[Security Solution] - Timeline UI refactor #168230
Conversation
logeekal
added
Team:Threat Hunting:Investigations
logeekal
force-pushed
the
expr/new_timeline_ui
branch
from
90463b0 to
ef13b22
Compare
logeekal
changed the title
|
Nice work with these changes @logeekal ! Quick question, could we also re-order the items on the |
x-pack/plugins/security_solution/public/common/components/query_bar/index.tsx
Outdated
Show resolved
Hide resolved
@michaelolo24 , I thought about it.. but the problem with that is query bar. it has different height so I could not think of a good way, they will fit together. so i left it alone. I will check it out again. |
...ck/plugins/security_solution/public/timelines/components/flyout/action_menu/new_timeline.tsx
Outdated
Show resolved
Hide resolved
x-pack/plugins/security_solution/public/timelines/components/flyout/bottom_bar/index.tsx
Show resolved
Hide resolved
x-pack/plugins/security_solution/public/timelines/components/flyout/header/index.test.tsx
Outdated
Show resolved
Hide resolved
It looks awesome thank you!
Yeah I just pulled down the branch and was wondering where it went. It makes sense and I remember Paul saying he wasn't sure about that section! |
There was a problem hiding this comment.
Left a few comments.
Regarding the React.memo, I did point out to some of the places where we are memoizing component twice, but maybe not all of them...
Same thing for the multiple exports. I noticed a few but might have missed some...
I would consider having always a single export and have the memoization done there as well. Instead of having this
const MyBestComponent = {...}
export const MyBest = React.memo(MyBestComponent)
I think we should always to this
export const MyBestComponent = React.memo({...})
unless we have a good reason not to do this. I find it annoying, that when doing a repo-wide search or when navigating from one component to another, you only find or land on that export line at the bottom of the file...
Another thing to be careful about, especially with timeline, is modifying components that are used outside of timeline, and there are lots of them. I've been wanting to extract these for a while but haven't had the time yet. I've been trying to test things outside of timeline and everything looks good so far, but we need to keep an eye on these
| SaveTimelineButton.displayName = 'SaveTimelineButton'; | ||
| SaveTimelineButtonComponent.displayName = 'SaveTimelineButton'; | ||
|
|
||
| export const SaveTimelineButton = React.memo(SaveTimelineButtonComponent); |
There was a problem hiding this comment.
aren't we memoizing this component twice?
|
|
||
| OpenTimelineActionComponent.displayName = 'OpenTimelineModalButton'; | ||
|
|
||
| export const OpenTimelineAction = React.memo(OpenTimelineActionComponent); |
There was a problem hiding this comment.
here as well, aren't we memoizing this twice?
| SaveTimelineModal.displayName = 'SaveTimelineModal'; | ||
| SaveTimelineModalComponent.displayName = 'SaveTimelineModal'; | ||
|
|
||
| export const SaveTimelineModal = React.memo(SaveTimelineModalComponent); |
There was a problem hiding this comment.
I feel like this file would be a very good candidate for some unit tests
| const StyledFooter = styled(EuiFlyoutFooter)` | ||
| padding-inline: ${({ theme }) => theme.eui.euiSizeM}; | ||
| padding-block: ${({ theme }) => theme.eui.euiSizeM}; | ||
| background-color: transparent; | ||
| `; |
There was a problem hiding this comment.
this is risky because that flyout footer is used in many places outside of timeline (for example it's used in the expandable flyout.
I don't think it's a really good pattern to have the lower level reusable component have css properties like padding and background colors. I think we should leave that up to the parent components using them, unless we want to force something.
I feel like instead of modifying this component, we should wrap it wherever it's used. We actually did this for the expandable flyout (see here) where we wrap it with a EuiPanel with the correct backgroundColor.
Also while I understand the padding change, I'm curious about why removing the light blue background?
It's probably not a big deal because that whole side panel thing will be good soonish and replaced by the expandable flyout...
There was a problem hiding this comment.
We should also consider moving these reusable components to /public/common/components, this would let us know the changes may affect different places. The expandable flyout should not be using components/hooks from the Timeline directory.
There was a problem hiding this comment.
yes it shouldn't, and yes we should move these components out, but this is a much bigger effort and I believe should be done in a separate PR. It will be a nice cleanup though!
There was a problem hiding this comment.
EuiFlyoutFooter has certain built-in styles that only work when it is nested inside EuiFlyout. Since timeline is not nested in a EuiFlyout parent, those styles do not apply Because of this, timeline side panel footer looks like below ( which is pretty bad and the reason I made it transparent ):
instead of looking like this:
Infact, the whole, Timeline body ( table, and side panel ) styling is currently very messy becuase of which this patch work need to be applied.
This particular components is not reusable and is not use used anywere else so I think this part of styling is okay. And any other kind of refactoring should be taken separate PR.
There was a problem hiding this comment.
This particular components is not reusable and is not use used anywere else so I think this part of styling is okay. And any other kind of refactoring should be taken separate PR.
while this specific StyledFooter component isn't used anywhere, like I mentioned in you are using it within FlyoutFooterComponent which IS used in other places (expandable flyout), that's why I wanted to raise a point of making sure these other places were checked as part of the PR review. That's it 😄
There was a problem hiding this comment.
Hmm.. okay thanks for pointing that out. Let me double checks its impact on expandable flyout or anywhere it is used.
There was a problem hiding this comment.
@PhilippeOberti , Although, it does not impact Expandable flyout and expandable flyout applies it own style on this footer because current styles are just wrong.
But I understand your point and I have lifted the style customization one component above which specific to timeline.
Additionally, it is not used anywhere else.
Added here : 05d764c
There was a problem hiding this comment.
I would consider removing these files entirely. I understand that we will add the kpis back at some point, but it might take weeks or months before that happens... and when that happens the UI or content might look very different...
During that time we'd have to potentially maintain these files. Also someone external would be confused by seeing these files in the repository not understanding why they're not used, and coming back to the PR he/she would have to go through 70+ comments to find the one that mentions we're hiding KPIs for now...
I would remove all these newly created files as well as the few places where their usage is commented out. You can keep them on a local branch until the discussion of bringing them back happens?
| const SearchBarContainer = styled.div` | ||
| /* | ||
| * | ||
| * hide search bar default filters as they are distrubing the layout as shown below |
There was a problem hiding this comment.
distrubing => disturbing
There was a problem hiding this comment.
fixed here: 05b43e2
| * | Filters | | ||
| * -------------------------------- | ||
| * | ||
| * The tree under this component makes sure that default filters are not rendered and we can saperately display |
There was a problem hiding this comment.
saperately => separately
There was a problem hiding this comment.
This spell checker extension for VSCode works awesome for me. Other IDEs should have similar things.
There was a problem hiding this comment.
yes, I have that as well but some gets left behind since pre-commit check doesn't include that check. Will try to see if include that locally.
There was a problem hiding this comment.
fixed here: 05b43e2
| {/* TODO: This is a temporary solution to hide the KPIs until lens components play nicely with timelines */} | ||
| {/* https://github.com/elastic/kibana/issues/17156 */} | ||
| {/* <EuiFlexItem grow={false}> */} | ||
| {/* <TimelineKpi timelineId={timelineId} /> */} | ||
| {/* </EuiFlexItem> */} |
There was a problem hiding this comment.
I would consider deleting the commented code. I mentioned it somewhere else but there are a lot of new files introduced by the PR that I don't think should be added either. It introduces confusion (especially for the new files) and they might be completely changed in the future...
| @@ -530,6 +531,18 @@ export const timelineReducer = reducerWithInitialState(initialTimelineState) | |||
| }, | |||
| }, | |||
| })) | |||
| .case(setDataProviderVisibility, (state, { id, isDataProviderVisible }) => { | |||
There was a problem hiding this comment.
I haven't looked at the way we test these reducers, but shouldn't we add some unit tests when introducing a new case?
There was a problem hiding this comment.
Currently we do not have test for reducers, I think it is because they are very atomic piece of functionality where we are simple using external library to modify the state.
However, there are some complex actions which make use of some helpers when reducing the state. There was a test file for those called reducer.test.tsx. I have renamed that to helpers.test.tsx in af2d737
I agree, I always try to export the BTW, I would also forbid the use of the word Component in the exported component names, if we do that we should do it to all components, otherwise we should never do it. And we use typescript to know what things are, so no need to always append Component to the component name. |
x-pack/plugins/security_solution/public/timelines/components/timeline/query_bar/index.tsx
Outdated
Show resolved
Hide resolved
yes absolutely agree, it was a mistake on my end to add the word |
I guess, we all agree on this. |
| headers: { | ||
| 'kbn-xsrf': 'cypress-creds', | ||
| 'x-elastic-internal-origin': 'security-solution', | ||
| 'elastic-api-version': '2023-10-31', | ||
| }, |
There was a problem hiding this comment.
@MadameSheema , Please do let me know if this is not correct.
💛 Build succeeded, but was flaky
Failed CI StepsMetrics [docs]Module Count
Public APIs missing comments
Async chunks
Page load bundle
Unknown metric groupsAPI count
ESLint disabled line counts
Total ESLint disabled count
History
To update your PR or re-run it, just comment with: cc @logeekal |
kibanamachine
added
v8.12.0
backport:skip
logeekal
removed
the
ci:cloud-persist-deployment
Summary
This PR implements many small refactors in the Timeline UI. I have listed all the changes below which can help you while you are desk testing.
EQL Bar
Timeline Title Bar / Bottom Bar
Below screenshots show how timeline bottom bar has changed. Things to note:
Below screenshots show how timeline title bar has changed. Things to note :
- A new timeline action menu has been added to right to timeline title bar.
- All actions such as create a new timeline, a new timeline template. adding timeline to case, etc can be performed from here.
Timeline Header Panel
Below timeline header panel has been completely removed.
Changes on how Data provider works
Data.Provider.Interaction.mov
KPI
This PR also changes how KPIs are visible in empty and populated state.
KPI bar has been completely removed till this issue resolves: #171569
Query Bar
In contrast to current layout of the query bar, DataView picker, Query bar and Date Picker has been brought in the same line. This was done in an effort to make it uniform in looks w.r.t the global query bar.
Before
After
All the highlighted components are in the same line now + A button to toggle Data Provider ( as explained in Data Porvider/QueryBuilder Section) has also been added.
Spacing Uniformity
In the existing version of timeline, spacing is different at many places. This PR aims to bring some uniformity to those spacing decisions ( primarily in EQL and Query Tab). The changes are very minor visually, please feel free to find and report any discrepancies.
Checklist
Delete any items that are not applicable to this PR.