Skip to content

[7.x] [RAC] - Update field names (#107857)#108170

Merged
kibanamachine merged 1 commit intoelastic:7.xfrom
kibanamachine:backport/7.x/pr-107857
Aug 11, 2021
Merged

[7.x] [RAC] - Update field names (#107857)#108170
kibanamachine merged 1 commit intoelastic:7.xfrom
kibanamachine:backport/7.x/pr-107857

Conversation

@kibanamachine
Copy link
Copy Markdown
Contributor

@kibanamachine kibanamachine commented Aug 11, 2021

Backports the following commits to 7.x:

@yctercero @kibanamachine
[RAC] - Update field names (elastic#107857)
14090d8 
### Summary
### Fields used moving forward
`kibana.alert.rule.consumer` will refer to the context in which a rule instance is created. Rules created in:
- stack --> `alerts`
- security solution --> `siem`
- apm --> `apm`

`kibana.alert.rule.producer` will refer to the plugin that registered a rule type. Rules registered in:
- stack --> `alerts`
- security solution --> `siem`
- apm --> `apm`

So an `apm.error_rate` rule created in stack will have:
- consumer: `alerts` and producer: `apm`
 An `apm.error_rate` rule created in apm will have:
- consumer: `apm` and producer: `apm`

`kibana.alert.rule.rule_type_id` will refer to a rule's rule type id. Examples:
- `apm.error_rate`
- `siem.signals`
- `siem.threshold`

Also renamed the following because `rule.*` fields are meant to be ecs fields pulled from the source/event document, not refer to our rule fields.
`rule.name` --> `kibana.alert.rule.name` will refer to the rule's name.

`rule.category` --> `kibana.alert.rule.category` will refer to the rule's category.

`rule.id` --> `kibana.alert.rule.uuid` will refer to the rule's uuid.
@kibanamachine kibanamachine added the backport This PR is a backport of another PR label Aug 11, 2021
@kibanamachine kibanamachine enabled auto-merge (squash) August 11, 2021 10:28
@kibanamachine kibanamachine mentioned this pull request Aug 11, 2021
Merged
@kibanamachine
Copy link
Copy Markdown
Contributor Author

kibanamachine commented Aug 11, 2021

💚 Build Succeeded

Metrics [docs]

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
apm 4.3MB 4.3MB -662.0B
observability 511.4KB 510.4KB -1015.0B
securitySolution 6.5MB 6.5MB -4.0B
total -1.6KB

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id before after diff
apm 44.7KB 44.5KB -225.0B
infra 150.1KB 149.9KB -225.0B
uptime 35.7KB 35.4KB -225.0B
total -675.0B

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @yctercero

@kibanamachine kibanamachine merged commit 9e558ac into elastic:7.x Aug 11, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@yctercero yctercero

Labels

backport This PR is a backport of another PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kibanamachine @yctercero