[APM] Transaction duration anomaly alerting integration #75719
Conversation
…uration anomalies.
|
Pinging @elastic/apm-ui (Team:apm) |
This comment has been minimized.
This comment has been minimized.
| const canReadAnomalies = !!( | ||
| isMlPluginEnabled && | ||
| capabilities.ml.canAccessML && | ||
| capabilities.ml.canGetJobs | ||
| ); |
There was a problem hiding this comment.
nit: looks like all three are booleans so there should be no reason to coerce with !!
There was a problem hiding this comment.
I added the double negative because the logical and expression returns the type of the last operand (capabilities.ml.canGetJobs) which is: boolean | Readonly<{[x: string]: boolean;}>. Without the double NOT operator, canReadAnomalies fails the type assignment for the canReadAnomalies prop of the AlertIntegrations component.
...pm/public/components/shared/TransactionDurationAnomalyAlertTrigger/SelectAnomalySeverity.tsx
Outdated
Show resolved
Hide resolved
x-pack/plugins/apm/public/components/shared/TransactionDurationAnomalyAlertTrigger/index.tsx
Outdated
Show resolved
Hide resolved
| onChange={(e) => | ||
| setAlertParams( | ||
| 'transactionType', | ||
| e.target.value as Params['transactionType'] |
There was a problem hiding this comment.
Would be nice to avoid as Params['transactionType']. Is it because e.target.value can be other types than string?
There was a problem hiding this comment.
We can probably safely avoid the type assertion. It's a holdover from TransactionDurationAlertTrigger which this component was based on.
| } | ||
| const alertParams = params as TypeOf<typeof paramsSchema>; | ||
| const mlClient = services.getLegacyScopedClusterClient(ml.mlClient); | ||
| const request = { params: 'DummyKibanaRequest' } as KibanaRequest; |
There was a problem hiding this comment.
Is "DummyKibanaRequest" some leftover boilerplate?
x-pack/plugins/apm/server/lib/service_map/get_service_anomalies.ts
Outdated
Show resolved
Hide resolved
| // to filter out legacy jobs we are filtering by the existence of `apm_ml_version` in `custom_settings` | ||
| // and checking that it is compatable. | ||
| const mlJobs = response.jobs.filter( | ||
| (job) => (job.custom_settings?.job_tags?.apm_ml_version ?? 0) >= 2 | ||
| ); | ||
| if (environment) { | ||
| if (environment && environment !== ENVIRONMENT_ALL) { |
There was a problem hiding this comment.
Was it a bug that we didn't take this into account previously?
also: this would go away if we got rid of "all" envs.
There was a problem hiding this comment.
This wasn't a bug before since the environment value was omitted (in the uiFilters object) when "All" was the selected environment filter. If we get rid of the "All" as a environment filter option from the alert creation overlay, then we can get rid of this. We could also omit this check if we do this check in the alert executor function up the call stack.
| // APM is using this service in anomaly alert, kibana alerting doesn't provide request object | ||
| // So we are adding a dummy request for now | ||
| // TODO: Remove this once kibana alerting provides request object | ||
| const hasMlCapabilities = | ||
| request.params !== 'DummyKibanaRequest' | ||
| ? getHasMlCapabilities(request) | ||
| : (_caps: string[]) => Promise.resolve(); |
There was a problem hiding this comment.
Okay, I see now why you used "DummyKibanaRequest". This doesn't seem like the right approach. Either request should be optional or we should not use anomalyDetectorsProvider. Passing in a dummy request object is going to cause confusion down the line I think.
There was a problem hiding this comment.
There was a problem hiding this comment.
@jgowdyelastic do i need to hold off on merging this PR until yours is merged first? LMK if i should make any changes to the DummyKibanaRequest pattern in the meantime.
There was a problem hiding this comment.
that PR is a few days away from being merged. so i'm happy incorporate and update the changes in this PR if you merge first.
…-detection-based-alerts
…d of the anomaly score.
…on/environment_filter_values - utilize getEnvironmentLabel in the alerting trigger components and added support for the 'All' label
| {label} | ||
| </EuiHealth> | ||
| ); | ||
| } |
There was a problem hiding this comment.
Nice with a dedicated component 👍
|
A possible bug: I noticed that the alerts popover doesn't close when the flyout is displayed.
I understand that because the anomaly detection job is on the environment, we have to write out the service name in the condition, but I also find it not useful for the end-user. The alerts are only currently available within the selected service view, so unless we're thinking of adding this alert type to the general APM view (no service selected), I think we can do with hiding it.
Example from duration threshold alert
Existing duration anomaly alert |
- default environment alert settings to the selected filter
… anomaly detection jobs - Removes Service name and transaction type from the set of expressions in the alerting setup
|
@formgeist, i reorganized the alerting menu to better support different alerting types for specific metrics: |
|
@elasticmachine merge upstream |
Looks good, I think this makes sense. Minor nit; would you remove the icons from the "Create..." options inside the nested menu? They don't really belong there any longer. |
|
@formgeist you suggested removing the service name read-only expression in the transaction duration anomaly alert setup. I also did the same for the transaction type since it will always be either |
|
@ogupte I had a think after our meeting yesterday, and this morning I put together some proposals for improvements. I don't want to unnecessarily block this PR, since what we have works. But in regards to the service name expression, I've suggested to keep it in order to allow for broader scoping of the alert. We discussed this yesterday briefly, but I've materialized the UX a bit more in my proposal #76068 Look forward to hear everyone's thoughts on these improvements. |
💚 Build SucceededBuild metrics@kbn/optimizer bundle module count
async chunks size
page load bundle size
distributable file count
History
To update your PR or re-run it, just comment with: |
* Closes elastic#72636. Adds alerting integration for APM transaction duration anomalies. * Code review feedback * Display alert summary with the selected anomaly severity label instead of the anomaly score. * - refactored ALL_OPTION and NOT_DEFINED_OPTION to be shared from common/environment_filter_values - utilize getEnvironmentLabel in the alerting trigger components and added support for the 'All' label * refactor get_all_environments to minimize exports and be more consistent and clean * - Reorg the alerts menu for different alert types (threshold/anomaly) - default environment alert settings to the selected filter * - Filters default transaction type to only those supported in the APM anomaly detection jobs - Removes Service name and transaction type from the set of expressions in the alerting setup * - remove bell icon from alerts menu * Adds target service back into the anomaly alert setup as a ready-only expression Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
#76224) * [APM] Transaction duration anomaly alerting integration (#75719) * Closes #72636. Adds alerting integration for APM transaction duration anomalies. * Code review feedback * Display alert summary with the selected anomaly severity label instead of the anomaly score. * - refactored ALL_OPTION and NOT_DEFINED_OPTION to be shared from common/environment_filter_values - utilize getEnvironmentLabel in the alerting trigger components and added support for the 'All' label * refactor get_all_environments to minimize exports and be more consistent and clean * - Reorg the alerts menu for different alert types (threshold/anomaly) - default environment alert settings to the selected filter * - Filters default transaction type to only those supported in the APM anomaly detection jobs - Removes Service name and transaction type from the set of expressions in the alerting setup * - remove bell icon from alerts menu * Adds target service back into the anomaly alert setup as a ready-only expression Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com> * Fixes prettier linting * Fixes prettier linting again Co-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>
…s-for-710 * 'master' of github.com:elastic/kibana: (43 commits) [APM] Chart units don't update when toggling the chart legends (elastic#74931) [ILM] Add support for frozen phase in UI (elastic#75968) Hides advanced json for count metric (elastic#74636) add client-side feature usage API (elastic#75486) [Maps] add drilldown support map embeddable (elastic#75598) [Enterprise Search] Request handler refactors/enhancements + update existing routes to use shared handler (elastic#76106) [Resolver] model `location.search` in redux (elastic#76140) [APM] Prevent imports of public in server code (elastic#75979) fix eslint issue skip flaky suite (elastic#76223) [APM] Transaction duration anomaly alerting integration (elastic#75719) [Transforms] Avoid using "Are you sure" (elastic#75932) [Security Solution][Exceptions] - Fix bug of alerts not updating after closure from exceptions modal (elastic#76145) [plugin-helpers] improve 3rd party KP plugin support (elastic#75019) [docs/getting-started] link to yarn v1 specifically (elastic#76169) [Security_Solution][Resolver] Resolver loading and error state (elastic#75600) Fixes App Search documentation links (elastic#76133) Fix alerts unable to create / update when the name has trailing whitepace(s) (elastic#76079) [Resolver] Fix useSelector usage (elastic#76129) [Enterprise Search] Migrate util and components from ent-search (elastic#76051) ... # Conflicts: # x-pack/plugins/index_lifecycle_management/public/application/sections/edit_policy/components/data_tier_allocation/node_allocation.tsx # x-pack/plugins/index_lifecycle_management/public/application/sections/edit_policy/edit_policy.tsx # x-pack/plugins/index_lifecycle_management/public/application/services/policies/types.ts # x-pack/plugins/index_lifecycle_management/public/application/services/policies/warm_phase.ts
|
Tests ok |
cauemarcondes
added
the
apm:test-plan-done
Closes #72636.
Adds alerting integration for APM transaction duration anomalies.