Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] Make existing OpenAPI specs for Osquery API documentation-ready #183824

Closed
1 of 15 tasks
maximpn opened this issue May 20, 2024 · 3 comments
Closed
1 of 15 tasks

[Security Solution] Make existing OpenAPI specs for Osquery API documentation-ready #183824

maximpn opened this issue May 20, 2024 · 3 comments
Labels
8.16 candidate docs grooming Team:Defend Workflows “EDR Workflows” sub-team of Security Solution Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.

Comments

@maximpn
Copy link
Contributor

maximpn commented May 20, 2024
edited
Loading

Epic: https://github.com/elastic/security-team/issues/9527
Depends on: #183823

Deadline: Sep 24, 2024 (see milestones in https://github.com/elastic/security-team/issues/9400)

Summary

As part of the Serverless project, we need to make sure OpenAPI specs for all public Osquery API endpoints are polished and ready to be published on a documentation website. Please look for more context in the epic, and please find below what needs to be done exactly.

API endpoints

The following public API endpoints were discovered during research:

  • GET /api/osquery/live_queries
  • POST /api/osquery/live_queries
  • GET /api/osquery/live_queries/{id}
  • GET /api/osquery/live_queries/{id}/results/{actionId}
  • POST /api/osquery/packs
  • DELETE /api/osquery/packs/{id}
  • GET /api/osquery/packs
  • GET /api/osquery/packs/{id}
  • PUT /api/osquery/packs/{id}
  • POST /api/osquery/saved_queries
  • DELETE /api/osquery/saved_queries/{id}
  • GET /api/osquery/saved_queries
  • GET /api/osquery/saved_queries/{id}
  • PUT /api/osquery/saved_queries/{id}

To do

For all the Osquery API endpoints (including those above), in the corresponding OpenAPI specification files, please:

  • Add summaries for:
    • API endpoints
    • HTTP methods
  • Add descriptions for:
    • API endpoints
    • HTTP methods
    • endpoint's parameters
    • requests
    • responses
    • shared schemas
  • Add examples.
  • Add tags to group your endpoints in the docs (depends on: [Security Solution] Bundle root level tags  #183375)
  • Make sure the generated API reference documentation looks nice and correct on bump.sh.
  • Make sure the generated Serverless API reference documentation doesn't contain available only in ESS API endpoints.

Ask @maximpn to provide you with an example of a polished and documentation-ready OpenAPI spec. Please also ask @maximpn for a link to the generated API reference documentation (at the time of creating this ticket, it didn't exist).
@maximpn maximpn added docs Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Defend Workflows “EDR Workflows” sub-team of Security Solution Project:Serverless Work as part of the Serverless project for its initial release 8.16 candidate labels May 20, 2024
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-defend-workflows (Team:Defend Workflows)

@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@banderror banderror removed the Project:Serverless Work as part of the Serverless project for its initial release label Jun 4, 2024
This was referenced Aug 6, 2024
Closed
Closed
@banderror
Copy link
Contributor

I'm closing this ticket since the Osquery API docs have become available on elastic.co/docs/api/doc/serverless and elastic.co/docs/api/doc/kibana. Please open new tickets if any follow-up work is needed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
8.16 candidate docs grooming Team:Defend Workflows “EDR Workflows” sub-team of Security Solution Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@maximpn @banderror @dasansol92 @elasticmachine