# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Remove outdated Maps video
(#161991)](https://github.com/elastic/kibana/pull/161991)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"James
Rodewig","email":"james.rodewig@elastic.co"},"sourceCommit":{"committedDate":"2023-07-25T10:08:21Z","message":"[DOCS]
Remove outdated Maps video (#161991)\n\n- Removes a video from the
[Maps](https://www.elastic.co/guide/en/kibana/current/maps.html) docs.
The video's UI is outdated. There are no current plans to update the
video.\r\n- Adds a comment to the [Make dashboards
interactive](https://www.elastic.co/guide/en/kibana/current/drilldowns.html).
This video is slightly outdated, but we're leaving it in at the request
of the dev team.\r\n\r\nCloses
https://github.com/elastic/platform-docs-team/issues/131","sha":"1c3f4a8543ab24c994dbc1d061e047a9c7e9bef3","branchLabelMapping":{"^v8.10.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Docs","Team:Presentation","release_note:skip","docs","Feature:Maps","v8.8.2","v8.10.0","v8.9.1"],"number":161991,"url":"https://github.com/elastic/kibana/pull/161991","mergeCommit":{"message":"[DOCS]
Remove outdated Maps video (#161991)\n\n- Removes a video from the
[Maps](https://www.elastic.co/guide/en/kibana/current/maps.html) docs.
The video's UI is outdated. There are no current plans to update the
video.\r\n- Adds a comment to the [Make dashboards
interactive](https://www.elastic.co/guide/en/kibana/current/drilldowns.html).
This video is slightly outdated, but we're leaving it in at the request
of the dev team.\r\n\r\nCloses
https://github.com/elastic/platform-docs-team/issues/131","sha":"1c3f4a8543ab24c994dbc1d061e047a9c7e9bef3"}},"sourceBranch":"main","suggestedTargetBranches":["8.8","8.9"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.2","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.10.0","labelRegex":"^v8.10.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/161991","number":161991,"mergeCommit":{"message":"[DOCS]
Remove outdated Maps video (#161991)\n\n- Removes a video from the
[Maps](https://www.elastic.co/guide/en/kibana/current/maps.html) docs.
The video's UI is outdated. There are no current plans to update the
video.\r\n- Adds a comment to the [Make dashboards
interactive](https://www.elastic.co/guide/en/kibana/current/drilldowns.html).
This video is slightly outdated, but we're leaving it in at the request
of the dev team.\r\n\r\nCloses
https://github.com/elastic/platform-docs-team/issues/131","sha":"1c3f4a8543ab24c994dbc1d061e047a9c7e9bef3"}},{"branch":"8.9","label":"v8.9.1","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->
Co-authored-by: James Rodewig <james.rodewig@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [Update tsvb.asciidoc to correct typo
(#159551)](https://github.com/elastic/kibana/pull/159551)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Carly
Richmond","email":"74931905+carlyrichmond@users.noreply.github.com"},"sourceCommit":{"committedDate":"2023-06-13T12:53:16Z","message":"Update
tsvb.asciidoc to correct typo
(#159551)","sha":"ad2593b7b424b65ef04a83854352412027be9b6c","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","docs","v8.9.0","v8.8.1"],"number":159551,"url":"https://github.com/elastic/kibana/pull/159551","mergeCommit":{"message":"Update
tsvb.asciidoc to correct typo
(#159551)","sha":"ad2593b7b424b65ef04a83854352412027be9b6c"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/159551","number":159551,"mergeCommit":{"message":"Update
tsvb.asciidoc to correct typo
(#159551)","sha":"ad2593b7b424b65ef04a83854352412027be9b6c"}},{"branch":"8.8","label":"v8.8.1","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->
Co-authored-by: Carly Richmond <74931905+carlyrichmond@users.noreply.github.com>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Fix typo in AIOps Labs
(#159045)](https://github.com/elastic/kibana/pull/159045)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-06-05T21:52:44Z","message":"[DOCS]
Fix typo in AIOps Labs
(#159045)","sha":"bfdb4e1d686c9784775ef7679a3949337511762c","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":[":ml","release_note:skip","docs","backport:prev-minor","v8.9.0"],"number":159045,"url":"https://github.com/elastic/kibana/pull/159045","mergeCommit":{"message":"[DOCS]
Fix typo in AIOps Labs
(#159045)","sha":"bfdb4e1d686c9784775ef7679a3949337511762c"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/159045","number":159045,"mergeCommit":{"message":"[DOCS]
Fix typo in AIOps Labs
(#159045)","sha":"bfdb4e1d686c9784775ef7679a3949337511762c"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Allow users authenticated with API keys to manage alerting
rules (#158428)](https://github.com/elastic/kibana/pull/158428)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-25T17:32:11Z","message":"[DOCS]
Allow users authenticated with API keys to manage alerting rules
(#158428)","sha":"4cf817a1abb3ddd657c7c11d75c5bd7f9e8aed27","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Feature:Alerting","release_note:skip","Team:ResponseOps","docs","backport:prev-minor","v8.9.0","v8.8.1"],"number":158428,"url":"https://github.com/elastic/kibana/pull/158428","mergeCommit":{"message":"[DOCS]
Allow users authenticated with API keys to manage alerting rules
(#158428)","sha":"4cf817a1abb3ddd657c7c11d75c5bd7f9e8aed27"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158428","number":158428,"mergeCommit":{"message":"[DOCS]
Allow users authenticated with API keys to manage alerting rules
(#158428)","sha":"4cf817a1abb3ddd657c7c11d75c5bd7f9e8aed27"}},{"branch":"8.8","label":"v8.8.1","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Clarify support for data views in stack rules
(#158431)](https://github.com/elastic/kibana/pull/158431)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-25T14:53:57Z","message":"[DOCS]
Clarify support for data views in stack rules
(#158431)","sha":"4981f37014829f26514067d2570d7f992c6a76ef","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Feature:Alerting","release_note:skip","Team:ResponseOps","docs","backport:prev-minor","v8.9.0"],"number":158431,"url":"https://github.com/elastic/kibana/pull/158431","mergeCommit":{"message":"[DOCS]
Clarify support for data views in stack rules
(#158431)","sha":"4981f37014829f26514067d2570d7f992c6a76ef"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158431","number":158431,"mergeCommit":{"message":"[DOCS]
Clarify support for data views in stack rules
(#158431)","sha":"4981f37014829f26514067d2570d7f992c6a76ef"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Replace description attributes with frontmatter for migration
(#158126)](https://github.com/elastic/kibana/pull/158126)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-24T15:16:43Z","message":"[DOCS]
Replace description attributes with frontmatter for migration
(#158126)","sha":"668968b758cb1e8717ae640e0c318509ec133322","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Docs","release_note:skip","docs","v8.8.0","v8.9.0"],"number":158126,"url":"https://github.com/elastic/kibana/pull/158126","mergeCommit":{"message":"[DOCS]
Replace description attributes with frontmatter for migration
(#158126)","sha":"668968b758cb1e8717ae640e0c318509ec133322"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158126","number":158126,"mergeCommit":{"message":"[DOCS]
Replace description attributes with frontmatter for migration
(#158126)","sha":"668968b758cb1e8717ae640e0c318509ec133322"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Maintenance window column in alerts tables
(#158125)](https://github.com/elastic/kibana/pull/158125)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-23T17:49:18Z","message":"[DOCS]
Maintenance window column in alerts tables
(#158125)","sha":"1b71d2ca3c7b0492e88f44c70ab08f60acb47435","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Feature:Alerting","release_note:skip","Team:ResponseOps","docs","backport:prev-minor","v8.8.0","v8.9.0"],"number":158125,"url":"https://github.com/elastic/kibana/pull/158125","mergeCommit":{"message":"[DOCS]
Maintenance window column in alerts tables
(#158125)","sha":"1b71d2ca3c7b0492e88f44c70ab08f60acb47435"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158125","number":158125,"mergeCommit":{"message":"[DOCS]
Maintenance window column in alerts tables
(#158125)","sha":"1b71d2ca3c7b0492e88f44c70ab08f60acb47435"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Conditional actions in Kibana alerting summary
(#158045)](https://github.com/elastic/kibana/pull/158045)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-23T17:50:17Z","message":"[DOCS]
Conditional actions in Kibana alerting summary
(#158045)","sha":"c5a1d6b5f45207767ab6f2e0acb5bc8134468ff2","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Feature:Alerting","release_note:skip","Team:ResponseOps","docs","backport:prev-minor","v8.8.0","v8.9.0"],"number":158045,"url":"https://github.com/elastic/kibana/pull/158045","mergeCommit":{"message":"[DOCS]
Conditional actions in Kibana alerting summary
(#158045)","sha":"c5a1d6b5f45207767ab6f2e0acb5bc8134468ff2"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158045","number":158045,"mergeCommit":{"message":"[DOCS]
Conditional actions in Kibana alerting summary
(#158045)","sha":"c5a1d6b5f45207767ab6f2e0acb5bc8134468ff2"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Adds log pattern analysis in Discover docs
(#158059)](https://github.com/elastic/kibana/pull/158059)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"István Zoltán
Szabó","email":"szabosteve@gmail.com"},"sourceCommit":{"committedDate":"2023-05-22T10:34:15Z","message":"[DOCS]
Adds log pattern analysis in Discover docs (#158059)\n\nCo-authored-by:
gchaps
<33642766+gchaps@users.noreply.github.com>","sha":"a3c940f0cdcdfec46eb5a916be67e557d36a4b59","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":[":ml","release_note:skip","docs","v8.8.0","v8.9.0"],"number":158059,"url":"https://github.com/elastic/kibana/pull/158059","mergeCommit":{"message":"[DOCS]
Adds log pattern analysis in Discover docs (#158059)\n\nCo-authored-by:
gchaps
<33642766+gchaps@users.noreply.github.com>","sha":"a3c940f0cdcdfec46eb5a916be67e557d36a4b59"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/158059","number":158059,"mergeCommit":{"message":"[DOCS]
Adds log pattern analysis in Discover docs (#158059)\n\nCo-authored-by:
gchaps
<33642766+gchaps@users.noreply.github.com>","sha":"a3c940f0cdcdfec46eb5a916be67e557d36a4b59"}}]}]
BACKPORT-->
Co-authored-by: István Zoltán Szabó <szabosteve@gmail.com>
This PR adds content for Discover, Dashboard, ML, and more.
---------
Co-authored-by: István Zoltán Szabó <szabosteve@gmail.com>
Co-authored-by: hendry-lim <48344515+hendry-lim@users.noreply.github.com>
Co-authored-by: lcawl <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Maintenance windows
(#157806)](https://github.com/elastic/kibana/pull/157806)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Lisa
Cawley","email":"lcawley@elastic.co"},"sourceCommit":{"committedDate":"2023-05-17T18:01:40Z","message":"[DOCS]
Maintenance windows
(#157806)","sha":"93b15b14e519c42877ce03472409ce7cc017e0b1","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Feature:Alerting","release_note:skip","Team:ResponseOps","docs","backport:prev-minor","v8.8.0","v8.9.0"],"number":157806,"url":"https://github.com/elastic/kibana/pull/157806","mergeCommit":{"message":"[DOCS]
Maintenance windows
(#157806)","sha":"93b15b14e519c42877ce03472409ce7cc017e0b1"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/157806","number":157806,"mergeCommit":{"message":"[DOCS]
Maintenance windows
(#157806)","sha":"93b15b14e519c42877ce03472409ce7cc017e0b1"}}]}]
BACKPORT-->
Co-authored-by: Lisa Cawley <lcawley@elastic.co>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[DOCS] Adds drag & drop to Discover
(#157340)](https://github.com/elastic/kibana/pull/157340)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT
[{"author":{"name":"gchaps","email":"33642766+gchaps@users.noreply.github.com"},"sourceCommit":{"committedDate":"2023-05-16T22:35:47Z","message":"[DOCS]
Adds drag & drop to Discover (#157340)\n\n## Summary\r\n\r\nThis PR adds
documentation for:\r\n\r\n- Drag and drop from Available Fields
list\r\n- Wildcards in field searches\r\n- All sources and matching
sources in Create Data
View","sha":"7cab4edab747eb3cd08fc085d1c9f00c42db7ff7","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Docs","release_note:skip","v8.8.0","v8.9.0"],"number":157340,"url":"https://github.com/elastic/kibana/pull/157340","mergeCommit":{"message":"[DOCS]
Adds drag & drop to Discover (#157340)\n\n## Summary\r\n\r\nThis PR adds
documentation for:\r\n\r\n- Drag and drop from Available Fields
list\r\n- Wildcards in field searches\r\n- All sources and matching
sources in Create Data
View","sha":"7cab4edab747eb3cd08fc085d1c9f00c42db7ff7"}},"sourceBranch":"main","suggestedTargetBranches":["8.8"],"targetPullRequestStates":[{"branch":"8.8","label":"v8.8.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/157340","number":157340,"mergeCommit":{"message":"[DOCS]
Adds drag & drop to Discover (#157340)\n\n## Summary\r\n\r\nThis PR adds
documentation for:\r\n\r\n- Drag and drop from Available Fields
list\r\n- Wildcards in field searches\r\n- All sources and matching
sources in Create Data
View","sha":"7cab4edab747eb3cd08fc085d1c9f00c42db7ff7"}}]}] BACKPORT-->
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
# Backport
This will backport the following commits from `main` to `8.8`:
- [[ResponseOps][docs] add docs for new mustache lambdas and asJSON for
array (#155417)](https://github.com/elastic/kibana/pull/155417)
<!--- Backport version: 8.9.7 -->
### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)
<!--BACKPORT [{"author":{"name":"Patrick
Mueller","email":"patrick.mueller@elastic.co"},"sourceCommit":{"committedDate":"2023-05-14T18:39:25Z","message":"[ResponseOps][docs]
add docs for new mustache lambdas and asJSON for array
(#155417)\n\nresolves:
https://github.com/elastic/kibana/issues/155408\r\n\r\n##
Summary\r\n\r\nadds doc for function added in [adds mustache lambdas
and\r\narray.asJSON](https://github.com/elastic/kibana/pull/150572)","sha":"120fa44afd6b87764d114475caa97d862c55f343","branchLabelMapping":{"^v8.9.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Feature:Actions","Team:ResponseOps","docs","backport:prev-minor","v8.9.0"],"number":155417,"url":"https://github.com/elastic/kibana/pull/155417","mergeCommit":{"message":"[ResponseOps][docs]
add docs for new mustache lambdas and asJSON for array
(#155417)\n\nresolves:
https://github.com/elastic/kibana/issues/155408\r\n\r\n##
Summary\r\n\r\nadds doc for function added in [adds mustache lambdas
and\r\narray.asJSON](https://github.com/elastic/kibana/pull/150572)","sha":"120fa44afd6b87764d114475caa97d862c55f343"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v8.9.0","labelRegex":"^v8.9.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/155417","number":155417,"mergeCommit":{"message":"[ResponseOps][docs]
add docs for new mustache lambdas and asJSON for array
(#155417)\n\nresolves:
https://github.com/elastic/kibana/issues/155408\r\n\r\n##
Summary\r\n\r\nadds doc for function added in [adds mustache lambdas
and\r\narray.asJSON](https://github.com/elastic/kibana/pull/150572)","sha":"120fa44afd6b87764d114475caa97d862c55f343"}}]}]
BACKPORT-->
Co-authored-by: Patrick Mueller <patrick.mueller@elastic.co>
resolves https://github.com/elastic/kibana/issues/142874
The alerting framework now generates an alert UUID for every alert it
creates. The UUID will be reused for alerts which continue to be active
on subsequent runs, until the alert recovers. When the same alert (alert
instance id) becomes active again, a new UUID will be generated. These
UUIDs then identify a "span" of events for a single alert.
The rule registry plugin was already adding these UUIDs to it's own
alerts-as-data indices, and that code has now been changed to make use
of the new UUID the alerting framework generates.
- adds property in the rule task state
`alertInstances[alertInstanceId].meta.uuid`; this is where the alert
UUID is persisted across runs
- adds a new `Alert` method getUuid(): string` that can be used by rule
executors to obtain the UUID of the alert they just retrieved from the
factory; the rule registry uses this to get the UUID generated by the
alerting framework
- for the event log, adds the property `kibana.alert.uuid` to
`*-instance` event log events; this is the same field the rule registry
writes into the alerts-as-data indices
- various changes to tests to accommodate new UUID data / methods
- migrates the UUID previous stored with lifecycle alerts in the alert
state, via the rule registry *INTO* the new `meta.uuid` field in the
existing alert state.
## Summary
Add Elastic Agent as another way to collect monitoring data.
This work is tracked by
https://github.com/elastic/observability-docs/issues/2602.
There will be additional PRs to address changes required to monitoring
docs for other stack components. TBH, it pains me a bit to see how many
places users need to go to find info about stack monitoring, but fixing
that problem is not in scope for these updates unfortunately. :-/
Please respond to questions addressed to reviewers.
### Checklist
Delete any items that are not applicable to this PR.
- [x] Any text added follows [EUI's writing
guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses
sentence case text and includes [i18n
support](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md)
### To Do before merging
- [x] Remove questions to reviewers.
---------
Co-authored-by: Kevin Lacabane <klacabane@gmail.com>
closes#149338
## Summary
Sets refresh parameter to false in session create, update, and
invalidate. Previously refresh was set to 'wait_for' (or 'true' in the
case of invalidating by query).
### Tests
Several unit tests and functional tests have been updated to reflect the
change in test snapshots and to manually refresh the session index in
order to complete testing. The bulk of the test changes reside in the
[concurrent session limit
suite](66a43be28c/x-pack/test/security_api_integration/tests/session_concurrent_limit/global_limit.ts).
Flaky Test Runner for relevant test suites:
https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/1984
### Documentation
Adds a note to the session-management ascii doc to document a known
limitation of enforcing the concurrent sessions limit...
```
NOTE: Due to the rate at which session information is refreshed, there might be a few seconds where the concurrent session limit is not enforced.
This is something to consider for use cases where it is common to create multiple sessions simultaneously.
```
---------
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
Closes#147049Closes#149897
Migrates authorization and audit logic from the Saved Objects Repository
to the Saved Objects Security Extension. This is achieved by
implementing action-specific authorization methods within the security
extension. The SO repository is no longer responsible for making any
authorization decisions, but It is still responsible to know how to call
the extension methods. I've tried to make this as straightforward as
possible such that there is a clear ownership delineation between the
repository and the extension, by keeping the interface simple and
(hopefully) obvious.
### Security Extension Interface
New Public Extension Methods:
- authorizeCreate
- authorizeBulkCreate
- authorizeUpdate
- authorizeBulkUpdate
- authorizeDelete
- authorizeBulkDelete
- authorizeGet
- authorizeBulkGet
- authorizeCheckConflicts
- authorizeRemoveReferences
- authorizeOpenPointInTime
- auditClosePointInTime
- authorizeAndRedactMultiNamespaceReferences
- authorizeAndRedactInternalBulkResolve
- authorizeUpdateSpaces
- authorizeFind
- getFindRedactTypeMap
- authorizeDisableLegacyUrlAliases (for secure spaces client)
- auditObjectsForSpaceDeletion (for secure spaces client)
Removed from public interface:
- authorize
- enforceAuthorization
- addAuditEvent
### Tests
- Most test coverage moved from `repository.security_extension.test.ts`
to `saved_objects_security_extension.test.ts`
- `repository.security_extension.test.ts` tests extension call,
parameters, and return
- Updates repository unit tests to check that all security extension
calls are made with the current space when the spaces extension is also
enabled
---------
Co-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>
Co-authored-by: gchaps <33642766+gchaps@users.noreply.github.com>
Resolves: #150209
This PR intends to add the available `Action variables` of the new
`Summary of alerts` actions.
Note: Alert-as-data exposes more data. Please let me know if any needs
to be added/removed.
A better list of available fields:
https://github.com/elastic/kibana/blob/main/x-pack/plugins/rule_registry/README.md
---------
Co-authored-by: lcawl <lcawley@elastic.co>
Closes#113928
## Summary
- Adds 'xpack.security.authc.providers' to the list of settings that
must be the same across all Kibana instances behind a load balancer.
- Adds a warning block explaining why the authentication providers need
to match, and an additional configuration case where this applies
(Kibana instances that are backed by the same ES instance and share the
same kibana.index).
This PR adds a new bulk get attachments API.
```
POST internal/cases/<case_id>/attachments/_bulk_get
{
"ids": ["02441860-9b66-11ed-a8df-f1edb375c327", "2"]
}
```
<details><summary>Example request and response</summary>
Request
```
POST http://localhost:5601/internal/cases/attachments/_bulk_get
{
"ids": ["283a4600-9cfd-11ed-9e3d-c96d764b0e39", "2", "382e97f0-9cfd-11ed-9e3d-c96d764b0e39"]
}
```
Response
```
{
"attachments": [
{
"id": "283a4600-9cfd-11ed-9e3d-c96d764b0e39",
"version": "WzI2MiwxXQ==",
"comment": "Stack comment",
"type": "user",
"owner": "cases",
"created_at": "2023-01-25T22:11:03.398Z",
"created_by": {
"email": null,
"full_name": null,
"username": "elastic",
"profile_uid": "u_mGBROF_q5bmFCATbLXAcCwKa0k8JvONAwSruelyKA5E_0"
},
"pushed_at": null,
"pushed_by": null,
"updated_at": null,
"updated_by": null
}
],
"errors": [
{
"error": "Not Found",
"message": "Saved object [cases-comments/2] not found",
"status": 404,
"attachmentId": "2"
},
{
"error": "Bad Request",
"message": "Attachment is not attached to case id=248d6aa0-9cfd-11ed-9e3d-c96d764b0e39",
"status": 400,
"attachmentId": "382e97f0-9cfd-11ed-9e3d-c96d764b0e39"
}
]
}
```
</details>
<details><summary>Unauthorized example response</summary>
```
{
"attachments": [],
"errors": [
{
"error": "Forbidden",
"message": "Unauthorized to access attachment with owner: \"securitySolution\"",
"status": 403,
"attachmentId": "382e97f0-9cfd-11ed-9e3d-c96d764b0e39"
}
]
}
```
</details>
## Notable changes
- Created a new internal route for retrieving attachments
- Refactored the attachments service to take the saved object client in
the constructor instead of each method
- Refactored attachments service by moving the get style operations to
their own class
- Refactored the integration utilities file to move the attachment
operations to their own file
- The API will return a 400 if more than 10k ids are requested
---------
Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
This PR adds a new authorization log operation for the bulk create
attachments API.
Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>
This PR adds a new find API for retrieving a subset of the user actions
for a case.
Issue: https://github.com/elastic/kibana/issues/134344
```
GET /api/cases/<case_id>/user_actions/_find
Query Paramaters
{
types?: Array of "assignees" | "comment" | "connector" | "description" | "pushed" | "tags" | "title" | "status" | "settings" | "severity" | "create_case" | "delete_case" | "action" | "alert" | "user" | "attachment"
sortOrder?: "asc" | "desc"
page?: number as a string
perPage?: number as a string
}
```
<details><summary>Example request and response</summary>
Request
```
curl --location --request GET 'http://localhost:5601/api/cases/8df5fe00-96b1-11ed-9341-471c9630b5ec/user_actions/_find?types=create_case&sortOrder=asc' \
--header 'kbn-xsrf: hello' \
--header 'Authorization: Basic ZWxhc3RpYzpjaGFuZ2VtZQ==' \
--data-raw ''
```
Response
```
{
"userActions": [
{
"created_at": "2023-01-17T21:54:45.527Z",
"created_by": {
"username": "elastic",
"full_name": null,
"email": null,
"profile_uid": "u_mGBROF_q5bmFCATbLXAcCwKa0k8JvONAwSruelyKA5E_0"
},
"owner": "cases",
"action": "create",
"payload": {
"title": "Awesome case",
"tags": [],
"severity": "low",
"description": "super",
"assignees": [],
"connector": {
"name": "none",
"type": ".none",
"fields": null,
"id": "none"
},
"settings": {
"syncAlerts": false
},
"owner": "cases",
"status": "open"
},
"type": "create_case",
"id": "8e121180-96b1-11ed-9341-471c9630b5ec",
"case_id": "8df5fe00-96b1-11ed-9341-471c9630b5ec",
"comment_id": null
}
],
"page": 1,
"perPage": 20,
"total": 1
}
```
</details>
## Notable Changes
- Created the new `_find` route
- Created a new `UserActionFinder` class and moved the find* methods
from the `index.ts` file into there as well as the new find logic
- Extracted the transform logic to its own file since its shared between
multiple files now
- Extracted the user action related integration test functions to the
`user_action.ts` utility file
Co-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>
Co-authored-by: lcawl <lcawley@elastic.co>
## Summary
This PR creates the bulk get cases internal API. The endpoint is needed
for the alerts table to be able to get all cases the alerts are attached
to with one call.
Reference: https://github.com/elastic/kibana/issues/146864
### Request
- ids: (Required, array) An array of IDs of the retrieved cases.
- fields: (Optional, array) The fields to return in the attributes key
of the object response.
```
POST <kibana host>:<port>/internal/cases/_bulk_get
{
"ids": ["case-id-1", "case-id-2", "123", "not-authorized"],
"fields": ["title"]
}
```
### Response
```
{
"cases": [
{
"title": "case1",
"owner": "securitySolution",
"id": "case-id-1",
"version": "WzIzMTU0NSwxNV0="
},
{
"title": "case2",
"owner": "observability",
"id": "case-id-2",
"version": "WzIzMTU0NSwxNV0="
}
],
"errors": [
{
"error": "Not Found",
"message": "Saved object [cases/123] not found",
"status": 404,
"caseId": "123"
},
{
"error": "Forbidden",
"message": "Unauthorized to access case with owner: \"cases\"",
"status": 403,
"caseId": "not-authorized"
}
]
}
```
### Checklist
Delete any items that are not applicable to this PR.
- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios
### For maintainers
- [x] This was checked for breaking API changes and was [labeled
appropriately](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)
- Adds CentOS to the list of exceptions to the default value. CentOS,
Debian, and Red Hat Linux use `true`, but all other OS use `false`.
Previously, CentOS was not documented.
- Adds note regarding Chrome crash in the troubleshooting doc.
