Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[7.7] Prevent removal of actions via the UI from breaking rule AAD (#68184) #68681

Merged
merged 1 commit into from
Jun 9, 2020

Conversation

rylnd
Copy link
Contributor

@rylnd rylnd commented Jun 9, 2020

Backports the following commits to 7.7:

…#68184)

This fixes elastic#64870 _for real_.

The issue ended up being caused by a
conditional form field that mapped to a nested field on the rule's
params: when a rule is created with an action, it has a
meta.kibana_siem_app_url field. When the rule's actions were removed via
the UI, that field was _also_ removed, which broke AAD and thus rule
execution.

This fixes the issue by making that field unconditional, and also
removes the previous workaround.
# Conflicts:
#	x-pack/plugins/security_solution/public/alerts/components/rules/step_rule_actions/index.tsx
#	x-pack/plugins/security_solution/server/lib/detection_engine/rules/update_rules_notifications.ts
@kibanamachine
Copy link
Contributor

💚 Build Succeeded

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

@rylnd rylnd merged commit fdeed82 into elastic:7.7 Jun 9, 2020
@rylnd rylnd deleted the backport/7.7/pr-68184 branch June 9, 2020 20:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants