[Security Solution] Install/Update Prebuilt Rules Test Implementation refactor #165488
Conversation
jpdjere
force-pushed
the
intall-update-test-implementation-refactor
branch
4 times, most recently
from
b2c2751 to
d5b1c16
Compare
jpdjere
added
release_note:skip
|
Pinging @elastic/security-detections-response (Team:Detections and Resp) |
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
jpdjere
added
Feature:Prebuilt Detection Rules
banderror
added
refactoring
test-coverage
| beforeEach(() => { | ||
| preventPrebuiltRulesPackageInstallation(); |
There was a problem hiding this comment.
We have already called preventPrebuiltRulesPackageInstallation at the parent beforeEach. Should we remove this one?
| // Install one prebuilt rule asset to assert that user can't install it | ||
| installPrebuiltRuleAssets([RULE_2]); | ||
|
|
||
| // Install one prebuilt rule asset to assert that user can't upgrade it | ||
| createAndInstallMockedPrebuiltRules([OUTDATED_RULE_1]); | ||
| // Create a new version of the rule to make it available for upgrade | ||
| installPrebuiltRuleAssets([UPDATED_RULE_1]); |
There was a problem hiding this comment.
Some of the installed rules are needed for specific test cases only. Let's move them to corresponding test bodies so they will be easier to read.
|
|
||
| describe('User with full privileges on Security Solution', () => { | ||
| beforeEach(() => { | ||
| preventPrebuiltRulesPackageInstallation(); |
There was a problem hiding this comment.
Same here. We have already called preventPrebuiltRulesPackageInstallation at the parent beforeEach. Should we remove this one?
| describe('User with full privileges on Security Solution', () => { | ||
| beforeEach(() => { | ||
| preventPrebuiltRulesPackageInstallation(); | ||
| loginPageAsFullPrivilegesUser(); |
There was a problem hiding this comment.
Should we test the workflow using the minimal required privileges instead of using a fully privileged user?
There was a problem hiding this comment.
Yes, makes sense. I'm using now the Hunter/ T3 Analyst role, following this table: #81866 (comment)
There was a problem hiding this comment.
Looks like the role with the minimum required priviliges for writing rules
| // Make two mock rules available for installation | ||
| installPrebuiltRuleAssets([RULE_1, RULE_2]); | ||
| // Navigate to install Elastic rules page | ||
| addElasticRulesButtonClick(); |
There was a problem hiding this comment.
Please move test actions, such as clicks, from beforeEach directly into the test bodies to enhance readability.
Even if some actions are common across multiple tests, duplicating them can make the tests clearer. Use the beforeEach section mainly for setting up preconditions, not for the main test steps.
| beforeEach(() => { | ||
| cleanKibana(); |
There was a problem hiding this comment.
Same here. We already call cleanKibana() inside the top level beforeEach
| installPrebuiltRuleAssets([UPDATED_RULE_1, UPDATED_RULE_2]); | ||
| login(); | ||
|
|
||
| visitSecurityDetectionRulesPage(); |
There was a problem hiding this comment.
We already call visitSecurityDetectionRulesPage() inside the top level beforeEach
| for (const rule of rules) { | ||
| cy.get(RULES_UPDATES_TABLE).contains(rule['security-rule'].name); |
There was a problem hiding this comment.
Why do we need this check here?
There was a problem hiding this comment.
We are checking here that when the update fails, the toast is shown with the right message -confirming the failed upgrade- and subsequently checking that the rule available for update are still present in the Rule Update table
| for (const rule of rules) { | ||
| cy.get(RULES_UPDATES_TABLE).contains(rule['security-rule'].name); | ||
| cy.get(rule['security-rule'].name).should('not.exist'); | ||
| } |
There was a problem hiding this comment.
Not sure I understand what this check does. Could you please add a comment?
| ); | ||
| } | ||
| for (const rule of rules) { | ||
| cy.get(getInstallSingleRuleLoadingSpinnerByRuleId(rule['security-rule'].rule_id)).should( |
There was a problem hiding this comment.
Looks like a typo, we need to check the "upgrade" spinner here
There was a problem hiding this comment.
Thanks for catching this! Fixing
|
@xcrzx Do you think this PR is a great improvement compared to the previous implementation? Would we benefit from merging it now and addressing the comments you left in a separate PR? I'm asking this because @jpdjere won't be able to work on this PR until mid-October when he gets back from leave, and any improvements to tests' quality and stability we can merge now will contribute to our 8.11 goals. |
I think it's worth merging this PR. I would only run it against the flaky runner to ensure we do not introduce any flakiness. |
jpdjere
force-pushed
the
intall-update-test-implementation-refactor
branch
from
c3a33d7 to
82bd289
Compare
|
@xcrzx @banderror Thanks for the review. I rebased, updated and addressed the additional feedback. I'll run the flaky test runner and will merge if everything is green. |
…-ref HEAD~1..HEAD --fix'
jpdjere
force-pushed
the
intall-update-test-implementation-refactor
branch
from
e87edcd to
ebd8dba
Compare
💛 Build succeeded, but was flaky
Failed CI StepsMetrics [docs]Async chunks
History
To update your PR or re-run it, just comment with: cc @jpdjere |
💔 All backports failed
Manual backportTo create the backport manually run: Questions ?Please refer to the Backport tool documentation |
💚 All backports created successfully
Note: Successful backport PRs will be merged automatically after passing CI. Questions ?Please refer to the Backport tool documentation |
… refactor (elastic#165488) Fixes: elastic#148192 (Tick the two open checkboxes in that issue when merging this PR) ## Summary This PR rewrites/refactors Cypress tests for the Installation and Upgrade of Prebuilt Rules implemented in elastic#161687. Most of the changes here address feedback received in that PR - answered those comments there. - RBAC/Authorization: adds tests scenarios for users with full privileges (happy path) - Gets rid of huge util helpers such as `assertRuleAvailableForInstallAndInstallOne` and rewrites test cases in a more descriptive way, with step by step actions. - Gets rid of complex logic in tests and their helpers - removing if/else logic within them and removing optional flags passed to helpers. - Fixes `bulkCreateRuleAssets` util and uses it in other helpers to install multiple `security-rule` assets with a single bulk request to ES. Additionally: checked `installation_and_upgrade.md` test plan to make sure it matches with the test in place. Added [link](elastic#166215) to a ticket for a to-do task for the sections: - Rule installation workflow: filtering, sorting, pagination - Rule upgrade workflow: filtering, sorting, pagination ## Flaky test runner ~~https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3420~~ ~~🟢~~ https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3513 --------- Co-authored-by: kibanamachine <[email protected]> (cherry picked from commit 24c008b) # Conflicts: # x-pack/test/security_solution_cypress/package.json
…ntation refactor (#165488) (#169129) # Backport This will backport the following commits from `main` to `8.11`: - [[Security Solution] Install/Update Prebuilt Rules Test Implementation refactor (#165488)](#165488) <!--- Backport version: 8.9.8 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Juan Pablo Djeredjian","email":"[email protected]"},"sourceCommit":{"committedDate":"2023-10-17T11:05:49Z","message":"[Security Solution] Install/Update Prebuilt Rules Test Implementation refactor (#165488)\n\nFixes: https://github.com/elastic/kibana/issues/148192\r\n\r\n(Tick the two open checkboxes in that issue when merging this PR)\r\n\r\n## Summary\r\n\r\nThis PR rewrites/refactors Cypress tests for the Installation and\r\nUpgrade of Prebuilt Rules implemented in\r\nhttps://github.com//pull/161687. Most of the changes here\r\naddress feedback received in that PR - answered those comments there.\r\n\r\n- RBAC/Authorization: adds tests scenarios for users with full\r\nprivileges (happy path)\r\n- Gets rid of huge util helpers such as\r\n`assertRuleAvailableForInstallAndInstallOne` and rewrites test cases in\r\na more descriptive way, with step by step actions.\r\n- Gets rid of complex logic in tests and their helpers - removing\r\nif/else logic within them and removing optional flags passed to helpers.\r\n- Fixes `bulkCreateRuleAssets` util and uses it in other helpers to\r\ninstall multiple `security-rule` assets with a single bulk request to\r\nES.\r\n\r\nAdditionally: checked `installation_and_upgrade.md` test plan to make\r\nsure it matches with the test in place. Added\r\n[link](#166215) to a ticket for\r\na to-do task for the sections:\r\n- Rule installation workflow: filtering, sorting, pagination\r\n- Rule upgrade workflow: filtering, sorting, pagination\r\n\r\n## Flaky test runner\r\n\r\n\r\n~~https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3420~~\r\n~~🟢~~\r\n\r\nhttps://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3513\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <[email protected]>","sha":"24c008b4c5026dd543f1b4aded94f3787bce5fb0","branchLabelMapping":{"^v8.12.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["refactoring","release_note:skip","test-coverage","Team:Detections and Resp","Team: SecuritySolution","Team:Detection Rule Management","Feature:Prebuilt Detection Rules","v8.11.0","v8.12.0"],"number":165488,"url":"https://github.com/elastic/kibana/pull/165488","mergeCommit":{"message":"[Security Solution] Install/Update Prebuilt Rules Test Implementation refactor (#165488)\n\nFixes: https://github.com/elastic/kibana/issues/148192\r\n\r\n(Tick the two open checkboxes in that issue when merging this PR)\r\n\r\n## Summary\r\n\r\nThis PR rewrites/refactors Cypress tests for the Installation and\r\nUpgrade of Prebuilt Rules implemented in\r\nhttps://github.com//pull/161687. Most of the changes here\r\naddress feedback received in that PR - answered those comments there.\r\n\r\n- RBAC/Authorization: adds tests scenarios for users with full\r\nprivileges (happy path)\r\n- Gets rid of huge util helpers such as\r\n`assertRuleAvailableForInstallAndInstallOne` and rewrites test cases in\r\na more descriptive way, with step by step actions.\r\n- Gets rid of complex logic in tests and their helpers - removing\r\nif/else logic within them and removing optional flags passed to helpers.\r\n- Fixes `bulkCreateRuleAssets` util and uses it in other helpers to\r\ninstall multiple `security-rule` assets with a single bulk request to\r\nES.\r\n\r\nAdditionally: checked `installation_and_upgrade.md` test plan to make\r\nsure it matches with the test in place. Added\r\n[link](#166215) to a ticket for\r\na to-do task for the sections:\r\n- Rule installation workflow: filtering, sorting, pagination\r\n- Rule upgrade workflow: filtering, sorting, pagination\r\n\r\n## Flaky test runner\r\n\r\n\r\n~~https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3420~~\r\n~~🟢~~\r\n\r\nhttps://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3513\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <[email protected]>","sha":"24c008b4c5026dd543f1b4aded94f3787bce5fb0"}},"sourceBranch":"main","suggestedTargetBranches":["8.11"],"targetPullRequestStates":[{"branch":"8.11","label":"v8.11.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.12.0","labelRegex":"^v8.12.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/165488","number":165488,"mergeCommit":{"message":"[Security Solution] Install/Update Prebuilt Rules Test Implementation refactor (#165488)\n\nFixes: https://github.com/elastic/kibana/issues/148192\r\n\r\n(Tick the two open checkboxes in that issue when merging this PR)\r\n\r\n## Summary\r\n\r\nThis PR rewrites/refactors Cypress tests for the Installation and\r\nUpgrade of Prebuilt Rules implemented in\r\nhttps://github.com//pull/161687. Most of the changes here\r\naddress feedback received in that PR - answered those comments there.\r\n\r\n- RBAC/Authorization: adds tests scenarios for users with full\r\nprivileges (happy path)\r\n- Gets rid of huge util helpers such as\r\n`assertRuleAvailableForInstallAndInstallOne` and rewrites test cases in\r\na more descriptive way, with step by step actions.\r\n- Gets rid of complex logic in tests and their helpers - removing\r\nif/else logic within them and removing optional flags passed to helpers.\r\n- Fixes `bulkCreateRuleAssets` util and uses it in other helpers to\r\ninstall multiple `security-rule` assets with a single bulk request to\r\nES.\r\n\r\nAdditionally: checked `installation_and_upgrade.md` test plan to make\r\nsure it matches with the test in place. Added\r\n[link](#166215) to a ticket for\r\na to-do task for the sections:\r\n- Rule installation workflow: filtering, sorting, pagination\r\n- Rule upgrade workflow: filtering, sorting, pagination\r\n\r\n## Flaky test runner\r\n\r\n\r\n~~https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3420~~\r\n~~🟢~~\r\n\r\nhttps://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3513\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <[email protected]>","sha":"24c008b4c5026dd543f1b4aded94f3787bce5fb0"}}]}] BACKPORT-->
Fixes: #148192
(Tick the two open checkboxes in that issue when merging this PR)
Summary
This PR rewrites/refactors Cypress tests for the Installation and Upgrade of Prebuilt Rules implemented in #161687. Most of the changes here address feedback received in that PR - answered those comments there.
assertRuleAvailableForInstallAndInstallOneand rewrites test cases in a more descriptive way, with step by step actions.bulkCreateRuleAssetsutil and uses it in other helpers to install multiplesecurity-ruleassets with a single bulk request to ES.Additionally: checked
installation_and_upgrade.mdtest plan to make sure it matches with the test in place. Added link to a ticket for a to-do task for the sections:Flaky test runner
https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3420🟢https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/3513