[Monitoring] Added a case for Alerting if security/ssl is disabled#71846
[Monitoring] Added a case for Alerting if security/ssl is disabled#71846chrisronline merged 6 commits intoelastic:masterfrom
Conversation
igoristic
added
review
release_note:fix
Team:Monitoring
|
Pinging @elastic/stack-monitoring (Team:Monitoring) |
chrisronline
left a comment
chrisronline
left a comment
There was a problem hiding this comment.
Awesome, great work so far! I added a few suggestions/requests
x-pack/plugins/monitoring/server/lib/elasticsearch/verify_alerting_security.ts
Outdated
Show resolved
Hide resolved
x-pack/plugins/monitoring/server/routes/api/v1/alerts/enable.ts
Outdated
Show resolved
Hide resolved
💚 Build SucceededBuild metricsasync chunks size
History
To update your PR or re-run it, just comment with: |
| <div> | ||
| <p> | ||
| {i18n.translate('xpack.monitoring.healthCheck.tlsAndEncryptionError', { | ||
| defaultMessage: `You must enable Transport Layer Security between Kibana and Elasticsearch |
There was a problem hiding this comment.
I think we probably want to modify this message slightly since the user didn't do any explicit actions to enable alerting and will probably have no context.
There was a problem hiding this comment.
Good point! What do you think about:
Alerting features are not working, because your security is currently insufficient. Please enable Transport Layer Security between Kibana and Elasticsearch, and configure an encryption key in your kibana.yml file.
Any suggestions would be helpful
There was a problem hiding this comment.
I'm not sure honestly. cc @ravikesarwani @lcawl @gchaps for help here
| text: toMountPoint( | ||
| <div role="banner"> | ||
| {i18n.translate('xpack.monitoring.healthCheck.encryptionErrorBeforeKey', { | ||
| defaultMessage: 'To create an alert, set a value for ', |
There was a problem hiding this comment.
Again, like before, the user will not understand what this means because they aren't consciously enabling or interacting with alerts
There was a problem hiding this comment.
Ah you're right!
Wondering if we should just use one generic message from https://github.com/elastic/kibana/pull/71846/files#r455776054 if any of the two requirements (isSufficientlySecure, and hasPermanentEncryptionKey) are false?
There was a problem hiding this comment.
Yea I'm not sure what we want to say here. Something like "out of the box alerts require x, y, z. See {link} on how to configure this". Honestly, I'd default to @ravikesarwani @lcawl @gchaps for help here on the messaging
There was a problem hiding this comment.
Worked with @lcawl on the text. Does this work:
Alerting requires Transport Layer Security between Kibana and Elasticsearch and an encryption key in your kibana.yml file. Learn how to enable TLS.
where "Lean how to enable TLS" links to the documentation.
There was a problem hiding this comment.
Yea, I think that works. i'll open a new PR for this
chrisronline
left a comment
chrisronline
left a comment
There was a problem hiding this comment.
This functionally works, so let's merge it in. Can you create a follow up ticket to update the copy?
|
I'm going to merge this in so it's in the next BC |
…lastic#71846) * Added a case for Alerting if security/ssl is disabled * Code feedback * Fixed types
* master: [Maps] 7.9 documenation updates (elastic#71893) docs: ✏️ add "Explore underlying data" user docs (elastic#70807) [Security Solution][Exceptions] - Remove initial add exception item button in builder (elastic#72215) Fix indentation level in code exploration doc (elastic#72274) register graph usage (elastic#72041) [Monitoring] Added a case for Alerting if security/ssl is disabled (elastic#71846)
* master: [Observability] Remove app logos (elastic#72259) Fix float percentiles line chart (elastic#71902) update chromedriver to 84 (elastic#72228) [esArchiver] actually re-delete the .kibana index if we lose recreate race (elastic#72354) [Maps] convert SavedGisMap to TS (elastic#72286) [DOCS] Removes occurrences of X-Pack Security and Reporting (elastic#72302) use WORKSPACE env var for stack_functional_integration tests, fix navigate path (elastic#71908) [Monitoring] Fix issue with ES node detail status (elastic#72298) [SIEM] Updates consumer in export_rule archive (elastic#72324) [kbn/dev-utils] add RunWithCommands utility (elastic#72311) [Security Solution][Endpoint][Exceptions] Only write manifest to policy when there are changes (elastic#72000) skip flaky suite (elastic#72339) [ML] Fix annotations pagination & change labels from letters to numbers (elastic#72204) [Lens] Fix switching with layers (elastic#71982) [Maps] 7.9 documenation updates (elastic#71893) docs: ✏️ add "Explore underlying data" user docs (elastic#70807) [Security Solution][Exceptions] - Remove initial add exception item button in builder (elastic#72215) Fix indentation level in code exploration doc (elastic#72274) register graph usage (elastic#72041) [Monitoring] Added a case for Alerting if security/ssl is disabled (elastic#71846)
5 participants
Fixes: #71798
This was a slight oversight on our part with alerting. This basically ensures that the Monitoring ui still works if the security (or ssl) is disabled