Skip to content

Send complete test data to xMatters, so it can create an alert#145431

Merged
ersin-erdal merged 11 commits intoelastic:mainfrom
ersin-erdal:144062-xmatters
Nov 24, 2022
Merged

Send complete test data to xMatters, so it can create an alert#145431
ersin-erdal merged 11 commits intoelastic:mainfrom
ersin-erdal:144062-xmatters

Conversation

@ersin-erdal
Copy link
Copy Markdown
Contributor

@ersin-erdal ersin-erdal commented Nov 16, 2022

Fixes: #144062

xMatters needs at least signalId and alertActionGroupName fields to create an alert out of a signal.
I also added ruleName date and spaceId so the created alert can have some context.

To verify:

  • You need a working xMatters account (a free trial account is enough)
  • add Elastic search template to the workflows,
  • create an xMatters connector and run a test on test tab. (use the initiation url that was created in your xMatters account under Workflows > Flow designer > Send Alerts > Webhook)

Screenshot 2022-11-16 at 19 20 11

@ersin-erdal ersin-erdal added release_note:fix Team:ResponseOps Platform ResponseOps team (formerly the Cases and Alerting teams) t// v8.6.0 labels Nov 16, 2022
@ersin-erdal ersin-erdal marked this pull request as ready for review November 16, 2022 20:23
@ersin-erdal ersin-erdal requested review from a team as code owners November 16, 2022 20:23
@elasticmachine
Copy link
Copy Markdown
Contributor

elasticmachine commented Nov 16, 2022

Pinging @elastic/response-ops (Team:ResponseOps)

doakalexi
doakalexi approved these changes Nov 17, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@doakalexi doakalexi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! I was able to see the alerts in xMatters

@EricDavisX EricDavisX added the ci:cloud-deploy Create or update a Cloud deployment label Nov 17, 2022
@ersin-erdal ersin-erdal added v8.7.0 and removed v8.6.0 labels Nov 18, 2022
@ersin-erdal ersin-erdal removed the ci:cloud-deploy Create or update a Cloud deployment label Nov 24, 2022
@kibana-ci
Copy link
Copy Markdown

kibana-ci commented Nov 24, 2022

💚 Build Succeeded

Metrics [docs]

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
stackConnectors 415.5KB 415.7KB +241.0B
Unknown metric groups

ESLint disabled in files

id before after diff
osquery 1 2 +1

ESLint disabled line counts

id before after diff
enterpriseSearch 19 21 +2
fleet 59 65 +6
osquery 109 115 +6
securitySolution 443 449 +6
total +20

Total ESLint disabled count

id before after diff
enterpriseSearch 20 22 +2
fleet 68 74 +6
osquery 110 117 +7
securitySolution 520 526 +6
total +21

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

@ersin-erdal ersin-erdal merged commit 55ca52d into elastic:main Nov 24, 2022
@kibanamachine kibanamachine added the backport:skip This PR does not require backporting label Nov 24, 2022
@ersin-erdal ersin-erdal deleted the 144062-xmatters branch November 24, 2022 20:05
jloleysens added a commit to jloleysens/kibana that referenced this pull request Nov 28, 2022
@jloleysens
Merge branch 'main' into files-move-components-to-packages-upload-file
9133d24 
* main: (30 commits)
  [Cloud Posture] test latest findings table sort (elastic#144668)
  [api-docs] 2022-11-28 Daily api_docs build (elastic#146359)
  [api-docs] 2022-11-27 Daily api_docs build (elastic#146353)
  [api-docs] 2022-11-26 Daily api_docs build (elastic#146350)
  [DataViews] Fix form validation UX when the same data view name already exists (elastic#146126)
  [Discover] Prevent agg based visualizations of Discover saved objects with adhoc data views (elastic#145583)
  [Health Gateway] Update response aggregation (elastic#145761)
  [api-docs] 2022-11-25 Daily api_docs build (elastic#146341)
  [Metric threshold rule] Adds new context variable for group by keys (elastic#145654)
  [Controls] [Portable Dashboards] Add control group renderer example plugin (elastic#146189)
  Refactor Observability Overview Page (elastic#146182)
  Send complete test data to xMatters, so it can create an alert (elastic#145431)
  [Dashboard] [Controls] Allow options list suggestions to be sorted (elastic#144867)
  Add open API specification for list connector types (elastic#145951)
  skip flaky suite (elastic#146086)
  [ML] Removing duplicate tooltip text (elastic#146308)
  Refactor Rules Page (elastic#146193)
  [DOCS] Alert limit for cases (elastic#145950)
  Extend session index fields mapping with a session creation timestamp. (elastic#145997)
  [Files] Move <Image /> component to `@kbn/shared-ux` package (elastic#145995)
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@doakalexi doakalexi doakalexi approved these changes

Assignees

No one assigned

Labels

backport:skip This PR does not require backporting release_note:fix Team:ResponseOps Platform ResponseOps team (formerly the Cases and Alerting teams) t// v8.7.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Connector 'test' functionality for xMatters does not send an Alert

6 participants

@ersin-erdal @elasticmachine @kibana-ci @doakalexi @EricDavisX @kibanamachine