Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[8.12] [Response Ops][Alerting] Adding evaluation threshold to alert payload for ES query rule (#171571) #172814

Merged
merged 1 commit into from
Dec 7, 2023
Merged

[8.12] [Response Ops][Alerting] Adding evaluation threshold to alert payload for ES query rule (#171571) #172814

merged 1 commit into from
Dec 7, 2023

Conversation

kibanamachine
Copy link
Contributor

Backport

This will backport the following commits from main to 8.12:

Questions ?

Please refer to the Backport tool documentation

@ymao1
[Response Ops][Alerting] Adding evaluation threshold to alert payload…
1e305b4 
… for ES query rule (elastic#171571)

Resolves elastic#166986

## Summary

Adding `kibana.alert.evalution.threshold` to the alert payload for the
ES query rule. This is the field that's shown in the alert details view
in Observability. To show this, we add `ALERT_EVALUATION_CONDITIONS` to
the stack alerts mapping, using the same mapping type as the
observability rule types. This is typed as a `scaled_float` which is
expecting a single value, so the threshold is set in the alert payload
only when the threshold is a single value. I will open a followup issue
for handling multi-valued thresholds.
elastic#172714

<img width="1064" alt="Screenshot 2023-11-20 at 1 10 05 PM"
src="https://github.com/elastic/kibana/assets/13104637/e265a9e8-4bbf-4d3e-a6bc-e69b774c7574">

## To Verify

Create an ES query rule with a single threshold that triggers an alert
and give it a Metrics or Logs visibility. Let it run and then look at
the alert details for the alert from the Observability alert table. The
`Expected Value` row should be populated.

(cherry picked from commit ec81569)
@kibanamachine kibanamachine enabled auto-merge (squash) December 7, 2023 13:26
@botelastic botelastic bot added the Team:obs-ux-management Observability Management User Experience Team label Dec 7, 2023
@kibanamachine kibanamachine mentioned this pull request Dec 7, 2023
Merged
@elasticmachine
Copy link
Contributor

Pinging @elastic/obs-ux-management-team (Team:obs-ux-management)

@kibanamachine kibanamachine merged commit 857b1ad into elastic:8.12 Dec 7, 2023
42 checks passed
@kibana-ci
Copy link
Collaborator

💛 Build succeeded, but was flaky

Failed CI Steps

Test Failures

  • [job] [logs] FTR Configs #76 / endpoint Endpoint Exceptions should add event.module=endpoint to entry if only wildcard operator is present
  • [job] [logs] FTR Configs #13 / Serverless Common UI - Management Common advanced settings updating settings allows resetting a setting to its default value

Metrics [docs]

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id before after diff
observability 102.6KB 102.6KB +5.0B

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @ymao1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

@ymao1 ymao1

Labels
backport Team:obs-ux-management Observability Management User Experience Team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@kibanamachine @elasticmachine @kibana-ci @ymao1