Add alert status for WARNING/CRITICAL

[alytkowski]

In the current Kibana rules configuration, it's possible to configure different thresholds for Metric rules for "Warning" and "Alert".

However, when the metric is above the Warning/Alert threshold, it is seen as the same in the Alerts section (the Alert Status - Active).

What I would suggest is to have different Alert status (Warning and Critical instead of "Active", which doesn't say much).
Also, the statuses should be coloured accordingly yellow/red for warning and critical.

[elasticmachine]

Pinging @elastic/actionable-observability (Team: Actionable Observability)

[elasticmachine]

Pinging @elastic/response-ops (Team:ResponseOps)

[XavierM]

@vinaychandrasekhar and @shanisagiv1, this issue sound to be more a product question than a fix that the engineer can provide.

[XavierM]

@alytkowski, I think the reason should give you the why of the existence of this alert.

[alytkowski]

Yes, that's right, but what is the point of the Warning threshold if Kibana doesn't show Warning and the alert is exactly the same for Warning/Alert.

[alytkowski]

@alytkowski, I think the reason should give you the why of the existence of this alert.

About the reason - It would be nice if users had the possibility to set a custom reason for every rule.

[XavierM]

@grabowskit What do you think?

[shanisagiv1]

@XavierM
I guess the "why" (e.g threshold violation) is diff than the severity (warning/critical) or the status (active/recovered). how is the warning/critical status saved today? Is it a separate field? Can we present it as a new column? Can we unify these fields so we'll have a single Status column : [Active, Active - Warning , Active - Critical, Recovered]. Thanks