[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts #192377
Conversation
rbrtj
added
release_note:enhancement
:ml
Feature:Anomaly Detection
|
Pinging @elastic/ml-ui (:ml) |
…ution-anomaly-charts
|
It is a small PR, but the changes may have some implications, so I've tagged 3 people. |
| @@ -105,6 +105,7 @@ export interface ChartPoint { | |||
| byFieldName?: string; | |||
| numberOfCauses?: number; | |||
| scheduledEvents?: any[]; | |||
| isFakeDataPoint?: boolean; | |||
There was a problem hiding this comment.
Nit: Maybe we can think of another name for this flag since this isn't really about fake or dummy data but just about the schedule event marker. Something like isScheduledEventMarkerWithoutData but less wordy 😅 . Maybe isScheduledEventOnly/isScheduleEventMarker?
There was a problem hiding this comment.
This property isn't really needed so I got rid of it 👍
|
For 
|
|
The above is a bit tricky to reproduce, I wasn't able to come up with a job that produced these results with Kibana sample data. I tweak the logs sample dataset to come up with these results. Here's what you need to do in Kibana Dev Console: To identify the time to be used for the scheduled event go to log rate analysis and then create a scheduled event some days before the spike: 
Again, you will have different timestamps here because of the dynamically generated dataset. Once the calendar with the scheduled event is set up, you can create a |
I've added a const entity value for markers data, also hidden the Y-axis label for markers, as the tooltip already displays events details. |
…ution-anomaly-charts
| @@ -590,7 +610,11 @@ export class ExplorerChartDistribution extends React.Component { | |||
| }); | |||
| } | |||
| } | |||
| } else if (chartType !== CHART_TYPE.EVENT_DISTRIBUTION) { | |||
| } else if ( | |||
| chartType !== CHART_TYPE.EVENT_DISTRIBUTION && | |||
There was a problem hiding this comment.
I am still seeing undefined appear in the axis labels for a rare job:
You can reproduce with the filebeat_ecs data, using the 'rare' job wizard to create a job with this config:
"bucket_span": "3h",
"detectors": [
{
"detector_description": "rare by \"http.request.method\"",
"function": "rare",
"by_field_name": "http.request.method",
"detector_index": 0
}
],
"influencers": [
"http.request.method"
],
There was a problem hiding this comment.
Hmm, I can't seem to reproduce it to have an undefined label with the same dataset and job config:
There was a problem hiding this comment.
Retested @rbrtj and I can no longer reproduce this with the undefined label!
…ution-anomaly-charts
…ution-anomaly-charts
…ution-anomaly-charts
💛 Build succeeded, but was flaky
Failed CI StepsTest Failures
Metrics [docs]Module Count
Async chunks
History
To update your PR or re-run it, just comment with: cc @rbrtj |
…bution type anomaly charts (elastic#192377) ## Summary Fix for [elastic#129304](elastic#129304) Previously, for distribution type charts, we displayed calendar event markers only for anomalous data points. The changes improve the display of event markers for such chart types, including showing calendar event markers even when there is no underlying data point. | Scenario | Before | After | | :---: | :---: | :---: | | Rare chart |  |  | | Population chart |  |  | | Single metric chart (no difference) |  |  | (cherry picked from commit d5b1fdf)
💚 All backports created successfully
Note: Successful backport PRs will be merged automatically after passing CI. Questions ?Please refer to the Backport tool documentation |
…distribution type anomaly charts (#192377) (#193118) # Backport This will backport the following commits from `main` to `8.x`: - [[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts (#192377)](#192377) <!--- Backport version: 9.4.3 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Robert Jaszczurek","email":"[email protected]"},"sourceCommit":{"committedDate":"2024-09-17T07:53:32Z","message":"[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts (#192377)\n\n## Summary\r\n\r\nFix for [#129304](https://github.com/elastic/kibana/issues/129304)\r\n\r\nPreviously, for distribution type charts, we displayed calendar event\r\nmarkers only for anomalous data points. The changes improve the display\r\nof event markers for such chart types, including showing calendar event\r\nmarkers even when there is no underlying data point.\r\n\r\n| Scenario | Before | After |\r\n| :---: | :---: | :---: |\r\n| Rare chart |\r\n\r\n|\r\n\r\n|\r\n| Population chart | \r\n|\r\n\r\n|\r\n| Single metric chart (no difference) |\r\n\r\n|\r\n\r\n|","sha":"d5b1fdf49af8eb23210e3b15a20fe1f9b660eea8","branchLabelMapping":{"^v9.0.0$":"main","^v8.16.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:enhancement",":ml","Feature:Anomaly Detection","v9.0.0","Team:ML","v8.16.0"],"title":"[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts","number":192377,"url":"https://github.com/elastic/kibana/pull/192377","mergeCommit":{"message":"[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts (#192377)\n\n## Summary\r\n\r\nFix for [#129304](https://github.com/elastic/kibana/issues/129304)\r\n\r\nPreviously, for distribution type charts, we displayed calendar event\r\nmarkers only for anomalous data points. The changes improve the display\r\nof event markers for such chart types, including showing calendar event\r\nmarkers even when there is no underlying data point.\r\n\r\n| Scenario | Before | After |\r\n| :---: | :---: | :---: |\r\n| Rare chart |\r\n\r\n|\r\n\r\n|\r\n| Population chart | \r\n|\r\n\r\n|\r\n| Single metric chart (no difference) |\r\n\r\n|\r\n\r\n|","sha":"d5b1fdf49af8eb23210e3b15a20fe1f9b660eea8"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/192377","number":192377,"mergeCommit":{"message":"[ML] Anomaly Explorer: Display markers for scheduled events in distribution type anomaly charts (#192377)\n\n## Summary\r\n\r\nFix for [#129304](https://github.com/elastic/kibana/issues/129304)\r\n\r\nPreviously, for distribution type charts, we displayed calendar event\r\nmarkers only for anomalous data points. The changes improve the display\r\nof event markers for such chart types, including showing calendar event\r\nmarkers even when there is no underlying data point.\r\n\r\n| Scenario | Before | After |\r\n| :---: | :---: | :---: |\r\n| Rare chart |\r\n\r\n|\r\n\r\n|\r\n| Population chart | \r\n|\r\n\r\n|\r\n| Single metric chart (no difference) |\r\n\r\n|\r\n\r\n|","sha":"d5b1fdf49af8eb23210e3b15a20fe1f9b660eea8"}},{"branch":"8.x","label":"v8.16.0","branchLabelMappingKey":"^v8.16.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Robert Jaszczurek <[email protected]>
Summary
Fix for #129304
Previously, for distribution type charts, we displayed calendar event markers only for anomalous data points. The changes improve the display of event markers for such chart types, including showing calendar event markers even when there is no underlying data point.