-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
updating action config yields Unsupported state or unable to authenticate data
#40177
Comments
Pinging @elastic/kibana-stack-services |
wonder if this is somehow related to AAD w/encrypted saved objects, but I was poking through those bits yesterday and I think we've done the right thing there ... |
Appears to be AAD-related:
|
Also, appears we are doing "partial updates", and the result from an update and subsequent get are not the same. In the case below, the action has a config property of
|
fixes elastic#40177 Prior to this, the `actionTypeConfig` was not excluded from AAD when using encrypted saved objects in actions. https://github.com/elastic/kibana/blob/d0da71c2b4b154fe2efe86b44869c06709c15d14/x-pack/legacy/plugins/actions/server/init.ts#L31-L35 This caused a problem when updating values in the `actionTypeConfig`, as per issue elastic#40177 Also added `x-pack/test/functional/es_archives/actions/README.md` to explain how to get the id and encrypted value string, if this needs to be done again later, since it's a little tricky.
fixes elastic#40177 Prior to this, the `actionTypeConfig` was not excluded from AAD when using encrypted saved objects in actions. https://github.com/elastic/kibana/blob/d0da71c2b4b154fe2efe86b44869c06709c15d14/x-pack/legacy/plugins/actions/server/init.ts#L31-L35 This caused a problem when updating values in the `actionTypeConfig`, as per issue elastic#40177 Also added `x-pack/test/functional/es_archives/actions/README.md` to explain how to get the id and encrypted value string, if this needs to be done again later, since it's a little tricky.
So the consensus seems to be that the existing "partial updates" that are happening in master are what's causing the AAD issue, and that if we fix that, the original symptom we're seeing of Also, since we're not exposing AAD to clients via the API directly, clients can't build an action config where non-encrypted config properties are made part of AAD - it's all or nothing, and we need to decide which it will be. Safer to be all, it seems, since there's little downside to this (eg, performance-wise). Given all that, seems like we'll end up NOT merging this PR. I'm going to start working on a separate PR to fix the partial update problem, which will hopefully resolve the original issue. |
Rather than close the original PR #40694 that was open to "fix" this issue, since I initially fixed it "wrong", I decided to just do the right thing with more commits - I already had some decent test cases and such. So current status is:
Side-effects of using
|
…40694) * Adds actionTypeConfig to AAD exclusion for action ESOs fixes #40177 Prior to this, the `actionTypeConfig` was not excluded from AAD when using encrypted saved objects in actions. https://github.com/elastic/kibana/blob/d0da71c2b4b154fe2efe86b44869c06709c15d14/x-pack/legacy/plugins/actions/server/init.ts#L31-L35 This caused a problem when updating values in the `actionTypeConfig`, as per issue #40177 Also added `x-pack/test/functional/es_archives/actions/README.md` to explain how to get the id and encrypted value string, if this needs to be done again later, since it's a little tricky. * change alertings reference to actions archived action Alert happened to reuse the archived action, so it's reference to the action also had to be updated.
…lastic#40694) * Adds actionTypeConfig to AAD exclusion for action ESOs fixes elastic#40177 Prior to this, the `actionTypeConfig` was not excluded from AAD when using encrypted saved objects in actions. https://github.com/elastic/kibana/blob/d0da71c2b4b154fe2efe86b44869c06709c15d14/x-pack/legacy/plugins/actions/server/init.ts#L31-L35 This caused a problem when updating values in the `actionTypeConfig`, as per issue elastic#40177 Also added `x-pack/test/functional/es_archives/actions/README.md` to explain how to get the id and encrypted value string, if this needs to be done again later, since it's a little tricky. * change alertings reference to actions archived action Alert happened to reuse the archived action, so it's reference to the action also had to be updated.
…40694) (#41161) * Adds actionTypeConfig to AAD exclusion for action ESOs fixes #40177 Prior to this, the `actionTypeConfig` was not excluded from AAD when using encrypted saved objects in actions. https://github.com/elastic/kibana/blob/d0da71c2b4b154fe2efe86b44869c06709c15d14/x-pack/legacy/plugins/actions/server/init.ts#L31-L35 This caused a problem when updating values in the `actionTypeConfig`, as per issue #40177 Also added `x-pack/test/functional/es_archives/actions/README.md` to explain how to get the id and encrypted value string, if this needs to be done again later, since it's a little tricky. * change alertings reference to actions archived action Alert happened to reuse the archived action, so it's reference to the action also had to be updated.
Kibana version: master
Elasticsearch version: n/a
Server OS version: n/a
Browser version: n/a
Browser OS version: n/a
Original install method (e.g. download page, yum, from source, etc.): dev
Describe the bug:
The slack action throws a not useful error when the webhook url is invalid.
Steps to reproduce:
service
to usinghost
andport
instead)kbn-action
logs:Expected behavior:
if the various parms had been valid, should send an email
Provide logs and/or server output (if relevant):
The text was updated successfully, but these errors were encountered: