[Security Solution] Refactor Cypress scenarios to use internal contex… (

#86609) (#87770)

package.json

@@ -344,7 +344,7 @@
     "@babel/traverse": "^7.11.5",
     "@babel/types": "^7.11.0",
     "@cypress/snapshot": "^2.1.7",
-    "@cypress/webpack-preprocessor": "^5.4.11",
+    "@cypress/webpack-preprocessor": "^5.5.0",
     "@elastic/apm-rum": "^5.6.1",
     "@elastic/apm-rum-react": "^1.2.5",
     "@elastic/charts": "24.4.0",
@@ -606,7 +606,7 @@
     "cpy": "^8.1.1",
     "cronstrue": "^1.51.0",
     "css-loader": "^3.4.2",
-    "cypress": "^6.1.0",
+    "cypress": "^6.2.1",
     "cypress-cucumber-preprocessor": "^2.5.2",
     "cypress-multi-reporters": "^1.4.0",
     "d3": "3.5.17",

packages/kbn-es-archiver/src/actions/empty_kibana_index.ts

@@ -20,7 +20,7 @@
 import { Client } from 'elasticsearch';
 import { ToolingLog, KbnClient } from '@kbn/dev-utils';
 
-import { migrateKibanaIndex, deleteKibanaIndices, createStats } from '../lib';
+import { migrateKibanaIndex, createStats, cleanKibanaIndices } from '../lib';
 
 export async function emptyKibanaIndexAction({
   client,
@@ -32,8 +32,9 @@ export async function emptyKibanaIndexAction({
   kbnClient: KbnClient;
 }) {
   const stats = createStats('emptyKibanaIndex', log);
+  const kibanaPluginIds = await kbnClient.plugins.getEnabledIds();
 
-  await deleteKibanaIndices({ client, stats, log });
+  await cleanKibanaIndices({ client, stats, log, kibanaPluginIds });
   await migrateKibanaIndex({ client, kbnClient });
   return stats;
 }

packages/kbn-es-archiver/src/lib/index.ts

@@ -25,6 +25,7 @@ export {
   createGenerateIndexRecordsStream,
   deleteKibanaIndices,
   migrateKibanaIndex,
+  cleanKibanaIndices,
   createDefaultSpace,
 } from './indices';
 

packages/kbn-es-archiver/src/lib/indices/index.ts

@@ -20,4 +20,9 @@
 export { createCreateIndexStream } from './create_index_stream';
 export { createDeleteIndexStream } from './delete_index_stream';
 export { createGenerateIndexRecordsStream } from './generate_index_records_stream';
-export { migrateKibanaIndex, deleteKibanaIndices, createDefaultSpace } from './kibana_index';
+export {
+  migrateKibanaIndex,
+  deleteKibanaIndices,
+  cleanKibanaIndices,
+  createDefaultSpace,
+} from './kibana_index';

packages/kbn-es-archiver/src/lib/indices/kibana_index.ts

@@ -73,6 +73,7 @@ export async function migrateKibanaIndex({
     body: {
       dynamic: true,
     },
+    ignore: [404],
   } as any);
 
   await kbnClient.savedObjects.migrate();

x-pack/plugins/security_solution/cypress/cypress.json

@@ -2,6 +2,7 @@
   "baseUrl": "http://localhost:5601",
   "defaultCommandTimeout": 60000,
   "execTimeout": 120000,
+  "pageLoadTimeout": 120000,
   "nodeVersion": "system",
   "retries": {
     "runMode": 2

x-pack/plugins/security_solution/cypress/integration/alerts_detection_callouts_readonly.spec.ts

@@ -39,7 +39,7 @@ describe('Detections > Callouts indicating read-only access to resources', () =>
   const RULES_CALLOUT = 'read-only-access-to-rules';
 
   before(() => {
-    // First, we have to open the app on behalf of a priviledged user in order to initialize it.
+    // First, we have to open the app on behalf of a privileged user in order to initialize it.
     // Otherwise the app will be disabled and show a "welcome"-like page.
     cleanKibana();
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL, ROLES.platform_engineer);

x-pack/plugins/security_solution/cypress/integration/alerts_detection_rules.spec.ts

@@ -31,14 +31,13 @@ import { loginAndWaitForPageWithoutDateRange } from '../tasks/login';
 import { DEFAULT_RULE_REFRESH_INTERVAL_VALUE } from '../../common/constants';
 
 import { DETECTIONS_URL } from '../urls/navigation';
-import { createCustomRule, removeSignalsIndex } from '../tasks/api_calls/rules';
+import { createCustomRule } from '../tasks/api_calls/rules';
 import { cleanKibana } from '../tasks/common';
 import { existingRule, newOverrideRule, newRule, newThresholdRule } from '../objects/rule';
 
 describe('Alerts detection rules', () => {
   beforeEach(() => {
     cleanKibana();
-    removeSignalsIndex();
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL);
     waitForAlertsPanelToBeLoaded();
     waitForAlertsIndexToBeCreated();

x-pack/plugins/security_solution/cypress/integration/alerts_detection_rules_custom.spec.ts

@@ -112,35 +112,39 @@ describe('Custom detection rules creation', () => {
   const expectedMitre = formatMitreAttackDescription(newRule.mitre);
   const expectedNumberOfRules = 1;
 
-  const rule = { ...newRule };
-
   beforeEach(() => {
     cleanKibana();
     createTimeline(newRule.timeline).then((response) => {
-      rule.timeline.id = response.body.data.persistTimeline.timeline.savedObjectId;
+      cy.wrap({
+        ...newRule,
+        timeline: {
+          ...newRule.timeline,
+          id: response.body.data.persistTimeline.timeline.savedObjectId,
+        },
+      }).as('rule');
     });
   });
 
-  it('Creates and activates a new rule', () => {
+  it('Creates and activates a new rule', function () {
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL);
     waitForAlertsPanelToBeLoaded();
     waitForAlertsIndexToBeCreated();
     goToManageAlertsDetectionRules();
     waitForLoadElasticPrebuiltDetectionRulesTableToBeLoaded();
     goToCreateNewRule();
-    fillDefineCustomRuleWithImportedQueryAndContinue(rule);
-    fillAboutRuleAndContinue(rule);
-    fillScheduleRuleAndContinue(rule);
+    fillDefineCustomRuleWithImportedQueryAndContinue(this.rule);
+    fillAboutRuleAndContinue(this.rule);
+    fillScheduleRuleAndContinue(this.rule);
 
     // expect define step to repopulate
     cy.get(DEFINE_EDIT_BUTTON).click();
-    cy.get(CUSTOM_QUERY_INPUT).should('have.value', rule.customQuery);
+    cy.get(CUSTOM_QUERY_INPUT).should('have.value', this.rule.customQuery);
     cy.get(DEFINE_CONTINUE_BUTTON).should('exist').click({ force: true });
     cy.get(DEFINE_CONTINUE_BUTTON).should('not.exist');
 
     // expect about step to populate
     cy.get(ABOUT_EDIT_BUTTON).click();
-    cy.get(RULE_NAME_INPUT).invoke('val').should('eql', rule.name);
+    cy.get(RULE_NAME_INPUT).invoke('val').should('eql', this.rule.name);
     cy.get(ABOUT_CONTINUE_BTN).should('exist').click({ force: true });
     cy.get(ABOUT_CONTINUE_BTN).should('not.exist');
 
@@ -160,18 +164,18 @@ describe('Custom detection rules creation', () => {
     cy.get(RULES_TABLE).then(($table) => {
       cy.wrap($table.find(RULES_ROW).length).should('eql', 1);
     });
-    cy.get(RULE_NAME).should('have.text', rule.name);
-    cy.get(RISK_SCORE).should('have.text', rule.riskScore);
-    cy.get(SEVERITY).should('have.text', rule.severity);
+    cy.get(RULE_NAME).should('have.text', this.rule.name);
+    cy.get(RISK_SCORE).should('have.text', this.rule.riskScore);
+    cy.get(SEVERITY).should('have.text', this.rule.severity);
     cy.get(RULE_SWITCH).should('have.attr', 'aria-checked', 'true');
 
     goToRuleDetails();
 
-    cy.get(RULE_NAME_HEADER).should('have.text', `${rule.name}`);
-    cy.get(ABOUT_RULE_DESCRIPTION).should('have.text', rule.description);
+    cy.get(RULE_NAME_HEADER).should('have.text', `${this.rule.name}`);
+    cy.get(ABOUT_RULE_DESCRIPTION).should('have.text', this.rule.description);
     cy.get(ABOUT_DETAILS).within(() => {
-      getDetails(SEVERITY_DETAILS).should('have.text', rule.severity);
-      getDetails(RISK_SCORE_DETAILS).should('have.text', rule.riskScore);
+      getDetails(SEVERITY_DETAILS).should('have.text', this.rule.severity);
+      getDetails(RISK_SCORE_DETAILS).should('have.text', this.rule.riskScore);
       getDetails(REFERENCE_URLS_DETAILS).should((details) => {
         expect(removeExternalLinkText(details.text())).equal(expectedUrls);
       });
@@ -185,7 +189,7 @@ describe('Custom detection rules creation', () => {
     cy.get(ABOUT_INVESTIGATION_NOTES).should('have.text', INVESTIGATION_NOTES_MARKDOWN);
     cy.get(DEFINITION_DETAILS).within(() => {
       getDetails(INDEX_PATTERNS_DETAILS).should('have.text', indexPatterns.join(''));
-      getDetails(CUSTOM_QUERY_DETAILS).should('have.text', rule.customQuery);
+      getDetails(CUSTOM_QUERY_DETAILS).should('have.text', this.rule.customQuery);
       getDetails(RULE_TYPE_DETAILS).should('have.text', 'Query');
       getDetails(TIMELINE_TEMPLATE_DETAILS).should('have.text', 'None');
     });
@@ -203,12 +207,12 @@ describe('Custom detection rules creation', () => {
     waitForTheRuleToBeExecuted();
     waitForAlertsToPopulate();
 
-    cy.get(NUMBER_OF_ALERTS).invoke('text').then(parseFloat).should('be.above', 0);
-    cy.get(ALERT_RULE_NAME).first().should('have.text', rule.name);
+    cy.get(NUMBER_OF_ALERTS).should(($count) => expect(+$count.text()).to.be.gte(1));
+    cy.get(ALERT_RULE_NAME).first().should('have.text', this.rule.name);
     cy.get(ALERT_RULE_VERSION).first().should('have.text', '1');
     cy.get(ALERT_RULE_METHOD).first().should('have.text', 'query');
-    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', rule.severity.toLowerCase());
-    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', rule.riskScore);
+    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', this.rule.severity.toLowerCase());
+    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', this.rule.riskScore);
   });
 });
 

x-pack/plugins/security_solution/cypress/integration/alerts_detection_rules_eql.spec.ts

@@ -77,34 +77,38 @@ import { loginAndWaitForPageWithoutDateRange } from '../tasks/login';
 
 import { DETECTIONS_URL } from '../urls/navigation';
 
-describe.skip('Detection rules, EQL', () => {
+describe('Detection rules, EQL', () => {
   const expectedUrls = eqlRule.referenceUrls.join('');
   const expectedFalsePositives = eqlRule.falsePositivesExamples.join('');
   const expectedTags = eqlRule.tags.join('');
   const expectedMitre = formatMitreAttackDescription(eqlRule.mitre);
   const expectedNumberOfRules = 1;
   const expectedNumberOfAlerts = 7;
 
-  const rule = { ...eqlRule };
-
   beforeEach(() => {
     cleanKibana();
     createTimeline(eqlRule.timeline).then((response) => {
-      rule.timeline.id = response.body.data.persistTimeline.timeline.savedObjectId;
+      cy.wrap({
+        ...eqlRule,
+        timeline: {
+          ...eqlRule.timeline,
+          id: response.body.data.persistTimeline.timeline.savedObjectId,
+        },
+      }).as('rule');
     });
   });
 
-  it('Creates and activates a new EQL rule', () => {
+  it('Creates and activates a new EQL rule', function () {
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL);
     waitForAlertsPanelToBeLoaded();
     waitForAlertsIndexToBeCreated();
     goToManageAlertsDetectionRules();
     waitForLoadElasticPrebuiltDetectionRulesTableToBeLoaded();
     goToCreateNewRule();
     selectEqlRuleType();
-    fillDefineEqlRuleAndContinue(rule);
-    fillAboutRuleAndContinue(rule);
-    fillScheduleRuleAndContinue(rule);
+    fillDefineEqlRuleAndContinue(this.rule);
+    fillAboutRuleAndContinue(this.rule);
+    fillScheduleRuleAndContinue(this.rule);
     createAndActivateRule();
 
     cy.get(CUSTOM_RULES_BTN).should('have.text', 'Custom rules (1)');
@@ -121,18 +125,18 @@ describe.skip('Detection rules, EQL', () => {
     cy.get(RULES_TABLE).then(($table) => {
       cy.wrap($table.find(RULES_ROW).length).should('eql', 1);
     });
-    cy.get(RULE_NAME).should('have.text', rule.name);
-    cy.get(RISK_SCORE).should('have.text', rule.riskScore);
-    cy.get(SEVERITY).should('have.text', rule.severity);
+    cy.get(RULE_NAME).should('have.text', this.rule.name);
+    cy.get(RISK_SCORE).should('have.text', this.rule.riskScore);
+    cy.get(SEVERITY).should('have.text', this.rule.severity);
     cy.get(RULE_SWITCH).should('have.attr', 'aria-checked', 'true');
 
     goToRuleDetails();
 
-    cy.get(RULE_NAME_HEADER).should('have.text', `${rule.name}`);
-    cy.get(ABOUT_RULE_DESCRIPTION).should('have.text', rule.description);
+    cy.get(RULE_NAME_HEADER).should('have.text', `${this.rule.name}`);
+    cy.get(ABOUT_RULE_DESCRIPTION).should('have.text', this.rule.description);
     cy.get(ABOUT_DETAILS).within(() => {
-      getDetails(SEVERITY_DETAILS).should('have.text', rule.severity);
-      getDetails(RISK_SCORE_DETAILS).should('have.text', rule.riskScore);
+      getDetails(SEVERITY_DETAILS).should('have.text', this.rule.severity);
+      getDetails(RISK_SCORE_DETAILS).should('have.text', this.rule.riskScore);
       getDetails(REFERENCE_URLS_DETAILS).should((details) => {
         expect(removeExternalLinkText(details.text())).equal(expectedUrls);
       });
@@ -146,56 +150,61 @@ describe.skip('Detection rules, EQL', () => {
     cy.get(ABOUT_INVESTIGATION_NOTES).should('have.text', INVESTIGATION_NOTES_MARKDOWN);
     cy.get(DEFINITION_DETAILS).within(() => {
       getDetails(INDEX_PATTERNS_DETAILS).should('have.text', indexPatterns.join(''));
-      getDetails(CUSTOM_QUERY_DETAILS).should('have.text', rule.customQuery);
+      getDetails(CUSTOM_QUERY_DETAILS).should('have.text', this.rule.customQuery);
       getDetails(RULE_TYPE_DETAILS).should('have.text', 'Event Correlation');
       getDetails(TIMELINE_TEMPLATE_DETAILS).should('have.text', 'None');
     });
     cy.get(SCHEDULE_DETAILS).within(() => {
       getDetails(RUNS_EVERY_DETAILS).should(
         'have.text',
-        `${rule.runsEvery.interval}${rule.runsEvery.type}`
+        `${this.rule.runsEvery.interval}${this.rule.runsEvery.type}`
       );
       getDetails(ADDITIONAL_LOOK_BACK_DETAILS).should(
         'have.text',
-        `${rule.lookBack.interval}${rule.lookBack.type}`
+        `${this.rule.lookBack.interval}${this.rule.lookBack.type}`
       );
     });
 
     waitForTheRuleToBeExecuted();
     waitForAlertsToPopulate();
 
     cy.get(NUMBER_OF_ALERTS).should('have.text', expectedNumberOfAlerts);
-    cy.get(ALERT_RULE_NAME).first().should('have.text', rule.name);
+    cy.get(ALERT_RULE_NAME).first().should('have.text', this.rule.name);
     cy.get(ALERT_RULE_VERSION).first().should('have.text', '1');
     cy.get(ALERT_RULE_METHOD).first().should('have.text', 'eql');
-    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', rule.severity.toLowerCase());
-    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', rule.riskScore);
+    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', this.rule.severity.toLowerCase());
+    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', this.rule.riskScore);
   });
 });
 
-describe.skip('Detection rules, sequence EQL', () => {
+describe('Detection rules, sequence EQL', () => {
   const expectedNumberOfRules = 1;
   const expectedNumberOfSequenceAlerts = 1;
-  const rule = { ...eqlSequenceRule };
 
   beforeEach(() => {
     cleanKibana();
     createTimeline(eqlSequenceRule.timeline).then((response) => {
-      rule.timeline.id = response.body.data.persistTimeline.timeline.savedObjectId;
+      cy.wrap({
+        ...eqlSequenceRule,
+        timeline: {
+          ...eqlSequenceRule.timeline,
+          id: response.body.data.persistTimeline.timeline.savedObjectId,
+        },
+      }).as('rule');
     });
   });
 
-  it('Creates and activates a new EQL rule with a sequence', () => {
+  it('Creates and activates a new EQL rule with a sequence', function () {
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL);
     waitForAlertsPanelToBeLoaded();
     waitForAlertsIndexToBeCreated();
     goToManageAlertsDetectionRules();
     waitForLoadElasticPrebuiltDetectionRulesTableToBeLoaded();
     goToCreateNewRule();
     selectEqlRuleType();
-    fillDefineEqlRuleAndContinue(rule);
-    fillAboutRuleAndContinue(rule);
-    fillScheduleRuleAndContinue(rule);
+    fillDefineEqlRuleAndContinue(this.rule);
+    fillAboutRuleAndContinue(this.rule);
+    fillScheduleRuleAndContinue(this.rule);
     createAndActivateRule();
 
     cy.get(CUSTOM_RULES_BTN).should('have.text', 'Custom rules (1)');
@@ -213,10 +222,10 @@ describe.skip('Detection rules, sequence EQL', () => {
     waitForAlertsToPopulate();
 
     cy.get(NUMBER_OF_ALERTS).should('have.text', expectedNumberOfSequenceAlerts);
-    cy.get(ALERT_RULE_NAME).first().should('have.text', rule.name);
+    cy.get(ALERT_RULE_NAME).first().should('have.text', this.rule.name);
     cy.get(ALERT_RULE_VERSION).first().should('have.text', '1');
     cy.get(ALERT_RULE_METHOD).first().should('have.text', 'eql');
-    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', rule.severity.toLowerCase());
-    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', rule.riskScore);
+    cy.get(ALERT_RULE_SEVERITY).first().should('have.text', this.rule.severity.toLowerCase());
+    cy.get(ALERT_RULE_RISK_SCORE).first().should('have.text', this.rule.riskScore);
   });
 });

x-pack/plugins/security_solution/cypress/integration/alerts_detection_rules_export.spec.ts

@@ -17,8 +17,7 @@ import { loginAndWaitForPageWithoutDateRange } from '../tasks/login';
 
 import { DETECTIONS_URL } from '../urls/navigation';
 
-describe.skip('Export rules', () => {
-  let ruleResponse: Cypress.Response;
+describe('Export rules', () => {
   beforeEach(() => {
     cleanKibana();
     cy.intercept(
@@ -28,16 +27,14 @@ describe.skip('Export rules', () => {
     loginAndWaitForPageWithoutDateRange(DETECTIONS_URL);
     waitForAlertsPanelToBeLoaded();
     waitForAlertsIndexToBeCreated();
-    createCustomRule(newRule).then((response) => {
-      ruleResponse = response;
-    });
+    createCustomRule(newRule).as('ruleResponse');
   });
 
-  it('Exports a custom rule', () => {
+  it('Exports a custom rule', function () {
     goToManageAlertsDetectionRules();
     exportFirstRule();
     cy.wait('@export').then(({ response }) => {
-      cy.wrap(response!.body).should('eql', expectedExportedRule(ruleResponse));
+      cy.wrap(response!.body).should('eql', expectedExportedRule(this.ruleResponse));
     });
   });
 });

x-pack/plugins/security_solution/cypress/integration/alerts_detection_rules_ml.spec.ts

@@ -88,7 +88,7 @@ describe.skip('Detection rules, machine learning', () => {
     fillScheduleRuleAndContinue(machineLearningRule);
     createAndActivateRule();
 
-    cy.get(CUSTOM_RULES_BTN).invoke('text').should('eql', 'Custom rules (1)');
+    cy.get(CUSTOM_RULES_BTN).should('have.text', 'Custom rules (1)');
 
     changeToThreeHundredRowsPerPage();
     waitForRulesToBeLoaded();