This directory serves as a centralized location to place the security solution tests that run in Serverless and ESS environments.
-
configstores base configurations specific to both the Serverless and ESS environments, These configurations build upon the base configuration provided byxpack/test_serverlessandx-pack-api_integrations, incorporating additional settings such as environment variables and tagging options. -
test_suitesdirectory now houses all the tests along with their utility functions. As an initial step, we have introduced thedetection_responsedirectory to consolidate all the integration tests related to detection and response APIs.
-
In this directory, Mocha tagging is utilized to assign tags to specific test suites and individual test cases. This tagging system enables the ability to selectively apply tags to test suites and test cases, facilitating the exclusion of specific test cases within a test suite as needed.
-
Test suites and cases are prefixed with specific tags to determine their execution in particular environments or to exclude them from specific environments.
-
We are using the following tags:
-
@ess: Runs in an ESS environment (on-prem installation) as part of the CI validation on PRs. -
@serverless: Runs in the first quality gate and in the periodic pipeline. -
@serverlessQA: Runs in the second quality gate. -
@skipInEss: Skipped for ESS environment. -
@skipInServerless: Skipped for all quality gates, CI and periodic pipeline. -
@skipInServerlessMKI: Skipped for all the MKI environments.
-
ex:
describe('@serverless @ess create_rules', () => { ==> tests in this suite will run in both Ess and Serverless
describe('creating rules', () => {});
// This test is skipped due to flakiness in serverless environments: https://github.com/elastic/kibana/issues/497777
describe('@skipInServerless missing timestamps', () => {}); ==> tests in this suite will be excluded in Serverless
- Within the
test_suitesdirectory, create a new area folder. - Introduce
ess.configandserverless.configfiles to reference the new test files and incorporate any additional custom properties defined in theCreateTestConfigOptionsinterface. - In these new configuration files, include references to the base configurations located under the config directory to inherit CI configurations, environment variables, and other settings.
- Append a new entry in the
ftr_configs.ymlfile to enable the execution of the newly added tests within the CI pipeline.
The default project type configuration in Serverless is complete. If for the needs of a test suite a different configuration is required, e.g. PLI - Essentials, the already mentioned configuration in the permalink does not work for MKI. The override is needed to be added in the ./scripts/api_configs.json file under the key with exact same name as the one of the script in package.json file which is running.
There are already configurations in the ./scripts/api_configs.json which you can follow in order to add yours when it is needed. The currently supported configuration, allows ONLY the PLIs to be configured. Thus, experimental feature flags are not yet supported and the test should be skipped until further notice.
NOTE: If a target script living in package.json file, does not require any further configuration, then the entry in ./scripts/api_configs.json file, can be omitted!
In the package.json file, you'll find commands to configure the server for each environment and to run tests against that specific environment. These commands adhere to the Mocha tagging system, allowing for the inclusion and exclusion of tags, mirroring the setup of the CI pipeline.
In this project, you can run various commands to execute tests and workflows, each of which can be customized by specifying different parameters. Below, how to define the commands based on the parameters and their order.
-
Server Initialization and running tests for ex: (Detections Response - Default License):
The command structure follows this pattern
-
<type>can be either "server" or "runner," allowing you to either set up the server or execute the tests against the designated server. -
<area>: The area the test is defined under, such as "detection_engine, entity_analytics,.." -
<licenseFolder>: The license folder the test is defined under such as "default_license, basic_license,..."- Command:
node ./scripts/index.js server detections_response default_license - Description: Initiates the server for the Detections Response area with the default license.
- Command:
node ./scripts/index.js runner detections_response default_license - Description: Runs the tests for the Detections Response area with the default license.
- Command:
-
-
Executes particular sets of test suites linked to the designated environment and license:
The command structure follows this pattern:
<folder>: The test folder or workflow you want to run.<projectType>: The type of project to pick the relevant configurations, either "serverless" or "ess."- "serverless" and "ess" help determine the configuration specific to the chosen test.
<environment>: The testing environment, such as "serverlessEnv," "essEnv," or "qaEnv."- When using "serverlessEnv,.." in the script, it appends the correct grep command for filtering tests in the serverless testing environment.
- "serverlessEnv,..." is used to customize the test execution based on the serverless environment.
Here are some command examples for "exceptions" which defined under the "detection_engine" area using the default license:
- Run the server for "exception_workflows" in the "serverlessEnv" environment:
npm run initialize-server:dr:default exceptions/workflows serverless
- To run tests for the "exception_workflows" using the serverless runner in the "serverlessEnv" environment, you can use the following command:
npm run run-tests:dr:default exceptions/workflows serverless serverlessEnv
- Run tests for "exception_workflows" using the serverless runner in the "qaEnv" environment:
npm run run-tests:dr:default exceptions/workflows serverless qaPeriodicEnv
- Run the server for "exception_workflows" in the "essEnv" environment:
npm run initialize-server:dr:default exceptions/workflows ess
- Run tests for "exception_workflows" using the ess runner in the "essEnv" environment:
npm run run-tests:dr:default exceptions/workflows ess essEnv
The supertest service is logged with the admin role by default on serverless. Ideally, every test that runs on serverless should use the most appropriate role.
The securitySolutionUtils helper exports the createSuperTest function, which accepts the role as a parameter.
You need to call createSuperTest from a lifecycle hook and wait for it to return the supertest instance.
All API calls using the returned instance will inject the required auth headers.
*On ESS, createSuperTest returns a basic supertest instance without headers.
import TestAgent from 'supertest/lib/agent';
export default ({ getService }: FtrProviderContext) => {
const utils = getService('securitySolutionUtils');
describe('@ess @serverless my_test', () => {
let supertest: TestAgent;
before(async () => {
supertest = await utils.createSuperTest('admin');
});
...If you need to use multiple roles in a single test, you can instantiate multiple supertest versions.
before(async () => {
adminSupertest = await utils.createSuperTest('admin');
viewerSupertest = await utils.createSuperTest('viewer');
});
...The helper keeps track of only one active session per role. So, if you instantiate supertest twice for the same role, the first instance will have an invalid API key.