[Security Solution][Detections] Add Bulk Scheduling for rules #140166
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jpdjere
commented
Sep 7, 2022
| @@ -29,6 +29,10 @@ export const splitBulkEditActions = (actions: BulkActionEditPayload[]) => { | |||
|
|
|||
| return actions.reduce((acc, action) => { | |||
| switch (action.type) { | |||
| case BulkActionEditType.set_schedule: | |||
There was a problem hiding this comment.
updating the schedule needs to update both attributes (interval) and params (the meta.from and from params)
jpdjere
commented
Sep 7, 2022
...ck/plugins/security_solution/public/detections/components/rules/schedule_item_form/index.tsx
Show resolved
Hide resolved
jpdjere
commented
Sep 7, 2022
...ck/plugins/security_solution/public/detections/components/rules/schedule_item_form/index.tsx
Outdated
Show resolved
Hide resolved
jpdjere
added
Team:Detections and Resp
banderror
reviewed
Sep 7, 2022
...gins/security_solution/common/detection_engine/schemas/request/perform_bulk_action_schema.ts
Outdated
Show resolved
Hide resolved
...ck/plugins/security_solution/public/detections/components/rules/schedule_item_form/index.tsx
Outdated
Show resolved
Hide resolved
...ck/plugins/security_solution/public/detections/components/rules/schedule_item_form/index.tsx
Outdated
Show resolved
Hide resolved
...ck/plugins/security_solution/public/detections/components/rules/schedule_item_form/index.tsx
Show resolved
Hide resolved
...ic/detections/pages/detection_engine/rules/all/bulk_actions/utils/compute_dry_run_payload.ts
Outdated
Show resolved
Hide resolved
banderror
added
the
Feature:Rule Management
|
@jpdjere when the test plan is finalized for this feature, could you please open a doc ticket similar to elastic/security-docs#2441 and refer to this PR and the plan from it? |
jpdjere
force-pushed
the
2172-v2-cp-bulk-scheduling-for-rules
branch
4 times, most recently
from
f6cca0c to
1e3f0d2
Compare
|
Pinging @elastic/security-detections-response (Team:Detections and Resp) |
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
|
@banderror @vitaliidm Added tests according to the test plan and marked the PR as ready for review. Also here is the ticket for the docs. |
jpdjere
force-pushed
the
2172-v2-cp-bulk-scheduling-for-rules
branch
2 times, most recently
from
bf2a07a to
e5f89ec
Compare
|
@elastic/security-docs Could you please check the new bulk editing rule schedule form for the wording used in there? We have a bunch of new labels and callouts again :) We'll deploy this PR to Cloud. If we end up merging it before you have a chance to review it, please ping us and we'll open a new one for you. Also, let us know if you need help with getting credentials for the cloud deployment. @jpdjere Could you please rebase once again to trigger the cloud deployment? |
jpdjere
force-pushed
the
2172-v2-cp-bulk-scheduling-for-rules
branch
from
a0a529e to
ab26845
Compare
💚 Build Succeeded
Metrics [docs]Module Count
Public APIs missing comments
Async chunks
Page load bundle
Unknown metric groupsAPI count
ESLint disabled in files
Total ESLint disabled count
History
To update your PR or re-run it, just comment with: cc @jpdjere |
yctercero
reviewed
Sep 19, 2022
| warningCalloutMessage: (rulesCount: number): JSX.Element => ( | ||
| <FormattedMessage | ||
| id="xpack.securitySolution.detectionEngine.rules.allRules.bulkActions.edit.setSchedule.warningCalloutMessage" | ||
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any)." |
There was a problem hiding this comment.
Suggested change
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any)." | |
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you make will overwrite the existing Rule schedules and additional look-back time (if any)." |
Something felt a bit confusing with the wording. Maybe @elastic/security-docs has thoughts?
There was a problem hiding this comment.
Agree with @yctercero, plus one other edit:
Suggested change
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any)." | |
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you make will overwrite the existing rule schedules and additional look-back time (if any)." |
yctercero
approved these changes
Sep 19, 2022
joepeeples
reviewed
Sep 19, 2022
| warningCalloutMessage: (rulesCount: number): JSX.Element => ( | ||
| <FormattedMessage | ||
| id="xpack.securitySolution.detectionEngine.rules.allRules.bulkActions.edit.setSchedule.warningCalloutMessage" | ||
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any)." |
There was a problem hiding this comment.
Agree with @yctercero, plus one other edit:
Suggested change
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any)." | |
| defaultMessage="You're about to apply changes to {rulesCount, plural, one {# selected rule} other {# selected rules}}. The changes you make will overwrite the existing rule schedules and additional look-back time (if any)." |
| export const assertUpdateScheduleWarningExists = (expectedNumberOfNotMLRules: number) => { | ||
| cy.get(RULES_BULK_EDIT_SCHEDULES_WARNING).should( | ||
| 'have.text', | ||
| `You're about to apply changes to ${expectedNumberOfNotMLRules} selected rules. The changes you made will be overwritten to the existing Rule schedules and additional look-back time (if any).` |
There was a problem hiding this comment.
I think this is just test UI copy, but to match actual UI copy, edit the second sentence to "The changes you make will overwrite the existing rule schedules and additional look-back time (if any)."
9 tasks
jpdjere
added a commit
that referenced
this pull request
Sep 27, 2022
…ion (#141604) ## Summary Fixes issues, nits and [expands test coverage](https://docs.google.com/document/d/116x7ITTTJQ6cTiwaGK831_f6Ox7XB3qyLiHxC3Cmf8w/edit#) for PR: #140166 - Extends definition of `TimeUnit` type and its tests - Adds e2e test to test default values of Bulk Schedule flyout - Corrects copy as reported by @elastic/security-docs - Corrects validation for Interval field when editing rule schedule individually ### Checklist Delete any items that are not applicable to this PR. - [ ] Any text added follows [EUI's writing guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses sentence case text and includes [i18n support](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md) - [ ] [Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html) was added for features that require explanation or tutorials - [ ] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios - [ ] Any UI touched in this PR is usable by keyboard only (learn more about [keyboard accessibility](https://webaim.org/techniques/keyboard/)) - [ ] Any UI touched in this PR does not create any new axe failures (run axe in browser: [FF](https://addons.mozilla.org/en-US/firefox/addon/axe-devtools/), [Chrome](https://chrome.google.com/webstore/detail/axe-web-accessibility-tes/lhdoppojpmngadmnindnejefpokejbdd?hl=en-US)) - [ ] If a plugin configuration key changed, check if it needs to be allowlisted in the cloud and added to the [docker list](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker) - [ ] This renders correctly on smaller devices using a responsive layout. (You can test this [in your browser](https://www.browserstack.com/guide/responsive-testing-on-local-server)) - [ ] This was checked for [cross-browser compatibility](https://www.elastic.co/support/matrix#matrix_browsers) ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)
kibanamachine
pushed a commit
to kibanamachine/kibana
that referenced
this pull request
Sep 27, 2022
…ion (elastic#141604) ## Summary Fixes issues, nits and [expands test coverage](https://docs.google.com/document/d/116x7ITTTJQ6cTiwaGK831_f6Ox7XB3qyLiHxC3Cmf8w/edit#) for PR: elastic#140166 - Extends definition of `TimeUnit` type and its tests - Adds e2e test to test default values of Bulk Schedule flyout - Corrects copy as reported by @elastic/security-docs - Corrects validation for Interval field when editing rule schedule individually ### Checklist Delete any items that are not applicable to this PR. - [ ] Any text added follows [EUI's writing guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses sentence case text and includes [i18n support](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md) - [ ] [Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html) was added for features that require explanation or tutorials - [ ] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios - [ ] Any UI touched in this PR is usable by keyboard only (learn more about [keyboard accessibility](https://webaim.org/techniques/keyboard/)) - [ ] Any UI touched in this PR does not create any new axe failures (run axe in browser: [FF](https://addons.mozilla.org/en-US/firefox/addon/axe-devtools/), [Chrome](https://chrome.google.com/webstore/detail/axe-web-accessibility-tes/lhdoppojpmngadmnindnejefpokejbdd?hl=en-US)) - [ ] If a plugin configuration key changed, check if it needs to be allowlisted in the cloud and added to the [docker list](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker) - [ ] This renders correctly on smaller devices using a responsive layout. (You can test this [in your browser](https://www.browserstack.com/guide/responsive-testing-on-local-server)) - [ ] This was checked for [cross-browser compatibility](https://www.elastic.co/support/matrix#matrix_browsers) ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process) (cherry picked from commit 9738b04)
kibanamachine
added a commit
that referenced
this pull request
Sep 27, 2022
…ion (#141604) (#141946) ## Summary Fixes issues, nits and [expands test coverage](https://docs.google.com/document/d/116x7ITTTJQ6cTiwaGK831_f6Ox7XB3qyLiHxC3Cmf8w/edit#) for PR: #140166 - Extends definition of `TimeUnit` type and its tests - Adds e2e test to test default values of Bulk Schedule flyout - Corrects copy as reported by @elastic/security-docs - Corrects validation for Interval field when editing rule schedule individually ### Checklist Delete any items that are not applicable to this PR. - [ ] Any text added follows [EUI's writing guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses sentence case text and includes [i18n support](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md) - [ ] [Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html) was added for features that require explanation or tutorials - [ ] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios - [ ] Any UI touched in this PR is usable by keyboard only (learn more about [keyboard accessibility](https://webaim.org/techniques/keyboard/)) - [ ] Any UI touched in this PR does not create any new axe failures (run axe in browser: [FF](https://addons.mozilla.org/en-US/firefox/addon/axe-devtools/), [Chrome](https://chrome.google.com/webstore/detail/axe-web-accessibility-tes/lhdoppojpmngadmnindnejefpokejbdd?hl=en-US)) - [ ] If a plugin configuration key changed, check if it needs to be allowlisted in the cloud and added to the [docker list](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker) - [ ] This renders correctly on smaller devices using a responsive layout. (You can test this [in your browser](https://www.browserstack.com/guide/responsive-testing-on-local-server)) - [ ] This was checked for [cross-browser compatibility](https://www.elastic.co/support/matrix#matrix_browsers) ### For maintainers - [ ] This was checked for breaking API changes and was [labeled appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process) (cherry picked from commit 9738b04) Co-authored-by: Juan Pablo Djeredjian <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Addresses #2127 (internal)
Summary
Adds feature to bulk edit schedule of rules (interval -runs every- and lookback time)
Screen.Recording.2022-09-07.at.11.35.41.mov
Checklist