-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Security Solution] [Cases] Move field mappings from actions to cases #84587
[Security Solution] [Cases] Move field mappings from actions to cases #84587
Conversation
// eslint-disable-next-line react-hooks/exhaustive-deps | ||
}, []); | ||
}, [actionParams]); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
need to run editAction
with subActionParams
on mount in order to run error validation, but setting both with deps of []
creates a race condition and only one gets set. by checking for undefined values whenever the actionParams change, we can overcome the race condition
@elasticmachine merge upstream |
💚 Build SucceededMetrics [docs]Module Count
Async chunks
Distributable file count
Page load bundle
Saved Objects .kibana field count
History
To update your PR or re-run it, just comment with: |
}); | ||
}; | ||
|
||
export const transformFields = < |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Here @elastic/security-threat-hunting is the start of the migration we didn't catch
@@ -128,23 +72,13 @@ const pushToServiceHandler = async ({ | |||
}); | |||
} else { | |||
res = await externalService.createIncident({ | |||
incident: { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is the start of the missed migration @elastic/security-threat-hunting
comments = transformComments(caseComments, ['informationAdded']); | ||
} | ||
} | ||
return { incident, comments }; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is (part) of the end of the missed migration @elastic/security-threat-hunting
} = params as JiraPushToServiceApiParams['incident']; | ||
return { | ||
incident: { priority, labels, issueType, parent }, | ||
thirdPartyName: 'Jira', |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is (part) of the end of the missed migration @elastic/security-threat-hunting
Summary
Moves field mappings for case connectors (servicenow, jira, resilient) out of actions and into cases. Specifically:
incidentConfiguration
andisCaseOwned
from the config schema in each connectorincidentConfiguration
andisCaseOwned
from each action savedObject.types.ts
from within the cases folder inside built in actions.cases-connector-mappings
security_solution
(shown in gif below)builtin_action_types/case_mappings
folder.Part 3 of 3 in dynamic mappings coming soon, then thorough testing.
Checklist
Delete any items that are not applicable to this PR.