mirror of
https://github.com/elastic/kibana.git
synced 2025-06-27 18:51:07 -04:00
[Incident Management] Investigation Guide backend (#216377)
## Summary Related to #213024. This adds the necessary backend schema changes for the investigation guide. Note this PR depends on #216292 and should not be merged before it. --------- Co-authored-by: Panagiota Mitsopoulou <giota85@gmail.com> Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com> Co-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com> Co-authored-by: Panagiota Mitsopoulou <panagiota.mitsopoulou@elastic.co> Co-authored-by: Christos Nasikas <xristosnasikas@gmail.com>
This commit is contained in:
Justin Kambic
GitHub
parent
a63f793a2c
commit
8ee1cebadf
45 changed files with 1018 additions and 20 deletions
|
|
@ -1111,6 +1111,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -2210,7 +2223,21 @@
|
|||
],
|
||||
"type": "object"
|
||||
},
|
||||
"maxItems": 10,
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"maxLength": 1000,
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -2879,6 +2906,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -3821,7 +3861,21 @@
|
|||
],
|
||||
"type": "object"
|
||||
},
|
||||
"maxItems": 10,
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"maxLength": 1000,
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -4221,6 +4275,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -6158,6 +6225,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
|
|||
|
|
@ -1111,6 +1111,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -2210,7 +2223,21 @@
|
|||
],
|
||||
"type": "object"
|
||||
},
|
||||
"maxItems": 10,
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"maxLength": 1000,
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -2879,6 +2906,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -3821,7 +3861,21 @@
|
|||
],
|
||||
"type": "object"
|
||||
},
|
||||
"maxItems": 10,
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"maxLength": 1000,
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -4221,6 +4275,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
@ -6158,6 +6225,19 @@
|
|||
"type": "object"
|
||||
},
|
||||
"type": "array"
|
||||
},
|
||||
"investigation_guide": {
|
||||
"additionalProperties": false,
|
||||
"properties": {
|
||||
"blob": {
|
||||
"description": "User-created content that describes alert causes and remdiation.",
|
||||
"type": "string"
|
||||
}
|
||||
},
|
||||
"required": [
|
||||
"blob"
|
||||
],
|
||||
"type": "object"
|
||||
}
|
||||
},
|
||||
"type": "object"
|
||||
|
|
|
|||
|
|
@ -953,6 +953,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -1785,7 +1794,17 @@ paths:
|
|||
type: string
|
||||
required:
|
||||
- id
|
||||
maxItems: 10
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
maxLength: 1000
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -2330,6 +2349,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -3038,7 +3066,17 @@ paths:
|
|||
type: string
|
||||
required:
|
||||
- id
|
||||
maxItems: 10
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
maxLength: 1000
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
flapping:
|
||||
additionalProperties: false
|
||||
description: When flapping detection is turned on, alerts that switch quickly between active and recovered states are identified as “flapping” and notifications are reduced.
|
||||
|
|
@ -3344,6 +3382,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -4747,6 +4794,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
|
|||
|
|
@ -1347,6 +1347,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -2179,7 +2188,17 @@ paths:
|
|||
type: string
|
||||
required:
|
||||
- id
|
||||
maxItems: 10
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
maxLength: 1000
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -2724,6 +2743,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -3432,7 +3460,17 @@ paths:
|
|||
type: string
|
||||
required:
|
||||
- id
|
||||
maxItems: 10
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
maxLength: 1000
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
flapping:
|
||||
additionalProperties: false
|
||||
description: When flapping detection is turned on, alerts that switch quickly between active and recovered states are identified as “flapping” and notifications are reduced.
|
||||
|
|
@ -3738,6 +3776,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
@ -5141,6 +5188,15 @@ paths:
|
|||
required:
|
||||
- id
|
||||
type: array
|
||||
investigation_guide:
|
||||
additionalProperties: false
|
||||
type: object
|
||||
properties:
|
||||
blob:
|
||||
description: User-created content that describes alert causes and remdiation.
|
||||
type: string
|
||||
required:
|
||||
- blob
|
||||
consumer:
|
||||
description: 'The name of the application or feature that owns the rule. For example: `alerts`, `apm`, `discover`, `infrastructure`, `logs`, `metrics`, `ml`, `monitoring`, `securitySolution`, `siem`, `stackAlerts`, or `uptime`.'
|
||||
type: string
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue