[AO] Add alertDetailsUrl to infra rule types

.buildkite/ftr_configs.yml

@@ -169,6 +169,7 @@ enabled:
   - x-pack/test/alerting_api_integration/spaces_only/tests/alerting/group4/config.ts
   - x-pack/test/alerting_api_integration/spaces_only/tests/actions/config.ts
   - x-pack/test/alerting_api_integration/spaces_only/tests/action_task_params/config.ts
+  - x-pack/test/alerting_api_integration/observability/config.ts
   - x-pack/test/api_integration_basic/config.ts
   - x-pack/test/api_integration/config_security_basic.ts
   - x-pack/test/api_integration/config_security_trial.ts

.github/CODEOWNERS

@@ -969,6 +969,7 @@ x-pack/plugins/cloud_integrations/cloud_full_story/server/config.ts @elastic/kib
 
 # Response Ops team
 /x-pack/test/alerting_api_integration/ @elastic/response-ops
+/x-pack/test/alerting_api_integration/observability @elastic/actionable-observability
 /x-pack/test/plugin_api_integration/test_suites/task_manager/ @elastic/response-ops
 /x-pack/test/functional_with_es_ssl/apps/triggers_actions_ui/ @elastic/response-ops
 /docs/user/alerting/ @elastic/response-ops

x-pack/plugins/infra/server/lib/adapters/framework/adapter_types.ts

@@ -7,6 +7,7 @@
 
 import type * as estypes from '@elastic/elasticsearch/lib/api/typesWithBodyKey';
 import { Lifecycle } from '@hapi/hapi';
+import { SharePluginSetup } from '@kbn/share-plugin/server';
 import { UsageCollectionSetup } from '@kbn/usage-collection-plugin/server';
 import { JsonArray, JsonValue } from '@kbn/utility-types';
 import { RouteConfig, RouteMethod } from '@kbn/core/server';
@@ -31,6 +32,7 @@ export interface InfraServerPluginSetupDeps {
   features: FeaturesPluginSetup;
   ruleRegistry: RuleRegistryPluginSetupContract;
   observability: ObservabilityPluginSetup;
+  share: SharePluginSetup;
   spaces: SpacesPluginSetup;
   usageCollection: UsageCollectionSetup;
   visTypeTimeseries: VisTypeTimeseriesSetup;

x-pack/plugins/infra/server/lib/alerting/common/utils.ts

@@ -5,12 +5,14 @@
  * 2.0.
  */
 
+import moment from 'moment';
+import { AlertsLocatorParams } from '@kbn/observability-plugin/common';
+import { LocatorPublic } from '@kbn/share-plugin/common';
 import { isEmpty, isError } from 'lodash';
 import { schema } from '@kbn/config-schema';
 import { Logger, LogMeta } from '@kbn/logging';
 import type { ElasticsearchClient, IBasePath } from '@kbn/core/server';
 import { addSpaceIdToPath } from '@kbn/spaces-plugin/common';
-import { ObservabilityConfig } from '@kbn/observability-plugin/server';
 import { ALERT_RULE_PARAMETERS, TIMESTAMP } from '@kbn/rule-data-utils';
 import {
   ParsedTechnicalFields,
@@ -110,15 +112,6 @@ export const createScopedLogger = (
   };
 };
 
-export const getAlertDetailsPageEnabledForApp = (
-  config: ObservabilityConfig['unsafe']['alertDetails'] | null,
-  appName: keyof ObservabilityConfig['unsafe']['alertDetails']
-): boolean => {
-  if (!config) return false;
-
-  return config[appName].enabled;
-};
-
 export const getViewInInventoryAppUrl = ({
   basePath,
   criteria,
@@ -153,6 +146,27 @@ export const getViewInInventoryAppUrl = ({
 export const getViewInMetricsAppUrl = (basePath: IBasePath, spaceId: string) =>
   addSpaceIdToPath(basePath.publicBaseUrl, spaceId, LINK_TO_METRICS_EXPLORER);
 
+export const getAlertUrl = async (
+  alertUuid: string | null,
+  spaceId: string,
+  startedAt: string,
+  alertsLocator?: LocatorPublic<AlertsLocatorParams>,
+  publicBaseUrl?: string
+) => {
+  if (!publicBaseUrl || !alertsLocator || !alertUuid) return '';
+
+  const rangeFrom = moment(startedAt).subtract('5', 'minute').toISOString();
+
+  return (
+    await alertsLocator.getLocation({
+      baseUrl: publicBaseUrl,
+      spaceId,
+      kuery: `kibana.alert.uuid: "${alertUuid}"`,
+      rangeFrom,
+    })
+  ).path;
+};
+
 export const getAlertDetailsUrl = (
   basePath: IBasePath,
   spaceId: string,

x-pack/plugins/infra/server/lib/alerting/inventory_metric_threshold/inventory_metric_threshold_executor.ts

@@ -35,7 +35,7 @@ import {
   AdditionalContext,
   createScopedLogger,
   flattenAdditionalContext,
-  getAlertDetailsUrl,
+  getAlertUrl,
   getContextForRecoveredAlerts,
   getViewInInventoryAppUrl,
   UNGROUPED_FACTORY_KEY,
@@ -130,12 +130,18 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
           const actionGroupId = FIRED_ACTIONS.id; // Change this to an Error action group when able
           const reason = buildInvalidQueryAlertReason(params.filterQueryText);
           const alert = alertFactory(UNGROUPED_FACTORY_KEY, reason, actionGroupId);
-          const indexedStartedDate =
+          const indexedStartedAt =
             getAlertStartedDate(UNGROUPED_FACTORY_KEY) ?? startedAt.toISOString();
           const alertUuid = getAlertUuid(UNGROUPED_FACTORY_KEY);
 
           alert.scheduleActions(actionGroupId, {
-            alertDetailsUrl: getAlertDetailsUrl(libs.basePath, spaceId, alertUuid),
+            alertDetailsUrl: await getAlertUrl(
+              alertUuid,
+              spaceId,
+              indexedStartedAt,
+              libs.alertsLocator,
+              libs.basePath.publicBaseUrl
+            ),
             alertState: stateToAlertMessage[AlertStates.ERROR],
             group: UNGROUPED_FACTORY_KEY,
             metric: mapToConditionsLookup(criteria, (c) => c.metric),
@@ -146,7 +152,7 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
               basePath: libs.basePath,
               criteria,
               nodeType,
-              timestamp: indexedStartedDate,
+              timestamp: indexedStartedAt,
               spaceId,
             }),
           });
@@ -256,13 +262,19 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
             additionalContext,
             evaluationValues
           );
-          const indexedStartedDate = getAlertStartedDate(group) ?? startedAt.toISOString();
+          const indexedStartedAt = getAlertStartedDate(group) ?? startedAt.toISOString();
           const alertUuid = getAlertUuid(group);
 
           scheduledActionsCount++;
 
           const context = {
-            alertDetailsUrl: getAlertDetailsUrl(libs.basePath, spaceId, alertUuid),
+            alertDetailsUrl: await getAlertUrl(
+              alertUuid,
+              spaceId,
+              indexedStartedAt,
+              libs.alertsLocator,
+              libs.basePath.publicBaseUrl
+            ),
             alertState: stateToAlertMessage[nextState],
             group,
             reason,
@@ -276,7 +288,7 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
               basePath: libs.basePath,
               criteria,
               nodeType,
-              timestamp: indexedStartedDate,
+              timestamp: indexedStartedAt,
               spaceId,
             }),
             ...additionalContext,
@@ -290,14 +302,20 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
 
       for (const alert of recoveredAlerts) {
         const recoveredAlertId = alert.getId();
-        const indexedStartedDate = getAlertStartedDate(recoveredAlertId) ?? startedAt.toISOString();
+        const indexedStartedAt = getAlertStartedDate(recoveredAlertId) ?? startedAt.toISOString();
         const alertUuid = getAlertUuid(recoveredAlertId);
         const alertHits = alertUuid ? await getAlertByAlertUuid(alertUuid) : undefined;
         const additionalContext = getContextForRecoveredAlerts(alertHits);
         const originalActionGroup = getOriginalActionGroup(alertHits);
 
         alert.setContext({
-          alertDetailsUrl: getAlertDetailsUrl(libs.basePath, spaceId, alertUuid),
+          alertDetailsUrl: await getAlertUrl(
+            alertUuid,
+            spaceId,
+            indexedStartedAt,
+            libs.alertsLocator,
+            libs.basePath.publicBaseUrl
+          ),
           alertState: stateToAlertMessage[AlertStates.OK],
           group: recoveredAlertId,
           metric: mapToConditionsLookup(criteria, (c) => c.metric),
@@ -307,7 +325,7 @@ export const createInventoryMetricThresholdExecutor = (libs: InfraBackendLibs) =
             basePath: libs.basePath,
             criteria,
             nodeType,
-            timestamp: indexedStartedDate,
+            timestamp: indexedStartedAt,
             spaceId,
           }),
           originalAlertState: translateActionGroupToAlertState(originalActionGroup),

x-pack/plugins/infra/server/lib/alerting/inventory_metric_threshold/register_inventory_metric_threshold_rule_type.ts

@@ -41,11 +41,7 @@ import {
   valueActionVariableDescription,
   viewInAppUrlActionVariableDescription,
 } from '../common/messages';
-import {
-  getAlertDetailsPageEnabledForApp,
-  oneOfLiterals,
-  validateIsStringElasticsearchJSONFilter,
-} from '../common/utils';
+import { oneOfLiterals, validateIsStringElasticsearchJSONFilter } from '../common/utils';
 import {
   createInventoryMetricThresholdExecutor,
   FIRED_ACTIONS,
@@ -86,8 +82,6 @@ export async function registerMetricInventoryThresholdRuleType(
   alertingPlugin: PluginSetupContract,
   libs: InfraBackendLibs
 ) {
-  const config = libs.getAlertDetailsConfig();
-
   alertingPlugin.registerType({
     id: METRIC_INVENTORY_THRESHOLD_ALERT_TYPE_ID,
     name: i18n.translate('xpack.infra.metrics.inventory.alertName', {
@@ -118,15 +112,11 @@ export async function registerMetricInventoryThresholdRuleType(
       context: [
         { name: 'group', description: groupActionVariableDescription },
         { name: 'alertState', description: alertStateActionVariableDescription },
-        ...(getAlertDetailsPageEnabledForApp(config, 'metrics')
-          ? [
-              {
-                name: 'alertDetailsUrl',
-                description: alertDetailUrlActionVariableDescription,
-                usesPublicBaseUrl: true,
-              },
-            ]
-          : []),
+        {
+          name: 'alertDetailsUrl',
+          description: alertDetailUrlActionVariableDescription,
+          usesPublicBaseUrl: true,
+        },
         { name: 'reason', description: reasonActionVariableDescription },
         { name: 'timestamp', description: timestampActionVariableDescription },
         { name: 'value', description: valueActionVariableDescription },

x-pack/plugins/infra/server/lib/alerting/log_threshold/log_threshold_executor.ts

@@ -7,6 +7,7 @@
 
 import type * as estypes from '@elastic/elasticsearch/lib/api/typesWithBodyKey';
 import { i18n } from '@kbn/i18n';
+import { AlertsLocatorParams } from '@kbn/observability-plugin/common';
 import {
   ALERT_CONTEXT,
   ALERT_EVALUATION_THRESHOLD,
@@ -23,7 +24,9 @@ import {
   RuleExecutorServices,
   RuleTypeState,
 } from '@kbn/alerting-plugin/server';
+import { LocatorPublic } from '@kbn/share-plugin/common';
 import { addSpaceIdToPath } from '@kbn/spaces-plugin/common';
+import { asyncForEach } from '@kbn/std';
 
 import { ParsedTechnicalFields } from '@kbn/rule-registry-plugin/common';
 import { ParsedExperimentalFields } from '@kbn/rule-registry-plugin/common/parse_experimental_fields';
@@ -57,7 +60,7 @@ import { InfraBackendLibs } from '../../infra_types';
 import {
   AdditionalContext,
   flattenAdditionalContext,
-  getAlertDetailsUrl,
+  getAlertUrl,
   getContextForRecoveredAlerts,
   getGroupByObject,
   unflattenObject,
@@ -127,7 +130,7 @@ export const createLogThresholdExecutor = (libs: InfraBackendLibs) =>
       getAlertUuid,
       getAlertByAlertUuid,
     } = services;
-    const { basePath } = libs;
+    const { basePath, alertsLocator } = libs;
 
     const alertFactory: LogThresholdAlertFactory = (
       id,
@@ -168,7 +171,7 @@ export const createLogThresholdExecutor = (libs: InfraBackendLibs) =>
           viewInAppUrl,
         };
 
-        actions.forEach((actionSet) => {
+        asyncForEach(actions, async (actionSet) => {
           const { actionGroup, context } = actionSet;
 
           const alertInstanceId = (context.group || id) as string;
@@ -178,7 +181,13 @@ export const createLogThresholdExecutor = (libs: InfraBackendLibs) =>
           alert.scheduleActions(actionGroup, {
             ...sharedContext,
             ...context,
-            alertDetailsUrl: getAlertDetailsUrl(libs.basePath, spaceId, alertUuid),
+            alertDetailsUrl: await getAlertUrl(
+              alertUuid,
+              spaceId,
+              indexedStartedAt,
+              libs.alertsLocator,
+              libs.basePath.publicBaseUrl
+            ),
           });
         });
       }
@@ -234,6 +243,7 @@ export const createLogThresholdExecutor = (libs: InfraBackendLibs) =>
         startedAt,
         validatedParams,
         getAlertByAlertUuid,
+        alertsLocator,
       });
     } catch (e) {
       throw new Error(e);
@@ -997,6 +1007,7 @@ const processRecoveredAlerts = async ({
   startedAt,
   validatedParams,
   getAlertByAlertUuid,
+  alertsLocator,
 }: {
   basePath: IBasePath;
   getAlertStartedDate: (alertId: string) => string | null;
@@ -1008,6 +1019,7 @@ const processRecoveredAlerts = async ({
   getAlertByAlertUuid: (
     alertUuid: string
   ) => Promise<Partial<ParsedTechnicalFields & ParsedExperimentalFields> | null> | null;
+  alertsLocator?: LocatorPublic<AlertsLocatorParams>;
 }) => {
   const groupByKeysObjectForRecovered = getGroupByObject(
     validatedParams.groupBy,
@@ -1024,7 +1036,13 @@ const processRecoveredAlerts = async ({
     const viewInAppUrl = addSpaceIdToPath(basePath.publicBaseUrl, spaceId, relativeViewInAppUrl);
 
     const baseContext = {
-      alertDetailsUrl: getAlertDetailsUrl(basePath, spaceId, alertUuid),
+      alertDetailsUrl: await getAlertUrl(
+        alertUuid,
+        spaceId,
+        indexedStartedAt,
+        alertsLocator,
+        basePath.publicBaseUrl
+      ),
       group: hasGroupBy(validatedParams) ? recoveredAlertId : null,
       groupByKeys: groupByKeysObjectForRecovered[recoveredAlertId],
       timestamp: startedAt.toISOString(),

x-pack/plugins/infra/server/lib/alerting/log_threshold/register_log_threshold_rule_type.ts

@@ -15,7 +15,6 @@ import {
 } from '../../../../common/alerting/logs/log_threshold';
 import { InfraBackendLibs } from '../../infra_types';
 import { decodeOrThrow } from '../../../../common/runtime_types';
-import { getAlertDetailsPageEnabledForApp } from '../common/utils';
 import {
   alertDetailUrlActionVariableDescription,
   groupByKeysActionVariableDescription,
@@ -110,8 +109,6 @@ export async function registerLogThresholdRuleType(
     );
   }
 
-  const config = libs.getAlertDetailsConfig();
-
   alertingPlugin.registerType({
     id: LOG_DOCUMENT_COUNT_RULE_TYPE_ID,
     name: i18n.translate('xpack.infra.logs.alertName', {
@@ -144,15 +141,11 @@ export async function registerLogThresholdRuleType(
           name: 'denominatorConditions',
           description: denominatorConditionsActionVariableDescription,
         },
-        ...(getAlertDetailsPageEnabledForApp(config, 'logs')
-          ? [
-              {
-                name: 'alertDetailsUrl',
-                description: alertDetailUrlActionVariableDescription,
-                usesPublicBaseUrl: true,
-              },
-            ]
-          : []),
+        {
+          name: 'alertDetailsUrl',
+          description: alertDetailUrlActionVariableDescription,
+          usesPublicBaseUrl: true,
+        },
         {
           name: 'viewInAppUrl',
           description: viewInAppUrlActionVariableDescription,