mirror of
https://github.com/elastic/kibana.git
synced 2025-04-24 17:59:23 -04:00
723a55ec12
# Backport This will backport the following commits from `main` to `8.5`: - [Add CSP header to all requests, including api requests (#144902)](https://github.com/elastic/kibana/pull/144902) <!--- Backport version: 8.9.7 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Thomas Watson","email":"watson@elastic.co"},"sourceCommit":{"committedDate":"2022-11-16T20:45:10Z","message":"Add CSP header to all requests, including api requests (#144902)\n\nPreviously `/api/*` requests didn't include a `Content-Security-Policy`\r\nheader, now they do.\r\n\r\nCloses #143871","sha":"5550ab6cb10fbfddf437a74900103bb33dd1afa4","branchLabelMapping":{"^v8.7.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:enhancement","backport:all-open","v8.6.0","v8.7.0"],"number":144902,"url":"https://github.com/elastic/kibana/pull/144902","mergeCommit":{"message":"Add CSP header to all requests, including api requests (#144902)\n\nPreviously `/api/*` requests didn't include a `Content-Security-Policy`\r\nheader, now they do.\r\n\r\nCloses #143871","sha":"5550ab6cb10fbfddf437a74900103bb33dd1afa4"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"8.6","label":"v8.6.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"url":"https://github.com/elastic/kibana/pull/145449","number":145449,"state":"MERGED","mergeCommit":{"sha":"a9f7ba61f128e61beb936d2caff143e93e3321ea","message":"[8.6] Add CSP header to all requests, including api requests (#144902) (#145449)\n\n# Backport\n\nThis will backport the following commits from `main` to `8.6`:\n- [Add CSP header to all requests, including api requests\n(#144902)](https://github.com/elastic/kibana/pull/144902)\n\n<!--- Backport version: 8.9.7 -->\n\n### Questions ?\nPlease refer to the [Backport tool\ndocumentation](https://github.com/sqren/backport)\n\n<!--BACKPORT [{\"author\":{\"name\":\"Thomas\nWatson\",\"email\":\"watson@elastic.co\"},\"sourceCommit\":{\"committedDate\":\"2022-11-16T20:45:10Z\",\"message\":\"Add\nCSP header to all requests, including api requests\n(#144902)\\n\\nPreviously `/api/*` requests didn't include a\n`Content-Security-Policy`\\r\\nheader, now they do.\\r\\n\\r\\nCloses\n#143871\",\"sha\":\"5550ab6cb10fbfddf437a74900103bb33dd1afa4\",\"branchLabelMapping\":{\"^v8.7.0$\":\"main\",\"^v(\\\\d+).(\\\\d+).\\\\d+$\":\"$1.$2\"}},\"sourcePullRequest\":{\"labels\":[\"release_note:enhancement\",\"backport:all-open\",\"v8.7.0\"],\"number\":144902,\"url\":\"https://github.com/elastic/kibana/pull/144902\",\"mergeCommit\":{\"message\":\"Add\nCSP header to all requests, including api requests\n(#144902)\\n\\nPreviously `/api/*` requests didn't include a\n`Content-Security-Policy`\\r\\nheader, now they do.\\r\\n\\r\\nCloses\n#143871\",\"sha\":\"5550ab6cb10fbfddf437a74900103bb33dd1afa4\"}},\"sourceBranch\":\"main\",\"suggestedTargetBranches\":[],\"targetPullRequestStates\":[{\"branch\":\"main\",\"label\":\"v8.7.0\",\"labelRegex\":\"^v8.7.0$\",\"isSourceBranch\":true,\"state\":\"MERGED\",\"url\":\"https://github.com/elastic/kibana/pull/144902\",\"number\":144902,\"mergeCommit\":{\"message\":\"Add\nCSP header to all requests, including api requests\n(#144902)\\n\\nPreviously `/api/*` requests didn't include a\n`Content-Security-Policy`\\r\\nheader, now they do.\\r\\n\\r\\nCloses\n#143871\",\"sha\":\"5550ab6cb10fbfddf437a74900103bb33dd1afa4\"}}]}]\nBACKPORT-->\n\nCo-authored-by: Thomas Watson <watson@elastic.co>"}},{"branch":"main","label":"v8.7.0","labelRegex":"^v8.7.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/144902","number":144902,"mergeCommit":{"message":"Add CSP header to all requests, including api requests (#144902)\n\nPreviously `/api/*` requests didn't include a `Content-Security-Policy`\r\nheader, now they do.\r\n\r\nCloses #143871","sha":"5550ab6cb10fbfddf437a74900103bb33dd1afa4"}}]}] BACKPORT--> |
||
|---|---|---|
| .. | ||
| analytics | ||
| content-management | ||
| core | ||
| home | ||
| kbn-ace | ||
| kbn-alerts | ||
| kbn-ambient-storybook-types | ||
| kbn-ambient-ui-types | ||
| kbn-analytics | ||
| kbn-apm-config-loader | ||
| kbn-apm-synthtrace | ||
| kbn-apm-utils | ||
| kbn-axe-config | ||
| kbn-babel-plugin-synthetic-packages | ||
| kbn-babel-preset | ||
| kbn-bazel-packages | ||
| kbn-bazel-runner | ||
| kbn-chart-icons | ||
| kbn-ci-stats-core | ||
| kbn-ci-stats-performance-metrics | ||
| kbn-ci-stats-reporter | ||
| kbn-cli-dev-mode | ||
| kbn-coloring | ||
| kbn-config | ||
| kbn-config-mocks | ||
| kbn-config-schema | ||
| kbn-crypto | ||
| kbn-crypto-browser | ||
| kbn-datemath | ||
| kbn-dev-cli-errors | ||
| kbn-dev-cli-runner | ||
| kbn-dev-proc-runner | ||
| kbn-dev-utils | ||
| kbn-doc-links | ||
| kbn-docs-utils | ||
| kbn-ebt-tools | ||
| kbn-es | ||
| kbn-es-archiver | ||
| kbn-es-errors | ||
| kbn-es-query | ||
| kbn-es-types | ||
| kbn-eslint-config | ||
| kbn-eslint-plugin-disable | ||
| kbn-eslint-plugin-eslint | ||
| kbn-eslint-plugin-imports | ||
| kbn-expect | ||
| kbn-field-types | ||
| kbn-find-used-node-modules | ||
| kbn-flot-charts | ||
| kbn-generate | ||
| kbn-get-repo-files | ||
| kbn-handlebars | ||
| kbn-hapi-mocks | ||
| kbn-i18n | ||
| kbn-i18n-react | ||
| kbn-import-resolver | ||
| kbn-interpreter | ||
| kbn-io-ts-utils | ||
| kbn-jest-serializers | ||
| kbn-kibana-manifest-schema | ||
| kbn-logging | ||
| kbn-logging-mocks | ||
| kbn-managed-vscode-config | ||
| kbn-managed-vscode-config-cli | ||
| kbn-mapbox-gl | ||
| kbn-monaco | ||
| kbn-optimizer | ||
| kbn-optimizer-webpack-helpers | ||
| kbn-osquery-io-ts-types | ||
| kbn-performance-testing-dataset-extractor | ||
| kbn-plugin-discovery | ||
| kbn-plugin-generator | ||
| kbn-plugin-helpers | ||
| kbn-react-field | ||
| kbn-repo-source-classifier | ||
| kbn-repo-source-classifier-cli | ||
| kbn-rule-data-utils | ||
| kbn-safer-lodash-set | ||
| kbn-securitysolution-autocomplete | ||
| kbn-securitysolution-es-utils | ||
| kbn-securitysolution-hook-utils | ||
| kbn-securitysolution-io-ts-alerting-types | ||
| kbn-securitysolution-io-ts-list-types | ||
| kbn-securitysolution-io-ts-types | ||
| kbn-securitysolution-io-ts-utils | ||
| kbn-securitysolution-list-api | ||
| kbn-securitysolution-list-constants | ||
| kbn-securitysolution-list-hooks | ||
| kbn-securitysolution-list-utils | ||
| kbn-securitysolution-rules | ||
| kbn-securitysolution-t-grid | ||
| kbn-securitysolution-utils | ||
| kbn-server-http-tools | ||
| kbn-server-route-repository | ||
| kbn-shared-svg | ||
| kbn-shared-ux-utility | ||
| kbn-some-dev-log | ||
| kbn-sort-package-json | ||
| kbn-spec-to-console | ||
| kbn-std | ||
| kbn-stdio-dev-helpers | ||
| kbn-storybook | ||
| kbn-synthetic-package-map | ||
| kbn-telemetry-tools | ||
| kbn-test | ||
| kbn-test-jest-helpers | ||
| kbn-test-subj-selector | ||
| kbn-timelion-grammar | ||
| kbn-tinymath | ||
| kbn-tooling-log | ||
| kbn-type-summarizer | ||
| kbn-type-summarizer-cli | ||
| kbn-type-summarizer-core | ||
| kbn-typed-react-router-config | ||
| kbn-ui-framework | ||
| kbn-ui-shared-deps-npm | ||
| kbn-ui-shared-deps-src | ||
| kbn-ui-theme | ||
| kbn-user-profile-components | ||
| kbn-utility-types | ||
| kbn-utility-types-jest | ||
| kbn-utils | ||
| kbn-yarn-lock-validator | ||
| shared-ux | ||
| BUILD.bazel | ||
| README.md | ||
Kibana-related packages
This folder contains packages that are intended for use in Kibana and Kibana plugins.
tl;dr:
- Don't publish to npm registry
- Always use the
@kbnnamespace - Always set
"private": trueinpackage.json
Using these packages
We no longer publish these packages to the npm registry. Now, instead of specifying a version when including these packages, we rely on yarn workspaces, which sets up a symlink to the package.
For example if you want to use the @kbn/i18n package in Kibana itself, you
can specify the dependency like this:
"@kbn/i18n": "1.0.0"
However, if you want to use this from a Kibana plugin, you need to use a link:
dependency and account for the relative location of the Kibana repo, so it would
instead be:
"@kbn/i18n": "link:../../kibana/packages/kbn-i18n"
Creating a new package
Create a new sub-folder. The name of the folder should mirror the name in the
package's package.json. E.g. if the name is @kbn/i18n the folder name
should be kbn-i18n.
All new packages should use the @kbn namespace, and should be marked with
"private": true.
Unit tests for a package
Currently there is only one tool being used in order to test packages which is Jest. Below we will explain how it should be done.
Jest
A package should follow the pattern of having .test.js files as siblings of the source code files, and these run by Jest.
A package using the .test.js naming convention will have those tests automatically picked up by Jest and run by the unit test runner, currently mapped to the Kibana test script in the root package.json.
yarn testruns all unit tests.yarn jestruns all Jest tests in Kibana.
In order for the plugin or package to use Jest, a jest.config.js file must be present in it's root. However, there are safeguards for this in CI should a test file be added without a corresponding config file.
Each package can also specify its own test script in the package's package.json, for cases where you'd prefer to run the tests from the local package directory.