Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] [Exceptions] Adds options to create a shared exception list and to create a single item from the manage exceptions view #144575

Merged
merged 65 commits into from
Nov 9, 2022
Merged

[Security Solution] [Exceptions] Adds options to create a shared exception list and to create a single item from the manage exceptions view #144575

merged 65 commits into from
Nov 9, 2022

Conversation

dhurley14
Copy link
Contributor

@dhurley14 dhurley14 commented Nov 3, 2022
edited
Loading

Summary

Adds options to create a shared exception list and creating a single item to be attached to multiple rules default lists or to add it to shared lists.

manage_exceptions_create_options

manage_exceptions_create_item

manage_exceptions_create_shared_list

Checklist

Delete any items that are not applicable to this PR.

dhurley14 and others added 30 commits August 31, 2022 18:19
@dhurley14
initial work
fd62185
@dhurley14
adds exception list import button + flyout, updates title of page and…
cfebdbe 
… title of breadcrumb
@dhurley14
working import
36fc5b9
@dhurley14
merge with main
0ac8f00
@dhurley14
import list + override or as new list
9647b1f
@dhurley14
fix type failures (still some warnings present) and general code cleanup
2465249
@dhurley14
Merge remote-tracking branch 'upstream/main' into exceptions-all-list…
c2002ea 
…s-view
@dhurley14
adds delete action to actions menu bar
2a2fa40
@dhurley14
WIP - adding overflow actions
5d8b600
@dhurley14
Merge branch 'main' into exceptions-all-lists-view
6921cee
@dhurley14
display flyout - not working right now, WIP
a244e83
@dhurley14
properly formatted exceptions cards
38c2713
@dhurley14
display title of exception list in blue color
9679dc3
@dhurley14
cleanup
9c1245e
@dhurley14
cleanup + start usage of pagination hooks
833ff73
@dhurley14
working on pagination, sort of working
b3e7d29
@dhurley14
working pagination, finally
7d0cca9
@dhurley14
adds comment explaining bug in pagination, also reset default paginat…
47d95b1 
…ion perPage property to 20
@dhurley14
undo changes to getNewExceptionItem function
1a2d1b5
@dhurley14
undo changes that made ruleName an optional parameter for ExceptionBu…
ae09187 
…ilderProps
@dhurley14
add ternary logic for pageCount in pagination of exception list cards
c69f21b
@dhurley14
Merge remote-tracking branch 'upstream/main' into interim-exceptions-…
002850a 
…all-lists
@dhurley14
update snapshots, fix test mocks to include new properties, update te…
bdf8045 
…st to match outcome where we are overwriting a list on import and the list item ids already exist so there should be no error when overwriting
@dhurley14
try to fix cypress, I think I fixed all the jests tests though
a8dfd88
@dhurley14
fixes jest test expected text in breadcrumbs
6d87807
@dhurley14
fixes cypress tests
0cc8118
@dhurley14
Merge remote-tracking branch 'upstream/main' into interim-exceptions-…
8139f2d 
…all-lists
@MadameSheema
refactors cypress tests
316d952
@dhurley14
move import flyout to separate file
9206a37
@dhurley14
fix alignItems in the exception list card
c7add87
@dhurley14 dhurley14 marked this pull request as ready for review November 7, 2022 17:04
@dhurley14 dhurley14 requested review from a team as code owners November 7, 2022 17:04
WafaaNasr
WafaaNasr reviewed Nov 7, 2022
View reviewed changes
packages/kbn-securitysolution-io-ts-list-types/src/common/exception_list/index.ts
DETECTION = 'detection',
RULE_DEFAULT = 'rule_default',
DETECTION = 'detection', // shared exception list type
RULE_DEFAULT = 'rule_default', // rule default, cannot be shared
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❤️

WafaaNasr
WafaaNasr approved these changes Nov 7, 2022
View reviewed changes
Copy link
Contributor

@WafaaNasr WafaaNasr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the great work, and the explanations! ❤️
Added some comments but none of them will stop the merge!

@dhurley14 dhurley14 self-assigned this Nov 7, 2022
@dhurley14 dhurley14 added review Feature:Rule Exceptions Security Solution Detection Rule Exceptions area Team:Security Solution Platform Security Solution Platform Team v8.6.0 release_note:enhancement labels Nov 7, 2022
@kibana-ci
Copy link
Collaborator

💛 Build succeeded, but was flaky

Failed CI Steps

Test Failures

  • [job] [logs] Security Solution Tests #1 / Cases Creates a new case with timeline and opens the timeline

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id before after diff
securitySolution 3204 3206 +2

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
lists 165.7KB 165.8KB +125.0B
securitySolution 9.6MB 9.6MB +5.1KB
total +5.2KB

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id before after diff
securitySolution 50.6KB 50.6KB +58.0B
Unknown metric groups

ESLint disabled in files

id before after diff
osquery 1 2 +1

ESLint disabled line counts

id before after diff
enterpriseSearch 19 21 +2
fleet 59 65 +6
osquery 108 113 +5
securitySolution 440 446 +6
total +19

Total ESLint disabled count

id before after diff
enterpriseSearch 20 22 +2
fleet 67 73 +6
osquery 109 115 +6
securitySolution 517 523 +6
total +20

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @dhurley14

YulNaumenko
YulNaumenko approved these changes Nov 9, 2022
View reviewed changes
Copy link
Contributor

@YulNaumenko YulNaumenko left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@dhurley14 dhurley14 merged commit b1179e7 into elastic:main Nov 9, 2022
@dhurley14 dhurley14 deleted the more-exceptions-work branch November 9, 2022 14:54
@kibanamachine kibanamachine added the backport:skip This commit does not require backporting label Nov 9, 2022
jloleysens added a commit to jloleysens/kibana that referenced this pull request Nov 9, 2022
@jloleysens
Merge branch 'main' into files-management
3572f7f 
* main:
  [Lens] Rearrange options (elastic#144891)
  [Actionable Observability] Integrate alert search bar on rule details page (elastic#144718)
  [Security Solution] [Exceptions] Adds options to create a shared exception list and to create a single item from the manage exceptions view (elastic#144575)
  [Actionable Observability] Add context.alertDetailsUrl to connector template for Uptime > Monitor status & Uptime TLS rules (elastic#144740)
  [Security Solution] [Feat] Add Bulk Events to Timeline. (elastic#142737)
  [TIP] Env specific cypress config (elastic#144894)
  skip flaky suite (elastic#144885)
  [Enterprise Search] Fixes Search Index page to go blank when connection lost (elastic#144022)
  [Cloud Posture] track findings pages (elastic#144822)
  [ContentManagement] Inspector flyout (elastic#144240)
  [Cloud Posture] Dashboard Redesign - data counter cards (elastic#144565)
  [TIP] Run e2e pipeline on CI (elastic#144776)
  [Guided onboarding] Config updates for the Security guide (elastic#144844)
  Cleanup unused code for claiming tasks by id (elastic#144408)
  Ping the response-ops team whenever a new connector type is registered (elastic#144736)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@YulNaumenko YulNaumenko YulNaumenko approved these changes

@WafaaNasr WafaaNasr WafaaNasr approved these changes

Assignees

@dhurley14 dhurley14

Labels
backport:skip This commit does not require backporting Feature:Rule Exceptions Security Solution Detection Rule Exceptions area release_note:enhancement review Team:Security Solution Platform Security Solution Platform Team v8.6.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@dhurley14 @kibana-ci @WafaaNasr @YulNaumenko @kibanamachine @MadameSheema