[Metrics Alerts] Fix alerting on a rate aggregation (#58789) (#58926)

Co-authored-by: Elastic Machine <[email protected]> Co-authored-by: Elastic Machine <[email protected]>
elastic · Feb 28, 2020 · b8f673b · b8f673b
1 parent 36651d8
commit b8f673b
Showing 1 changed file with 13 additions and 7 deletions.
diff --git a/...lugins/infra/server/lib/alerting/metric_threshold/register_metric_threshold_alert_type.ts b/...lugins/infra/server/lib/alerting/metric_threshold/register_metric_threshold_alert_type.ts
@@ -6,6 +6,7 @@
 import uuid from 'uuid';
 import { i18n } from '@kbn/i18n';
 import { schema } from '@kbn/config-schema';
+import { networkTraffic } from '../../../../common/inventory_models/shared/metrics/snapshot/network_traffic';
 import {
   MetricExpressionParams,
   Comparator,
@@ -26,6 +27,17 @@ async function getMetric(
   { metric, aggType, timeUnit, timeSize, indexPattern }: MetricExpressionParams
 ) {
   const interval = `${timeSize}${timeUnit}`;
+  const aggregations =
+    aggType === 'rate'
+      ? networkTraffic('aggregatedValue', metric)
+      : {
+          aggregatedValue: {
+            [aggType]: {
+              field: metric,
+            },
+          },
+        };
+
   const searchBody = {
     query: {
       bool: {
@@ -50,13 +62,7 @@ async function getMetric(
           field: '@timestamp',
           fixed_interval: interval,
         },
-        aggregations: {
-          aggregatedValue: {
-            [aggType]: {
-              field: metric,
-            },
-          },
-        },
+        aggregations,
       },
     },
   };