[SIEM][Lists] Adds test mocks and README.md to the lists plugin

## Summary

* #67675
* Adds README.md to the lists plugin
* Adds the mocks to the server side of the lists plugin
* Changes out the SIEM code to use the mocks now that they are within the plugin

### Checklist

Delete any items that are not applicable to this PR.

- [x] Any text added follows [EUI's writing guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses sentence case text and includes [i18n support](https://github.com/elastic/kibana/blob/master/packages/kbn-i18n/README.md)
- [x] [Documentation](https://github.com/elastic/kibana/blob/master/CONTRIBUTING.md#writing-documentation) was added for features that require explanation or tutorials
- [x] [Unit or functional tests](https://github.com/elastic/kibana/blob/master/CONTRIBUTING.md#cross-browser-compatibility) were updated or added to match the most common scenarios

x-pack/plugins/lists/README.md

@@ -0,0 +1,254 @@
+README.md for developers working on the backend lists on how to get started
+using the CURL scripts in the scripts folder.
+
+The scripts rely on CURL and jq:
+
+- [CURL](https://curl.haxx.se)
+- [jq](https://stedolan.github.io/jq/)
+
+Install curl and jq (mac instructions)
+
+```sh
+brew update
+brew install curl
+brew install jq
+```
+
+Open `$HOME/.zshrc` or `${HOME}.bashrc` depending on your SHELL output from `echo $SHELL`
+and add these environment variables:
+
+```sh
+export ELASTICSEARCH_USERNAME=${user}
+export ELASTICSEARCH_PASSWORD=${password}
+export ELASTICSEARCH_URL=https://${ip}:9200
+export KIBANA_URL=http://localhost:5601
+export TASK_MANAGER_INDEX=.kibana-task-manager-${your user id}
+export KIBANA_INDEX=.kibana-${your user id}
+```
+
+source `$HOME/.zshrc` or `${HOME}.bashrc` to ensure variables are set:
+
+```sh
+source ~/.zshrc
+```
+
+Open your `kibana.dev.yml` file and add these lines:
+
+```sh
+# Enable lists feature
+xpack.lists.enabled: true
+xpack.lists.listIndex: '.lists-frank'
+xpack.lists.listItemIndex: '.items-frank'
+```
+
+Restart Kibana and ensure that you are using `--no-base-path` as changing the base path is a feature but will
+get in the way of the CURL scripts written as is.
+
+Go to the scripts folder `cd kibana/x-pack/plugins/lists/server/scripts` and run:
+
+```sh
+./hard_reset.sh
+./post_list.sh
+```
+
+which will:
+
+- Delete any existing lists you have
+- Delete any existing list items you have
+- Delete any existing exception lists you have
+- Delete any existing exception list items you have
+- Delete any existing mapping, policies, and templates, you might have previously had.
+- Add the latest list and list item index and its mappings using your settings from `kibana.dev.yml` environment variable of `xpack.lists.listIndex` and `xpack.lists.listItemIndex`.
+- Posts the sample list from `./lists/new/list_ip.json`
+
+Now you can run
+
+```sh
+./post_list.sh
+```
+
+You should see the new list created like so:
+
+```sh
+{
+  "id": "list-ip",
+  "created_at": "2020-05-28T19:15:22.344Z",
+  "created_by": "yo",
+  "description": "This list describes bad internet ip",
+  "name": "Simple list with an ip",
+  "tie_breaker_id": "c57efbc4-4977-4a32-995f-cfd296bed521",
+  "type": "ip",
+  "updated_at": "2020-05-28T19:15:22.344Z",
+  "updated_by": "yo"
+}
+```
+
+You can add a list item like so:
+
+```sh
+ ./post_list_item.sh
+```
+
+You should see the new list item created and attached to the above list like so:
+
+```sh
+{
+  "id": "hand_inserted_item_id",
+  "type": "ip",
+  "value": "127.0.0.1",
+  "created_at": "2020-05-28T19:15:49.790Z",
+  "created_by": "yo",
+  "list_id": "list-ip",
+  "tie_breaker_id": "a881bf2e-1e17-4592-bba8-d567cb07d234",
+  "updated_at": "2020-05-28T19:15:49.790Z",
+  "updated_by": "yo"
+}
+```
+
+If you want to post an exception list it would be like so:
+
+```sh
+./post_exception_list.sh
+```
+
+You should see the new exception list created like so:
+
+```sh
+{
+  "_tags": [
+    "endpoint",
+    "process",
+    "malware",
+    "os:linux"
+  ],
+  "created_at": "2020-05-28T19:16:31.052Z",
+  "created_by": "yo",
+  "description": "This is a sample endpoint type exception",
+  "id": "bcb94680-a117-11ea-ad9d-c71f4820e65b",
+  "list_id": "endpoint_list",
+  "name": "Sample Endpoint Exception List",
+  "namespace_type": "single",
+  "tags": [
+    "user added string for a tag",
+    "malware"
+  ],
+  "tie_breaker_id": "86e08c8c-c970-4b08-a6e2-cdba7bb4e023",
+  "type": "endpoint",
+  "updated_at": "2020-05-28T19:16:31.080Z",
+  "updated_by": "yo"
+}
+```
+
+And you can attach exception list items like so:
+
+```ts
+{
+  "_tags": [
+    "endpoint",
+    "process",
+    "malware",
+    "os:linux"
+  ],
+  "comment": [],
+  "created_at": "2020-05-28T19:17:21.099Z",
+  "created_by": "yo",
+  "description": "This is a sample endpoint type exception",
+  "entries": [
+    {
+      "field": "actingProcess.file.signer",
+      "operator": "included",
+      "match": "Elastic, N.V."
+    },
+    {
+      "field": "event.category",
+      "operator": "included",
+      "match_any": [
+        "process",
+        "malware"
+      ]
+    }
+  ],
+  "id": "da8d3b30-a117-11ea-ad9d-c71f4820e65b",
+  "item_id": "endpoint_list_item",
+  "list_id": "endpoint_list",
+  "name": "Sample Endpoint Exception List",
+  "namespace_type": "single",
+  "tags": [
+    "user added string for a tag",
+    "malware"
+  ],
+  "tie_breaker_id": "21f84703-9476-4af8-a212-aad31e18dcb9",
+  "type": "simple",
+  "updated_at": "2020-05-28T19:17:21.123Z",
+  "updated_by": "yo"
+}
+```
+
+You can then do find for each one like so:
+
+```sh
+./find_lists.sh
+```
+
+```sh
+{
+  "cursor": "WzIwLFsiYzU3ZWZiYzQtNDk3Ny00YTMyLTk5NWYtY2ZkMjk2YmVkNTIxIl1d",
+  "data": [
+    {
+      "id": "list-ip",
+      "created_at": "2020-05-28T19:15:22.344Z",
+      "created_by": "yo",
+      "description": "This list describes bad internet ip",
+      "name": "Simple list with an ip",
+      "tie_breaker_id": "c57efbc4-4977-4a32-995f-cfd296bed521",
+      "type": "ip",
+      "updated_at": "2020-05-28T19:15:22.344Z",
+      "updated_by": "yo"
+    }
+  ],
+  "page": 1,
+  "per_page": 20,
+  "total": 1
+}
+```
+
+or for finding exception lists:
+
+```sh
+./find_exception_lists.sh
+```
+
+```sh
+{
+  "data": [
+    {
+      "_tags": [
+        "endpoint",
+        "process",
+        "malware",
+        "os:linux"
+      ],
+      "created_at": "2020-05-28T19:16:31.052Z",
+      "created_by": "yo",
+      "description": "This is a sample endpoint type exception",
+      "id": "bcb94680-a117-11ea-ad9d-c71f4820e65b",
+      "list_id": "endpoint_list",
+      "name": "Sample Endpoint Exception List",
+      "namespace_type": "single",
+      "tags": [
+        "user added string for a tag",
+        "malware"
+      ],
+      "tie_breaker_id": "86e08c8c-c970-4b08-a6e2-cdba7bb4e023",
+      "type": "endpoint",
+      "updated_at": "2020-05-28T19:16:31.080Z",
+      "updated_by": "yo"
+    }
+  ],
+  "page": 1,
+  "per_page": 20,
+  "total": 1
+}
+```
+
+See the full scripts folder for all the capabilities.

x-pack/plugins/lists/common/schemas/response/exception_list_item_schema.mock.ts

@@ -0,0 +1,40 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { ExceptionListItemSchema } from './exception_list_item_schema';
+
+export const getExceptionListItemSchemaMock = (): ExceptionListItemSchema => ({
+  _tags: ['endpoint', 'process', 'malware', 'os:linux'],
+  comment: [],
+  created_at: '2020-04-23T00:19:13.289Z',
+  created_by: 'user_name',
+  description: 'This is a sample endpoint type exception',
+  entries: [
+    {
+      field: 'actingProcess.file.signer',
+      match: 'Elastic, N.V.',
+      match_any: undefined,
+      operator: 'included',
+    },
+    {
+      field: 'event.category',
+      match: undefined,
+      match_any: ['process', 'malware'],
+      operator: 'included',
+    },
+  ],
+  id: '1',
+  item_id: 'endpoint_list_item',
+  list_id: 'endpoint_list',
+  meta: {},
+  name: 'Sample Endpoint Exception List',
+  namespace_type: 'single',
+  tags: ['user added string for a tag', 'malware'],
+  tie_breaker_id: '77fd1909-6786-428a-a671-30229a719c1f',
+  type: 'simple',
+  updated_at: '2020-04-23T00:19:13.289Z',
+  updated_by: 'user_name',
+});

x-pack/plugins/lists/common/schemas/response/exception_list_schema.mock.ts

@@ -0,0 +1,24 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { ExceptionListSchema } from './exception_list_schema';
+
+export const getExceptionListSchemaMock = (): ExceptionListSchema => ({
+  _tags: ['endpoint', 'process', 'malware', 'os:linux'],
+  created_at: '2020-04-23T00:19:13.289Z',
+  created_by: 'user_name',
+  description: 'This is a sample endpoint type exception',
+  id: '1',
+  list_id: 'endpoint_list',
+  meta: {},
+  name: 'Sample Endpoint Exception List',
+  namespace_type: 'single',
+  tags: ['user added string for a tag', 'malware'],
+  tie_breaker_id: '77fd1909-6786-428a-a671-30229a719c1f',
+  type: 'endpoint',
+  updated_at: '2020-04-23T00:19:13.289Z',
+  updated_by: 'user_name',
+});

x-pack/plugins/lists/common/schemas/response/found_exception_list_item_schema.mock.ts

@@ -0,0 +1,15 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { getExceptionListItemSchemaMock } from './exception_list_item_schema.mock';
+import { FoundExceptionListItemSchema } from './found_exception_list_item_schema';
+
+export const getFoundExceptionListItemSchemaMock = (): FoundExceptionListItemSchema => ({
+  data: [getExceptionListItemSchemaMock()],
+  page: 1,
+  per_page: 1,
+  total: 1,
+});

x-pack/plugins/lists/common/schemas/response/found_exception_list_schema.mock.ts

@@ -0,0 +1,15 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { getExceptionListSchemaMock } from './exception_list_schema.mock';
+import { FoundExceptionListSchema } from './found_exception_list_schema';
+
+export const getFoundExceptionListSchemaMock = (): FoundExceptionListSchema => ({
+  data: [getExceptionListSchemaMock()],
+  page: 1,
+  per_page: 1,
+  total: 1,
+});

x-pack/plugins/lists/common/schemas/response/found_list_item_schema.mock.ts

@@ -0,0 +1,16 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { FoundListItemSchema } from './found_list_item_schema';
+import { getListItemResponseMock } from './list_item_schema.mock';
+
+export const getFoundListItemSchemaMock = (): FoundListItemSchema => ({
+  cursor: '123',
+  data: [getListItemResponseMock()],
+  page: 1,
+  per_page: 1,
+  total: 1,
+});

x-pack/plugins/lists/common/schemas/response/found_list_schema.mock.ts

@@ -0,0 +1,16 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License;
+ * you may not use this file except in compliance with the Elastic License.
+ */
+
+import { FoundListSchema } from './found_list_schema';
+import { getListResponseMock } from './list_schema.mock';
+
+export const getFoundListSchemaMock = (): FoundListSchema => ({
+  cursor: '123',
+  data: [getListResponseMock()],
+  page: 1,
+  per_page: 1,
+  total: 1,
+});