github-mirrors/kibana
1
0
Fork 0
mirror of https://github.com/elastic/kibana.git synced 2025-04-23 17:28:26 -04:00
Code Issues Projects Releases Packages Wiki Activity

[Security Solution] Reduce BrowserField to field spec (#187263)

Browse source 
## Summary

BrowserField is now FieldSpec, with an exception of one field. ("format")
This commit is contained in:
Luke G 2024-07-04 18:25:07 +02:00 committed by GitHub
parent 477b92444a
commit d823d5deef
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
14 changed files with 7 additions and 739 deletions
Download patch file Download diff file Expand all files Collapse all files

4
x-pack/packages/security-solution/data_table/components/data_table/column_headers/helpers.test.tsx
View file

@ -231,7 +231,6 @@ describe('helpers', () => {
esTypes: ['date'],
format: '',
id: '@timestamp',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
isSortable,
name: '@timestamp',
readFromDocValues: true,
@ -248,7 +247,6 @@ describe('helpers', () => {
esTypes: ['ip'],
format: '',
id: 'source.ip',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
isSortable,
name: 'source.ip',
schema: undefined,
@ -264,7 +262,6 @@ describe('helpers', () => {
esTypes: ['ip'],
format: '',
id: 'destination.ip',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
isSortable,
name: 'destination.ip',
schema: undefined,
@ -290,7 +287,6 @@ describe('helpers', () => {
esTypes: ['date'],
format: '',
id: '@timestamp',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
isSortable,
name: '@timestamp',
readFromDocValues: true,

47
x-pack/packages/security-solution/data_table/mock/mock_source.ts
View file

@ -8,25 +8,12 @@
import type { MappingRuntimeFields } from '@elastic/elasticsearch/lib/api/typesWithBodyKey';
import { BrowserFields } from '@kbn/timelines-plugin/common';
const DEFAULT_INDEX_PATTERN = [
'apm-*-transaction*',
'auditbeat-*',
'endgame-*',
'filebeat-*',
'logs-*',
'packetbeat-*',
'traces-apm*',
'winlogbeat-*',
'-*elastic-cloud-logs-*',
];
export const mockBrowserFields: BrowserFields = {
agent: {
fields: {
'agent.ephemeral_id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.ephemeral_id',
searchable: true,
type: 'string',
@ -35,7 +22,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.hostname': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.hostname',
searchable: true,
type: 'string',
@ -44,7 +30,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.id',
searchable: true,
type: 'string',
@ -53,7 +38,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.name',
searchable: true,
type: 'string',
@ -66,7 +50,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a0': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a0',
searchable: true,
type: 'string',
@ -75,7 +58,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a1': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a1',
searchable: true,
type: 'string',
@ -84,7 +66,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a2': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a2',
searchable: true,
type: 'string',
@ -97,7 +78,6 @@ export const mockBrowserFields: BrowserFields = {
'@timestamp': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: '@timestamp',
searchable: true,
type: 'date',
@ -110,7 +90,6 @@ export const mockBrowserFields: BrowserFields = {
esTypes: [],
searchable: true,
aggregatable: false,
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
message: {
name: 'message',
@ -119,7 +98,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: false,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -128,7 +106,6 @@ export const mockBrowserFields: BrowserFields = {
'client.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.address',
searchable: true,
type: 'string',
@ -137,7 +114,6 @@ export const mockBrowserFields: BrowserFields = {
'client.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.bytes',
searchable: true,
type: 'number',
@ -146,7 +122,6 @@ export const mockBrowserFields: BrowserFields = {
'client.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.domain',
searchable: true,
type: 'string',
@ -155,7 +130,6 @@ export const mockBrowserFields: BrowserFields = {
'client.geo.country_iso_code': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.geo.country_iso_code',
searchable: true,
type: 'string',
@ -168,7 +142,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.account.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.account.id',
searchable: true,
type: 'string',
@ -177,7 +150,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.availability_zone': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.availability_zone',
searchable: true,
type: 'string',
@ -190,7 +162,6 @@ export const mockBrowserFields: BrowserFields = {
'container.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.id',
searchable: true,
type: 'string',
@ -199,7 +170,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.name',
searchable: true,
type: 'string',
@ -208,7 +178,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.tag': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.tag',
searchable: true,
type: 'string',
@ -221,7 +190,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.address',
searchable: true,
type: 'string',
@ -230,7 +198,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.bytes',
searchable: true,
type: 'number',
@ -239,7 +206,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.domain',
searchable: true,
type: 'string',
@ -248,7 +214,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.ip',
searchable: true,
type: 'ip',
@ -257,7 +222,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.port',
searchable: true,
type: 'number',
@ -269,7 +233,6 @@ export const mockBrowserFields: BrowserFields = {
fields: {
'event.end': {
format: '',
indexes: DEFAULT_INDEX_PATTERN,
name: 'event.end',
searchable: true,
type: 'date',
@ -283,7 +246,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.category': {
name: 'event.category',
@ -292,7 +254,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.severity': {
name: 'event.severity',
@ -301,7 +262,6 @@ export const mockBrowserFields: BrowserFields = {
format: 'number',
searchable: true,
aggregatable: true,
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -314,7 +274,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -323,7 +282,6 @@ export const mockBrowserFields: BrowserFields = {
'source.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.ip',
searchable: true,
type: 'ip',
@ -332,7 +290,6 @@ export const mockBrowserFields: BrowserFields = {
'source.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.port',
searchable: true,
type: 'number',
@ -349,7 +306,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -358,7 +314,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.firstAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.firstAttributes',
searchable: true,
type: 'string',
@ -371,7 +326,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.secondAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.secondAttributes',
searchable: true,
type: 'string',
@ -384,7 +338,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.thirdAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.thirdAttributes',
searchable: true,
type: 'date',

210
x-pack/plugins/security_solution/public/common/components/drag_and_drop/__snapshots__/drag_drop_context_wrapper.test.tsx.snap generated
View file

@ -12,11 +12,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.ephemeral_id",
"searchable": true,
"type": "string",
@ -27,11 +22,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.hostname",
"searchable": true,
"type": "string",
@ -42,11 +32,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.id",
"searchable": true,
"type": "string",
@ -57,11 +42,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.name",
"searchable": true,
"type": "string",
@ -76,9 +56,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a0",
"searchable": true,
"type": "string",
@ -89,9 +66,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a1",
"searchable": true,
"type": "string",
@ -102,9 +76,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a2",
"searchable": true,
"type": "string",
@ -119,11 +90,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"date",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "@timestamp",
"readFromDocValues": true,
"searchable": true,
@ -132,11 +98,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"_id": Object {
"aggregatable": false,
"esTypes": Array [],
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "_id",
"searchable": true,
"type": "string",
@ -147,11 +108,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"text",
],
"format": "string",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "message",
"searchable": true,
"type": "string",
@ -166,11 +122,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.address",
"searchable": true,
"type": "string",
@ -181,11 +132,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.bytes",
"searchable": true,
"type": "number",
@ -196,11 +142,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.domain",
"searchable": true,
"type": "string",
@ -211,11 +152,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.geo.country_iso_code",
"searchable": true,
"type": "string",
@ -230,11 +166,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "cloud.account.id",
"searchable": true,
"type": "string",
@ -245,11 +176,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "cloud.availability_zone",
"searchable": true,
"type": "string",
@ -264,11 +190,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.id",
"searchable": true,
"type": "string",
@ -279,11 +200,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.image.name",
"searchable": true,
"type": "string",
@ -294,11 +210,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.image.tag",
"searchable": true,
"type": "string",
@ -313,11 +224,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.address",
"searchable": true,
"type": "string",
@ -328,11 +234,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.bytes",
"searchable": true,
"type": "number",
@ -343,11 +244,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.domain",
"searchable": true,
"type": "string",
@ -358,11 +254,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"ip",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.ip",
"searchable": true,
"type": "ip",
@ -373,11 +264,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.port",
"searchable": true,
"type": "number",
@ -392,17 +278,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.action",
"searchable": true,
"type": "string",
@ -413,17 +288,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.category",
"searchable": true,
"type": "string",
@ -434,17 +298,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"date",
],
"format": "",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.end",
"searchable": true,
"type": "date",
@ -455,17 +308,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.kind",
"searchable": true,
"type": "string",
@ -476,17 +318,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"long",
],
"format": "number",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.severity",
"searchable": true,
"type": "number",
@ -501,17 +332,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "host.name",
"searchable": true,
"type": "string",
@ -523,11 +343,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"nestedField.firstAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.firstAttributes",
"searchable": true,
"subType": Object {
@ -540,11 +355,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"nestedField.secondAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.secondAttributes",
"searchable": true,
"subType": Object {
@ -557,11 +367,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"nestedField.thirdAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.thirdAttributes",
"searchable": true,
"subType": Object {
@ -596,11 +401,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"ip",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "source.ip",
"searchable": true,
"type": "ip",
@ -611,11 +411,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "source.port",
"searchable": true,
"type": "number",
@ -630,11 +425,6 @@ exports[`DragDropContextWrapper rendering it renders against the snapshot 1`] =
"keyword",
],
"format": "string",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "user.name",
"searchable": true,
"type": "string",

1
x-pack/plugins/security_solution/public/common/components/event_details/summary_view.test.tsx
View file

@ -22,7 +22,6 @@ const hostIpValues = ['127.0.0.1', '::1', '10.1.2.3', '2001:0DB8:AC10:FE01::'];
const hostIpFieldFromBrowserField: BrowserField = {
aggregatable: true,
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
name: 'host.ip',
readFromDocValues: false,
searchable: true,

4
x-pack/plugins/security_solution/public/common/components/event_details/table/field_value_cell.test.tsx
View file

@ -22,7 +22,6 @@ const hostIpData: EventFieldsData = {
ariaRowindex: 35,
field: 'host.ip',
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
isObjectArray: false,
name: 'host.ip',
originalValue: ['127.0.0.1', '::1', '10.1.2.3', '2001:0DB8:AC10:FE01::'],
@ -87,7 +86,6 @@ describe('FieldValueCell', () => {
ariaRowindex: 50,
field: 'message',
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
isObjectArray: false,
name: 'message',
originalValue: ['Endpoint network event'],
@ -101,7 +99,6 @@ describe('FieldValueCell', () => {
const messageFieldFromBrowserField: BrowserField = {
aggregatable: false,
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
name: 'message',
readFromDocValues: false,
searchable: true,
@ -137,7 +134,6 @@ describe('FieldValueCell', () => {
const hostIpFieldFromBrowserField: BrowserField = {
aggregatable: true,
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
name: 'host.ip',
readFromDocValues: false,
searchable: true,

1
x-pack/plugins/security_solution/public/common/components/event_details/table/prevalence_cell.test.tsx
View file

@ -28,7 +28,6 @@ const hostIpValues = ['127.0.0.1', '::1', '10.1.2.3', '2001:0DB8:AC10:FE01::'];
const hostIpFieldFromBrowserField: BrowserField = {
aggregatable: true,
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
name: 'host.ip',
readFromDocValues: false,
searchable: true,

2
x-pack/plugins/security_solution/public/common/components/event_details/table/summary_value_cell.test.tsx
View file

@ -25,7 +25,6 @@ const hostIpValues = ['127.0.0.1', '::1', '10.1.2.3', '2001:0DB8:AC10:FE01::'];
const hostIpFieldFromBrowserField: BrowserField = {
aggregatable: true,
format: '',
indexes: ['auditbeat-*', 'filebeat-*', 'logs-*', 'winlogbeat-*'],
name: 'host.ip',
readFromDocValues: false,
searchable: true,
@ -56,7 +55,6 @@ const enrichedAgentStatusData: AlertSummaryRow['description'] = {
format: '',
type: '',
aggregatable: false,
indexes: [],
name: AGENT_STATUS_FIELD_NAME,
searchable: false,
readFromDocValues: false,

37
x-pack/plugins/security_solution/public/common/containers/source/mock.ts
View file

@ -7,7 +7,6 @@
import type { MappingRuntimeFieldType } from '@elastic/elasticsearch/lib/api/typesWithBodyKey';
import { flatten } from 'lodash';
import { DEFAULT_INDEX_PATTERN } from '../../../../common/constants';
import type { BrowserFields } from '../../../../common/search_strategy/index_fields';
export const mocksSource = {
@ -54,7 +53,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.ephemeral_id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.ephemeral_id',
searchable: true,
type: 'string',
@ -63,7 +61,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.hostname': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.hostname',
searchable: true,
type: 'string',
@ -72,7 +69,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.id',
searchable: true,
type: 'string',
@ -81,7 +77,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.name',
searchable: true,
type: 'string',
@ -94,7 +89,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a0': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a0',
searchable: true,
type: 'string',
@ -103,7 +97,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a1': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a1',
searchable: true,
type: 'string',
@ -112,7 +105,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a2': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a2',
searchable: true,
type: 'string',
@ -125,7 +117,6 @@ export const mockBrowserFields: BrowserFields = {
'@timestamp': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: '@timestamp',
searchable: true,
type: 'date',
@ -138,7 +129,6 @@ export const mockBrowserFields: BrowserFields = {
esTypes: [],
searchable: true,
aggregatable: false,
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
message: {
name: 'message',
@ -147,7 +137,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: false,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -156,7 +145,6 @@ export const mockBrowserFields: BrowserFields = {
'client.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.address',
searchable: true,
type: 'string',
@ -165,7 +153,6 @@ export const mockBrowserFields: BrowserFields = {
'client.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.bytes',
searchable: true,
type: 'number',
@ -174,7 +161,6 @@ export const mockBrowserFields: BrowserFields = {
'client.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.domain',
searchable: true,
type: 'string',
@ -183,7 +169,6 @@ export const mockBrowserFields: BrowserFields = {
'client.geo.country_iso_code': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.geo.country_iso_code',
searchable: true,
type: 'string',
@ -196,7 +181,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.account.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.account.id',
searchable: true,
type: 'string',
@ -205,7 +189,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.availability_zone': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.availability_zone',
searchable: true,
type: 'string',
@ -218,7 +201,6 @@ export const mockBrowserFields: BrowserFields = {
'container.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.id',
searchable: true,
type: 'string',
@ -227,7 +209,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.name',
searchable: true,
type: 'string',
@ -236,7 +217,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.tag': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.tag',
searchable: true,
type: 'string',
@ -249,7 +229,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.address',
searchable: true,
type: 'string',
@ -258,7 +237,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.bytes',
searchable: true,
type: 'number',
@ -267,7 +245,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.domain',
searchable: true,
type: 'string',
@ -276,7 +253,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.ip',
searchable: true,
type: 'ip',
@ -285,7 +261,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.port',
searchable: true,
type: 'number',
@ -297,7 +272,6 @@ export const mockBrowserFields: BrowserFields = {
fields: {
'event.end': {
format: '',
indexes: DEFAULT_INDEX_PATTERN,
name: 'event.end',
searchable: true,
type: 'date',
@ -311,7 +285,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.category': {
name: 'event.category',
@ -320,7 +293,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.severity': {
name: 'event.severity',
@ -329,7 +301,6 @@ export const mockBrowserFields: BrowserFields = {
format: 'number',
searchable: true,
aggregatable: true,
indexes: DEFAULT_INDEX_PATTERN,
},
'event.kind': {
name: 'event.kind',
@ -338,7 +309,6 @@ export const mockBrowserFields: BrowserFields = {
format: 'string',
searchable: true,
aggregatable: true,
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -351,7 +321,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -360,7 +329,6 @@ export const mockBrowserFields: BrowserFields = {
'source.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.ip',
searchable: true,
type: 'ip',
@ -369,7 +337,6 @@ export const mockBrowserFields: BrowserFields = {
'source.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.port',
searchable: true,
type: 'number',
@ -386,7 +353,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -395,7 +361,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.firstAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.firstAttributes',
searchable: true,
type: 'string',
@ -408,7 +373,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.secondAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.secondAttributes',
searchable: true,
type: 'string',
@ -421,7 +385,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.thirdAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.thirdAttributes',
searchable: true,
type: 'date',

1
x-pack/plugins/security_solution/public/sourcerer/containers/mocks.ts
View file

@ -30,7 +30,6 @@ export const mockSourcererScope: SelectedDataView = {
aggregatable: false,
esTypes: undefined,
format: undefined,
indexes: mockPatterns,
name: '_id',
searchable: true,
subType: undefined,

210
x-pack/plugins/security_solution/public/timelines/components/timeline/body/column_headers/__snapshots__/index.test.tsx.snap generated
View file

@ -13,11 +13,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.ephemeral_id",
"searchable": true,
"type": "string",
@ -28,11 +23,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.hostname",
"searchable": true,
"type": "string",
@ -43,11 +33,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.id",
"searchable": true,
"type": "string",
@ -58,11 +43,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "agent.name",
"searchable": true,
"type": "string",
@ -77,9 +57,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a0",
"searchable": true,
"type": "string",
@ -90,9 +67,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a1",
"searchable": true,
"type": "string",
@ -103,9 +77,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
],
"name": "auditd.data.a2",
"searchable": true,
"type": "string",
@ -120,11 +91,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"date",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "@timestamp",
"readFromDocValues": true,
"searchable": true,
@ -133,11 +99,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"_id": Object {
"aggregatable": false,
"esTypes": Array [],
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "_id",
"searchable": true,
"type": "string",
@ -148,11 +109,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"text",
],
"format": "string",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "message",
"searchable": true,
"type": "string",
@ -167,11 +123,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.address",
"searchable": true,
"type": "string",
@ -182,11 +133,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.bytes",
"searchable": true,
"type": "number",
@ -197,11 +143,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.domain",
"searchable": true,
"type": "string",
@ -212,11 +153,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "client.geo.country_iso_code",
"searchable": true,
"type": "string",
@ -231,11 +167,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "cloud.account.id",
"searchable": true,
"type": "string",
@ -246,11 +177,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "cloud.availability_zone",
"searchable": true,
"type": "string",
@ -265,11 +191,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.id",
"searchable": true,
"type": "string",
@ -280,11 +201,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.image.name",
"searchable": true,
"type": "string",
@ -295,11 +211,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "container.image.tag",
"searchable": true,
"type": "string",
@ -314,11 +225,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.address",
"searchable": true,
"type": "string",
@ -329,11 +235,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.bytes",
"searchable": true,
"type": "number",
@ -344,11 +245,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.domain",
"searchable": true,
"type": "string",
@ -359,11 +255,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"ip",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.ip",
"searchable": true,
"type": "ip",
@ -374,11 +265,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.port",
"searchable": true,
"type": "number",
@ -393,17 +279,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.action",
"searchable": true,
"type": "string",
@ -414,17 +289,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.category",
"searchable": true,
"type": "string",
@ -435,17 +299,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"date",
],
"format": "",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.end",
"searchable": true,
"type": "date",
@ -456,17 +309,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.kind",
"searchable": true,
"type": "string",
@ -477,17 +319,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"long",
],
"format": "number",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.severity",
"searchable": true,
"type": "number",
@ -502,17 +333,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "string",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "host.name",
"searchable": true,
"type": "string",
@ -524,11 +344,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"nestedField.firstAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.firstAttributes",
"searchable": true,
"subType": Object {
@ -541,11 +356,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"nestedField.secondAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.secondAttributes",
"searchable": true,
"subType": Object {
@ -558,11 +368,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"nestedField.thirdAttributes": Object {
"aggregatable": false,
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "nestedField.thirdAttributes",
"searchable": true,
"subType": Object {
@ -597,11 +402,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"ip",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "source.ip",
"searchable": true,
"type": "ip",
@ -612,11 +412,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"long",
],
"format": "",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "source.port",
"searchable": true,
"type": "number",
@ -631,11 +426,6 @@ exports[`ColumnHeaders rendering renders correctly against snapshot 1`] = `
"keyword",
],
"format": "string",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "user.name",
"searchable": true,
"type": "string",

52
x-pack/plugins/security_solution/public/timelines/components/timeline/body/column_headers/helpers.test.ts
View file

@ -108,7 +108,6 @@ describe('helpers', () => {
columnHeaderType: 'not-filtered',
format: '',
id: '@timestamp',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: '@timestamp',
readFromDocValues: true,
searchable: true,
@ -121,7 +120,6 @@ describe('helpers', () => {
columnHeaderType: 'not-filtered',
format: '',
id: 'source.ip',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.ip',
searchable: true,
type: 'ip',
@ -133,7 +131,6 @@ describe('helpers', () => {
columnHeaderType: 'not-filtered',
format: '',
id: 'destination.ip',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.ip',
searchable: true,
type: 'ip',
@ -162,7 +159,6 @@ describe('helpers', () => {
columnHeaderType: 'not-filtered',
esTypes: [],
id: '_id',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
initialWidth: 180,
name: '_id',
searchable: true,
@ -187,18 +183,6 @@ describe('helpers', () => {
aggregatable: true,
esTypes: ['keyword'],
format: 'string',
indexes: [
'-*elastic-cloud-logs-*',
'.alerts-security.alerts-default',
'apm-*-transaction*',
'auditbeat-*',
'endgame-*',
'filebeat-*',
'logs-*',
'packetbeat-*',
'traces-apm*',
'winlogbeat-*',
],
name: 'test_field_1',
readFromDocValues: true,
searchable: true,
@ -215,18 +199,6 @@ describe('helpers', () => {
esTypes: ['keyword'],
format: 'string',
id: 'test_field_1',
indexes: [
'-*elastic-cloud-logs-*',
'.alerts-security.alerts-default',
'apm-*-transaction*',
'auditbeat-*',
'endgame-*',
'filebeat-*',
'logs-*',
'packetbeat-*',
'traces-apm*',
'winlogbeat-*',
],
initialWidth: 180,
name: 'test_field_1',
readFromDocValues: true,
@ -252,18 +224,6 @@ describe('helpers', () => {
aggregatable: true,
esTypes: ['keyword'],
format: 'string',
indexes: [
'-*elastic-cloud-logs-*',
'.alerts-security.alerts-default',
'apm-*-transaction*',
'auditbeat-*',
'endgame-*',
'filebeat-*',
'logs-*',
'packetbeat-*',
'traces-apm*',
'winlogbeat-*',
],
name: 'foo.bar',
readFromDocValues: true,
searchable: true,
@ -280,18 +240,6 @@ describe('helpers', () => {
esTypes: ['keyword'],
format: 'string',
id: 'foo.bar',
indexes: [
'-*elastic-cloud-logs-*',
'.alerts-security.alerts-default',
'apm-*-transaction*',
'auditbeat-*',
'endgame-*',
'filebeat-*',
'logs-*',
'packetbeat-*',
'traces-apm*',
'winlogbeat-*',
],
initialWidth: 180,
name: 'foo.bar',
readFromDocValues: true,

121
x-pack/plugins/security_solution/public/timelines/components/timeline/tabs/shared/__snapshots__/use_timeline_columns.test.ts.snap generated
View file

@ -10,11 +10,6 @@ Array [
],
"format": "",
"id": "@timestamp",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 190,
"name": "@timestamp",
"readFromDocValues": true,
@ -29,11 +24,6 @@ Array [
],
"format": "string",
"id": "message",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 180,
"name": "message",
"searchable": true,
@ -47,17 +37,6 @@ Array [
],
"format": "string",
"id": "event.category",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"initialWidth": 180,
"name": "event.category",
"searchable": true,
@ -71,17 +50,6 @@ Array [
],
"format": "string",
"id": "event.action",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"initialWidth": 180,
"name": "event.action",
"searchable": true,
@ -95,17 +63,6 @@ Array [
],
"format": "string",
"id": "host.name",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"initialWidth": 180,
"name": "host.name",
"searchable": true,
@ -119,11 +76,6 @@ Array [
],
"format": "",
"id": "source.ip",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 180,
"name": "source.ip",
"searchable": true,
@ -137,11 +89,6 @@ Array [
],
"format": "",
"id": "destination.ip",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 180,
"name": "destination.ip",
"searchable": true,
@ -155,11 +102,6 @@ Array [
],
"format": "string",
"id": "user.name",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 180,
"name": "user.name",
"searchable": true,
@ -178,11 +120,6 @@ Array [
],
"format": "",
"id": "@timestamp",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 215,
"name": "@timestamp",
"readFromDocValues": true,
@ -197,11 +134,6 @@ Array [
],
"format": "string",
"id": "message",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 360,
"name": "message",
"searchable": true,
@ -215,17 +147,6 @@ Array [
],
"format": "string",
"id": "event.category",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.category",
"searchable": true,
"type": "string",
@ -238,17 +159,6 @@ Array [
],
"format": "string",
"id": "event.action",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "event.action",
"searchable": true,
"type": "string",
@ -261,17 +171,6 @@ Array [
],
"format": "string",
"id": "host.name",
"indexes": Array [
"apm-*-transaction*",
"auditbeat-*",
"endgame-*",
"filebeat-*",
"logs-*",
"packetbeat-*",
"traces-apm*",
"winlogbeat-*",
"-*elastic-cloud-logs-*",
],
"name": "host.name",
"searchable": true,
"type": "string",
@ -284,11 +183,6 @@ Array [
],
"format": "",
"id": "source.ip",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "source.ip",
"searchable": true,
"type": "ip",
@ -301,11 +195,6 @@ Array [
],
"format": "",
"id": "destination.ip",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "destination.ip",
"searchable": true,
"type": "ip",
@ -318,11 +207,6 @@ Array [
],
"format": "string",
"id": "user.name",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"name": "user.name",
"searchable": true,
"type": "string",
@ -340,11 +224,6 @@ Array [
],
"format": "",
"id": "source.ip",
"indexes": Array [
"auditbeat",
"filebeat",
"packetbeat",
],
"initialWidth": 150,
"name": "source.ip",
"searchable": true,

21
x-pack/plugins/timelines/common/search_strategy/index_fields/index.ts
View file

@ -5,11 +5,9 @@
* 2.0.
*/
import type { IFieldSubType } from '@kbn/es-query';
import type { IEsSearchRequest, IEsSearchResponse } from '@kbn/search-types';
import type { MappingRuntimeFields } from '@elastic/elasticsearch/lib/api/typesWithBodyKey';
import type { FieldSpec } from '@kbn/data-plugin/common';
import type { RuntimeField } from '@kbn/data-views-plugin/common';
import type { Maybe } from '../common';
@ -73,19 +71,10 @@ export interface IndexFieldsStrategyResponse extends IEsSearchResponse {
* everything you need via the `fields` property on the data view
* you are working with? Or perhaps you need a description for a
* particular field? Consider using the EcsFlat module from `@kbn/ecs`
* NOTE: This "Omit" type is necesssary as some places expect the format field to be a string,
* this will be aligned with the spec near term.
*/
export interface BrowserField {
aggregatable: boolean;
format: string;
indexes: string[]; // FIXME: missing in FieldSpec
name: string;
searchable: boolean;
type: string;
esTypes?: string[];
subType?: IFieldSubType; // not sure
readFromDocValues: boolean;
runtimeField?: RuntimeField;
}
export type BrowserField = Omit<FieldSpec, 'format'> & { format?: string };
type FieldCategoryName = string;
@ -93,6 +82,10 @@ export interface FieldCategory {
fields: Record<string, Partial<BrowserField>>;
}
export interface FieldCategory {
fields: Record<string, Partial<BrowserField>>;
}
/**
* @deprecated use fields list on dataview / "indexPattern"
* about to use browserFields? Reconsider! Maybe you can accomplish

35
x-pack/plugins/timelines/public/mock/browser_fields.ts
View file

@ -311,7 +311,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.ephemeral_id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.ephemeral_id',
searchable: true,
type: 'string',
@ -319,7 +318,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.hostname': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.hostname',
searchable: true,
type: 'string',
@ -327,7 +325,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.id',
searchable: true,
type: 'string',
@ -335,7 +332,6 @@ export const mockBrowserFields: BrowserFields = {
'agent.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'agent.name',
searchable: true,
type: 'string',
@ -347,7 +343,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a0': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a0',
searchable: true,
type: 'string',
@ -355,7 +350,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a1': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a1',
searchable: true,
type: 'string',
@ -363,7 +357,6 @@ export const mockBrowserFields: BrowserFields = {
'auditd.data.a2': {
aggregatable: true,
format: '',
indexes: ['auditbeat'],
name: 'auditd.data.a2',
searchable: true,
type: 'string',
@ -375,7 +368,6 @@ export const mockBrowserFields: BrowserFields = {
'@timestamp': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: '@timestamp',
searchable: true,
type: 'date',
@ -385,7 +377,6 @@ export const mockBrowserFields: BrowserFields = {
type: 'string',
searchable: true,
aggregatable: false,
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
message: {
name: 'message',
@ -393,7 +384,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: false,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -402,7 +392,6 @@ export const mockBrowserFields: BrowserFields = {
'client.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.address',
searchable: true,
type: 'string',
@ -410,7 +399,6 @@ export const mockBrowserFields: BrowserFields = {
'client.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.bytes',
searchable: true,
type: 'number',
@ -418,7 +406,6 @@ export const mockBrowserFields: BrowserFields = {
'client.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.domain',
searchable: true,
type: 'string',
@ -426,7 +413,6 @@ export const mockBrowserFields: BrowserFields = {
'client.geo.country_iso_code': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'client.geo.country_iso_code',
searchable: true,
type: 'string',
@ -438,7 +424,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.account.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.account.id',
searchable: true,
type: 'string',
@ -446,7 +431,6 @@ export const mockBrowserFields: BrowserFields = {
'cloud.availability_zone': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'cloud.availability_zone',
searchable: true,
type: 'string',
@ -458,7 +442,6 @@ export const mockBrowserFields: BrowserFields = {
'container.id': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.id',
searchable: true,
type: 'string',
@ -466,7 +449,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.name': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.name',
searchable: true,
type: 'string',
@ -474,7 +456,6 @@ export const mockBrowserFields: BrowserFields = {
'container.image.tag': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'container.image.tag',
searchable: true,
type: 'string',
@ -486,7 +467,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.address': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.address',
searchable: true,
type: 'string',
@ -494,7 +474,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.bytes': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.bytes',
searchable: true,
type: 'number',
@ -502,7 +481,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.domain': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.domain',
searchable: true,
type: 'string',
@ -510,7 +488,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.ip',
searchable: true,
type: 'ip',
@ -518,7 +495,6 @@ export const mockBrowserFields: BrowserFields = {
'destination.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'destination.port',
searchable: true,
type: 'long',
@ -529,7 +505,6 @@ export const mockBrowserFields: BrowserFields = {
fields: {
'event.end': {
format: '',
indexes: DEFAULT_INDEX_PATTERN,
name: 'event.end',
searchable: true,
type: 'date',
@ -541,7 +516,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.category': {
name: 'event.category',
@ -549,7 +523,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
'event.severity': {
name: 'event.severity',
@ -557,7 +530,6 @@ export const mockBrowserFields: BrowserFields = {
format: 'number',
searchable: true,
aggregatable: true,
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -569,7 +541,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: DEFAULT_INDEX_PATTERN,
},
},
},
@ -578,7 +549,6 @@ export const mockBrowserFields: BrowserFields = {
'source.ip': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.ip',
searchable: true,
type: 'ip',
@ -586,7 +556,6 @@ export const mockBrowserFields: BrowserFields = {
'source.port': {
aggregatable: true,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'source.port',
searchable: true,
type: 'long',
@ -601,7 +570,6 @@ export const mockBrowserFields: BrowserFields = {
searchable: true,
aggregatable: true,
format: 'string',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
},
},
},
@ -610,7 +578,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.firstAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.firstAttributes',
searchable: true,
type: 'string',
@ -623,7 +590,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.secondAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.secondAttributes',
searchable: true,
type: 'string',
@ -636,7 +602,6 @@ export const mockBrowserFields: BrowserFields = {
'nestedField.thirdAttributes': {
aggregatable: false,
format: '',
indexes: ['auditbeat', 'filebeat', 'packetbeat'],
name: 'nestedField.thirdAttributes',
searchable: true,
type: 'date',