[Cloud Security] Agentless integration deletion flow #191557
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Omolola-Akinleye
added
v8.16.0
ci:cloud-deploy
1 task
|
/ci |
opauloh
added
the
ci:project-deploy-security
…ola-Akinleye/kibana into agentless-integration-deletion-flow
Omolola-Akinleye
added
ci:project-deploy-security
seanrathier
approved these changes
Sep 25, 2024
Omolola-Akinleye
changed the title
juliaElastic
reviewed
Oct 1, 2024
| {agentPolicy?.supports_agentless ? ( | ||
| <FormattedMessage | ||
| id="xpack.fleet.deleteAgentPolicy.confirmModal.affectedAgentlessMessage" | ||
| defaultMessage="Deleting this agent policy will automatically delete integrations assign to {name} and unenroll elastic agent." |
There was a problem hiding this comment.
Suggested change
| defaultMessage="Deleting this agent policy will automatically delete integrations assign to {name} and unenroll elastic agent." | |
| defaultMessage="Deleting this agent policy will automatically delete integrations assigned to {name} and unenroll elastic agent." |
juliaElastic
reviewed
Oct 1, 2024
| !packagePolicy.hasUpgrade || | ||
| !canWriteIntegrationPolicies || | ||
| !upgradePackagePolicyHref || | ||
| agentPolicy?.supports_agentless === true |
There was a problem hiding this comment.
What is the reasoning behind disabling upgrade action for agentless?
criamico
approved these changes
Oct 1, 2024
| @@ -57,6 +57,12 @@ export class AgentlessAgentCreateError extends FleetError { | |||
| } | |||
| } | |||
|
|
|||
| export class AgentlessPackagePolicyRequestError extends FleetError { | |||
There was a problem hiding this comment.
Nit: FleetError usually represents a 500. Since this error is used in the agent policy service, shouldn't be a different error? Maybe a 409 conflict. We usually define them here
…ola-Akinleye/kibana into agentless-integration-deletion-flow
💚 Build Succeeded
Metrics [docs]Async chunks
Page load bundle
History
To update your PR or re-run it, just comment with: |
|
Starting backport for target branches: 8.x |
kibanamachine
pushed a commit
to kibanamachine/kibana
that referenced
this pull request
Oct 1, 2024
## Summary Summarize your PR. If it involves visual changes include a screenshot or gif. This PR is completes the deletion flow for Agentless CSPM. **Current Agentless Integraton deletion flow**: 1. Successfully delete integration policy 2. Successfully unenrolls agent from agent policy 3. Successfully revokes enrollment token 4. Successfully deletes agentless deployment 5. Successfully deletes agent policy 6. Successful notification shows when deleted integration policy is successful ## Agentless Agent API - Unenrolls agent and revokes token first to avoid 404 save object client error. - Update `is_managed` property to no longer check for `agentPolicy.supports_agentless`. Agentless policies will now be a regular policy. - Adds logging for DELETE agentless Agent API endpoint - Adds agentless API deleteendpoint using try & catch. No errors will be thrown. Agent status will become offline after deployment deletion - If agentless deployment api fails, then we will continue to delete the agent policy ## UI Changes **CSPM Integration** - Updates Agent Policy Error toast notification title - Updates Agent Policy Error toast notification message <img width="1612" alt="image" src="https://github.com/user-attachments/assets/0003ce04-c53c-4e11-8363-ddc25ba342a7"> **Edit Mode** - Adds back the Agentless selector in Edit Integration <img width="1316" alt="image" src="https://github.com/user-attachments/assets/0d2f20ce-32fc-421c-a15a-48ca6226b67f"> **Integration Policies Page** - Removes automatic navigation to agent policies page when deleting an integration. In 8.17, we have a ticket to [hide the agentless agent policies.](elastic/security-team#9857) - Enables delete button when deleting package policy with agents for agentless policies - Disables Upgrade Action - Removes Add Agent Action <img width="1717" alt="image" src="https://github.com/user-attachments/assets/1b7ac4c7-e8bc-41b8-836f-4d3c79a449dd"> <img width="670" alt="image" src="https://github.com/user-attachments/assets/0ab6a4c4-d7c6-43ea-9537-67e7fbcca2b0"> **Agent Policies Page** - Updates messaging when deleting the agentless policy from agent policy page. Warning users that deleting agentless policy will also delete the integration and unenroll agent. - Enables delete button when deleting agentless policy with agents for agentless policies - Removes Add agent menu action - Removes Upgrade policy menu action - Removes Uninstall agent action - Removes Copy policy menu action <img width="1595" alt="image" src="https://github.com/user-attachments/assets/2f195da2-4594-4f54-8f8d-7995e829a5ac"> <img width="1365" alt="image" src="https://github.com/user-attachments/assets/4915642d-41e8-4e83-80f9-f334cb879506"> **Agent Policy Settings** For agent policy that are agentless, we disabled the following [fleet actions:](https://www.elastic.co/guide/en/fleet/current/agent-policy.html#agent-policy-types) - Disables Agent monitoring - Disables Inactivity timeout - Disables Fleet Server - Disables Output for integrations - Disables Output for agent monitoring - Disables Agent binary download - Disables Host name format - Disables Inactive agent unenrollment timeout - Disables Advanced Settings - Limit CPU usage - Disables HTTP monitoring endpoint - Disables Agent Logging <img width="1569" alt="image" src="https://github.com/user-attachments/assets/2639be9f-ea10-4d42-b379-a13c4c2b08a1"> <img width="1517" alt="image" src="https://github.com/user-attachments/assets/ae6f3e10-8c2b-42fe-8f27-7e8621d373c0"> **Agents Page** - Disables Assign to Policy action - Disables Upgrade Policy action - Removes Unassign agent action - Removes agentless policies where user can add agent to agentless policy <img width="1710" alt="image" src="https://github.com/user-attachments/assets/61bf2d06-d337-45dd-8255-499db1e1ed42"> <img width="1723" alt="image" src="https://github.com/user-attachments/assets/cc76787f-d6a2-44fb-9289-7f1f643620ec"> ### How to test in Serverless Use vault access and open the security Project in [build ]([Buildkite Build](https://buildkite.com/elastic/kibana-pull-request/builds/234438)) ### Checklist - [x] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios (cherry picked from commit 6742f77)
💚 All backports created successfully
Note: Successful backport PRs will be merged automatically after passing CI. Questions ?Please refer to the Backport tool documentation |
kibanamachine
added a commit
that referenced
this pull request
Oct 1, 2024
…194629) # Backport This will backport the following commits from `main` to `8.x`: - [[Cloud Security] Agentless integration deletion flow (#191557)](#191557) <!--- Backport version: 9.4.3 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Lola","email":"[email protected]"},"sourceCommit":{"committedDate":"2024-10-01T18:38:07Z","message":"[Cloud Security] Agentless integration deletion flow (#191557)\n\n## Summary\r\n\r\nSummarize your PR. If it involves visual changes include a screenshot or\r\ngif.\r\nThis PR is completes the deletion flow for Agentless CSPM.\r\n\r\n**Current Agentless Integraton deletion flow**: \r\n\r\n1. Successfully delete integration policy\r\n2. Successfully unenrolls agent from agent policy \r\n3. Successfully revokes enrollment token\r\n4. Successfully deletes agentless deployment\r\n5. Successfully deletes agent policy \r\n6. Successful notification shows when deleted integration policy is\r\nsuccessful\r\n\r\n\r\n## Agentless Agent API \r\n- Unenrolls agent and revokes token first to avoid 404 save object\r\nclient error.\r\n- Update `is_managed` property to no longer check for\r\n`agentPolicy.supports_agentless`. Agentless policies will now be a\r\nregular policy.\r\n- Adds logging for DELETE agentless Agent API endpoint \r\n- Adds agentless API deleteendpoint using try & catch. No errors will be\r\nthrown. Agent status will become offline after deployment deletion\r\n- If agentless deployment api fails, then we will continue to delete the\r\nagent policy\r\n\r\n## UI Changes\r\n\r\n**CSPM Integration** \r\n- Updates Agent Policy Error toast notification title \r\n- Updates Agent Policy Error toast notification message \r\n\r\n<img width=\"1612\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0003ce04-c53c-4e11-8363-ddc25ba342a7\">\r\n\r\n**Edit Mode**\r\n- Adds back the Agentless selector in Edit Integration\r\n\r\n<img width=\"1316\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0d2f20ce-32fc-421c-a15a-48ca6226b67f\">\r\n\r\n**Integration Policies Page**\r\n- Removes automatic navigation to agent policies page when deleting an\r\nintegration. In 8.17, we have a ticket to [hide the agentless agent\r\npolicies.](https://github.com/elastic/security-team/issues/9857)\r\n- Enables delete button when deleting package policy with agents for\r\nagentless policies\r\n- Disables Upgrade Action\r\n- Removes Add Agent Action\r\n\r\n<img width=\"1717\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/1b7ac4c7-e8bc-41b8-836f-4d3c79a449dd\">\r\n\r\n<img width=\"670\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0ab6a4c4-d7c6-43ea-9537-67e7fbcca2b0\">\r\n\r\n\r\n**Agent Policies Page**\r\n- Updates messaging when deleting the agentless policy from agent policy\r\npage. Warning users that deleting agentless policy will also delete the\r\nintegration and unenroll agent.\r\n- Enables delete button when deleting agentless policy with agents for\r\nagentless policies\r\n- Removes Add agent menu action\r\n- Removes Upgrade policy menu action\r\n- Removes Uninstall agent action\r\n- Removes Copy policy menu action\r\n\r\n<img width=\"1595\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2f195da2-4594-4f54-8f8d-7995e829a5ac\">\r\n<img width=\"1365\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/4915642d-41e8-4e83-80f9-f334cb879506\">\r\n\r\n\r\n**Agent Policy Settings**\r\nFor agent policy that are agentless, we disabled the following [fleet\r\nactions:](https://www.elastic.co/guide/en/fleet/current/agent-policy.html#agent-policy-types)\r\n- Disables Agent monitoring\r\n- Disables Inactivity timeout\r\n- Disables Fleet Server\r\n- Disables Output for integrations\r\n- Disables Output for agent monitoring\r\n- Disables Agent binary download\r\n- Disables Host name format\r\n- Disables Inactive agent unenrollment timeout \r\n- Disables Advanced Settings - Limit CPU usage\r\n- Disables HTTP monitoring endpoint\r\n- Disables Agent Logging\r\n\r\n<img width=\"1569\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2639be9f-ea10-4d42-b379-a13c4c2b08a1\">\r\n<img width=\"1517\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/ae6f3e10-8c2b-42fe-8f27-7e8621d373c0\">\r\n\r\n**Agents Page**\r\n\r\n- Disables Assign to Policy action\r\n- Disables Upgrade Policy action\r\n- Removes Unassign agent action\r\n- Removes agentless policies where user can add agent to agentless\r\npolicy\r\n\r\n<img width=\"1710\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/61bf2d06-d337-45dd-8255-499db1e1ed42\">\r\n<img width=\"1723\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/cc76787f-d6a2-44fb-9289-7f1f643620ec\">\r\n\r\n\r\n### How to test in Serverless\r\n Use vault access and open the security Project in [build\r\n]([Buildkite\r\nBuild](https://buildkite.com/elastic/kibana-pull-request/builds/234438))\r\n\r\n### Checklist\r\n- [x] [Unit or functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere updated or added to match the most common scenarios","sha":"6742f770497a946de2d21aa39985243eec2b9f7b","branchLabelMapping":{"^v9.0.0$":"main","^v8.16.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Fleet","v9.0.0","release_note:feature","Team:Cloud Security","backport:prev-minor","ci:build-cloud-image","ci:cloud-redeploy","ci:project-deploy-security","v8.16.0"],"title":"[Cloud Security] Agentless integration deletion flow","number":191557,"url":"https://github.com/elastic/kibana/pull/191557","mergeCommit":{"message":"[Cloud Security] Agentless integration deletion flow (#191557)\n\n## Summary\r\n\r\nSummarize your PR. If it involves visual changes include a screenshot or\r\ngif.\r\nThis PR is completes the deletion flow for Agentless CSPM.\r\n\r\n**Current Agentless Integraton deletion flow**: \r\n\r\n1. Successfully delete integration policy\r\n2. Successfully unenrolls agent from agent policy \r\n3. Successfully revokes enrollment token\r\n4. Successfully deletes agentless deployment\r\n5. Successfully deletes agent policy \r\n6. Successful notification shows when deleted integration policy is\r\nsuccessful\r\n\r\n\r\n## Agentless Agent API \r\n- Unenrolls agent and revokes token first to avoid 404 save object\r\nclient error.\r\n- Update `is_managed` property to no longer check for\r\n`agentPolicy.supports_agentless`. Agentless policies will now be a\r\nregular policy.\r\n- Adds logging for DELETE agentless Agent API endpoint \r\n- Adds agentless API deleteendpoint using try & catch. No errors will be\r\nthrown. Agent status will become offline after deployment deletion\r\n- If agentless deployment api fails, then we will continue to delete the\r\nagent policy\r\n\r\n## UI Changes\r\n\r\n**CSPM Integration** \r\n- Updates Agent Policy Error toast notification title \r\n- Updates Agent Policy Error toast notification message \r\n\r\n<img width=\"1612\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0003ce04-c53c-4e11-8363-ddc25ba342a7\">\r\n\r\n**Edit Mode**\r\n- Adds back the Agentless selector in Edit Integration\r\n\r\n<img width=\"1316\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0d2f20ce-32fc-421c-a15a-48ca6226b67f\">\r\n\r\n**Integration Policies Page**\r\n- Removes automatic navigation to agent policies page when deleting an\r\nintegration. In 8.17, we have a ticket to [hide the agentless agent\r\npolicies.](https://github.com/elastic/security-team/issues/9857)\r\n- Enables delete button when deleting package policy with agents for\r\nagentless policies\r\n- Disables Upgrade Action\r\n- Removes Add Agent Action\r\n\r\n<img width=\"1717\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/1b7ac4c7-e8bc-41b8-836f-4d3c79a449dd\">\r\n\r\n<img width=\"670\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0ab6a4c4-d7c6-43ea-9537-67e7fbcca2b0\">\r\n\r\n\r\n**Agent Policies Page**\r\n- Updates messaging when deleting the agentless policy from agent policy\r\npage. Warning users that deleting agentless policy will also delete the\r\nintegration and unenroll agent.\r\n- Enables delete button when deleting agentless policy with agents for\r\nagentless policies\r\n- Removes Add agent menu action\r\n- Removes Upgrade policy menu action\r\n- Removes Uninstall agent action\r\n- Removes Copy policy menu action\r\n\r\n<img width=\"1595\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2f195da2-4594-4f54-8f8d-7995e829a5ac\">\r\n<img width=\"1365\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/4915642d-41e8-4e83-80f9-f334cb879506\">\r\n\r\n\r\n**Agent Policy Settings**\r\nFor agent policy that are agentless, we disabled the following [fleet\r\nactions:](https://www.elastic.co/guide/en/fleet/current/agent-policy.html#agent-policy-types)\r\n- Disables Agent monitoring\r\n- Disables Inactivity timeout\r\n- Disables Fleet Server\r\n- Disables Output for integrations\r\n- Disables Output for agent monitoring\r\n- Disables Agent binary download\r\n- Disables Host name format\r\n- Disables Inactive agent unenrollment timeout \r\n- Disables Advanced Settings - Limit CPU usage\r\n- Disables HTTP monitoring endpoint\r\n- Disables Agent Logging\r\n\r\n<img width=\"1569\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2639be9f-ea10-4d42-b379-a13c4c2b08a1\">\r\n<img width=\"1517\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/ae6f3e10-8c2b-42fe-8f27-7e8621d373c0\">\r\n\r\n**Agents Page**\r\n\r\n- Disables Assign to Policy action\r\n- Disables Upgrade Policy action\r\n- Removes Unassign agent action\r\n- Removes agentless policies where user can add agent to agentless\r\npolicy\r\n\r\n<img width=\"1710\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/61bf2d06-d337-45dd-8255-499db1e1ed42\">\r\n<img width=\"1723\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/cc76787f-d6a2-44fb-9289-7f1f643620ec\">\r\n\r\n\r\n### How to test in Serverless\r\n Use vault access and open the security Project in [build\r\n]([Buildkite\r\nBuild](https://buildkite.com/elastic/kibana-pull-request/builds/234438))\r\n\r\n### Checklist\r\n- [x] [Unit or functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere updated or added to match the most common scenarios","sha":"6742f770497a946de2d21aa39985243eec2b9f7b"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/191557","number":191557,"mergeCommit":{"message":"[Cloud Security] Agentless integration deletion flow (#191557)\n\n## Summary\r\n\r\nSummarize your PR. If it involves visual changes include a screenshot or\r\ngif.\r\nThis PR is completes the deletion flow for Agentless CSPM.\r\n\r\n**Current Agentless Integraton deletion flow**: \r\n\r\n1. Successfully delete integration policy\r\n2. Successfully unenrolls agent from agent policy \r\n3. Successfully revokes enrollment token\r\n4. Successfully deletes agentless deployment\r\n5. Successfully deletes agent policy \r\n6. Successful notification shows when deleted integration policy is\r\nsuccessful\r\n\r\n\r\n## Agentless Agent API \r\n- Unenrolls agent and revokes token first to avoid 404 save object\r\nclient error.\r\n- Update `is_managed` property to no longer check for\r\n`agentPolicy.supports_agentless`. Agentless policies will now be a\r\nregular policy.\r\n- Adds logging for DELETE agentless Agent API endpoint \r\n- Adds agentless API deleteendpoint using try & catch. No errors will be\r\nthrown. Agent status will become offline after deployment deletion\r\n- If agentless deployment api fails, then we will continue to delete the\r\nagent policy\r\n\r\n## UI Changes\r\n\r\n**CSPM Integration** \r\n- Updates Agent Policy Error toast notification title \r\n- Updates Agent Policy Error toast notification message \r\n\r\n<img width=\"1612\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0003ce04-c53c-4e11-8363-ddc25ba342a7\">\r\n\r\n**Edit Mode**\r\n- Adds back the Agentless selector in Edit Integration\r\n\r\n<img width=\"1316\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0d2f20ce-32fc-421c-a15a-48ca6226b67f\">\r\n\r\n**Integration Policies Page**\r\n- Removes automatic navigation to agent policies page when deleting an\r\nintegration. In 8.17, we have a ticket to [hide the agentless agent\r\npolicies.](https://github.com/elastic/security-team/issues/9857)\r\n- Enables delete button when deleting package policy with agents for\r\nagentless policies\r\n- Disables Upgrade Action\r\n- Removes Add Agent Action\r\n\r\n<img width=\"1717\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/1b7ac4c7-e8bc-41b8-836f-4d3c79a449dd\">\r\n\r\n<img width=\"670\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/0ab6a4c4-d7c6-43ea-9537-67e7fbcca2b0\">\r\n\r\n\r\n**Agent Policies Page**\r\n- Updates messaging when deleting the agentless policy from agent policy\r\npage. Warning users that deleting agentless policy will also delete the\r\nintegration and unenroll agent.\r\n- Enables delete button when deleting agentless policy with agents for\r\nagentless policies\r\n- Removes Add agent menu action\r\n- Removes Upgrade policy menu action\r\n- Removes Uninstall agent action\r\n- Removes Copy policy menu action\r\n\r\n<img width=\"1595\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2f195da2-4594-4f54-8f8d-7995e829a5ac\">\r\n<img width=\"1365\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/4915642d-41e8-4e83-80f9-f334cb879506\">\r\n\r\n\r\n**Agent Policy Settings**\r\nFor agent policy that are agentless, we disabled the following [fleet\r\nactions:](https://www.elastic.co/guide/en/fleet/current/agent-policy.html#agent-policy-types)\r\n- Disables Agent monitoring\r\n- Disables Inactivity timeout\r\n- Disables Fleet Server\r\n- Disables Output for integrations\r\n- Disables Output for agent monitoring\r\n- Disables Agent binary download\r\n- Disables Host name format\r\n- Disables Inactive agent unenrollment timeout \r\n- Disables Advanced Settings - Limit CPU usage\r\n- Disables HTTP monitoring endpoint\r\n- Disables Agent Logging\r\n\r\n<img width=\"1569\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/2639be9f-ea10-4d42-b379-a13c4c2b08a1\">\r\n<img width=\"1517\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/ae6f3e10-8c2b-42fe-8f27-7e8621d373c0\">\r\n\r\n**Agents Page**\r\n\r\n- Disables Assign to Policy action\r\n- Disables Upgrade Policy action\r\n- Removes Unassign agent action\r\n- Removes agentless policies where user can add agent to agentless\r\npolicy\r\n\r\n<img width=\"1710\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/61bf2d06-d337-45dd-8255-499db1e1ed42\">\r\n<img width=\"1723\" alt=\"image\"\r\nsrc=\"https://github.com/user-attachments/assets/cc76787f-d6a2-44fb-9289-7f1f643620ec\">\r\n\r\n\r\n### How to test in Serverless\r\n Use vault access and open the security Project in [build\r\n]([Buildkite\r\nBuild](https://buildkite.com/elastic/kibana-pull-request/builds/234438))\r\n\r\n### Checklist\r\n- [x] [Unit or functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere updated or added to match the most common scenarios","sha":"6742f770497a946de2d21aa39985243eec2b9f7b"}},{"branch":"8.x","label":"v8.16.0","branchLabelMappingKey":"^v8.16.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Lola <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
Summarize your PR. If it involves visual changes include a screenshot or gif.
This PR is completes the deletion flow for Agentless CSPM.
Current Agentless Integraton deletion flow:
Agentless Agent API
is_managedproperty to no longer check foragentPolicy.supports_agentless. Agentless policies will now be a regular policy.UI Changes
CSPM Integration
Edit Mode
Integration Policies Page
Agent Policies Page
Agent Policy Settings
For agent policy that are agentless, we disabled the following fleet actions:
Agents Page
How to test in Serverless
Use vault access and open the security Project in [build
](Buildkite Build)
Checklist