From a93605f7d1b7eaea520f3a2db5e5b98fbc4062c8 Mon Sep 17 00:00:00 2001 From: Joanne Wang Date: Tue, 12 Mar 2024 16:48:49 -0700 Subject: [PATCH 1/2] add to maintainers (#1468) Signed-off-by: Joanne Wang --- .github/CODEOWNERS | 2 +- MAINTAINERS.md | 27 ++++++++++++++------------- 2 files changed, 15 insertions(+), 14 deletions(-) diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index fedf4e2db..ccc4f4350 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -1 +1 @@ -* @lezzago @AWSHurneyt @sbcd90 @eirsep @getsaurabh02 @praveensameneni @qreshi @bowenlan-amzn @rishabhmaurya @engechas @riysaxen-amzn +* @lezzago @AWSHurneyt @sbcd90 @eirsep @getsaurabh02 @praveensameneni @qreshi @bowenlan-amzn @rishabhmaurya @engechas @riysaxen-amzn @jowg-amazon diff --git a/MAINTAINERS.md b/MAINTAINERS.md index 5a9fb6e20..36286c643 100644 --- a/MAINTAINERS.md +++ b/MAINTAINERS.md @@ -4,19 +4,20 @@ This document contains a list of maintainers in this repo. See [opensearch-proje ## Current Maintainers -| Maintainer | GitHub ID | Affiliation | -|----------------------| ------------------------------------------------- |-------------| -| Ashish Agrawal | [lezzago](https://github.com/lezzago) | Amazon | -| Mohammad Qureshi | [qreshi](https://github.com/qreshi) | Amazon | -| Bowen Lan | [bowenlan-amzn](https://github.com/bowenlan-amzn) | Amazon | -| Saurabh Singh | [getsaurabh02](https://github.com/getsaurabh02) | Amazon | -| Rishabh Maurya | [rishabhmaurya](https://github.com/rishabhmaurya) | Amazon | -| Subhobrata DEY | [sbcd90](https://github.com/sbcd90) | Amazon | -| Surya Sashank Nistala | [eirsep](https://github.com/eirsep) | Amazon | -| Thomas Hurney | [AWSHurneyt](https://github.com/AWSHurneyt) | Amazon | -| Praveen Sameneni | [praveensameneni](https://github.com/praveensameneni) | Amazon | -| Chase Engelbrecht | [engechas](https://github.com/engechas) | Amazon | -| Riya Saxena | [riysaxen-amzn](https://github.com/riysaxen-amzn) | Amazon | +| Maintainer | GitHub ID | Affiliation | +|-----------------------|-------------------------------------------------------|-------------| +| Ashish Agrawal | [lezzago](https://github.com/lezzago) | Amazon | +| Mohammad Qureshi | [qreshi](https://github.com/qreshi) | Amazon | +| Bowen Lan | [bowenlan-amzn](https://github.com/bowenlan-amzn) | Amazon | +| Saurabh Singh | [getsaurabh02](https://github.com/getsaurabh02) | Amazon | +| Rishabh Maurya | [rishabhmaurya](https://github.com/rishabhmaurya) | Amazon | +| Subhobrata DEY | [sbcd90](https://github.com/sbcd90) | Amazon | +| Surya Sashank Nistala | [eirsep](https://github.com/eirsep) | Amazon | +| Thomas Hurney | [AWSHurneyt](https://github.com/AWSHurneyt) | Amazon | +| Praveen Sameneni | [praveensameneni](https://github.com/praveensameneni) | Amazon | +| Chase Engelbrecht | [engechas](https://github.com/engechas) | Amazon | +| Riya Saxena | [riysaxen-amzn](https://github.com/riysaxen-amzn) | Amazon | +| Joanne Wang | [jowg-amazon](https://github.com/jowg-amazon) | Amazon | ## Emeritus From ba84d04d56fcbd8eb1ae0c9c35cb9fb6b432afbc Mon Sep 17 00:00:00 2001 From: Riya <69919272+riysaxen-amzn@users.noreply.github.com> Date: Wed, 13 Mar 2024 08:04:00 -0700 Subject: [PATCH 2/2] Findings API Enhancements changes and integ tests fix (#1464) * solution to fix integ tests Signed-off-by: Riya Saxena * fix flaky DocumentMonitor Runner tests Signed-off-by: Riya Saxena * fix findings API enhancemnts Signed-off-by: Riya Saxena --------- Signed-off-by: Riya Saxena --- .../resthandler/RestGetFindingsAction.kt | 6 +- .../transport/TransportGetFindingsAction.kt | 74 ++----------------- .../alerting/DocumentMonitorRunnerIT.kt | 6 +- 3 files changed, 10 insertions(+), 76 deletions(-) diff --git a/alerting/src/main/kotlin/org/opensearch/alerting/resthandler/RestGetFindingsAction.kt b/alerting/src/main/kotlin/org/opensearch/alerting/resthandler/RestGetFindingsAction.kt index 1270e3cab..75607a701 100644 --- a/alerting/src/main/kotlin/org/opensearch/alerting/resthandler/RestGetFindingsAction.kt +++ b/alerting/src/main/kotlin/org/opensearch/alerting/resthandler/RestGetFindingsAction.kt @@ -45,8 +45,6 @@ class RestGetFindingsAction : BaseRestHandler() { val size = request.paramAsInt("size", 20) val startIndex = request.paramAsInt("startIndex", 0) val searchString = request.param("searchString", "") - val severity: String? = request.param("severity", "ALL") - val detectionType: String? = request.param("detectionType", "rules") val table = Table( sortOrder, @@ -59,9 +57,7 @@ class RestGetFindingsAction : BaseRestHandler() { val getFindingsSearchRequest = GetFindingsRequest( findingID, - table, - severity, - detectionType + table ) return RestChannelConsumer { channel -> diff --git a/alerting/src/main/kotlin/org/opensearch/alerting/transport/TransportGetFindingsAction.kt b/alerting/src/main/kotlin/org/opensearch/alerting/transport/TransportGetFindingsAction.kt index 0357889aa..479f5e09d 100644 --- a/alerting/src/main/kotlin/org/opensearch/alerting/transport/TransportGetFindingsAction.kt +++ b/alerting/src/main/kotlin/org/opensearch/alerting/transport/TransportGetFindingsAction.kt @@ -40,6 +40,7 @@ import org.opensearch.commons.alerting.model.FindingWithDocs import org.opensearch.commons.utils.recreateObject import org.opensearch.core.action.ActionListener import org.opensearch.core.common.Strings +import org.opensearch.core.common.io.stream.NamedWriteableRegistry import org.opensearch.core.xcontent.NamedXContentRegistry import org.opensearch.core.xcontent.XContentParser import org.opensearch.core.xcontent.XContentParserUtils @@ -62,7 +63,8 @@ class TransportGetFindingsSearchAction @Inject constructor( clusterService: ClusterService, actionFilters: ActionFilters, val settings: Settings, - val xContentRegistry: NamedXContentRegistry + val xContentRegistry: NamedXContentRegistry, + val namedWriteableRegistry: NamedWriteableRegistry ) : HandledTransportAction ( AlertingActions.GET_FINDINGS_ACTION_NAME, transportService, actionFilters, ::GetFindingsRequest ), @@ -80,11 +82,8 @@ class TransportGetFindingsSearchAction @Inject constructor( actionListener: ActionListener ) { val getFindingsRequest = request as? GetFindingsRequest - ?: recreateObject(request) { GetFindingsRequest(it) } + ?: recreateObject(request, namedWriteableRegistry) { GetFindingsRequest(it) } val tableProp = getFindingsRequest.table - val severity = getFindingsRequest.severity - val detectionType = getFindingsRequest.detectionType - val searchString = tableProp.searchString val sortBuilder = SortBuilders .fieldSort(tableProp.sortString) @@ -101,79 +100,16 @@ class TransportGetFindingsSearchAction @Inject constructor( .seqNoAndPrimaryTerm(true) .version(true) - val queryBuilder = QueryBuilders.boolQuery() + val queryBuilder = getFindingsRequest.boolQueryBuilder ?: QueryBuilders.boolQuery() if (!getFindingsRequest.findingId.isNullOrBlank()) queryBuilder.filter(QueryBuilders.termQuery("_id", getFindingsRequest.findingId)) - - if (!getFindingsRequest.findingIds.isNullOrEmpty()) { - queryBuilder.filter(QueryBuilders.termsQuery("id", getFindingsRequest.findingIds)) - } - if (getFindingsRequest.monitorId != null) { queryBuilder.filter(QueryBuilders.termQuery("monitor_id", getFindingsRequest.monitorId)) } else if (getFindingsRequest.monitorIds.isNullOrEmpty() == false) { queryBuilder.filter(QueryBuilders.termsQuery("monitor_id", getFindingsRequest.monitorIds)) } - if (getFindingsRequest.startTime != null && getFindingsRequest.endTime != null) { - val startTime = getFindingsRequest.startTime!!.toEpochMilli() - val endTime = getFindingsRequest.endTime!!.toEpochMilli() - val timeRangeQuery = QueryBuilders.rangeQuery("timestamp") - .from(startTime) // Greater than or equal to start time - .to(endTime) // Less than or equal to end time - queryBuilder.filter(timeRangeQuery) - } - - if (!detectionType.isNullOrBlank()) { - val nestedQueryBuilder = QueryBuilders.nestedQuery( - "queries", - when { - detectionType.equals("threat", ignoreCase = true) -> { - QueryBuilders.boolQuery().filter( - QueryBuilders.prefixQuery("queries.id", "threat_intel_") - ) - } - else -> { - QueryBuilders.boolQuery().mustNot( - QueryBuilders.prefixQuery("queries.id", "threat_intel_") - ) - } - }, - ScoreMode.None - ) - - // Add the nestedQueryBuilder to the main queryBuilder - queryBuilder.must(nestedQueryBuilder) - } - - if (!searchString.isNullOrBlank()) { - queryBuilder - .should(QueryBuilders.matchQuery("index", searchString)) - .should( - QueryBuilders.nestedQuery( - "queries", - QueryBuilders.matchQuery("queries.tags", searchString), - ScoreMode.None - ) - ) - .should(QueryBuilders.regexpQuery("monitor_name", searchString + ".*")) - .minimumShouldMatch(1) - } - - if (!severity.isNullOrBlank()) { - queryBuilder - .must( - QueryBuilders.nestedQuery( - "queries", - QueryBuilders.boolQuery().should( - QueryBuilders.matchQuery("queries.tags", severity) - ), - ScoreMode.None - ) - ) - } - if (!tableProp.searchString.isNullOrBlank()) { queryBuilder .should( diff --git a/alerting/src/test/kotlin/org/opensearch/alerting/DocumentMonitorRunnerIT.kt b/alerting/src/test/kotlin/org/opensearch/alerting/DocumentMonitorRunnerIT.kt index cc65aa849..69b40e021 100644 --- a/alerting/src/test/kotlin/org/opensearch/alerting/DocumentMonitorRunnerIT.kt +++ b/alerting/src/test/kotlin/org/opensearch/alerting/DocumentMonitorRunnerIT.kt @@ -2119,8 +2119,10 @@ class DocumentMonitorRunnerIT : AlertingRestTestCase() { val findings = searchFindings(monitor) assertEquals("Findings saved for test monitor", 2, findings.size) - assertTrue("Findings saved for test monitor", findings[0].relatedDocIds.contains("1")) - assertTrue("Findings saved for test monitor", findings[1].relatedDocIds.contains("5")) + val findings0 = findings[0].relatedDocIds.contains("1") || findings[0].relatedDocIds.contains("5") + val findings1 = findings[1].relatedDocIds.contains("5") || findings[1].relatedDocIds.contains("1") + assertTrue("Findings saved for test monitor", findings0) + assertTrue("Findings saved for test monitor", findings1) } fun `test document-level monitor when index alias contain docs that do match a NOT EQUALS query and EXISTS query`() {