Merge branch 'main' of github.com:elastic/kibana into detect-cookies

.github/CODEOWNERS

@@ -409,15 +409,13 @@
 /x-pack/plugins/security_solution/public/common/lib/endpoint*/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/public/common/components/endpoint/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/common/endpoint/ @elastic/security-onboarding-and-lifecycle-mgt
-/x-pack/plugins/security_solution/server/endpoint/routes/trusted_apps/ @elastic/security-onboarding-and-lifecycle-mgt
-/x-pack/plugins/security_solution/server/endpoint/routes/actions/ @elastic/security-onboarding-and-lifecycle-mgt
-/x-pack/plugins/security_solution/server/endpoint/routes/metadata/ @elastic/security-onboarding-and-lifecycle-mgt
-/x-pack/plugins/security_solution/server/endpoint/lib/policy/ @elastic/security-onboarding-and-lifecycle-mgt
+/x-pack/plugins/security_solution/server/endpoint/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/server/lib/license/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/server/fleet_integration/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/scripts/endpoint/event_filters/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/plugins/security_solution/scripts/endpoint/trusted_apps/ @elastic/security-onboarding-and-lifecycle-mgt
 /x-pack/test/security_solution_endpoint/apps/endpoint/ @elastic/security-onboarding-and-lifecycle-mgt
+/x-pack/test/security_solution_endpoint_api_int/ @elastic/security-onboarding-and-lifecycle-mgt
 
 ## Security Solution sub teams - security-telemetry (Data Engineering)
 x-pack/plugins/security_solution/server/usage/ @elastic/security-telemetry

docs/apm/api.asciidoc

@@ -11,6 +11,7 @@ Some APM app features are provided via a REST API:
 * <<agent-config-api>>
 * <<apm-annotation-api>>
 * <<rum-sourcemap-api>>
+* <<agent-key-api>>
 
 [float]
 [[apm-api-example]]
@@ -708,3 +709,105 @@ curl -X DELETE "http://localhost:5601/api/apm/sourcemaps/apm:foo-1.0.0-644fd5a9"
 --------------------------------------------------
 {}
 --------------------------------------------------
+
+////
+*******************************************************
+*******************************************************
+////
+
+[role="xpack"]
+[[agent-key-api]]
+=== APM agent Key API
+
+The Agent Key API allows you to configure agent keys to authorize requests from APM agents to the APM Server.
+
+The following Agent key APIs are available:
+
+* <<apm-create-agent-key>> to create an agent key
+
+[float]
+[[use-agent-key-api]]
+==== How to use APM APIs
+
+.Expand for required headers, privileges, and usage details
+[%collapsible%closed]
+======
+include::api.asciidoc[tag=using-the-APIs]
+======
+
+////
+*******************************************************
+////
+
+[[apm-create-agent-key]]
+==== Create agent key
+
+Create an APM agent key. Specify privileges in the request body at creation time.
+
+[[apm-create-agent-key-privileges]]
+===== Privileges
+
+Users must have at least the `manage_own_api_key` cluster privilege and the required application privileges.
+
+====== Example role:
+
+[source,js]
+--------------------------------------------------
+POST /_security/role/apm_agent_key_user
+{
+  "cluster": ["manage_own_api_key"], 
+  "applications": [{
+    "application": "apm",
+    "privileges": ["event:write", "sourcemap:write", "config_agent:read"],
+    "resources": ["*"]
+  }]
+}
+--------------------------------------------------
+
+[[apm-create-agent-key-req]]
+===== Request
+
+`POST /api/apm/agent_keys`
+
+[role="child_attributes"]
+[[apm-create-agent-key-req-body]]
+===== Request body
+
+`name`::
+(required, string) Name of the agent key.
+
+`privileges`::
+(required, array) APM agent key privileges. It can take one or more of the following values:
+
+  - `event:write`. Required for ingesting agent events.
+  - `config_agent:read`. Required for agents to read agent configuration remotely.
+  - `sourcemap:write`. Required for uploading sourcemaps.
+
+[[apm-agent-key-create-example]]
+===== Example
+
+[source,curl]
+--------------------------------------------------
+POST /api/apm/agent_keys
+{
+    "name": "apm-key",
+    "privileges": ["event:write", "config_agent:read", "sourcemap:write"]
+}
+--------------------------------------------------
+
+[[apm-agent-key-create-body]]
+===== Response body
+
+[source,js]
+--------------------------------------------------
+{
+  "agentKey": {
+    "id": "3DCLmn0B3ZMhLUa7WBG9",
+    "name": "apm-key",
+    "api_key": "PjGloCGOTzaZr8ilUPvkjA",
+    "encoded": "M0RDTG1uMEIzWk1oTFVhN1dCRzk6UGpHbG9DR09UemFacjhpbFVQdmtqQQ=="
+  }
+}
+--------------------------------------------------
+
+Once created, you can copy the API key (Base64 encoded) and use it to to authorize requests from APM agents to the APM Server.

docs/concepts/data-views.asciidoc

@@ -12,10 +12,10 @@ or all indices that contain your data.
 [[data-views-read-only-access]]
 === Required permissions
 
-* Access to *Data Views* requires the <<xpack-kibana-role-management, {kib} privilege>>
+* Access to *Data Views* requires the <<kibana-role-management, {kib} privilege>>
 `Data View Management`.
 
-* To create a data view, you must have the <<xpack-kibana-role-management,{es} privilege>>
+* To create a data view, you must have the <<kibana-role-management,{es} privilege>>
 `view_index_metadata`.
 
 * If a read-only indicator appears in {kib}, you have insufficient privileges

docs/development/core/public/kibana-plugin-core-public.doclinksstart.links.md

@@ -27,6 +27,9 @@ readonly links: {
         readonly cloud: {
             readonly indexManagement: string;
         };
+        readonly console: {
+            readonly guide: string;
+        };
         readonly dashboard: {
             readonly guide: string;
             readonly drilldowns: string;

docs/management/connectors/action-types/index.asciidoc

@@ -74,7 +74,7 @@ Example of the index document for Index Threshold rule:
     "rule_name": "{{ruleName}}",
     "alert_id": "{{alertId}}",
     "context_message": "{{context.message}}"
-} 
+}
 --------------------------------------------------
 
 Example of creating a test index using the API.
@@ -108,7 +108,7 @@ experimental[] {kib} offers a preconfigured index connector to facilitate indexi
 This functionality is experimental and may be changed or removed completely in a future release.
 ==================================================
 
-To use this connector, set the <<action-settings, `xpack.actions.preconfiguredAlertHistoryEsIndex`>> configuration to `true`. 
+To use this connector, set the <<action-settings, `xpack.actions.preconfiguredAlertHistoryEsIndex`>> configuration to `true`.
 
 ```js
   xpack.actions.preconfiguredAlertHistoryEsIndex: true
@@ -123,11 +123,11 @@ Documents are indexed using a preconfigured schema that captures the <<defining-
 
 [IMPORTANT]
 ==============================================
-To write documents to the preconfigured index, you must have `all` or `write` privileges to the `kibana-alert-history-*` indices. Refer to <<xpack-kibana-role-management>> for more information.
+To write documents to the preconfigured index, you must have `all` or `write` privileges to the `kibana-alert-history-*` indices. Refer to <<kibana-role-management>> for more information.
 ==============================================
 
 [NOTE]
 ==================================================
 The `kibana-alert-history-*` indices are not configured to use ILM so they must be maintained manually. If the index size grows large,
 consider using the {ref}/docs-delete-by-query.html[delete by query] API to clean up older documents in the index.
-==================================================
+==================================================

docs/maps/import-geospatial-data.asciidoc

@@ -17,7 +17,7 @@ The {stack-security-features} provide roles and privileges that control which us
 You can manage your roles, privileges, and
 spaces in **{stack-manage-app}** in {kib}. For more information, see
 {ref}/security-privileges.html[Security privileges],
-<<kibana-privileges, {kib} privileges>>, and <<xpack-kibana-role-management, {kib} role management>>.
+<<kibana-privileges, {kib} privileges>>, and <<kibana-role-management, {kib} role management>>.
 
 To upload GeoJSON files in {kib} with *Maps*, you must have:
 

docs/redirects.asciidoc

@@ -416,27 +416,32 @@ This content has moved. Refer to <<data-views-api-get>>.
 
 This content has moved. Refer to <<data-views-runtime-field-api-create>>.
 
-[role="exclude",id="index-patterns-runtime-field-api-delete]
+[role="exclude",id="index-patterns-runtime-field-api-delete"]
 == Index patterns has been renamed to data views.
 
 This content has moved. Refer to <<data-views-runtime-field-api-delete>>.
 
-[role="exclude",id="index-patterns-runtime-field-api-get]
+[role="exclude",id="index-patterns-runtime-field-api-get"]
 == Index patterns has been renamed to data views.
 
 This content has moved. Refer to <<data-views-runtime-field-api-get>>.
 
-[role="exclude",id="index-patterns-runtime-field-api-update]
+[role="exclude",id="index-patterns-runtime-field-api-update"]
 == Index patterns has been renamed to data views.
 
 This content has moved. Refer to <<data-views-runtime-field-api-update>>.
 
-[role="exclude",id="index-patterns-runtime-field-api-upsert]
+[role="exclude",id="index-patterns-runtime-field-api-upsert"]
 == Index patterns has been renamed to data views.
 
 This content has moved. Refer to <<data-views-runtime-field-api-upsert>>.
 
-[role="exclude",id="index-patterns-api-update]
+[role="exclude",id="index-patterns-api-update"]
 == Index patterns has been renamed to data views.
 
 This content has moved. Refer to <<data-views-api-update>>.
+
+[role="exclude",id="xpack-kibana-role-management"]
+== Kibana role management.
+
+This content has moved. Refer to <<kibana-role-management>>.

docs/user/dashboard/aggregation-based.asciidoc

@@ -114,7 +114,7 @@ Choose the type of visualization you want to create, then use the editor to conf
 
 . Add the <<aggregation-reference,aggregations>> you want to visualize using the editor, then click *Update*. 
 +
-NOTE: For the *Date Histogram* to use an *auto interval*, the date field must match the primary time field of the index pattern.
+NOTE: For the *Date Histogram* to use an *auto interval*, the date field must match the primary time field of the {data-source}.
 
 . To change the order, drag and drop the aggregations in the editor. 
 + 

docs/user/dashboard/lens-advanced.asciidoc

@@ -34,7 +34,7 @@ Open the visualization editor, then make sure the correct fields appear.
 
 . On the dashboard, click *Create visualization*.
 
-. Make sure the *kibana_sample_data_ecommerce* index appears, then set the <<set-time-filter,time filter>> to *Last 30 days*.
+. Make sure the *kibana_sample_data_ecommerce* {data-source} appears, then set the <<set-time-filter,time filter>> to *Last 30 days*.
 
 [discrete]
 [[custom-time-interval]]

docs/user/dashboard/lens.asciidoc

@@ -48,7 +48,7 @@ Choose the data you want to visualize.
 
 . If you want to learn more about the data a field contains, click the field.
 
-. To visualize more than one index pattern, click *Add layer > Add visualization layer*, then select the index pattern.
+. To visualize more than one {data-source}, click *Add layer > Add visualization layer*, then select the {data-source}.
 
 Edit and delete.
 
@@ -60,18 +60,18 @@ Edit and delete.
 [[change-the-fields]]
 ==== Change the fields list
 
-Change the fields list to display a different index pattern, different time range, or add your own fields.
+Change the fields list to display a different {data-source}, different time range, or add your own fields.
 
-* To create a visualization with fields in a different index pattern, open the *Index pattern* dropdown, then select the index pattern. 
+* To create a visualization with fields in a different {data-source}, open the *Data view* dropdown, then select the {data-source}. 
 
 * If the fields list is empty, change the <<set-time-filter,time filter>>.
 
-* To add fields, open the action menu (*...*) next to the *Index pattern* dropdown, then select *Add field to index pattern*.
+* To add fields, open the action menu (*...*) next to the *Data view* dropdown, then select *Add field to {data-source}*.
 +
 [role="screenshot"]
-image:images/runtime-field-menu.png[Dropdown menu located next to index pattern field with items for adding and managing fields, width=50%]
+image:images/runtime-field-menu.png[Dropdown menu located next to {data-source} field with items for adding and managing fields, width=50%]
 +
-For more information about adding fields to index patterns and examples, refer to <<runtime-fields>>.
+For more information about adding fields to {data-sources} and examples, refer to <<runtime-fields>>.
 
 [float]
 [[create-custom-tables]]
@@ -453,7 +453,7 @@ To configure the bounds, use the menus in the editor toolbar. Bar and area chart
 .*Is it possible to display icons in data tables?*
 [%collapsible]
 ====
-You can display icons with <<managing-index-patterns, field formatters>> in data tables.
+You can display icons with <<managing-data-views, field formatters>> in data tables.
 ====
 
 [discrete]

docs/user/dashboard/timelion.asciidoc

@@ -34,7 +34,7 @@ The fist parameter of the .es function is the parameter q (for query), which is
 .es(*)
 .es(q=*)
 
-Multiple parameters are separated by comma. The .es function has another parameter called index, that can be used to specify an index pattern for this series, so the query won't be executed again all indexes (or whatever you changed the above mentioned setting to).
+Multiple parameters are separated by a comma. The .es function has another parameter called index, that can be used to specify {a-data-source} for this series, so the query won't be executed against all indexes (or whatever you changed the setting to).
 
 .es(q=*, index=logstash-*)
 

docs/user/dashboard/tsvb.asciidoc

@@ -16,7 +16,7 @@ With *TSVB*, you can:
 image::images/tsvb-screenshot.png[TSVB overview]
 
 [float]
-[[tsvb-index-pattern-mode]]
+[[tsvb-data-view-mode]]
 ==== Open and set up TSVB
 
 Open *TSVB*, then configure the required settings. You can create *TSVB* visualizations with only {data-sources}, or {es} index strings. 
@@ -31,17 +31,19 @@ When you use only {data-sources}, you are able to:
 
 * Improve performance
 
+[[tsvb-index-pattern-mode]]
+
 IMPORTANT: Creating *TSVB* visualizations with an {es} index string is deprecated and will be removed in a future release. By default, you create *TSVB* visualizations with only {data-sources}. To use an {es} index string, contact your administrator, or go to <<advanced-options, Advanced Settings>> and set `metrics:allowStringIndices` to `true`.
 
 . On the dashboard, click *All types*, then select *TSVB*.
 
 . In *TSVB*, click *Panel options*, then specify the *Data* settings.
 
-. Open the *Index pattern selection mode* options next to the *Index pattern* dropdown.
+. Open the *Data view mode* options next to the *Data view* dropdown.
 
 . Select *Use only {kib} {data-sources}*.
 
-. From the *Index pattern* drodpown, select the {data-source}, then select the *Time field* and *Interval*.
+. From the *Data view* drodpown, select the {data-source}, then select the *Time field* and *Interval*.
 
 . Select a *Drop last bucket* option. 
 +
@@ -258,9 +260,9 @@ Calculating the duration between the start and end of an event is unsupported in
 [%collapsible]
 ====
 
-To group with multiple fields, create runtime fields in the index pattern you are visualizing.
+To group with multiple fields, create runtime fields in the {data-source} you are visualizing.
 
-. Create a runtime field. Refer to <<managing-index-patterns, *Manage index patterns data fields*>> for more information.
+. Create a runtime field. Refer to <<managing-data-views, Manage data views>> for more information.
 +
 [role="screenshot"]
 image::images/tsvb_group_by_multiple_fields.png[Group by multiple fields]

docs/user/dashboard/tutorial-create-a-dashboard-of-lens-panels.asciidoc

@@ -41,7 +41,7 @@ Open the visualization editor, then make sure the correct fields appear.
 . Make sure the *kibana_sample_data_logs* index appears.
 +
 [role="screenshot"]
-image::images/lens_indexPatternDropDown_7.16.png[Index pattern dropdown]
+image::images/lens_dataViewDropDown_8.0.png[Data view dropdown]
 
 To create the visualizations in this tutorial, you'll use the following fields:
 
@@ -96,7 +96,7 @@ image::images/lens_metricUniqueVisitors_7.16.png[Metric visualization that displ
 
 There are two shortcuts you can use to view metrics over time. 
 When you drag a numeric field to the workspace, the visualization editor adds the default
-time field from the index pattern. When you use the *Date histogram* function, you can
+time field from the {data-source}. When you use the *Date histogram* function, you can
 replace the time field by dragging the field to the workspace.
 
 To visualize the *bytes* field over time:

docs/user/dashboard/url-drilldown.asciidoc

@@ -202,7 +202,7 @@ Tip: Use in combination with <<helpers, date>> helper to format date.
 |
 | context.panel.indexPatternId +
 context.panel.indexPatternIds
-|Index pattern ids used by a panel.
+|The {data-source} IDs used by a panel.
 
 |
 | context.panel.savedObjectId

docs/user/dashboard/vega.asciidoc

@@ -10,7 +10,7 @@ URL, or static data, and support <<reference-for-kibana-extensions,{kib} extensi
 Use *Vega* or *Vega-Lite* when you want to create visualizations with:
 
 * Aggregations that use `nested` or `parent/child` mapping
-* Aggregations without an index pattern
+* Aggregations without {a-data-source}
 * Queries that use custom time filters
 * Complex calculations
 * Extracted data from _source instead of aggregations
@@ -73,7 +73,7 @@ index: kibana_sample_data_ecommerce
 
 A flat line appears with zero results.
 
-To add the data fields from the *kibana_sample_data_ecommerce* index, replace the following, then click *Update*:
+To add the data fields from the *kibana_sample_data_ecommerce* {data-source}, replace the following, then click *Update*:
 
 * `%timefield%: @timestamp` with `%timefield%: order_date`