Skip to content

[Cloud Security] Add support for GCP org #7403

Merged
orouz merged 6 commits intoelastic:mainfrom
orouz:cis_gcp_org
Sep 10, 2023
Merged

[Cloud Security] Add support for GCP org #7403
orouz merged 6 commits intoelastic:mainfrom
orouz:cis_gcp_org

Conversation

@orouz
Copy link
Contributor

@orouz orouz commented Aug 16, 2023
edited
Loading

What does this PR do?

Adds 2 new input vars: organization_id and account_type

closes #7398

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Author's Checklist

  • [ ]

How to test this PR locally

Related issues

@orouz orouz added enhancement New feature or request Team:Cloud Security Cloud Security team [elastic/cloud-security-posture] labels Aug 16, 2023
orouz
orouz commented Aug 16, 2023
View reviewed changes
packages/cloud_security_posture/data_stream/findings/manifest.yml Outdated
Comment on lines 126 to 132
Copy link
Contributor Author

@orouz orouz Aug 16, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the UI should indicate we support project_id or organization_id, not both.

Copy link
Contributor

@uri-weisman uri-weisman Aug 23, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The project_id might be needed as well to decide in which project the deployment should reside.

@elasticmachine
Copy link

elasticmachine commented Aug 16, 2023
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2023-09-07T10:45:07.875+0000

  • Duration: 15 min 44 sec

Test stats 🧪

Test Results
Failed 0
Passed 4
Skipped 0
Total 4

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

@elasticmachine
Copy link

elasticmachine commented Aug 16, 2023
edited
Loading

🌐 Coverage report

Name Metrics % (covered/total) Diff
Packages 100.0% (0/0) 💚
Files 100.0% (0/0) 💚
Classes 100.0% (0/0) 💚
Methods 25.0% (2/8) 👎 -75.0
Lines 100.0% (0/0) 💚 7.769
Conditionals 100.0% (0/0) 💚

@orouz orouz linked an issue Aug 21, 2023 that may be closed by this pull request
[Cloud Security] [CIS GCP] Add organization id input var to GCP's manifest #7398
Closed
@orouz orouz marked this pull request as ready for review August 21, 2023 07:39
@orouz orouz requested a review from a team as a code owner August 21, 2023 07:39
oren-zohar
oren-zohar reviewed Aug 21, 2023
View reviewed changes
Copy link
Contributor

@oren-zohar oren-zohar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@orouz do we need to update the changelog and manifest version? this is for 8.11, right?

oren-zohar
oren-zohar requested changes Aug 21, 2023
View reviewed changes
Copy link
Contributor

@oren-zohar oren-zohar left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@orouz do we need to update the changelog and manifest version? this is for 8.11, right?

oren-zohar
oren-zohar requested changes Aug 29, 2023
View reviewed changes
@orouz orouz marked this pull request as draft August 29, 2023 13:19
@orouz orouz changed the title [Cloud Security] Add org id input var [Cloud Security] Add support for GCP org Aug 29, 2023
orouz
orouz commented Aug 30, 2023
View reviewed changes
packages/cloud_security_posture/data_stream/findings/agent/stream/gcp.yml.hbs
Comment on lines +7 to +13
{{#if gcp.project_id}}
project_id: {{gcp.project_id}}
{{/if}}
{{#if gcp.organization_id}}
organization_id: {{gcp.organization_id}}
{{/if}}
account_type: {{gcp.account_type}}
Copy link
Contributor Author

@orouz orouz Aug 30, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

project_id and organization_id depend on the value of account_type, so they may be missing. account_type is required.

Copy link
Contributor

@kfirpeled kfirpeled Sep 10, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@animehart we would need to have a migration here on fleet to add account_type when missing

Reference to fleet migrations that work on variable
https://github.com/elastic/kibana/tree/main/x-pack/plugins/fleet/server/saved_objects/migrations/security_solution

@orouz orouz marked this pull request as ready for review August 30, 2023 13:01
orouz
orouz commented Aug 30, 2023
View reviewed changes
@orouz orouz requested a review from oren-zohar August 31, 2023 07:17
orestisfl
orestisfl reviewed Aug 31, 2023
View reviewed changes
packages/cloud_security_posture/data_stream/findings/manifest.yml Outdated
type: text
title: Account Type
multi: false
required: false
Copy link
Contributor

@orestisfl orestisfl Aug 31, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

isn't this required?

Copy link
Contributor Author

@orouz orouz Aug 31, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i thought our custom ui required us to not use it but this isn't the case for this var.

@orouz orouz mentioned this pull request Sep 3, 2023
Closed
6 tasks
uri-weisman
uri-weisman requested changes Sep 7, 2023
View reviewed changes
@orouz @uri-weisman
Update packages/cloud_security_posture/data_stream/findings/manifest.yml
9f710c1 
Co-authored-by: Uri Weisman <68195305+uri-weisman@users.noreply.github.com>
@orouz orouz merged commit d18ce21 into elastic:main Sep 10, 2023
@elasticmachine
Copy link

elasticmachine commented Sep 10, 2023

Package cloud_security_posture - 1.6.0-preview1 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Sep 10, 2023

Package cloud_security_posture - 1.6.0-preview11 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@uri-weisman uri-weisman linked an issue Sep 14, 2023 that may be closed by this pull request
[Cloud Security] Map the findings fields that were added as part of CIS GCP #6245
Closed
@elasticmachine
Copy link

elasticmachine commented Sep 14, 2023

Package cloud_security_posture - 1.6.0-preview12 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Sep 21, 2023

Package cloud_security_posture - 1.6.0-preview13 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Oct 2, 2023

Package cloud_security_posture - 1.6.0-preview14 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Oct 3, 2023

Package cloud_security_posture - 1.6.0-preview15 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Oct 4, 2023

Package cloud_security_posture - 1.6.0-preview16 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@elasticmachine
Copy link

elasticmachine commented Oct 4, 2023

Package cloud_security_posture - 1.6.0 containing this change is available at https://epr.elastic.co/search?package=cloud_security_posture

@oren-zohar oren-zohar mentioned this pull request Oct 17, 2023
Closed
@andrewkroh andrewkroh added the Integration:cloud_security_posture Security Posture Management label Jul 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kfirpeled kfirpeled kfirpeled left review comments

@uri-weisman uri-weisman uri-weisman approved these changes

@oren-zohar oren-zohar oren-zohar approved these changes

@maxcold maxcold Awaiting requested review from maxcold

@orestisfl orestisfl Awaiting requested review from orestisfl

Assignees

No one assigned

Labels

enhancement New feature or request Integration:cloud_security_posture Security Posture Management Team:Cloud Security Cloud Security team [elastic/cloud-security-posture]

Projects

None yet

Milestone

No milestone

8 participants

@orouz @elasticmachine @maxcold @orestisfl @kfirpeled @uri-weisman @oren-zohar @andrewkroh