[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule#215941
Merged
dhurley14 merged 17 commits intoelastic:mainfrom Apr 18, 2025
Conversation
… for index pattern
dhurley14
changed the title
dhurley14
added
release_note:skip
dhurley14
requested review from
rylnd and
yctercero
and removed request for
rylnd
yctercero
reviewed
Mar 26, 2025
...detections_response/detection_engine/actions/trial_license_complete_tier/check_privileges.ts
Outdated
Show resolved
Hide resolved
nkhristinin
reviewed
Apr 2, 2025
...ons/security/plugins/security_solution/server/lib/detection_engine/rule_types/utils/utils.ts
Outdated
Show resolved
Hide resolved
wajihaparvez
reviewed
Apr 7, 2025
...ons/security/plugins/security_solution/server/lib/detection_engine/rule_types/utils/utils.ts
Outdated
Show resolved
Hide resolved
Contributor
|
@dhurley14 hey! Not sure if it's already fixed in the code, but I think we're concatenating different errors using
|
Contributor
Author
|
@yctercero I believe this is responsible for the incorrect punctuation. I can try to make the change in this PR. |
Contributor
Author
|
@yctercero How does this look? 
|
Contributor
I like that a lot better! cc @approksiu |
Contributor
💚 Build Succeeded
Metrics [docs]Async chunks
Page load bundle
History
cc @dhurley14 |
nastasha-solomon
approved these changes
Apr 18, 2025
Contributor
|
Starting backport for target branches: 9.0 https://github.com/elastic/kibana/actions/runs/14539678922 |
Contributor
💔 All backports failed
Manual backportTo create the backport manually run: Questions ?Please refer to the Backport tool documentation |
This was referenced Apr 21, 2025
davismcphee
pushed a commit
to davismcphee/kibana
that referenced
this pull request
Apr 22, 2025
… privileges on index patterns for a given rule (elastic#215941) ## Summary Ref: elastic#193204 Updates the text shown when a rule may not have read privileges to a given index pattern.
dhurley14
added a commit
to dhurley14/kibana
that referenced
this pull request
Apr 22, 2025
… privileges on index patterns for a given rule (elastic#215941) ## Summary Ref: elastic#193204 Updates the text shown when a rule may not have read privileges to a given index pattern. (cherry picked from commit 6e4a06e) # Conflicts: # x-pack/solutions/security/plugins/security_solution/server/lib/detection_engine/rule_types/utils/utils.ts
Contributor
Author
💚 All backports created successfully
Note: Successful backport PRs will be merged automatically after passing CI. Questions ?Please refer to the Backport tool documentation |
dhurley14
added a commit
to dhurley14/kibana
that referenced
this pull request
Apr 22, 2025
… privileges on index patterns for a given rule (elastic#215941) ## Summary Ref: elastic#193204 Updates the text shown when a rule may not have read privileges to a given index pattern. (cherry picked from commit 6e4a06e) # Conflicts: # src/platform/packages/shared/kbn-doc-links/src/get_doc_links.ts # x-pack/solutions/security/plugins/security_solution/server/lib/detection_engine/rule_types/create_security_rule_type_wrapper.ts
dhurley14
added a commit
that referenced
this pull request
Apr 23, 2025
…-index privileges on index patterns for a given rule (#215941) (#218878) # Backport This will backport the following commits from `main` to `9.0`: - [[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)](#215941) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Devin W. Hurley","email":"devin.hurley@elastic.co"},"sourceCommit":{"committedDate":"2025-04-18T18:14:45Z","message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c","branchLabelMapping":{"^v9.1.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","ci:cloud-deploy","ci:cloud-redeploy","backport:version","v9.1.0","v8.19.0","v9.0.1"],"title":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule","number":215941,"url":"https://github.com/elastic/kibana/pull/215941","mergeCommit":{"message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c"}},"sourceBranch":"main","suggestedTargetBranches":["8.19","9.0"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/215941","number":215941,"mergeCommit":{"message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c"}},{"branch":"8.19","label":"v8.19.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"9.0","label":"v9.0.1","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT-->
dhurley14
added a commit
that referenced
this pull request
Apr 23, 2025
…d-index privileges on index patterns for a given rule (#215941) (#218882) # Backport This will backport the following commits from `main` to `8.19`: - [[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)](#215941) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Devin W. Hurley","email":"devin.hurley@elastic.co"},"sourceCommit":{"committedDate":"2025-04-18T18:14:45Z","message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c","branchLabelMapping":{"^v9.1.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","ci:cloud-deploy","ci:cloud-redeploy","backport:version","v9.1.0","v8.19.0","v9.0.1"],"title":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule","number":215941,"url":"https://github.com/elastic/kibana/pull/215941","mergeCommit":{"message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c"}},"sourceBranch":"main","suggestedTargetBranches":["8.19","9.0"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/215941","number":215941,"mergeCommit":{"message":"[Security Solution] [Detections] Clarify result of missing read-index privileges on index patterns for a given rule (#215941)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/193204\n\nUpdates the text shown when a rule may not have read privileges to a\ngiven index pattern.","sha":"6e4a06ee0f1f2f9e6a45ce064643be323066b66c"}},{"branch":"8.19","label":"v8.19.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"9.0","label":"v9.0.1","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT-->
akowalska622
pushed a commit
to akowalska622/kibana
that referenced
this pull request
May 29, 2025
… privileges on index patterns for a given rule (elastic#215941) ## Summary Ref: elastic#193204 Updates the text shown when a rule may not have read privileges to a given index pattern.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Ref: #193204
Updates the text shown when a rule may not have read privileges to a given index pattern.
Given a user with read privileges to
packetbeat-*, and data available inauditbeat-*andpacketbeat-*, the following error would appear if given a rule querying both index patterns.