[RAC] ALerts table in observability #103270
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
XavierM
added
v8.0.0
release_note:skip
|
Pinging @elastic/security-threat-hunting (Team:Threat Hunting) |
UX improvements
|
Noted ❤️ , but this PR is not the final product because we are still using t-grid and the team are in work to convert t-grid with EuiDatagrid. This PR will help to see integration/improvement on the Alert table when it is merged with new updates. |
| float: t.number, | ||
| scaled_float: t.number, | ||
| unsigned_long: t.number, | ||
| boolean: t.union([t.number, BooleanFromString]), |
There was a problem hiding this comment.
Would using t.boolean instead of t.number, e.g:
t.union([t.boolean, BooleanFromString])
make sense here?
There was a problem hiding this comment.
bad copy pasta, thank you!
That's correct, I forget to remove the all button. In one of the RAC UX experience, they decided to not have the all functionality to simplify the bulk update alerts. |
| rowCellRender: ({ data }: ActionProps) => { | ||
| const dataFieldEs = data.reduce((acc, d) => ({ ...acc, [d.field]: d.value }), {}); | ||
| const decoratedAlerts = decorateResponse( | ||
| [dataFieldEs] ?? [], |
There was a problem hiding this comment.
nit: is the ?? [] still required here (and here)?
| } | ||
| closePopover={() => setIsPopoverOpen(false)} | ||
| > | ||
| <EuiPopoverTitle>Actions</EuiPopoverTitle> |
There was a problem hiding this comment.
consider creating an i18n for this
| <EuiButtonEmpty href={prepend(link ?? '')}> | ||
| <EuiFlexGroup alignItems="center" component="span" gutterSize="s"> | ||
| <EuiFlexItem grow={false}> | ||
| <EuiButtonIcon aria-label="view in app" iconType="link" color="text" /> |
There was a problem hiding this comment.
consider using an i18n for the aria-label
EDIT: and here
andrew-goldstein
approved these changes
Jul 1, 2021
There was a problem hiding this comment.
Thanks for moving this forward @XavierM! 🙏
left just a few minor comments
LGTM from the t-grid side
weltenwort
approved these changes
Jul 5, 2021
There was a problem hiding this comment.
Thanks for putting this together. As it is the table should be sufficient to check that the observability solution are poperly registering their lifecycle alerts. 👍
Given the list of UX problems already enumerated by @katrin-freihofner we wouldn't want to release it like this. But assuming the <EuiDataGrid>-based implementation is merged soon it seems wasteful to make extensive changes here.
| setRefetch, | ||
| sort: [ | ||
| { | ||
| columnId: '@timestamp', |
There was a problem hiding this comment.
This essentially means "sort by last update", which might not be intuitive to the user. How about we sort by "triggered" (kibana.rac.alert.start) instead?
Suggested change
| columnId: '@timestamp', | |
| columnId: 'kibana.rac.alert.start', |
| return ( | ||
| <EuiButtonIcon | ||
| size="s" | ||
| target="_blank" |
There was a problem hiding this comment.
What's the intention behind opening in a new tab here? Shouldn't that be up to the user?
|
@elasticmachine merge upstream |
💚 Build SucceededMetrics [docs]Module Count
Async chunks
Page load bundle
History
To update your PR or re-run it, just comment with: |
andrew-goldstein
pushed a commit
to andrew-goldstein/kibana
that referenced
this pull request
Jul 6, 2021
Closes elastic#98611 ## Summary Add alerts table in Observability =>  ### Risk Matrix Delete this section if it is not applicable to this PR. Before closing this PR, invite QA, stakeholders, and other developers to identify risks that should be tested prior to the change/feature release. When forming the risk matrix, consider some of the following examples and how they may potentially impact the change: | Risk | Probability | Severity | Mitigation/Notes | |---------------------------|-------------|----------|-------------------------| | Multiple Spaces—unexpected behavior in non-default Kibana Space. | Low | High | Integration tests will verify that all features are still supported in non-default Kibana Space and when user switches between spaces. | | Multiple nodes—Elasticsearch polling might have race conditions when multiple Kibana nodes are polling for the same tasks. | High | Low | Tasks are idempotent, so executing them multiple times will not result in logical error, but will degrade performance. To test for this case we add plenty of unit tests around this logic and document manual testing procedure. | | Code should gracefully handle cases when feature X or plugin Y are disabled. | Medium | High | Unit tests will verify that any feature flag or plugin combination still results in our service operational. | | [See more potential risk examples](https://github.com/elastic/kibana/blob/master/RISK_MATRIX.mdx) | ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)
andrew-goldstein
added a commit
that referenced
this pull request
Jul 6, 2021
Closes #98611 ## Summary Add alerts table in Observability =>  ### Risk Matrix Delete this section if it is not applicable to this PR. Before closing this PR, invite QA, stakeholders, and other developers to identify risks that should be tested prior to the change/feature release. When forming the risk matrix, consider some of the following examples and how they may potentially impact the change: | Risk | Probability | Severity | Mitigation/Notes | |---------------------------|-------------|----------|-------------------------| | Multiple Spaces—unexpected behavior in non-default Kibana Space. | Low | High | Integration tests will verify that all features are still supported in non-default Kibana Space and when user switches between spaces. | | Multiple nodes—Elasticsearch polling might have race conditions when multiple Kibana nodes are polling for the same tasks. | High | Low | Tasks are idempotent, so executing them multiple times will not result in logical error, but will degrade performance. To test for this case we add plenty of unit tests around this logic and document manual testing procedure. | | Code should gracefully handle cases when feature X or plugin Y are disabled. | Medium | High | Unit tests will verify that any feature flag or plugin combination still results in our service operational. | | [See more potential risk examples](https://github.com/elastic/kibana/blob/master/RISK_MATRIX.mdx) | ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process) Co-authored-by: Xavier Mouligneau <189600+XavierM@users.noreply.github.com>
darnautov
pushed a commit
to darnautov/kibana
that referenced
this pull request
Jul 7, 2021
Closes elastic#98611 ## Summary Add alerts table in Observability =>  ### Risk Matrix Delete this section if it is not applicable to this PR. Before closing this PR, invite QA, stakeholders, and other developers to identify risks that should be tested prior to the change/feature release. When forming the risk matrix, consider some of the following examples and how they may potentially impact the change: | Risk | Probability | Severity | Mitigation/Notes | |---------------------------|-------------|----------|-------------------------| | Multiple Spaces—unexpected behavior in non-default Kibana Space. | Low | High | Integration tests will verify that all features are still supported in non-default Kibana Space and when user switches between spaces. | | Multiple nodes—Elasticsearch polling might have race conditions when multiple Kibana nodes are polling for the same tasks. | High | Low | Tasks are idempotent, so executing them multiple times will not result in logical error, but will degrade performance. To test for this case we add plenty of unit tests around this logic and document manual testing procedure. | | Code should gracefully handle cases when feature X or plugin Y are disabled. | Medium | High | Unit tests will verify that any feature flag or plugin combination still results in our service operational. | | [See more potential risk examples](https://github.com/elastic/kibana/blob/master/RISK_MATRIX.mdx) | ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)
This was referenced Jul 12, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Closes #98611
Summary
Add alerts table in Observability =>
Risk Matrix
Delete this section if it is not applicable to this PR.
Before closing this PR, invite QA, stakeholders, and other developers to identify risks that should be tested prior to the change/feature release.
When forming the risk matrix, consider some of the following examples and how they may potentially impact the change:
For maintainers