:12]                 │ debg --- retry.tryForTime error: [data-test-subj="globalLoadingIndicator"] is not displayed
[00:33:12]                 │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:33:12]                 │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:33:12]                 │ debg TestSubjects.exists(newItemButton)
[00:33:12]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:12]                 │ debg TestSubjects.click(newItemButton)
[00:33:12]                 │ debg Find.clickByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:12]                 │ debg Find.findByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:12]                 │ debg TestSubjects.find(visNewDialogGroups)
[00:33:12]                 │ debg Find.findByCssSelector('[data-test-subj="visNewDialogGroups"]') with timeout=10000
[00:33:12]                 │ debg clickVega
[00:33:12]                 │ debg TestSubjects.click(visType-vega)
[00:33:12]                 │ debg Find.clickByCssSelector('[data-test-subj="visType-vega"]') with timeout=10000
[00:33:12]                 │ debg Find.findByCssSelector('[data-test-subj="visType-vega"]') with timeout=10000
[00:33:12]                 │ debg isGlobalLoadingIndicatorVisible
[00:33:12]                 │ debg TestSubjects.exists(globalLoadingIndicator)
[00:33:12]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:33:12]                 │ debg browser[INFO] http://localhost:6111/app/visualize#/create?type=vega 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:12]                 │
[00:33:12]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:14]                 │ debg --- retry.tryForTime error: [data-test-subj="globalLoadingIndicator"] is not displayed
[00:33:14]                 │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:33:14]                 │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:33:15]                 │ debg Waiting up to 20000ms for rendering count to stabilize...
[00:33:15]                 │ debg TestSubjects.find(visualizationLoader)
[00:33:15]                 │ debg Find.findByCssSelector('[data-test-subj="visualizationLoader"]') with timeout=10000
[00:33:15]                 │ debg -- firstCount=1
[00:33:15]                 │ debg ... sleep(2000) start
[00:33:17]                 │ debg ... sleep(2000) end
[00:33:17]                 │ debg TestSubjects.find(visualizationLoader)
[00:33:17]                 │ debg Find.findByCssSelector('[data-test-subj="visualizationLoader"]') with timeout=10000
[00:33:17]                 │ debg -- secondCount=1
[00:33:17]               └-: vega chart
[00:33:17]                 └-> "before all" hook in "vega chart"
[00:33:17]                 └-: initial render
[00:33:17]                   └-> "before all" hook for "should have some initial vega spec text"
[00:33:17]                   └-> should have some initial vega spec text
[00:33:17]                     └-> "before each" hook: global before each for "should have some initial vega spec text"
[00:33:17]                     │ debg TestSubjects.find(vega-editor)
[00:33:17]                     │ debg Find.findByCssSelector('[data-test-subj="vega-editor"]') with timeout=10000
[00:33:18]                     └- ✓ pass  (1.7s) "visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have some initial vega spec text"
[00:33:18]                   └-> should have view and control containers
[00:33:18]                     └-> "before each" hook: global before each for "should have view and control containers"
[00:33:18]                     │ debg Find.findByCssSelector('div.vgaVis__view') with timeout=10000
[00:33:28]                     │ info Taking screenshot "/dev/shm/workspace/parallel/1/kibana/test/functional/screenshots/failure/visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers.png"
[00:33:28]                     │ info Current URL is: http://localhost:6111/app/visualize#/create?type=vega&_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))&_a=(filters:!(),linked:!f,query:(language:kuery,query:%27%27),uiState:(),vis:(aggs:!(),params:(spec:%27%7B%0A%2F*%0A%0AWelcome%20to%20Vega%20visualizations.%20%20Here%20you%20can%20design%20your%20own%20dataviz%20from%20scratch%20using%20a%20declarative%20language%20called%20Vega,%20or%20its%20simpler%20form%20Vega-Lite.%20%20In%20Vega,%20you%20have%20the%20full%20control%20of%20what%20data%20is%20loaded,%20even%20from%20multiple%20sources,%20how%20that%20data%20is%20transformed,%20and%20what%20visual%20elements%20are%20used%20to%20show%20it.%20%20Use%20help%20icon%20to%20view%20Vega%20examples,%20tutorials,%20and%20other%20docs.%20%20Use%20the%20wrench%20icon%20to%20reformat%20this%20text,%20or%20to%20remove%20comments.%0A%0AThis%20example%20graph%20shows%20the%20document%20count%20in%20all%20indexes%20in%20the%20current%20time%20range.%20%20You%20might%20need%20to%20adjust%20the%20time%20filter%20in%20the%20upper%20right%20corner.%0A*%2F%0A%0A%20%20$schema:%20https:%2F%2Fvega.github.io%2Fschema%2Fvega-lite%2Fv5.json%0A%20%20title:%20Event%20counts%20from%20all%20indexes%0A%0A%20%20%2F%2F%20Define%20the%20data%20source%0A%20%20data:%20%7B%0A%20%20%20%20url:%20%7B%0A%2F*%0AAn%20object%20instead%20of%20a%20string%20for%20the%20%22url%22%20param%20is%20treated%20as%20an%20Elasticsearch%20query.%20Anything%20inside%20this%20object%20is%20not%20part%20of%20the%20Vega%20language,%20but%20only%20understood%20by%20Kibana%20and%20Elasticsearch%20server.%20This%20query%20counts%20the%20number%20of%20documents%20per%20time%20interval,%20assuming%20you%20have%20a%20@timestamp%20field%20in%20your%20data.%0A%0AKibana%20has%20a%20special%20handling%20for%20the%20fields%20surrounded%20by%20%22%25%22.%20%20They%20are%20processed%20before%20the%20the%20query%20is%20sent%20to%20Elasticsearch.%20This%20way%20the%20query%20becomes%20context%20aware,%20and%20can%20use%20the%20time%20range%20and%20the%20dashboard%20filters.%0A*%2F%0A%0A%20%20%20%20%20%20%2F%2F%20Apply%20dashboard%20context%20filters%20when%20set%0A%20%20%20%20%20%20%25context%25:%20true%0A%20%20%20%20%20%20%2F%2F%20Filter%20the%20time%20picker%20(upper%20right%20corner)%20with%20this%20field%0A%20%20%20%20%20%20%25timefield%25:%20@timestamp%0A%0A%2F*%0ASee%20.search()%20documentation%20for%20:%20%20https:%2F%2Fwww.elastic.co%2Fguide%2Fen%2Felasticsearch%2Fclient%2Fjavascript-api%2Fcurrent%2Fapi-reference.html%23api-search%0A*%2F%0A%0A%20%20%20%20%20%20%2F%2F%20Which%20index%20to%20search%0A%20%20%20%20%20%20index:%20_all%0A%20%20%20%20%20%20%2F%2F%20Aggregate%20data%20by%20the%20time%20field%20into%20time%20buckets,%20counting%20the%20number%20of%20documents%20in%20each%20bucket.%0A%20%20%20%20%20%20body:%20%7B%0A%20%20%20%20%20%20%20%20aggs:%20%7B%0A%20%20%20%20%20%20%20%20%20%20time_buckets:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20date_histogram:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20date%20histogram%20aggregation%20on%20@timestamp%20field%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20field:%20@timestamp%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20The%20interval%20value%20will%20depend%20on%20the%20daterange%20picker%20(true),%20or%20use%20an%20integer%20to%20set%20an%20approximate%20bucket%20count%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20interval:%20%7B%25autointerval%25:%20true%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Make%20sure%20we%20get%20an%20entire%20range,%20even%20if%20it%20has%20no%20data%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20extended_bounds:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20the%20current%20time%20range!%27s%20start%20and%20end%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20min:%20%7B%25timefilter%25:%20%22min%22%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20max:%20%7B%25timefilter%25:%20%22max%22%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20this%20for%20linear%20(e.g.%20line,%20area)%20graphs.%20%20Without%20it,%20empty%20buckets%20will%20not%20show%20up%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20min_doc_count:%200%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%2F%2F%20Speed%20up%20the%20response%20by%20only%20including%20aggregation%20results%0A%20%20%20%20%20%20%20%20size:%200%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%7D%0A%2F*%0AElasticsearch%20will%20return%20results%20in%20this%20format:%0A%0Aaggregations:%20%7B%0A%20%20time_buckets:%20%7B%0A%20%20%20%20buckets:%20%5B%0A%20%20%20%20%20%20%7B%0A%20%20%20%20%20%20%20%20key_as_string:%202015-11-30T22:00:00.000Z%0A%20%20%20%20%20%20%20%20key:%201448920800000%0A%20%20%20%20%20%20%20%20doc_count:%200%0A%20%20%20%20%20%20%7D,%0A%20%20%20%20%20%20%7B%0A%20%20%20%20%20%20%20%20key_as_string:%202015-11-30T23:00:00.000Z%0A%20%20%20%20%20%20%20%20key:%201448924400000%0A%20%20%20%20%20%20%20%20doc_count:%200%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20...%0A%20%20%20%20%5D%0A%20%20%7D%0A%7D%0A%0AFor%20our%20graph,%20we%20only%20need%20the%20list%20of%20bucket%20values.%20%20Use%20the%20format.property%20to%20discard%20everything%20else.%0A*%2F%0A%20%20%20%20format:%20%7Bproperty:%20%22aggregations.time_buckets.buckets%22%7D%0A%20%20%7D%0A%0A%20%20%2F%2F%20%22mark%22%20is%20the%20graphics%20element%20used%20to%20show%20our%20data.%20%20Other%20mark%20values%20are:%20area,%20bar,%20circle,%20line,%20point,%20rect,%20rule,%20square,%20text,%20and%20tick.%20%20See%20https:%2F%2Fvega.github.io%2Fvega-lite%2Fdocs%2Fmark.html%0A%20%20mark:%20line%0A%0A%20%20%2F%2F%20%22encoding%22%20tells%20the%20%22mark%22%20what%20data%20to%20use%20and%20in%20what%20way.%20%20See%20https:%2F%2Fvega.github.io%2Fvega-lite%2Fdocs%2Fencoding.html%0A%20%20encoding:%20%7B%0A%20%20%20%20x:%20%7B%0A%20%20%20%20%20%20%2F%2F%20The%20%22key%22%20value%20is%20the%20timestamp%20in%20milliseconds.%20%20Use%20it%20for%20X%20axis.%0A%20%20%20%20%20%20field:%20key%0A%20%20%20%20%20%20type:%20temporal%0A%20%20%20%20%20%20axis:%20%7Btitle:%20false%7D%20%2F%2F%20Customize%20X%20axis%20format%0A%20%20%20%20%7D%0A%20%20%20%20y:%20%7B%0A%20%20%20%20%20%20%2F%2F%20The%20%22doc_count%22%20is%20the%20count%20per%20bucket.%20%20Use%20it%20for%20Y%20axis.%0A%20%20%20%20%20%20field:%20doc_count%0A%20%20%20%20%20%20type:%20quantitative%0A%20%20%20%20%20%20axis:%20%7Btitle:%20%22Document%20count%22%7D%0A%20%20%20%20%7D%0A%20%20%7D%0A%7D%0A%27),title:%27%27,type:vega))
[00:33:28]                     │ info Saving page source to: /dev/shm/workspace/parallel/1/kibana/test/functional/failure_debug/html/visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers.html
[00:33:28]                     └- ✖ fail: visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers
[00:33:28]                     │      TimeoutError: Waiting for element to be located By(css selector, div.vgaVis__view)
[00:33:28]                     │ Wait timed out after 10057ms
[00:33:28]                     │       at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:33:28]                     │       at runMicrotasks (<anonymous>)
[00:33:28]                     │       at processTicksAndRejections (internal/process/task_queues.js:95:5)
[00:33:28]                     │ 
[00:33:28]                     │

Stack Trace

TimeoutError: Waiting for element to be located By(css selector, div.vgaVis__view)
Wait timed out after 10057ms
    at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
    at runMicrotasks (<anonymous>)
    at processTicksAndRejections (internal/process/task_queues.js:95:5) {
  remoteStacktrace: ''
}
Kibana Pipeline / general / Chrome UI Functional Tests.test/functional/apps/visualize/_vega_chart·ts.visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has not failed recently on tracked branches

[00:00:00]       │
[00:00:00]         └-: visualize app
[00:00:00]           └-> "before all" hook in "visualize app"
[00:00:00]           └-> "before all" hook in "visualize app"
[00:00:00]             │ debg Starting visualize before method
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Loading "mappings.json"
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Loading "data.json.gz"
[00:00:00]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_task_manager_8.0.0_001/-5eASnd9Rsy8PB5Q7f9KAA] deleting index
[00:00:00]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_8.0.0_001/IdBap_KpQoySksv4opv69w] deleting index
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Deleted existing index ".kibana_8.0.0_001"
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Deleted existing index ".kibana_task_manager_8.0.0_001"
[00:00:00]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_1] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Created index ".kibana_1"
[00:00:00]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] ".kibana_1" settings {"index":{"number_of_replicas":"1","number_of_shards":"1"}}
[00:00:00]             │ info [test/functional/fixtures/es_archiver/empty_kibana] Indexed 1 docs into ".kibana"
[00:00:00]             │ debg Migrating saved objects
[00:00:00]             │ proc [kibana]   log   [09:07:23.443] [info][savedobjects-service] [.kibana_task_manager] INIT -> CREATE_NEW_TARGET. took: 4ms.
[00:00:00]             │ proc [kibana]   log   [09:07:23.447] [info][savedobjects-service] [.kibana] INIT -> WAIT_FOR_YELLOW_SOURCE. took: 9ms.
[00:00:00]             │ proc [kibana]   log   [09:07:23.452] [info][savedobjects-service] [.kibana] WAIT_FOR_YELLOW_SOURCE -> CHECK_UNKNOWN_DOCUMENTS. took: 5ms.
[00:00:00]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_task_manager_8.0.0_001] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_task_manager_8.0.0_001]
[00:00:00]             │ proc [kibana]   log   [09:07:23.466] [info][savedobjects-service] [.kibana] CHECK_UNKNOWN_DOCUMENTS -> SET_SOURCE_WRITE_BLOCK. took: 14ms.
[00:00:01]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] adding block write to indices [[.kibana_1/mlzwhO4lQH6T7jAibyMWiQ]]
[00:00:01]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] completed adding block write to indices [.kibana_1]
[00:00:01]             │ proc [kibana]   log   [09:07:23.567] [info][savedobjects-service] [.kibana_task_manager] CREATE_NEW_TARGET -> MARK_VERSION_INDEX_READY. took: 124ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.612] [info][savedobjects-service] [.kibana] SET_SOURCE_WRITE_BLOCK -> CREATE_REINDEX_TEMP. took: 146ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.636] [info][savedobjects-service] [.kibana_task_manager] MARK_VERSION_INDEX_READY -> DONE. took: 69ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.637] [info][savedobjects-service] [.kibana_task_manager] Migration completed after 198ms
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_8.0.0_reindex_temp] creating index, cause [api], templates [], shards [1]/[1]
[00:00:01]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_8.0.0_reindex_temp]
[00:00:01]             │ proc [kibana]   log   [09:07:23.709] [info][savedobjects-service] [.kibana] CREATE_REINDEX_TEMP -> REINDEX_SOURCE_TO_TEMP_OPEN_PIT. took: 97ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.722] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_OPEN_PIT -> REINDEX_SOURCE_TO_TEMP_READ. took: 13ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.738] [info][savedobjects-service] [.kibana] Starting to process 1 documents.
[00:00:01]             │ proc [kibana]   log   [09:07:23.738] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_READ -> REINDEX_SOURCE_TO_TEMP_INDEX. took: 16ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.741] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_INDEX -> REINDEX_SOURCE_TO_TEMP_INDEX_BULK. took: 3ms.
[00:00:01]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_reindex_temp/0snL0R3pSNi9i1kaCtCgYA] update_mapping [_doc]
[00:00:01]             │ proc [kibana]   log   [09:07:23.783] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_INDEX_BULK -> REINDEX_SOURCE_TO_TEMP_READ. took: 42ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.793] [info][savedobjects-service] [.kibana] Processed 1 documents out of 1.
[00:00:01]             │ proc [kibana]   log   [09:07:23.794] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_READ -> REINDEX_SOURCE_TO_TEMP_CLOSE_PIT. took: 10ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.801] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_CLOSE_PIT -> SET_TEMP_WRITE_BLOCK. took: 8ms.
[00:00:01]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] adding block write to indices [[.kibana_8.0.0_reindex_temp/0snL0R3pSNi9i1kaCtCgYA]]
[00:00:01]             │ info [o.e.c.m.MetadataIndexStateService] [node-01] completed adding block write to indices [.kibana_8.0.0_reindex_temp]
[00:00:01]             │ proc [kibana]   log   [09:07:23.859] [info][savedobjects-service] [.kibana] SET_TEMP_WRITE_BLOCK -> CLONE_TEMP_TO_TARGET. took: 58ms.
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] applying create index request using existing index [.kibana_8.0.0_reindex_temp] metadata
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.kibana_8.0.0_001] creating index, cause [clone_index], templates [], shards [1]/[1]
[00:00:01]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.kibana_8.0.0_001]
[00:00:01]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_001/cfT72A4BTY-ueMWordaV9w] create_mapping
[00:00:01]             │ proc [kibana]   log   [09:07:23.994] [info][savedobjects-service] [.kibana] CLONE_TEMP_TO_TARGET -> REFRESH_TARGET. took: 135ms.
[00:00:01]             │ proc [kibana]   log   [09:07:23.999] [info][savedobjects-service] [.kibana] REFRESH_TARGET -> OUTDATED_DOCUMENTS_SEARCH_OPEN_PIT. took: 5ms.
[00:00:01]             │ proc [kibana]   log   [09:07:24.003] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_OPEN_PIT -> OUTDATED_DOCUMENTS_SEARCH_READ. took: 4ms.
[00:00:01]             │ proc [kibana]   log   [09:07:24.014] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_READ -> OUTDATED_DOCUMENTS_SEARCH_CLOSE_PIT. took: 11ms.
[00:00:01]             │ proc [kibana]   log   [09:07:24.017] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH_CLOSE_PIT -> UPDATE_TARGET_MAPPINGS. took: 3ms.
[00:00:01]             │ info [o.e.c.m.MetadataMappingService] [node-01] [.kibana_8.0.0_001/cfT72A4BTY-ueMWordaV9w] update_mapping [_doc]
[00:00:01]             │ proc [kibana]   log   [09:07:24.095] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS -> UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK. took: 78ms.
[00:00:01]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [.tasks] creating index, cause [auto(bulk api)], templates [], shards [1]/[1]
[00:00:01]             │ info [o.e.c.r.a.AllocationService] [node-01] updating number_of_replicas to [0] for indices [.tasks]
[00:00:01]             │ info [o.e.t.LoggingTaskListener] [node-01] 710 finished with response BulkByScrollResponse[took=34.6ms,timed_out=false,sliceId=null,updated=1,created=0,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:00:01]             │ proc [kibana]   log   [09:07:24.313] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK -> MARK_VERSION_INDEX_READY. took: 218ms.
[00:00:01]             │ info [o.e.c.m.MetadataDeleteIndexService] [node-01] [.kibana_8.0.0_reindex_temp/0snL0R3pSNi9i1kaCtCgYA] deleting index
[00:00:01]             │ proc [kibana]   log   [09:07:24.357] [info][savedobjects-service] [.kibana] MARK_VERSION_INDEX_READY -> DONE. took: 44ms.
[00:00:01]             │ proc [kibana]   log   [09:07:24.357] [info][savedobjects-service] [.kibana] Migration completed after 919ms
[00:00:01]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] Migrated Kibana index after loading Kibana data
[00:00:02]             │ debg [test/functional/fixtures/es_archiver/empty_kibana] Ensured that default space exists in .kibana
[00:00:02]             │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true,"visualization:visualize:legacyPieChartsLibrary":true}
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Loading "mappings.json"
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Loading "data.json.gz"
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.22] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.22"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.22" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.20] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.20"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.20" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:04]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [logstash-2015.09.21] creating index, cause [api], templates [], shards [1]/[0]
[00:00:04]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Created index "logstash-2015.09.21"
[00:00:04]             │ debg [test/functional/fixtures/es_archiver/logstash_functional] "logstash-2015.09.21" settings {"index":{"analysis":{"analyzer":{"url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:14]             │ info progress: 12629
[00:00:15]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4633 docs into "logstash-2015.09.22"
[00:00:15]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4757 docs into "logstash-2015.09.20"
[00:00:15]             │ info [test/functional/fixtures/es_archiver/logstash_functional] Indexed 4614 docs into "logstash-2015.09.21"
[00:00:15]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Loading "mappings.json"
[00:00:15]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Loading "data.json.gz"
[00:00:15]             │ info [o.e.c.m.MetadataCreateIndexService] [node-01] [long-window-logstash-0] creating index, cause [api], templates [], shards [1]/[0]
[00:00:15]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Created index "long-window-logstash-0"
[00:00:15]             │ debg [test/functional/fixtures/es_archiver/long_window_logstash] "long-window-logstash-0" settings {"index":{"analysis":{"analyzer":{"makelogs_url":{"max_token_length":"1000","tokenizer":"uax_url_email","type":"standard"}}},"number_of_replicas":"0","number_of_shards":"1"}}
[00:00:25]             │ info progress: 13546
[00:00:26]             │ info [test/functional/fixtures/es_archiver/long_window_logstash] Indexed 14005 docs into "long-window-logstash-0"
[00:00:26]           └-: visualize ciGroup12
[00:00:26]             └-> "before all" hook in "visualize ciGroup12"
[00:33:38]             └-: vega chart in visualize app
[00:33:38]               └-> "before all" hook in "vega chart in visualize app"
[00:33:38]               └-> "before all" hook in "vega chart in visualize app"
[00:33:38]                 │ debg Cleaning all saved objects { space: undefined }
[00:33:38]                 │ info deleting batch of 9 objects
[00:33:38]                 │ succ deleted 9 objects
[00:33:38]                 │ debg resolved import for test/functional/fixtures/kbn_archiver/visualize.json to /dev/shm/workspace/parallel/1/kibana/test/functional/fixtures/kbn_archiver/visualize.json
[00:33:38]                 │ info importing 13 saved objects { space: undefined }
[00:33:39]                 │ succ import success
[00:33:39]                 │ debg replacing kibana config doc: {"defaultIndex":"logstash-*","format:bytes:defaultPattern":"0,0.[000]b","visualization:visualize:legacyChartsLibrary":true,"visualization:visualize:legacyPieChartsLibrary":true}
[00:33:40]                 │ debg navigateToApp visualize
[00:33:40]                 │ debg navigating to visualize url: http://localhost:6111/app/visualize#/
[00:33:40]                 │ debg navigate to: http://localhost:6111/app/visualize#/
[00:33:40]                 │ debg browser[INFO] http://localhost:6111/app/visualize?_t=1627292463001#/ 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:40]                 │
[00:33:40]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:40]                 │ debg ... sleep(700) start
[00:33:41]                 │ debg ... sleep(700) end
[00:33:41]                 │ debg returned from get, calling refresh
[00:33:42]                 │ debg browser[INFO] http://localhost:6111/app/visualize?_t=1627292463001#/ 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:42]                 │
[00:33:42]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:42]                 │ debg currentUrl = http://localhost:6111/app/visualize#/
[00:33:42]                 │          appUrl = http://localhost:6111/app/visualize#/
[00:33:42]                 │ debg TestSubjects.find(kibanaChrome)
[00:33:42]                 │ debg Find.findByCssSelector('[data-test-subj="kibanaChrome"]') with timeout=60000
[00:33:42]                 │ debg ... sleep(501) start
[00:33:43]                 │ debg ... sleep(501) end
[00:33:43]                 │ debg in navigateTo url = http://localhost:6111/app/visualize#/?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:33:43]                 │ debg --- retry.tryForTime error: URL changed, waiting for it to settle
[00:33:43]                 │ debg ... sleep(501) start
[00:33:44]                 │ debg ... sleep(501) end
[00:33:44]                 │ debg in navigateTo url = http://localhost:6111/app/visualize#/?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:33:44]                 │ debg isGlobalLoadingIndicatorVisible
[00:33:44]                 │ debg TestSubjects.exists(globalLoadingIndicator)
[00:33:44]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:33:45]                 │ debg --- retry.tryForTime error: [data-test-subj="globalLoadingIndicator"] is not displayed
[00:33:46]                 │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:33:46]                 │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:33:46]                 │ debg TestSubjects.exists(newItemButton)
[00:33:46]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:46]                 │ debg TestSubjects.click(newItemButton)
[00:33:46]                 │ debg Find.clickByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:46]                 │ debg Find.findByCssSelector('[data-test-subj="newItemButton"]') with timeout=10000
[00:33:46]                 │ debg TestSubjects.find(visNewDialogGroups)
[00:33:46]                 │ debg Find.findByCssSelector('[data-test-subj="visNewDialogGroups"]') with timeout=10000
[00:33:46]                 │ debg clickVega
[00:33:46]                 │ debg TestSubjects.click(visType-vega)
[00:33:46]                 │ debg Find.clickByCssSelector('[data-test-subj="visType-vega"]') with timeout=10000
[00:33:46]                 │ debg Find.findByCssSelector('[data-test-subj="visType-vega"]') with timeout=10000
[00:33:46]                 │ debg isGlobalLoadingIndicatorVisible
[00:33:46]                 │ debg TestSubjects.exists(globalLoadingIndicator)
[00:33:46]                 │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:33:46]                 │ debg browser[INFO] http://localhost:6111/app/visualize#/create?type=vega 281 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:33:46]                 │
[00:33:46]                 │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:33:48]                 │ debg --- retry.tryForTime error: [data-test-subj="globalLoadingIndicator"] is not displayed
[00:33:48]                 │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:33:48]                 │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:33:48]                 │ debg Waiting up to 20000ms for rendering count to stabilize...
[00:33:48]                 │ debg TestSubjects.find(visualizationLoader)
[00:33:48]                 │ debg Find.findByCssSelector('[data-test-subj="visualizationLoader"]') with timeout=10000
[00:33:48]                 │ debg -- firstCount=1
[00:33:48]                 │ debg ... sleep(2000) start
[00:33:50]                 │ debg ... sleep(2000) end
[00:33:50]                 │ debg TestSubjects.find(visualizationLoader)
[00:33:50]                 │ debg Find.findByCssSelector('[data-test-subj="visualizationLoader"]') with timeout=10000
[00:33:50]                 │ debg -- secondCount=1
[00:33:50]               └-: vega chart
[00:33:50]                 └-> "before all" hook in "vega chart"
[00:33:50]                 └-: initial render
[00:33:50]                   └-> "before all" hook for "should have some initial vega spec text"
[00:33:50]                   └-> should have some initial vega spec text
[00:33:50]                     └-> "before each" hook: global before each for "should have some initial vega spec text"
[00:33:50]                     │ debg TestSubjects.find(vega-editor)
[00:33:50]                     │ debg Find.findByCssSelector('[data-test-subj="vega-editor"]') with timeout=10000
[00:33:52]                     └- ✓ pass  (1.8s) "visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have some initial vega spec text"
[00:33:52]                   └-> should have view and control containers
[00:33:52]                     └-> "before each" hook: global before each for "should have view and control containers"
[00:33:52]                     │ debg Find.findByCssSelector('div.vgaVis__view') with timeout=10000
[00:34:02]                     │ info Taking screenshot "/dev/shm/workspace/parallel/1/kibana/test/functional/screenshots/failure/visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers.png"
[00:34:02]                     │ info Current URL is: http://localhost:6111/app/visualize#/create?type=vega&_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))&_a=(filters:!(),linked:!f,query:(language:kuery,query:%27%27),uiState:(),vis:(aggs:!(),params:(spec:%27%7B%0A%2F*%0A%0AWelcome%20to%20Vega%20visualizations.%20%20Here%20you%20can%20design%20your%20own%20dataviz%20from%20scratch%20using%20a%20declarative%20language%20called%20Vega,%20or%20its%20simpler%20form%20Vega-Lite.%20%20In%20Vega,%20you%20have%20the%20full%20control%20of%20what%20data%20is%20loaded,%20even%20from%20multiple%20sources,%20how%20that%20data%20is%20transformed,%20and%20what%20visual%20elements%20are%20used%20to%20show%20it.%20%20Use%20help%20icon%20to%20view%20Vega%20examples,%20tutorials,%20and%20other%20docs.%20%20Use%20the%20wrench%20icon%20to%20reformat%20this%20text,%20or%20to%20remove%20comments.%0A%0AThis%20example%20graph%20shows%20the%20document%20count%20in%20all%20indexes%20in%20the%20current%20time%20range.%20%20You%20might%20need%20to%20adjust%20the%20time%20filter%20in%20the%20upper%20right%20corner.%0A*%2F%0A%0A%20%20$schema:%20https:%2F%2Fvega.github.io%2Fschema%2Fvega-lite%2Fv5.json%0A%20%20title:%20Event%20counts%20from%20all%20indexes%0A%0A%20%20%2F%2F%20Define%20the%20data%20source%0A%20%20data:%20%7B%0A%20%20%20%20url:%20%7B%0A%2F*%0AAn%20object%20instead%20of%20a%20string%20for%20the%20%22url%22%20param%20is%20treated%20as%20an%20Elasticsearch%20query.%20Anything%20inside%20this%20object%20is%20not%20part%20of%20the%20Vega%20language,%20but%20only%20understood%20by%20Kibana%20and%20Elasticsearch%20server.%20This%20query%20counts%20the%20number%20of%20documents%20per%20time%20interval,%20assuming%20you%20have%20a%20@timestamp%20field%20in%20your%20data.%0A%0AKibana%20has%20a%20special%20handling%20for%20the%20fields%20surrounded%20by%20%22%25%22.%20%20They%20are%20processed%20before%20the%20the%20query%20is%20sent%20to%20Elasticsearch.%20This%20way%20the%20query%20becomes%20context%20aware,%20and%20can%20use%20the%20time%20range%20and%20the%20dashboard%20filters.%0A*%2F%0A%0A%20%20%20%20%20%20%2F%2F%20Apply%20dashboard%20context%20filters%20when%20set%0A%20%20%20%20%20%20%25context%25:%20true%0A%20%20%20%20%20%20%2F%2F%20Filter%20the%20time%20picker%20(upper%20right%20corner)%20with%20this%20field%0A%20%20%20%20%20%20%25timefield%25:%20@timestamp%0A%0A%2F*%0ASee%20.search()%20documentation%20for%20:%20%20https:%2F%2Fwww.elastic.co%2Fguide%2Fen%2Felasticsearch%2Fclient%2Fjavascript-api%2Fcurrent%2Fapi-reference.html%23api-search%0A*%2F%0A%0A%20%20%20%20%20%20%2F%2F%20Which%20index%20to%20search%0A%20%20%20%20%20%20index:%20_all%0A%20%20%20%20%20%20%2F%2F%20Aggregate%20data%20by%20the%20time%20field%20into%20time%20buckets,%20counting%20the%20number%20of%20documents%20in%20each%20bucket.%0A%20%20%20%20%20%20body:%20%7B%0A%20%20%20%20%20%20%20%20aggs:%20%7B%0A%20%20%20%20%20%20%20%20%20%20time_buckets:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20date_histogram:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20date%20histogram%20aggregation%20on%20@timestamp%20field%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20field:%20@timestamp%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20The%20interval%20value%20will%20depend%20on%20the%20daterange%20picker%20(true),%20or%20use%20an%20integer%20to%20set%20an%20approximate%20bucket%20count%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20interval:%20%7B%25autointerval%25:%20true%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Make%20sure%20we%20get%20an%20entire%20range,%20even%20if%20it%20has%20no%20data%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20extended_bounds:%20%7B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20the%20current%20time%20range!%27s%20start%20and%20end%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20min:%20%7B%25timefilter%25:%20%22min%22%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20max:%20%7B%25timefilter%25:%20%22max%22%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%2F%2F%20Use%20this%20for%20linear%20(e.g.%20line,%20area)%20graphs.%20%20Without%20it,%20empty%20buckets%20will%20not%20show%20up%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20min_doc_count:%200%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%2F%2F%20Speed%20up%20the%20response%20by%20only%20including%20aggregation%20results%0A%20%20%20%20%20%20%20%20size:%200%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%7D%0A%2F*%0AElasticsearch%20will%20return%20results%20in%20this%20format:%0A%0Aaggregations:%20%7B%0A%20%20time_buckets:%20%7B%0A%20%20%20%20buckets:%20%5B%0A%20%20%20%20%20%20%7B%0A%20%20%20%20%20%20%20%20key_as_string:%202015-11-30T22:00:00.000Z%0A%20%20%20%20%20%20%20%20key:%201448920800000%0A%20%20%20%20%20%20%20%20doc_count:%200%0A%20%20%20%20%20%20%7D,%0A%20%20%20%20%20%20%7B%0A%20%20%20%20%20%20%20%20key_as_string:%202015-11-30T23:00:00.000Z%0A%20%20%20%20%20%20%20%20key:%201448924400000%0A%20%20%20%20%20%20%20%20doc_count:%200%0A%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20...%0A%20%20%20%20%5D%0A%20%20%7D%0A%7D%0A%0AFor%20our%20graph,%20we%20only%20need%20the%20list%20of%20bucket%20values.%20%20Use%20the%20format.property%20to%20discard%20everything%20else.%0A*%2F%0A%20%20%20%20format:%20%7Bproperty:%20%22aggregations.time_buckets.buckets%22%7D%0A%20%20%7D%0A%0A%20%20%2F%2F%20%22mark%22%20is%20the%20graphics%20element%20used%20to%20show%20our%20data.%20%20Other%20mark%20values%20are:%20area,%20bar,%20circle,%20line,%20point,%20rect,%20rule,%20square,%20text,%20and%20tick.%20%20See%20https:%2F%2Fvega.github.io%2Fvega-lite%2Fdocs%2Fmark.html%0A%20%20mark:%20line%0A%0A%20%20%2F%2F%20%22encoding%22%20tells%20the%20%22mark%22%20what%20data%20to%20use%20and%20in%20what%20way.%20%20See%20https:%2F%2Fvega.github.io%2Fvega-lite%2Fdocs%2Fencoding.html%0A%20%20encoding:%20%7B%0A%20%20%20%20x:%20%7B%0A%20%20%20%20%20%20%2F%2F%20The%20%22key%22%20value%20is%20the%20timestamp%20in%20milliseconds.%20%20Use%20it%20for%20X%20axis.%0A%20%20%20%20%20%20field:%20key%0A%20%20%20%20%20%20type:%20temporal%0A%20%20%20%20%20%20axis:%20%7Btitle:%20false%7D%20%2F%2F%20Customize%20X%20axis%20format%0A%20%20%20%20%7D%0A%20%20%20%20y:%20%7B%0A%20%20%20%20%20%20%2F%2F%20The%20%22doc_count%22%20is%20the%20count%20per%20bucket.%20%20Use%20it%20for%20Y%20axis.%0A%20%20%20%20%20%20field:%20doc_count%0A%20%20%20%20%20%20type:%20quantitative%0A%20%20%20%20%20%20axis:%20%7Btitle:%20%22Document%20count%22%7D%0A%20%20%20%20%7D%0A%20%20%7D%0A%7D%0A%27),title:%27%27,type:vega))
[00:34:02]                     │ info Saving page source to: /dev/shm/workspace/parallel/1/kibana/test/functional/failure_debug/html/visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers.html
[00:34:02]                     └- ✖ fail: visualize app visualize ciGroup12 vega chart in visualize app vega chart initial render should have view and control containers
[00:34:02]                     │      TimeoutError: Waiting for element to be located By(css selector, div.vgaVis__view)
[00:34:02]                     │ Wait timed out after 10020ms
[00:34:02]                     │       at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:34:02]                     │       at runMicrotasks (<anonymous>)
[00:34:02]                     │       at processTicksAndRejections (internal/process/task_queues.js:95:5)
[00:34:02]                     │ 
[00:34:02]                     │

Stack Trace

TimeoutError: Waiting for element to be located By(css selector, div.vgaVis__view)
Wait timed out after 10020ms
    at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
    at runMicrotasks (<anonymous>)
    at processTicksAndRejections (internal/process/task_queues.js:95:5) {
  remoteStacktrace: ''
}

Metrics [docs]

✅ unchanged

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

@legrego legrego mentioned this pull request Aug 3, 2021
Closed
@cjcenizal cjcenizal mentioned this pull request Aug 18, 2021
Closed
@jportner jportner mentioned this pull request Sep 3, 2021
Closed
@azasypkin
Copy link
Member Author

Hey @gchaps @debadair,

Can you please help us to review two deprecation messages (for xpack.security.session.idleTimeout and xpack.security.session.lifespan - we didn't have any default values for these settings before)?

This is what we have today:

  1. Upgrade assistance list view:
    screen_1

  2. Detailed view for the first deprecation:
    screen_2

  3. Detailed view for the second deprecation:
    screen_3

I was also considering something like this (almost the same, but we indicate the new default value right in the list view), but not sure if it brings any value:

  1. Upgrade assistance list view:
    screen_4

  2. Detailed view for the first deprecation:
    screen_5

  3. Detailed view for the second deprecation:
    screen_6

Tnanks!

@gchaps
Copy link
Contributor

gchaps commented Oct 13, 2021

@debadair and I chatted. Adding. the new value to the title is a good idea. Here is a suggestion for adding more context in the description snd eliminating the link.

First deprecation

"xpack.security.session.idleTimeout" is now 1 hour

User sessions will automatically time out after 1 hour of inactivitiy starting in 8.0. Override this value to change the timeout.

Fix manually

  1. To configure a custom timeout, set "xpack.security.session.idleTimeout". A value of 0 disables the timeout.

Second deprecation

"xpack.security.session.lifespan" is now 30 days

Users are automatically required to log in again after 30 days starting in 8.0. Override this value to change the timeout.

Fix manually

  1. To configure a custom timeout, set "xpack.securuity.session.lifespan". A value of 0 disables the timeout.

@azasypkin
Copy link
Member Author

@debadair and I chatted. Adding. the new value to the title is a good idea. Here is a suggestion for adding more context in the description snd eliminating the link.

Looks great, thank you! I'll prepare a PR to make these changes today.

This was referenced Oct 14, 2021
Merged
Merged
KOTungseth added a commit to KOTungseth/kibana that referenced this pull request Nov 1, 2021
@KOTungseth
[DOCS] Changes 1h to 8h for elastic#106061
a7b27da
@KOTungseth KOTungseth mentioned this pull request Nov 1, 2021
Merged
KOTungseth added a commit that referenced this pull request Nov 1, 2021
@KOTungseth
[DOCS] Changes 1h to 8h for #106061 (#117043)
dd50f3c
KOTungseth added a commit to KOTungseth/kibana that referenced this pull request Nov 1, 2021
@KOTungseth
[DOCS] Changes 1h to 8h for elastic#106061
af7d6cc
@KOTungseth KOTungseth mentioned this pull request Nov 1, 2021
Merged
KOTungseth added a commit that referenced this pull request Nov 3, 2021
@KOTungseth
[DOCS] Changes 1h to 8h for #106061 (#117047)
9c1feba
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@legrego legrego legrego left review comments

@thomheymann thomheymann thomheymann left review comments

@jportner jportner jportner approved these changes

Assignees
No one assigned
Labels
backport:skip This commit does not require backporting Feature:Security/Authentication Platform Security - Authentication release_note:breaking Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! v8.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Provide sensible defaults for xpack.security.session.{lifespan|idleTimeout}
7 participants
@azasypkin @elasticmachine @thomheymann @jportner @legrego @kibanamachine @gchaps