diff --git a/.buildkite/ftr_security_serverless_configs.yml b/.buildkite/ftr_security_serverless_configs.yml index e9d181e4c75bd..4e575c081323b 100644 --- a/.buildkite/ftr_security_serverless_configs.yml +++ b/.buildkite/ftr_security_serverless_configs.yml @@ -1,9 +1,9 @@ disabled: # Base config files, only necessary to inform config finding script - - x-pack/test/security_solution_api_integration/config/serverless/config.base.ts - - x-pack/test/security_solution_api_integration/config/serverless/config.base.essentials.ts - - x-pack/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts - - x-pack/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.essentials.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts - x-pack/solutions/security/test/defend_workflows_cypress/serverless_config.base.ts - x-pack/solutions/security/test/osquery_cypress/serverless_config.base.ts - x-pack/platform/test/serverless/functional/config.security.base.ts @@ -21,8 +21,8 @@ disabled: - x-pack/solutions/security/test/serverless/functional/configs/config.mki_only.ts # Detection Rules Management base configs - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts defaultQueue: 'n2-4-spot' enabled: @@ -53,93 +53,93 @@ enabled: - x-pack/platform/test/serverless/functional/configs/security/config.group10.ts - x-pack/platform/test/serverless/functional/configs/security/config.group11.ts - x-pack/platform/test/serverless/functional/configs/security/config.group12.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_endpoint/configs/serverless.endpoint.config.ts - - x-pack/test/security_solution_endpoint/configs/serverless.integrations.config.ts - - x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.endpoint.config.ts + - x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.integrations.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts # serverless config files that run deployment-agnostic tests - x-pack/platform/test/spaces_api_integration/deployment_agnostic/security_and_spaces/serverless.config.ts - x-pack/platform/test/spaces_api_integration/deployment_agnostic/security_and_spaces/serverless.copy_to_space.config.ts diff --git a/.buildkite/ftr_security_stateful_configs.yml b/.buildkite/ftr_security_stateful_configs.yml index 8a722c416f1d4..285e896790551 100644 --- a/.buildkite/ftr_security_stateful_configs.yml +++ b/.buildkite/ftr_security_stateful_configs.yml @@ -1,13 +1,13 @@ disabled: # Base config files, only necessary to inform config finding script - - x-pack/test/security_solution_api_integration/config/ess/config.base.ts - - x-pack/test/security_solution_api_integration/config/ess/config.base.basic.ts - - x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts - - x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts - - x-pack/test/security_solution_api_integration/config/ess/config.base.trial.ts - - x-pack/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts - - x-pack/test/security_solution_endpoint/configs/config.base.ts - - x-pack/test/security_solution_endpoint/config.base.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.basic.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.trial.ts + - x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts + - x-pack/solutions/security/test/security_solution_endpoint/configs/config.base.ts + - x-pack/solutions/security/test/security_solution_endpoint/config.base.ts - x-pack/test/security_solution_endpoint_api_int/config.base.ts - x-pack/solutions/security/test/api_integration/config.ts - x-pack/solutions/security/test/functional/config.base.ts @@ -31,95 +31,95 @@ disabled: - x-pack/solutions/security/test/security_solution_playwright/playwright.config.ts # Gen AI Evals run weekly via their own pipeline - - x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts # Detection Rules Management base configs - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts defaultQueue: 'n2-4-spot' enabled: - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts - - x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts - - x-pack/test/security_solution_endpoint/configs/endpoint.config.ts - - x-pack/test/security_solution_endpoint/configs/integrations.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts + - x-pack/solutions/security/test/security_solution_endpoint/configs/endpoint.config.ts + - x-pack/solutions/security/test/security_solution_endpoint/configs/integrations.config.ts - x-pack/solutions/security/test/api_integration/apis/cloud_security_posture/config.ts - x-pack/solutions/security/test/cloud_security_posture_api/config.ts - x-pack/solutions/security/test/cloud_security_posture_functional/config.ts diff --git a/.buildkite/pipelines/pull_request/security_solution/gen_ai_evals.yml b/.buildkite/pipelines/pull_request/security_solution/gen_ai_evals.yml index 34b45baf1aa0a..66681dfa72561 100644 --- a/.buildkite/pipelines/pull_request/security_solution/gen_ai_evals.yml +++ b/.buildkite/pipelines/pull_request/security_solution/gen_ai_evals.yml @@ -12,9 +12,9 @@ steps: steps: - command: .buildkite/scripts/steps/test/ftr_configs.sh env: - FTR_CONFIG: "x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts" + FTR_CONFIG: 'x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts' FTR_CONFIG_GROUP_KEY: 'ftr-security-solution-gen-ai-evaluations' - FTR_SECURITY_GEN_AI: "1" + FTR_SECURITY_GEN_AI: '1' label: Security Solution Gen AI Evaluations key: security-solution-gen-ai-evaluations timeout_in_minutes: 50 diff --git a/.buildkite/pipelines/security_solution/gen_ai_evals.yml b/.buildkite/pipelines/security_solution/gen_ai_evals.yml index 5cfad414726df..c2cc62ebfc3f9 100644 --- a/.buildkite/pipelines/security_solution/gen_ai_evals.yml +++ b/.buildkite/pipelines/security_solution/gen_ai_evals.yml @@ -1,5 +1,5 @@ env: - FTR_SECURITY_GEN_AI: "1" + FTR_SECURITY_GEN_AI: '1' steps: - label: '👨‍🔧 Pre-Build' command: .buildkite/scripts/lifecycle/pre_build.sh @@ -25,9 +25,9 @@ steps: - command: .buildkite/scripts/steps/test/ftr_configs.sh env: - FTR_CONFIG: "x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts" + FTR_CONFIG: 'x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts' FTR_CONFIG_GROUP_KEY: 'ftr-security-solution-gen-ai-evaluations' - FTR_SECURITY_GEN_AI: "1" + FTR_SECURITY_GEN_AI: '1' label: Security Solution Gen AI Evaluations key: ftr-security-solution-gen-ai-evaluations timeout_in_minutes: 50 @@ -44,5 +44,3 @@ steps: limit: 3 - exit_status: '*' limit: 1 - - diff --git a/.buildkite/scripts/pipelines/security_solution_quality_gate/api_integration/api-integration-tests.sh b/.buildkite/scripts/pipelines/security_solution_quality_gate/api_integration/api-integration-tests.sh index 1aede759481a5..6c59d41e14b5c 100755 --- a/.buildkite/scripts/pipelines/security_solution_quality_gate/api_integration/api-integration-tests.sh +++ b/.buildkite/scripts/pipelines/security_solution_quality_gate/api_integration/api-integration-tests.sh @@ -16,7 +16,7 @@ source .buildkite/scripts/pipelines/security_solution_quality_gate/prepare_vault echo "--- Running test script $1" -cd x-pack/test/security_solution_api_integration +cd x-pack/solutions/security/test/security_solution_api_integration set +e TARGET_SCRIPT=$1 node ./scripts/mki_start_api_ftr_execution diff --git a/.eslintrc.js b/.eslintrc.js index 2dbe1cf0e1197..b8836feaa0813 100644 --- a/.eslintrc.js +++ b/.eslintrc.js @@ -798,8 +798,8 @@ module.exports = { 'x-pack/platform/test/serverless/*/configs/**/*', 'x-pack/test_serverless/*/test_suites/**/*', 'x-pack/test/profiling_api_integration/**/*.ts', - 'x-pack/test/security_solution_api_integration/*/test_suites/**/*', - 'x-pack/test/security_solution_api_integration/**/config*.ts', + 'x-pack/solutions/security/test/security_solution_api_integration/*/test_suites/**/*', + 'x-pack/solutions/security/test/security_solution_api_integration/**/config*.ts', '**/playwright.config.ts', ], rules: { diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 39626fbc2e03f..cdb9a836ed094 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -2418,9 +2418,8 @@ x-pack/platform/test/functional/page_objects/search_profiler_page.ts @elastic/se #CC# /x-pack/plugins/cross_cluster_replication/ @elastic/kibana-management # Security Solution -/x-pack/solutions/security/test/fixtures/kbn_archives/timelines/7.15.0_space @elastic/security-solution # Assigned per only use: https://github.com/elastic/kibana/blob/main/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts#L58 +/x-pack/solutions/security/test/fixtures/kbn_archives/timelines/7.15.0_space @elastic/security-solution # Assigned per only use: https://github.com/elastic/kibana/blob/main/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts#L58 /x-pack/solutions/security/test/fixtures/es_archives/packetbeat @elastic/security-solution -/x-pack/test/security_solution_ftr @elastic/security-solution /x-pack/solutions/security/test/fixtures/es_archives/security_solution @elastic/security-solution /x-pack/solutions/security/test/fixtures/es_archives/rule_exceptions @elastic/security-solution # Assigned per https://github.com/elastic/kibana/pull/199795/files/ae80bb252bc71f787c122849fcb9b01e386fc5e9#r1840233040 /x-pack/solutions/security/test/functional/ @elastic/security-solution @@ -2428,12 +2427,12 @@ x-pack/platform/test/functional/page_objects/search_profiler_page.ts @elastic/se /x-pack/test/common/utils/security_solution/index.ts @elastic/security-solution /x-pack/test/common/utils/security_solution/spaces.ts @elastic/security-detection-rule-management /x-pack/solutions/security/test/plugin_functional/ @elastic/security-solution -/x-pack/test/common/services/security_solution @elastic/security-solution +/x-pack/solutions/security/test/api_integration/services @elastic/security-solution /x-pack/test/api_integration/services/security_solution_*.gen.ts @elastic/security-solution /x-pack/solutions/security/test/accessibility/ @elastic/security-solution /x-pack/solutions/security/test/fixtures/es_archives/endpoint/ @elastic/security-solution /x-pack/platform/test/plugin_functional/test_suites/resolver/ @elastic/security-solution -/x-pack/test/security_solution_api_integration @elastic/security-solution +/x-pack/solutions/security/test/security_solution_api_integration @elastic/security-solution /x-pack/test/api_integration/apis/security_solution @elastic/security-solution /x-pack/platform/test/fixtures/es_archives/auditbeat/default @elastic/security-solution /x-pack/solutions/security/test/serverless/functional/test_suites/constants.ts @elastic/security-solution @@ -2479,7 +2478,7 @@ x-pack/platform/test/functional/page_objects/search_profiler_page.ts @elastic/se # AI4DSOC in Security Solution /x-pack/solutions/security/test/security_solution_cypress/cypress/e2e/ai4dsoc @elastic/security-engineering-productivity /x-pack/solutions/security/test/security_solution_cypress/cypress/e2e/ai4dsoc/privileges @elastic/security-generative-ai -/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc @elastic/security-engineering-productivity +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc @elastic/security-engineering-productivity # Security Solution cross teams ownership /x-pack/solutions/security/test/security_solution_cypress/cypress/fixtures @elastic/security-detections-response @elastic/security-threat-hunting @@ -2499,11 +2498,11 @@ x-pack/platform/test/functional/page_objects/search_profiler_page.ts @elastic/se /x-pack/solutions/security/plugins/security_solution/server/routes @elastic/security-detections-response @elastic/security-threat-hunting /x-pack/solutions/security/plugins/security_solution/server/utils @elastic/security-detections-response @elastic/security-threat-hunting -x-pack/test/security_solution_api_integration/test_suites/detections_response/utils @elastic/security-detections-response -x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry @elastic/security-detections-response -x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles @elastic/security-detections-response -x-pack/test/security_solution_api_integration/test_suites/sources @elastic/security-detections-response -/x-pack/test/security_solution_api_integration/config/services/detections_response/ @elastic/security-detections-response +x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils @elastic/security-detections-response +x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry @elastic/security-detections-response +x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles @elastic/security-detections-response +x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources @elastic/security-detections-response +/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/ @elastic/security-detections-response /x-pack/solutions/security/test/fixtures/es_archives/signals @elastic/security-detections-response /x-pack/solutions/security/test/fixtures/es_archives/rule_keyword_family @elastic/security-detections-response @@ -2530,7 +2529,7 @@ x-pack/platform/plugins/shared/entity_manager/server/lib/entities @elastic/entit x-pack/platform/plugins/shared/entity_manager/server/lib/auth @elastic/entity-store x-pack/solutions/security/plugins/security_solution/server/lib/entity_analytics/entity_store @elastic/entity-store x-pack/solutions/security/plugins/security_solution/common/api/entity_analytics/entity_store @elastic/entity-store -x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/ @elastic/entity-store +x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/ @elastic/entity-store ## Security Solution sub teams - Threat Hunting @@ -2543,7 +2542,7 @@ x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entit /x-pack/solutions/security/plugins/security_solution/public/siem_migrations @elastic/security-threat-hunting /x-pack/solutions/security/plugins/security_solution/server/lib/siem_migrations @elastic/security-threat-hunting -x-pack/test/security_solution_api_integration/test_suites/siem_migrations @elastic/security-threat-hunting +x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations @elastic/security-threat-hunting /x-pack/solutions/security/test/serverless/functional/test_suites/ftr/discover @elastic/security-threat-hunting x-pack/solutions/security/test/serverless/functional/configs/config.context_awareness.ts @elastic/security-threat-hunting @@ -2639,7 +2638,7 @@ x-pack/solutions/security/test/serverless/functional/configs/config.context_awar /x-pack/platform/test/fixtures/es_archives/auditbeat/overview @elastic/security-threat-hunting-investigations -x-pack/test/security_solution_api_integration/test_suites/investigations @elastic/security-threat-hunting-investigations +x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigations @elastic/security-threat-hunting-investigations /x-pack/solutions/security/test/serverless/functional/configs/config.context_awareness.ts @elastic/security-threat-hunting-investigations @@ -2700,7 +2699,7 @@ x-pack/platform/plugins/shared/actions/server/lib/token_tracking @elastic/securi /x-pack/solutions/security/plugins/security_solution/docs/rfcs/detection_response @elastic/security-detection-rule-management @elastic/security-detection-engine /x-pack/solutions/security/plugins/security_solution/docs/testing/test_plans/detection_response/prebuilt_rules @elastic/security-detection-rule-management /x-pack/solutions/security/plugins/security_solution/docs/testing/test_plans/detection_response/rule_management @elastic/security-detection-rule-management -/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management @elastic/security-detection-rule-management +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management @elastic/security-detection-rule-management /x-pack/solutions/security/plugins/security_solution/public/common/components/health_truncate_text @elastic/security-detection-rule-management /x-pack/solutions/security/plugins/security_solution/public/common/components/links_to_docs @elastic/security-detection-rule-management @@ -2761,9 +2760,9 @@ x-pack/platform/plugins/shared/actions/server/lib/token_tracking @elastic/securi /x-pack/solutions/security/test/security_solution_cypress/cypress/e2e/detection_response/detection_engine @elastic/security-detection-engine -/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine @elastic/security-detection-engine -/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts @elastic/security-detection-engine -/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists @elastic/security-detection-engine +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine @elastic/security-detection-engine +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts @elastic/security-detection-engine +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists @elastic/security-detection-engine /x-pack/solutions/security/test/fixtures/es_archives/asset_criticality @elastic/security-detection-engine /x-pack/solutions/security/plugins/security_solution/server/usage/exceptions @elastic/security-detection-engine /x-pack/solutions/security/plugins/security_solution/server/usage/value_lists @elastic/security-detection-engine @@ -2788,8 +2787,8 @@ x-pack/solutions/security/plugins/security_solution/server/assistant/tools/defen /x-pack/solutions/security/plugins/security_solution/server/lib/license/ @elastic/security-defend-workflows /x-pack/solutions/security/plugins/security_solution/server/fleet_integration/ @elastic/security-defend-workflows /x-pack/solutions/security/plugins/security_solution/scripts/endpoint/ @elastic/security-defend-workflows -/x-pack/test/security_solution_endpoint/ @elastic/security-defend-workflows -/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/ @elastic/security-defend-workflows +/x-pack/solutions/security/test/security_solution_endpoint/ @elastic/security-defend-workflows +/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/ @elastic/security-defend-workflows /x-pack/solutions/security/plugins/security_solution_serverless/public/upselling/sections/endpoint_management @elastic/security-defend-workflows /x-pack/solutions/security/plugins/security_solution_serverless/public/upselling/pages/endpoint_management @elastic/security-defend-workflows /x-pack/solutions/security/plugins/security_solution_serverless/server/endpoint @elastic/security-defend-workflows @@ -2842,11 +2841,11 @@ x-pack/solutions/security/test/security_solution_cypress/cypress/tasks/users @el x-pack/platform/test/fixtures/es_archives/auditbeat/hosts @elastic/security-entity-analytics x-pack/platform/test/fixtures/es_archives/auditbeat/uncommon_processes @elastic/security-entity-analytics x-pack/platform/test/fixtures/es_archives/auditbeat/users @elastic/security-entity-analytics -x-pack/test/security_solution_api_integration/test_suites/entity_analytics @elastic/security-entity-analytics -x-pack/test/security_solution_api_integration/test_suites/explore @elastic/security-entity-analytics +x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics @elastic/security-entity-analytics +x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore @elastic/security-entity-analytics ## Security Solution sub teams - GenAI -x-pack/test/security_solution_api_integration/test_suites/genai @elastic/security-generative-ai +x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai @elastic/security-generative-ai ## Security Solution sub teams - Automatic Import x-pack/platform/test/automatic_import_api_integration @elastic/security-scalability diff --git a/src/dev/eslint/types.eslint.config.template.cjs b/src/dev/eslint/types.eslint.config.template.cjs index 4ad2391055f5d..2322076e61748 100644 --- a/src/dev/eslint/types.eslint.config.template.cjs +++ b/src/dev/eslint/types.eslint.config.template.cjs @@ -35,7 +35,10 @@ module.exports = { }, }, { - files: ['*spaces_api_integration/common/services/basic_auth_supertest.ts'], + files: [ + '*spaces_api_integration/common/services/basic_auth_supertest.ts', + // TODO: high chances missing awaits cause test flakiness, 37 errors spotted + 'x-pack/solutions/security/test/security_solution_api_integration/**/*'], rules: { '@typescript-eslint/no-floating-promises': 'off', }, diff --git a/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/refresh_index.ts b/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/refresh_index.ts index 2933779ea8969..3002fca562c79 100644 --- a/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/refresh_index.ts +++ b/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/refresh_index.ts @@ -9,7 +9,7 @@ import type { Client } from '@elastic/elasticsearch'; import { ALL_SAVED_OBJECT_INDICES } from '@kbn/core-saved-objects-server'; /** - * Copied from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts + * Copied from x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts * * Refresh an index, making changes available to search. * Reusable utility which refreshes all saved object indices, to make them available for search, especially diff --git a/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/retry.ts b/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/retry.ts index 74755064cdf01..e1995f0d44603 100644 --- a/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/retry.ts +++ b/x-pack/solutions/observability/test/alerting_api_integration/observability/helpers/retry.ts @@ -9,7 +9,7 @@ import type { RetryService } from '@kbn/ftr-common-functional-services'; import type { ToolingLog } from '@kbn/tooling-log'; /** - * Copied from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/retry.ts + * Copied from x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/retry.ts * * Retry wrapper for async supertests, with a maximum number of retries. * You can pass in a function that executes a supertest test, and make assertions diff --git a/x-pack/solutions/security/plugins/security_solution/README.md b/x-pack/solutions/security/plugins/security_solution/README.md index 34d94cbb99283..a6c337c205d33 100644 --- a/x-pack/solutions/security/plugins/security_solution/README.md +++ b/x-pack/solutions/security/plugins/security_solution/README.md @@ -51,13 +51,13 @@ FLEET_PACKAGE_REGISTRY_PORT=12345 yarn test:ftr:runner --config x-pack/test/secu In one terminal, run: ```bash -FLEET_PACKAGE_REGISTRY_PORT=12345 yarn test:ftr:server --config x-pack/test/security_solution_endpoint/config.ts +FLEET_PACKAGE_REGISTRY_PORT=12345 yarn test:ftr:server --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` In another terminal, run: ```bash -FLEET_PACKAGE_REGISTRY_PORT=12345 yarn test:ftr:runner --config x-pack/test/security_solution_endpoint/config.ts +FLEET_PACKAGE_REGISTRY_PORT=12345 yarn test:ftr:runner --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` ### Running your own package registry @@ -86,13 +86,13 @@ PACKAGE_REGISTRY_URL_OVERRIDE= yarn test:ftr:server --config x-pack/test/security_solution_endpoint/config.ts +PACKAGE_REGISTRY_URL_OVERRIDE= yarn test:ftr:server --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` In another terminal, run: ```bash -PACKAGE_REGISTRY_URL_OVERRIDE= yarn test:ftr:runner --config x-pack/test/security_solution_endpoint/config.ts +PACKAGE_REGISTRY_URL_OVERRIDE= yarn test:ftr:runner --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` ### Using the default public registry @@ -120,13 +120,13 @@ yarn test:ftr:runner --config x-pack/test/security_solution_endpoint_api_int/con In one terminal, run: ```bash -yarn test:ftr:server --config x-pack/test/security_solution_endpoint/config.ts +yarn test:ftr:server --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` In another terminal, run: ```bash -yarn test:ftr:runner --config x-pack/test/security_solution_endpoint/config.ts +yarn test:ftr:runner --config x-pack/solutions/security/test/security_solution_endpoint/config.ts ``` #### Generate huge amount of indices with huge amount of fields diff --git a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/blocklists_validator.test.ts b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/blocklists_validator.test.ts index fe66987d8aa78..8c28666e60f7b 100644 --- a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/blocklists_validator.test.ts +++ b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/blocklists_validator.test.ts @@ -23,7 +23,7 @@ describe('Blocklists API validations', () => { // API TESTS FOR THIS ARTIFACT TYPE SHOULD BE COVERED WITH INTEGRATION TESTS. // ADD THEM HERE: // - // `x-pack/test/security_solution_api_integration/test_suites/edr_workflows` + // `x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows` // // ----------------------------------------------------------------------------- }); diff --git a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/endpoint_exceptions_validator.test.ts b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/endpoint_exceptions_validator.test.ts index 3fa62472acffd..22110d4b0b930 100644 --- a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/endpoint_exceptions_validator.test.ts +++ b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/endpoint_exceptions_validator.test.ts @@ -23,7 +23,7 @@ describe('Endpoint Exceptions API validations', () => { // API TESTS FOR THIS ARTIFACT TYPE SHOULD BE COVERED WITH INTEGRATION TESTS. // ADD THEM HERE: // - // `x-pack/test/security_solution_api_integration/test_suites/edr_workflows` + // `x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows` // // ----------------------------------------------------------------------------- }); diff --git a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/event_filter_validator.test.ts b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/event_filter_validator.test.ts index 9b86c85aec60f..dc8681f02861f 100644 --- a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/event_filter_validator.test.ts +++ b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/event_filter_validator.test.ts @@ -23,7 +23,7 @@ describe('Endpoint Exceptions API validations', () => { // API TESTS FOR THIS ARTIFACT TYPE SHOULD BE COVERED WITH INTEGRATION TESTS. // ADD THEM HERE: // - // `x-pack/test/security_solution_api_integration/test_suites/edr_workflows` + // `x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows` // // ----------------------------------------------------------------------------- }); diff --git a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/host_isolation_exceptions_validator.test.ts b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/host_isolation_exceptions_validator.test.ts index 3447f49e1375a..64b090295df0a 100644 --- a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/host_isolation_exceptions_validator.test.ts +++ b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/host_isolation_exceptions_validator.test.ts @@ -23,7 +23,7 @@ describe('Endpoint Exceptions API validations', () => { // API TESTS FOR THIS ARTIFACT TYPE SHOULD BE COVERED WITH INTEGRATION TESTS. // ADD THEM HERE: // - // `x-pack/test/security_solution_api_integration/test_suites/edr_workflows` + // `x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows` // // ----------------------------------------------------------------------------- }); diff --git a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/trusted_app_validator.test.ts b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/trusted_app_validator.test.ts index 6038d6435fc92..d4998332afad5 100644 --- a/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/trusted_app_validator.test.ts +++ b/x-pack/solutions/security/plugins/security_solution/server/lists_integration/endpoint/validators/trusted_app_validator.test.ts @@ -23,7 +23,7 @@ describe('Endpoint Exceptions API validations', () => { // API TESTS FOR THIS ARTIFACT TYPE SHOULD BE COVERED WITH INTEGRATION TESTS. // ADD THEM HERE: // - // `x-pack/test/security_solution_api_integration/test_suites/edr_workflows` + // `x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows` // // ----------------------------------------------------------------------------- }); diff --git a/x-pack/solutions/security/plugins/security_solution_serverless/server/task_manager/nlp_cleanup_task/nlp_cleanup_task.ts b/x-pack/solutions/security/plugins/security_solution_serverless/server/task_manager/nlp_cleanup_task/nlp_cleanup_task.ts index 17c058a0b9677..3914cd73919aa 100644 --- a/x-pack/solutions/security/plugins/security_solution_serverless/server/task_manager/nlp_cleanup_task/nlp_cleanup_task.ts +++ b/x-pack/solutions/security/plugins/security_solution_serverless/server/task_manager/nlp_cleanup_task/nlp_cleanup_task.ts @@ -53,7 +53,7 @@ export interface NLPCleanupTaskStartContract { * Task Details: after discussion with ResponseOps, it is preferred for the task to always be registered regardless of * the productTier, and to only schedule it if the productTier is `complete` or `searchAiLake`. * - * See `x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task` for API integration tests. + * See `x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task` for API integration tests. */ export class NLPCleanupTask { private logger: Logger; diff --git a/x-pack/solutions/security/test/api_integration/services/es_supertest_without_auth.js b/x-pack/solutions/security/test/api_integration/services/es_supertest_without_auth.js new file mode 100644 index 0000000000000..71ec058be46ab --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/es_supertest_without_auth.js @@ -0,0 +1,26 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { format as formatUrl } from 'url'; + +import supertest from 'supertest'; + +/** + * Supertest provider that doesn't include user credentials into base URL that is passed + * to the supertest. + */ +export function EsSupertestWithoutAuthProvider({ getService }) { + const config = getService('config'); + const elasticsearchServerConfig = config.get('servers.elasticsearch'); + + return supertest( + formatUrl({ + ...elasticsearchServerConfig, + auth: false, + }) + ); +} diff --git a/x-pack/solutions/security/test/api_integration/services/index.ts b/x-pack/solutions/security/test/api_integration/services/index.ts index 6b5e6f8a2dbf2..82ea8315c32f6 100644 --- a/x-pack/solutions/security/test/api_integration/services/index.ts +++ b/x-pack/solutions/security/test/api_integration/services/index.ts @@ -6,7 +6,14 @@ */ import { services as platformServices } from '@kbn/test-suites-xpack-platform/api_integration/services'; +// @ts-ignore not ts yet +import { EsSupertestWithoutAuthProvider } from './es_supertest_without_auth'; +import { SecuritySolutionApiProvider } from './security_solution_api.gen'; +import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from './security_solution_exceptions_api.gen'; export const services = { ...platformServices, + esSupertestWithoutAuth: EsSupertestWithoutAuthProvider, + securitySolutionApi: SecuritySolutionApiProvider, + securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, }; diff --git a/x-pack/solutions/security/test/api_integration/services/security_solution_api.gen.ts b/x-pack/solutions/security/test/api_integration/services/security_solution_api.gen.ts new file mode 100644 index 0000000000000..b26d1f0c25a63 --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/security_solution_api.gen.ts @@ -0,0 +1,2451 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { replaceParams } from '@kbn/openapi-common/shared'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { AlertsMigrationCleanupRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/delete_signals_migration/delete_signals_migration.gen'; +import { BulkUpsertAssetCriticalityRecordsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/bulk_upload_asset_criticality.gen'; +import { CleanDraftTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/clean_draft_timelines/clean_draft_timelines_route.gen'; +import { ConfigureRiskEngineSavedObjectRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/engine_configure_saved_object_route.gen'; +import { CopyTimelineRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/copy_timeline/copy_timeline_route.gen'; +import { CreateAlertsMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/create_signals_migration/create_signals_migration.gen'; +import { CreateAssetCriticalityRecordRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/create_asset_criticality.gen'; +import { CreateDashboardMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { + CreateDashboardMigrationDashboardsRequestParamsInput, + CreateDashboardMigrationDashboardsRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { CreateEntitySourceRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { CreatePrivilegesImportIndexRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/monitoring/create_index.gen'; +import { CreatePrivMonUserRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/create.gen'; +import { CreateRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/create_rule/create_rule_route.gen'; +import { CreateRuleMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + CreateRuleMigrationRulesRequestParamsInput, + CreateRuleMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { CreateTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/create_timelines/create_timelines_route.gen'; +import { + CreateUpdateProtectionUpdatesNoteRequestParamsInput, + CreateUpdateProtectionUpdatesNoteRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/protection_updates_note/protection_updates_note.gen'; +import { DeleteAssetCriticalityRecordRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/delete_asset_criticality.gen'; +import { + DeleteEntityEngineRequestQueryInput, + DeleteEntityEngineRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/delete.gen'; +import { DeleteEntitySourceRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { DeleteMonitoringEngineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/engine/delete.gen'; +import { DeleteNoteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/delete_note/delete_note_route.gen'; +import { DeletePrivMonUserRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/delete.gen'; +import { DeleteRuleRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/delete_rule/delete_rule_route.gen'; +import { DeleteRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { DeleteTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/delete_timelines/delete_timelines_route.gen'; +import { DeprecatedTriggerRiskScoreCalculationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/entity_calculation_route.gen'; +import { EndpointExecuteActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/execute/execute.gen'; +import { EndpointFileDownloadRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/file_download/file_download.gen'; +import { EndpointFileInfoRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/file_info/file_info.gen'; +import { EndpointGetActionsDetailsRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/details/details.gen'; +import { EndpointGetActionsListRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/list/list.gen'; +import { EndpointGetActionsStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/status/status.gen'; +import { EndpointGetFileActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/get_file/get_file.gen'; +import { EndpointGetProcessesActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/running_procs/running_procs.gen'; +import { EndpointIsolateActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/isolate/isolate.gen'; +import { EndpointKillProcessActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/kill_process/kill_process.gen'; +import { EndpointScanActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/scan/scan.gen'; +import { EndpointSuspendProcessActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/suspend_process/suspend_process.gen'; +import { EndpointUnisolateActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/unisolate/unisolate.gen'; +import { + ExportRulesRequestQueryInput, + ExportRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/export_rules/export_rules_route.gen'; +import { + ExportTimelinesRequestQueryInput, + ExportTimelinesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/timeline/export_timelines/export_timelines_route.gen'; +import { FinalizeAlertsMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/finalize_signals_migration/finalize_signals_migration.gen'; +import { FindAssetCriticalityRecordsRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/list_asset_criticality.gen'; +import { FindRulesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/find_rules/find_rules_route.gen'; +import { GetAssetCriticalityRecordRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/get_asset_criticality.gen'; +import { GetDashboardMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { GetDashboardMigrationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { GetDraftTimelinesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_draft_timelines/get_draft_timelines_route.gen'; +import { GetEndpointMetadataListRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/metadata/get_metadata.gen'; +import { + GetEndpointSuggestionsRequestParamsInput, + GetEndpointSuggestionsRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/suggestions/get_suggestions.gen'; +import { GetEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/get.gen'; +import { GetEntitySourceRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { GetEntityStoreStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/status.gen'; +import { GetNotesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_notes/get_notes_route.gen'; +import { GetPolicyResponseRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/policy/policy_response.gen'; +import { GetProtectionUpdatesNoteRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/protection_updates_note/protection_updates_note.gen'; +import { + GetRuleExecutionEventsRequestQueryInput, + GetRuleExecutionEventsRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_monitoring/rule_execution_logs/get_rule_execution_events/get_rule_execution_events_route.gen'; +import { + GetRuleExecutionResultsRequestQueryInput, + GetRuleExecutionResultsRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_monitoring/rule_execution_logs/get_rule_execution_results/get_rule_execution_results_route.gen'; +import { GetRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationPrebuiltRulesRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + GetRuleMigrationResourcesRequestQueryInput, + GetRuleMigrationResourcesRequestParamsInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationResourcesMissingRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + GetRuleMigrationRulesRequestQueryInput, + GetRuleMigrationRulesRequestParamsInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationTranslationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetTimelineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_timeline/get_timeline_route.gen'; +import { GetTimelinesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_timelines/get_timelines_route.gen'; +import { GetWorkflowInsightsRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/workflow_insights/workflow_insights.gen'; +import { ImportRulesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/import_rules/import_rules_route.gen'; +import { ImportTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/import_timelines/import_timelines_route.gen'; +import { + InitEntityEngineRequestParamsInput, + InitEntityEngineRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/init.gen'; +import { InitEntityStoreRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/enable.gen'; +import { + InstallMigrationRulesRequestParamsInput, + InstallMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { InstallPrepackedTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/install_prepackaged_timelines/install_prepackaged_timelines_route.gen'; +import { ListEntitiesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/entities/list_entities.gen'; +import { ListEntitySourcesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { ListPrivMonUsersRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/list.gen'; +import { PatchRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/patch_rule/patch_rule_route.gen'; +import { PatchTimelineRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/patch_timelines/patch_timeline_route.gen'; +import { + PerformRulesBulkActionRequestQueryInput, + PerformRulesBulkActionRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/bulk_actions/bulk_actions_route.gen'; +import { PersistFavoriteRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/persist_favorite/persist_favorite_route.gen'; +import { PersistNoteRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/persist_note/persist_note_route.gen'; +import { PersistPinnedEventRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/pinned_events/pinned_events_route.gen'; +import { PreviewRiskScoreRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/preview_route.gen'; +import { ReadAlertsMigrationStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/read_signals_migration_status/read_signals_migration_status.gen'; +import { ReadRuleRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/read_rule/read_rule_route.gen'; +import { ResolveTimelineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/resolve_timeline/resolve_timeline_route.gen'; +import { + RulePreviewRequestQueryInput, + RulePreviewRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_preview/rule_preview.gen'; +import { RunScriptActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/run_script/run_script.gen'; +import { SearchAlertsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals/query_signals/query_signals_route.gen'; +import { SearchPrivilegesIndicesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/monitoring/search_indices.gen'; +import { SetAlertAssigneesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/alert_assignees/set_alert_assignees_route.gen'; +import { SetAlertsStatusRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals/set_signal_status/set_signals_status_route.gen'; +import { SetAlertTagsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/alert_tags/set_alert_tags/set_alert_tags.gen'; +import { StartEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/start.gen'; +import { + StartRuleMigrationRequestParamsInput, + StartRuleMigrationRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { StopEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/stop.gen'; +import { StopRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { SuggestUserProfilesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/users/suggest_user_profiles_route.gen'; +import { TriggerRiskScoreCalculationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/entity_calculation_route.gen'; +import { + UpdateEntitySourceRequestParamsInput, + UpdateEntitySourceRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { + UpdatePrivMonUserRequestParamsInput, + UpdatePrivMonUserRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/update.gen'; +import { UpdateRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/update_rule/update_rule_route.gen'; +import { + UpdateRuleMigrationRequestParamsInput, + UpdateRuleMigrationRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateRuleMigrationIndexPatternRequestParamsInput, + UpdateRuleMigrationIndexPatternRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateRuleMigrationRulesRequestParamsInput, + UpdateRuleMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateWorkflowInsightRequestParamsInput, + UpdateWorkflowInsightRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/workflow_insights/workflow_insights.gen'; +import { + UpsertRuleMigrationResourcesRequestParamsInput, + UpsertRuleMigrationResourcesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { FtrProviderContext } from '../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * Migrations favor data integrity over shard size. Consequently, unused or orphaned indices are artifacts of +the migration process. A successful migration will result in both the old and new indices being present. +As such, the old, orphaned index can (and likely should) be deleted. + +While you can delete these indices manually, +the endpoint accomplishes this task by applying a deletion policy to the relevant index, causing it to be deleted +after 30 days. It also deletes other artifacts specific to the migration implementation. + + */ + alertsMigrationCleanup(props: AlertsMigrationCleanupProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/signals/migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + applyEntityEngineDataviewIndices(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_store/engines/apply_dataview_indices', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + assetCriticalityGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/asset_criticality/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Ensures that the packages needed for prebuilt detection rules to work are installed and up to date + */ + bootstrapPrebuiltRules(kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace('/internal/detection_engine/prebuilt_rules/_bootstrap', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Bulk upsert up to 1000 asset criticality records. + +If asset criticality records already exist for the specified entities, those records are overwritten with the specified values. If asset criticality records don't exist for the specified entities, new records are created. + + */ + bulkUpsertAssetCriticalityRecords( + props: BulkUpsertAssetCriticalityRecordsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality/bulk', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a clean draft Timeline or Timeline template for the current user. +> info +> If the user already has a draft Timeline, the existing draft Timeline is cleared and returned. + + */ + cleanDraftTimelines(props: CleanDraftTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_draft', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Cleaning up the the Risk Engine by removing the indices, mapping and transforms + */ + cleanUpRiskEngine(kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/risk_score/engine/dangerously_delete_data', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Configuring the Risk Engine Saved Object + */ + configureRiskEngineSavedObject( + props: ConfigureRiskEngineSavedObjectProps, + kibanaSpace: string = 'default' + ) { + return supertest + .patch(getRouteUrlForSpace('/api/risk_score/engine/saved_object/configure', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Copies and returns a timeline or timeline template. + + */ + copyTimeline(props: CopyTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/_copy', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Initiate a migration of detection alerts. +Migrations are initiated per index. While the process is neither destructive nor interferes with existing data, it may be resource-intensive. As such, it is recommended that you plan your migrations accordingly. + + */ + createAlertsMigration(props: CreateAlertsMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create or update an asset criticality record for a specific entity. + +If a record already exists for the specified entity, that record is overwritten with the specified value. If a record doesn't exist for the specified entity, a new record is created. + + */ + createAssetCriticalityRecord( + props: CreateAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Creates a new dashboard migration and returns the corresponding migration_id + */ + createDashboardMigration( + props: CreateDashboardMigrationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .put(getRouteUrlForSpace('/internal/siem_migrations/dashboards', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Adds dashboards to an alreayd existing dashboard migration + */ + createDashboardMigrationDashboards( + props: CreateDashboardMigrationDashboardsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/dashboards/{migration_id}/dashboards', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createEntitySource(props: CreateEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/entity_source', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createPrivilegesImportIndex( + props: CreatePrivilegesImportIndexProps, + kibanaSpace: string = 'default' + ) { + return supertest + .put( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/indices', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createPrivMonUser(props: CreatePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/users', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a new detection rule. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + +You can create the following types of rules: + +* **Custom query**: Searches the defined indices and creates an alert when a document matches the rule's KQL query. +* **Event correlation**: Searches the defined indices and creates an alert when results match an [Event Query Language (EQL)](https://www.elastic.co/guide/en/elasticsearch/reference/current/eql.html) query. +* **Threshold**: Searches the defined indices and creates an alert when the number of times the specified field's value meets the threshold during a single execution. When there are multiple values that meet the threshold, an alert is generated for each value. + For example, if the threshold `field` is `source.ip` and its `value` is `10`, an alert is generated for every source IP address that appears in at least 10 of the rule's search results. If you're interested, see [Terms Aggregation](https://www.elastic.co/guide/en/elasticsearch/reference/current/search-aggregations-bucket-terms-aggregation.html) for more information. +* **Indicator match**: Creates an alert when fields match values defined in the specified [Elasticsearch index](https://www.elastic.co/guide/en/elasticsearch/reference/current/indices-create-index.html). For example, you can create an index for IP addresses and use this index to create an alert whenever an event's `destination.ip` equals a value in the index. The index's field mappings should be [ECS-compliant](https://www.elastic.co/guide/en/ecs/current/ecs-reference.html). +* **New terms**: Generates an alert for each new term detected in source documents within a specified time range. +* **ES|QL**: Uses [Elasticsearch Query Language (ES|QL)](https://www.elastic.co/guide/en/elasticsearch/reference/current/esql.html) to find events and aggregate search results. +* **Machine learning rules**: Creates an alert when a machine learning job discovers an anomaly above the defined threshold. +> info +> To create machine learning rules, you must have the [appropriate license](https://www.elastic.co/subscriptions) or use a [cloud deployment](https://cloud.elastic.co/registration). Additionally, for the machine learning rule to function correctly, the associated machine learning job must be running. + +To retrieve machine learning job IDs, which are required to create machine learning jobs, call the [Elasticsearch Get jobs API](https://www.elastic.co/guide/en/elasticsearch/reference/current/ml-get-job.html). Machine learning jobs that contain `siem` in the `groups` field can be used to create rules: + +```json +... +"job_id": "linux_anomalous_network_activity_ecs", +"job_type": "anomaly_detector", +"job_version": "7.7.0", +"groups": [ + "auditbeat", + "process", + "siem" +], +... +``` + +Additionally, you can set up notifications for when rules create alerts. The notifications use the [Alerting and Actions framework](https://www.elastic.co/guide/en/kibana/current/alerting-getting-started.html). Each action type requires a connector. Connectors store the information required to send notifications via external systems. The following connector types are supported for rule notifications: + +* Slack +* Email +* PagerDuty +* Webhook +* Microsoft Teams +* IBM Resilient +* Jira +* ServiceNow ITSM +> info +> For more information on PagerDuty fields, see [Send a v2 Event](https://developer.pagerduty.com/docs/events-api-v2/trigger-events/). + +To retrieve connector IDs, which are required to configure rule notifications, call the [Find objects API](https://www.elastic.co/guide/en/kibana/current/saved-objects-api-find.html) with `"type": "action"` in the request payload. + +For detailed information on Kibana actions and alerting, and additional API calls, see: + +* [Alerting API](https://www.elastic.co/docs/api/doc/kibana/group/endpoint-alerting) +* [Alerting and Actions framework](https://www.elastic.co/guide/en/kibana/current/alerting-getting-started.html) +* [Connectors API](https://www.elastic.co/docs/api/doc/kibana/group/endpoint-connectors) + + */ + createRule(props: CreateRuleProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Creates a new rule migration and returns the corresponding migration_id + */ + createRuleMigration(props: CreateRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/internal/siem_migrations/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Adds original vendor rules to an already existing migration. Can be called multiple times to add more rules + */ + createRuleMigrationRules( + props: CreateRuleMigrationRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a new Timeline or Timeline template. + */ + createTimelines(props: CreateTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createUpdateProtectionUpdatesNote( + props: CreateUpdateProtectionUpdatesNoteProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/api/endpoint/protection_updates_note/{package_policy_id}', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + deleteAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete the asset criticality record for a specific entity. + */ + deleteAssetCriticalityRecord( + props: DeleteAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .delete(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + deleteEntityEngine(props: DeleteEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + deleteEntitySource(props: DeleteEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + deleteMonitoringEngine(props: DeleteMonitoringEngineProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/delete', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Delete a note from a Timeline using the note ID. + */ + deleteNote(props: DeleteNoteProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + deletePrivMonUser(props: DeletePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/users/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete a detection rule using the `rule_id` or `id` field. + +The URL query must include one of the following: + +* `id` - `DELETE /api/detection_engine/rules?id=` +* `rule_id`- `DELETE /api/detection_engine/rules?rule_id=` + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. + + */ + deleteRule(props: DeleteRuleProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Deletes a rule migration document stored in the system given the rule migration id + */ + deleteRuleMigration(props: DeleteRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete one or more Timelines or Timeline templates. + */ + deleteTimelines(props: DeleteTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Calculates and persists Risk Scores for an entity, returning the calculated risk score. + */ + deprecatedTriggerRiskScoreCalculation( + props: DeprecatedTriggerRiskScoreCalculationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/risk_scores/calculation/entity', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + disableMonitoringEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/disable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + disableRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/disable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + enableRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/enable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Run a shell command on an endpoint. + */ + endpointExecuteAction(props: EndpointExecuteActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/execute', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Download a file from an endpoint. + */ + endpointFileDownload(props: EndpointFileDownloadProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}/file/{file_id}/download', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get information for the specified file using the file ID. + */ + endpointFileInfo(props: EndpointFileInfoProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}/file/{file_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of a response action using the action ID. + */ + endpointGetActionsDetails( + props: EndpointGetActionsDetailsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get a list of all response actions. + */ + endpointGetActionsList(props: EndpointGetActionsListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a response actions state, which reports whether encryption is enabled. + */ + endpointGetActionsState(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action/state', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the status of response actions for the specified agent IDs. + */ + endpointGetActionsStatus( + props: EndpointGetActionsStatusProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a file from an endpoint. + */ + endpointGetFileAction(props: EndpointGetFileActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/get_file', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Get a list of all processes running on an endpoint. + */ + endpointGetProcessesAction( + props: EndpointGetProcessesActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/running_procs', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Isolate an endpoint from the network. The endpoint remains isolated until it's released. + */ + endpointIsolateAction(props: EndpointIsolateActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/isolate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Terminate a running process on an endpoint. + */ + endpointKillProcessAction( + props: EndpointKillProcessActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/kill_process', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Scan a specific file or directory on an endpoint for malware. + */ + endpointScanAction(props: EndpointScanActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/scan', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Suspend a running process on an endpoint. + */ + endpointSuspendProcessAction( + props: EndpointSuspendProcessActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/suspend_process', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Release an isolated endpoint, allowing it to rejoin a network. + */ + endpointUnisolateAction(props: EndpointUnisolateActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/unisolate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Upload a file to an endpoint. + */ + endpointUploadAction(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/upload', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + entityStoreGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/entity_store/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Export detection rules to an `.ndjson` file. The following configuration items are also included in the `.ndjson` file: +- Actions +- Exception lists +> info +> Rule actions and connectors are included in the exported file, but sensitive information about the connector (such as authentication credentials) is not included. You must re-add missing connector details after importing detection rules. + +> You can use Kibana’s [Saved Objects](https://www.elastic.co/guide/en/kibana/current/managing-saved-objects.html) UI (Stack Management → Kibana → Saved Objects) or the Saved Objects APIs (experimental) to [export](https://www.elastic.co/docs/api/doc/kibana/operation/operation-exportsavedobjectsdefault) and [import](https://www.elastic.co/docs/api/doc/kibana/operation/operation-importsavedobjectsdefault) any necessary connectors before importing detection rules. + +> Similarly, any value lists used for rule exceptions are not included in rule exports or imports. Use the [Manage value lists](https://www.elastic.co/guide/en/security/current/value-lists-exceptions.html#manage-value-lists) UI (Rules → Detection rules (SIEM) → Manage value lists) to export and import value lists separately. + + */ + exportRules(props: ExportRulesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Export Timelines as an NDJSON file. + */ + exportTimelines(props: ExportTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Finalize successful migrations of detection alerts. This replaces the original index's alias with the successfully migrated index's alias. +The endpoint is idempotent; therefore, it can safely be used to poll a given migration and, upon completion, +finalize it. + + */ + finalizeAlertsMigration(props: FinalizeAlertsMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/finalize_migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * List asset criticality records, paging, sorting and filtering as needed. + */ + findAssetCriticalityRecords( + props: FindAssetCriticalityRecordsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/asset_criticality/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieve a paginated list of detection rules. By default, the first page is returned, with 20 results per page. + */ + findRules(props: FindRulesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the rule migrations stats for all migrations stored in the system + */ + getAllStatsRuleMigration(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/stats', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the asset criticality record for a specific entity. + */ + getAssetCriticalityRecord( + props: GetAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getAssetCriticalityStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/asset_criticality/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the dashboard migration document stored in the system given the dashboard migration id + */ + getDashboardMigration(props: GetDashboardMigrationProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/dashboards/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the dashboard migrations stats for given migrations stored in the system + */ + getDashboardMigrationStats( + props: GetDashboardMigrationStatsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/dashboards/{migration_id}/stats', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of the draft Timeline or Timeline template for the current user. If the user doesn't have a draft Timeline, an empty Timeline is returned. + */ + getDraftTimelines(props: GetDraftTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/_draft', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getEndpointMetadataList(props: GetEndpointMetadataListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/metadata', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getEndpointSuggestions(props: GetEndpointSuggestionsProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/api/endpoint/suggestions/{suggestion_type}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + getEntityEngine(props: GetEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getEntitySource(props: GetEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getEntityStoreStatus(props: GetEntityStoreStatusProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get all notes for a given document. + */ + getNotes(props: GetNotesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getPolicyResponse(props: GetPolicyResponseProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/policy_response', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getPrivilegedAccessDetectionPackageStatus(kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + '/api/entity_analytics/privileged_user_monitoring/pad/status', + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getProtectionUpdatesNote( + props: GetProtectionUpdatesNoteProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/api/endpoint/protection_updates_note/{package_policy_id}', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Returns the status of both the legacy transform-based risk engine, as well as the new risk engine + */ + getRiskEngineStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_score/engine/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getRuleExecutionEvents(props: GetRuleExecutionEventsProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams( + '/internal/detection_engine/rules/{ruleId}/execution/events', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getRuleExecutionResults(props: GetRuleExecutionResultsProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams( + '/internal/detection_engine/rules/{ruleId}/execution/results', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the rule migration document stored in the system given the rule migration id + */ + getRuleMigration(props: GetRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves all related integrations + */ + getRuleMigrationIntegrations(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/integrations', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the stats of all the integrations for all the rule migrations, including the number of rules associated with the integration + */ + getRuleMigrationIntegrationsStats(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/integrations/stats', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves all available prebuilt rules (installed and installable) + */ + getRuleMigrationPrebuiltRules( + props: GetRuleMigrationPrebuiltRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/prebuilt_rules', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Identifies the privileges required for a SIEM rules migration and returns the missing privileges + */ + getRuleMigrationPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/missing_privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves resources for an existing SIEM rules migration + */ + getRuleMigrationResources( + props: GetRuleMigrationResourcesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/resources', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Identifies missing resources from all the rules of an existing SIEM rules migration + */ + getRuleMigrationResourcesMissing( + props: GetRuleMigrationResourcesMissingProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/resources/missing', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the the list of rules included in a migration given the migration id + */ + getRuleMigrationRules(props: GetRuleMigrationRulesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the stats of a SIEM rules migration using the migration id provided + */ + getRuleMigrationStats(props: GetRuleMigrationStatsProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/stats', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the translation stats of a SIEM rules migration using the migration id provided + */ + getRuleMigrationTranslationStats( + props: GetRuleMigrationTranslationStatsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/translation_stats', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of an existing saved Timeline or Timeline template. + */ + getTimeline(props: GetTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all saved Timelines or Timeline templates. + */ + getTimelines(props: GetTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timelines', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getWorkflowInsights(props: GetWorkflowInsightsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/api/endpoint/workflow_insights', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import detection rules from an `.ndjson` file, including actions and exception lists. The request must include: +- The `Content-Type: multipart/form-data` HTTP header. +- A link to the `.ndjson` file containing the rules. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. +> info +> To import rules with actions, you need at least Read privileges for the Action and Connectors feature. To overwrite or add new connectors, you need All privileges for the Actions and Connectors feature. To import rules without actions, you don’t need Actions and Connectors privileges. Refer to [Enable and access detections](https://www.elastic.co/guide/en/security/current/detections-permissions-section.html#enable-detections-ui) for more information. + +> info +> Rule actions and connectors are included in the exported file, but sensitive information about the connector (such as authentication credentials) is not included. You must re-add missing connector details after importing detection rules. + +> You can use Kibana’s [Saved Objects](https://www.elastic.co/guide/en/kibana/current/managing-saved-objects.html) UI (Stack Management → Kibana → Saved Objects) or the Saved Objects APIs (experimental) to [export](https://www.elastic.co/docs/api/doc/kibana/operation/operation-exportsavedobjectsdefault) and [import](https://www.elastic.co/docs/api/doc/kibana/operation/operation-importsavedobjectsdefault) any necessary connectors before importing detection rules. + +> Similarly, any value lists used for rule exceptions are not included in rule exports or imports. Use the [Manage value lists](https://www.elastic.co/guide/en/security/current/value-lists-exceptions.html#manage-value-lists) UI (Rules → Detection rules (SIEM) → Manage value lists) to export and import value lists separately. + + */ + importRules(props: ImportRulesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import Timelines. + */ + importTimelines(props: ImportTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initEntityEngine(props: InitEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/init', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initEntityStore(props: InitEntityStoreProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_store/enable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initMonitoringEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/init', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Initializes the Risk Engine by creating the necessary indices and mappings, removing old transforms, and starting the new risk engine + */ + initRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/init', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Installs migration rules + */ + installMigrationRules(props: InstallMigrationRulesProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/install', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Install and update all Elastic prebuilt detection rules and Timelines. + +This endpoint allows you to install and update prebuilt detection rules and Timelines provided by Elastic. +When you call this endpoint, it will: +- Install any new prebuilt detection rules that are not currently installed in your system. +- Update any existing prebuilt detection rules that have been modified or improved by Elastic. +- Install any new prebuilt Timelines that are not currently installed in your system. +- Update any existing prebuilt Timelines that have been modified or improved by Elastic. + +This ensures that your detection engine is always up-to-date with the latest rules and Timelines, +providing you with the most current and effective threat detection capabilities. + + */ + installPrebuiltRulesAndTimelines(kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/detection_engine/rules/prepackaged', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Install or update prepackaged Timelines. + */ + installPrepackedTimelines( + props: InstallPrepackedTimelinesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_prepackaged', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + installPrivilegedAccessDetectionPackage(kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + '/api/entity_analytics/privileged_user_monitoring/pad/install', + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + internalUploadAssetCriticalityRecords(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/asset_criticality/upload_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * List entities records, paging, sorting and filtering as needed. + */ + listEntities(props: ListEntitiesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/entities/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + listEntityEngines(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/engines', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + listEntitySources(props: ListEntitySourcesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/entity_source/list', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + listPrivMonUsers(props: ListPrivMonUsersProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_analytics/monitoring/users/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update specific fields of an existing detection rule using the `rule_id` or `id` field. + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + patchRule(props: PatchRuleProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update an existing Timeline. You can update the title, description, date range, pinned events, pinned queries, and/or pinned saved queries of an existing Timeline. + */ + patchTimeline(props: PatchTimelineProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Apply a bulk action, such as bulk edit, duplicate, or delete, to multiple detection rules. The bulk action is applied to all rules that match the query or to the rules listed by their IDs. + +The edit action allows you to add, delete, or set tags, index patterns, investigation fields, rule actions and schedules for multiple rules at once. +The edit action is idempotent, meaning that if you add a tag to a rule that already has that tag, no changes are made. The same is true for other edit actions, for example removing an index pattern that is not specified in a rule will not result in any changes. The only exception is the `add_rule_actions` and `set_rule_actions` action, which is non-idempotent. This means that if you add or set a rule action to a rule that already has that action, a new action is created with a new unique ID. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + performRulesBulkAction(props: PerformRulesBulkActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_bulk_action', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Favorite a Timeline or Timeline template for the current user. + */ + persistFavoriteRoute(props: PersistFavoriteRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/timeline/_favorite', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Add a note to a Timeline or update an existing note. + */ + persistNoteRoute(props: PersistNoteRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Pin/unpin an event to/from an existing Timeline. + */ + persistPinnedEventRoute(props: PersistPinnedEventRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/pinned_event', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Calculates and returns a list of Risk Scores, sorted by identifier_type and risk score. + */ + previewRiskScore(props: PreviewRiskScoreProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/preview', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + privmonBulkUploadUsersCsv(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/users/_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + privMonHealth(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/health', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Check if the current user has all required permissions for Privilege Monitoring + */ + privMonPrivileges(kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/privileges', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + readAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieve indices that contain detection alerts of a particular age, along with migration information for each of those indices. + */ + readAlertsMigrationStatus( + props: ReadAlertsMigrationStatusProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/signals/migration_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieve the status of all Elastic prebuilt detection rules and Timelines. + +This endpoint provides detailed information about the number of custom rules, installed prebuilt rules, available prebuilt rules that are not installed, outdated prebuilt rules, installed prebuilt timelines, available prebuilt timelines that are not installed, and outdated prebuilt timelines. + + */ + readPrebuiltRulesAndTimelinesStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules/prepackaged/_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves whether or not the user is authenticated, and the user's Kibana +space and index privileges, which determine if the user can create an +index for the Elastic Security alerts generated by +detection engine rules. + + */ + readPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + readRiskEngineSettings(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_score/engine/settings', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieve a detection rule using the `rule_id` or `id` field. + +The URL query must include one of the following: + +* `id` - `GET /api/detection_engine/rules?id=` +* `rule_id` - `GET /api/detection_engine/rules?rule_id=` + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. + + */ + readRule(props: ReadRuleProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * List all unique tags from all detection rules. + */ + readTags(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/tags', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + resolveTimeline(props: ResolveTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/resolve', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + riskEngineGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_engine/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + rulePreview(props: RulePreviewProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/preview', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + runEntityAnalyticsMigrations(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/entity_analytics/migrations/run', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Run a shell command on an endpoint. + */ + runScriptAction(props: RunScriptActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/runscript', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Schedule the risk scoring engine to run as soon as possible. You can use this to recalculate entity risk scores after updating their asset criticality. + */ + scheduleRiskEngineNow(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/risk_score/engine/schedule_now', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Find and/or aggregate detection alerts that match the given query. + */ + searchAlerts(props: SearchAlertsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/search', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + searchPrivilegesIndices(props: SearchPrivilegesIndicesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/indices', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Assign users to detection alerts, and unassign them from alerts. +> info +> You cannot add and remove the same assignee in the same request. + + */ + setAlertAssignees(props: SetAlertAssigneesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/assignees', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Set the status of one or more detection alerts. + */ + setAlertsStatus(props: SetAlertsStatusProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * And tags to detection alerts, and remove them from alerts. +> info +> You cannot add and remove the same alert tag in the same request. + + */ + setAlertTags(props: SetAlertTagsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/tags', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + startEntityEngine(props: StartEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/start', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Starts a SIEM rules migration using the migration id provided + */ + startRuleMigration(props: StartRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/start', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + stopEntityEngine(props: StopEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/stop', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Stops a running SIEM rules migration using the migration id provided + */ + stopRuleMigration(props: StopRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/stop', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Suggests user profiles. + */ + suggestUserProfiles(props: SuggestUserProfilesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/detection_engine/users/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Calculates and persists Risk Scores for an entity, returning the calculated risk score. + */ + triggerRiskScoreCalculation( + props: TriggerRiskScoreCalculationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/calculation/entity', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updateEntitySource(props: UpdateEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updatePrivMonUser(props: UpdatePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/users/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update a detection rule using the `rule_id` or `id` field. The original rule is replaced, and all unspecified fields are deleted. + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + updateRule(props: UpdateRuleProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates rules migrations data + */ + updateRuleMigration(props: UpdateRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .patch( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates the index pattern for eligible and/or selected rules of a migration + */ + updateRuleMigrationIndexPattern( + props: UpdateRuleMigrationIndexPatternProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/update_index_pattern', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates rules migrations attributes + */ + updateRuleMigrationRules( + props: UpdateRuleMigrationRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .patch( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updateWorkflowInsight(props: UpdateWorkflowInsightProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/internal/api/endpoint/workflow_insights/{insightId}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + uploadAssetCriticalityRecords(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality/upload_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Creates or updates resources for an existing SIEM rules migration + */ + upsertRuleMigrationResources( + props: UpsertRuleMigrationResourcesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/resources', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface AlertsMigrationCleanupProps { + body: AlertsMigrationCleanupRequestBodyInput; +} +export interface BulkUpsertAssetCriticalityRecordsProps { + body: BulkUpsertAssetCriticalityRecordsRequestBodyInput; +} +export interface CleanDraftTimelinesProps { + body: CleanDraftTimelinesRequestBodyInput; +} +export interface ConfigureRiskEngineSavedObjectProps { + body: ConfigureRiskEngineSavedObjectRequestBodyInput; +} +export interface CopyTimelineProps { + body: CopyTimelineRequestBodyInput; +} +export interface CreateAlertsMigrationProps { + body: CreateAlertsMigrationRequestBodyInput; +} +export interface CreateAssetCriticalityRecordProps { + body: CreateAssetCriticalityRecordRequestBodyInput; +} +export interface CreateDashboardMigrationProps { + body: CreateDashboardMigrationRequestBodyInput; +} +export interface CreateDashboardMigrationDashboardsProps { + params: CreateDashboardMigrationDashboardsRequestParamsInput; + body: CreateDashboardMigrationDashboardsRequestBodyInput; +} +export interface CreateEntitySourceProps { + body: CreateEntitySourceRequestBodyInput; +} +export interface CreatePrivilegesImportIndexProps { + body: CreatePrivilegesImportIndexRequestBodyInput; +} +export interface CreatePrivMonUserProps { + body: CreatePrivMonUserRequestBodyInput; +} +export interface CreateRuleProps { + body: CreateRuleRequestBodyInput; +} +export interface CreateRuleMigrationProps { + body: CreateRuleMigrationRequestBodyInput; +} +export interface CreateRuleMigrationRulesProps { + params: CreateRuleMigrationRulesRequestParamsInput; + body: CreateRuleMigrationRulesRequestBodyInput; +} +export interface CreateTimelinesProps { + body: CreateTimelinesRequestBodyInput; +} +export interface CreateUpdateProtectionUpdatesNoteProps { + params: CreateUpdateProtectionUpdatesNoteRequestParamsInput; + body: CreateUpdateProtectionUpdatesNoteRequestBodyInput; +} +export interface DeleteAssetCriticalityRecordProps { + query: DeleteAssetCriticalityRecordRequestQueryInput; +} +export interface DeleteEntityEngineProps { + query: DeleteEntityEngineRequestQueryInput; + params: DeleteEntityEngineRequestParamsInput; +} +export interface DeleteEntitySourceProps { + params: DeleteEntitySourceRequestParamsInput; +} +export interface DeleteMonitoringEngineProps { + query: DeleteMonitoringEngineRequestQueryInput; +} +export interface DeleteNoteProps { + body: DeleteNoteRequestBodyInput; +} +export interface DeletePrivMonUserProps { + params: DeletePrivMonUserRequestParamsInput; +} +export interface DeleteRuleProps { + query: DeleteRuleRequestQueryInput; +} +export interface DeleteRuleMigrationProps { + params: DeleteRuleMigrationRequestParamsInput; +} +export interface DeleteTimelinesProps { + body: DeleteTimelinesRequestBodyInput; +} +export interface DeprecatedTriggerRiskScoreCalculationProps { + body: DeprecatedTriggerRiskScoreCalculationRequestBodyInput; +} +export interface EndpointExecuteActionProps { + body: EndpointExecuteActionRequestBodyInput; +} +export interface EndpointFileDownloadProps { + params: EndpointFileDownloadRequestParamsInput; +} +export interface EndpointFileInfoProps { + params: EndpointFileInfoRequestParamsInput; +} +export interface EndpointGetActionsDetailsProps { + params: EndpointGetActionsDetailsRequestParamsInput; +} +export interface EndpointGetActionsListProps { + query: EndpointGetActionsListRequestQueryInput; +} +export interface EndpointGetActionsStatusProps { + query: EndpointGetActionsStatusRequestQueryInput; +} +export interface EndpointGetFileActionProps { + body: EndpointGetFileActionRequestBodyInput; +} +export interface EndpointGetProcessesActionProps { + body: EndpointGetProcessesActionRequestBodyInput; +} +export interface EndpointIsolateActionProps { + body: EndpointIsolateActionRequestBodyInput; +} +export interface EndpointKillProcessActionProps { + body: EndpointKillProcessActionRequestBodyInput; +} +export interface EndpointScanActionProps { + body: EndpointScanActionRequestBodyInput; +} +export interface EndpointSuspendProcessActionProps { + body: EndpointSuspendProcessActionRequestBodyInput; +} +export interface EndpointUnisolateActionProps { + body: EndpointUnisolateActionRequestBodyInput; +} +export interface ExportRulesProps { + query: ExportRulesRequestQueryInput; + body: ExportRulesRequestBodyInput; +} +export interface ExportTimelinesProps { + query: ExportTimelinesRequestQueryInput; + body: ExportTimelinesRequestBodyInput; +} +export interface FinalizeAlertsMigrationProps { + body: FinalizeAlertsMigrationRequestBodyInput; +} +export interface FindAssetCriticalityRecordsProps { + query: FindAssetCriticalityRecordsRequestQueryInput; +} +export interface FindRulesProps { + query: FindRulesRequestQueryInput; +} +export interface GetAssetCriticalityRecordProps { + query: GetAssetCriticalityRecordRequestQueryInput; +} +export interface GetDashboardMigrationProps { + params: GetDashboardMigrationRequestParamsInput; +} +export interface GetDashboardMigrationStatsProps { + params: GetDashboardMigrationStatsRequestParamsInput; +} +export interface GetDraftTimelinesProps { + query: GetDraftTimelinesRequestQueryInput; +} +export interface GetEndpointMetadataListProps { + query: GetEndpointMetadataListRequestQueryInput; +} +export interface GetEndpointSuggestionsProps { + params: GetEndpointSuggestionsRequestParamsInput; + body: GetEndpointSuggestionsRequestBodyInput; +} +export interface GetEntityEngineProps { + params: GetEntityEngineRequestParamsInput; +} +export interface GetEntitySourceProps { + params: GetEntitySourceRequestParamsInput; +} +export interface GetEntityStoreStatusProps { + query: GetEntityStoreStatusRequestQueryInput; +} +export interface GetNotesProps { + query: GetNotesRequestQueryInput; +} +export interface GetPolicyResponseProps { + query: GetPolicyResponseRequestQueryInput; +} +export interface GetProtectionUpdatesNoteProps { + params: GetProtectionUpdatesNoteRequestParamsInput; +} +export interface GetRuleExecutionEventsProps { + query: GetRuleExecutionEventsRequestQueryInput; + params: GetRuleExecutionEventsRequestParamsInput; +} +export interface GetRuleExecutionResultsProps { + query: GetRuleExecutionResultsRequestQueryInput; + params: GetRuleExecutionResultsRequestParamsInput; +} +export interface GetRuleMigrationProps { + params: GetRuleMigrationRequestParamsInput; +} +export interface GetRuleMigrationPrebuiltRulesProps { + params: GetRuleMigrationPrebuiltRulesRequestParamsInput; +} +export interface GetRuleMigrationResourcesProps { + query: GetRuleMigrationResourcesRequestQueryInput; + params: GetRuleMigrationResourcesRequestParamsInput; +} +export interface GetRuleMigrationResourcesMissingProps { + params: GetRuleMigrationResourcesMissingRequestParamsInput; +} +export interface GetRuleMigrationRulesProps { + query: GetRuleMigrationRulesRequestQueryInput; + params: GetRuleMigrationRulesRequestParamsInput; +} +export interface GetRuleMigrationStatsProps { + params: GetRuleMigrationStatsRequestParamsInput; +} +export interface GetRuleMigrationTranslationStatsProps { + params: GetRuleMigrationTranslationStatsRequestParamsInput; +} +export interface GetTimelineProps { + query: GetTimelineRequestQueryInput; +} +export interface GetTimelinesProps { + query: GetTimelinesRequestQueryInput; +} +export interface GetWorkflowInsightsProps { + query: GetWorkflowInsightsRequestQueryInput; +} +export interface ImportRulesProps { + query: ImportRulesRequestQueryInput; +} +export interface ImportTimelinesProps { + body: ImportTimelinesRequestBodyInput; +} +export interface InitEntityEngineProps { + params: InitEntityEngineRequestParamsInput; + body: InitEntityEngineRequestBodyInput; +} +export interface InitEntityStoreProps { + body: InitEntityStoreRequestBodyInput; +} +export interface InstallMigrationRulesProps { + params: InstallMigrationRulesRequestParamsInput; + body: InstallMigrationRulesRequestBodyInput; +} +export interface InstallPrepackedTimelinesProps { + body: InstallPrepackedTimelinesRequestBodyInput; +} +export interface ListEntitiesProps { + query: ListEntitiesRequestQueryInput; +} +export interface ListEntitySourcesProps { + query: ListEntitySourcesRequestQueryInput; +} +export interface ListPrivMonUsersProps { + query: ListPrivMonUsersRequestQueryInput; +} +export interface PatchRuleProps { + body: PatchRuleRequestBodyInput; +} +export interface PatchTimelineProps { + body: PatchTimelineRequestBodyInput; +} +export interface PerformRulesBulkActionProps { + query: PerformRulesBulkActionRequestQueryInput; + body: PerformRulesBulkActionRequestBodyInput; +} +export interface PersistFavoriteRouteProps { + body: PersistFavoriteRouteRequestBodyInput; +} +export interface PersistNoteRouteProps { + body: PersistNoteRouteRequestBodyInput; +} +export interface PersistPinnedEventRouteProps { + body: PersistPinnedEventRouteRequestBodyInput; +} +export interface PreviewRiskScoreProps { + body: PreviewRiskScoreRequestBodyInput; +} +export interface ReadAlertsMigrationStatusProps { + query: ReadAlertsMigrationStatusRequestQueryInput; +} +export interface ReadRuleProps { + query: ReadRuleRequestQueryInput; +} +export interface ResolveTimelineProps { + query: ResolveTimelineRequestQueryInput; +} +export interface RulePreviewProps { + query: RulePreviewRequestQueryInput; + body: RulePreviewRequestBodyInput; +} +export interface RunScriptActionProps { + body: RunScriptActionRequestBodyInput; +} +export interface SearchAlertsProps { + body: SearchAlertsRequestBodyInput; +} +export interface SearchPrivilegesIndicesProps { + query: SearchPrivilegesIndicesRequestQueryInput; +} +export interface SetAlertAssigneesProps { + body: SetAlertAssigneesRequestBodyInput; +} +export interface SetAlertsStatusProps { + body: SetAlertsStatusRequestBodyInput; +} +export interface SetAlertTagsProps { + body: SetAlertTagsRequestBodyInput; +} +export interface StartEntityEngineProps { + params: StartEntityEngineRequestParamsInput; +} +export interface StartRuleMigrationProps { + params: StartRuleMigrationRequestParamsInput; + body: StartRuleMigrationRequestBodyInput; +} +export interface StopEntityEngineProps { + params: StopEntityEngineRequestParamsInput; +} +export interface StopRuleMigrationProps { + params: StopRuleMigrationRequestParamsInput; +} +export interface SuggestUserProfilesProps { + query: SuggestUserProfilesRequestQueryInput; +} +export interface TriggerRiskScoreCalculationProps { + body: TriggerRiskScoreCalculationRequestBodyInput; +} +export interface UpdateEntitySourceProps { + params: UpdateEntitySourceRequestParamsInput; + body: UpdateEntitySourceRequestBodyInput; +} +export interface UpdatePrivMonUserProps { + params: UpdatePrivMonUserRequestParamsInput; + body: UpdatePrivMonUserRequestBodyInput; +} +export interface UpdateRuleProps { + body: UpdateRuleRequestBodyInput; +} +export interface UpdateRuleMigrationProps { + params: UpdateRuleMigrationRequestParamsInput; + body: UpdateRuleMigrationRequestBodyInput; +} +export interface UpdateRuleMigrationIndexPatternProps { + params: UpdateRuleMigrationIndexPatternRequestParamsInput; + body: UpdateRuleMigrationIndexPatternRequestBodyInput; +} +export interface UpdateRuleMigrationRulesProps { + params: UpdateRuleMigrationRulesRequestParamsInput; + body: UpdateRuleMigrationRulesRequestBodyInput; +} +export interface UpdateWorkflowInsightProps { + params: UpdateWorkflowInsightRequestParamsInput; + body: UpdateWorkflowInsightRequestBodyInput; +} +export interface UpsertRuleMigrationResourcesProps { + params: UpsertRuleMigrationResourcesRequestParamsInput; + body: UpsertRuleMigrationResourcesRequestBodyInput; +} diff --git a/x-pack/solutions/security/test/api_integration/services/security_solution_endpoint_exceptions_api.gen.ts b/x-pack/solutions/security/test/api_integration/services/security_solution_endpoint_exceptions_api.gen.ts new file mode 100644 index 0000000000000..a72af9e4c0bb6 --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/security_solution_endpoint_exceptions_api.gen.ts @@ -0,0 +1,116 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: Endpoint Exceptions API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { CreateEndpointListItemRequestBodyInput } from '@kbn/securitysolution-endpoint-exceptions-common/api/create_endpoint_list_item/create_endpoint_list_item.gen'; +import { DeleteEndpointListItemRequestQueryInput } from '@kbn/securitysolution-endpoint-exceptions-common/api/delete_endpoint_list_item/delete_endpoint_list_item.gen'; +import { FindEndpointListItemsRequestQueryInput } from '@kbn/securitysolution-endpoint-exceptions-common/api/find_endpoint_list_item/find_endpoint_list_item.gen'; +import { ReadEndpointListItemRequestQueryInput } from '@kbn/securitysolution-endpoint-exceptions-common/api/read_endpoint_list_item/read_endpoint_list_item.gen'; +import { UpdateEndpointListItemRequestBodyInput } from '@kbn/securitysolution-endpoint-exceptions-common/api/update_endpoint_list_item/update_endpoint_list_item.gen'; +import { FtrProviderContext } from '../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * Create the exception list for Elastic Endpoint rule exceptions. When you create the exception list, it will have a `list_id` of `endpoint_list`. If the Elastic Endpoint exception list already exists, your request will return an empty response. + */ + createEndpointList(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint_list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Create an Elastic Endpoint exception list item, and associate it with the Elastic Endpoint exception list. + */ + createEndpointListItem(props: CreateEndpointListItemProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint_list/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Delete an Elastic Endpoint exception list item, specified by the `id` or `item_id` field. + */ + deleteEndpointListItem(props: DeleteEndpointListItemProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/endpoint_list/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all Elastic Endpoint exception list items. + */ + findEndpointListItems(props: FindEndpointListItemsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint_list/items/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of an Elastic Endpoint exception list item, specified by the `id` or `item_id` field. + */ + readEndpointListItem(props: ReadEndpointListItemProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint_list/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update an Elastic Endpoint exception list item, specified by the `id` or `item_id` field. + */ + updateEndpointListItem(props: UpdateEndpointListItemProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/endpoint_list/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface CreateEndpointListItemProps { + body: CreateEndpointListItemRequestBodyInput; +} +export interface DeleteEndpointListItemProps { + query: DeleteEndpointListItemRequestQueryInput; +} +export interface FindEndpointListItemsProps { + query: FindEndpointListItemsRequestQueryInput; +} +export interface ReadEndpointListItemProps { + query: ReadEndpointListItemRequestQueryInput; +} +export interface UpdateEndpointListItemProps { + body: UpdateEndpointListItemRequestBodyInput; +} diff --git a/x-pack/solutions/security/test/api_integration/services/security_solution_exceptions_api.gen.ts b/x-pack/solutions/security/test/api_integration/services/security_solution_exceptions_api.gen.ts new file mode 100644 index 0000000000000..b195f6731c643 --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/security_solution_exceptions_api.gen.ts @@ -0,0 +1,299 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: Exceptions API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { replaceParams } from '@kbn/openapi-common/shared'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { CreateExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_exception_list/create_exception_list.gen'; +import { CreateExceptionListItemRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_exception_list_item/create_exception_list_item.gen'; +import { + CreateRuleExceptionListItemsRequestParamsInput, + CreateRuleExceptionListItemsRequestBodyInput, +} from '@kbn/securitysolution-exceptions-common/api/create_rule_exceptions/create_rule_exceptions.gen'; +import { CreateSharedExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_shared_exceptions_list/create_shared_exceptions_list.gen'; +import { DeleteExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/delete_exception_list/delete_exception_list.gen'; +import { DeleteExceptionListItemRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/delete_exception_list_item/delete_exception_list_item.gen'; +import { DuplicateExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/duplicate_exception_list/duplicate_exception_list.gen'; +import { ExportExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/export_exception_list/export_exception_list.gen'; +import { FindExceptionListItemsRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/find_exception_list_items/find_exception_list_items.gen'; +import { FindExceptionListsRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/find_exception_lists/find_exception_lists.gen'; +import { ImportExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/import_exceptions/import_exceptions.gen'; +import { ReadExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list/read_exception_list.gen'; +import { ReadExceptionListItemRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list_item/read_exception_list_item.gen'; +import { ReadExceptionListSummaryRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list_summary/read_exception_list_summary.gen'; +import { UpdateExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/update_exception_list/update_exception_list.gen'; +import { UpdateExceptionListItemRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/update_exception_list_item/update_exception_list_item.gen'; +import { FtrProviderContext } from '../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * An exception list groups exception items and can be associated with detection rules. You can assign exception lists to multiple detection rules. +> info +> All exception items added to the same list are evaluated using `OR` logic. That is, if any of the items in a list evaluate to `true`, the exception prevents the rule from generating an alert. Likewise, `OR` logic is used for evaluating exceptions when more than one exception list is assigned to a rule. To use the `AND` operator, you can define multiple clauses (`entries`) in a single exception item. + + */ + createExceptionList(props: CreateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create an exception item and associate it with the specified exception list. +> info +> Before creating exception items, you must create an exception list. + + */ + createExceptionListItem(props: CreateExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create exception items that apply to a single detection rule. + */ + createRuleExceptionListItems( + props: CreateRuleExceptionListItemsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/detection_engine/rules/{id}/exceptions', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * An exception list groups exception items and can be associated with detection rules. A shared exception list can apply to multiple detection rules. +> info +> All exception items added to the same list are evaluated using `OR` logic. That is, if any of the items in a list evaluate to `true`, the exception prevents the rule from generating an alert. Likewise, `OR` logic is used for evaluating exceptions when more than one exception list is assigned to a rule. To use the `AND` operator, you can define multiple clauses (`entries`) in a single exception item. + + */ + createSharedExceptionList( + props: CreateSharedExceptionListProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/exceptions/shared', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Delete an exception list using the `id` or `list_id` field. + */ + deleteExceptionList(props: DeleteExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Delete an exception list item using the `id` or `item_id` field. + */ + deleteExceptionListItem(props: DeleteExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Duplicate an existing exception list. + */ + duplicateExceptionList(props: DuplicateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_duplicate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Export an exception list and its associated items to an NDJSON file. + */ + exportExceptionList(props: ExportExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all exception list items in the specified list. + */ + findExceptionListItems(props: FindExceptionListItemsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/items/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all exception list containers. + */ + findExceptionLists(props: FindExceptionListsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import an exception list and its associated items from an NDJSON file. + */ + importExceptionList(props: ImportExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of an exception list using the `id` or `list_id` field. + */ + readExceptionList(props: ReadExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of an exception list item using the `id` or `item_id` field. + */ + readExceptionListItem(props: ReadExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a summary of the specified exception list. + */ + readExceptionListSummary( + props: ReadExceptionListSummaryProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/summary', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update an exception list using the `id` or `list_id` field. + */ + updateExceptionList(props: UpdateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update an exception list item using the `id` or `item_id` field. + */ + updateExceptionListItem(props: UpdateExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface CreateExceptionListProps { + body: CreateExceptionListRequestBodyInput; +} +export interface CreateExceptionListItemProps { + body: CreateExceptionListItemRequestBodyInput; +} +export interface CreateRuleExceptionListItemsProps { + params: CreateRuleExceptionListItemsRequestParamsInput; + body: CreateRuleExceptionListItemsRequestBodyInput; +} +export interface CreateSharedExceptionListProps { + body: CreateSharedExceptionListRequestBodyInput; +} +export interface DeleteExceptionListProps { + query: DeleteExceptionListRequestQueryInput; +} +export interface DeleteExceptionListItemProps { + query: DeleteExceptionListItemRequestQueryInput; +} +export interface DuplicateExceptionListProps { + query: DuplicateExceptionListRequestQueryInput; +} +export interface ExportExceptionListProps { + query: ExportExceptionListRequestQueryInput; +} +export interface FindExceptionListItemsProps { + query: FindExceptionListItemsRequestQueryInput; +} +export interface FindExceptionListsProps { + query: FindExceptionListsRequestQueryInput; +} +export interface ImportExceptionListProps { + query: ImportExceptionListRequestQueryInput; +} +export interface ReadExceptionListProps { + query: ReadExceptionListRequestQueryInput; +} +export interface ReadExceptionListItemProps { + query: ReadExceptionListItemRequestQueryInput; +} +export interface ReadExceptionListSummaryProps { + query: ReadExceptionListSummaryRequestQueryInput; +} +export interface UpdateExceptionListProps { + body: UpdateExceptionListRequestBodyInput; +} +export interface UpdateExceptionListItemProps { + body: UpdateExceptionListItemRequestBodyInput; +} diff --git a/x-pack/solutions/security/test/api_integration/services/security_solution_lists_api.gen.ts b/x-pack/solutions/security/test/api_integration/services/security_solution_lists_api.gen.ts new file mode 100644 index 0000000000000..64de6940d77eb --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/security_solution_lists_api.gen.ts @@ -0,0 +1,295 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: Lists API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { CreateListRequestBodyInput } from '@kbn/securitysolution-lists-common/api/create_list/create_list.gen'; +import { CreateListItemRequestBodyInput } from '@kbn/securitysolution-lists-common/api/create_list_item/create_list_item.gen'; +import { DeleteListRequestQueryInput } from '@kbn/securitysolution-lists-common/api/delete_list/delete_list.gen'; +import { DeleteListItemRequestQueryInput } from '@kbn/securitysolution-lists-common/api/delete_list_item/delete_list_item.gen'; +import { ExportListItemsRequestQueryInput } from '@kbn/securitysolution-lists-common/api/export_list_items/export_list_items.gen'; +import { FindListItemsRequestQueryInput } from '@kbn/securitysolution-lists-common/api/find_list_items/find_list_items.gen'; +import { FindListsRequestQueryInput } from '@kbn/securitysolution-lists-common/api/find_lists/find_lists.gen'; +import { ImportListItemsRequestQueryInput } from '@kbn/securitysolution-lists-common/api/import_list_items/import_list_items.gen'; +import { PatchListRequestBodyInput } from '@kbn/securitysolution-lists-common/api/patch_list/patch_list.gen'; +import { PatchListItemRequestBodyInput } from '@kbn/securitysolution-lists-common/api/patch_list_item/patch_list_item.gen'; +import { ReadListRequestQueryInput } from '@kbn/securitysolution-lists-common/api/read_list/read_list.gen'; +import { ReadListItemRequestQueryInput } from '@kbn/securitysolution-lists-common/api/read_list_item/read_list_item.gen'; +import { UpdateListRequestBodyInput } from '@kbn/securitysolution-lists-common/api/update_list/update_list.gen'; +import { UpdateListItemRequestBodyInput } from '@kbn/securitysolution-lists-common/api/update_list_item/update_list_item.gen'; +import { FtrProviderContext } from '../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * Create a new value list. + */ + createList(props: CreateListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create `.lists` and `.items` data streams in the relevant space. + */ + createListIndex(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/lists/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Create a value list item and associate it with the specified value list. + +All value list items in the same list must be the same type. For example, each list item in an `ip` list must define a specific IP address. +> info +> Before creating a list item, you must create a list. + + */ + createListItem(props: CreateListItemProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Delete a value list using the list ID. +> info +> When you delete a list, all of its list items are also deleted. + + */ + deleteList(props: DeleteListProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Delete the `.lists` and `.items` data streams. + */ + deleteListIndex(kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/lists/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete a value list item using its `id`, or its `list_id` and `value` fields. + */ + deleteListItem(props: DeleteListItemProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Export list item values from the specified value list. + */ + exportListItems(props: ExportListItemsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/lists/items/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get all value list items in the specified list. + */ + findListItems(props: FindListItemsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists/items/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a paginated subset of value lists. By default, the first page is returned, with 20 results per page. + */ + findLists(props: FindListsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import value list items from a TXT or CSV file. The maximum file size is 9 million bytes. + +You can import items to a new or existing list. + + */ + importListItems(props: ImportListItemsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/lists/items/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update specific fields of an existing list using the list `id`. + */ + patchList(props: PatchListProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update specific fields of an existing value list item using the item `id`. + */ + patchListItem(props: PatchListItemProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Get the details of a value list using the list ID. + */ + readList(props: ReadListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Verify that `.lists` and `.items` data streams exist. + */ + readListIndex(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of a value list item. + */ + readListItem(props: ReadListItemProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + readListPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/lists/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Update a value list using the list `id`. The original list is replaced, and all unspecified fields are deleted. +> info +> You cannot modify the `id` value. + + */ + updateList(props: UpdateListProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update a value list item using the list item ID. The original list item is replaced, and all unspecified fields are deleted. +> info +> You cannot modify the `id` value. + + */ + updateListItem(props: UpdateListItemProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface CreateListProps { + body: CreateListRequestBodyInput; +} +export interface CreateListItemProps { + body: CreateListItemRequestBodyInput; +} +export interface DeleteListProps { + query: DeleteListRequestQueryInput; +} +export interface DeleteListItemProps { + query: DeleteListItemRequestQueryInput; +} +export interface ExportListItemsProps { + query: ExportListItemsRequestQueryInput; +} +export interface FindListItemsProps { + query: FindListItemsRequestQueryInput; +} +export interface FindListsProps { + query: FindListsRequestQueryInput; +} +export interface ImportListItemsProps { + query: ImportListItemsRequestQueryInput; +} +export interface PatchListProps { + body: PatchListRequestBodyInput; +} +export interface PatchListItemProps { + body: PatchListItemRequestBodyInput; +} +export interface ReadListProps { + query: ReadListRequestQueryInput; +} +export interface ReadListItemProps { + query: ReadListItemRequestQueryInput; +} +export interface UpdateListProps { + body: UpdateListRequestBodyInput; +} +export interface UpdateListItemProps { + body: UpdateListItemRequestBodyInput; +} diff --git a/x-pack/solutions/security/test/api_integration/services/security_solution_osquery_api.gen.ts b/x-pack/solutions/security/test/api_integration/services/security_solution_osquery_api.gen.ts new file mode 100644 index 0000000000000..2a71f7065b835 --- /dev/null +++ b/x-pack/solutions/security/test/api_integration/services/security_solution_osquery_api.gen.ts @@ -0,0 +1,391 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { replaceParams } from '@kbn/openapi-common/shared'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { GetAgentDetailsRequestParamsInput } from '@kbn/osquery-plugin/common/api/fleet_wrapper/fleet_wrapper.gen'; +import { GetAgentPolicyRequestParamsInput } from '@kbn/osquery-plugin/common/api/fleet_wrapper/fleet_wrapper.gen'; +import { GetAgentsRequestQueryInput } from '@kbn/osquery-plugin/common/api/fleet_wrapper/fleet_wrapper.gen'; +import { OsqueryCreateLiveQueryRequestBodyInput } from '@kbn/osquery-plugin/common/api/live_query/live_queries.gen'; +import { OsqueryCreatePacksRequestBodyInput } from '@kbn/osquery-plugin/common/api/packs/packs.gen'; +import { OsqueryCreateSavedQueryRequestBodyInput } from '@kbn/osquery-plugin/common/api/saved_query/saved_query.gen'; +import { OsqueryDeletePacksRequestParamsInput } from '@kbn/osquery-plugin/common/api/packs/packs.gen'; +import { OsqueryDeleteSavedQueryRequestParamsInput } from '@kbn/osquery-plugin/common/api/saved_query/saved_query.gen'; +import { OsqueryFindLiveQueriesRequestQueryInput } from '@kbn/osquery-plugin/common/api/live_query/live_queries.gen'; +import { OsqueryFindPacksRequestQueryInput } from '@kbn/osquery-plugin/common/api/packs/packs.gen'; +import { OsqueryFindSavedQueriesRequestQueryInput } from '@kbn/osquery-plugin/common/api/saved_query/saved_query.gen'; +import { OsqueryGetLiveQueryDetailsRequestParamsInput } from '@kbn/osquery-plugin/common/api/live_query/live_queries.gen'; +import { + OsqueryGetLiveQueryResultsRequestQueryInput, + OsqueryGetLiveQueryResultsRequestParamsInput, +} from '@kbn/osquery-plugin/common/api/live_query/live_queries.gen'; +import { OsqueryGetPacksDetailsRequestParamsInput } from '@kbn/osquery-plugin/common/api/packs/packs.gen'; +import { OsqueryGetSavedQueryDetailsRequestParamsInput } from '@kbn/osquery-plugin/common/api/saved_query/saved_query.gen'; +import { + OsqueryUpdatePacksRequestParamsInput, + OsqueryUpdatePacksRequestBodyInput, +} from '@kbn/osquery-plugin/common/api/packs/packs.gen'; +import { + OsqueryUpdateSavedQueryRequestParamsInput, + OsqueryUpdateSavedQueryRequestBodyInput, +} from '@kbn/osquery-plugin/common/api/saved_query/saved_query.gen'; +import { ReadAssetsStatusRequestQueryInput } from '@kbn/osquery-plugin/common/api/asset/assets.gen'; +import { UpdateAssetsStatusRequestQueryInput } from '@kbn/osquery-plugin/common/api/asset/assets.gen'; +import { FtrProviderContext } from '../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + getAgentDetails(props: GetAgentDetailsProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/osquery/fleet_wrapper/agents/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getAgentPackagePolicies(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/fleet_wrapper/package_policies', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getAgentPolicies(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/fleet_wrapper/agent_policies', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getAgentPolicy(props: GetAgentPolicyProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/osquery/fleet_wrapper/agent_policies/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getAgents(props: GetAgentsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/fleet_wrapper/agents', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Create and run a live query. + */ + osqueryCreateLiveQuery(props: OsqueryCreateLiveQueryProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/osquery/live_queries', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a query pack. + */ + osqueryCreatePacks(props: OsqueryCreatePacksProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/osquery/packs', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create and run a saved query. + */ + osqueryCreateSavedQuery(props: OsqueryCreateSavedQueryProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/osquery/saved_queries', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Delete a query pack using the pack ID. + */ + osqueryDeletePacks(props: OsqueryDeletePacksProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace(replaceParams('/api/osquery/packs/{id}', props.params), kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete a saved query using the query ID. + */ + osqueryDeleteSavedQuery(props: OsqueryDeleteSavedQueryProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/osquery/saved_queries/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get a list of all live queries. + */ + osqueryFindLiveQueries(props: OsqueryFindLiveQueriesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/osquery/live_queries', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all query packs. + */ + osqueryFindPacks(props: OsqueryFindPacksProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/osquery/packs', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all saved queries. + */ + osqueryFindSavedQueries(props: OsqueryFindSavedQueriesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/osquery/saved_queries', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of a live query using the query ID. + */ + osqueryGetLiveQueryDetails( + props: OsqueryGetLiveQueryDetailsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/osquery/live_queries/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the results of a live query using the query action ID. + */ + osqueryGetLiveQueryResults( + props: OsqueryGetLiveQueryResultsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/osquery/live_queries/{id}/results/{actionId}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of a query pack using the pack ID. + */ + osqueryGetPacksDetails(props: OsqueryGetPacksDetailsProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace(replaceParams('/api/osquery/packs/{id}', props.params), kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of a saved query using the query ID. + */ + osqueryGetSavedQueryDetails( + props: OsqueryGetSavedQueryDetailsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/osquery/saved_queries/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Update a query pack using the pack ID. +> info +> You cannot update a prebuilt pack. + + */ + osqueryUpdatePacks(props: OsqueryUpdatePacksProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace(replaceParams('/api/osquery/packs/{id}', props.params), kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update a saved query using the query ID. +> info +> You cannot update a prebuilt saved query. + + */ + osqueryUpdateSavedQuery(props: OsqueryUpdateSavedQueryProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/api/osquery/saved_queries/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + readAssetsStatus(props: ReadAssetsStatusProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/assets', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + readInstallationStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + readPrivilegesCheck(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/osquery/privileges_check', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + updateAssetsStatus(props: UpdateAssetsStatusProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/osquery/assets/update', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + }; +} + +export interface GetAgentDetailsProps { + params: GetAgentDetailsRequestParamsInput; +} +export interface GetAgentPolicyProps { + params: GetAgentPolicyRequestParamsInput; +} +export interface GetAgentsProps { + query: GetAgentsRequestQueryInput; +} +export interface OsqueryCreateLiveQueryProps { + body: OsqueryCreateLiveQueryRequestBodyInput; +} +export interface OsqueryCreatePacksProps { + body: OsqueryCreatePacksRequestBodyInput; +} +export interface OsqueryCreateSavedQueryProps { + body: OsqueryCreateSavedQueryRequestBodyInput; +} +export interface OsqueryDeletePacksProps { + params: OsqueryDeletePacksRequestParamsInput; +} +export interface OsqueryDeleteSavedQueryProps { + params: OsqueryDeleteSavedQueryRequestParamsInput; +} +export interface OsqueryFindLiveQueriesProps { + query: OsqueryFindLiveQueriesRequestQueryInput; +} +export interface OsqueryFindPacksProps { + query: OsqueryFindPacksRequestQueryInput; +} +export interface OsqueryFindSavedQueriesProps { + query: OsqueryFindSavedQueriesRequestQueryInput; +} +export interface OsqueryGetLiveQueryDetailsProps { + params: OsqueryGetLiveQueryDetailsRequestParamsInput; +} +export interface OsqueryGetLiveQueryResultsProps { + query: OsqueryGetLiveQueryResultsRequestQueryInput; + params: OsqueryGetLiveQueryResultsRequestParamsInput; +} +export interface OsqueryGetPacksDetailsProps { + params: OsqueryGetPacksDetailsRequestParamsInput; +} +export interface OsqueryGetSavedQueryDetailsProps { + params: OsqueryGetSavedQueryDetailsRequestParamsInput; +} +export interface OsqueryUpdatePacksProps { + params: OsqueryUpdatePacksRequestParamsInput; + body: OsqueryUpdatePacksRequestBodyInput; +} +export interface OsqueryUpdateSavedQueryProps { + params: OsqueryUpdateSavedQueryRequestParamsInput; + body: OsqueryUpdateSavedQueryRequestBodyInput; +} +export interface ReadAssetsStatusProps { + query: ReadAssetsStatusRequestQueryInput; +} +export interface UpdateAssetsStatusProps { + query: UpdateAssetsStatusRequestQueryInput; +} diff --git a/x-pack/solutions/security/test/fixtures/es_archives/rule_keyword_family/README.md b/x-pack/solutions/security/test/fixtures/es_archives/rule_keyword_family/README.md index 945620015d6e1..12ec7b569bfc0 100644 --- a/x-pack/solutions/security/test/fixtures/es_archives/rule_keyword_family/README.md +++ b/x-pack/solutions/security/test/fixtures/es_archives/rule_keyword_family/README.md @@ -1,20 +1,31 @@ Within this folder is input test data for tests within the folder: ```ts -x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/trial_license_complete_tier/keyword_family +x - + pack / + solutions / + security / + test / + security_solution_api_integration / + test_suites / + detections_response / + detection_engine / + rule_execution_logic / + trial_license_complete_tier / + keyword_family; ``` where these are small ECS compliant input indexes that try to express tests that exercise different parts of -the detection engine around creating and validating that the keyword family and field aliases all will work +the detection engine around creating and validating that the keyword family and field aliases all will work with the detection engine. These indexes might contain extra fields or different fields but should not directly clash with ECS or minimally clash. Nothing is stopping anyone from being ECS strict and not having additional extra fields but the extra fields and mappings are to just try and keep these tests simple and small. Most of these tests center around the two fields of: -* event.module -* event.dataset + +- event.module +- event.dataset To ensure that if mix and match between `keyword`, `const keyword` and field aliases within them, everything should still be ok. It is alright if other use cases are added here if they fit within the `keyword` family as described here: https://www.elastic.co/guide/en/elasticsearch/reference/7.12/keyword.html - diff --git a/x-pack/solutions/security/test/fixtures/es_archives/security_solution/README.md b/x-pack/solutions/security/test/fixtures/es_archives/security_solution/README.md index 5b1cbcbbcf8e7..44914bb0de6fd 100644 --- a/x-pack/solutions/security/test/fixtures/es_archives/security_solution/README.md +++ b/x-pack/solutions/security/test/fixtures/es_archives/security_solution/README.md @@ -1,7 +1,7 @@ Collection of data sets for use within various tests. Most of the tests to these live in either: ``` -x-pack/test/security_solution_api_integration/test_suites/ +x-pack/solutions/security/test/security_solution_api_integration/test_suites/ ``` or @@ -10,4 +10,4 @@ or x-pack/test/api_integration/apis/security_solution ``` -- Folder `telemetry` is for the tests underneath `x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry`. +- Folder `telemetry` is for the tests underneath `x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry`. diff --git a/x-pack/test/security_solution_api_integration/.gitignore b/x-pack/solutions/security/test/security_solution_api_integration/.gitignore similarity index 100% rename from x-pack/test/security_solution_api_integration/.gitignore rename to x-pack/solutions/security/test/security_solution_api_integration/.gitignore diff --git a/x-pack/test/security_solution_api_integration/README.md b/x-pack/solutions/security/test/security_solution_api_integration/README.md similarity index 76% rename from x-pack/test/security_solution_api_integration/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/README.md index e2ffcb8ac79dc..f7910fd7a9f97 100644 --- a/x-pack/test/security_solution_api_integration/README.md +++ b/x-pack/solutions/security/test/security_solution_api_integration/README.md @@ -3,6 +3,7 @@ This directory serves as a centralized location to place the security solution tests that run in Serverless and ESS environments. ## Subdirectories + - `config` stores base configurations specific to both the Serverless and ESS environments, These configurations build upon the base configuration provided by `xpack/test_serverless` and `x-pack-api_integrations`, incorporating additional settings such as environment variables and tagging options. - `es_archive` and `es_archive_path_builder` directories contain the data that can be used by the tests - `scripts` directory contains various scripts used to run the tests @@ -11,17 +12,19 @@ This directory serves as a centralized location to place the security solution t ## Overview Test suites and cases are prefixed with specific tags to determine their execution in particular environments or to exclude them from specific environments: -* `@ess`: Runs in an ESS environment (on-prem installation) as part of the CI validation on PRs. -* `@serverless`: Runs in an simulated serverless environment as part of the CI validation on PRs and in the periodic pipeline. +- `@ess`: Runs in an ESS environment (on-prem installation) as part of the CI validation on PRs. + +- `@serverless`: Runs in an simulated serverless environment as part of the CI validation on PRs and in the periodic pipeline. -* `@serverlessQA`: Runs in the Kibana QA quality gate. +- `@serverlessQA`: Runs in the Kibana QA quality gate. -* `@skipInEss`: Skipped for ESS environment. -* `@skipInServerless`: Skipped for all quality gates and periodic pipeline. -* `@skipInServerlessMKI`: Skipped from being executed in any MKI environment (periodic pipeline and Kibana QA quality gate), but executed as part of the first quality gate if the `@serverless` tag is present. +- `@skipInEss`: Skipped for ESS environment. +- `@skipInServerless`: Skipped for all quality gates and periodic pipeline. +- `@skipInServerlessMKI`: Skipped from being executed in any MKI environment (periodic pipeline and Kibana QA quality gate), but executed as part of the first quality gate if the `@serverless` tag is present. For example: + ```typescript // tests in this suite will run in both Ess and Serverless on every PRs as well as on the first quality gate and the periodic pipeline describe('@serverless @ess create_rules', () => { @@ -35,7 +38,7 @@ describe('@serverless @ess create_rules', () => { it('another test', async () => { ... }); }); }); -``` +``` # Adding new security area's tests @@ -46,14 +49,14 @@ describe('@serverless @ess create_rules', () => { ## Adding tests for MKI which rely onto NON default project configuration -The default project type configuration in Serverless is complete. If for the needs of a test suite a different configuration is required, e.g. [PLI - Essentials](https://github.com/elastic/kibana/blob/36578e82fa0a0440c1657a0ca688106c895d5e4e/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts#L13), the already mentioned configuration in the permalink **does not work** for MKI. The override is needed to be added in the `./scripts/api_configs.json` file under the key with exact same name as the one of the script in `package.json` file which is running. +The default project type configuration in Serverless is complete. If for the needs of a test suite a different configuration is required, e.g. [PLI - Essentials](https://github.com/elastic/kibana/blob/36578e82fa0a0440c1657a0ca688106c895d5e4e/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts#L13), the already mentioned configuration in the permalink **does not work** for MKI. The override is needed to be added in the `./scripts/api_configs.json` file under the key with exact same name as the one of the script in `package.json` file which is running. -There are already configurations in the `./scripts/api_configs.json` which you can follow in order to add yours when it is needed. The currently supported configuration, allows **ONLY** the PLIs to be configured. Thus, experimental feature flags **are not yet supported** and the test should be skipped until further notice. +There are already configurations in the `./scripts/api_configs.json` which you can follow in order to add yours when it is needed. The currently supported configuration, allows **ONLY** the PLIs to be configured. Thus, experimental feature flags **are not yet supported** and the test should be skipped until further notice. > **Note:** ->If a target script living in `package.json` file, does not require any further configuration, then the entry in `./scripts/api_configs.json` file, **can be omitted!** +> If a target script living in `package.json` file, does not require any further configuration, then the entry in `./scripts/api_configs.json` file, **can be omitted!** -# Testing locally +# Testing locally In the `package.json` file, you'll find commands to configure the server for each environment and to run tests against that specific environment. These commands adhere to the Mocha tagging system, allowing for the inclusion and exclusion of tags, mirroring the setup of the CI pipeline. @@ -62,8 +65,9 @@ In the `package.json` file, you'll find commands to configure the server for eac In this project, you can run various commands to execute tests and workflows, each of which can be customized by specifying different parameters. Below, how to define the commands based on the parameters and their order. 1. Server Initialization and running tests for ex: (Detections Response - Default License): - + The command structure follows this pattern + - `` can be either "server" or "runner," allowing you to either set up the server or execute the tests against the designated server. - ``: The area the test is defined under, such as "detection_engine, entity_analytics,.." - ``: The license folder the test is defined under such as "default_license, basic_license,..." @@ -72,24 +76,24 @@ In this project, you can run various commands to execute tests and workflows, ea - Command: `node ./scripts/index.js server detections_response default_license` - Description: Initiates the server for the Detections Response area with the default license. + #### `run-tests:dr:default` - Command: `node ./scripts/index.js runner detections_response default_license` - Description: Runs the tests for the Detections Response area with the default license. - -2. Executes particular sets of test suites linked to the designated environment and license: +2. Executes particular sets of test suites linked to the designated environment and license: The command structure follows this pattern: - - ``: The test folder or workflow you want to run. - - ``: The type of project to pick the relevant configurations, either "serverless" or "ess." - - "serverless" and "ess" help determine the configuration specific to the chosen test. - - ``: The testing environment, such as "serverlessEnv," "essEnv," or "qaEnv." - - When using "serverlessEnv,.." in the script, it appends the correct grep command for filtering tests in the serverless testing environment. - - "serverlessEnv,..." is used to customize the test execution based on the serverless environment. + - ``: The test folder or workflow you want to run. + - ``: The type of project to pick the relevant configurations, either "serverless" or "ess." + - "serverless" and "ess" help determine the configuration specific to the chosen test. + - ``: The testing environment, such as "serverlessEnv," "essEnv," or "qaEnv." + - When using "serverlessEnv,.." in the script, it appends the correct grep command for filtering tests in the serverless testing environment. + - "serverlessEnv,..." is used to customize the test execution based on the serverless environment. - Here are some command examples for "exceptions" which defined under the "detection_engine" area using the default license: +Here are some command examples for "exceptions" which defined under the "detection_engine" area using the default license: - Run the server for "exception_workflows" in the "serverlessEnv" environment: ```shell @@ -120,7 +124,7 @@ The `securitySolutionUtils` helper exports the `createSuperTest` function, which You need to call `createSuperTest` from a lifecycle hook and wait for it to return the `supertest` instance. All API calls using the returned instance will inject the required auth headers. -**On ESS, `createSuperTest` returns a basic `supertest` instance without headers.* +\*_On ESS, `createSuperTest` returns a basic `supertest` instance without headers._ ```typescript import TestAgent from 'supertest/lib/agent'; @@ -140,11 +144,12 @@ export default ({ getService }: FtrProviderContext) => { ``` If you need to use multiple roles in a single test, you can instantiate multiple `supertest` versions. + ```typescript before(async () => { - adminSupertest = await utils.createSuperTest('admin'); - viewerSupertest = await utils.createSuperTest('viewer'); + adminSupertest = await utils.createSuperTest('admin'); + viewerSupertest = await utils.createSuperTest('viewer'); }); ``` -The helper keeps track of only one active session per role. So, if you instantiate `supertest` twice for the same role, the first instance will have an invalid API key. \ No newline at end of file +The helper keeps track of only one active session per role. So, if you instantiate `supertest` twice for the same role, the first instance will have an invalid API key. diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.basic.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.basic.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.basic.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.basic.ts diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts similarity index 90% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts index b2ca24d142675..c1af187093cb2 100644 --- a/x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.trial.ts @@ -11,7 +11,7 @@ import { services } from './services_edr_workflows'; export default async function ({ readConfigFile }: FtrConfigProviderContext) { const xPackAPITestsConfig = await readConfigFile( - require.resolve('../../../api_integration/config.ts') + require.resolve('@kbn/test-suites-xpack-platform/api_integration/config') ); return generateConfig({ diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.edr_workflows.ts diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.frozen.trial.ts diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.trial.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.trial.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.trial.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.trial.ts diff --git a/x-pack/test/security_solution_api_integration/config/ess/config.base.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts similarity index 96% rename from x-pack/test/security_solution_api_integration/config/ess/config.base.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts index 3ee48a450073f..ecce4f1fb8173 100644 --- a/x-pack/test/security_solution_api_integration/config/ess/config.base.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts @@ -54,7 +54,7 @@ export function createTestConfig(options: CreateTestConfigOptions, testFiles?: s return async ({ readConfigFile }: FtrConfigProviderContext) => { const xPackApiIntegrationTestsConfig = await readConfigFile( - require.resolve('../../../api_integration/config.ts') + require.resolve('@kbn/test-suites-xpack-platform/api_integration/config') ); const servers = { ...xPackApiIntegrationTestsConfig.get('servers'), @@ -114,7 +114,7 @@ export function createTestConfig(options: CreateTestConfigOptions, testFiles?: s ])}`, `--plugin-path=${path.resolve( __dirname, - '../../../../../src/platform/test/analytics/plugins/analytics_ftr_helpers' + '../../../../../../../src/platform/test/analytics/plugins/analytics_ftr_helpers' )}`, '--xpack.task_manager.poll_interval=1000', diff --git a/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services.ts new file mode 100644 index 0000000000000..6856e85d22cf3 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services.ts @@ -0,0 +1,33 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { KibanaEBTServerProvider } from '@kbn/test-suites-src/analytics/services/kibana_ebt'; +import { services as kibanaApiIntegrationServices } from '@kbn/test-suites-src/api_integration/services'; +import { MachineLearningProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/ml'; +import { IngestManagerProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/ingest_manager'; +import { UsageAPIProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/usage_api'; +import { commonFunctionalServices } from '@kbn/ftr-common-functional-services'; +import { SpacesServiceProvider } from '../services/spaces_service'; +import { SecuritySolutionESSUtils } from '../services/security_solution_ess_utils'; +import { SecuritySolutionApiProvider } from '../services/security_solution_api.gen'; +import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from '../services/security_solution_exceptions_api.gen'; + +export const services = { + ...commonFunctionalServices, + esSupertest: kibanaApiIntegrationServices.esSupertest, + supertest: kibanaApiIntegrationServices.supertest, + // esSupertestWithoutAuth: EsSupertestWithoutAuthProvider, + usageAPI: UsageAPIProvider, + ml: MachineLearningProvider, + ingestManager: IngestManagerProvider, + securitySolutionApi: SecuritySolutionApiProvider, + securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, + + spaces: SpacesServiceProvider, + securitySolutionUtils: SecuritySolutionESSUtils, + kibana_ebt_server: KibanaEBTServerProvider, +}; diff --git a/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services_edr_workflows.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services_edr_workflows.ts new file mode 100644 index 0000000000000..7d141c3982c6b --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/ess/services_edr_workflows.ts @@ -0,0 +1,48 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { services as kibanaApiIntegrationServices } from '@kbn/test-suites-src/api_integration/services'; +import { MachineLearningProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/ml'; +import { IngestManagerProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/ingest_manager'; +import { UsageAPIProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/usage_api'; +import { commonFunctionalServices } from '@kbn/ftr-common-functional-services'; +import { SecuritySolutionApiProvider } from '../services/security_solution_api.gen'; +import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from '../services/security_solution_exceptions_api.gen'; + +import { EndpointTestResourcesProvider } from '../../../security_solution_endpoint/services/endpoint'; +import { EndpointArtifactsTestResourcesProvider } from '../../../security_solution_endpoint/services/endpoint_artifacts'; +import { EndpointPolicyTestResourcesProvider } from '../../../security_solution_endpoint/services/endpoint_policy'; + +import { ResolverGeneratorProvider } from '../services/security_solution_edr_workflows_resolver'; +import { RolesUsersProvider } from '../services/security_solution_edr_workflows_roles_users'; +import { + SecuritySolutionEndpointDataStreamHelpers, + SecuritySolutionEndpointRegistryHelpers, +} from '../services/common'; +import { SecuritySolutionESSUtils } from '../services/security_solution_ess_utils'; + +export const services = { + ...commonFunctionalServices, + esSupertest: kibanaApiIntegrationServices.esSupertest, + supertest: kibanaApiIntegrationServices.supertest, + // esSupertestWithoutAuth: EsSupertestWithoutAuthProvider, + usageAPI: UsageAPIProvider, + ml: MachineLearningProvider, + ingestManager: IngestManagerProvider, + securitySolutionApi: SecuritySolutionApiProvider, + securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, + + resolverGenerator: ResolverGeneratorProvider, + endpointTestResources: EndpointTestResourcesProvider, + endpointPolicyTestResources: EndpointPolicyTestResourcesProvider, + endpointArtifactTestResources: EndpointArtifactsTestResourcesProvider, + rolesUsersProvider: RolesUsersProvider, + endpointDataStreamHelpers: SecuritySolutionEndpointDataStreamHelpers, + endpointRegistryHelpers: SecuritySolutionEndpointRegistryHelpers, + securitySolutionUtils: SecuritySolutionESSUtils, + samlAuth: commonFunctionalServices.samlAuth, +}; diff --git a/x-pack/test/security_solution_api_integration/config/privileges/roles.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/privileges/roles.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/privileges/roles.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/privileges/roles.ts diff --git a/x-pack/test/security_solution_api_integration/config/privileges/users.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/privileges/users.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/privileges/users.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/privileges/users.ts diff --git a/x-pack/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts similarity index 95% rename from x-pack/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts index d557cb3bf76c9..7f7825158ceac 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ai4dsoc.ts @@ -18,7 +18,7 @@ import { services } from './services'; export function createTestConfig(options: CreateTestConfigOptions) { return async ({ readConfigFile }: FtrConfigProviderContext) => { const svlSharedConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return { ...svlSharedConfig.getAll(), diff --git a/x-pack/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts similarity index 90% rename from x-pack/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts index 92262da41937b..35d2f4bdb1250 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.edr_workflows.ts @@ -10,7 +10,7 @@ import { generateConfig } from '../ess/config.base.edr_workflows'; export default async function ({ readConfigFile }: FtrConfigProviderContext) { const serverlessTestsConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return generateConfig({ diff --git a/x-pack/test/security_solution_api_integration/config/serverless/config.base.essentials.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.essentials.ts similarity index 97% rename from x-pack/test/security_solution_api_integration/config/serverless/config.base.essentials.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.essentials.ts index 18e3f0e035c9a..fc4cef60cb9ca 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/config.base.essentials.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.essentials.ts @@ -26,7 +26,7 @@ export interface CreateTestConfigOptions { export function createTestConfig(options: CreateTestConfigOptions) { return async ({ readConfigFile }: FtrConfigProviderContext) => { const svlSharedConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return { ...svlSharedConfig.getAll(), diff --git a/x-pack/test/security_solution_api_integration/config/serverless/config.base.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ts similarity index 94% rename from x-pack/test/security_solution_api_integration/config/serverless/config.base.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ts index 02204b1b9145c..c94401dca5797 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/config.base.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/config.base.ts @@ -30,7 +30,7 @@ export interface CreateTestConfigOptions { export function createTestConfig(options: CreateTestConfigOptions) { return async ({ readConfigFile }: FtrConfigProviderContext) => { const svlSharedConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return { ...svlSharedConfig.getAll(), @@ -52,7 +52,7 @@ export function createTestConfig(options: CreateTestConfigOptions) { ...(options.kbnTestServerArgs || []), `--plugin-path=${path.resolve( __dirname, - '../../../../../src/platform/test/analytics/plugins/analytics_ftr_helpers' + '../../../../../../../src/platform/test/analytics/plugins/analytics_ftr_helpers' )}`, ], env: { diff --git a/x-pack/test/security_solution_api_integration/config/serverless/services.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services.ts similarity index 67% rename from x-pack/test/security_solution_api_integration/config/serverless/services.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services.ts index 8c5e491bc8b9b..bf92ce445acfc 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/services.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services.ts @@ -5,12 +5,14 @@ * 2.0. */ -import { SearchSecureService } from '@kbn/test-suites-serverless/shared/services/search_secure'; -import { services as serverlessServices } from '@kbn/test-suites-serverless/api_integration/services'; +import { services as serverlessServices } from '@kbn/test-suites-xpack-platform/serverless/api_integration/services'; import { KibanaEBTServerProvider } from '@kbn/test-suites-src/analytics/services/kibana_ebt'; +import { SearchSecureService } from '../services/search_secure'; import { SpacesServiceProvider } from '../services/spaces_service'; import { SecuritySolutionServerlessUtils } from '../services/security_solution_serverless_utils'; import { SecuritySolutionServerlessSuperTest } from '../services/security_solution_serverless_supertest'; +import { SecuritySolutionApiProvider } from '../services/security_solution_api.gen'; +import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from '../services/security_solution_exceptions_api.gen'; export const services = { ...serverlessServices, @@ -19,4 +21,6 @@ export const services = { securitySolutionUtils: SecuritySolutionServerlessUtils, supertest: SecuritySolutionServerlessSuperTest, kibana_ebt_server: KibanaEBTServerProvider, + securitySolutionApi: SecuritySolutionApiProvider, + securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, }; diff --git a/x-pack/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts similarity index 81% rename from x-pack/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts index dc12389487d66..d355e0305e5b7 100644 --- a/x-pack/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/serverless/services_edr_workflows.ts @@ -6,8 +6,8 @@ */ import { commonFunctionalServices } from '@kbn/ftr-common-functional-services'; -import { SvlCommonApiServiceProvider } from '@kbn/test-suites-serverless/shared/services/svl_common_api'; -import { SearchSecureService } from '@kbn/test-suites-serverless/shared/services/search_secure'; +import { SvlCommonApiServiceProvider } from '@kbn/test-suites-xpack-platform/serverless/shared/services/svl_common_api'; +import { SearchSecureService } from '../services/search_secure'; import { services as essServices } from '../ess/services_edr_workflows'; import { SecuritySolutionServerlessSuperTest } from '../services/security_solution_serverless_supertest'; import { SecuritySolutionServerlessUtils } from '../services/security_solution_serverless_utils'; diff --git a/x-pack/test/security_solution_api_integration/config/services/common/endpoint_data_stream_helpers.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/common/endpoint_data_stream_helpers.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/common/endpoint_data_stream_helpers.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/common/endpoint_data_stream_helpers.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/common/endpoint_registry_helpers.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/common/endpoint_registry_helpers.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/common/endpoint_registry_helpers.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/common/endpoint_registry_helpers.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/common/fixtures/package_registry_config.yml b/x-pack/solutions/security/test/security_solution_api_integration/config/services/common/fixtures/package_registry_config.yml similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/common/fixtures/package_registry_config.yml rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/common/fixtures/package_registry_config.yml diff --git a/x-pack/test/security_solution_api_integration/config/services/common/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/common/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/common/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/common/index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/common/roles_users_utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/common/roles_users_utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/common/roles_users_utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/common/roles_users_utils.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/create_alerts_index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/create_alerts_index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/create_alerts_index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/create_alerts_index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/delete_all_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/delete_all_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/delete_all_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/delete_all_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_ids.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_ids.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_ids.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_alerts_by_ids.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alert_ids.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alert_ids.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alert_ids.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alert_ids.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alerts_ids.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alerts_ids.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alerts_ids.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/get_query_alerts_ids.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/search_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/search_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/search_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/search_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/wait_for_alerts_to_be_present.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/wait_for_alerts_to_be_present.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/alerts/wait_for_alerts_to_be_present.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/alerts/wait_for_alerts_to_be_present.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/count_down_test.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/count_down_test.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/count_down_test.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/count_down_test.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/delete_all_anomalies.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/delete_all_anomalies.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/delete_all_anomalies.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/delete_all_anomalies.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/route_with_namespace.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/route_with_namespace.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/route_with_namespace.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/route_with_namespace.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/create_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/create_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/create_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/create_rule.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/delete_all_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/delete_all_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/delete_all_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/delete_all_rules.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/delete_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/delete_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/delete_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/delete_rule.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/get_gaps_by_rule_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/get_gaps_by_rule_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/get_gaps_by_rule_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/get_gaps_by_rule_id.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/get_rule_for_alert_testing.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/get_rule_for_alert_testing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/get_rule_for_alert_testing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/get_rule_for_alert_testing.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/manual_run.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/manual_run.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/manual_run.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/manual_run.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/rules/wait_for_rule_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/wait_for_rule_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/rules/wait_for_rule_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/rules/wait_for_rule_status.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/spaces.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/spaces.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/spaces.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/spaces.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/index.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/indices_metadata.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/indices_metadata.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/indices_metadata.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/indices_metadata.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/task_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/task_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/tasks/task_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/tasks/task_manager.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/detections_response/wait_for.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/wait_for.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/detections_response/wait_for.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/detections_response/wait_for.ts diff --git a/x-pack/test_serverless/shared/services/search_secure.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/search_secure.ts similarity index 97% rename from x-pack/test_serverless/shared/services/search_secure.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/search_secure.ts index b7bbc50bcb18b..723468e8ab66a 100644 --- a/x-pack/test_serverless/shared/services/search_secure.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/services/search_secure.ts @@ -13,7 +13,7 @@ import { GenericFtrService } from '@kbn/test'; import type { IEsSearchResponse } from '@kbn/search-types'; import { ELASTIC_HTTP_VERSION_HEADER } from '@kbn/core-http-common'; import { SupertestWithoutAuthProviderType } from '@kbn/ftr-common-functional-services'; -import { FtrProviderContext } from '../../functional/ftr_provider_context'; +import { FtrProviderContext } from '../../ftr_provider_context'; export interface SendOptions { supertestWithoutAuth: SupertestWithoutAuthProviderType; diff --git a/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_api.gen.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_api.gen.ts new file mode 100644 index 0000000000000..ba15243c27d36 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_api.gen.ts @@ -0,0 +1,2451 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { replaceParams } from '@kbn/openapi-common/shared'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { AlertsMigrationCleanupRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/delete_signals_migration/delete_signals_migration.gen'; +import { BulkUpsertAssetCriticalityRecordsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/bulk_upload_asset_criticality.gen'; +import { CleanDraftTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/clean_draft_timelines/clean_draft_timelines_route.gen'; +import { ConfigureRiskEngineSavedObjectRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/engine_configure_saved_object_route.gen'; +import { CopyTimelineRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/copy_timeline/copy_timeline_route.gen'; +import { CreateAlertsMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/create_signals_migration/create_signals_migration.gen'; +import { CreateAssetCriticalityRecordRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/create_asset_criticality.gen'; +import { CreateDashboardMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { + CreateDashboardMigrationDashboardsRequestParamsInput, + CreateDashboardMigrationDashboardsRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { CreateEntitySourceRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { CreatePrivilegesImportIndexRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/monitoring/create_index.gen'; +import { CreatePrivMonUserRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/create.gen'; +import { CreateRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/create_rule/create_rule_route.gen'; +import { CreateRuleMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + CreateRuleMigrationRulesRequestParamsInput, + CreateRuleMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { CreateTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/create_timelines/create_timelines_route.gen'; +import { + CreateUpdateProtectionUpdatesNoteRequestParamsInput, + CreateUpdateProtectionUpdatesNoteRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/protection_updates_note/protection_updates_note.gen'; +import { DeleteAssetCriticalityRecordRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/delete_asset_criticality.gen'; +import { + DeleteEntityEngineRequestQueryInput, + DeleteEntityEngineRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/delete.gen'; +import { DeleteEntitySourceRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { DeleteMonitoringEngineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/engine/delete.gen'; +import { DeleteNoteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/delete_note/delete_note_route.gen'; +import { DeletePrivMonUserRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/delete.gen'; +import { DeleteRuleRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/delete_rule/delete_rule_route.gen'; +import { DeleteRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { DeleteTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/delete_timelines/delete_timelines_route.gen'; +import { DeprecatedTriggerRiskScoreCalculationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/entity_calculation_route.gen'; +import { EndpointExecuteActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/execute/execute.gen'; +import { EndpointFileDownloadRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/file_download/file_download.gen'; +import { EndpointFileInfoRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/file_info/file_info.gen'; +import { EndpointGetActionsDetailsRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/details/details.gen'; +import { EndpointGetActionsListRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/list/list.gen'; +import { EndpointGetActionsStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/status/status.gen'; +import { EndpointGetFileActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/get_file/get_file.gen'; +import { EndpointGetProcessesActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/running_procs/running_procs.gen'; +import { EndpointIsolateActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/isolate/isolate.gen'; +import { EndpointKillProcessActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/kill_process/kill_process.gen'; +import { EndpointScanActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/scan/scan.gen'; +import { EndpointSuspendProcessActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/suspend_process/suspend_process.gen'; +import { EndpointUnisolateActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/unisolate/unisolate.gen'; +import { + ExportRulesRequestQueryInput, + ExportRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/export_rules/export_rules_route.gen'; +import { + ExportTimelinesRequestQueryInput, + ExportTimelinesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/timeline/export_timelines/export_timelines_route.gen'; +import { FinalizeAlertsMigrationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/finalize_signals_migration/finalize_signals_migration.gen'; +import { FindAssetCriticalityRecordsRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/list_asset_criticality.gen'; +import { FindRulesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/find_rules/find_rules_route.gen'; +import { GetAssetCriticalityRecordRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/asset_criticality/get_asset_criticality.gen'; +import { GetDashboardMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { GetDashboardMigrationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/dashboards/dashboard_migration.gen'; +import { GetDraftTimelinesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_draft_timelines/get_draft_timelines_route.gen'; +import { GetEndpointMetadataListRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/metadata/get_metadata.gen'; +import { + GetEndpointSuggestionsRequestParamsInput, + GetEndpointSuggestionsRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/suggestions/get_suggestions.gen'; +import { GetEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/get.gen'; +import { GetEntitySourceRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { GetEntityStoreStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/status.gen'; +import { GetNotesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_notes/get_notes_route.gen'; +import { GetPolicyResponseRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/policy/policy_response.gen'; +import { GetProtectionUpdatesNoteRequestParamsInput } from '@kbn/security-solution-plugin/common/api/endpoint/protection_updates_note/protection_updates_note.gen'; +import { + GetRuleExecutionEventsRequestQueryInput, + GetRuleExecutionEventsRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_monitoring/rule_execution_logs/get_rule_execution_events/get_rule_execution_events_route.gen'; +import { + GetRuleExecutionResultsRequestQueryInput, + GetRuleExecutionResultsRequestParamsInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_monitoring/rule_execution_logs/get_rule_execution_results/get_rule_execution_results_route.gen'; +import { GetRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationPrebuiltRulesRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + GetRuleMigrationResourcesRequestQueryInput, + GetRuleMigrationResourcesRequestParamsInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationResourcesMissingRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + GetRuleMigrationRulesRequestQueryInput, + GetRuleMigrationRulesRequestParamsInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetRuleMigrationTranslationStatsRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { GetTimelineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_timeline/get_timeline_route.gen'; +import { GetTimelinesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/get_timelines/get_timelines_route.gen'; +import { GetWorkflowInsightsRequestQueryInput } from '@kbn/security-solution-plugin/common/api/endpoint/workflow_insights/workflow_insights.gen'; +import { ImportRulesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/import_rules/import_rules_route.gen'; +import { ImportTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/import_timelines/import_timelines_route.gen'; +import { + InitEntityEngineRequestParamsInput, + InitEntityEngineRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/init.gen'; +import { InitEntityStoreRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/enable.gen'; +import { + InstallMigrationRulesRequestParamsInput, + InstallMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { InstallPrepackedTimelinesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/install_prepackaged_timelines/install_prepackaged_timelines_route.gen'; +import { ListEntitiesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/entities/list_entities.gen'; +import { ListEntitySourcesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { ListPrivMonUsersRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/list.gen'; +import { PatchRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/patch_rule/patch_rule_route.gen'; +import { PatchTimelineRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/patch_timelines/patch_timeline_route.gen'; +import { + PerformRulesBulkActionRequestQueryInput, + PerformRulesBulkActionRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/bulk_actions/bulk_actions_route.gen'; +import { PersistFavoriteRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/persist_favorite/persist_favorite_route.gen'; +import { PersistNoteRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/persist_note/persist_note_route.gen'; +import { PersistPinnedEventRouteRequestBodyInput } from '@kbn/security-solution-plugin/common/api/timeline/pinned_events/pinned_events_route.gen'; +import { PreviewRiskScoreRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/preview_route.gen'; +import { ReadAlertsMigrationStatusRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals_migration/read_signals_migration_status/read_signals_migration_status.gen'; +import { ReadRuleRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/read_rule/read_rule_route.gen'; +import { ResolveTimelineRequestQueryInput } from '@kbn/security-solution-plugin/common/api/timeline/resolve_timeline/resolve_timeline_route.gen'; +import { + RulePreviewRequestQueryInput, + RulePreviewRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/detection_engine/rule_preview/rule_preview.gen'; +import { RunScriptActionRequestBodyInput } from '@kbn/security-solution-plugin/common/api/endpoint/actions/response_actions/run_script/run_script.gen'; +import { SearchAlertsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals/query_signals/query_signals_route.gen'; +import { SearchPrivilegesIndicesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/monitoring/search_indices.gen'; +import { SetAlertAssigneesRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/alert_assignees/set_alert_assignees_route.gen'; +import { SetAlertsStatusRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/signals/set_signal_status/set_signals_status_route.gen'; +import { SetAlertTagsRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/alert_tags/set_alert_tags/set_alert_tags.gen'; +import { StartEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/start.gen'; +import { + StartRuleMigrationRequestParamsInput, + StartRuleMigrationRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { StopEntityEngineRequestParamsInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/engine/stop.gen'; +import { StopRuleMigrationRequestParamsInput } from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { SuggestUserProfilesRequestQueryInput } from '@kbn/security-solution-plugin/common/api/detection_engine/users/suggest_user_profiles_route.gen'; +import { TriggerRiskScoreCalculationRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/risk_engine/entity_calculation_route.gen'; +import { + UpdateEntitySourceRequestParamsInput, + UpdateEntitySourceRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/monitoring_entity_source/monitoring_entity_source.gen'; +import { + UpdatePrivMonUserRequestParamsInput, + UpdatePrivMonUserRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/entity_analytics/privilege_monitoring/users/update.gen'; +import { UpdateRuleRequestBodyInput } from '@kbn/security-solution-plugin/common/api/detection_engine/rule_management/crud/update_rule/update_rule_route.gen'; +import { + UpdateRuleMigrationRequestParamsInput, + UpdateRuleMigrationRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateRuleMigrationIndexPatternRequestParamsInput, + UpdateRuleMigrationIndexPatternRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateRuleMigrationRulesRequestParamsInput, + UpdateRuleMigrationRulesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { + UpdateWorkflowInsightRequestParamsInput, + UpdateWorkflowInsightRequestBodyInput, +} from '@kbn/security-solution-plugin/common/api/endpoint/workflow_insights/workflow_insights.gen'; +import { + UpsertRuleMigrationResourcesRequestParamsInput, + UpsertRuleMigrationResourcesRequestBodyInput, +} from '@kbn/security-solution-plugin/common/siem_migrations/model/api/rules/rule_migration.gen'; +import { FtrProviderContext } from '../../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * Migrations favor data integrity over shard size. Consequently, unused or orphaned indices are artifacts of +the migration process. A successful migration will result in both the old and new indices being present. +As such, the old, orphaned index can (and likely should) be deleted. + +While you can delete these indices manually, +the endpoint accomplishes this task by applying a deletion policy to the relevant index, causing it to be deleted +after 30 days. It also deletes other artifacts specific to the migration implementation. + + */ + alertsMigrationCleanup(props: AlertsMigrationCleanupProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/signals/migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + applyEntityEngineDataviewIndices(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_store/engines/apply_dataview_indices', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + assetCriticalityGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/asset_criticality/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Ensures that the packages needed for prebuilt detection rules to work are installed and up to date + */ + bootstrapPrebuiltRules(kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace('/internal/detection_engine/prebuilt_rules/_bootstrap', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Bulk upsert up to 1000 asset criticality records. + +If asset criticality records already exist for the specified entities, those records are overwritten with the specified values. If asset criticality records don't exist for the specified entities, new records are created. + + */ + bulkUpsertAssetCriticalityRecords( + props: BulkUpsertAssetCriticalityRecordsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality/bulk', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a clean draft Timeline or Timeline template for the current user. +> info +> If the user already has a draft Timeline, the existing draft Timeline is cleared and returned. + + */ + cleanDraftTimelines(props: CleanDraftTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_draft', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Cleaning up the the Risk Engine by removing the indices, mapping and transforms + */ + cleanUpRiskEngine(kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/risk_score/engine/dangerously_delete_data', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Configuring the Risk Engine Saved Object + */ + configureRiskEngineSavedObject( + props: ConfigureRiskEngineSavedObjectProps, + kibanaSpace: string = 'default' + ) { + return supertest + .patch(getRouteUrlForSpace('/api/risk_score/engine/saved_object/configure', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Copies and returns a timeline or timeline template. + + */ + copyTimeline(props: CopyTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/_copy', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Initiate a migration of detection alerts. +Migrations are initiated per index. While the process is neither destructive nor interferes with existing data, it may be resource-intensive. As such, it is recommended that you plan your migrations accordingly. + + */ + createAlertsMigration(props: CreateAlertsMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create or update an asset criticality record for a specific entity. + +If a record already exists for the specified entity, that record is overwritten with the specified value. If a record doesn't exist for the specified entity, a new record is created. + + */ + createAssetCriticalityRecord( + props: CreateAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Creates a new dashboard migration and returns the corresponding migration_id + */ + createDashboardMigration( + props: CreateDashboardMigrationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .put(getRouteUrlForSpace('/internal/siem_migrations/dashboards', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Adds dashboards to an alreayd existing dashboard migration + */ + createDashboardMigrationDashboards( + props: CreateDashboardMigrationDashboardsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/dashboards/{migration_id}/dashboards', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createEntitySource(props: CreateEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/entity_source', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createPrivilegesImportIndex( + props: CreatePrivilegesImportIndexProps, + kibanaSpace: string = 'default' + ) { + return supertest + .put( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/indices', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createPrivMonUser(props: CreatePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/users', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a new detection rule. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + +You can create the following types of rules: + +* **Custom query**: Searches the defined indices and creates an alert when a document matches the rule's KQL query. +* **Event correlation**: Searches the defined indices and creates an alert when results match an [Event Query Language (EQL)](https://www.elastic.co/guide/en/elasticsearch/reference/current/eql.html) query. +* **Threshold**: Searches the defined indices and creates an alert when the number of times the specified field's value meets the threshold during a single execution. When there are multiple values that meet the threshold, an alert is generated for each value. + For example, if the threshold `field` is `source.ip` and its `value` is `10`, an alert is generated for every source IP address that appears in at least 10 of the rule's search results. If you're interested, see [Terms Aggregation](https://www.elastic.co/guide/en/elasticsearch/reference/current/search-aggregations-bucket-terms-aggregation.html) for more information. +* **Indicator match**: Creates an alert when fields match values defined in the specified [Elasticsearch index](https://www.elastic.co/guide/en/elasticsearch/reference/current/indices-create-index.html). For example, you can create an index for IP addresses and use this index to create an alert whenever an event's `destination.ip` equals a value in the index. The index's field mappings should be [ECS-compliant](https://www.elastic.co/guide/en/ecs/current/ecs-reference.html). +* **New terms**: Generates an alert for each new term detected in source documents within a specified time range. +* **ES|QL**: Uses [Elasticsearch Query Language (ES|QL)](https://www.elastic.co/guide/en/elasticsearch/reference/current/esql.html) to find events and aggregate search results. +* **Machine learning rules**: Creates an alert when a machine learning job discovers an anomaly above the defined threshold. +> info +> To create machine learning rules, you must have the [appropriate license](https://www.elastic.co/subscriptions) or use a [cloud deployment](https://cloud.elastic.co/registration). Additionally, for the machine learning rule to function correctly, the associated machine learning job must be running. + +To retrieve machine learning job IDs, which are required to create machine learning jobs, call the [Elasticsearch Get jobs API](https://www.elastic.co/guide/en/elasticsearch/reference/current/ml-get-job.html). Machine learning jobs that contain `siem` in the `groups` field can be used to create rules: + +```json +... +"job_id": "linux_anomalous_network_activity_ecs", +"job_type": "anomaly_detector", +"job_version": "7.7.0", +"groups": [ + "auditbeat", + "process", + "siem" +], +... +``` + +Additionally, you can set up notifications for when rules create alerts. The notifications use the [Alerting and Actions framework](https://www.elastic.co/guide/en/kibana/current/alerting-getting-started.html). Each action type requires a connector. Connectors store the information required to send notifications via external systems. The following connector types are supported for rule notifications: + +* Slack +* Email +* PagerDuty +* Webhook +* Microsoft Teams +* IBM Resilient +* Jira +* ServiceNow ITSM +> info +> For more information on PagerDuty fields, see [Send a v2 Event](https://developer.pagerduty.com/docs/events-api-v2/trigger-events/). + +To retrieve connector IDs, which are required to configure rule notifications, call the [Find objects API](https://www.elastic.co/guide/en/kibana/current/saved-objects-api-find.html) with `"type": "action"` in the request payload. + +For detailed information on Kibana actions and alerting, and additional API calls, see: + +* [Alerting API](https://www.elastic.co/docs/api/doc/kibana/group/endpoint-alerting) +* [Alerting and Actions framework](https://www.elastic.co/guide/en/kibana/current/alerting-getting-started.html) +* [Connectors API](https://www.elastic.co/docs/api/doc/kibana/group/endpoint-connectors) + + */ + createRule(props: CreateRuleProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Creates a new rule migration and returns the corresponding migration_id + */ + createRuleMigration(props: CreateRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/internal/siem_migrations/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Adds original vendor rules to an already existing migration. Can be called multiple times to add more rules + */ + createRuleMigrationRules( + props: CreateRuleMigrationRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create a new Timeline or Timeline template. + */ + createTimelines(props: CreateTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + createUpdateProtectionUpdatesNote( + props: CreateUpdateProtectionUpdatesNoteProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/api/endpoint/protection_updates_note/{package_policy_id}', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + deleteAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete the asset criticality record for a specific entity. + */ + deleteAssetCriticalityRecord( + props: DeleteAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .delete(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + deleteEntityEngine(props: DeleteEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + deleteEntitySource(props: DeleteEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + deleteMonitoringEngine(props: DeleteMonitoringEngineProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/delete', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Delete a note from a Timeline using the note ID. + */ + deleteNote(props: DeleteNoteProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + deletePrivMonUser(props: DeletePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/users/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete a detection rule using the `rule_id` or `id` field. + +The URL query must include one of the following: + +* `id` - `DELETE /api/detection_engine/rules?id=` +* `rule_id`- `DELETE /api/detection_engine/rules?rule_id=` + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. + + */ + deleteRule(props: DeleteRuleProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Deletes a rule migration document stored in the system given the rule migration id + */ + deleteRuleMigration(props: DeleteRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .delete( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Delete one or more Timelines or Timeline templates. + */ + deleteTimelines(props: DeleteTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Calculates and persists Risk Scores for an entity, returning the calculated risk score. + */ + deprecatedTriggerRiskScoreCalculation( + props: DeprecatedTriggerRiskScoreCalculationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/risk_scores/calculation/entity', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + disableMonitoringEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/disable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + disableRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/disable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + enableRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/enable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Run a shell command on an endpoint. + */ + endpointExecuteAction(props: EndpointExecuteActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/execute', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Download a file from an endpoint. + */ + endpointFileDownload(props: EndpointFileDownloadProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}/file/{file_id}/download', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get information for the specified file using the file ID. + */ + endpointFileInfo(props: EndpointFileInfoProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}/file/{file_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of a response action using the action ID. + */ + endpointGetActionsDetails( + props: EndpointGetActionsDetailsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/endpoint/action/{action_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get a list of all response actions. + */ + endpointGetActionsList(props: EndpointGetActionsListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a response actions state, which reports whether encryption is enabled. + */ + endpointGetActionsState(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action/state', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the status of response actions for the specified agent IDs. + */ + endpointGetActionsStatus( + props: EndpointGetActionsStatusProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/action_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a file from an endpoint. + */ + endpointGetFileAction(props: EndpointGetFileActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/get_file', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Get a list of all processes running on an endpoint. + */ + endpointGetProcessesAction( + props: EndpointGetProcessesActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/running_procs', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Isolate an endpoint from the network. The endpoint remains isolated until it's released. + */ + endpointIsolateAction(props: EndpointIsolateActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/isolate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Terminate a running process on an endpoint. + */ + endpointKillProcessAction( + props: EndpointKillProcessActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/kill_process', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Scan a specific file or directory on an endpoint for malware. + */ + endpointScanAction(props: EndpointScanActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/scan', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Suspend a running process on an endpoint. + */ + endpointSuspendProcessAction( + props: EndpointSuspendProcessActionProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/suspend_process', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Release an isolated endpoint, allowing it to rejoin a network. + */ + endpointUnisolateAction(props: EndpointUnisolateActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/unisolate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Upload a file to an endpoint. + */ + endpointUploadAction(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/upload', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + entityStoreGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/entity_store/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Export detection rules to an `.ndjson` file. The following configuration items are also included in the `.ndjson` file: +- Actions +- Exception lists +> info +> Rule actions and connectors are included in the exported file, but sensitive information about the connector (such as authentication credentials) is not included. You must re-add missing connector details after importing detection rules. + +> You can use Kibana’s [Saved Objects](https://www.elastic.co/guide/en/kibana/current/managing-saved-objects.html) UI (Stack Management → Kibana → Saved Objects) or the Saved Objects APIs (experimental) to [export](https://www.elastic.co/docs/api/doc/kibana/operation/operation-exportsavedobjectsdefault) and [import](https://www.elastic.co/docs/api/doc/kibana/operation/operation-importsavedobjectsdefault) any necessary connectors before importing detection rules. + +> Similarly, any value lists used for rule exceptions are not included in rule exports or imports. Use the [Manage value lists](https://www.elastic.co/guide/en/security/current/value-lists-exceptions.html#manage-value-lists) UI (Rules → Detection rules (SIEM) → Manage value lists) to export and import value lists separately. + + */ + exportRules(props: ExportRulesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Export Timelines as an NDJSON file. + */ + exportTimelines(props: ExportTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Finalize successful migrations of detection alerts. This replaces the original index's alias with the successfully migrated index's alias. +The endpoint is idempotent; therefore, it can safely be used to poll a given migration and, upon completion, +finalize it. + + */ + finalizeAlertsMigration(props: FinalizeAlertsMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/finalize_migration', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * List asset criticality records, paging, sorting and filtering as needed. + */ + findAssetCriticalityRecords( + props: FindAssetCriticalityRecordsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/asset_criticality/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieve a paginated list of detection rules. By default, the first page is returned, with 20 results per page. + */ + findRules(props: FindRulesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the rule migrations stats for all migrations stored in the system + */ + getAllStatsRuleMigration(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/stats', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the asset criticality record for a specific entity. + */ + getAssetCriticalityRecord( + props: GetAssetCriticalityRecordProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/asset_criticality', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getAssetCriticalityStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/asset_criticality/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the dashboard migration document stored in the system given the dashboard migration id + */ + getDashboardMigration(props: GetDashboardMigrationProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/dashboards/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the dashboard migrations stats for given migrations stored in the system + */ + getDashboardMigrationStats( + props: GetDashboardMigrationStatsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/dashboards/{migration_id}/stats', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of the draft Timeline or Timeline template for the current user. If the user doesn't have a draft Timeline, an empty Timeline is returned. + */ + getDraftTimelines(props: GetDraftTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/_draft', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getEndpointMetadataList(props: GetEndpointMetadataListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/metadata', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getEndpointSuggestions(props: GetEndpointSuggestionsProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/api/endpoint/suggestions/{suggestion_type}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + getEntityEngine(props: GetEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getEntitySource(props: GetEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getEntityStoreStatus(props: GetEntityStoreStatusProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get all notes for a given document. + */ + getNotes(props: GetNotesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getPolicyResponse(props: GetPolicyResponseProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/endpoint/policy_response', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getPrivilegedAccessDetectionPackageStatus(kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + '/api/entity_analytics/privileged_user_monitoring/pad/status', + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getProtectionUpdatesNote( + props: GetProtectionUpdatesNoteProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/api/endpoint/protection_updates_note/{package_policy_id}', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Returns the status of both the legacy transform-based risk engine, as well as the new risk engine + */ + getRiskEngineStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_score/engine/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + getRuleExecutionEvents(props: GetRuleExecutionEventsProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams( + '/internal/detection_engine/rules/{ruleId}/execution/events', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getRuleExecutionResults(props: GetRuleExecutionResultsProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams( + '/internal/detection_engine/rules/{ruleId}/execution/results', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the rule migration document stored in the system given the rule migration id + */ + getRuleMigration(props: GetRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves all related integrations + */ + getRuleMigrationIntegrations(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/integrations', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the stats of all the integrations for all the rule migrations, including the number of rules associated with the integration + */ + getRuleMigrationIntegrationsStats(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/integrations/stats', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves all available prebuilt rules (installed and installable) + */ + getRuleMigrationPrebuiltRules( + props: GetRuleMigrationPrebuiltRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/prebuilt_rules', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Identifies the privileges required for a SIEM rules migration and returns the missing privileges + */ + getRuleMigrationPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/siem_migrations/rules/missing_privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves resources for an existing SIEM rules migration + */ + getRuleMigrationResources( + props: GetRuleMigrationResourcesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/resources', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Identifies missing resources from all the rules of an existing SIEM rules migration + */ + getRuleMigrationResourcesMissing( + props: GetRuleMigrationResourcesMissingProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/resources/missing', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the the list of rules included in a migration given the migration id + */ + getRuleMigrationRules(props: GetRuleMigrationRulesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieves the stats of a SIEM rules migration using the migration id provided + */ + getRuleMigrationStats(props: GetRuleMigrationStatsProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/stats', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves the translation stats of a SIEM rules migration using the migration id provided + */ + getRuleMigrationTranslationStats( + props: GetRuleMigrationTranslationStatsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/translation_stats', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Get the details of an existing saved Timeline or Timeline template. + */ + getTimeline(props: GetTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all saved Timelines or Timeline templates. + */ + getTimelines(props: GetTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timelines', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + getWorkflowInsights(props: GetWorkflowInsightsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/api/endpoint/workflow_insights', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import detection rules from an `.ndjson` file, including actions and exception lists. The request must include: +- The `Content-Type: multipart/form-data` HTTP header. +- A link to the `.ndjson` file containing the rules. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. +> info +> To import rules with actions, you need at least Read privileges for the Action and Connectors feature. To overwrite or add new connectors, you need All privileges for the Actions and Connectors feature. To import rules without actions, you don’t need Actions and Connectors privileges. Refer to [Enable and access detections](https://www.elastic.co/guide/en/security/current/detections-permissions-section.html#enable-detections-ui) for more information. + +> info +> Rule actions and connectors are included in the exported file, but sensitive information about the connector (such as authentication credentials) is not included. You must re-add missing connector details after importing detection rules. + +> You can use Kibana’s [Saved Objects](https://www.elastic.co/guide/en/kibana/current/managing-saved-objects.html) UI (Stack Management → Kibana → Saved Objects) or the Saved Objects APIs (experimental) to [export](https://www.elastic.co/docs/api/doc/kibana/operation/operation-exportsavedobjectsdefault) and [import](https://www.elastic.co/docs/api/doc/kibana/operation/operation-importsavedobjectsdefault) any necessary connectors before importing detection rules. + +> Similarly, any value lists used for rule exceptions are not included in rule exports or imports. Use the [Manage value lists](https://www.elastic.co/guide/en/security/current/value-lists-exceptions.html#manage-value-lists) UI (Rules → Detection rules (SIEM) → Manage value lists) to export and import value lists separately. + + */ + importRules(props: ImportRulesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import Timelines. + */ + importTimelines(props: ImportTimelinesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initEntityEngine(props: InitEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/init', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initEntityStore(props: InitEntityStoreProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_store/enable', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + initMonitoringEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/engine/init', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Initializes the Risk Engine by creating the necessary indices and mappings, removing old transforms, and starting the new risk engine + */ + initRiskEngine(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/engine/init', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Installs migration rules + */ + installMigrationRules(props: InstallMigrationRulesProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/install', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Install and update all Elastic prebuilt detection rules and Timelines. + +This endpoint allows you to install and update prebuilt detection rules and Timelines provided by Elastic. +When you call this endpoint, it will: +- Install any new prebuilt detection rules that are not currently installed in your system. +- Update any existing prebuilt detection rules that have been modified or improved by Elastic. +- Install any new prebuilt Timelines that are not currently installed in your system. +- Update any existing prebuilt Timelines that have been modified or improved by Elastic. + +This ensures that your detection engine is always up-to-date with the latest rules and Timelines, +providing you with the most current and effective threat detection capabilities. + + */ + installPrebuiltRulesAndTimelines(kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/detection_engine/rules/prepackaged', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Install or update prepackaged Timelines. + */ + installPrepackedTimelines( + props: InstallPrepackedTimelinesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/timeline/_prepackaged', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + installPrivilegedAccessDetectionPackage(kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + '/api/entity_analytics/privileged_user_monitoring/pad/install', + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + internalUploadAssetCriticalityRecords(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/asset_criticality/upload_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * List entities records, paging, sorting and filtering as needed. + */ + listEntities(props: ListEntitiesProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/entities/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + listEntityEngines(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_store/engines', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + listEntitySources(props: ListEntitySourcesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/entity_source/list', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + listPrivMonUsers(props: ListPrivMonUsersProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_analytics/monitoring/users/list', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update specific fields of an existing detection rule using the `rule_id` or `id` field. + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + patchRule(props: PatchRuleProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update an existing Timeline. You can update the title, description, date range, pinned events, pinned queries, and/or pinned saved queries of an existing Timeline. + */ + patchTimeline(props: PatchTimelineProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/timeline', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Apply a bulk action, such as bulk edit, duplicate, or delete, to multiple detection rules. The bulk action is applied to all rules that match the query or to the rules listed by their IDs. + +The edit action allows you to add, delete, or set tags, index patterns, investigation fields, rule actions and schedules for multiple rules at once. +The edit action is idempotent, meaning that if you add a tag to a rule that already has that tag, no changes are made. The same is true for other edit actions, for example removing an index pattern that is not specified in a rule will not result in any changes. The only exception is the `add_rule_actions` and `set_rule_actions` action, which is non-idempotent. This means that if you add or set a rule action to a rule that already has that action, a new action is created with a new unique ID. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + performRulesBulkAction(props: PerformRulesBulkActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/_bulk_action', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + /** + * Favorite a Timeline or Timeline template for the current user. + */ + persistFavoriteRoute(props: PersistFavoriteRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/timeline/_favorite', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Add a note to a Timeline or update an existing note. + */ + persistNoteRoute(props: PersistNoteRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/note', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Pin/unpin an event to/from an existing Timeline. + */ + persistPinnedEventRoute(props: PersistPinnedEventRouteProps, kibanaSpace: string = 'default') { + return supertest + .patch(getRouteUrlForSpace('/api/pinned_event', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Calculates and returns a list of Risk Scores, sorted by identifier_type and risk score. + */ + previewRiskScore(props: PreviewRiskScoreProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/preview', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + privmonBulkUploadUsersCsv(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/entity_analytics/monitoring/users/_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + privMonHealth(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/health', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Check if the current user has all required permissions for Privilege Monitoring + */ + privMonPrivileges(kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/privileges', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + readAlertsIndex(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/index', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieve indices that contain detection alerts of a particular age, along with migration information for each of those indices. + */ + readAlertsMigrationStatus( + props: ReadAlertsMigrationStatusProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/signals/migration_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Retrieve the status of all Elastic prebuilt detection rules and Timelines. + +This endpoint provides detailed information about the number of custom rules, installed prebuilt rules, available prebuilt rules that are not installed, outdated prebuilt rules, installed prebuilt timelines, available prebuilt timelines that are not installed, and outdated prebuilt timelines. + + */ + readPrebuiltRulesAndTimelinesStatus(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules/prepackaged/_status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieves whether or not the user is authenticated, and the user's Kibana +space and index privileges, which determine if the user can create an +index for the Elastic Security alerts generated by +detection engine rules. + + */ + readPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + readRiskEngineSettings(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_score/engine/settings', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Retrieve a detection rule using the `rule_id` or `id` field. + +The URL query must include one of the following: + +* `id` - `GET /api/detection_engine/rules?id=` +* `rule_id` - `GET /api/detection_engine/rules?rule_id=` + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. + + */ + readRule(props: ReadRuleProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * List all unique tags from all detection rules. + */ + readTags(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/detection_engine/tags', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + resolveTimeline(props: ResolveTimelineProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/timeline/resolve', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + riskEngineGetPrivileges(kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/internal/risk_engine/privileges', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + rulePreview(props: RulePreviewProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/rules/preview', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object) + .query(props.query); + }, + runEntityAnalyticsMigrations(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/entity_analytics/migrations/run', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Run a shell command on an endpoint. + */ + runScriptAction(props: RunScriptActionProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/endpoint/action/runscript', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Schedule the risk scoring engine to run as soon as possible. You can use this to recalculate entity risk scores after updating their asset criticality. + */ + scheduleRiskEngineNow(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/risk_score/engine/schedule_now', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Find and/or aggregate detection alerts that match the given query. + */ + searchAlerts(props: SearchAlertsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/search', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + searchPrivilegesIndices(props: SearchPrivilegesIndicesProps, kibanaSpace: string = 'default') { + return supertest + .get( + getRouteUrlForSpace('/api/entity_analytics/monitoring/privileges/indices', kibanaSpace) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Assign users to detection alerts, and unassign them from alerts. +> info +> You cannot add and remove the same assignee in the same request. + + */ + setAlertAssignees(props: SetAlertAssigneesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/assignees', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Set the status of one or more detection alerts. + */ + setAlertsStatus(props: SetAlertsStatusProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/status', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * And tags to detection alerts, and remove them from alerts. +> info +> You cannot add and remove the same alert tag in the same request. + + */ + setAlertTags(props: SetAlertTagsProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/detection_engine/signals/tags', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + startEntityEngine(props: StartEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/start', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Starts a SIEM rules migration using the migration id provided + */ + startRuleMigration(props: StartRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/start', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + stopEntityEngine(props: StopEntityEngineProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/entity_store/engines/{entityType}/stop', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Stops a running SIEM rules migration using the migration id provided + */ + stopRuleMigration(props: StopRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/stop', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Suggests user profiles. + */ + suggestUserProfiles(props: SuggestUserProfilesProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/internal/detection_engine/users/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Calculates and persists Risk Scores for an entity, returning the calculated risk score. + */ + triggerRiskScoreCalculation( + props: TriggerRiskScoreCalculationProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/internal/risk_score/calculation/entity', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updateEntitySource(props: UpdateEntitySourceProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/entity_source/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updatePrivMonUser(props: UpdatePrivMonUserProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/api/entity_analytics/monitoring/users/{id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update a detection rule using the `rule_id` or `id` field. The original rule is replaced, and all unspecified fields are deleted. + +The difference between the `id` and `rule_id` is that the `id` is a unique rule identifier that is randomly generated when a rule is created and cannot be set, whereas `rule_id` is a stable rule identifier that can be assigned during rule creation. +> warn +> When used with [API key](https://www.elastic.co/docs/deploy-manage/api-keys) authentication, the user's key gets assigned to the affected rules. If the user's key gets deleted or the user becomes inactive, the rules will stop running. + +> If the API key that is used for authorization has different privileges than the key that created or most recently updated the rule, the rule behavior might change. + + */ + updateRule(props: UpdateRuleProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/detection_engine/rules', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates rules migrations data + */ + updateRuleMigration(props: UpdateRuleMigrationProps, kibanaSpace: string = 'default') { + return supertest + .patch( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates the index pattern for eligible and/or selected rules of a migration + */ + updateRuleMigrationIndexPattern( + props: UpdateRuleMigrationIndexPatternProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams( + '/internal/siem_migrations/rules/{migration_id}/update_index_pattern', + props.params + ), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Updates rules migrations attributes + */ + updateRuleMigrationRules( + props: UpdateRuleMigrationRulesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .patch( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/rules', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + updateWorkflowInsight(props: UpdateWorkflowInsightProps, kibanaSpace: string = 'default') { + return supertest + .put( + getRouteUrlForSpace( + replaceParams('/internal/api/endpoint/workflow_insights/{insightId}', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + uploadAssetCriticalityRecords(kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/asset_criticality/upload_csv', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana'); + }, + /** + * Creates or updates resources for an existing SIEM rules migration + */ + upsertRuleMigrationResources( + props: UpsertRuleMigrationResourcesProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/internal/siem_migrations/rules/{migration_id}/resources', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '1') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface AlertsMigrationCleanupProps { + body: AlertsMigrationCleanupRequestBodyInput; +} +export interface BulkUpsertAssetCriticalityRecordsProps { + body: BulkUpsertAssetCriticalityRecordsRequestBodyInput; +} +export interface CleanDraftTimelinesProps { + body: CleanDraftTimelinesRequestBodyInput; +} +export interface ConfigureRiskEngineSavedObjectProps { + body: ConfigureRiskEngineSavedObjectRequestBodyInput; +} +export interface CopyTimelineProps { + body: CopyTimelineRequestBodyInput; +} +export interface CreateAlertsMigrationProps { + body: CreateAlertsMigrationRequestBodyInput; +} +export interface CreateAssetCriticalityRecordProps { + body: CreateAssetCriticalityRecordRequestBodyInput; +} +export interface CreateDashboardMigrationProps { + body: CreateDashboardMigrationRequestBodyInput; +} +export interface CreateDashboardMigrationDashboardsProps { + params: CreateDashboardMigrationDashboardsRequestParamsInput; + body: CreateDashboardMigrationDashboardsRequestBodyInput; +} +export interface CreateEntitySourceProps { + body: CreateEntitySourceRequestBodyInput; +} +export interface CreatePrivilegesImportIndexProps { + body: CreatePrivilegesImportIndexRequestBodyInput; +} +export interface CreatePrivMonUserProps { + body: CreatePrivMonUserRequestBodyInput; +} +export interface CreateRuleProps { + body: CreateRuleRequestBodyInput; +} +export interface CreateRuleMigrationProps { + body: CreateRuleMigrationRequestBodyInput; +} +export interface CreateRuleMigrationRulesProps { + params: CreateRuleMigrationRulesRequestParamsInput; + body: CreateRuleMigrationRulesRequestBodyInput; +} +export interface CreateTimelinesProps { + body: CreateTimelinesRequestBodyInput; +} +export interface CreateUpdateProtectionUpdatesNoteProps { + params: CreateUpdateProtectionUpdatesNoteRequestParamsInput; + body: CreateUpdateProtectionUpdatesNoteRequestBodyInput; +} +export interface DeleteAssetCriticalityRecordProps { + query: DeleteAssetCriticalityRecordRequestQueryInput; +} +export interface DeleteEntityEngineProps { + query: DeleteEntityEngineRequestQueryInput; + params: DeleteEntityEngineRequestParamsInput; +} +export interface DeleteEntitySourceProps { + params: DeleteEntitySourceRequestParamsInput; +} +export interface DeleteMonitoringEngineProps { + query: DeleteMonitoringEngineRequestQueryInput; +} +export interface DeleteNoteProps { + body: DeleteNoteRequestBodyInput; +} +export interface DeletePrivMonUserProps { + params: DeletePrivMonUserRequestParamsInput; +} +export interface DeleteRuleProps { + query: DeleteRuleRequestQueryInput; +} +export interface DeleteRuleMigrationProps { + params: DeleteRuleMigrationRequestParamsInput; +} +export interface DeleteTimelinesProps { + body: DeleteTimelinesRequestBodyInput; +} +export interface DeprecatedTriggerRiskScoreCalculationProps { + body: DeprecatedTriggerRiskScoreCalculationRequestBodyInput; +} +export interface EndpointExecuteActionProps { + body: EndpointExecuteActionRequestBodyInput; +} +export interface EndpointFileDownloadProps { + params: EndpointFileDownloadRequestParamsInput; +} +export interface EndpointFileInfoProps { + params: EndpointFileInfoRequestParamsInput; +} +export interface EndpointGetActionsDetailsProps { + params: EndpointGetActionsDetailsRequestParamsInput; +} +export interface EndpointGetActionsListProps { + query: EndpointGetActionsListRequestQueryInput; +} +export interface EndpointGetActionsStatusProps { + query: EndpointGetActionsStatusRequestQueryInput; +} +export interface EndpointGetFileActionProps { + body: EndpointGetFileActionRequestBodyInput; +} +export interface EndpointGetProcessesActionProps { + body: EndpointGetProcessesActionRequestBodyInput; +} +export interface EndpointIsolateActionProps { + body: EndpointIsolateActionRequestBodyInput; +} +export interface EndpointKillProcessActionProps { + body: EndpointKillProcessActionRequestBodyInput; +} +export interface EndpointScanActionProps { + body: EndpointScanActionRequestBodyInput; +} +export interface EndpointSuspendProcessActionProps { + body: EndpointSuspendProcessActionRequestBodyInput; +} +export interface EndpointUnisolateActionProps { + body: EndpointUnisolateActionRequestBodyInput; +} +export interface ExportRulesProps { + query: ExportRulesRequestQueryInput; + body: ExportRulesRequestBodyInput; +} +export interface ExportTimelinesProps { + query: ExportTimelinesRequestQueryInput; + body: ExportTimelinesRequestBodyInput; +} +export interface FinalizeAlertsMigrationProps { + body: FinalizeAlertsMigrationRequestBodyInput; +} +export interface FindAssetCriticalityRecordsProps { + query: FindAssetCriticalityRecordsRequestQueryInput; +} +export interface FindRulesProps { + query: FindRulesRequestQueryInput; +} +export interface GetAssetCriticalityRecordProps { + query: GetAssetCriticalityRecordRequestQueryInput; +} +export interface GetDashboardMigrationProps { + params: GetDashboardMigrationRequestParamsInput; +} +export interface GetDashboardMigrationStatsProps { + params: GetDashboardMigrationStatsRequestParamsInput; +} +export interface GetDraftTimelinesProps { + query: GetDraftTimelinesRequestQueryInput; +} +export interface GetEndpointMetadataListProps { + query: GetEndpointMetadataListRequestQueryInput; +} +export interface GetEndpointSuggestionsProps { + params: GetEndpointSuggestionsRequestParamsInput; + body: GetEndpointSuggestionsRequestBodyInput; +} +export interface GetEntityEngineProps { + params: GetEntityEngineRequestParamsInput; +} +export interface GetEntitySourceProps { + params: GetEntitySourceRequestParamsInput; +} +export interface GetEntityStoreStatusProps { + query: GetEntityStoreStatusRequestQueryInput; +} +export interface GetNotesProps { + query: GetNotesRequestQueryInput; +} +export interface GetPolicyResponseProps { + query: GetPolicyResponseRequestQueryInput; +} +export interface GetProtectionUpdatesNoteProps { + params: GetProtectionUpdatesNoteRequestParamsInput; +} +export interface GetRuleExecutionEventsProps { + query: GetRuleExecutionEventsRequestQueryInput; + params: GetRuleExecutionEventsRequestParamsInput; +} +export interface GetRuleExecutionResultsProps { + query: GetRuleExecutionResultsRequestQueryInput; + params: GetRuleExecutionResultsRequestParamsInput; +} +export interface GetRuleMigrationProps { + params: GetRuleMigrationRequestParamsInput; +} +export interface GetRuleMigrationPrebuiltRulesProps { + params: GetRuleMigrationPrebuiltRulesRequestParamsInput; +} +export interface GetRuleMigrationResourcesProps { + query: GetRuleMigrationResourcesRequestQueryInput; + params: GetRuleMigrationResourcesRequestParamsInput; +} +export interface GetRuleMigrationResourcesMissingProps { + params: GetRuleMigrationResourcesMissingRequestParamsInput; +} +export interface GetRuleMigrationRulesProps { + query: GetRuleMigrationRulesRequestQueryInput; + params: GetRuleMigrationRulesRequestParamsInput; +} +export interface GetRuleMigrationStatsProps { + params: GetRuleMigrationStatsRequestParamsInput; +} +export interface GetRuleMigrationTranslationStatsProps { + params: GetRuleMigrationTranslationStatsRequestParamsInput; +} +export interface GetTimelineProps { + query: GetTimelineRequestQueryInput; +} +export interface GetTimelinesProps { + query: GetTimelinesRequestQueryInput; +} +export interface GetWorkflowInsightsProps { + query: GetWorkflowInsightsRequestQueryInput; +} +export interface ImportRulesProps { + query: ImportRulesRequestQueryInput; +} +export interface ImportTimelinesProps { + body: ImportTimelinesRequestBodyInput; +} +export interface InitEntityEngineProps { + params: InitEntityEngineRequestParamsInput; + body: InitEntityEngineRequestBodyInput; +} +export interface InitEntityStoreProps { + body: InitEntityStoreRequestBodyInput; +} +export interface InstallMigrationRulesProps { + params: InstallMigrationRulesRequestParamsInput; + body: InstallMigrationRulesRequestBodyInput; +} +export interface InstallPrepackedTimelinesProps { + body: InstallPrepackedTimelinesRequestBodyInput; +} +export interface ListEntitiesProps { + query: ListEntitiesRequestQueryInput; +} +export interface ListEntitySourcesProps { + query: ListEntitySourcesRequestQueryInput; +} +export interface ListPrivMonUsersProps { + query: ListPrivMonUsersRequestQueryInput; +} +export interface PatchRuleProps { + body: PatchRuleRequestBodyInput; +} +export interface PatchTimelineProps { + body: PatchTimelineRequestBodyInput; +} +export interface PerformRulesBulkActionProps { + query: PerformRulesBulkActionRequestQueryInput; + body: PerformRulesBulkActionRequestBodyInput; +} +export interface PersistFavoriteRouteProps { + body: PersistFavoriteRouteRequestBodyInput; +} +export interface PersistNoteRouteProps { + body: PersistNoteRouteRequestBodyInput; +} +export interface PersistPinnedEventRouteProps { + body: PersistPinnedEventRouteRequestBodyInput; +} +export interface PreviewRiskScoreProps { + body: PreviewRiskScoreRequestBodyInput; +} +export interface ReadAlertsMigrationStatusProps { + query: ReadAlertsMigrationStatusRequestQueryInput; +} +export interface ReadRuleProps { + query: ReadRuleRequestQueryInput; +} +export interface ResolveTimelineProps { + query: ResolveTimelineRequestQueryInput; +} +export interface RulePreviewProps { + query: RulePreviewRequestQueryInput; + body: RulePreviewRequestBodyInput; +} +export interface RunScriptActionProps { + body: RunScriptActionRequestBodyInput; +} +export interface SearchAlertsProps { + body: SearchAlertsRequestBodyInput; +} +export interface SearchPrivilegesIndicesProps { + query: SearchPrivilegesIndicesRequestQueryInput; +} +export interface SetAlertAssigneesProps { + body: SetAlertAssigneesRequestBodyInput; +} +export interface SetAlertsStatusProps { + body: SetAlertsStatusRequestBodyInput; +} +export interface SetAlertTagsProps { + body: SetAlertTagsRequestBodyInput; +} +export interface StartEntityEngineProps { + params: StartEntityEngineRequestParamsInput; +} +export interface StartRuleMigrationProps { + params: StartRuleMigrationRequestParamsInput; + body: StartRuleMigrationRequestBodyInput; +} +export interface StopEntityEngineProps { + params: StopEntityEngineRequestParamsInput; +} +export interface StopRuleMigrationProps { + params: StopRuleMigrationRequestParamsInput; +} +export interface SuggestUserProfilesProps { + query: SuggestUserProfilesRequestQueryInput; +} +export interface TriggerRiskScoreCalculationProps { + body: TriggerRiskScoreCalculationRequestBodyInput; +} +export interface UpdateEntitySourceProps { + params: UpdateEntitySourceRequestParamsInput; + body: UpdateEntitySourceRequestBodyInput; +} +export interface UpdatePrivMonUserProps { + params: UpdatePrivMonUserRequestParamsInput; + body: UpdatePrivMonUserRequestBodyInput; +} +export interface UpdateRuleProps { + body: UpdateRuleRequestBodyInput; +} +export interface UpdateRuleMigrationProps { + params: UpdateRuleMigrationRequestParamsInput; + body: UpdateRuleMigrationRequestBodyInput; +} +export interface UpdateRuleMigrationIndexPatternProps { + params: UpdateRuleMigrationIndexPatternRequestParamsInput; + body: UpdateRuleMigrationIndexPatternRequestBodyInput; +} +export interface UpdateRuleMigrationRulesProps { + params: UpdateRuleMigrationRulesRequestParamsInput; + body: UpdateRuleMigrationRulesRequestBodyInput; +} +export interface UpdateWorkflowInsightProps { + params: UpdateWorkflowInsightRequestParamsInput; + body: UpdateWorkflowInsightRequestBodyInput; +} +export interface UpsertRuleMigrationResourcesProps { + params: UpsertRuleMigrationResourcesRequestParamsInput; + body: UpsertRuleMigrationResourcesRequestBodyInput; +} diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_metadata.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_metadata.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_metadata.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_metadata.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_resolver.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_resolver.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_resolver.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_resolver.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_roles_users.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_roles_users.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_edr_workflows_roles_users.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_edr_workflows_roles_users.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_ess_utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_ess_utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_ess_utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_ess_utils.ts diff --git a/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_exceptions_api.gen.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_exceptions_api.gen.ts new file mode 100644 index 0000000000000..7b4ba75b9e33d --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_exceptions_api.gen.ts @@ -0,0 +1,299 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* + * NOTICE: Do not edit this file manually. + * This file is automatically generated by the OpenAPI Generator, @kbn/openapi-generator. + * + * info: + * title: Exceptions API client for tests + * version: Bundle (no version) + */ + +import { + ELASTIC_HTTP_VERSION_HEADER, + X_ELASTIC_INTERNAL_ORIGIN_REQUEST, +} from '@kbn/core-http-common'; +import { replaceParams } from '@kbn/openapi-common/shared'; +import { getRouteUrlForSpace } from '@kbn/spaces-plugin/common'; + +import { CreateExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_exception_list/create_exception_list.gen'; +import { CreateExceptionListItemRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_exception_list_item/create_exception_list_item.gen'; +import { + CreateRuleExceptionListItemsRequestParamsInput, + CreateRuleExceptionListItemsRequestBodyInput, +} from '@kbn/securitysolution-exceptions-common/api/create_rule_exceptions/create_rule_exceptions.gen'; +import { CreateSharedExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/create_shared_exceptions_list/create_shared_exceptions_list.gen'; +import { DeleteExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/delete_exception_list/delete_exception_list.gen'; +import { DeleteExceptionListItemRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/delete_exception_list_item/delete_exception_list_item.gen'; +import { DuplicateExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/duplicate_exception_list/duplicate_exception_list.gen'; +import { ExportExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/export_exception_list/export_exception_list.gen'; +import { FindExceptionListItemsRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/find_exception_list_items/find_exception_list_items.gen'; +import { FindExceptionListsRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/find_exception_lists/find_exception_lists.gen'; +import { ImportExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/import_exceptions/import_exceptions.gen'; +import { ReadExceptionListRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list/read_exception_list.gen'; +import { ReadExceptionListItemRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list_item/read_exception_list_item.gen'; +import { ReadExceptionListSummaryRequestQueryInput } from '@kbn/securitysolution-exceptions-common/api/read_exception_list_summary/read_exception_list_summary.gen'; +import { UpdateExceptionListRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/update_exception_list/update_exception_list.gen'; +import { UpdateExceptionListItemRequestBodyInput } from '@kbn/securitysolution-exceptions-common/api/update_exception_list_item/update_exception_list_item.gen'; +import { FtrProviderContext } from '../../ftr_provider_context'; + +export function SecuritySolutionApiProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + + return { + /** + * An exception list groups exception items and can be associated with detection rules. You can assign exception lists to multiple detection rules. +> info +> All exception items added to the same list are evaluated using `OR` logic. That is, if any of the items in a list evaluate to `true`, the exception prevents the rule from generating an alert. Likewise, `OR` logic is used for evaluating exceptions when more than one exception list is assigned to a rule. To use the `AND` operator, you can define multiple clauses (`entries`) in a single exception item. + + */ + createExceptionList(props: CreateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create an exception item and associate it with the specified exception list. +> info +> Before creating exception items, you must create an exception list. + + */ + createExceptionListItem(props: CreateExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Create exception items that apply to a single detection rule. + */ + createRuleExceptionListItems( + props: CreateRuleExceptionListItemsProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post( + getRouteUrlForSpace( + replaceParams('/api/detection_engine/rules/{id}/exceptions', props.params), + kibanaSpace + ) + ) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * An exception list groups exception items and can be associated with detection rules. A shared exception list can apply to multiple detection rules. +> info +> All exception items added to the same list are evaluated using `OR` logic. That is, if any of the items in a list evaluate to `true`, the exception prevents the rule from generating an alert. Likewise, `OR` logic is used for evaluating exceptions when more than one exception list is assigned to a rule. To use the `AND` operator, you can define multiple clauses (`entries`) in a single exception item. + + */ + createSharedExceptionList( + props: CreateSharedExceptionListProps, + kibanaSpace: string = 'default' + ) { + return supertest + .post(getRouteUrlForSpace('/api/exceptions/shared', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Delete an exception list using the `id` or `list_id` field. + */ + deleteExceptionList(props: DeleteExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Delete an exception list item using the `id` or `item_id` field. + */ + deleteExceptionListItem(props: DeleteExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .delete(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Duplicate an existing exception list. + */ + duplicateExceptionList(props: DuplicateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_duplicate', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Export an exception list and its associated items to an NDJSON file. + */ + exportExceptionList(props: ExportExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_export', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all exception list items in the specified list. + */ + findExceptionListItems(props: FindExceptionListItemsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/items/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a list of all exception list containers. + */ + findExceptionLists(props: FindExceptionListsProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/_find', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Import an exception list and its associated items from an NDJSON file. + */ + importExceptionList(props: ImportExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .post(getRouteUrlForSpace('/api/exception_lists/_import', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of an exception list using the `id` or `list_id` field. + */ + readExceptionList(props: ReadExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get the details of an exception list item using the `id` or `item_id` field. + */ + readExceptionListItem(props: ReadExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Get a summary of the specified exception list. + */ + readExceptionListSummary( + props: ReadExceptionListSummaryProps, + kibanaSpace: string = 'default' + ) { + return supertest + .get(getRouteUrlForSpace('/api/exception_lists/summary', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .query(props.query); + }, + /** + * Update an exception list using the `id` or `list_id` field. + */ + updateExceptionList(props: UpdateExceptionListProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/exception_lists', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + /** + * Update an exception list item using the `id` or `item_id` field. + */ + updateExceptionListItem(props: UpdateExceptionListItemProps, kibanaSpace: string = 'default') { + return supertest + .put(getRouteUrlForSpace('/api/exception_lists/items', kibanaSpace)) + .set('kbn-xsrf', 'true') + .set(ELASTIC_HTTP_VERSION_HEADER, '2023-10-31') + .set(X_ELASTIC_INTERNAL_ORIGIN_REQUEST, 'kibana') + .send(props.body as object); + }, + }; +} + +export interface CreateExceptionListProps { + body: CreateExceptionListRequestBodyInput; +} +export interface CreateExceptionListItemProps { + body: CreateExceptionListItemRequestBodyInput; +} +export interface CreateRuleExceptionListItemsProps { + params: CreateRuleExceptionListItemsRequestParamsInput; + body: CreateRuleExceptionListItemsRequestBodyInput; +} +export interface CreateSharedExceptionListProps { + body: CreateSharedExceptionListRequestBodyInput; +} +export interface DeleteExceptionListProps { + query: DeleteExceptionListRequestQueryInput; +} +export interface DeleteExceptionListItemProps { + query: DeleteExceptionListItemRequestQueryInput; +} +export interface DuplicateExceptionListProps { + query: DuplicateExceptionListRequestQueryInput; +} +export interface ExportExceptionListProps { + query: ExportExceptionListRequestQueryInput; +} +export interface FindExceptionListItemsProps { + query: FindExceptionListItemsRequestQueryInput; +} +export interface FindExceptionListsProps { + query: FindExceptionListsRequestQueryInput; +} +export interface ImportExceptionListProps { + query: ImportExceptionListRequestQueryInput; +} +export interface ReadExceptionListProps { + query: ReadExceptionListRequestQueryInput; +} +export interface ReadExceptionListItemProps { + query: ReadExceptionListItemRequestQueryInput; +} +export interface ReadExceptionListSummaryProps { + query: ReadExceptionListSummaryRequestQueryInput; +} +export interface UpdateExceptionListProps { + body: UpdateExceptionListRequestBodyInput; +} +export interface UpdateExceptionListItemProps { + body: UpdateExceptionListItemRequestBodyInput; +} diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_bsearch_creator.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_bsearch_creator.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_bsearch_creator.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_bsearch_creator.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_supertest.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_supertest.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_supertest.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_supertest.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts similarity index 95% rename from x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts index 7b47eaceccd54..08f3e1367b3b4 100644 --- a/x-pack/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/services/security_solution_serverless_utils.ts @@ -8,9 +8,9 @@ import supertest from 'supertest'; import { format as formatUrl } from 'url'; import { IEsSearchResponse } from '@kbn/search-types'; -import { RoleCredentials } from '@kbn/test-suites-serverless/shared/services'; +import { RoleCredentials } from '@kbn/test-suites-xpack-platform/serverless/shared/services'; import type { SendOptions } from '@kbn/ftr-common-functional-services'; -import type { SendOptions as SecureSearchSendOptions } from '@kbn/test-suites-serverless/shared/services/search_secure'; +import type { SendOptions as SecureSearchSendOptions } from './search_secure'; import type { FtrProviderContext } from '../../ftr_provider_context'; import type { SecuritySolutionUtilsInterface, Role, User } from './types'; import { roles } from '../privileges/roles'; diff --git a/x-pack/test/security_solution_api_integration/config/services/spaces.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/spaces.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/spaces.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/spaces.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/spaces_service.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/spaces_service.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/services/spaces_service.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/spaces_service.ts diff --git a/x-pack/test/security_solution_api_integration/config/services/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/services/types.ts similarity index 95% rename from x-pack/test/security_solution_api_integration/config/services/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/services/types.ts index 1b9feeaeab70d..6af5a61b18441 100644 --- a/x-pack/test/security_solution_api_integration/config/services/types.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/config/services/types.ts @@ -8,8 +8,8 @@ import TestAgent from 'supertest/lib/agent'; import type { IEsSearchResponse } from '@kbn/search-types'; -import type { SearchSecureService } from '@kbn/test-suites-serverless/shared/services/search_secure'; import type { SearchService, SendOptions } from '@kbn/ftr-common-functional-services'; +import type { SearchSecureService } from './search_secure'; export interface SecuritySolutionServerlessSearch extends Omit { send: (options: SendOptions) => Promise; diff --git a/x-pack/test/security_solution_api_integration/config/shared.ts b/x-pack/solutions/security/test/security_solution_api_integration/config/shared.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/config/shared.ts rename to x-pack/solutions/security/test/security_solution_api_integration/config/shared.ts diff --git a/x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics/data.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics/data.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics/data.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics/data.json diff --git a/x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics/mappings.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics/mappings.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics/mappings.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics/mappings.json diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/data.json.gz b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/data.json.gz similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/data.json.gz rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/data.json.gz diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/mappings.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/mappings.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/mappings.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/auditbeat/hosts/mappings.json diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/data.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/data.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/data.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/data.json diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/mappings.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/mappings.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/mappings.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/filebeat/threat_intel/mappings.json diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/data.json.gz b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/data.json.gz similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/data.json.gz rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/data.json.gz diff --git a/x-pack/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/mappings.json b/x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/mappings.json similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/mappings.json rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless/packetbeat/default/mappings.json diff --git a/x-pack/test/security_solution_api_integration/es_archive_path_builder/constants.ts b/x-pack/solutions/security/test/security_solution_api_integration/es_archive_path_builder/constants.ts similarity index 80% rename from x-pack/test/security_solution_api_integration/es_archive_path_builder/constants.ts rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive_path_builder/constants.ts index e01be70f6cd7f..9bbbf7330f621 100644 --- a/x-pack/test/security_solution_api_integration/es_archive_path_builder/constants.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/es_archive_path_builder/constants.ts @@ -6,6 +6,6 @@ */ export const SERVERLESS_ES_ARCHIVE_PATH = - 'x-pack/test/security_solution_api_integration/es_archive/serverless'; + 'x-pack/solutions/security/test/security_solution_api_integration/es_archive/serverless'; export const ESS_ES_ARCHIVE_PATH = 'x-pack/solutions/security/test/fixtures/es_archives'; diff --git a/x-pack/test/security_solution_api_integration/es_archive_path_builder/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/es_archive_path_builder/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/es_archive_path_builder/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/es_archive_path_builder/index.ts diff --git a/x-pack/test/security_solution_api_integration/ftr_provider_context.d.ts b/x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context.d.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/ftr_provider_context.d.ts rename to x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context.d.ts diff --git a/x-pack/test/security_solution_api_integration/ftr_provider_context_edr_workflows.d.ts b/x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context_edr_workflows.d.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/ftr_provider_context_edr_workflows.d.ts rename to x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context_edr_workflows.d.ts diff --git a/x-pack/test/security_solution_api_integration/ftr_provider_context_with_spaces.d.ts b/x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context_with_spaces.d.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/ftr_provider_context_with_spaces.d.ts rename to x-pack/solutions/security/test/security_solution_api_integration/ftr_provider_context_with_spaces.d.ts diff --git a/x-pack/test/security_solution_api_integration/package.json b/x-pack/solutions/security/test/security_solution_api_integration/package.json similarity index 100% rename from x-pack/test/security_solution_api_integration/package.json rename to x-pack/solutions/security/test/security_solution_api_integration/package.json diff --git a/x-pack/test/security_solution_api_integration/scripts/api_configs.json b/x-pack/solutions/security/test/security_solution_api_integration/scripts/api_configs.json similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/api_configs.json rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/api_configs.json diff --git a/x-pack/test/security_solution_api_integration/scripts/genai/vault/get_command.js b/x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/get_command.js similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/genai/vault/get_command.js rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/get_command.js diff --git a/x-pack/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts b/x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts similarity index 98% rename from x-pack/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts index e0e7409342941..d2255a1171b59 100644 --- a/x-pack/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/manage_secrets.ts @@ -31,7 +31,7 @@ const getVaultPath = (vault: VaultType = 'siem-team') => { const SECURITY_GEN_AI_CONFIG_FIELD = 'config'; const SECURITY_GEN_AI_CONFIG_FILE = Path.join( REPO_ROOT, - 'x-pack/test/security_solution_api_integration/scripts/genai/vault/config.json' + 'x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/config.json' ); const configSchema = schema.object({ diff --git a/x-pack/test/security_solution_api_integration/scripts/genai/vault/retrieve_secrets.js b/x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/retrieve_secrets.js similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/genai/vault/retrieve_secrets.js rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/retrieve_secrets.js diff --git a/x-pack/test/security_solution_api_integration/scripts/genai/vault/upload_secrets.js b/x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/upload_secrets.js similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/genai/vault/upload_secrets.js rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/upload_secrets.js diff --git a/x-pack/test/security_solution_api_integration/scripts/index.js b/x-pack/solutions/security/test/security_solution_api_integration/scripts/index.js similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/index.js rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/index.js diff --git a/x-pack/test/security_solution_api_integration/scripts/mki_api_ftr_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/scripts/mki_api_ftr_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/scripts/mki_api_ftr_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/mki_api_ftr_execution.ts diff --git a/x-pack/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js b/x-pack/solutions/security/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js similarity index 85% rename from x-pack/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js rename to x-pack/solutions/security/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js index 587ce8e13f0b6..a32319fe56493 100644 --- a/x-pack/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js +++ b/x-pack/solutions/security/test/security_solution_api_integration/scripts/mki_start_api_ftr_execution.js @@ -5,5 +5,5 @@ * 2.0. */ -require('../../../../src/setup_node_env'); +require('../../../../../../src/setup_node_env'); require('./mki_api_ftr_execution').cli(); diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/dummy_test.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/dummy_test.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/dummy_test.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/dummy_test.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/cases/search_ai_lake_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/task_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/task_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/task_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/ai4dsoc/nlp_cleanup_task/search_ai_lake_tier/task_execution.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/add_actions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/add_actions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/add_actions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/add_actions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/check_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/check_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/check_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/check_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/throttle.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/throttle.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/throttle.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/throttle.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/update_actions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/update_actions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/update_actions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/actions/trial_license_complete_tier/update_actions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/alert_status_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/alert_status/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/alerts_compatibility.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/alerts_compatibility.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/alerts_compatibility.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/alerts_compatibility.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/create_index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/create_index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/create_index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/create_index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/create_alerts_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/create_alerts_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/create_alerts_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/create_alerts_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/delete_alerts_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/delete_alerts_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/delete_alerts_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/delete_alerts_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/deprecations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/deprecations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/deprecations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/deprecations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/finalize_alerts_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/finalize_alerts_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/finalize_alerts_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/finalize_alerts_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/get_alerts_migration_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/get_alerts_migration_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/get_alerts_migration_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/get_alerts_migration_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/migrations/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/query_alerts_backword_compatibility.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/query_alerts_backword_compatibility.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/query_alerts_backword_compatibility.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/ess_specific_index_logic/query_alerts_backword_compatibility.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/field_aliases.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/field_aliases.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/field_aliases.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/field_aliases.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/query_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/query_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/query_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/query_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/set_alert_tags.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/set_alert_tags.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/set_alert_tags.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/basic_license_essentials_tier/set_alert_tags.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/assignments_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/assignments/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/document_level_security.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/document_level_security.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/document_level_security.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/document_level_security.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/alerts/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/date.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/date.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/date.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/date.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/date_types/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/double.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/double.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/double.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/double.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/double/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/float.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/float.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/float.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/float.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/float/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/integer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/integer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/integer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/integer/basic_license_essentials_tier/integer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip_array.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip_array.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip_array.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/ips/basic_license_essentials_tier/ip_array.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword_array.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword_array.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword_array.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/keyword/basic_license_essentials_tier/keyword_array.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/long.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/long.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/long.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/long/basic_license_essentials_tier/long.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text_array.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text_array.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text_array.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/operators_data_types/text/basic_license_essentials_tier/text_array.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_endpoint_exceptions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_endpoint_exceptions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_endpoint_exceptions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_endpoint_exceptions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/create_rule_exceptions_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exception_comments_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exceptions_data_integrity.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exceptions_data_integrity.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exceptions_data_integrity.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/exceptions_data_integrity.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/find_rule_exception_references.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/find_rule_exception_references.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/find_rule_exception_references.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/find_rule_exception_references.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/rule_exceptions_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/rule_exceptions_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/rule_exceptions_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/exceptions/workflows/basic_license_essentials_tier/rule_exceptions_execution.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/README.md similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/README.md diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql_alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql_alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql_alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/eql_alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/eql/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/esql_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/esql/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts similarity index 98% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts index 534916fd088b4..d3b3965753f14 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/frozen_indices_handling.ts @@ -7,7 +7,7 @@ import { v4 as uuidv4 } from 'uuid'; import expect from '@kbn/expect'; -import { CreateRuleProps } from '../../../../../../../api_integration/services/security_solution_api.gen'; +import { CreateRuleProps } from '../../../../../../config/services/security_solution_api.gen'; import { dataGeneratorFactory } from '../../../../utils'; import { diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/frozen_indices_handling/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ecs_field_duplication.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ecs_field_duplication.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ecs_field_duplication.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ecs_field_duplication.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ignore_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ignore_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ignore_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/ignore_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/README.md similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/README.md diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/const_keyword.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/const_keyword.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/const_keyword.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/const_keyword.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword_mixed_with_const.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword_mixed_with_const.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword_mixed_with_const.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/keyword_family/keyword_mixed_with_const.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/non_ecs_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/non_ecs_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/non_ecs_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/non_ecs_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/runtime.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/runtime.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/runtime.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/runtime.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/timestamps.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/timestamps.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/timestamps.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/basic_license_essentials_tier/timestamps.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/synthetic_source.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/synthetic_source.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/synthetic_source.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/general_logic/trial_license_complete_tier/synthetic_source.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match_alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match_alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match_alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/indicator_match/trial_license_complete_tier/indicator_match_alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_manual_run.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_manual_run.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_manual_run.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/machine_learning/trial_license_complete_tier/machine_learning_manual_run.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms_alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms_alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms_alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/new_terms/trial_license_complete_tier/new_terms_alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/custom_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/custom_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/custom_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/custom_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/saved_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/saved_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/saved_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/query/trial_license_complete_tier/saved_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold_alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold_alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold_alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/threshold/trial_license_complete_tier/threshold_alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_execution_logic/utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/manual_rule_run.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/manual_rule_run.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/manual_rule_run.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_gaps/trial_license_complete_tier/manual_rule_run.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/ess_trial_license.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/configs/serverless_complete_tier.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/preview_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/preview_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/preview_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/detection_engine/rule_preview/preview_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/constants.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/constants.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/constants.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/constants.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.basic.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/ess/rules_management.trial.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.complete.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/configs/serverless/rules_management.essentials.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/README.md similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/README.md diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_large_package.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_air_gapped_with_bundled_packages.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/edge_cases/ess_trial_license.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/serverless_essentials_tier.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/export_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/export_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/export_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/export_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_multiple_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_multiple_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_multiple_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_multiple_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_outdated_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_outdated_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_outdated_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_outdated_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_single_prebuilt_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_single_prebuilt_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_single_prebuilt_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_single_prebuilt_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_installing_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_installing_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_installing_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_installing_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_base_version.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_base_version.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_base_version.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_base_version.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/import_with_missing_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import_export/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/bootstrap_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/bootstrap_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/bootstrap_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/bootstrap_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts similarity index 94% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts index 5e96113db77cd..1e65a5803d6d4 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts @@ -68,7 +68,7 @@ export default ({ getService }: FtrProviderContext): void => { expect(bundledInstallResponse._meta.install_source).toBe('bundled'); // Refresh ES indices to avoid race conditions between write and reading of indices - // See implementation utility function at x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts + // See implementation utility function at x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts await es.indices.refresh({ index: ALL_SAVED_OBJECT_INDICES, ignore_unavailable: true }); // Verify that status is updated after package installation diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/serverless_essentials_tier.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/calculate_is_customized.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/calculate_is_customized.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/calculate_is_customized.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/calculate_is_customized.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/customize_via_bulk_editing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/customize_via_bulk_editing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/customize_via_bulk_editing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/customize_via_bulk_editing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/customization/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/upgrade_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/upgrade_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/upgrade_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/upgrade_prebuilt_rules/upgrade_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/calculate_is_customized.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/calculate_is_customized.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/calculate_is_customized.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/calculate_is_customized.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_via_bulk_editing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_via_bulk_editing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_via_bulk_editing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/customize_via_bulk_editing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/customization/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/get_prebuilt_rules_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/get_prebuilt_rules_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/get_prebuilt_rules_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/get_prebuilt_rules_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_notifications/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_all_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_all_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_all_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_all_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_selected_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_selected_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_selected_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/bulk_upgrade_selected_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/alert_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/alert_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/alert_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/alert_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/building_block.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/building_block.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/building_block.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/building_block.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/data_source.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/data_source.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/data_source.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/data_source.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/description.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/description.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/description.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/description.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/false_positives.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/false_positives.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/false_positives.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/false_positives.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/investigation_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/investigation_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/investigation_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/investigation_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/max_signals.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/max_signals.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/max_signals.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/max_signals.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/name.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/name.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/name.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/name.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/note.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/note.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/note.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/note.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/references.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/references.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/references.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/references.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/related_integrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/related_integrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/related_integrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/related_integrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/required_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/required_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/required_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/required_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score_mapping.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score_mapping.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score_mapping.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/risk_score_mapping.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_name_override.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_name_override.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_name_override.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_name_override.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_schedule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_schedule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_schedule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/rule_schedule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/setup.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/setup.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/setup.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/setup.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity_mapping.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity_mapping.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity_mapping.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/severity_mapping.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/tags.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/tags.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/tags.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/tags.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/threat.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/threat.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/threat.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/threat.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timeline_template.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timeline_template.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timeline_template.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timeline_template.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timestamp_override.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timestamp_override.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timestamp_override.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/timestamp_override.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/test_helpers.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/test_helpers.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/test_helpers.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/test_helpers.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/anomaly_threshold.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/anomaly_threshold.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/anomaly_threshold.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/anomaly_threshold.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/eql_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/eql_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/eql_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/eql_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/esql_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/esql_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/esql_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/esql_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/history_window_start.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/history_window_start.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/history_window_start.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/history_window_start.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.inline_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.inline_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.inline_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.inline_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.saved_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.saved_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.saved_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/kql_query.saved_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/machine_learning_job_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/machine_learning_job_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/machine_learning_job_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/machine_learning_job_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/new_terms_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/new_terms_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/new_terms_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/new_terms_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_indicator_path.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_indicator_path.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_indicator_path.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_indicator_path.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_mapping.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_mapping.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_mapping.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_mapping.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_query.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_query.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_query.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threat_query.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threshold.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threshold.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threshold.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/threshold.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/review_prebuilt_rules_upgrade.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/review_prebuilt_rules_upgrade.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/review_prebuilt_rules_upgrade.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/review_prebuilt_rules_upgrade.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/upgrade_single_prebuilt_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/upgrade_single_prebuilt_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/upgrade_single_prebuilt_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/upgrade_single_prebuilt_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/ess_basic_license.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/configs/serverless_essentials_tier.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/perform_installation.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/perform_installation.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/perform_installation.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_installation/perform_installation.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/perform_upgrade.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/perform_upgrade.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/perform_upgrade.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/perform_upgrade/perform_upgrade.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/review_installation.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/review_installation.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/review_installation.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_installation/review_installation.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/review_upgrade.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/review_upgrade.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/review_upgrade.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/review_upgrade/review_upgrade.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/status/status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/ml_disabled/utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_dry_run_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_suppression.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_suppression.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_suppression.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_action_suppression.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_enable_disable.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_enable_disable.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_enable_disable.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/perform_bulk_enable_disable.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_ml_rules_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_ml_rules_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_ml_rules_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_ml_rules_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/create_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_new_terms.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_new_terms.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_new_terms.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_new_terms.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/create_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_creation/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules_bulk.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules_bulk.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules_bulk.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/delete_rules_bulk.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk_legacy.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk_legacy.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk_legacy.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_bulk_legacy.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_legacy.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_legacy.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_legacy.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/delete_rules_legacy.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/export_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/export_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/export_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/export_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules_with_overwrite.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules_with_overwrite.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules_with_overwrite.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/import_rules_with_overwrite.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/export_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts similarity index 98% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts index b79b9b344ef0b..9a94bf4df237c 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_connectors.ts @@ -154,7 +154,7 @@ export default ({ getService }: FtrProviderContext): void => { connector_type_id: '.webhook', name: 'test-connector', config: { - // checkout `x-pack/test/security_solution_api_integration/config/ess/config.base.ts` for configuration + // checkout `x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts` for configuration // `some.non.existent.com` must be set as an allowed host url: 'https://some.non.existent.com', method: 'post', @@ -276,7 +276,7 @@ export default ({ getService }: FtrProviderContext): void => { connector_type_id: '.webhook', name: 'existing-connector', config: { - // checkout `x-pack/test/security_solution_api_integration/config/ess/config.base.ts` for configuration + // checkout `x-pack/solutions/security/test/security_solution_api_integration/config/ess/config.base.ts` for configuration // `some.non.existent.com` must be set as an allowed host url: 'https://some.non.existent.com', method: 'post', diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_export_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_export_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_export_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_export_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_with_overwrite.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_with_overwrite.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_with_overwrite.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/import_rules_with_overwrite.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_import_export/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/coverage_overview.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/coverage_overview.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/coverage_overview.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/coverage_overview.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_execution_results.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_execution_results.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_execution_results.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_execution_results.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_management_filters.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_management_filters.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_management_filters.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/get_rule_management_filters.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/template_data/execution_events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/template_data/execution_events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/template_data/execution_events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_management/trial_license_complete_tier/template_data/execution_events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/patch_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/patch_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/patch_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/basic_license_essentials_tier/patch_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_patch/trial_license_complete_tier/patch_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/find_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/find_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/find_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/find_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/read_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/read_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/read_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/basic_license_essentials_tier/read_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/find_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/read_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/resolve_read_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/resolve_read_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/resolve_read_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_read/trial_license_complete_tier/resolve_read_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/update_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/update_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/update_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/update_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/trial_license_complete_tier/update_rules_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/README.md similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/README.md diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/all_types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/all_types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/all_types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/all_types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/detection_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/detection_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/detection_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/detection_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/security_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/security_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/security_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/task_based/security_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/all_types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/all_types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/all_types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/all_types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_upgrade_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_upgrade_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_upgrade_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rule_upgrade_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules_legacy_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules_legacy_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules_legacy_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/detection_rules_legacy_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/exceptions_metrics.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/exceptions_metrics.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/exceptions_metrics.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/exceptions_metrics.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/value_list_metrics.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/value_list_metrics.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/value_list_metrics.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/telemetry/trial_license_complete_tier/usage_collector/value_list_metrics.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/read_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/read_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/read_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/user_roles/trial_license_complete_tier/read_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/create_new_webhook_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/create_new_webhook_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/create_new_webhook_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/create_new_webhook_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_slack_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_slack_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_slack_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_slack_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_web_hook_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_web_hook_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_web_hook_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/get_web_hook_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_notifications_so_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_notifications_so_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_notifications_so_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_notifications_so_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_so.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_so.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_so.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_action_so.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_actions_so_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_actions_so_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_actions_so_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/get_legacy_actions_so_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/legacy_actions/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/remove_uuid_from_actions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/remove_uuid_from_actions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/actions/remove_uuid_from_actions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/actions/remove_uuid_from_actions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/alert_assignees.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/alert_assignees.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/alert_assignees.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/alert_assignees.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status_empty_response.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status_empty_response.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status_empty_response.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alert_status_empty_response.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_open_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_open_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_open_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_open_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_preview_alerts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_preview_alerts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_preview_alerts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/get_preview_alerts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/delete_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/delete_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/delete_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/delete_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/finalize_alerts_migration.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/finalize_alerts_migration.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/finalize_alerts_migration.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/finalize_alerts_migration.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/start_alerts_migration.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/start_alerts_migration.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/start_alerts_migration.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/migrations/start_alerts_migration.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/remove_random_valued_properties_from_alert.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/remove_random_valued_properties_from_alert.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/remove_random_valued_properties_from_alert.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/remove_random_valued_properties_from_alert.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_tags.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_tags.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_tags.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/set_alert_tags.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/wait_for_alert_to_complete.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/wait_for_alert_to_complete.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/wait_for_alert_to_complete.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/alerts/wait_for_alert_to_complete.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/binary_to_string.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/binary_to_string.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/binary_to_string.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/binary_to_string.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/cases.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/cases.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/cases.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/cases.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/combine_to_ndjson.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/combine_to_ndjson.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/combine_to_ndjson.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/combine_to_ndjson.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/create_connector.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/create_connector.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/create_connector.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/create_connector.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/delete_connector.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/delete_connector.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/delete_connector.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/delete_connector.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_connector.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_connector.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_connector.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_connector.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_web_hook_connector_params.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_web_hook_connector_params.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_web_hook_connector_params.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/get_web_hook_connector_params.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/connectors/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/count_down_es.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/count_down_es.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/count_down_es.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/count_down_es.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/README.md similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/README.md diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/data_generator_factory.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/data_generator_factory.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/data_generator_factory.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/data_generator_factory.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_document.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_document.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_document.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_document.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_documents.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_documents.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_documents.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/enhance_documents.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/generate_documents.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/generate_documents.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/generate_documents.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/generate_documents.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_kql_query_from_documents_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_kql_query_from_documents_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_kql_query_from_documents_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_kql_query_from_documents_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_timestamp.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_timestamp.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_timestamp.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/get_timestamp.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index_documents.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index_documents.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index_documents.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/index_documents.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/data_generator/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_event_log_execution_events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_event_log_execution_events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_event_log_execution_events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_event_log_execution_events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_gaps.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_gaps.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_gaps.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/delete_all_gaps.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/generate_gaps_for_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/generate_gaps_for_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/generate_gaps_for_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/generate_gaps_for_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/get_event_log_execute_complete_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/get_event_log_execute_complete_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/get_event_log_execute_complete_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/get_event_log_execute_complete_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index_event_log_execution_events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index_event_log_execution_events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index_event_log_execution_events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/index_event_log_execution_events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/wait_for_event_log_execute_complete.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/wait_for_event_log_execute_complete.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/wait_for_event_log_execute_complete.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/event_log/wait_for_event_log_execute_complete.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/item/create_exception_list_item.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/item/create_exception_list_item.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/item/create_exception_list_item.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/item/create_exception_list_item.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_endpoint_entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_endpoint_entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_endpoint_entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_endpoint_entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_container_with_entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_exception_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_exception_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_exception_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/create_exception_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/delete_exception_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/delete_exception_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/delete_exception_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/exception_list_and_item/list/delete_exception_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/move_index_to_frozen_data_tier.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/move_index_to_frozen_data_tier.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/move_index_to_frozen_data_tier.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/frozen_data_tier/move_index_to_frozen_data_tier.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_detection_metrics_from_body.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_detection_metrics_from_body.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_detection_metrics_from_body.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_detection_metrics_from_body.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_from_body.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_from_body.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_from_body.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_from_body.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_exception_metrics_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_index_name_from_load.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_index_name_from_load.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_index_name_from_load.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_index_name_from_load.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats_url.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats_url.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats_url.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_stats_url.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_from_body.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_from_body.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_from_body.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_from_body.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/get_value_list_metrics_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/machine_learning_setup.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/machine_learning_setup.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/machine_learning_setup.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/machine_learning/machine_learning_setup.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/refresh_index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/retry_delete_by_query_conflicts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/retry_delete_by_query_conflicts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/retry_delete_by_query_conflicts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/retry_delete_by_query_conflicts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/check_investigation_field_in_so.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/check_investigation_field_in_so.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/check_investigation_field_in_so.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/check_investigation_field_in_so.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_legacy_rule_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_legacy_rule_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_legacy_rule_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_legacy_rule_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_non_security_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_non_security_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_non_security_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_non_security_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_saved_object.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_saved_object.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_saved_object.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_saved_object.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_auth.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_auth.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_auth.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_auth.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_exception_entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_exception_entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_exception_entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/create_rule_with_exception_entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/downgrade_immutable_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/downgrade_immutable_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/downgrade_immutable_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/downgrade_immutable_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/fetch_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/fetch_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/fetch_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/fetch_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/find_immutable_rule_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/find_immutable_rule_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/find_immutable_rule_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/find_immutable_rule_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/generate_event.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/generate_event.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/generate_event.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/generate_event.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule_output.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule_output.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule_output.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_complex_rule_output.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_coverage_overview.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_coverage_overview.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_coverage_overview.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_coverage_overview.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_eql_rule_for_alert_testing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_eql_rule_for_alert_testing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_eql_rule_for_alert_testing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_eql_rule_for_alert_testing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_actions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_actions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_actions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_actions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_for_alert_testing_with_timestamp_override.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_for_alert_testing_with_timestamp_override.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_for_alert_testing_with_timestamp_override.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_for_alert_testing_with_timestamp_override.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_custom_query_rule_params.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_custom_query_rule_params.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_custom_query_rule_params.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_custom_query_rule_params.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_ml_rule_params.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_ml_rule_params.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_ml_rule_params.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_ml_rule_params.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_saved_query_rule_params.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_saved_query_rule_params.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_saved_query_rule_params.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_saved_query_rule_params.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_threshold_rule_params.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_threshold_rule_params.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_threshold_rule_params.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/get_threshold_rule_params.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_params/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_so_by_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_so_by_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_so_by_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_so_by_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_legacy_investigation_fields.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_legacy_investigation_fields.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_legacy_investigation_fields.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_legacy_investigation_fields.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_web_hook_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_web_hook_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_web_hook_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_rule_with_web_hook_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_saved_query_rule_for_alert_testing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_saved_query_rule_for_alert_testing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_saved_query_rule_for_alert_testing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_saved_query_rule_for_alert_testing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_output.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_output.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_output.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_output.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_update.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_update.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_update.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_ml_rule_update.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_preview_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_preview_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_preview_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_preview_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_as_ndjson.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_as_ndjson.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_as_ndjson.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_as_ndjson.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_with_web_hook_action.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_with_web_hook_action.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_with_web_hook_action.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_with_web_hook_action.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_without_rule_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_without_rule_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_without_rule_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_output_without_rule_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_preview_output.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_preview_output.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_preview_output.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_preview_output.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_update.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_update.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_update.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_update.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_without_rule_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_without_rule_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_without_rule_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_rule_without_rule_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_saved_query_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_saved_query_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_saved_query_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_saved_query_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_threat_match.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_threat_match.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_threat_match.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_simple_threat_match.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threat_match_rule_for_alert_testing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threat_match_rule_for_alert_testing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threat_match_rule_for_alert_testing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threat_match_rule_for_alert_testing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threshold_rule_for_alert_testing.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threshold_rule_for_alert_testing.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threshold_rule_for_alert_testing.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/get_threshold_rule_for_alert_testing.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/import_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/import_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/import_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/import_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/patch_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/patch_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/patch_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/patch_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rule_saved_objects.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rule_saved_objects.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rule_saved_objects.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rule_saved_objects.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rules_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rules_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rules_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/create_prebuilt_rules_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_prebuilt_rule_assets.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_prebuilt_rule_assets.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_prebuilt_rule_assets.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_prebuilt_rule_assets.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_timelines.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_timelines.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_timelines.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_all_timelines.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_fleet_packages.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_fleet_packages.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_fleet_packages.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/delete_fleet_packages.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_installed_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_installed_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_installed_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_installed_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rule_base_version.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rule_base_version.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rule_base_version.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rule_base_version.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_and_timelines_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_and_timelines_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_and_timelines_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_and_timelines_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_fleet_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_fleet_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_fleet_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_fleet_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_status.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_status.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_status.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/get_prebuilt_rules_status.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_fleet_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_fleet_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_fleet_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_fleet_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_mock_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_mock_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_mock_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_mock_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_and_timelines.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_and_timelines.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_and_timelines.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_and_timelines.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/install_prebuilt_rules_fleet_package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/perform_upgrade_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/perform_upgrade_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/perform_upgrade_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/perform_upgrade_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/revert_prebuilt_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/revert_prebuilt_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/revert_prebuilt_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/revert_prebuilt_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_install_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_install_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_install_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_install_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_upgrade_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_upgrade_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_upgrade_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/review_upgrade_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/set_up_rule_upgrade.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/set_up_rule_upgrade.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/set_up_rule_upgrade.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/prebuilt_rules/set_up_rule_upgrade.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule_with_exception_entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule_with_exception_entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule_with_exception_entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/preview_rule_with_exception_entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties_including_rule_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties_including_rule_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties_including_rule_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/remove_server_generated_properties_including_rule_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_gaps.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_ndjson.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_ndjson.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_ndjson.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_ndjson.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_update_schema.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_update_schema.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_update_schema.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/rule_to_update_schema.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/run_soon_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/run_soon_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/run_soon_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/run_soon_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/update_rule.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/update_rule.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/rules/update_rule.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/rules/update_rule.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/runtime.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/runtime.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/runtime.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/runtime.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/set_advanced_settings.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/set_advanced_settings.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/set_advanced_settings.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/set_advanced_settings.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/check_rule_type_usage.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/check_rule_type_usage.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/check_rule_type_usage.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/check_rule_type_usage.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/get_security_telemetry_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/get_security_telemetry_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/get_security_telemetry_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/get_security_telemetry_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/remove_time_fields_from_telemetry_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/remove_time_fields_from_telemetry_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/remove_time_fields_from_telemetry_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/telemetry/remove_time_fields_from_telemetry_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/update_username.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/update_username.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/update_username.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/update_username.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/wait_for_index_to_populate.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/wait_for_index_to_populate.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/utils/wait_for_index_to_populate.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/detections_response/utils/wait_for_index_to_populate.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/blocklists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/blocklists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/blocklists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/blocklists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/event_filters.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/event_filters.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/event_filters.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/event_filters.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/host_isolation_exceptions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/host_isolation_exceptions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/host_isolation_exceptions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/host_isolation_exceptions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/trusted_apps.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/trusted_apps.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/trusted_apps.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/artifacts/trial_license_complete_tier/trusted_apps.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/endpoint_authz.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/endpoint_authz.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/endpoint_authz.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/endpoint_authz.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/authentication/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/metadata.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/metadata.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/metadata.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/metadata/trial_license_complete_tier/metadata.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/package.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/package.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/package.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/package/trial_license_complete_tier/package.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/datastream_index_creation.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/datastream_index_creation.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/datastream_index_creation.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/datastream_index_creation.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/policy_response.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/policy_response.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/policy_response.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/policy_response/trial_license_complete_tier/policy_response.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/common.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/common.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/common.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/common.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity_id.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity_id.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity_id.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/entity_id.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/tree.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/tree.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/tree.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/resolver/trial_license_complete_tier/tree.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/agent_type_support.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/agent_type_support.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/agent_type_support.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/agent_type_support.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/execute.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/execute.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/execute.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/execute.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/response_actions/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/siem_v3_global_artifact_management.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/siem_v3_global_artifact_management.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/siem_v3_global_artifact_management.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/search_ai_lake_tier/siem_v3_global_artifact_management.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/siem_v3_global_artifact_management.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/siem_v3_global_artifact_management.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/siem_v3_global_artifact_management.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/role_migrations/trial_license_complete_tier/siem_v3_global_artifact_management.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/artifacts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/artifacts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/artifacts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/artifacts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/response_actions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/response_actions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/response_actions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/response_actions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/role_backwards_compatibility.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/role_backwards_compatibility.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/role_backwards_compatibility.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/role_backwards_compatibility.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/space_awareness.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/space_awareness.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/space_awareness.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/spaces/trial_license_complete_tier/space_awareness.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/utils/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/utils/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/utils/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/utils/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/edr_workflows/utils/supertest_error_logger.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/utils/supertest_error_logger.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/edr_workflows/utils/supertest_error_logger.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/edr_workflows/utils/supertest_error_logger.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entities_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entities_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entities_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entities_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store_nondefault_spaces.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store_nondefault_spaces.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store_nondefault_spaces.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/entity_store_nondefault_spaces.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/field_retention_operators.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/field_retention_operators.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/field_retention_operators.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/field_retention_operators.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/host_transform.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/host_transform.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/host_transform.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/host_transform.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/utils/ingest.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/utils/ingest.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/utils/ingest.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/entity_store/utils/ingest.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/engine.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/engine.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/engine.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/engine.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privilege_monitoring_privileges_check.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privilege_monitoring_privileges_check.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privilege_monitoring_privileges_check.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privilege_monitoring_privileges_check.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_access_detection/pad_installation.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_access_detection/pad_installation.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_access_detection/pad_installation.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_access_detection/pad_installation.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/api.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/api.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/api.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/api.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/cross_source_sync.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/cross_source_sync.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/cross_source_sync.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/cross_source_sync.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/task.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/task.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/task.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/task.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/privileged_users/utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/role_utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/role_utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/role_utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/role_utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/search_indices.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/search_indices.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/search_indices.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/monitoring/trial_license_complete_tier/search_indices.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/api_feature_access.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/api_feature_access.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/api_feature_access.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/api_feature_access.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_csv_upload.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_csv_upload.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_csv_upload.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_csv_upload.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/asset_criticality_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/init_and_status_apis.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/init_and_status_apis.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/init_and_status_apis.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/init_and_status_apis.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_cleanup_api.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_cleanup_api.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_cleanup_api.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_cleanup_api.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_schedule_now.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_schedule_now.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_schedule_now.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_schedule_now.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_so_config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_so_config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_so_config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_engine_so_config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_entity_calculation.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_entity_calculation.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_entity_calculation.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_entity_calculation.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_preview.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_preview.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_preview.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_preview.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution_nondefault_spaces.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution_nondefault_spaces.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution_nondefault_spaces.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_scoring_task/task_execution_nondefault_spaces.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/telemetry_usage.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/telemetry_usage.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/telemetry_usage.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/telemetry_usage.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/asset_criticality.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/asset_criticality.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/asset_criticality.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/asset_criticality.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/data_view.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/data_view.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/data_view.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/data_view.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/elastic_asset_checker.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/elastic_asset_checker.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/elastic_asset_checker.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/elastic_asset_checker.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_analytics.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_analytics.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_analytics.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_analytics.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts similarity index 98% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts index c6ddce9356295..e133d9f20f3bd 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/entity_store.ts @@ -8,7 +8,7 @@ import { EntityType } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/common.gen'; import expect from '@kbn/expect'; import { InitEntityStoreRequestBodyInput } from '@kbn/security-solution-plugin/common/api/entity_analytics/entity_store/enable.gen'; -import { FtrProviderContext } from '../../../../api_integration/ftr_provider_context'; +import { FtrProviderContext } from '../../../ftr_provider_context'; import { elasticAssetCheckerFactory } from './elastic_asset_checker'; export const EntityStoreUtils = ( diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_metrics_from_body.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_metrics_from_body.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_metrics_from_body.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_metrics_from_body.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/get_risk_engine_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/move_index_to_slow_data_tier.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/move_index_to_slow_data_tier.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/move_index_to_slow_data_tier.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/move_index_to_slow_data_tier.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/privilege_monitoring.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/privilege_monitoring.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/privilege_monitoring.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/privilege_monitoring.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/privmon_advanced_settings.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/privmon_advanced_settings.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/privmon_advanced_settings.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/privmon_advanced_settings.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/risk_engine.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/risk_engine.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/risk_engine.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/risk_engine.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/users_and_roles.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/users_and_roles.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/entity_analytics/utils/users_and_roles.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/entity_analytics/utils/users_and_roles.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/mocks/host_details.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/mocks/host_details.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/mocks/host_details.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/mocks/host_details.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/host_details.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/host_details.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/host_details.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/host_details.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/hosts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/hosts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/hosts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/hosts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/uncommon_processes.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/uncommon_processes.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/uncommon_processes.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/hosts/trial_license_complete_tier/tests/uncommon_processes.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_details.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_details.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_details.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_details.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_dns.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_dns.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_dns.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_dns.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_top_n_flow.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_top_n_flow.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_top_n_flow.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/network_top_n_flow.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/tls.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/tls.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/tls.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/network/trial_license_complete_tier/tests/tls.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_host.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_host.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_host.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_host.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_network.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_network.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_network.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/overview/trial_license_complete_tier/tests/overview_network.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/authentications.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/authentications.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/authentications.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/authentications.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/users.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/users.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/users.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/explore/users/trial_license_complete_tier/tests/users.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/common.ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/common.ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/common.ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/common.ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/schedules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/schedules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/schedules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/mocks/schedules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/create_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/create/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/delete_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/delete/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/disable_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/disable/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/enable_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/enable/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/find_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/find/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/get_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/get/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_ess.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_ess.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_ess.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_ess.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_serverless.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_serverless.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_serverless.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/trial_license_complete_tier/update/update_serverless.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/apis.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/apis.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/apis.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/apis.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_disabled.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_disabled.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_disabled.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_disabled.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_does_not_exist.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_does_not_exist.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_does_not_exist.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_does_not_exist.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_enabled.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_enabled.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_enabled.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_enabled.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_exists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_exists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_exists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/check_schedule_exists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/helpers.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/helpers.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/helpers.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/attack_discovery/schedules/utils/helpers.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/README.md b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/README.md similarity index 79% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/README.md rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/README.md index 4ccc615218825..6377debb443d5 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/README.md +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/README.md @@ -2,7 +2,7 @@ This FTR suite is for running the Security GenAI Assistant and Attack Discovery evaluation suites. Evaluations can either be run locally, or on CI by adding the `ci:security-genai-run-evals` GitHub label to a PR. CI evaluations are also run weekly by means of the `kibana-ess-security-solution-gen-ai-evals` BuildKite pipeline (located in `security_solution/gen_ai_evals.yml`), and can also be manually triggered from the [pipeline](https://buildkite.com/elastic/kibana-ess-security-solution-gen-ai-evals) directly on BuildKite. -Most pre-requisites for running the evaluations are managed for you. Connector/LangSmith secrets are stored in vault, and managed via the scripts in `x-pack/test/security_solution_api_integration/scripts/genai/vault`. They are then read from ENV variables at test-time. Data pre-requisites are managed on test setup and include the installation of ptTinyElser, setup of the Knowledge Base, and ingestion of Attack Discovery alerts and KB entries. +Most pre-requisites for running the evaluations are managed for you. Connector/LangSmith secrets are stored in vault, and managed via the scripts in `x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault`. They are then read from ENV variables at test-time. Data pre-requisites are managed on test setup and include the installation of ptTinyElser, setup of the Knowledge Base, and ingestion of Attack Discovery alerts and KB entries. > [!NOTE] > In discussion with @elastic/kibana-operations it was preferred to use the ci-prod vault for which we do not have access. so they are also mirrored to the `secrets.elastic.co` vault which can be modified via manage_secrets.ts and surrounding scripts so we can self-manage to a degree. @@ -12,7 +12,7 @@ Most pre-requisites for running the evaluations are managed for you. Connector/L All commands can be run from security test root: ``` -cd x-pack/test/security_solution_api_integration +cd x-pack/solutions/security/test/security_solution_api_integration ``` Ensure you are authenticated with vault for Connector + LangSmith creds: @@ -22,31 +22,35 @@ Ensure you are authenticated with vault for Connector + LangSmith creds: Fetch config, which includes Connectors and LangSmith creds: ``` -node scripts/genai/vault/retrieve_secrets +node scripts/genai/vault/retrieve_secrets ``` Load the env vars, and start server: + ``` export KIBANA_SECURITY_GEN_AI_CONFIG=$(base64 -w 0 < scripts/genai/vault/config.json) yarn genai_evals:server:ess ``` Then in another terminal, load vars and run the tests: + ``` export KIBANA_SECURITY_GEN_AI_CONFIG=$(base64 -w 0 < scripts/genai/vault/config.json) yarn genai_evals:runner:ess ``` ### To manually run on BuildKite: -Navigate to [BuildKite](https://buildkite.com/elastic/kibana-ess-security-solution-gen-ai-evals) and run `ftr-security-solution-gen-ai-evaluations` pipeline. If you want to run with a custom config, first modify `x-pack/test/security_solution_api_integration/scripts/genai/vault/config.json` and then run: + +Navigate to [BuildKite](https://buildkite.com/elastic/kibana-ess-security-solution-gen-ai-evals) and run `ftr-security-solution-gen-ai-evaluations` pipeline. If you want to run with a custom config, first modify `x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/config.json` and then run: ``` - node scripts/genai/vault/get_command --format env-var + node scripts/genai/vault/get_command --format env-var ``` which can then be pasted into `Environment Variables` section of the BuildKite pipeline. This is helpful for running evals just against a specific model or to change the evaluator model. ### To manually run on BuildKite for specific PR: + Add `ci:security-genai-run-evals` label to PR ### To update secrets @@ -56,11 +60,11 @@ As mentioned above, secrets are mirrored between two different vaults since acce Navigate to the test directory and fetch the latest secrets from our `siem-team` vault: ``` -cd x-pack/test/security_solution_api_integration +cd x-pack/solutions/security/test/security_solution_api_integration node scripts/genai/vault/retrieve_secrets ``` -Modify `x-pack/test/security_solution_api_integration/scripts/genai/vault/config.json` accordingly. +Modify `x-pack/solutions/security/test/security_solution_api_integration/scripts/genai/vault/config.json` accordingly. Then, run the following command to upload the secrets back to the `siem-team` vault: @@ -75,7 +79,7 @@ node scripts/genai/vault/retrieve_secrets.js --vault siem-team node scripts/genai/vault/upload_secrets.js --vault ci-prod ``` -Or you can run the below command and paste the results into https://p.elstc.co and share the link with them to make updating secrets a little easier: +Or you can run the below command and paste the results into https://p.elstc.co and share the link with them to make updating secrets a little easier: ``` node scripts/genai/vault/get_command --format vault-write --vault ci-prod diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/data/kb_entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/data/kb_entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/data/kb_entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/data/kb_entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/evaluations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/evaluations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/evaluations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/evaluations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/evaluations/trial_license_complete_tier/utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/mocks/entries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/mocks/entries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/mocks/entries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/trial_license_complete_tier/mocks/entries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/bulk_actions_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/bulk_actions_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/bulk_actions_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/bulk_actions_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/create_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/create_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/create_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/create_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/delete_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/delete_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/delete_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/delete_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/find_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/find_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/find_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/find_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/get_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/get_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/get_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/get_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/helpers.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/helpers.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/helpers.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/helpers.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/remove_server_generated_properties.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/remove_server_generated_properties.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/remove_server_generated_properties.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/remove_server_generated_properties.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/update_entry.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/update_entry.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/update_entry.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/knowledge_base/entries/utils/update_entry.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/task_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/task_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/task_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/basic_license_essentials_tier/task_execution.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/task_execution.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/task_execution.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/task_execution.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/nlp_cleanup_task/trial_license_complete_tier/task_execution.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/roles.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/roles.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/roles.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/roles.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/spaces.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/spaces.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/spaces.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/spaces.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/users.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/users.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/genai/utils/auth/users.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/genai/utils/auth/users.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/draft_timeline.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/draft_timeline.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/draft_timeline.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/draft_timeline.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/notes.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/notes.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/notes.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/notes.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/pinned_events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/pinned_events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/pinned_events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/pinned_events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/timeline.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/timeline.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/timeline.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/tests/timeline.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/saved_objects/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/basic_license_essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/mocks/timeline_details.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/mocks/timeline_details.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/mocks/timeline_details.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/mocks/timeline_details.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/events.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/events.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/events.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/events.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/import_timelines.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/import_timelines.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/import_timelines.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/import_timelines.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/install_prepackaged_timelines.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/install_prepackaged_timelines.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/install_prepackaged_timelines.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/install_prepackaged_timelines.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/notes_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/notes_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/notes_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/notes_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_details.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_details.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_details.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_details.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/tests/timeline_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/timeline/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/utils/notes.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/notes.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/utils/notes.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/notes.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/utils/timelines.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/timelines.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/utils/timelines.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/timelines.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/utils/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/utils/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/investigation/utils/wait_for.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/wait_for.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/investigation/utils/wait_for.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/investigation/utils/wait_for.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/admin.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/admin.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/admin.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/admin.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/editor.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/editor.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/editor.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/editor.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_operations_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_operations_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_operations_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_operations_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_policy_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_policy_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_policy_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/endpoint_policy_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/platform_engineer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/platform_engineer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/platform_engineer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/platform_engineer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/rule_author.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/rule_author.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/rule_author.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/rule_author.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/soc_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/soc_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/soc_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/soc_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/threat_intel_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/threat_intel_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/threat_intel_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/threat_intel_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_1_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_1_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_1_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_1_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_2_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_2_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_2_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_2_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_3_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_3_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_3_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/tier_3_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/viewer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/viewer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/viewer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/common/essentials_tier/viewer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/admin.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/admin.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/admin.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/admin.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/editor.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/editor.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/editor.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/editor.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_operations_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_operations_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_operations_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_operations_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_policy_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_policy_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_policy_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/endpoint_policy_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/platform_engineer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/platform_engineer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/platform_engineer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/platform_engineer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/rule_author.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/rule_author.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/rule_author.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/rule_author.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/soc_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/soc_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/soc_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/soc_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/threat_intel_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/threat_intel_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/threat_intel_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/threat_intel_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_1_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_1_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_1_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_1_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_2_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_2_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_2_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_2_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_3_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_3_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_3_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/tier_3_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/viewer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/viewer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/viewer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/items/essentials_tier/viewer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/admin.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/admin.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/admin.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/admin.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/editor.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/editor.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/editor.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/editor.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_operations_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_operations_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_operations_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_operations_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_policy_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_policy_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_policy_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/endpoint_policy_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/platform_engineer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/platform_engineer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/platform_engineer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/platform_engineer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/rule_author.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/rule_author.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/rule_author.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/rule_author.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/soc_manager.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/soc_manager.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/soc_manager.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/soc_manager.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/threat_intel_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/threat_intel_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/threat_intel_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/threat_intel_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_1_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_1_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_1_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_1_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_2_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_2_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_2_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_2_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_3_analyst.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_3_analyst.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_3_analyst.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/tier_3_analyst.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/viewer.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/viewer.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/viewer.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/authorization/exceptions/lists/essentials_tier/viewer.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/create_exception_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/create_exception_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/create_exception_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/create_exception_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/delete_exception_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/delete_exception_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/delete_exception_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/delete_exception_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/find_exception_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/find_exception_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/find_exception_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/find_exception_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/read_exception_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/read_exception_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/read_exception_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/read_exception_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/update_exception_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/update_exception_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/update_exception_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/items/update_exception_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/create_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/create_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/create_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/create_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/delete_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/delete_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/delete_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/delete_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/duplicate_exception_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/duplicate_exception_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/duplicate_exception_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/duplicate_exception_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/export_exception_list.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/export_exception_list.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/export_exception_list.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/export_exception_list.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/find_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/find_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/find_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/find_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/get_exception_filter.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/get_exception_filter.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/get_exception_filter.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/get_exception_filter.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/import_exceptions.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/import_exceptions.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/import_exceptions.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/import_exceptions.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/read_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/read_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/read_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/read_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/summary_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/summary_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/summary_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/summary_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/update_exception_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/update_exception_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/update_exception_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/exception_lists_items/trial_license_complete_tier/lists/update_exception_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/create_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/create_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/create_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/create_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/delete_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/delete_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/delete_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/delete_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/export_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/export_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/export_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/export_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/find_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/find_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/find_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/find_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/import_list_items_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/patch_list_items_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/read_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/read_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/read_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/read_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/items/update_list_items_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/create_lists_index_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/delete_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/delete_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/delete_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/delete_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists_by_size.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists_by_size.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists_by_size.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/find_lists_by_size.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/patch_lists_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_list_privileges.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_list_privileges.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_list_privileges.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_list_privileges.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/read_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists_migrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists_migrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists_migrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/lists_items/trial_license_complete_tier/lists/update_lists_migrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/lists_and_exception_lists/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/lists_and_exception_lists/utils.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/create.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/create.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/create.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/create.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/dashboards/create.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/dashboards/create.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/dashboards/create.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/dashboards/create.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/get.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/get.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/get.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/get.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/dashboard_migrations/stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/create.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/create.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/create.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/create.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/delete.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/delete.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/delete.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/delete.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_integrations.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_integrations.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_integrations.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_integrations.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_prebuilt_rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_prebuilt_rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_prebuilt_rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/get_prebuilt_rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/install.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/install.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/install.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/install.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/integrations_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/integrations_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/integrations_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/integrations_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/create.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/create.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/create.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/create.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/get.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/get.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/get.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/get.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/update.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/update.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/update.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/rules/update.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/start.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/start.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/start.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/start.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stop.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stop.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stop.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/stop.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/update.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/update.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/update.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/rules/trial_license_complete_tier/rule_migrations/update.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/asserts.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/asserts.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/asserts.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/asserts.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboard_mocks.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboard_mocks.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboard_mocks.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboard_mocks.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboards.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboards.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboards.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/dashboards.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries_dashboards.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries_dashboards.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries_dashboards.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/es_queries_dashboards.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/mocks.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/mocks.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/mocks.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/mocks.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/resources.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/resources.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/resources.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/resources.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/rules.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/rules.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/rules.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/rules.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/types.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/types.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/siem_migrations/utils/types.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/siem_migrations/utils/types.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts similarity index 97% rename from x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts index 3dc21d9db18d7..4e44bd9b9095b 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/sources/indices/trial_license_complete_tier/sources.ts @@ -8,7 +8,7 @@ import expect from '@kbn/expect'; import { ELASTIC_HTTP_VERSION_HEADER } from '@kbn/core-http-common'; -import { FtrProviderContext } from '../../../../../api_integration/ftr_provider_context'; +import { FtrProviderContext } from '../../../../ftr_provider_context'; export default function ({ getService }: FtrProviderContext) { const esArchiver = getService('esArchiver'); diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/ess.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/configs/serverless.config.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/index.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/index.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/index.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/index.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts similarity index 92% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts index a8af3fb7101e0..a891d790f98ae 100644 --- a/x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts +++ b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/endpoint.ts @@ -20,9 +20,12 @@ export default ({ getService }: FtrProviderContext) => { this.tags('skipServerless'); beforeEach(async () => { await esArchiver - .load('x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics', { - useCreate: true, - }) + .load( + 'x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics', + { + useCreate: true, + } + ) .catch((e) => { logger.error('>> Endpoint metrics and info task: load'); logger.error(e); @@ -44,7 +47,9 @@ export default ({ getService }: FtrProviderContext) => { afterEach(async () => { await esArchiver - .unload('x-pack/test/security_solution_api_integration/es_archive/endpoint/metrics') + .unload( + 'x-pack/solutions/security/test/security_solution_api_integration/es_archive/endpoint/metrics' + ) .catch((e) => { logger.error('>> Endpoint metrics and info task: unload'); logger.error(e); diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/indices_metadata.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/indices_metadata.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/indices_metadata.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/indices_metadata.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/ingest_pipeline_stats.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/ingest_pipeline_stats.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/telemetry/tasks/ingest_pipeline_stats.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/telemetry/tasks/ingest_pipeline_stats.ts diff --git a/x-pack/test/security_solution_api_integration/test_suites/utils.ts b/x-pack/solutions/security/test/security_solution_api_integration/test_suites/utils.ts similarity index 100% rename from x-pack/test/security_solution_api_integration/test_suites/utils.ts rename to x-pack/solutions/security/test/security_solution_api_integration/test_suites/utils.ts diff --git a/x-pack/test/security_solution_api_integration/tsconfig.json b/x-pack/solutions/security/test/security_solution_api_integration/tsconfig.json similarity index 78% rename from x-pack/test/security_solution_api_integration/tsconfig.json rename to x-pack/solutions/security/test/security_solution_api_integration/tsconfig.json index a5ec6cf7701eb..1147c5ce6f556 100644 --- a/x-pack/test/security_solution_api_integration/tsconfig.json +++ b/x-pack/solutions/security/test/security_solution_api_integration/tsconfig.json @@ -1,21 +1,17 @@ { - "extends": "../../../tsconfig.base.json", + "extends": "../../../../../tsconfig.base.json", "compilerOptions": { "outDir": "target/types", - "types": ["node", "jest", "@kbn/ambient-ftr-types"] + "types": ["node", "jest", "@kbn/ambient-ftr-types"], }, "include": [ "**/*", - "../../../typings/**/*", - "../../../src/platform/packages/shared/kbn-test/types/ftr_globals/**/*" + "../../../../../typings/**/*", + "../../../../../src/platform/packages/shared/kbn-test/types/ftr_globals/**/*" ], "exclude": ["target/**/*"], "kbn_references": [ { "path": "../security_solution_endpoint/tsconfig.json" }, - "@kbn/test-suites-serverless", - { "path": "../../test_serverless/api_integration/**/*" }, - { "path": "../../test_serverless/shared/**/*" }, - { "path": "../../api_integration/services/**/*" }, "@kbn/dev-utils", "@kbn/test", "@kbn/expect", diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_list.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_list.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_list.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_list.ts diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_permissions.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_permissions.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_permissions.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_permissions.ts diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_solution_integrations.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_solution_integrations.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_solution_integrations.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_solution_integrations.ts diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_telemetry.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_telemetry.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_telemetry.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_telemetry.ts diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_transform.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_transform.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/endpoint_transform.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/endpoint_transform.ts diff --git a/x-pack/test/security_solution_endpoint/apps/endpoint/index.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/index.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/endpoint/index.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/endpoint/index.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/artifact_entries_list.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/artifact_entries_list.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/artifact_entries_list.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/artifact_entries_list.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/endpoint_exceptions.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/endpoint_exceptions.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/endpoint_exceptions.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/endpoint_exceptions.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/fleet_integrations.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/fleet_integrations.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/fleet_integrations.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/fleet_integrations.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/index.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/index.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/index.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/index.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/mocks.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/mocks.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/mocks.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/mocks.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/policy_details.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/policy_details.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/policy_details.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/policy_details.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/policy_list.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/policy_list.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/policy_list.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/policy_list.ts diff --git a/x-pack/test/security_solution_endpoint/apps/integrations/trusted_apps_list.ts b/x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/trusted_apps_list.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/apps/integrations/trusted_apps_list.ts rename to x-pack/solutions/security/test/security_solution_endpoint/apps/integrations/trusted_apps_list.ts diff --git a/x-pack/test/security_solution_endpoint/configs/config.base.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/config.base.ts similarity index 97% rename from x-pack/test/security_solution_endpoint/configs/config.base.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/config.base.ts index 543468d5b23bf..d30ffa15b3b2b 100644 --- a/x-pack/test/security_solution_endpoint/configs/config.base.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/config.base.ts @@ -51,7 +51,7 @@ export const generateConfig = async ({ const { createEndpointDockerConfig, getRegistryUrlAsArray } = SecuritySolutionEndpointRegistryHelpers(); const xpackFunctionalConfig = await readConfigFile( - require.resolve('../../functional/config.base.js') + require.resolve('@kbn/test-suites-xpack-platform/functional/config.base') ); return { diff --git a/x-pack/test/security_solution_endpoint/configs/endpoint.config.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/endpoint.config.ts similarity index 89% rename from x-pack/test/security_solution_endpoint/configs/endpoint.config.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/endpoint.config.ts index cad89b4b3dcd9..57de5e40a074f 100644 --- a/x-pack/test/security_solution_endpoint/configs/endpoint.config.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/endpoint.config.ts @@ -11,12 +11,11 @@ import { generateConfig } from './config.base'; import { services } from '../services'; import { pageObjects } from '../page_objects'; -// eslint-disable-next-line import/no-default-export export default async function (ftrConfigProviderContext: FtrConfigProviderContext) { const { readConfigFile } = ftrConfigProviderContext; const xpackFunctionalConfig = await readConfigFile( - require.resolve('../../functional/config.base.js') + require.resolve('@kbn/test-suites-xpack-platform/functional/config.base') ); return generateConfig({ diff --git a/x-pack/test/security_solution_endpoint/configs/ftr_provider_context.d.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/ftr_provider_context.d.ts similarity index 77% rename from x-pack/test/security_solution_endpoint/configs/ftr_provider_context.d.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/ftr_provider_context.d.ts index 1166169b76ba2..04030b05b76f0 100644 --- a/x-pack/test/security_solution_endpoint/configs/ftr_provider_context.d.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/ftr_provider_context.d.ts @@ -5,7 +5,7 @@ * 2.0. */ -import { GenericFtrProviderContext } from '@kbn/test'; +import { GenericFtrProviderContext, GenericFtrService } from '@kbn/test'; import { pageObjects, svlPageObjects } from '../page_objects'; import { services, svlServices } from '../services'; @@ -14,3 +14,5 @@ export type FtrProviderContext = GenericFtrProviderContext< typeof services & typeof svlServices, typeof pageObjects & typeof svlPageObjects >; + +export class FtrService extends GenericFtrService {} diff --git a/x-pack/test/security_solution_endpoint/configs/integrations.config.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/integrations.config.ts similarity index 91% rename from x-pack/test/security_solution_endpoint/configs/integrations.config.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/integrations.config.ts index 9a94b101dccf1..6151b1d9fd1f7 100644 --- a/x-pack/test/security_solution_endpoint/configs/integrations.config.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/integrations.config.ts @@ -11,12 +11,11 @@ import { generateConfig } from './config.base'; import { services } from '../services'; import { pageObjects } from '../page_objects'; -// eslint-disable-next-line import/no-default-export export default async function (ftrConfigProviderContext: FtrConfigProviderContext) { const { readConfigFile } = ftrConfigProviderContext; const xpackFunctionalConfig = await readConfigFile( - require.resolve('../../functional/config.base.js') + require.resolve('@kbn/test-suites-xpack-platform/functional/config.base') ); return generateConfig({ diff --git a/x-pack/test/security_solution_endpoint/configs/serverless.endpoint.config.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.endpoint.config.ts similarity index 89% rename from x-pack/test/security_solution_endpoint/configs/serverless.endpoint.config.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.endpoint.config.ts index 3df139dc9dd9e..72045fba17df2 100644 --- a/x-pack/test/security_solution_endpoint/configs/serverless.endpoint.config.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.endpoint.config.ts @@ -11,12 +11,11 @@ import { generateConfig } from './config.base'; import { svlServices } from '../services'; import { svlPageObjects } from '../page_objects'; -// eslint-disable-next-line import/no-default-export export default async function (ftrConfigProviderContext: FtrConfigProviderContext) { const { readConfigFile } = ftrConfigProviderContext; const svlBaseConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return generateConfig({ diff --git a/x-pack/test/security_solution_endpoint/configs/serverless.integrations.config.ts b/x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.integrations.config.ts similarity index 90% rename from x-pack/test/security_solution_endpoint/configs/serverless.integrations.config.ts rename to x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.integrations.config.ts index 2822d16a979e3..1b0cdf777201b 100644 --- a/x-pack/test/security_solution_endpoint/configs/serverless.integrations.config.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/configs/serverless.integrations.config.ts @@ -11,12 +11,11 @@ import { generateConfig } from './config.base'; import { svlServices } from '../services'; import { svlPageObjects } from '../page_objects'; -// eslint-disable-next-line import/no-default-export export default async function (ftrConfigProviderContext: FtrConfigProviderContext) { const { readConfigFile } = ftrConfigProviderContext; const svlBaseConfig = await readConfigFile( - require.resolve('@kbn/test-suites-serverless/shared/config.base') + require.resolve('@kbn/test-suites-xpack-platform/serverless/shared/config.base') ); return generateConfig({ diff --git a/x-pack/test/security_solution_endpoint/page_objects/artifact_entries_list_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/artifact_entries_list_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/artifact_entries_list_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/artifact_entries_list_page.ts diff --git a/x-pack/solutions/security/test/security_solution_endpoint/page_objects/detections.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/detections.ts new file mode 100644 index 0000000000000..9664c06347c34 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/detections.ts @@ -0,0 +1,246 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { WebElementWrapper } from '@kbn/ftr-common-functional-ui-services'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; +const ALERT_TABLE_ROW_CSS_SELECTOR = '[data-test-subj="alertsTableIsLoaded"] .euiDataGridRow'; + +export function DetectionsPageObjectProvider({ getService, getPageObjects }: FtrProviderContext) { + const find = getService('find'); + const pageObjects = getPageObjects(['common', 'header']); + const testSubjects = getService('testSubjects'); + const retry = getService('retry'); + const defaultTimeoutMs = getService('config').get('timeouts.waitFor'); + + return { + async navigateHome(): Promise { + await this.navigateToDetectionsPage(); + }, + + /** + * Navigate to the Alerts list page. + * @param searchParams + * + * @example + * + * // filter list by alert only for a given host name + * navigateToAlerts(`query=(language:kuery,query:'host.hostname: "HOST-abc"')`) + */ + async navigateToAlerts(searchParams: string = ''): Promise { + await pageObjects.common.navigateToUrlWithBrowserHistory( + 'securitySolution', + '/alerts', + searchParams, + { + ensureCurrentUrl: !Boolean(searchParams), + } + ); + await pageObjects.header.waitUntilLoadingHasFinished(); + }, + + async navigateToRules(): Promise { + await this.navigateToDetectionsPage('rules'); + }, + + async navigateToCreateRule(): Promise { + await this.navigateToDetectionsPage('rules/create'); + }, + + async replaceIndexPattern(): Promise { + const buttons = await find.allByCssSelector('[data-test-subj="comboBoxInput"] button'); + await buttons.map(async (button: WebElementWrapper) => await button.click()); + await testSubjects.setValue('comboBoxSearchInput', '*'); + }, + + async openImportQueryModal(): Promise { + const element = await testSubjects.find('importQueryFromSavedTimeline'); + await element.click(500); + await testSubjects.exists('open-timeline-modal-body-filter-default'); + }, + + async viewTemplatesInImportQueryModal(): Promise { + await pageObjects.common.clickAndValidate( + 'open-timeline-modal-body-filter-template', + 'timelines-table' + ); + }, + + async closeImportQueryModal(): Promise { + await find.clickByCssSelector('.euiButtonIcon.euiModal__closeIcon'); + }, + + async selectMachineLearningJob(): Promise { + await find.clickByCssSelector('[data-test-subj="mlJobSelect"] button'); + await find.clickByCssSelector('#high_distinct_count_error_message'); + }, + + async openAddFilterPopover(): Promise { + const addButtons = await testSubjects.findAll('addFilter'); + await addButtons[1].click(); + await testSubjects.exists('saveFilter'); + }, + + async closeAddFilterPopover(): Promise { + await testSubjects.click('cancelSaveFilter'); + }, + + async toggleFilterActions(): Promise { + const filterActions = await testSubjects.findAll('addFilter'); + await filterActions[1].click(); + }, + + async toggleSavedQueries(): Promise { + const filterActions = await find.allByCssSelector( + '[data-test-subj="saved-query-management-popover-button"]' + ); + await filterActions[1].click(); + }, + + async addNameAndDescription( + name: string = 'test rule name', + description: string = 'test rule description' + ): Promise { + await find.setValue(`[aria-describedby="detectionEngineStepAboutRuleName"]`, name, 500); + await find.setValue( + `[aria-describedby="detectionEngineStepAboutRuleDescription"]`, + description, + 500 + ); + }, + + async goBackToAllRules(): Promise { + await pageObjects.common.clickAndValidate('ruleDetailsBackToAllRules', 'create-new-rule'); + }, + + async revealAdvancedSettings(): Promise { + await pageObjects.common.clickAndValidate( + 'advancedSettings', + 'detectionEngineStepAboutRuleReferenceUrls' + ); + }, + + async preview(): Promise { + await pageObjects.common.clickAndValidate( + 'previewSubmitButton', + 'queryPreviewCustomHistogram', + undefined, + 500 + ); + }, + + async continue(prefix: string): Promise { + await testSubjects.click(`${prefix}-continue`); + }, + + async addCustomQuery(query: string): Promise { + await testSubjects.setValue('queryInput', query, undefined, 500); + }, + + async selectMLRule(): Promise { + await pageObjects.common.clickAndValidate('machineLearningRuleType', 'mlJobSelect'); + }, + + async selectEQLRule(): Promise { + await pageObjects.common.clickAndValidate('eqlRuleType', 'eqlQueryBarTextInput'); + }, + + async selectIndicatorMatchRule(): Promise { + await pageObjects.common.clickAndValidate('threatMatchRuleType', 'comboBoxInput'); + }, + + async selectThresholdRule(): Promise { + await pageObjects.common.clickAndValidate('thresholdRuleType', 'input'); + }, + + async ensureOnAlertsPage(): Promise { + await testSubjects.existOrFail('detectionsAlertsPage'); + }, + + /** + * Opens the first alert on the Alerts List page for the given host name + * @param hostName + */ + async openFirstAlertDetailsForHostName(hostName: string): Promise { + await this.ensureOnAlertsPage(); + + let foundAndHandled = false; + + // Get all event rows + const allEvents = await testSubjects.findService.allByCssSelector( + ALERT_TABLE_ROW_CSS_SELECTOR + ); + + for (const eventRow of allEvents) { + const hostNameButton = await testSubjects.findDescendant('host-details-button', eventRow); + const eventRowHostName = (await hostNameButton.getVisibleText()).trim(); + + if (eventRowHostName === hostName) { + const expandAlertButton = await testSubjects.findDescendant('expand-event', eventRow); + await expandAlertButton.click(); + await testSubjects.existOrFail('eventDetails'); + foundAndHandled = true; + break; + } + } + + if (!foundAndHandled) { + throw new Error(`no alerts found for host: ${hostName}`); + } + }, + + /** + * Opens the Response console from the alert Details. Alert details must be already opened/displayed + */ + async openResponseConsoleFromAlertDetails(): Promise { + await testSubjects.existOrFail('eventDetails'); + await testSubjects.click('securitySolutionFlyoutFooterDropdownButton'); + await testSubjects.clickWhenNotDisabled('endpointResponseActions-action-item'); + await testSubjects.existOrFail('consolePageOverlay'); + }, + + /** + * Clicks the refresh button on the Alerts page and waits for it to complete + */ + async clickRefresh(): Promise { + await this.ensureOnAlertsPage(); + await testSubjects.click('querySubmitButton'); + + // wait for refresh to complete + await retry.waitFor( + 'Alerts pages refresh button to be enabled', + async (): Promise => { + const refreshButton = await testSubjects.find('querySubmitButton'); + + return (await refreshButton.isDisplayed()) && (await refreshButton.isEnabled()); + } + ); + }, + + async waitForListToHaveAlerts(timeoutMs?: number): Promise { + await retry.waitForWithTimeout( + 'waiting for alerts to show up on alerts page', + timeoutMs ?? defaultTimeoutMs, + async (): Promise => { + await this.clickRefresh(); + + const allEventRows = await testSubjects.findService.allByCssSelector( + ALERT_TABLE_ROW_CSS_SELECTOR + ); + + return Boolean(allEventRows.length); + } + ); + }, + + async navigateToDetectionsPage(path: string = ''): Promise { + const subUrl = `detections${path ? `/${path}` : ''}`; + await pageObjects.common.navigateToUrl('securitySolution', subUrl, { + shouldUseHashForSubUrl: false, + }); + }, + }; +} diff --git a/x-pack/test/security_solution_endpoint/page_objects/endpoint_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/endpoint_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/endpoint_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/endpoint_page.ts diff --git a/x-pack/test/security_solution_endpoint/page_objects/endpoint_responder.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/endpoint_responder.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/endpoint_responder.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/endpoint_responder.ts diff --git a/x-pack/test/security_solution_endpoint/page_objects/fleet_integrations_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/fleet_integrations_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/fleet_integrations_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/fleet_integrations_page.ts diff --git a/x-pack/solutions/security/test/security_solution_endpoint/page_objects/hosts.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/hosts.ts new file mode 100644 index 0000000000000..2f05b5159c450 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/hosts.ts @@ -0,0 +1,62 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { WebElementWrapper } from '@kbn/ftr-common-functional-ui-services'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; + +export function HostsPageObjectProvider({ getService, getPageObjects }: FtrProviderContext) { + const pageObjects = getPageObjects(['common', 'header']); + const testSubjects = getService('testSubjects'); + + return { + async navigateToHostDetails(hostName: string): Promise { + await pageObjects.common.navigateToUrl('securitySolution', `hosts/${hostName}`, { + shouldUseHashForSubUrl: false, + }); + await pageObjects.header.waitUntilLoadingHasFinished(); + }, + + async ensureOnHostDetails(): Promise { + await testSubjects.existOrFail('hostDetailsPage'); + }, + + /** + * Returns an object with the Endpoint overview data, where the keys are the visible labels in the UI. + * Must be on the Host details in order for this page object to work + */ + async hostDetailsEndpointOverviewData(): Promise> { + await this.ensureOnHostDetails(); + const endpointDescriptionLists: WebElementWrapper[] = await testSubjects.findAll( + 'endpoint-overview' + ); + + const data: Record = {}; + + for (const dlElement of endpointDescriptionLists) { + const $ = await dlElement.parseDomContent(); + + const title = $('dt') + .text() + .replace(/ /g, '') + .trim(); + + // The value could be draggable, in which case we need to grab the value displayed from a deeper element + const $ddElement = $('dd'); + const $valueContainer = $ddElement.find('.draggable-keyboard-wrapper .euiToolTipAnchor'); + + const value = ($valueContainer.length > 0 ? $valueContainer : $ddElement) + .text() + .replace(/ /g, '') + .trim(); + + data[title] = value; + } + + return data; + }, + }; +} diff --git a/x-pack/test/security_solution_endpoint/page_objects/index.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/index.ts similarity index 75% rename from x-pack/test/security_solution_endpoint/page_objects/index.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/index.ts index 14947275067ae..b7a6ae43d289d 100644 --- a/x-pack/test/security_solution_endpoint/page_objects/index.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/index.ts @@ -6,28 +6,28 @@ */ import { SvlCommonPageProvider } from '@kbn/test-suites-xpack-platform/serverless/functional/page_objects/svl_common_page'; -import { pageObjects as xpackFunctionalPageObjects } from '../../functional/page_objects'; +import { pageObjects as platformPageObjects } from '@kbn/test-suites-xpack-platform/functional/page_objects'; import { EndpointPageProvider } from './endpoint_page'; import { EndpointPageUtils } from './page_utils'; import { IngestManagerCreatePackagePolicy } from './ingest_manager_create_package_policy_page'; -import { DetectionsPageObject } from '../../security_solution_ftr/page_objects/detections'; -import { HostsPageObject } from '../../security_solution_ftr/page_objects/hosts'; +import { DetectionsPageObjectProvider } from './detections'; +import { HostsPageObjectProvider } from './hosts'; import { EndpointResponderPageObjects } from './endpoint_responder'; -import { TimelinePageObject } from '../../security_solution_ftr/page_objects/timeline'; +import { TimelinePageObjectProvider } from './timeline'; import { EndpointPolicyPageProvider } from './policy_page'; import { TrustedAppsPageProvider } from './trusted_apps_page'; import { FleetIntegrations } from './fleet_integrations_page'; import { ArtifactEntriesListPageProvider } from './artifact_entries_list_page'; export const pageObjects = { - ...xpackFunctionalPageObjects, + ...platformPageObjects, endpoint: EndpointPageProvider, endpointPageUtils: EndpointPageUtils, ingestManagerCreatePackagePolicy: IngestManagerCreatePackagePolicy, - detections: DetectionsPageObject, - timeline: TimelinePageObject, - hosts: HostsPageObject, + detections: DetectionsPageObjectProvider, + timeline: TimelinePageObjectProvider, + hosts: HostsPageObjectProvider, responder: EndpointResponderPageObjects, policy: EndpointPolicyPageProvider, trustedApps: TrustedAppsPageProvider, diff --git a/x-pack/test/security_solution_endpoint/page_objects/ingest_manager_create_package_policy_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/ingest_manager_create_package_policy_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/ingest_manager_create_package_policy_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/ingest_manager_create_package_policy_page.ts diff --git a/x-pack/test/security_solution_endpoint/page_objects/page_utils.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/page_utils.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/page_utils.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/page_utils.ts diff --git a/x-pack/test/security_solution_endpoint/page_objects/policy_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/policy_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/policy_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/policy_page.ts diff --git a/x-pack/solutions/security/test/security_solution_endpoint/page_objects/timeline.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/timeline.ts new file mode 100644 index 0000000000000..5676cda9c05e3 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/timeline.ts @@ -0,0 +1,152 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { subj as testSubjSelector } from '@kbn/test-subj-selector'; +import { DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP } from '@kbn/security-solution-plugin/common/test'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; + +const TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ = 'timeline-bottom-bar'; +const TIMELINE_CLOSE_BUTTON_TEST_SUBJ = 'timeline-modal-header-close-button'; +const TIMELINE_MODAL_PAGE_TEST_SUBJ = 'timeline'; +const TIMELINE_TAB_QUERY_TEST_SUBJ = 'timeline-tab-content-query'; + +const TIMELINE_CSS_SELECTOR = Object.freeze({ + bottomBarTimelineTitle: `${testSubjSelector( + TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ + )} ${testSubjSelector('timeline-bottom-bar-title-button')}`, + /** The refresh button on the timeline view (top of view, next to the date selector) */ + refreshButton: `${testSubjSelector(TIMELINE_TAB_QUERY_TEST_SUBJ)} ${testSubjSelector( + 'superDatePickerApplyTimeButton' + )} `, +}); + +export function TimelinePageObjectProvider({ getService, getPageObjects }: FtrProviderContext) { + const pageObjects = getPageObjects(['common', 'header']); + const testSubjects = getService('testSubjects'); + const retry = getService('retry'); + const defaultTimeoutMs = getService('config').get('timeouts.waitFor'); + const logger = getService('log'); + + return { + async navigateToTimelineList(): Promise { + await pageObjects.common.navigateToUrlWithBrowserHistory('securitySolutionTimelines'); + await pageObjects.header.waitUntilLoadingHasFinished(); + }, + + /** + * Ensure that the timeline bottom bar is accessible + */ + async ensureTimelineAccessible(): Promise { + await testSubjects.existOrFail(TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ); + }, + + async openTimelineFromBottomBar() { + await this.ensureTimelineAccessible(); + await testSubjects.findService.clickByCssSelector( + TIMELINE_CSS_SELECTOR.bottomBarTimelineTitle + ); + }, + + async openTimelineById(id: string): Promise { + await this.openTimelineFromBottomBar(); + await testSubjects.click('timeline-bottom-bar-open-timeline'); + await testSubjects.findService.clickByCssSelector( + `${testSubjSelector('open-timeline-modal')} ${testSubjSelector(`timeline-title-${id}`)}` + ); + + await this.ensureTimelineIsOpen(); + }, + + async closeTimeline(): Promise { + if (await testSubjects.exists(TIMELINE_CLOSE_BUTTON_TEST_SUBJ)) { + await testSubjects.click(TIMELINE_CLOSE_BUTTON_TEST_SUBJ); + await testSubjects.waitForHidden(TIMELINE_MODAL_PAGE_TEST_SUBJ); + } + }, + + async ensureTimelineIsOpen(): Promise { + await testSubjects.existOrFail(TIMELINE_MODAL_PAGE_TEST_SUBJ); + }, + + /** + * From a visible timeline, clicks the "view details" for an event on the list + * @param index + */ + async showEventDetails(index: number = 0): Promise { + await this.ensureTimelineIsOpen(); + await testSubjects.findService.clickByCssSelector( + `${testSubjSelector('event')}:nth-child(${index + 1}) ${testSubjSelector('expand-event')}` + ); + await testSubjects.existOrFail('eventDetails'); + }, + + /** + * Clicks the Refresh button at the top of the timeline page and waits for the refresh to complete + */ + async clickRefresh(): Promise { + await this.ensureTimelineIsOpen(); + await pageObjects.header.waitUntilLoadingHasFinished(); + await ( + await testSubjects.findService.byCssSelector(TIMELINE_CSS_SELECTOR.refreshButton) + ).isEnabled(); + await testSubjects.findService.clickByCssSelector(TIMELINE_CSS_SELECTOR.refreshButton); + await retry.waitFor('Timeline refresh button to be enabled', async (): Promise => { + return ( + await testSubjects.findService.byCssSelector(TIMELINE_CSS_SELECTOR.refreshButton) + ).isEnabled(); + }); + }, + + /** + * Check to see if the timeline has events in the list + */ + async hasEvents(): Promise { + const eventRows = await testSubjects.findService.allByCssSelector( + `${testSubjSelector(TIMELINE_MODAL_PAGE_TEST_SUBJ)} ${testSubjSelector('event')}` + ); + + return eventRows.length > 0; + }, + + /** + * Waits for events to be displayed in the timeline. It will click on the "Refresh" button to trigger a data fetch + * @param timeoutMs + */ + async waitForEvents(timeoutMs?: number): Promise { + if (await this.hasEvents()) { + logger.info(`Timeline already has events displayed`); + return; + } + + await retry.waitForWithTimeout( + 'waiting for events to show up on timeline', + timeoutMs ?? defaultTimeoutMs, + async (): Promise => { + await this.clickRefresh(); + + return this.hasEvents(); + } + ); + }, + + /** + * Sets the date range on the timeline by clicking on a commonly used preset from the super date picker + * @param range + */ + async setDateRange(range: keyof typeof DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP): Promise { + await this.ensureTimelineIsOpen(); + await testSubjects.findService.clickByCssSelector( + `${testSubjSelector(TIMELINE_TAB_QUERY_TEST_SUBJ)} ${testSubjSelector( + 'superDatePickerToggleQuickMenuButton' + )}` + ); + await testSubjects.existOrFail('superDatePickerQuickMenu'); + await testSubjects.click(DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP[range]); + await testSubjects.missingOrFail('superDatePickerQuickMenu'); + }, + }; +} diff --git a/x-pack/test/security_solution_endpoint/page_objects/trusted_apps_page.ts b/x-pack/solutions/security/test/security_solution_endpoint/page_objects/trusted_apps_page.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/page_objects/trusted_apps_page.ts rename to x-pack/solutions/security/test/security_solution_endpoint/page_objects/trusted_apps_page.ts diff --git a/x-pack/solutions/security/test/security_solution_endpoint/services/detections.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/detections.ts new file mode 100644 index 0000000000000..2bd60d4e1c476 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/detections.ts @@ -0,0 +1,165 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { Response } from 'superagent'; +import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; +import { + DETECTION_ENGINE_QUERY_SIGNALS_URL, + DETECTION_ENGINE_RULES_BULK_ACTION, + DETECTION_ENGINE_RULES_URL, +} from '@kbn/security-solution-plugin/common/constants'; +import type { estypes } from '@elastic/elasticsearch'; +import { Rule } from '@kbn/security-solution-plugin/public/detection_engine/rule_management/logic/types'; +import { + IndexedEndpointRuleAlerts, + indexEndpointRuleAlerts, +} from '@kbn/security-solution-plugin/common/endpoint/data_loaders/index_endpoint_rule_alerts'; +import { ELASTIC_SECURITY_RULE_ID } from '@kbn/security-solution-plugin/common'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; + +export function DetectionsTestServiceProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + const log = getService('log'); + const retry = getService('retry'); + const config = getService('config'); + const esClient = getService('es'); + + return new (class DetectionsTestService { + readonly supertest = supertest; + readonly log = log; + readonly retry = retry; + readonly esClient = esClient; + readonly defaultTimeout = config.get('timeouts.waitFor'); + + /** + * Returns an error handler for `supertest` request that will dump out more useful information + * when things fail. + * + * @param ignoredStatusCodes + * @internal + * + * @example + * + * await this.supertest + * .post('/some/api') + * .set('kbn-xsrf', 'true') + * .send(somePayLoad) + * .then(this.getHttpResponseFailureHandler([409])); + */ + getHttpResponseFailureHandler( + ignoredStatusCodes: number[] = [] + ): (res: Response) => Promise { + return async (res) => { + if (!res.ok && !ignoredStatusCodes.includes(res.status)) { + throw new EndpointError(JSON.stringify(res.error, null, 2)); + } + + return res; + }; + } + + /** + * Fetches the endpoint security rule using the pre-packaged `rule_id` + */ + async fetchEndpointSecurityRule(): Promise { + return this.supertest + .get(DETECTION_ENGINE_RULES_URL) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .query({ rule_id: ELASTIC_SECURITY_RULE_ID }) + .send() + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as Rule); + } + + /** + * Disables and then re-enables the Endpoint Security Rule. Use this to speed up triggering + * the rule to run, since it is immediately ran when it is enabled. + */ + async stopStartEndpointRule(): Promise { + const endpointSecurityRule = await this.fetchEndpointSecurityRule(); + + // First disable/stop it + this.log.info(`Disabling Endpoint Security Rule (id: ${endpointSecurityRule.id})`); + + await this.supertest + .post(DETECTION_ENGINE_RULES_BULK_ACTION) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .send({ + action: 'disable', + ids: [endpointSecurityRule.id], + }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as Rule); + + // Now enable/start it + this.log.info(`Re-Enabling Endpoint Security Rule (id: ${endpointSecurityRule.id})`); + + await this.supertest + .post(DETECTION_ENGINE_RULES_BULK_ACTION) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .send({ + action: 'enable', + ids: [endpointSecurityRule.id], + }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as Rule); + } + + /** + * Waits for alerts to have been loaded by continuously calling the alerts api until data shows up + * @param query + * @param timeoutMs + */ + async waitForAlerts(query: object = { match_all: {} }, timeoutMs?: number): Promise { + await this.retry.waitForWithTimeout( + 'Checking alerts index for data', + timeoutMs ?? this.defaultTimeout, + async (): Promise => { + const res = await this.supertest + .post(DETECTION_ENGINE_QUERY_SIGNALS_URL) + .set('kbn-xsrf', 'true') + .send({ + query, + size: 1, + }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as estypes.SearchResponse); + + const hitsTotal = (res.hits.total as estypes.SearchTotalHits)?.value; + const response = Boolean(hitsTotal ?? 0); + + if (response) { + this.log.info(`Found ${hitsTotal} alerts for query: ${JSON.stringify(query)}`); + } + + return response; + } + ); + } + + /** + * Loads alerts for Endpoint directly into the internal index that the Endpoint Rule + * would have written them to for a given endpoint + * @param endpointAgentId + * @param count + */ + async loadEndpointRuleAlerts( + endpointAgentId: string, + count: number = 2 + ): Promise { + return indexEndpointRuleAlerts({ + esClient: this.esClient, + endpointAgentId, + count, + log: this.log, + }); + } + })(); +} diff --git a/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint.ts new file mode 100644 index 0000000000000..9144b2ec28b12 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint.ts @@ -0,0 +1,397 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +/* eslint-disable max-classes-per-file */ + +import { Client, errors } from '@elastic/elasticsearch'; +import { AGENTS_INDEX } from '@kbn/fleet-plugin/common'; +import { + HOST_METADATA_GET_ROUTE, + METADATA_DATASTREAM, + METADATA_UNITED_INDEX, +} from '@kbn/security-solution-plugin/common/endpoint/constants'; +import { + deleteIndexedHostsAndAlerts, + DeleteIndexedHostsAndAlertsResponse, + IndexedHostsAndAlertsResponse, + indexHostsAndAlerts, +} from '@kbn/security-solution-plugin/common/endpoint/index_data'; +import { getEndpointPackageInfo } from '@kbn/security-solution-plugin/common/endpoint/utils/package'; +import { isEndpointPackageV2 } from '@kbn/security-solution-plugin/common/endpoint/utils/package_v2'; +import { installOrUpgradeEndpointFleetPackage } from '@kbn/security-solution-plugin/common/endpoint/data_loaders/setup_fleet_for_endpoint'; +import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; +import { DeepPartial } from 'utility-types'; +import { HostInfo, HostMetadata } from '@kbn/security-solution-plugin/common/endpoint/types'; +import { EndpointDocGenerator } from '@kbn/security-solution-plugin/common/endpoint/generate_data'; +import { EndpointMetadataGenerator } from '@kbn/security-solution-plugin/common/endpoint/data_generators/endpoint_metadata_generator'; +import { merge } from 'lodash'; +// @ts-expect-error we have to check types with "allowJs: false" for now, causing this import to fail +import { kibanaPackageJson } from '@kbn/repo-info'; +import seedrandom from 'seedrandom'; +import { fetchFleetLatestAvailableAgentVersion } from '@kbn/security-solution-plugin/common/endpoint/utils/fetch_fleet_version'; +import { KbnClient } from '@kbn/test'; +import { isServerlessKibanaFlavor } from '@kbn/security-solution-plugin/common/endpoint/utils/kibana_status'; +import { DEFAULT_SPACE_ID, addSpaceIdToPath } from '@kbn/spaces-plugin/common'; +import { createKbnClient } from '@kbn/security-solution-plugin/scripts/endpoint/common/stack_services'; +import { catchAxiosErrorFormatAndThrow } from '@kbn/security-solution-plugin/common/endpoint/format_axios_error'; +import { + startMetadataTransforms, + stopMetadataTransforms, +} from '@kbn/security-solution-plugin/common/endpoint/utils/transforms'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; + +export type IndexedHostsAndAlertsResponseExtended = IndexedHostsAndAlertsResponse & { + unloadEndpointData(): Promise; + spaceId: string; +}; + +// Document Generator override that uses a custom Endpoint Metadata generator and sets the +// `agent.version` to the current version +const createDocGeneratorClass = async (kbnClient: KbnClient, isServerless: boolean) => { + let version = kibanaPackageJson.version; + if (isServerless) { + version = await fetchFleetLatestAvailableAgentVersion(kbnClient); + } + // TS doesn't like the `version` let being used in the class definition + const capturedVersion = version; + + return class extends EndpointDocGenerator { + constructor(seedValue: string | seedrandom.prng) { + const MetadataGenerator = class extends EndpointMetadataGenerator { + protected randomVersion(): string { + return capturedVersion; + } + }; + + super(seedValue, MetadataGenerator); + } + }; +}; + +export function EndpointTestResourcesProvider({ getService }: FtrProviderContext) { + const esClient = getService('es'); + const retry = getService('retry'); + const kbnClient = getService('kibanaServer'); + const config = getService('config'); + const supertest = getService('supertest'); + const log = getService('log'); + + return new (class EndpointTestResources { + readonly esClient = esClient; + readonly retry = retry; + readonly kbnClient = kbnClient; + readonly config = config; + readonly supertest = supertest; + readonly log = log; + + getScopedKbnClient(spaceId: string = DEFAULT_SPACE_ID): KbnClient { + if (!spaceId || spaceId === DEFAULT_SPACE_ID) { + return this.kbnClient; + } + + const kbnClientOptions: Parameters[0] = { + url: this.kbnClient.resolveUrl('/'), + username: this.config.get('servers.elasticsearch.username'), + password: this.config.get('servers.elasticsearch.password'), + spaceId, + }; + + this.log.info(`creating new KbnClient with:\n${JSON.stringify(kbnClientOptions, null, 2)}`); + + // Was not included above in order to keep the output of the log.info() above clean in the output + kbnClientOptions.log = this.log; + + return createKbnClient(kbnClientOptions); + } + + /** + * Loads endpoint host/alert/event data into elasticsearch + * @param [options] + * @param [options.numHosts=1] Number of Endpoint Hosts to be loaded + * @param [options.numHostDocs=1] Number of Document to be loaded per Endpoint Host (Endpoint hosts index uses a append-only index) + * @param [options.alertsPerHost=1] Number of Alerts and Events to be loaded per Endpoint Host + * @param [options.enableFleetIntegration=true] When set to `true`, Fleet data will also be loaded (ex. Integration Policies, Agent Policies, "fake" Agents) + * @param [options.generatorSeed='seed'] The seed to be used by the data generator. Important in order to ensure the same data is generated on very run. + * @param [options.waitUntilTransformed=true] If set to `true`, the data loading process will wait until the endpoint hosts metadata is processed by the transform + * @param [options.waitTimeout=120000] If waitUntilTransformed=true, number of ms to wait until timeout + * @param [options.customIndexFn] If provided, will use this function to generate and index data instead + */ + async loadEndpointData( + options: Partial<{ + numHosts: number; + numHostDocs: number; + alertsPerHost: number; + enableFleetIntegration: boolean; + generatorSeed: string; + waitUntilTransformed: boolean; + waitTimeout: number; + customIndexFn: () => Promise; + spaceId: string; + withResponseActions: boolean; + }> = {} + ): Promise { + const { + numHosts = 1, + numHostDocs = 1, + alertsPerHost = 1, + enableFleetIntegration = true, + generatorSeed = 'seed', + waitUntilTransformed = true, + waitTimeout = 120000, + customIndexFn, + spaceId = DEFAULT_SPACE_ID, + withResponseActions = true, + } = options; + + const client = this.getScopedKbnClient(spaceId); + const endpointPackage = await getEndpointPackageInfo(client); + + if (waitUntilTransformed && customIndexFn) { + // need this before indexing docs so that the united transform doesn't + // create a checkpoint with a timestamp after the doc timestamps + await stopMetadataTransforms(this.esClient, endpointPackage.version); + } + + const isServerless = await isServerlessKibanaFlavor(client); + const CurrentKibanaVersionDocGenerator = await createDocGeneratorClass(client, isServerless); + + // load data into the system + const indexedData = customIndexFn + ? await customIndexFn() + : await indexHostsAndAlerts( + this.esClient as Client, + client, + generatorSeed, + numHosts, + numHostDocs, + 'metrics-endpoint.metadata-default', + 'metrics-endpoint.policy-default', + 'logs-endpoint.events.process-default', + 'logs-endpoint.alerts-default', + alertsPerHost, + enableFleetIntegration, + undefined, + CurrentKibanaVersionDocGenerator, + withResponseActions, + undefined, + undefined, + undefined, + this.log + ); + + if (waitUntilTransformed && customIndexFn) { + await startMetadataTransforms( + this.esClient, + Array.from(new Set(indexedData.hosts.map((host) => host.agent.id))), + endpointPackage.version + ); + } + + if (waitUntilTransformed) { + const agentIds = Array.from(new Set(indexedData.agents.map((agent) => agent.agent!.id))); + await this.waitForUnitedEndpoints(agentIds, waitTimeout); + } + + return { + ...indexedData, + spaceId, + unloadEndpointData: (): Promise => { + return this.unloadEndpointData(indexedData, { spaceId }); + }, + }; + } + + /** + * Deletes the loaded data created via `loadEndpointData()` + * @param indexedData + * @param options + */ + async unloadEndpointData( + indexedData: IndexedHostsAndAlertsResponse, + { spaceId = DEFAULT_SPACE_ID }: { spaceId?: string } = {} + ): Promise { + return deleteIndexedHostsAndAlerts( + this.esClient as Client, + this.getScopedKbnClient(spaceId), + indexedData + ); + } + + async waitForIndex( + ids: string[], + index: string, + body: any = {}, + timeout: number = this.config.get('timeouts.waitFor') + ) { + // If we have a specific number of endpoint hosts to check for, then use that number, + // else we just want to make sure the index has data, thus just having one in the index will do + const size = ids.length || 1; + + await this.retry.waitForWithTimeout(`endpoint hosts in ${index}`, timeout, async () => { + try { + if (index === METADATA_UNITED_INDEX) { + // United metadata transform occasionally can't find docs in .fleet-agents. + // Running a search on the index first eliminates this issue. + // Replacing the search with a refresh does not resolve flakiness. + await this.esClient.search({ index: AGENTS_INDEX }); + } + const searchResponse = await this.esClient.search({ + index, + size, + body, + rest_total_hits_as_int: true, + }); + + return searchResponse.hits.total === size; + } catch (error) { + // We ignore 404's (index might not exist) + if (error instanceof errors.ResponseError && error.statusCode === 404) { + return false; + } + + // Wrap the ES error so that we get a good stack trace + throw new EndpointError(error.message, error); + } + }); + } + + /** + * Waits for endpoints to show up on the `metadata_united` index. + * Optionally, specific endpoint IDs (agent.id) can be provided to ensure those specific ones show up. + * + * @param [ids] optional list of ids to check for. If empty, it will just check if data exists in the index + * @param [timeout] optional max timeout to waitFor in ms. default is 20000. + */ + async waitForUnitedEndpoints( + ids: string[] = [], + timeout = this.config.get('timeouts.waitFor') + ) { + const body = ids.length + ? { + query: { + bool: { + filter: [ + { + terms: { + 'agent.id': ids, + }, + }, + // make sure that both endpoint and agent portions are populated + // since agent is likely to be populated first + { exists: { field: 'united.endpoint.agent.id' } }, + { exists: { field: 'united.agent.agent.id' } }, + ], + }, + }, + } + : { + size: 1, + query: { + match_all: {}, + }, + }; + + await this.waitForIndex(ids, METADATA_UNITED_INDEX, body, timeout); + } + + /** + * installs (or upgrades) the Endpoint Fleet package + * (NOTE: ensure that fleet is setup first before calling this function) + */ + async installOrUpgradeEndpointFleetPackage( + spaceId: string = DEFAULT_SPACE_ID + ): ReturnType { + return installOrUpgradeEndpointFleetPackage(this.getScopedKbnClient(spaceId), this.log); + } + + /** + * Fetch (GET) the details of an endpoint + * @param endpointAgentId + * @param spaceId + */ + async fetchEndpointMetadata( + endpointAgentId: string, + spaceId: string = DEFAULT_SPACE_ID + ): Promise { + return this.supertest + .get( + addSpaceIdToPath('/', spaceId, HOST_METADATA_GET_ROUTE.replace('{id}', endpointAgentId)) + ) + .set('kbn-xsrf', 'true') + .set('Elastic-Api-Version', '2023-10-31') + .send() + .expect(200) + .then((response) => response.body as HostInfo); + } + + /** + * Sends an updated metadata document for a given endpoint to the datastream and waits for the + * update to show up on the Metadata API (after transform runs) + */ + async sendEndpointMetadataUpdate( + endpointAgentId: string, + updates: DeepPartial = {}, + spaceId: string = DEFAULT_SPACE_ID + ): Promise { + const currentMetadata = await this.fetchEndpointMetadata(endpointAgentId, spaceId); + const endpointPackage = await getEndpointPackageInfo(this.getScopedKbnClient(spaceId)); + + await stopMetadataTransforms(this.esClient, endpointPackage.version); + const generatedMetadataDoc = new EndpointDocGenerator().generateHostMetadata(); + + const updatedMetadataDoc = merge( + { ...currentMetadata.metadata }, + // Grab the updated `event` and timestamp from the generator data + { + event: generatedMetadataDoc.event, + '@timestamp': generatedMetadataDoc['@timestamp'], + }, + updates + ); + + await this.esClient + .index({ + index: METADATA_DATASTREAM, + body: updatedMetadataDoc, + op_type: 'create', + }) + .catch(catchAxiosErrorFormatAndThrow); + + await startMetadataTransforms(this.esClient, [], endpointPackage.version); + + this.log.info( + `Endpoint metadata update was indexed for endpoint agent id [${endpointAgentId}] in space [${spaceId}]` + ); + + let response: HostInfo | undefined; + + // Wait for the update to show up on Metadata API (after transform runs) + await this.retry.waitFor( + `update to endpoint id [${endpointAgentId}] to be processed by transform`, + async () => { + response = await this.fetchEndpointMetadata(endpointAgentId, spaceId); + + return response.metadata.event.id === updatedMetadataDoc.event.id; + } + ); + + if (!response) { + throw new Error(`Response object not set. Issue fetching endpoint metadata`); + } + + this.log.info(`Endpoint metadata doc update done for agent ID [${endpointAgentId}]`); + this.log.verbose(JSON.stringify(response, null, 2)); + + return response; + } + + async isEndpointPackageV2(spaceId: string = DEFAULT_SPACE_ID): Promise { + const endpointPackage = await getEndpointPackageInfo(this.getScopedKbnClient(spaceId)); + return isEndpointPackageV2(endpointPackage.version); + } + })(); +} diff --git a/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_artifacts.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_artifacts.ts new file mode 100644 index 0000000000000..518cc3ea17e39 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_artifacts.ts @@ -0,0 +1,242 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { + CreateExceptionListItemSchema, + CreateExceptionListSchema, + ExceptionListItemSchema, + ExceptionListTypeEnum, +} from '@kbn/securitysolution-io-ts-list-types'; +import { + ENDPOINT_ARTIFACT_LISTS, + ENDPOINT_ARTIFACT_LIST_IDS, + EXCEPTION_LIST_ITEM_URL, + EXCEPTION_LIST_URL, + ENDPOINT_LIST_NAME, + ENDPOINT_LIST_DESCRIPTION, + ENDPOINT_LIST_ID, +} from '@kbn/securitysolution-list-constants'; +import { Response } from 'superagent'; +import { ExceptionsListItemGenerator } from '@kbn/security-solution-plugin/common/endpoint/data_generators/exceptions_list_item_generator'; +import { TRUSTED_APPS_EXCEPTION_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/trusted_apps/constants'; +import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; +import { EVENT_FILTER_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/event_filters/constants'; +import { HOST_ISOLATION_EXCEPTIONS_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/host_isolation_exceptions/constants'; +import { BLOCKLISTS_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/blocklist/constants'; +import { ManifestConstants } from '@kbn/security-solution-plugin/server/endpoint/lib/artifacts'; +import TestAgent from 'supertest/lib/agent'; +import { addSpaceIdToPath, DEFAULT_SPACE_ID } from '@kbn/spaces-plugin/common'; +import { isArtifactGlobal } from '@kbn/security-solution-plugin/common/endpoint/service/artifacts'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; +import { InternalUnifiedManifestSchemaResponseType } from '../apps/integrations/mocks'; + +export interface ArtifactTestData { + artifact: ExceptionListItemSchema; + cleanup: () => Promise; +} + +export interface ArtifactCreateOptions { + supertest?: TestAgent; + spaceId?: string; +} + +export function EndpointArtifactsTestResourcesProvider({ getService }: FtrProviderContext) { + const supertestSv = getService('supertest'); + const log = getService('log'); + const esClient = getService('es'); + + return new (class EndpointTelemetryTestResources { + readonly supertest = supertestSv; + readonly log = log; + readonly esClient = esClient; + readonly exceptionsGenerator = new ExceptionsListItemGenerator(); + + getHttpResponseFailureHandler( + ignoredStatusCodes: number[] = [] + ): (res: Response) => Promise { + return async (res) => { + if (!res.ok && !ignoredStatusCodes.includes(res.status)) { + throw new EndpointError(JSON.stringify(res.error, null, 2)); + } + + return res; + }; + } + + async ensureListExists( + listDefinition: CreateExceptionListSchema, + { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} + ): Promise { + // attempt to create it and ignore 409 (already exists) errors + await supertest + .post(addSpaceIdToPath('/', spaceId, EXCEPTION_LIST_URL)) + .set('kbn-xsrf', 'true') + .send(listDefinition) + .then(this.getHttpResponseFailureHandler([409])); + } + + async createExceptionItem( + createPayload: CreateExceptionListItemSchema, + { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} + ): Promise { + this.log.verbose(`Creating exception item:\n${JSON.stringify(createPayload)}`); + + const artifact = await supertest + .post(addSpaceIdToPath('/', spaceId, EXCEPTION_LIST_ITEM_URL)) + .set('kbn-xsrf', 'true') + .send(createPayload) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as ExceptionListItemSchema); + + const { item_id: itemId, list_id: listId } = artifact; + const artifactAssignment = isArtifactGlobal(artifact) ? 'Global' : 'Per-Policy'; + + this.log.info( + `Created [${artifactAssignment}] exception list item in space [${spaceId}], List ID [${listId}], Item ID [${itemId}]` + ); + + const cleanup = async () => { + await this.deleteExceptionItem(artifact, { supertest, spaceId }); + }; + + return { + artifact, + cleanup, + }; + } + + async deleteExceptionItem( + { + list_id: listId, + item_id: itemId, + namespace_type: nameSpaceType, + }: Pick, + { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} + ): Promise { + const deleteResponse = await supertest + .delete( + `${addSpaceIdToPath( + '/', + spaceId, + EXCEPTION_LIST_ITEM_URL + )}?item_id=${itemId}&namespace_type=${nameSpaceType}` + ) + .set('kbn-xsrf', 'true') + .send() + .then(this.getHttpResponseFailureHandler([404])); + + this.log.info( + `Deleted exception list item [${listId}]: ${itemId} (${deleteResponse.status})` + ); + } + + async createEndpointException( + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + await this.ensureListExists( + { + name: ENDPOINT_LIST_NAME, + description: ENDPOINT_LIST_DESCRIPTION, + list_id: ENDPOINT_LIST_ID, + type: ExceptionListTypeEnum.ENDPOINT, + namespace_type: 'agnostic', + }, + options + ); + const endpointException = + this.exceptionsGenerator.generateEndpointExceptionForCreate(overrides); + + return this.createExceptionItem(endpointException, options); + } + + async createTrustedApp( + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + await this.ensureListExists(TRUSTED_APPS_EXCEPTION_LIST_DEFINITION, options); + const trustedApp = this.exceptionsGenerator.generateTrustedAppForCreate(overrides); + + return this.createExceptionItem(trustedApp, options); + } + + async createEventFilter( + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + await this.ensureListExists(EVENT_FILTER_LIST_DEFINITION, options); + const eventFilter = this.exceptionsGenerator.generateEventFilterForCreate(overrides); + + return this.createExceptionItem(eventFilter, options); + } + + async createHostIsolationException( + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + await this.ensureListExists(HOST_ISOLATION_EXCEPTIONS_LIST_DEFINITION, options); + const artifact = this.exceptionsGenerator.generateHostIsolationExceptionForCreate(overrides); + + return this.createExceptionItem(artifact, options); + } + + async createBlocklist( + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + await this.ensureListExists(BLOCKLISTS_LIST_DEFINITION, options); + const blocklist = this.exceptionsGenerator.generateBlocklistForCreate(overrides); + + return this.createExceptionItem(blocklist, options); + } + + async createArtifact( + listId: (typeof ENDPOINT_ARTIFACT_LIST_IDS)[number] | typeof ENDPOINT_LIST_ID, + overrides: Partial = {}, + options?: ArtifactCreateOptions + ): Promise { + switch (listId) { + case ENDPOINT_ARTIFACT_LISTS.trustedApps.id: { + return this.createTrustedApp(overrides, options); + } + case ENDPOINT_ARTIFACT_LISTS.eventFilters.id: { + return this.createEventFilter(overrides, options); + } + case ENDPOINT_ARTIFACT_LISTS.blocklists.id: { + return this.createBlocklist(overrides, options); + } + case ENDPOINT_ARTIFACT_LISTS.hostIsolationExceptions.id: { + return this.createHostIsolationException(overrides, options); + } + case ENDPOINT_LIST_ID: { + return this.createEndpointException(overrides, options); + } + default: + throw new Error(`Unexpected list id ${listId}`); + } + } + + async getArtifactsFromUnifiedManifestSO(): Promise< + Array< + InternalUnifiedManifestSchemaResponseType['_source']['endpoint:unified-user-artifact-manifest'] + > + > { + const { + hits: { hits: manifestResults }, + } = await this.esClient.search({ + index: '.kibana*', + query: { + bool: { filter: [{ term: { type: ManifestConstants.UNIFIED_SAVED_OBJECT_TYPE } }] }, + }, + }); + + return manifestResults.map( + (result) => result._source!['endpoint:unified-user-artifact-manifest'] + ); + } + })(); +} diff --git a/x-pack/test/security_solution_endpoint/services/endpoint_data_stream_helpers.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_data_stream_helpers.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/services/endpoint_data_stream_helpers.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_data_stream_helpers.ts diff --git a/x-pack/test/security_solution_endpoint/services/endpoint_policy.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_policy.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/services/endpoint_policy.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_policy.ts diff --git a/x-pack/test/security_solution_endpoint/services/endpoint_registry_helpers.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_registry_helpers.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/services/endpoint_registry_helpers.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_registry_helpers.ts diff --git a/x-pack/test/security_solution_endpoint/services/endpoint_telemetry.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_telemetry.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/services/endpoint_telemetry.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/endpoint_telemetry.ts diff --git a/x-pack/test/security_solution_endpoint/services/fixtures/package_registry_config.yml b/x-pack/solutions/security/test/security_solution_endpoint/services/fixtures/package_registry_config.yml similarity index 100% rename from x-pack/test/security_solution_endpoint/services/fixtures/package_registry_config.yml rename to x-pack/solutions/security/test/security_solution_endpoint/services/fixtures/package_registry_config.yml diff --git a/x-pack/test/security_solution_endpoint/services/index.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/index.ts similarity index 68% rename from x-pack/test/security_solution_endpoint/services/index.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/index.ts index b4515e3d61e4c..d6d4dc19fbb5b 100644 --- a/x-pack/test/security_solution_endpoint/services/index.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/index.ts @@ -6,15 +6,15 @@ */ import { commonFunctionalServices } from '@kbn/ftr-common-functional-services'; -import { SvlCommonApiServiceProvider } from '@kbn/test-suites-serverless/shared/services/svl_common_api'; +import { SvlCommonApiServiceProvider } from '@kbn/test-suites-xpack-platform/serverless/shared/services/svl_common_api'; import { IngestManagerProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/ingest_manager'; -import { services as xPackFunctionalServices } from '../../functional/services'; +import { services as platformServices } from '@kbn/test-suites-xpack-platform/functional/services'; import { EndpointTelemetryTestResourcesProvider } from './endpoint_telemetry'; -import { EndpointTestResources } from './endpoint'; -import { TimelineTestService } from '../../security_solution_ftr/services/timeline'; -import { DetectionsTestService } from '../../security_solution_ftr/services/detections'; +import { EndpointTestResourcesProvider } from './endpoint'; +import { TimelineTestServiceProvider } from './timeline'; +import { DetectionsTestServiceProvider } from './detections'; import { EndpointPolicyTestResourcesProvider } from './endpoint_policy'; -import { EndpointArtifactsTestResources } from './endpoint_artifacts'; +import { EndpointArtifactsTestResourcesProvider } from './endpoint_artifacts'; import { KibanaSupertestWithCertProvider, KibanaSupertestWithCertWithoutAuthProvider, @@ -23,14 +23,14 @@ import { SecuritySolutionEndpointDataStreamHelpers } from './endpoint_data_strea import { SecuritySolutionEndpointRegistryHelpers } from './endpoint_registry_helpers'; export const services = { - ...xPackFunctionalServices, + ...platformServices, - endpointTestResources: EndpointTestResources, + endpointTestResources: EndpointTestResourcesProvider, telemetryTestResources: EndpointTelemetryTestResourcesProvider, ingestManager: IngestManagerProvider, - timeline: TimelineTestService, - detections: DetectionsTestService, - endpointArtifactTestResources: EndpointArtifactsTestResources, + timeline: TimelineTestServiceProvider, + detections: DetectionsTestServiceProvider, + endpointArtifactTestResources: EndpointArtifactsTestResourcesProvider, policyTestResources: EndpointPolicyTestResourcesProvider, endpointDataStreamHelpers: SecuritySolutionEndpointDataStreamHelpers, endpointRegistryHelpers: SecuritySolutionEndpointRegistryHelpers, diff --git a/x-pack/test/security_solution_endpoint/services/roles_users_utils.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/roles_users_utils.ts similarity index 95% rename from x-pack/test/security_solution_endpoint/services/roles_users_utils.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/roles_users_utils.ts index 7de7f0e0b3426..5e8fc5f5a0ac3 100644 --- a/x-pack/test/security_solution_endpoint/services/roles_users_utils.ts +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/roles_users_utils.ts @@ -10,7 +10,7 @@ import { KNOWN_SERVERLESS_ROLE_DEFINITIONS, } from '@kbn/security-solution-plugin/common/test'; import type { SecurityRoleName } from '@kbn/security-solution-plugin/common/test'; -import { FtrProviderContext } from '../../functional/ftr_provider_context'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; const KNOWN_ROLE_DEFINITIONS = { ...KNOWN_SERVERLESS_ROLE_DEFINITIONS, diff --git a/x-pack/test/security_solution_endpoint/services/supertest_with_cert.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/supertest_with_cert.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/services/supertest_with_cert.ts rename to x-pack/solutions/security/test/security_solution_endpoint/services/supertest_with_cert.ts diff --git a/x-pack/solutions/security/test/security_solution_endpoint/services/timeline.ts b/x-pack/solutions/security/test/security_solution_endpoint/services/timeline.ts new file mode 100644 index 0000000000000..b41ec186e6500 --- /dev/null +++ b/x-pack/solutions/security/test/security_solution_endpoint/services/timeline.ts @@ -0,0 +1,211 @@ +/* + * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one + * or more contributor license agreements. Licensed under the Elastic License + * 2.0; you may not use this file except in compliance with the Elastic License + * 2.0. + */ + +import { Response } from 'superagent'; +import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; +import { TIMELINE_DRAFT_URL, TIMELINE_URL } from '@kbn/security-solution-plugin/common/constants'; +import { + GetDraftTimelinesResponse, + PatchTimelineResponse, + SavedTimeline, +} from '@kbn/security-solution-plugin/common/api/timeline'; +import moment from 'moment'; +import { fromKueryExpression, toElasticsearchQuery } from '@kbn/es-query'; +import { FtrProviderContext } from '../configs/ftr_provider_context'; + +export function TimelineTestServiceProvider({ getService }: FtrProviderContext) { + const supertest = getService('supertest'); + const log = getService('log'); + + return new (class TimelineTestService { + readonly supertest = supertest; + readonly log = log; + + /** + * Returns an error handler for `supertest` request that will dump out more useful information + * when things fail. + * + * @param ignoredStatusCodes + * @internal + * + * @example + * + * await this.supertest + * .post('/some/api') + * .set('kbn-xsrf', 'true') + * .send(somePayLoad) + * .then(this.getHttpResponseFailureHandler([409])); + */ + getHttpResponseFailureHandler( + ignoredStatusCodes: number[] = [] + ): (res: Response) => Promise { + return async (res) => { + if (!res.ok && !ignoredStatusCodes.includes(res.status)) { + throw new EndpointError(JSON.stringify(res.error, null, 2)); + } + + return res; + }; + } + + /** + * Creates a new timeline. + * + * Note: Although the timeline is created, when displayed on the UI, no events are retrieved + * for display (not sure why). TO get around this, just select a date range from the user date + * picker and that seems to trigger the events to be fetched. + */ + async createTimeline(title: string): Promise { + // Create a new timeline draft + const createdTimeline = await this.supertest + .post(TIMELINE_DRAFT_URL) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .send({ timelineType: 'default' }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as GetDraftTimelinesResponse); + + this.log.info('Draft timeline:'); + this.log.indent(4, () => { + this.log.info(JSON.stringify(createdTimeline)); + }); + + const { savedObjectId: timelineId, version } = createdTimeline; + + const timelineUpdate: SavedTimeline = { + title, + // Set date range to the last 1 year + dateRange: { + start: moment().subtract(1, 'year').toISOString(), + end: moment().toISOString(), + // Not sure why `start`/`end` are defined as numbers in the type, but looking at the + // UI's use of it, I can see they are being set to strings, so I'm forcing a cast here + } as unknown as SavedTimeline['dateRange'], + + // Not sure why, but the following fields are not in the created timeline, which causes + // the timeline to not be able to pull in the event for display + indexNames: [], + eqlOptions: { + tiebreakerField: '', + size: 100, + query: '', + eventCategoryField: 'event.category', + timestampField: '@timestamp', + }, + savedSearchId: null, + }; + + // Update the timeline + const updatedTimelineResponse = await this.updateTimeline( + timelineId, + timelineUpdate, + version + ); + + this.log.info('Created timeline:'); + this.log.indent(4, () => { + this.log.info(JSON.stringify(updatedTimelineResponse)); + }); + + return updatedTimelineResponse; + } + + async updateTimeline( + timelineId: string, + updates: SavedTimeline, + version: string + ): Promise { + return await this.supertest + .patch(TIMELINE_URL) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .send({ + timelineId, + version, + timeline: updates, + }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body as PatchTimelineResponse); + } + + /** Deletes a timeline using it timeline id */ + async deleteTimeline(id: string | string[]) { + await this.supertest + .delete(TIMELINE_URL) + .set('kbn-xsrf', 'true') + .set('elastic-api-version', '2023-10-31') + .send({ + savedObjectIds: Array.isArray(id) ? id : [id], + }) + .then(this.getHttpResponseFailureHandler()) + .then((response) => response.body); + } + + /** + * Get the KQL query that will filter the content of a timeline to display Endpoint alerts + * @param endpointAgentId + */ + getEndpointAlertsKqlQuery(endpointAgentId?: string): { + expression: string; + esQuery: ReturnType; + } { + const expression = [ + 'agent.type: "endpoint"', + 'kibana.alert.rule.uuid : *', + ...(endpointAgentId ? [`agent.id: "${endpointAgentId}"`] : []), + ].join(' AND '); + + const esQuery = toElasticsearchQuery(fromKueryExpression(expression)); + + return { + expression, + esQuery, + }; + } + + /** + * Crates a new Timeline and sets its `kqlQuery` so that Endpoint Alerts are displayed. + * Can be limited to an endpoint by providing its `agent.id` + * + * @param title + * @param endpointAgentId + */ + async createTimelineForEndpointAlerts( + title: string, + { + endpointAgentId, + }: Partial<{ + /** If defined, then only alerts from the specific `agent.id` will be displayed */ + endpointAgentId: string; + }> + ): Promise { + const newTimeline = await this.createTimeline(title); + + const { expression, esQuery } = this.getEndpointAlertsKqlQuery(endpointAgentId); + + const updatedTimeline = await this.updateTimeline( + newTimeline.savedObjectId, + { + title, + kqlQuery: { + filterQuery: { + kuery: { + kind: 'kuery', + expression, + }, + serializedQuery: JSON.stringify(esQuery), + }, + }, + savedSearchId: null, + }, + newTimeline.version + ); + + return updatedTimeline; + } + })(); +} diff --git a/x-pack/test/security_solution_endpoint/target_tags.ts b/x-pack/solutions/security/test/security_solution_endpoint/target_tags.ts similarity index 100% rename from x-pack/test/security_solution_endpoint/target_tags.ts rename to x-pack/solutions/security/test/security_solution_endpoint/target_tags.ts diff --git a/x-pack/test/security_solution_endpoint/tsconfig.json b/x-pack/solutions/security/test/security_solution_endpoint/tsconfig.json similarity index 77% rename from x-pack/test/security_solution_endpoint/tsconfig.json rename to x-pack/solutions/security/test/security_solution_endpoint/tsconfig.json index 58da787d4b965..6a6a876118516 100644 --- a/x-pack/test/security_solution_endpoint/tsconfig.json +++ b/x-pack/solutions/security/test/security_solution_endpoint/tsconfig.json @@ -1,5 +1,5 @@ { - "extends": "../../../tsconfig.base.json", + "extends": "../../../../../tsconfig.base.json", "compilerOptions": { "outDir": "target/types", "types": [ @@ -10,14 +10,13 @@ }, "include": [ "**/*", - "../../../typings/**/*", - "../../../src/platform/packages/shared/kbn-test/types/ftr_globals/**/*" + "../../../../../typings/**/*", + "../../../../../src/platform/packages/shared/kbn-test/types/ftr_globals/**/*" ], "exclude": [ "target/**/*" ], "kbn_references": [ - "@kbn/test-suites-serverless", "@kbn/expect", "@kbn/security-solution-plugin", "@kbn/repo-info", @@ -31,5 +30,6 @@ "@kbn/spaces-plugin", "@kbn/scout-info", "@kbn/test-suites-xpack-platform", + "@kbn/es-query", ] } diff --git a/x-pack/solutions/security/test/tsconfig.json b/x-pack/solutions/security/test/tsconfig.json index ebb4220e9f482..beba6043ba53a 100644 --- a/x-pack/solutions/security/test/tsconfig.json +++ b/x-pack/solutions/security/test/tsconfig.json @@ -21,6 +21,8 @@ "*/plugins/**/*", "plugins/**/*", "security_solution_cypress/cypress/**/*", + "security_solution_api_integration/**/*", + "security_solution_endpoint/**/*", "*/packages/**/*", "*/*/packages/**/*", ], @@ -57,6 +59,12 @@ "@kbn/repo-info", "@kbn/es-archiver", "@kbn/task-manager-plugin", + "@kbn/openapi-common", + "@kbn/spaces-plugin", + "@kbn/securitysolution-exceptions-common", + "@kbn/securitysolution-endpoint-exceptions-common", + "@kbn/securitysolution-lists-common", + "@kbn/osquery-plugin", "@kbn/serverless-security-settings", "@kbn/rison", "@kbn/core-chrome-browser", diff --git a/x-pack/test/api_integration/services/index.ts b/x-pack/test/api_integration/services/index.ts index 6309814201bf5..1d28d3a1cbe62 100644 --- a/x-pack/test/api_integration/services/index.ts +++ b/x-pack/test/api_integration/services/index.ts @@ -11,20 +11,11 @@ import { IngestManagerProvider } from '@kbn/test-suites-xpack-platform/api_integ import { UsageAPIProvider } from '@kbn/test-suites-xpack-platform/api_integration/services/usage_api'; import { services as commonServices } from '../../common/services'; -// @ts-ignore not ts yet -import { EsSupertestWithoutAuthProvider } from './es_supertest_without_auth'; -import { SecuritySolutionApiProvider } from './security_solution_api.gen'; -import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from './security_solution_exceptions_api.gen'; - export const services = { ...commonServices, - esSupertest: kibanaApiIntegrationServices.esSupertest, supertest: kibanaApiIntegrationServices.supertest, - esSupertestWithoutAuth: EsSupertestWithoutAuthProvider, usageAPI: UsageAPIProvider, ml: MachineLearningProvider, ingestManager: IngestManagerProvider, - securitySolutionApi: SecuritySolutionApiProvider, - securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, }; diff --git a/x-pack/test/functional/page_objects/index.ts b/x-pack/test/functional/page_objects/index.ts index 512fb7f5157fd..3debb3507fa76 100644 --- a/x-pack/test/functional/page_objects/index.ts +++ b/x-pack/test/functional/page_objects/index.ts @@ -38,7 +38,6 @@ import { LogstashPageObject } from '@kbn/test-suites-xpack-platform/functional/p import { RollupPageObject } from '@kbn/test-suites-xpack-platform/functional/page_objects/rollup_page'; import { RemoteClustersPageProvider } from '@kbn/test-suites-xpack-platform/functional/page_objects/remote_clusters_page'; import { AssetDetailsProvider } from './asset_details'; -import { DetectionsPageObject } from '../../security_solution_ftr/page_objects/detections'; import { EmbeddedConsoleProvider } from './embedded_console'; import { InfraHomePageProvider } from './infra_home_page'; import { InfraHostsViewProvider } from './infra_hosts_view'; @@ -56,7 +55,6 @@ export const pageObjects = { canvas: CanvasPageProvider, copySavedObjectsToSpace: CopySavedObjectsToSpacePageProvider, crossClusterReplication: CrossClusterReplicationPageProvider, - detections: DetectionsPageObject, embeddedConsole: EmbeddedConsoleProvider, graph: GraphPageObject, grokDebugger: GrokDebuggerPageObject, diff --git a/x-pack/test/security_solution_api_integration/config/ess/services.ts b/x-pack/test/security_solution_api_integration/config/ess/services.ts deleted file mode 100644 index 5cb8f6e72d05c..0000000000000 --- a/x-pack/test/security_solution_api_integration/config/ess/services.ts +++ /dev/null @@ -1,18 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { KibanaEBTServerProvider } from '@kbn/test-suites-src/analytics/services/kibana_ebt'; -import { SecuritySolutionESSUtils } from '../services/security_solution_ess_utils'; -import { SpacesServiceProvider } from '../services/spaces_service'; -import { services as essServices } from '../../../api_integration/services'; - -export const services = { - ...essServices, - spaces: SpacesServiceProvider, - securitySolutionUtils: SecuritySolutionESSUtils, - kibana_ebt_server: KibanaEBTServerProvider, -}; diff --git a/x-pack/test/security_solution_api_integration/config/ess/services_edr_workflows.ts b/x-pack/test/security_solution_api_integration/config/ess/services_edr_workflows.ts deleted file mode 100644 index fe657da72251e..0000000000000 --- a/x-pack/test/security_solution_api_integration/config/ess/services_edr_workflows.ts +++ /dev/null @@ -1,31 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { EndpointTestResources } from '../../../security_solution_endpoint/services/endpoint'; -import { EndpointArtifactsTestResources } from '../../../security_solution_endpoint/services/endpoint_artifacts'; -import { EndpointPolicyTestResourcesProvider } from '../../../security_solution_endpoint/services/endpoint_policy'; - -import { services as xPackAPIServices } from '../../../api_integration/services'; -import { ResolverGeneratorProvider } from '../services/security_solution_edr_workflows_resolver'; -import { RolesUsersProvider } from '../services/security_solution_edr_workflows_roles_users'; -import { - SecuritySolutionEndpointDataStreamHelpers, - SecuritySolutionEndpointRegistryHelpers, -} from '../services/common'; -import { SecuritySolutionESSUtils } from '../services/security_solution_ess_utils'; - -export const services = { - ...xPackAPIServices, - resolverGenerator: ResolverGeneratorProvider, - endpointTestResources: EndpointTestResources, - endpointPolicyTestResources: EndpointPolicyTestResourcesProvider, - endpointArtifactTestResources: EndpointArtifactsTestResources, - rolesUsersProvider: RolesUsersProvider, - endpointDataStreamHelpers: SecuritySolutionEndpointDataStreamHelpers, - endpointRegistryHelpers: SecuritySolutionEndpointRegistryHelpers, - securitySolutionUtils: SecuritySolutionESSUtils, -}; diff --git a/x-pack/test/security_solution_endpoint/services/endpoint.ts b/x-pack/test/security_solution_endpoint/services/endpoint.ts deleted file mode 100644 index 579139cade4cc..0000000000000 --- a/x-pack/test/security_solution_endpoint/services/endpoint.ts +++ /dev/null @@ -1,383 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -/* eslint-disable max-classes-per-file */ - -import { Client, errors } from '@elastic/elasticsearch'; -import { AGENTS_INDEX } from '@kbn/fleet-plugin/common'; -import { - HOST_METADATA_GET_ROUTE, - METADATA_DATASTREAM, - METADATA_UNITED_INDEX, -} from '@kbn/security-solution-plugin/common/endpoint/constants'; -import { - deleteIndexedHostsAndAlerts, - DeleteIndexedHostsAndAlertsResponse, - IndexedHostsAndAlertsResponse, - indexHostsAndAlerts, -} from '@kbn/security-solution-plugin/common/endpoint/index_data'; -import { getEndpointPackageInfo } from '@kbn/security-solution-plugin/common/endpoint/utils/package'; -import { isEndpointPackageV2 } from '@kbn/security-solution-plugin/common/endpoint/utils/package_v2'; -import { installOrUpgradeEndpointFleetPackage } from '@kbn/security-solution-plugin/common/endpoint/data_loaders/setup_fleet_for_endpoint'; -import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; -import { DeepPartial } from 'utility-types'; -import { HostInfo, HostMetadata } from '@kbn/security-solution-plugin/common/endpoint/types'; -import { EndpointDocGenerator } from '@kbn/security-solution-plugin/common/endpoint/generate_data'; -import { EndpointMetadataGenerator } from '@kbn/security-solution-plugin/common/endpoint/data_generators/endpoint_metadata_generator'; -import { merge } from 'lodash'; -// @ts-expect-error we have to check types with "allowJs: false" for now, causing this import to fail -import { kibanaPackageJson } from '@kbn/repo-info'; -import seedrandom from 'seedrandom'; -import { fetchFleetLatestAvailableAgentVersion } from '@kbn/security-solution-plugin/common/endpoint/utils/fetch_fleet_version'; -import { KbnClient } from '@kbn/test'; -import { isServerlessKibanaFlavor } from '@kbn/security-solution-plugin/common/endpoint/utils/kibana_status'; -import { DEFAULT_SPACE_ID, addSpaceIdToPath } from '@kbn/spaces-plugin/common'; -import { createKbnClient } from '@kbn/security-solution-plugin/scripts/endpoint/common/stack_services'; -import { catchAxiosErrorFormatAndThrow } from '@kbn/security-solution-plugin/common/endpoint/format_axios_error'; -import { - startMetadataTransforms, - stopMetadataTransforms, -} from '@kbn/security-solution-plugin/common/endpoint/utils/transforms'; -import { FtrService } from '../../functional/ftr_provider_context'; - -export type IndexedHostsAndAlertsResponseExtended = IndexedHostsAndAlertsResponse & { - unloadEndpointData(): Promise; - spaceId: string; -}; - -// Document Generator override that uses a custom Endpoint Metadata generator and sets the -// `agent.version` to the current version -const createDocGeneratorClass = async (kbnClient: KbnClient, isServerless: boolean) => { - let version = kibanaPackageJson.version; - if (isServerless) { - version = await fetchFleetLatestAvailableAgentVersion(kbnClient); - } - // TS doesn't like the `version` let being used in the class definition - const capturedVersion = version; - - return class extends EndpointDocGenerator { - constructor(seedValue: string | seedrandom.prng) { - const MetadataGenerator = class extends EndpointMetadataGenerator { - protected randomVersion(): string { - return capturedVersion; - } - }; - - super(seedValue, MetadataGenerator); - } - }; -}; - -export class EndpointTestResources extends FtrService { - private readonly esClient = this.ctx.getService('es'); - private readonly retry = this.ctx.getService('retry'); - private readonly kbnClient = this.ctx.getService('kibanaServer'); - private readonly config = this.ctx.getService('config'); - private readonly supertest = this.ctx.getService('supertest'); - private readonly log = this.ctx.getService('log'); - - public getScopedKbnClient(spaceId: string = DEFAULT_SPACE_ID): KbnClient { - if (!spaceId || spaceId === DEFAULT_SPACE_ID) { - return this.kbnClient; - } - - const kbnClientOptions: Parameters[0] = { - url: this.kbnClient.resolveUrl('/'), - username: this.config.get('servers.elasticsearch.username'), - password: this.config.get('servers.elasticsearch.password'), - spaceId, - }; - - this.log.info(`creating new KbnClient with:\n${JSON.stringify(kbnClientOptions, null, 2)}`); - - // Was not included above in order to keep the output of the log.info() above clean in the output - kbnClientOptions.log = this.log; - - return createKbnClient(kbnClientOptions); - } - - /** - * Loads endpoint host/alert/event data into elasticsearch - * @param [options] - * @param [options.numHosts=1] Number of Endpoint Hosts to be loaded - * @param [options.numHostDocs=1] Number of Document to be loaded per Endpoint Host (Endpoint hosts index uses a append-only index) - * @param [options.alertsPerHost=1] Number of Alerts and Events to be loaded per Endpoint Host - * @param [options.enableFleetIntegration=true] When set to `true`, Fleet data will also be loaded (ex. Integration Policies, Agent Policies, "fake" Agents) - * @param [options.generatorSeed='seed'] The seed to be used by the data generator. Important in order to ensure the same data is generated on very run. - * @param [options.waitUntilTransformed=true] If set to `true`, the data loading process will wait until the endpoint hosts metadata is processed by the transform - * @param [options.waitTimeout=120000] If waitUntilTransformed=true, number of ms to wait until timeout - * @param [options.customIndexFn] If provided, will use this function to generate and index data instead - */ - async loadEndpointData( - options: Partial<{ - numHosts: number; - numHostDocs: number; - alertsPerHost: number; - enableFleetIntegration: boolean; - generatorSeed: string; - waitUntilTransformed: boolean; - waitTimeout: number; - customIndexFn: () => Promise; - spaceId: string; - withResponseActions: boolean; - }> = {} - ): Promise { - const { - numHosts = 1, - numHostDocs = 1, - alertsPerHost = 1, - enableFleetIntegration = true, - generatorSeed = 'seed', - waitUntilTransformed = true, - waitTimeout = 120000, - customIndexFn, - spaceId = DEFAULT_SPACE_ID, - withResponseActions = true, - } = options; - - const kbnClient = this.getScopedKbnClient(spaceId); - const endpointPackage = await getEndpointPackageInfo(kbnClient); - - if (waitUntilTransformed && customIndexFn) { - // need this before indexing docs so that the united transform doesn't - // create a checkpoint with a timestamp after the doc timestamps - await stopMetadataTransforms(this.esClient, endpointPackage.version); - } - - const isServerless = await isServerlessKibanaFlavor(kbnClient); - const CurrentKibanaVersionDocGenerator = await createDocGeneratorClass(kbnClient, isServerless); - - // load data into the system - const indexedData = customIndexFn - ? await customIndexFn() - : await indexHostsAndAlerts( - this.esClient as Client, - kbnClient, - generatorSeed, - numHosts, - numHostDocs, - 'metrics-endpoint.metadata-default', - 'metrics-endpoint.policy-default', - 'logs-endpoint.events.process-default', - 'logs-endpoint.alerts-default', - alertsPerHost, - enableFleetIntegration, - undefined, - CurrentKibanaVersionDocGenerator, - withResponseActions, - undefined, - undefined, - undefined, - this.log - ); - - if (waitUntilTransformed && customIndexFn) { - await startMetadataTransforms( - this.esClient, - Array.from(new Set(indexedData.hosts.map((host) => host.agent.id))), - endpointPackage.version - ); - } - - if (waitUntilTransformed) { - const agentIds = Array.from(new Set(indexedData.agents.map((agent) => agent.agent!.id))); - await this.waitForUnitedEndpoints(agentIds, waitTimeout); - } - - return { - ...indexedData, - spaceId, - unloadEndpointData: (): Promise => { - return this.unloadEndpointData(indexedData, { spaceId }); - }, - }; - } - - /** - * Deletes the loaded data created via `loadEndpointData()` - * @param indexedData - * @param options - */ - async unloadEndpointData( - indexedData: IndexedHostsAndAlertsResponse, - { spaceId = DEFAULT_SPACE_ID }: { spaceId?: string } = {} - ): Promise { - return deleteIndexedHostsAndAlerts( - this.esClient as Client, - this.getScopedKbnClient(spaceId), - indexedData - ); - } - - private async waitForIndex( - ids: string[], - index: string, - body: any = {}, - timeout: number = this.config.get('timeouts.waitFor') - ) { - // If we have a specific number of endpoint hosts to check for, then use that number, - // else we just want to make sure the index has data, thus just having one in the index will do - const size = ids.length || 1; - - await this.retry.waitForWithTimeout(`endpoint hosts in ${index}`, timeout, async () => { - try { - if (index === METADATA_UNITED_INDEX) { - // United metadata transform occasionally can't find docs in .fleet-agents. - // Running a search on the index first eliminates this issue. - // Replacing the search with a refresh does not resolve flakiness. - await this.esClient.search({ index: AGENTS_INDEX }); - } - const searchResponse = await this.esClient.search({ - index, - size, - body, - rest_total_hits_as_int: true, - }); - - return searchResponse.hits.total === size; - } catch (error) { - // We ignore 404's (index might not exist) - if (error instanceof errors.ResponseError && error.statusCode === 404) { - return false; - } - - // Wrap the ES error so that we get a good stack trace - throw new EndpointError(error.message, error); - } - }); - } - - /** - * Waits for endpoints to show up on the `metadata_united` index. - * Optionally, specific endpoint IDs (agent.id) can be provided to ensure those specific ones show up. - * - * @param [ids] optional list of ids to check for. If empty, it will just check if data exists in the index - * @param [timeout] optional max timeout to waitFor in ms. default is 20000. - */ - async waitForUnitedEndpoints(ids: string[] = [], timeout = this.config.get('timeouts.waitFor')) { - const body = ids.length - ? { - query: { - bool: { - filter: [ - { - terms: { - 'agent.id': ids, - }, - }, - // make sure that both endpoint and agent portions are populated - // since agent is likely to be populated first - { exists: { field: 'united.endpoint.agent.id' } }, - { exists: { field: 'united.agent.agent.id' } }, - ], - }, - }, - } - : { - size: 1, - query: { - match_all: {}, - }, - }; - - await this.waitForIndex(ids, METADATA_UNITED_INDEX, body, timeout); - } - - /** - * installs (or upgrades) the Endpoint Fleet package - * (NOTE: ensure that fleet is setup first before calling this function) - */ - async installOrUpgradeEndpointFleetPackage( - spaceId: string = DEFAULT_SPACE_ID - ): ReturnType { - return installOrUpgradeEndpointFleetPackage(this.getScopedKbnClient(spaceId), this.log); - } - - /** - * Fetch (GET) the details of an endpoint - * @param endpointAgentId - * @param spaceId - */ - async fetchEndpointMetadata( - endpointAgentId: string, - spaceId: string = DEFAULT_SPACE_ID - ): Promise { - return this.supertest - .get(addSpaceIdToPath('/', spaceId, HOST_METADATA_GET_ROUTE.replace('{id}', endpointAgentId))) - .set('kbn-xsrf', 'true') - .set('Elastic-Api-Version', '2023-10-31') - .send() - .expect(200) - .then((response) => response.body as HostInfo); - } - - /** - * Sends an updated metadata document for a given endpoint to the datastream and waits for the - * update to show up on the Metadata API (after transform runs) - */ - async sendEndpointMetadataUpdate( - endpointAgentId: string, - updates: DeepPartial = {}, - spaceId: string = DEFAULT_SPACE_ID - ): Promise { - const currentMetadata = await this.fetchEndpointMetadata(endpointAgentId, spaceId); - const endpointPackage = await getEndpointPackageInfo(this.getScopedKbnClient(spaceId)); - - await stopMetadataTransforms(this.esClient, endpointPackage.version); - const generatedMetadataDoc = new EndpointDocGenerator().generateHostMetadata(); - - const updatedMetadataDoc = merge( - { ...currentMetadata.metadata }, - // Grab the updated `event` and timestamp from the generator data - { - event: generatedMetadataDoc.event, - '@timestamp': generatedMetadataDoc['@timestamp'], - }, - updates - ); - - await this.esClient - .index({ - index: METADATA_DATASTREAM, - body: updatedMetadataDoc, - op_type: 'create', - }) - .catch(catchAxiosErrorFormatAndThrow); - - await startMetadataTransforms(this.esClient, [], endpointPackage.version); - - this.log.info( - `Endpoint metadata update was indexed for endpoint agent id [${endpointAgentId}] in space [${spaceId}]` - ); - - let response: HostInfo | undefined; - - // Wait for the update to show up on Metadata API (after transform runs) - await this.retry.waitFor( - `update to endpoint id [${endpointAgentId}] to be processed by transform`, - async () => { - response = await this.fetchEndpointMetadata(endpointAgentId, spaceId); - - return response.metadata.event.id === updatedMetadataDoc.event.id; - } - ); - - if (!response) { - throw new Error(`Response object not set. Issue fetching endpoint metadata`); - } - - this.log.info(`Endpoint metadata doc update done for agent ID [${endpointAgentId}]`); - this.log.verbose(JSON.stringify(response, null, 2)); - - return response; - } - - async isEndpointPackageV2(spaceId: string = DEFAULT_SPACE_ID): Promise { - const endpointPackage = await getEndpointPackageInfo(this.getScopedKbnClient(spaceId)); - return isEndpointPackageV2(endpointPackage.version); - } -} diff --git a/x-pack/test/security_solution_endpoint/services/endpoint_artifacts.ts b/x-pack/test/security_solution_endpoint/services/endpoint_artifacts.ts deleted file mode 100644 index 179811598ba1f..0000000000000 --- a/x-pack/test/security_solution_endpoint/services/endpoint_artifacts.ts +++ /dev/null @@ -1,234 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { - CreateExceptionListItemSchema, - CreateExceptionListSchema, - ExceptionListItemSchema, - ExceptionListTypeEnum, -} from '@kbn/securitysolution-io-ts-list-types'; -import { - ENDPOINT_ARTIFACT_LISTS, - ENDPOINT_ARTIFACT_LIST_IDS, - EXCEPTION_LIST_ITEM_URL, - EXCEPTION_LIST_URL, - ENDPOINT_LIST_NAME, - ENDPOINT_LIST_DESCRIPTION, - ENDPOINT_LIST_ID, -} from '@kbn/securitysolution-list-constants'; -import { Response } from 'superagent'; -import { ExceptionsListItemGenerator } from '@kbn/security-solution-plugin/common/endpoint/data_generators/exceptions_list_item_generator'; -import { TRUSTED_APPS_EXCEPTION_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/trusted_apps/constants'; -import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; -import { EVENT_FILTER_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/event_filters/constants'; -import { HOST_ISOLATION_EXCEPTIONS_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/host_isolation_exceptions/constants'; -import { BLOCKLISTS_LIST_DEFINITION } from '@kbn/security-solution-plugin/public/management/pages/blocklist/constants'; -import { ManifestConstants } from '@kbn/security-solution-plugin/server/endpoint/lib/artifacts'; -import TestAgent from 'supertest/lib/agent'; -import { addSpaceIdToPath, DEFAULT_SPACE_ID } from '@kbn/spaces-plugin/common'; -import { isArtifactGlobal } from '@kbn/security-solution-plugin/common/endpoint/service/artifacts'; -import { FtrService } from '../../functional/ftr_provider_context'; -import { InternalUnifiedManifestSchemaResponseType } from '../apps/integrations/mocks'; - -export interface ArtifactTestData { - artifact: ExceptionListItemSchema; - cleanup: () => Promise; -} - -export interface ArtifactCreateOptions { - supertest?: TestAgent; - spaceId?: string; -} - -export class EndpointArtifactsTestResources extends FtrService { - private readonly exceptionsGenerator = new ExceptionsListItemGenerator(); - private readonly supertest = this.ctx.getService('supertest'); - private readonly log = this.ctx.getService('log'); - private readonly esClient = this.ctx.getService('es'); - - private getHttpResponseFailureHandler( - ignoredStatusCodes: number[] = [] - ): (res: Response) => Promise { - return async (res) => { - if (!res.ok && !ignoredStatusCodes.includes(res.status)) { - throw new EndpointError(JSON.stringify(res.error, null, 2)); - } - - return res; - }; - } - - private async ensureListExists( - listDefinition: CreateExceptionListSchema, - { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} - ): Promise { - // attempt to create it and ignore 409 (already exists) errors - await supertest - .post(addSpaceIdToPath('/', spaceId, EXCEPTION_LIST_URL)) - .set('kbn-xsrf', 'true') - .send(listDefinition) - .then(this.getHttpResponseFailureHandler([409])); - } - - private async createExceptionItem( - createPayload: CreateExceptionListItemSchema, - { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} - ): Promise { - this.log.verbose(`Creating exception item:\n${JSON.stringify(createPayload)}`); - - const artifact = await supertest - .post(addSpaceIdToPath('/', spaceId, EXCEPTION_LIST_ITEM_URL)) - .set('kbn-xsrf', 'true') - .send(createPayload) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as ExceptionListItemSchema); - - const { item_id: itemId, list_id: listId } = artifact; - const artifactAssignment = isArtifactGlobal(artifact) ? 'Global' : 'Per-Policy'; - - this.log.info( - `Created [${artifactAssignment}] exception list item in space [${spaceId}], List ID [${listId}], Item ID [${itemId}]` - ); - - const cleanup = async () => { - await this.deleteExceptionItem(artifact, { supertest, spaceId }); - }; - - return { - artifact, - cleanup, - }; - } - - async deleteExceptionItem( - { - list_id: listId, - item_id: itemId, - namespace_type: nameSpaceType, - }: Pick, - { supertest = this.supertest, spaceId = DEFAULT_SPACE_ID }: ArtifactCreateOptions = {} - ): Promise { - const deleteResponse = await supertest - .delete( - `${addSpaceIdToPath( - '/', - spaceId, - EXCEPTION_LIST_ITEM_URL - )}?item_id=${itemId}&namespace_type=${nameSpaceType}` - ) - .set('kbn-xsrf', 'true') - .send() - .then(this.getHttpResponseFailureHandler([404])); - - this.log.info(`Deleted exception list item [${listId}]: ${itemId} (${deleteResponse.status})`); - } - - async createEndpointException( - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - await this.ensureListExists( - { - name: ENDPOINT_LIST_NAME, - description: ENDPOINT_LIST_DESCRIPTION, - list_id: ENDPOINT_LIST_ID, - type: ExceptionListTypeEnum.ENDPOINT, - namespace_type: 'agnostic', - }, - options - ); - const endpointException = - this.exceptionsGenerator.generateEndpointExceptionForCreate(overrides); - - return this.createExceptionItem(endpointException, options); - } - - async createTrustedApp( - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - await this.ensureListExists(TRUSTED_APPS_EXCEPTION_LIST_DEFINITION, options); - const trustedApp = this.exceptionsGenerator.generateTrustedAppForCreate(overrides); - - return this.createExceptionItem(trustedApp, options); - } - - async createEventFilter( - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - await this.ensureListExists(EVENT_FILTER_LIST_DEFINITION, options); - const eventFilter = this.exceptionsGenerator.generateEventFilterForCreate(overrides); - - return this.createExceptionItem(eventFilter, options); - } - - async createHostIsolationException( - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - await this.ensureListExists(HOST_ISOLATION_EXCEPTIONS_LIST_DEFINITION, options); - const artifact = this.exceptionsGenerator.generateHostIsolationExceptionForCreate(overrides); - - return this.createExceptionItem(artifact, options); - } - - async createBlocklist( - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - await this.ensureListExists(BLOCKLISTS_LIST_DEFINITION, options); - const blocklist = this.exceptionsGenerator.generateBlocklistForCreate(overrides); - - return this.createExceptionItem(blocklist, options); - } - - async createArtifact( - listId: (typeof ENDPOINT_ARTIFACT_LIST_IDS)[number] | typeof ENDPOINT_LIST_ID, - overrides: Partial = {}, - options?: ArtifactCreateOptions - ): Promise { - switch (listId) { - case ENDPOINT_ARTIFACT_LISTS.trustedApps.id: { - return this.createTrustedApp(overrides, options); - } - case ENDPOINT_ARTIFACT_LISTS.eventFilters.id: { - return this.createEventFilter(overrides, options); - } - case ENDPOINT_ARTIFACT_LISTS.blocklists.id: { - return this.createBlocklist(overrides, options); - } - case ENDPOINT_ARTIFACT_LISTS.hostIsolationExceptions.id: { - return this.createHostIsolationException(overrides, options); - } - case ENDPOINT_LIST_ID: { - return this.createEndpointException(overrides, options); - } - default: - throw new Error(`Unexpected list id ${listId}`); - } - } - - async getArtifactsFromUnifiedManifestSO(): Promise< - Array< - InternalUnifiedManifestSchemaResponseType['_source']['endpoint:unified-user-artifact-manifest'] - > - > { - const { - hits: { hits: manifestResults }, - } = await this.esClient.search({ - index: '.kibana*', - query: { - bool: { filter: [{ term: { type: ManifestConstants.UNIFIED_SAVED_OBJECT_TYPE } }] }, - }, - }); - - return manifestResults.map( - (result) => result._source!['endpoint:unified-user-artifact-manifest'] - ); - } -} diff --git a/x-pack/test/security_solution_ftr/page_objects/detections/index.ts b/x-pack/test/security_solution_ftr/page_objects/detections/index.ts deleted file mode 100644 index e4b1e8e0c4169..0000000000000 --- a/x-pack/test/security_solution_ftr/page_objects/detections/index.ts +++ /dev/null @@ -1,244 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { WebElementWrapper } from '@kbn/ftr-common-functional-ui-services'; -import { FtrService } from '../../../functional/ftr_provider_context'; - -const ALERT_TABLE_ROW_CSS_SELECTOR = '[data-test-subj="alertsTableIsLoaded"] .euiDataGridRow'; - -export class DetectionsPageObject extends FtrService { - private readonly find = this.ctx.getService('find'); - private readonly common = this.ctx.getPageObject('common'); - private readonly testSubjects = this.ctx.getService('testSubjects'); - private readonly headerPageObjects = this.ctx.getPageObject('header'); - private readonly retry = this.ctx.getService('retry'); - private readonly defaultTimeoutMs = this.ctx.getService('config').get('timeouts.waitFor'); - - async navigateHome(): Promise { - await this.navigateToDetectionsPage(); - } - - /** - * Navigate to the Alerts list page. - * @param searchParams - * - * @example - * - * // filter list by alert only for a given host name - * navigateToAlerts(`query=(language:kuery,query:'host.hostname: "HOST-abc"')`) - */ - async navigateToAlerts(searchParams: string = ''): Promise { - await this.common.navigateToUrlWithBrowserHistory('securitySolution', '/alerts', searchParams, { - ensureCurrentUrl: !Boolean(searchParams), - }); - await this.headerPageObjects.waitUntilLoadingHasFinished(); - } - - async navigateToRules(): Promise { - await this.navigateToDetectionsPage('rules'); - } - - async navigateToCreateRule(): Promise { - await this.navigateToDetectionsPage('rules/create'); - } - - async replaceIndexPattern(): Promise { - const buttons = await this.find.allByCssSelector('[data-test-subj="comboBoxInput"] button'); - await buttons.map(async (button: WebElementWrapper) => await button.click()); - await this.testSubjects.setValue('comboBoxSearchInput', '*'); - } - - async openImportQueryModal(): Promise { - const element = await this.testSubjects.find('importQueryFromSavedTimeline'); - await element.click(500); - await this.testSubjects.exists('open-timeline-modal-body-filter-default'); - } - - async viewTemplatesInImportQueryModal(): Promise { - await this.common.clickAndValidate( - 'open-timeline-modal-body-filter-template', - 'timelines-table' - ); - } - - async closeImportQueryModal(): Promise { - await this.find.clickByCssSelector('.euiButtonIcon.euiModal__closeIcon'); - } - - async selectMachineLearningJob(): Promise { - await this.find.clickByCssSelector('[data-test-subj="mlJobSelect"] button'); - await this.find.clickByCssSelector('#high_distinct_count_error_message'); - } - - async openAddFilterPopover(): Promise { - const addButtons = await this.testSubjects.findAll('addFilter'); - await addButtons[1].click(); - await this.testSubjects.exists('saveFilter'); - } - - async closeAddFilterPopover(): Promise { - await this.testSubjects.click('cancelSaveFilter'); - } - - async toggleFilterActions(): Promise { - const filterActions = await this.testSubjects.findAll('addFilter'); - await filterActions[1].click(); - } - - async toggleSavedQueries(): Promise { - const filterActions = await this.find.allByCssSelector( - '[data-test-subj="saved-query-management-popover-button"]' - ); - await filterActions[1].click(); - } - - async addNameAndDescription( - name: string = 'test rule name', - description: string = 'test rule description' - ): Promise { - await this.find.setValue(`[aria-describedby="detectionEngineStepAboutRuleName"]`, name, 500); - await this.find.setValue( - `[aria-describedby="detectionEngineStepAboutRuleDescription"]`, - description, - 500 - ); - } - - async goBackToAllRules(): Promise { - await this.common.clickAndValidate('ruleDetailsBackToAllRules', 'create-new-rule'); - } - - async revealAdvancedSettings(): Promise { - await this.common.clickAndValidate( - 'advancedSettings', - 'detectionEngineStepAboutRuleReferenceUrls' - ); - } - - async preview(): Promise { - await this.common.clickAndValidate( - 'previewSubmitButton', - 'queryPreviewCustomHistogram', - undefined, - 500 - ); - } - - async continue(prefix: string): Promise { - await this.testSubjects.click(`${prefix}-continue`); - } - - async addCustomQuery(query: string): Promise { - await this.testSubjects.setValue('queryInput', query, undefined, 500); - } - - async selectMLRule(): Promise { - await this.common.clickAndValidate('machineLearningRuleType', 'mlJobSelect'); - } - - async selectEQLRule(): Promise { - await this.common.clickAndValidate('eqlRuleType', 'eqlQueryBarTextInput'); - } - - async selectIndicatorMatchRule(): Promise { - await this.common.clickAndValidate('threatMatchRuleType', 'comboBoxInput'); - } - - async selectThresholdRule(): Promise { - await this.common.clickAndValidate('thresholdRuleType', 'input'); - } - - async ensureOnAlertsPage(): Promise { - await this.testSubjects.existOrFail('detectionsAlertsPage'); - } - - /** - * Opens the first alert on the Alerts List page for the given host name - * @param hostName - */ - async openFirstAlertDetailsForHostName(hostName: string): Promise { - await this.ensureOnAlertsPage(); - - let foundAndHandled = false; - - // Get all event rows - const allEvents = await this.testSubjects.findService.allByCssSelector( - ALERT_TABLE_ROW_CSS_SELECTOR - ); - - for (const eventRow of allEvents) { - const hostNameButton = await this.testSubjects.findDescendant( - 'host-details-button', - eventRow - ); - const eventRowHostName = (await hostNameButton.getVisibleText()).trim(); - - if (eventRowHostName === hostName) { - const expandAlertButton = await this.testSubjects.findDescendant('expand-event', eventRow); - await expandAlertButton.click(); - await this.testSubjects.existOrFail('eventDetails'); - foundAndHandled = true; - break; - } - } - - if (!foundAndHandled) { - throw new Error(`no alerts found for host: ${hostName}`); - } - } - - /** - * Opens the Response console from the alert Details. Alert details must be already opened/displayed - */ - async openResponseConsoleFromAlertDetails(): Promise { - await this.testSubjects.existOrFail('eventDetails'); - await this.testSubjects.click('securitySolutionFlyoutFooterDropdownButton'); - await this.testSubjects.clickWhenNotDisabled('endpointResponseActions-action-item'); - await this.testSubjects.existOrFail('consolePageOverlay'); - } - - /** - * Clicks the refresh button on the Alerts page and waits for it to complete - */ - async clickRefresh(): Promise { - await this.ensureOnAlertsPage(); - await this.testSubjects.click('querySubmitButton'); - - // wait for refresh to complete - await this.retry.waitFor( - 'Alerts pages refresh button to be enabled', - async (): Promise => { - const refreshButton = await this.testSubjects.find('querySubmitButton'); - - return (await refreshButton.isDisplayed()) && (await refreshButton.isEnabled()); - } - ); - } - - async waitForListToHaveAlerts(timeoutMs?: number): Promise { - await this.retry.waitForWithTimeout( - 'waiting for alerts to show up on alerts page', - timeoutMs ?? this.defaultTimeoutMs, - async (): Promise => { - await this.clickRefresh(); - - const allEventRows = await this.testSubjects.findService.allByCssSelector( - ALERT_TABLE_ROW_CSS_SELECTOR - ); - - return Boolean(allEventRows.length); - } - ); - } - - private async navigateToDetectionsPage(path: string = ''): Promise { - const subUrl = `detections${path ? `/${path}` : ''}`; - await this.common.navigateToUrl('securitySolution', subUrl, { - shouldUseHashForSubUrl: false, - }); - } -} diff --git a/x-pack/test/security_solution_ftr/page_objects/hosts/index.ts b/x-pack/test/security_solution_ftr/page_objects/hosts/index.ts deleted file mode 100644 index 50e232a8693e1..0000000000000 --- a/x-pack/test/security_solution_ftr/page_objects/hosts/index.ts +++ /dev/null @@ -1,60 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { WebElementWrapper } from '@kbn/ftr-common-functional-ui-services'; -import { FtrService } from '../../../functional/ftr_provider_context'; - -export class HostsPageObject extends FtrService { - private readonly pageObjects = this.ctx.getPageObjects(['common', 'header']); - private readonly testSubjects = this.ctx.getService('testSubjects'); - - async navigateToHostDetails(hostName: string): Promise { - await this.pageObjects.common.navigateToUrl('securitySolution', `hosts/${hostName}`, { - shouldUseHashForSubUrl: false, - }); - await this.pageObjects.header.waitUntilLoadingHasFinished(); - } - - async ensureOnHostDetails(): Promise { - await this.testSubjects.existOrFail('hostDetailsPage'); - } - - /** - * Returns an object with the Endpoint overview data, where the keys are the visible labels in the UI. - * Must be on the Host details in order for this page object to work - */ - async hostDetailsEndpointOverviewData(): Promise> { - await this.ensureOnHostDetails(); - const endpointDescriptionLists: WebElementWrapper[] = await this.testSubjects.findAll( - 'endpoint-overview' - ); - - const data: Record = {}; - - for (const dlElement of endpointDescriptionLists) { - const $ = await dlElement.parseDomContent(); - - const title = $('dt') - .text() - .replace(/ /g, '') - .trim(); - - // The value could be draggable, in which case we need to grab the value displayed from a deeper element - const $ddElement = $('dd'); - const $valueContainer = $ddElement.find('.draggable-keyboard-wrapper .euiToolTipAnchor'); - - const value = ($valueContainer.length > 0 ? $valueContainer : $ddElement) - .text() - .replace(/ /g, '') - .trim(); - - data[title] = value; - } - - return data; - } -} diff --git a/x-pack/test/security_solution_ftr/page_objects/timeline/index.ts b/x-pack/test/security_solution_ftr/page_objects/timeline/index.ts deleted file mode 100644 index 2e5cc8492eaa2..0000000000000 --- a/x-pack/test/security_solution_ftr/page_objects/timeline/index.ts +++ /dev/null @@ -1,153 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { subj as testSubjSelector } from '@kbn/test-subj-selector'; -import { DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP } from '@kbn/security-solution-plugin/common/test'; -import { FtrService } from '../../../functional/ftr_provider_context'; - -const TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ = 'timeline-bottom-bar'; -const TIMELINE_CLOSE_BUTTON_TEST_SUBJ = 'timeline-modal-header-close-button'; -const TIMELINE_MODAL_PAGE_TEST_SUBJ = 'timeline'; -const TIMELINE_TAB_QUERY_TEST_SUBJ = 'timeline-tab-content-query'; - -const TIMELINE_CSS_SELECTOR = Object.freeze({ - bottomBarTimelineTitle: `${testSubjSelector( - TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ - )} ${testSubjSelector('timeline-bottom-bar-title-button')}`, - /** The refresh button on the timeline view (top of view, next to the date selector) */ - refreshButton: `${testSubjSelector(TIMELINE_TAB_QUERY_TEST_SUBJ)} ${testSubjSelector( - 'superDatePickerApplyTimeButton' - )} `, -}); - -export class TimelinePageObject extends FtrService { - private readonly pageObjects = this.ctx.getPageObjects(['common', 'header']); - private readonly testSubjects = this.ctx.getService('testSubjects'); - private readonly retry = this.ctx.getService('retry'); - private readonly defaultTimeoutMs = this.ctx.getService('config').get('timeouts.waitFor'); - private readonly logger = this.ctx.getService('log'); - - async navigateToTimelineList(): Promise { - await this.pageObjects.common.navigateToUrlWithBrowserHistory('securitySolutionTimelines'); - await this.pageObjects.header.waitUntilLoadingHasFinished(); - } - - /** - * Ensure that the timeline bottom bar is accessible - */ - async ensureTimelineAccessible(): Promise { - await this.testSubjects.existOrFail(TIMELINE_BOTTOM_BAR_CONTAINER_TEST_SUBJ); - } - - async openTimelineFromBottomBar() { - await this.ensureTimelineAccessible(); - await this.testSubjects.findService.clickByCssSelector( - TIMELINE_CSS_SELECTOR.bottomBarTimelineTitle - ); - } - - async openTimelineById(id: string): Promise { - await this.openTimelineFromBottomBar(); - await this.testSubjects.click('timeline-bottom-bar-open-timeline'); - await this.testSubjects.findService.clickByCssSelector( - `${testSubjSelector('open-timeline-modal')} ${testSubjSelector(`timeline-title-${id}`)}` - ); - - await this.ensureTimelineIsOpen(); - } - - async closeTimeline(): Promise { - if (await this.testSubjects.exists(TIMELINE_CLOSE_BUTTON_TEST_SUBJ)) { - await this.testSubjects.click(TIMELINE_CLOSE_BUTTON_TEST_SUBJ); - await this.testSubjects.waitForHidden(TIMELINE_MODAL_PAGE_TEST_SUBJ); - } - } - - async ensureTimelineIsOpen(): Promise { - await this.testSubjects.existOrFail(TIMELINE_MODAL_PAGE_TEST_SUBJ); - } - - /** - * From a visible timeline, clicks the "view details" for an event on the list - * @param index - */ - async showEventDetails(index: number = 0): Promise { - await this.ensureTimelineIsOpen(); - await this.testSubjects.findService.clickByCssSelector( - `${testSubjSelector('event')}:nth-child(${index + 1}) ${testSubjSelector('expand-event')}` - ); - await this.testSubjects.existOrFail('eventDetails'); - } - - /** - * Clicks the Refresh button at the top of the timeline page and waits for the refresh to complete - */ - async clickRefresh(): Promise { - await this.ensureTimelineIsOpen(); - await this.pageObjects.header.waitUntilLoadingHasFinished(); - await ( - await this.testSubjects.findService.byCssSelector(TIMELINE_CSS_SELECTOR.refreshButton) - ).isEnabled(); - await this.testSubjects.findService.clickByCssSelector(TIMELINE_CSS_SELECTOR.refreshButton); - await this.retry.waitFor( - 'Timeline refresh button to be enabled', - async (): Promise => { - return ( - await this.testSubjects.findService.byCssSelector(TIMELINE_CSS_SELECTOR.refreshButton) - ).isEnabled(); - } - ); - } - - /** - * Check to see if the timeline has events in the list - */ - async hasEvents(): Promise { - const eventRows = await this.testSubjects.findService.allByCssSelector( - `${testSubjSelector(TIMELINE_MODAL_PAGE_TEST_SUBJ)} ${testSubjSelector('event')}` - ); - - return eventRows.length > 0; - } - - /** - * Waits for events to be displayed in the timeline. It will click on the "Refresh" button to trigger a data fetch - * @param timeoutMs - */ - async waitForEvents(timeoutMs?: number): Promise { - if (await this.hasEvents()) { - this.logger.info(`Timeline already has events displayed`); - return; - } - - await this.retry.waitForWithTimeout( - 'waiting for events to show up on timeline', - timeoutMs ?? this.defaultTimeoutMs, - async (): Promise => { - await this.clickRefresh(); - - return this.hasEvents(); - } - ); - } - - /** - * Sets the date range on the timeline by clicking on a commonly used preset from the super date picker - * @param range - */ - async setDateRange(range: keyof typeof DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP): Promise { - await this.ensureTimelineIsOpen(); - await this.testSubjects.findService.clickByCssSelector( - `${testSubjSelector(TIMELINE_TAB_QUERY_TEST_SUBJ)} ${testSubjSelector( - 'superDatePickerToggleQuickMenuButton' - )}` - ); - await this.testSubjects.existOrFail('superDatePickerQuickMenu'); - await this.testSubjects.click(DATE_RANGE_OPTION_TO_TEST_SUBJ_MAP[range]); - await this.testSubjects.missingOrFail('superDatePickerQuickMenu'); - } -} diff --git a/x-pack/test/security_solution_ftr/services/detections/index.ts b/x-pack/test/security_solution_ftr/services/detections/index.ts deleted file mode 100644 index e89741bade43c..0000000000000 --- a/x-pack/test/security_solution_ftr/services/detections/index.ts +++ /dev/null @@ -1,158 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { Response } from 'superagent'; -import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; -import { - DETECTION_ENGINE_QUERY_SIGNALS_URL, - DETECTION_ENGINE_RULES_BULK_ACTION, - DETECTION_ENGINE_RULES_URL, -} from '@kbn/security-solution-plugin/common/constants'; -import type { estypes } from '@elastic/elasticsearch'; -import { Rule } from '@kbn/security-solution-plugin/public/detection_engine/rule_management/logic/types'; -import { - IndexedEndpointRuleAlerts, - indexEndpointRuleAlerts, -} from '@kbn/security-solution-plugin/common/endpoint/data_loaders/index_endpoint_rule_alerts'; -import { ELASTIC_SECURITY_RULE_ID } from '@kbn/security-solution-plugin/common'; -import { FtrService } from '../../../functional/ftr_provider_context'; - -export class DetectionsTestService extends FtrService { - private readonly supertest = this.ctx.getService('supertest'); - private readonly log = this.ctx.getService('log'); - private readonly retry = this.ctx.getService('retry'); - private readonly config = this.ctx.getService('config'); - private readonly esClient = this.ctx.getService('es'); - private readonly defaultTimeout = this.config.get('timeouts.waitFor'); - - /** - * Returns an error handler for `supertest` request that will dump out more useful information - * when things fail. - * - * @param ignoredStatusCodes - * @internal - * - * @example - * - * await this.supertest - * .post('/some/api') - * .set('kbn-xsrf', 'true') - * .send(somePayLoad) - * .then(this.getHttpResponseFailureHandler([409])); - */ - private getHttpResponseFailureHandler( - ignoredStatusCodes: number[] = [] - ): (res: Response) => Promise { - return async (res) => { - if (!res.ok && !ignoredStatusCodes.includes(res.status)) { - throw new EndpointError(JSON.stringify(res.error, null, 2)); - } - - return res; - }; - } - - /** - * Fetches the endpoint security rule using the pre-packaged `rule_id` - */ - async fetchEndpointSecurityRule(): Promise { - return this.supertest - .get(DETECTION_ENGINE_RULES_URL) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .query({ rule_id: ELASTIC_SECURITY_RULE_ID }) - .send() - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as Rule); - } - - /** - * Disables and then re-enables the Endpoint Security Rule. Use this to speed up triggering - * the rule to run, since it is immediately ran when it is enabled. - */ - async stopStartEndpointRule(): Promise { - const endpointSecurityRule = await this.fetchEndpointSecurityRule(); - - // First disable/stop it - this.log.info(`Disabling Endpoint Security Rule (id: ${endpointSecurityRule.id})`); - - await this.supertest - .post(DETECTION_ENGINE_RULES_BULK_ACTION) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .send({ - action: 'disable', - ids: [endpointSecurityRule.id], - }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as Rule); - - // Now enable/start it - this.log.info(`Re-Enabling Endpoint Security Rule (id: ${endpointSecurityRule.id})`); - - await this.supertest - .post(DETECTION_ENGINE_RULES_BULK_ACTION) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .send({ - action: 'enable', - ids: [endpointSecurityRule.id], - }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as Rule); - } - - /** - * Waits for alerts to have been loaded by continuously calling the alerts api until data shows up - * @param query - * @param timeoutMs - */ - async waitForAlerts(query: object = { match_all: {} }, timeoutMs?: number): Promise { - await this.retry.waitForWithTimeout( - 'Checking alerts index for data', - timeoutMs ?? this.defaultTimeout, - async (): Promise => { - const res = await this.supertest - .post(DETECTION_ENGINE_QUERY_SIGNALS_URL) - .set('kbn-xsrf', 'true') - .send({ - query, - size: 1, - }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as estypes.SearchResponse); - - const hitsTotal = (res.hits.total as estypes.SearchTotalHits)?.value; - const response = Boolean(hitsTotal ?? 0); - - if (response) { - this.log.info(`Found ${hitsTotal} alerts for query: ${JSON.stringify(query)}`); - } - - return response; - } - ); - } - - /** - * Loads alerts for Endpoint directly into the internal index that the Endpoint Rule - * would have written them to for a given endpoint - * @param endpointAgentId - * @param count - */ - async loadEndpointRuleAlerts( - endpointAgentId: string, - count: number = 2 - ): Promise { - return indexEndpointRuleAlerts({ - esClient: this.esClient, - endpointAgentId, - count, - log: this.log, - }); - } -} diff --git a/x-pack/test/security_solution_ftr/services/timeline/index.ts b/x-pack/test/security_solution_ftr/services/timeline/index.ts deleted file mode 100644 index 2edc4a3b3a978..0000000000000 --- a/x-pack/test/security_solution_ftr/services/timeline/index.ts +++ /dev/null @@ -1,202 +0,0 @@ -/* - * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one - * or more contributor license agreements. Licensed under the Elastic License - * 2.0; you may not use this file except in compliance with the Elastic License - * 2.0. - */ - -import { Response } from 'superagent'; -import { EndpointError } from '@kbn/security-solution-plugin/common/endpoint/errors'; -import { TIMELINE_DRAFT_URL, TIMELINE_URL } from '@kbn/security-solution-plugin/common/constants'; -import { - GetDraftTimelinesResponse, - PatchTimelineResponse, - SavedTimeline, -} from '@kbn/security-solution-plugin/common/api/timeline'; -import moment from 'moment'; -import { fromKueryExpression, toElasticsearchQuery } from '@kbn/es-query'; -import { FtrService } from '../../../functional/ftr_provider_context'; - -export class TimelineTestService extends FtrService { - private readonly supertest = this.ctx.getService('supertest'); - private readonly log = this.ctx.getService('log'); - - /** - * Returns an error handler for `supertest` request that will dump out more useful information - * when things fail. - * - * @param ignoredStatusCodes - * @internal - * - * @example - * - * await this.supertest - * .post('/some/api') - * .set('kbn-xsrf', 'true') - * .send(somePayLoad) - * .then(this.getHttpResponseFailureHandler([409])); - */ - private getHttpResponseFailureHandler( - ignoredStatusCodes: number[] = [] - ): (res: Response) => Promise { - return async (res) => { - if (!res.ok && !ignoredStatusCodes.includes(res.status)) { - throw new EndpointError(JSON.stringify(res.error, null, 2)); - } - - return res; - }; - } - - /** - * Creates a new timeline. - * - * Note: Although the timeline is created, when displayed on the UI, no events are retrieved - * for display (not sure why). TO get around this, just select a date range from the user date - * picker and that seems to trigger the events to be fetched. - */ - async createTimeline(title: string): Promise { - // Create a new timeline draft - const createdTimeline = await this.supertest - .post(TIMELINE_DRAFT_URL) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .send({ timelineType: 'default' }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as GetDraftTimelinesResponse); - - this.log.info('Draft timeline:'); - this.log.indent(4, () => { - this.log.info(JSON.stringify(createdTimeline)); - }); - - const { savedObjectId: timelineId, version } = createdTimeline; - - const timelineUpdate: SavedTimeline = { - title, - // Set date range to the last 1 year - dateRange: { - start: moment().subtract(1, 'year').toISOString(), - end: moment().toISOString(), - // Not sure why `start`/`end` are defined as numbers in the type, but looking at the - // UI's use of it, I can see they are being set to strings, so I'm forcing a cast here - } as unknown as SavedTimeline['dateRange'], - - // Not sure why, but the following fields are not in the created timeline, which causes - // the timeline to not be able to pull in the event for display - indexNames: [], - eqlOptions: { - tiebreakerField: '', - size: 100, - query: '', - eventCategoryField: 'event.category', - timestampField: '@timestamp', - }, - savedSearchId: null, - }; - - // Update the timeline - const updatedTimelineResponse = await this.updateTimeline(timelineId, timelineUpdate, version); - - this.log.info('Created timeline:'); - this.log.indent(4, () => { - this.log.info(JSON.stringify(updatedTimelineResponse)); - }); - - return updatedTimelineResponse; - } - - async updateTimeline( - timelineId: string, - updates: SavedTimeline, - version: string - ): Promise { - return await this.supertest - .patch(TIMELINE_URL) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .send({ - timelineId, - version, - timeline: updates, - }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body as PatchTimelineResponse); - } - - /** Deletes a timeline using it timeline id */ - async deleteTimeline(id: string | string[]) { - await this.supertest - .delete(TIMELINE_URL) - .set('kbn-xsrf', 'true') - .set('elastic-api-version', '2023-10-31') - .send({ - savedObjectIds: Array.isArray(id) ? id : [id], - }) - .then(this.getHttpResponseFailureHandler()) - .then((response) => response.body); - } - - /** - * Get the KQL query that will filter the content of a timeline to display Endpoint alerts - * @param endpointAgentId - */ - getEndpointAlertsKqlQuery(endpointAgentId?: string): { - expression: string; - esQuery: ReturnType; - } { - const expression = [ - 'agent.type: "endpoint"', - 'kibana.alert.rule.uuid : *', - ...(endpointAgentId ? [`agent.id: "${endpointAgentId}"`] : []), - ].join(' AND '); - - const esQuery = toElasticsearchQuery(fromKueryExpression(expression)); - - return { - expression, - esQuery, - }; - } - - /** - * Crates a new Timeline and sets its `kqlQuery` so that Endpoint Alerts are displayed. - * Can be limited to an endpoint by providing its `agent.id` - * - * @param title - * @param endpointAgentId - */ - async createTimelineForEndpointAlerts( - title: string, - { - endpointAgentId, - }: Partial<{ - /** If defined, then only alerts from the specific `agent.id` will be displayed */ - endpointAgentId: string; - }> - ): Promise { - const newTimeline = await this.createTimeline(title); - - const { expression, esQuery } = this.getEndpointAlertsKqlQuery(endpointAgentId); - - const updatedTimeline = await this.updateTimeline( - newTimeline.savedObjectId, - { - title, - kqlQuery: { - filterQuery: { - kuery: { - kind: 'kuery', - expression, - }, - serializedQuery: JSON.stringify(esQuery), - }, - }, - savedSearchId: null, - }, - newTimeline.version - ); - - return updatedTimeline; - } -} diff --git a/x-pack/test/tsconfig.json b/x-pack/test/tsconfig.json index 58099d2271324..927d65f6c959f 100644 --- a/x-pack/test/tsconfig.json +++ b/x-pack/test/tsconfig.json @@ -25,26 +25,25 @@ ], "kbn_references": [ "@kbn/test-suites-src", - "@kbn/security-solution-plugin", - "@kbn/spaces-plugin", "@kbn/test", "@kbn/ftr-common-functional-services", "@kbn/expect", "@kbn/rule-data-utils", "@kbn/test-subj-selector", "@kbn/rison", - "@kbn/es-query", - "@kbn/core-http-common", "@kbn/dataset-quality-plugin", "@kbn/ftr-common-functional-ui-services", "@kbn/data-quality-plugin", + "@kbn/scout-info", + "@kbn/test-suites-xpack-platform", + "@kbn/ml-string-hash", + "@kbn/core-http-common", "@kbn/openapi-common", - "@kbn/securitysolution-lists-common", + "@kbn/spaces-plugin", "@kbn/securitysolution-exceptions-common", "@kbn/securitysolution-endpoint-exceptions-common", - "@kbn/osquery-plugin", - "@kbn/scout-info", - "@kbn/test-suites-xpack-platform", - "@kbn/ml-string-hash" + "@kbn/securitysolution-lists-common", + "@kbn/security-solution-plugin", + "@kbn/osquery-plugin" ] } diff --git a/x-pack/test_serverless/shared/services/deployment_agnostic_services.ts b/x-pack/test_serverless/shared/services/deployment_agnostic_services.ts index 4eaddca65be2c..b31a1e9e344e5 100644 --- a/x-pack/test_serverless/shared/services/deployment_agnostic_services.ts +++ b/x-pack/test_serverless/shared/services/deployment_agnostic_services.ts @@ -7,8 +7,6 @@ import { services as apiIntegrationServices } from '@kbn/test-suites-xpack/api_integration/services'; import { commonFunctionalServices } from '@kbn/ftr-common-functional-services'; -import { SecuritySolutionApiProvider } from '@kbn/test-suites-xpack/api_integration/services/security_solution_api.gen'; -import { SecuritySolutionApiProvider as SecuritySolutionExceptionsApiProvider } from '@kbn/test-suites-xpack/api_integration/services/security_solution_exceptions_api.gen'; import { services as platformApiIntegrationServices } from '@kbn/test-suites-xpack-platform/api_integration/services'; import { AlertingApiProvider } from './alerting_api'; import { UsageAPIProvider } from './usage_api'; @@ -45,7 +43,5 @@ export const services = { security, usageAPI: UsageAPIProvider, console, - securitySolutionApi: SecuritySolutionApiProvider, alertingApi: AlertingApiProvider, - securitySolutionExceptionsApi: SecuritySolutionExceptionsApiProvider, }; diff --git a/x-pack/test_serverless/tsconfig.json b/x-pack/test_serverless/tsconfig.json index 88f089a311026..0be0cd4402e28 100644 --- a/x-pack/test_serverless/tsconfig.json +++ b/x-pack/test_serverless/tsconfig.json @@ -42,7 +42,6 @@ "@kbn/es", "@kbn/reporting-common", "@kbn/slo-plugin", - "@kbn/search-types", "@kbn/test-suites-src", "@kbn/scout-info", "@kbn/test-suites-xpack-platform",