Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Alerting] Preconfigured alert history index connector #94909

Merged
merged 62 commits into from
Apr 8, 2021
Merged
Show file tree
Hide file tree
Changes from 35 commits
Commits
Show all changes
62 commits
Select commit Hold shift + click to select a range
f055c2a
Adding preconfigured alert history index
ymao1 Mar 16, 2021
3ac2315
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 16, 2021
59146f6
Adding functions to build alert history document
ymao1 Mar 17, 2021
97d9815
Adding functions to build alert history document
ymao1 Mar 17, 2021
3ecfa2a
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 18, 2021
1b028a7
Moving index template creation to plugin start
ymao1 Mar 18, 2021
f2b34d6
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 18, 2021
b03e052
Adding unit tests
ymao1 Mar 18, 2021
61948fd
Adding unit tests
ymao1 Mar 18, 2021
3fa6846
Adding unit tests
ymao1 Mar 18, 2021
b9ad6c3
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 22, 2021
4b1b787
Simplifying
ymao1 Mar 22, 2021
957c333
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 22, 2021
4167d49
Revert "Merge branch 'master' of https://github.com/elastic/kibana in…
ymao1 Mar 23, 2021
9b4eda6
Reverting some changes
ymao1 Mar 23, 2021
6c30518
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 23, 2021
3a25517
Reverting some changes
ymao1 Mar 23, 2021
24f2f2d
Adding index override
ymao1 Mar 23, 2021
1ce3a36
Updating UI with index override
ymao1 Mar 23, 2021
22d5a59
Only allow indexOverride for preconfigured alert history connector
ymao1 Mar 23, 2021
2554887
Handling preconfigured connector id clashes
ymao1 Mar 23, 2021
2af2999
Cleanup
ymao1 Mar 23, 2021
ac4248d
UI unit tests
ymao1 Mar 24, 2021
92531a7
Fixing default schema shown in UI
ymao1 Mar 24, 2021
fd94545
Fixing functional tests
ymao1 Mar 24, 2021
c8b44ee
Adding functional test
ymao1 Mar 24, 2021
5a88ab5
Fixing functional tests
ymao1 Mar 24, 2021
f75a958
Adding docs and link to docs
ymao1 Mar 24, 2021
6d769e8
Adding config to docker allowlist
ymao1 Mar 24, 2021
7363eb3
Fixing wrong typescript operator
ymao1 Mar 24, 2021
c5060ee
Changing default for config to false
ymao1 Mar 24, 2021
0d4acb0
Cleanup
ymao1 Mar 24, 2021
56848f9
Adding note about index privileges to docs
ymao1 Mar 24, 2021
bbe5fd6
Fixing i18n
ymao1 Mar 24, 2021
85ccb96
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 24, 2021
7444b08
PR fixes
ymao1 Mar 29, 2021
776e8df
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 29, 2021
af35a12
PR fixes
ymao1 Mar 29, 2021
6f420b1
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Mar 29, 2021
8bc04c3
Merge branch 'master' into alerting/default-es-index-schema
kibanamachine Mar 29, 2021
07eb28d
PR fixes
ymao1 Apr 1, 2021
79b282c
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 1, 2021
f3fea18
PR fixes - wording
ymao1 Apr 1, 2021
19f3673
PR fixes
ymao1 Apr 1, 2021
dcbf451
Fixing unit and functional tests
ymao1 Apr 1, 2021
f689618
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 2, 2021
75281b0
Fixing types check
ymao1 Apr 2, 2021
030bf55
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 7, 2021
5aedddb
ES -> Elasticsearch
ymao1 Apr 7, 2021
75dcb88
Moving files
ymao1 Apr 7, 2021
095b495
Adding kibana- to beginning of prefix
ymao1 Apr 7, 2021
094aa60
Namespacing alert data within schema with kibana
ymao1 Apr 7, 2021
da82858
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 7, 2021
9e42c60
Fix i18n
ymao1 Apr 7, 2021
3f6c078
Updating docs
ymao1 Apr 7, 2021
55e75a5
Fixing unit tests
ymao1 Apr 7, 2021
38e5519
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 7, 2021
1a17d94
Fixing doc links
ymao1 Apr 7, 2021
8923efa
Merging in master
ymao1 Apr 8, 2021
45278e2
Fixing types check
ymao1 Apr 8, 2021
fa502cc
PR fixes
ymao1 Apr 8, 2021
b23fca9
Merge branch 'master' of https://github.com/elastic/kibana into alert…
ymao1 Apr 8, 2021
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 4 additions & 1 deletion docs/settings/alert-action-settings.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -53,8 +53,11 @@ You can configure the following settings in the `kibana.yml` file.
+
Disabled action types will not appear as an option when creating new connectors, but existing connectors and actions of that type will remain in {kib} and will not function.

| `xpack.actions.preconfiguredAlertHistoryEsIndex`
| Enables a preconfigured alert history {es} <<index-action-type, Index>> connector. Defaults to `false`.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we also have a mention within docs/user/alerting/action-types/index.asciidoc?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do we plan to allow-list this for Cloud?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

and docker :-)

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm wondering if we would want to consider this to be "experimental" - with alerts-as-data coming, it seems likely this action might not be needed in the future? And that we might not want to continue to support it? Not sure, seems like there may also be indices that don't deal with alerts-as-data via the framework (however that might be implemented), and so this would be a "cheap" version of that.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The docker config update is part of this PR. I plan to open a followup PR for cloud when this PR is resolved.


| `xpack.actions.preconfigured`
| Specifies preconfigured action IDs and configs. Defaults to {}.
| Specifies preconfigured connector IDs and configs. Defaults to {}.

| `xpack.actions.proxyUrl` {ess-icon}
| Specifies the proxy URL to use, if using a proxy for actions. By default, no proxy is used.
Expand Down
24 changes: 24 additions & 0 deletions docs/user/alerting/action-types/pre-configured-connectors.asciidoc
Original file line number Diff line number Diff line change
Expand Up @@ -64,3 +64,27 @@ Clicking a preconfigured connector shows the description, but not the configurat

[role="screenshot"]
image::images/pre-configured-connectors-view-screen.png[Pre-configured connector view details]

[float]
[[preconfigured-connector-alert-history]]
==== Alert History Preconfigured Connector
ymao1 marked this conversation as resolved.
Show resolved Hide resolved

{kib} offers a preconfigured <<index-action-type, Index>> connector to facilitate indexing active alert data into {es}.

To use this connector, set the <<action-settings, `xpack.actions.preconfiguredAlertHistoryEsIndex`>> configuration to `true`.

```js
xpack.actions.preconfiguredAlertHistoryEsIndex: true
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm a little worried about hard-coding the alert-history- prefix - what if a customer already has such an index? Could we make that configurable as well? I'm wondering prefixing that with kibana- would also perhaps help, both to avoid collisions, and make it more obvious to someone looking at the index names, that this is probably some kind of index related to Kibana itself, rather than a customer-oriented index.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated prefix to kibana-alert-history- in 095b495

```

When creating a new rule, add an <<index-action-type, Index action>> and select the `Alert History ES Index (preconfigured)` connector.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This link confuses me. It takes me to the Index connector and action page. I'm still not sure what the actions are and how it relates to the screenshot.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a type of index connector, which is why I added the link to the index connector type. Normally with an index connector, the user who configures the connector decides what the index name is and the user who adds the connector to a rule decides what the data schema is. For this preconfigured alert history connector, the index name and data schema is pre-determined.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sames feels as @gchaps - it's a bit confusing. On all the connector pages, we have a *Preconfigured connector type section, and so I first thought - oh, this is the new preconfigured alert history thing - but it isn't. It just shows how to build an "ordinary" preconfigured index connector. Thinking maybe we should move the doc for this bit into the index connector doc, vs the preconfigured connectors page -though we could certainly reference it from there.


[role="screenshot"]
image::images/pre-configured-alert-history-connector.png[Select pre-configured alert history connectors]

With this connector, documents are indexed using a pre-configured schema that captures all of the rule and alert information that is available as <<defining-alerts-actions-variables, action variables>>. By default, these documents will be indexed into the `alert-history-default` index, but you may specify a different index if desired. Note that all index names must start with `alert-history-` in order to take advantage of the pre-configured Alert History index template.
ymao1 marked this conversation as resolved.
Show resolved Hide resolved

[IMPORTANT]
==============================================
Make sure you have `all` or `write` privileges to the `alert-history-*` indices in order to ensure your documents will be written. Refer to <<xpack-kibana-role-management>> for more information.
ymao1 marked this conversation as resolved.
Show resolved Hide resolved
==============================================
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
1 change: 1 addition & 0 deletions src/core/public/doc_links/doc_links_service.ts
Original file line number Diff line number Diff line change
Expand Up @@ -206,6 +206,7 @@ export class DocLinksService {
indexThreshold: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/rule-type-index-threshold.html`,
pagerDutyAction: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/pagerduty-action-type.html`,
preconfiguredConnectors: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/pre-configured-connectors.html`,
preconfiguredAlertHistoryConnector: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/pre-configured-connectors.html#preconfigured-connector-alert-history`,
serviceNowAction: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/servicenow-action-type.html#configuring-servicenow`,
setupPrerequisites: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/alerting-getting-started.html#alerting-setup-prerequisites`,
slackAction: `${ELASTIC_WEBSITE_URL}guide/en/kibana/${DOC_LINK_VERSION}/slack-action-type.html#configuring-slack`,
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -159,6 +159,7 @@ kibana_vars=(
xpack.actions.allowedHosts
xpack.actions.enabled
xpack.actions.enabledActionTypes
xpack.actions.preconfiguredAlertHistoryEsIndex
xpack.actions.preconfigured
xpack.actions.proxyHeaders
xpack.actions.proxyRejectUnauthorizedCertificates
Expand Down
120 changes: 120 additions & 0 deletions x-pack/plugins/actions/common/alert_history_schema.test.ts
Original file line number Diff line number Diff line change
@@ -0,0 +1,120 @@
/*
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0; you may not use this file except in compliance with the Elastic License
* 2.0.
*/

import { buildAlertHistoryDocument } from './alert_history_schema';

function getVariables(overrides = {}) {
return {
date: '2021-01-01T00:00:00.000Z',
rule: {
id: 'rule-id',
name: 'rule-name',
type: 'rule-type',
spaceId: 'space-id',
},
context: {
contextVar1: 'contextValue1',
contextVar2: 'contextValue2',
},
params: {
ruleParam: 1,
ruleParamString: 'another param',
},
tags: ['abc', 'def'],
alert: {
id: 'alert-id',
actionGroup: 'action-group-id',
actionGroupName: 'Action Group',
},
...overrides,
};
}

describe('buildAlertHistoryDocument', () => {
it('handles empty variables', () => {
expect(buildAlertHistoryDocument({})).toBeNull();
});

it('returns null if rule type is not defined', () => {
expect(buildAlertHistoryDocument(getVariables({ rule: { type: undefined } }))).toBeNull();
});

it('returns null if alert variables are not defined', () => {
expect(buildAlertHistoryDocument(getVariables({ alert: undefined }))).toBeNull();
});

it('returns null if rule variables are not defined', () => {
expect(buildAlertHistoryDocument(getVariables({ rule: undefined }))).toBeNull();
});

it('includes @timestamp field if date is null', () => {
const alertHistoryDoc = buildAlertHistoryDocument(getVariables({ date: undefined }));
expect(alertHistoryDoc).not.toBeNull();
expect(alertHistoryDoc!['@timestamp']).toBeTruthy();
});

it(`doesn't include context if context is empty`, () => {
const alertHistoryDoc = buildAlertHistoryDocument(getVariables({ context: {} }));
expect(alertHistoryDoc).not.toBeNull();
expect(alertHistoryDoc!.alert.context).toBeFalsy();
});

it(`doesn't include params if params is empty`, () => {
const alertHistoryDoc = buildAlertHistoryDocument(getVariables({ params: {} }));
expect(alertHistoryDoc).not.toBeNull();
expect(alertHistoryDoc!.rule.params).toBeFalsy();
});

it(`doesn't include tags if tags is empty array`, () => {
const alertHistoryDoc = buildAlertHistoryDocument(getVariables({ tags: [] }));
expect(alertHistoryDoc).not.toBeNull();
expect(alertHistoryDoc!.tags).toBeFalsy();
});

it(`included message if context contains message`, () => {
const alertHistoryDoc = buildAlertHistoryDocument(
getVariables({
context: { contextVar1: 'contextValue1', contextVar2: 'contextValue2', message: 'hello!' },
})
);
expect(alertHistoryDoc).not.toBeNull();
expect(alertHistoryDoc!.message).toEqual('hello!');
});

it('builds alert history document from variables', () => {
expect(buildAlertHistoryDocument(getVariables())).toEqual({
'@timestamp': '2021-01-01T00:00:00.000Z',
alert: {
ymao1 marked this conversation as resolved.
Show resolved Hide resolved
actionGroup: 'action-group-id',
actionGroupName: 'Action Group',
context: {
'rule-type': {
contextVar1: 'contextValue1',
contextVar2: 'contextValue2',
},
},
id: 'alert-id',
},
event: {
kind: 'alert',
},
rule: {
id: 'rule-id',
name: 'rule-name',
params: {
'rule-type': {
ruleParam: 1,
ruleParamString: 'another param',
},
},
space: 'space-id',
type: 'rule-type',
},
tags: ['abc', 'def'],
});
});
});
90 changes: 90 additions & 0 deletions x-pack/plugins/actions/common/alert_history_schema.ts
Original file line number Diff line number Diff line change
@@ -0,0 +1,90 @@
/*
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0; you may not use this file except in compliance with the Elastic License
* 2.0.
*/

import { isEmpty } from 'lodash';

export const ALERT_HISTORY_PREFIX = 'alert-history-';
export const AlertHistoryDefaultIndexName = `${ALERT_HISTORY_PREFIX}default`;
export const AlertHistoryEsIndexConnectorId = 'preconfigured-alert-history-es-index';

export const buildAlertHistoryDocument = (variables: Record<string, unknown>) => {
const { date, alert: alertVariables, context, params, tags, rule: ruleVariables } = variables as {
date: string;
alert: Record<string, unknown>;
context: Record<string, unknown>;
params: Record<string, unknown>;
rule: Record<string, unknown>;
tags: string[];
};

if (!alertVariables || !ruleVariables) {
return null;
}

const { actionGroup, actionGroupName, id: alertId } = alertVariables as {
actionGroup: string;
actionGroupName: string;
id: string;
};

const { id: ruleId, name, spaceId, type } = ruleVariables as {
id: string;
name: string;
spaceId: string;
type: string;
};

if (!type) {
// can't build the document without a type
return null;
}

const ruleType = type.replace('.', '__');
ymao1 marked this conversation as resolved.
Show resolved Hide resolved

const rule = {
...(ruleId ? { id: ruleId } : {}),
...(name ? { name } : {}),
...(!isEmpty(params) ? { params: { [ruleType]: params } } : {}),
...(spaceId ? { space: spaceId } : {}),
...(type ? { type } : {}),
};
const alert = {
...(alertId ? { id: alertId } : {}),
...(!isEmpty(context) ? { context: { [ruleType]: context } } : {}),
...(actionGroup ? { actionGroup } : {}),
...(actionGroupName ? { actionGroupName } : {}),
};

const alertHistoryDoc = {
'@timestamp': date ? date : new Date().toISOString(),
...(tags && tags.length > 0 ? { tags } : {}),
...(context?.message ? { message: context.message } : {}),
...(!isEmpty(rule) ? { rule } : {}),
...(!isEmpty(alert) ? { alert } : {}),
};

return !isEmpty(alertHistoryDoc) ? { ...alertHistoryDoc, event: { kind: 'alert' } } : null;
};

export const AlertHistoryDocumentSchema = Object.freeze(
ymao1 marked this conversation as resolved.
Show resolved Hide resolved
buildAlertHistoryDocument({
rule: {
id: '{{rule.id}}',
name: '{{rule.name}}',
type: '{{rule.type}}',
spaceId: '{{rule.spaceId}}',
},
context: '{{context}}',
params: '{{params}}',
tags: '{{rule.tags}}',
alert: {
id: '{{alert.id}}',
actionGroup: '{{alert.actionGroup}}',
actionGroupName: '{{alert.actionGroupName}}',
},
})
);
4 changes: 2 additions & 2 deletions x-pack/plugins/actions/common/index.ts
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
*/

export * from './types';
export * from './alert_history_schema';
export * from './rewrite_request_case';

export const BASE_ACTION_API_PATH = '/api/actions';

export * from './rewrite_request_case';
1 change: 1 addition & 0 deletions x-pack/plugins/actions/server/actions_client.test.ts
Original file line number Diff line number Diff line change
Expand Up @@ -403,6 +403,7 @@ describe('create()', () => {
enabled: true,
enabledActionTypes: ['some-not-ignored-action-type'],
allowedHosts: ['*'],
preconfiguredAlertHistoryEsIndex: false,
preconfigured: {},
proxyRejectUnauthorizedCertificates: true,
rejectUnauthorized: true,
Expand Down
1 change: 1 addition & 0 deletions x-pack/plugins/actions/server/actions_config.test.ts
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,7 @@ const defaultActionsConfig: ActionsConfig = {
enabled: false,
allowedHosts: [],
enabledActionTypes: [],
preconfiguredAlertHistoryEsIndex: false,
preconfigured: {},
proxyRejectUnauthorizedCertificates: true,
rejectUnauthorized: true,
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
/*
ymao1 marked this conversation as resolved.
Show resolved Hide resolved
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0; you may not use this file except in compliance with the Elastic License
* 2.0.
*/

import { i18n } from '@kbn/i18n';
import { PreConfiguredAction } from '../../types';
import { ActionTypeId as EsIndexActionTypeId } from '../es_index';
import { AlertHistoryEsIndexConnectorId, AlertHistoryDefaultIndexName } from '../../../common';

export function getAlertHistoryEsIndex(): Readonly<PreConfiguredAction> {
return Object.freeze({
name: i18n.translate('xpack.actions.alertHistoryEsIndexConnector.name', {
defaultMessage: 'Alert History ES Index',
ymao1 marked this conversation as resolved.
Show resolved Hide resolved
}),
actionTypeId: EsIndexActionTypeId,
id: AlertHistoryEsIndexConnectorId,
isPreconfigured: true,
config: {
index: AlertHistoryDefaultIndexName,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm interested to see (haven't gotten there yet) how we convert this index name in the config into a parameter in the preconfigured connector. Seems like we'd have to have some special logic in the index connector executor to deal with this. Do we have a new "index name suffix" param in the index connector that the normal index connector doesn't use? Seems alright as I'm thinking about it, but kinda weird. But makes me wonder if this shouldn't be a separate action type, which presumably you'd only be able to create as a preconfigured action - which itself is also weird.

},
secrets: {},
});
}
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
/*
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
* or more contributor license agreements. Licensed under the Elastic License
* 2.0; you may not use this file except in compliance with the Elastic License
* 2.0.
*/

import { ElasticsearchClient } from 'src/core/server';
import { RequestEvent } from '@elastic/elasticsearch';
import { elasticsearchServiceMock, loggingSystemMock } from 'src/core/server/mocks';
import { DeeplyMockedKeys } from '@kbn/utility-types/jest';
import {
createAlertHistoryIndexTemplate,
getAlertHistoryIndexTemplate,
} from './create_alert_history_index_template';

type MockedLogger = ReturnType<typeof loggingSystemMock['createLogger']>;

describe('createAlertHistoryIndexTemplate', () => {
let logger: MockedLogger;
let clusterClient: DeeplyMockedKeys<ElasticsearchClient>;

beforeEach(() => {
logger = loggingSystemMock.createLogger();
clusterClient = elasticsearchServiceMock.createClusterClient().asInternalUser;
});

test(`should create index template if it doesn't exist`, async () => {
clusterClient.indices.existsTemplate.mockResolvedValue({
body: false,
} as RequestEvent<boolean>);

await createAlertHistoryIndexTemplate({ client: clusterClient, logger });
expect(clusterClient.indices.putTemplate).toHaveBeenCalledWith({
name: `alert-history-template`,
body: getAlertHistoryIndexTemplate(),
create: true,
});
});

test(`shouldn't create index template if it already exists`, async () => {
clusterClient.indices.existsTemplate.mockResolvedValue({
body: true,
} as RequestEvent<boolean>);

await createAlertHistoryIndexTemplate({ client: clusterClient, logger });
expect(clusterClient.indices.putTemplate).not.toHaveBeenCalled();
});
});
Loading