added new log types (#439) (#442)

Signed-off-by: Amardeepsingh Siglani <[email protected]> (cherry picked from commit 22330db) Co-authored-by: Amardeepsingh Siglani <[email protected]>
opensearch-project · Feb 22, 2023 · a3e580e · a3e580e
1 parent aab73b9
commit a3e580e
Show file tree

Hide file tree

Showing 6 changed files with 253 additions and 3 deletions.
diff --git a/...ages/Detectors/components/DetectorRulesView/__snapshots__/DetectorRulesView.test.tsx.snap b/...ages/Detectors/components/DetectorRulesView/__snapshots__/DetectorRulesView.test.tsx.snap
@@ -443,6 +443,26 @@ exports[`<DetectorRulesView /> spec renders the component 1`] = `
                           "name": "S3",
                           "value": "s3",
                         },
+                        Object {
+                          "name": "Google Workspace",
+                          "value": "gworkspace",
+                        },
+                        Object {
+                          "name": "Github actions",
+                          "value": "github",
+                        },
+                        Object {
+                          "name": "Microsoft 365",
+                          "value": "m365",
+                        },
+                        Object {
+                          "name": "Okta",
+                          "value": "okta",
+                        },
+                        Object {
+                          "name": "Azure",
+                          "value": "azure",
+                        },
                       ],
                       "type": "field_value_selection",
                     },
@@ -560,6 +580,26 @@ exports[`<DetectorRulesView /> spec renders the component 1`] = `
                             "name": "S3",
                             "value": "s3",
                           },
+                          Object {
+                            "name": "Google Workspace",
+                            "value": "gworkspace",
+                          },
+                          Object {
+                            "name": "Github actions",
+                            "value": "github",
+                          },
+                          Object {
+                            "name": "Microsoft 365",
+                            "value": "m365",
+                          },
+                          Object {
+                            "name": "Okta",
+                            "value": "okta",
+                          },
+                          Object {
+                            "name": "Azure",
+                            "value": "azure",
+                          },
                         ],
                         "type": "field_value_selection",
                       },
@@ -749,6 +789,26 @@ exports[`<DetectorRulesView /> spec renders the component 1`] = `
                                       "name": "S3",
                                       "value": "s3",
                                     },
+                                    Object {
+                                      "name": "Google Workspace",
+                                      "value": "gworkspace",
+                                    },
+                                    Object {
+                                      "name": "Github actions",
+                                      "value": "github",
+                                    },
+                                    Object {
+                                      "name": "Microsoft 365",
+                                      "value": "m365",
+                                    },
+                                    Object {
+                                      "name": "Okta",
+                                      "value": "okta",
+                                    },
+                                    Object {
+                                      "name": "Azure",
+                                      "value": "azure",
+                                    },
                                   ],
                                   "type": "field_value_selection",
                                 },
@@ -860,6 +920,26 @@ exports[`<DetectorRulesView /> spec renders the component 1`] = `
                                           "name": "S3",
                                           "value": "s3",
                                         },
+                                        Object {
+                                          "name": "Google Workspace",
+                                          "value": "gworkspace",
+                                        },
+                                        Object {
+                                          "name": "Github actions",
+                                          "value": "github",
+                                        },
+                                        Object {
+                                          "name": "Microsoft 365",
+                                          "value": "m365",
+                                        },
+                                        Object {
+                                          "name": "Okta",
+                                          "value": "okta",
+                                        },
+                                        Object {
+                                          "name": "Azure",
+                                          "value": "azure",
+                                        },
                                       ],
                                       "type": "field_value_selection",
                                     }

diff --git a/public/pages/Detectors/containers/Detector/__snapshots__/DetectorDetails.test.tsx.snap b/public/pages/Detectors/containers/Detector/__snapshots__/DetectorDetails.test.tsx.snap
@@ -2928,6 +2928,26 @@ exports[`<DetectorDetails /> spec renders the component 1`] = `
                               "name": "S3",
                               "value": "s3",
                             },
+                            Object {
+                              "name": "Google Workspace",
+                              "value": "gworkspace",
+                            },
+                            Object {
+                              "name": "Github actions",
+                              "value": "github",
+                            },
+                            Object {
+                              "name": "Microsoft 365",
+                              "value": "m365",
+                            },
+                            Object {
+                              "name": "Okta",
+                              "value": "okta",
+                            },
+                            Object {
+                              "name": "Azure",
+                              "value": "azure",
+                            },
                           ],
                           "type": "field_value_selection",
                         },
@@ -3045,6 +3065,26 @@ exports[`<DetectorDetails /> spec renders the component 1`] = `
                                 "name": "S3",
                                 "value": "s3",
                               },
+                              Object {
+                                "name": "Google Workspace",
+                                "value": "gworkspace",
+                              },
+                              Object {
+                                "name": "Github actions",
+                                "value": "github",
+                              },
+                              Object {
+                                "name": "Microsoft 365",
+                                "value": "m365",
+                              },
+                              Object {
+                                "name": "Okta",
+                                "value": "okta",
+                              },
+                              Object {
+                                "name": "Azure",
+                                "value": "azure",
+                              },
                             ],
                             "type": "field_value_selection",
                           },
@@ -3234,6 +3274,26 @@ exports[`<DetectorDetails /> spec renders the component 1`] = `
                                           "name": "S3",
                                           "value": "s3",
                                         },
+                                        Object {
+                                          "name": "Google Workspace",
+                                          "value": "gworkspace",
+                                        },
+                                        Object {
+                                          "name": "Github actions",
+                                          "value": "github",
+                                        },
+                                        Object {
+                                          "name": "Microsoft 365",
+                                          "value": "m365",
+                                        },
+                                        Object {
+                                          "name": "Okta",
+                                          "value": "okta",
+                                        },
+                                        Object {
+                                          "name": "Azure",
+                                          "value": "azure",
+                                        },
                                       ],
                                       "type": "field_value_selection",
                                     },
@@ -3345,6 +3405,26 @@ exports[`<DetectorDetails /> spec renders the component 1`] = `
                                               "name": "S3",
                                               "value": "s3",
                                             },
+                                            Object {
+                                              "name": "Google Workspace",
+                                              "value": "gworkspace",
+                                            },
+                                            Object {
+                                              "name": "Github actions",
+                                              "value": "github",
+                                            },
+                                            Object {
+                                              "name": "Microsoft 365",
+                                              "value": "m365",
+                                            },
+                                            Object {
+                                              "name": "Okta",
+                                              "value": "okta",
+                                            },
+                                            Object {
+                                              "name": "Azure",
+                                              "value": "azure",
+                                            },
                                           ],
                                           "type": "field_value_selection",
                                         }

diff --git a/.../Detectors/containers/DetectorDetailsView/__snapshots__/DetectorDetailsView.test.tsx.snap b/.../Detectors/containers/DetectorDetailsView/__snapshots__/DetectorDetailsView.test.tsx.snap
@@ -1678,6 +1678,26 @@ exports[`<DetectorDetailsView /> spec renders the component 1`] = `
                             "name": "S3",
                             "value": "s3",
                           },
+                          Object {
+                            "name": "Google Workspace",
+                            "value": "gworkspace",
+                          },
+                          Object {
+                            "name": "Github actions",
+                            "value": "github",
+                          },
+                          Object {
+                            "name": "Microsoft 365",
+                            "value": "m365",
+                          },
+                          Object {
+                            "name": "Okta",
+                            "value": "okta",
+                          },
+                          Object {
+                            "name": "Azure",
+                            "value": "azure",
+                          },
                         ],
                         "type": "field_value_selection",
                       },
@@ -1795,6 +1815,26 @@ exports[`<DetectorDetailsView /> spec renders the component 1`] = `
                               "name": "S3",
                               "value": "s3",
                             },
+                            Object {
+                              "name": "Google Workspace",
+                              "value": "gworkspace",
+                            },
+                            Object {
+                              "name": "Github actions",
+                              "value": "github",
+                            },
+                            Object {
+                              "name": "Microsoft 365",
+                              "value": "m365",
+                            },
+                            Object {
+                              "name": "Okta",
+                              "value": "okta",
+                            },
+                            Object {
+                              "name": "Azure",
+                              "value": "azure",
+                            },
                           ],
                           "type": "field_value_selection",
                         },
@@ -1984,6 +2024,26 @@ exports[`<DetectorDetailsView /> spec renders the component 1`] = `
                                         "name": "S3",
                                         "value": "s3",
                                       },
+                                      Object {
+                                        "name": "Google Workspace",
+                                        "value": "gworkspace",
+                                      },
+                                      Object {
+                                        "name": "Github actions",
+                                        "value": "github",
+                                      },
+                                      Object {
+                                        "name": "Microsoft 365",
+                                        "value": "m365",
+                                      },
+                                      Object {
+                                        "name": "Okta",
+                                        "value": "okta",
+                                      },
+                                      Object {
+                                        "name": "Azure",
+                                        "value": "azure",
+                                      },
                                     ],
                                     "type": "field_value_selection",
                                   },
@@ -2095,6 +2155,26 @@ exports[`<DetectorDetailsView /> spec renders the component 1`] = `
                                             "name": "S3",
                                             "value": "s3",
                                           },
+                                          Object {
+                                            "name": "Google Workspace",
+                                            "value": "gworkspace",
+                                          },
+                                          Object {
+                                            "name": "Github actions",
+                                            "value": "github",
+                                          },
+                                          Object {
+                                            "name": "Microsoft 365",
+                                            "value": "m365",
+                                          },
+                                          Object {
+                                            "name": "Okta",
+                                            "value": "okta",
+                                          },
+                                          Object {
+                                            "name": "Azure",
+                                            "value": "azure",
+                                          },
                                         ],
                                         "type": "field_value_selection",
                                       }

diff --git a/public/pages/Detectors/utils/constants.ts b/public/pages/Detectors/utils/constants.ts
@@ -27,12 +27,17 @@ export const EMPTY_DEFAULT_DETECTOR_INPUT = {
 };
 
 export const DETECTOR_TYPES = {
-  NETFLOW: { id: 'network', label: 'Netflow' },
+  NETWORK: { id: 'network', label: 'Network events' },
   DNS: { id: 'dns', label: 'DNS logs' },
   APACHE_ACCESS: { id: 'apache_access', label: 'Apache access logs' },
   WINDOWS: { id: 'windows', label: 'Windows logs' },
-  AD_LDAP: { id: 'ad_ldap', label: 'AD/LDAP' },
+  AD_LDAP: { id: 'ad_ldap', label: 'AD/LDAP logs' },
   SYSTEM: { id: 'linux', label: 'System logs' },
   CLOUD_TRAIL: { id: 'cloudtrail', label: 'Cloud Trail logs' },
   S3: { id: 's3', label: 'S3 access logs' },
+  GWORKSPACE: { id: 'gworkspace', label: 'Google Workspace logs' },
+  GITHUB: { id: 'github', label: 'Github actions' },
+  M365: { id: 'm365', label: 'Microsoft 365 logs' },
+  OKTA: { id: 'okta', label: 'Okta events' },
+  AZURE: { id: 'azure', label: 'Azure logs' },
 };
diff --git a/public/pages/Rules/utils/constants.ts b/public/pages/Rules/utils/constants.ts
@@ -12,6 +12,11 @@ export const ruleTypes: { label: string; value: string }[] = [
   { label: 'Linux', value: 'linux' },
   { label: 'Cloudtrail', value: 'cloudtrail' },
   { label: 'S3', value: 's3' },
+  { label: 'Google Workspace', value: 'gworkspace' },
+  { label: 'Github actions', value: 'github' },
+  { label: 'Microsoft 365', value: 'm365' },
+  { label: 'Okta', value: 'okta' },
+  { label: 'Azure', value: 'azure' },
 ];
 
 export const ruleSeverity: { name: string; value: string }[] = [

diff --git a/public/utils/constants.ts b/public/utils/constants.ts
@@ -113,7 +113,7 @@ export const EMPTY_DEFAULT_DETECTOR_INPUT: DetectorInput = {
 
 export const EMPTY_DEFAULT_DETECTOR: Detector = {
   type: 'detector',
-  detector_type: DETECTOR_TYPES.NETFLOW.id,
+  detector_type: DETECTOR_TYPES.NETWORK.id,
   name: '',
   enabled: true,
   createdBy: '',