[AO] - Add scaffolding and the main chart to the Logs threshold Alert Details page

[fkanout]

Summary

This is a kickoff PR; more PRs will follow up.

It closes #152738

Checklist

Delete any items that are not applicable to this PR.

• Any text added follows EUI's writing guidelines, uses sentence case text and includes i18n support
• Unit or functional tests were updated or added to match the most common scenarios

[kdelemme]

Are we not supposed to export the Props directly from the component file?

[maryam-saeidi]

Not sure if it is the same in the infra plugin.

[kdelemme]

oh yes indeed, it might be different

[maryam-saeidi]

Why is this optional?

[fkanout]

Because this is not used on the server side, it's used only if we define it for the Logs chart.

[maryam-saeidi]

From what I see, we use both on the server side: https://github.com/elastic/kibana/pull/153081/files#diff-a71ca536380c1fde8805744b23566ce795707f92b94a03af73347cac46ccac63R654-R655

[fkanout]

@maryam-saeidi, only the Alert Details page (frontend) will fill up the gte, which is sent to the server side.
Something to mention is ExecutionTimeRange is not only used to get the chart data (where we could use gte). But also in the log threshold executor (where gte is not used)

[kdelemme]

LGTM, If I want to test this locally, what feature flag do I need to enable?

[maryam-saeidi]

LGTM, If I want to test this locally, what feature flag do I need to enable?

xpack.observability.unsafe.alertDetails.logs.enabled

[maryam-saeidi]

When checked the chart, it first showed no data:

Then loading:

And then chart:

Is there a ticket to fix the loading?

[fkanout]

@maryam-saeidi here is the issue related to the no data message #153749

[tonyghiani]

LGTM, the main doubts were already covered by other comments (no-data chart) and I just left a nit totally non-blocking!
Thanks for this work!

[maryam-saeidi]

Checked locally, and it worked as expected.
I left some comments in the PR.

[maryam-saeidi]

From what I see, we use both on the server side: https://github.com/elastic/kibana/pull/153081/files#diff-a71ca536380c1fde8805744b23566ce795707f92b94a03af73347cac46ccac63R654-R655

[maryam-saeidi]

You don't use these two fields in this PR:

  timeZone: string;
  setAlertSummaryFields: React.Dispatch<React.SetStateAction<AlertSummaryField[] | undefined>>;

[fkanout]

@maryam-saeidi, Really! 😄 Okay, I will delete them.

[maryam-saeidi]

Is this interface needed? There is also one in alerting/logs/log_threshold/types

[fkanout]

Yes. One with gte required a type for the frontend, and the other one gte is optional for backend.

[maryam-saeidi]

Since we might have gte shall we add a test for that case too?

  const to = executionTimeRange?.lte || Date.now();
  const from = executionTimeRange?.gte || to - intervalAsMs;

[fkanout]

@maryam-saeidi, no need here. The executor doesn't use gte

[fkanout]

@elasticmachine merge upstream

[maryam-saeidi]

LGTM! 👍🏻

[kibana-ci]

💛 Build succeeded, but was flaky

• Buildkite Build
• Commit: a065a5f

Failed CI Steps

• FTR Configs #36

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id	before	after	diff
infra	1291	1292	+1

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
infra	1.3MB	1.4MB	+11.7KB

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id	before	after	diff
infra	88.0KB	88.3KB	+207.0B

Unknown metric groups

async chunk count

id	before	after	diff
infra	24	25	+1

ESLint disabled line counts

id	before	after	diff
infra	47	48	+1
securitySolution	433	436	+3
total			+4

Total ESLint disabled count

id	before	after	diff
infra	55	56	+1
securitySolution	513	516	+3
total			+4

History

• 💔 Build #116026 failed 138972a
• 💚 Build #115318 succeeded 2d9831e
• 💚 Build #115028 succeeded 06a0bd4
• 💔 Build #115016 failed f402c01
• 💔 Build #114959 failed c13fdf0

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @fkanout