Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution]'Export Selected' button is enabled for Pre-built elastic Rules #104582

Closed
ghost opened this issue Jul 7, 2021 · 7 comments
Closed

[Security Solution]'Export Selected' button is enabled for Pre-built elastic Rules #104582

ghost opened this issue Jul 7, 2021 · 7 comments
Labels
QA:Validated Issue has been validated by QA Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v7.14.0

Comments

@ghost
Copy link

ghost commented Jul 7, 2021

Description:
'Export Selected' button is enabled for Pre-built elastic Rules

Build Details:
Version: 7.14.0 BC1
Commit: 071a74e
Build: 42292
Artifact Page : https://staging.elastic.co/7.14.0-8eba2f5f/summary-7.14.0.html

Browser Details:
All

Preconditions:

  • Kibana Environment should exist.
  • Endpoint Security and elastic agent should be installed
  • Alerts should be generated

Steps to Reproduce:

  1. Navigate to 'Rules' tab under Security Solutions
  2. Click on 'Select all 553 rules' and click on 'Bulk Action' drop down menu.
  3. Observe that 'Export Selected' button is enabled for Pre-built elastic Rules

Actual Result:
'Export Selected' button is enabled for Pre-built elastic Rules.
Success message "Successfully exported 0 of 553 rules. Prebuilt rules were excluded from the resulting file." is getting displayed by clicking on 'Export Selected' button.

Screen-Cast
export

Expected Result:
'Export Selected' button should be disabled for Pre-built elastic Rules.

What's not working:

  • This issue is not occurring if user selects single or few Pre-built elastic rules.

What's working:

  • NA
@ghost ghost added bug Fixes for quality problems that affect the customer experience impact:high Addressing this issue will have a high level of impact on the quality/strength of our product. Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. labels Jul 7, 2021
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@ghost
Copy link
Author

ghost commented Jul 7, 2021

@manishgupta-qasource Please review!!

@ghost ghost mentioned this issue Jul 7, 2021
Closed
@manishgupta-qasource
Copy link

Reviewed & assigned to @MadameSheema

@MadameSheema MadameSheema added the Team:Detections and Resp Security Detection Response Team label Jul 7, 2021
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-detections-response (Team:Detections and Resp)

@MadameSheema
Copy link
Member

@peluja1012 @spong please note that this question is listed on elastic/security-team#1412 ticket, can we confirm if this is a bug or an expected behaviour? Thanks

ping @MikePaquette

@MadameSheema MadameSheema removed their assignment Jul 7, 2021
@spong spong added the v7.14.0 label Jul 8, 2021
@peluja1012
Copy link
Contributor

@spong @MadameSheema This is expected behavior as discussed in the original PR here. When users use the "select all" feature, we don't have an easy way to determine if "all" of the selected rules are prebuilt. However, when users select the current page or select individual rules, the "export" option should still be disabled appropriately for prebuilt rules.

@spong spong closed this as completed Jul 8, 2021
@spong spong removed bug Fixes for quality problems that affect the customer experience impact:high Addressing this issue will have a high level of impact on the quality/strength of our product. labels Jul 8, 2021
@ghost
Copy link
Author

ghost commented Jul 16, 2021
edited by ghost
Loading

Hi @madamsheema,

Thanks for the update!! We are considering this as expected behavior as mentioned in the comments!!

@ghost ghost added the QA:Validated Issue has been validated by QA label Jul 16, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
QA:Validated Issue has been validated by QA Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v7.14.0
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@peluja1012 @spong @elasticmachine @MadameSheema @manishgupta-qasource