[Event log][7.x] Updated event log client to search across legacy IDs #109365
Conversation
YulNaumenko
added
Team:ResponseOps
|
@elasticmachine merge upstream |
|
Pinging @elastic/kibana-alerting-services (Team:Alerting Services) |
|
Should there be a |
There was a problem hiding this comment.
I did another pass through the code, it's getting closer. Below are the 3 scenarios I tested:
| Rule created in what version? | Has version added to event log documents? | Is legacy ID? | Alert table still works after upgrading to 8.0.0? |
|---|---|---|---|
| 7.15.0 | No | Yes | No |
| 7.16.0 | Yes | Yes | No |
| 8.0.0 | Yes | No | Yes |
I'm thinking we may need some functional tests to ensure these three scenarios work and still work down the line. The query will become sensitive when we change in the future. I've attached a zip of my Elasticsearch data folder (use with yarn es snapshot -E path.data=...)
|
@elasticmachine merge upstream |
💚 Build SucceededMetrics [docs]Public APIs missing comments
Public APIs missing exports
History
To update your PR or re-run it, just comment with: cc @YulNaumenko |
…eporting-to-v2 * 'master' of github.com:elastic/kibana: (65 commits) Move to vis_types folder part 2 (elastic#110574) [SOR] use initialNamespaces when checking for conflict for `create` and `bulkCreate` (elastic#111023) [Discover] Remove export* syntax (elastic#110934) [Event log][7.x] Updated event log client to search across legacy IDs (elastic#109365) [Security Solution][Detection Rules] Changes 'activated' text on rule details page (elastic#111044) [Metrics UI] Filter out APM nodes from the inventory view (elastic#110300) [package testing] Update logging and pid configuration (elastic#111059) [Dashboard] Read App State from URL on Soft Refresh (elastic#109354) Add correct roles to test user for functional tests in dashboard (elastic#110880) [DOCS] Adds Lens Inspector and minor edits (elastic#109736) [DOCS] Updates Spaces page (elastic#111005) normalize initialNamespaces (elastic#110936) [Reporting] Clean up `any` usage, reorganize server route files (elastic#110740) [Security Solution] [CTI] Fixes bug that caused Threshold and Indicator Match rules to ignore custom rule filters if a saved query was used in the rule definition. (elastic#109253) skip flaky suites: elastic#111001, elastic#111022 [Security Solution][RAC] - Update reason field text (elastic#110308) [RAC][Security Solution] Make analyzer work with EuiDataGrid full screen (elastic#110913) [Metrics UI] Add integration tests for Metric Threshold Rule and refactor to fire correctly (elastic#109971) [DOCS] Updates Discover docs (elastic#110346) [RAC] Persistent timeline fields fix (elastic#110685) ...
…elastic#109365) * [Event log][7.x] Updated event log client to search across legacy IDs * fixed tests * extended kibana null version check * added logic to alerting plugin * fixed typechecks * fixed typechecks * Revert "fixed typechecks" This reverts commit 6f6770f. * removed legacyId for routes * fixed typechecks * fixed position * fixed query * fixed query * fixed tests * fixed types place * fixed due to comments * fixed due to comments * fixed eslint * fixed due to comments * splitted test data * fixed test data * increased the delay time to await the search * removed version for 7.9 docs * Update x-pack/plugins/event_log/server/es/cluster_client_adapter.ts Co-authored-by: Mike Côté <mikecote@users.noreply.github.com> * fixed unit test * fixed test data Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com> Co-authored-by: Mike Côté <mikecote@users.noreply.github.com>
kibanamachine
added
the
backport missing
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
5 similar comments
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Looks like this PR has a backport PR but it still hasn't been merged. Please merge it ASAP to keep the branches relatively in sync. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
5 similar comments
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
@YulNaumenko regarding the pings above ^^ is there a backport missing or it's already merged as a separate PR? |
|
I answered my own question: #111176 (comment). |
mikecote
added
backport:skip
kibanamachine
removed
the
backport missing
Summary
Resolves #108077
Checklist