[Security Solution] Index cleanup on deleting space #175616
Labels
discuss
impact:high
Addressing this issue will have a high level of impact on the quality/strength of our product.
Project:Serverless
Work as part of the Serverless project for its initial release
Team:Detection Engine
Security Solution Detection Engine Area
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Enhancement:
Related SDH: https://github.com/elastic/sdh-security-team/issues/839
One of our users asked if they can safely remove space related indices after they deleted a space. Historically, we've never removed those indices and left them in case user need them in case of restoring data.
Here are the details of what is being removed one deleting space from the core team:
It would be nice to allow users to decide whether they want to purge all space related data or just do that by default.
cc @yctercero @paulewing
The text was updated successfully, but these errors were encountered: