[Security Solution][Ingest Manager][Endpoint] Optional ingest manager

[madirey]

Summary

Makes ingestManager an optional dependency for securitySolution.

Ingest entirely disabled:

Ingest enabled:

Checklist

N/A

For maintainers

• This was checked for breaking API changes and was labeled appropriately

[elasticmachine]

Pinging @elastic/endpoint-management (Team:Endpoint Management)

[elasticmachine]

Pinging @elastic/endpoint-response (Team:Endpoint Response)

[elasticmachine]

Pinging @elastic/endpoint-app-team (Feature:Endpoint)

[kevinlog]

@elasticmachine merge upstream

[paul-tavares]

👀

[peluja1012]

I think the problem with tests failing without this conditional should have been caught by typescript. Is it because we should have have also set the ingestManager StartPlugins type as optional? https://github.com/elastic/kibana/blob/master/x-pack/plugins/security_solution/public/types.ts#L35

@paul-tavares @XavierM @kevinlog thoughts?

[paul-tavares]

@peluja1012 yeah, that sounds like it needs to be set to optional in the Type

[paul-tavares]

FYI - #70911
This PR will enable us to set Ingest Manager as optional without having to make additional code changes to avoid loading code that imports ingest manager code.

[madirey]

Also related: feb1202

[paul-tavares]

This PR should be held until @spalger merges #70911 . I just applied these changes ontop of his PR by adding ingestManager to the new Plugin kibana.json requiredBundles and we get the expected results.

[kevinlog]

@elasticmachine merge upstream

[kevinlog]

this is a new feature from kibana platform, see #70911

This allows us to still load the shared code that we import from ingestManager without the plugin actually being loaded. So, since "ingestManager" is optional we can either load it or not and the Administration section will handle accordingly.

There are existing tests that already checked the behavior of the Admin section with or without ingestManager either within Space or if the plugin is loaded at all.

[kevinlog]

@madirey @paul-tavares @alexk307 @peluja1012 I believe this one is ready to go. The kibana platform PR is in #70911

I pulled it down, tested it - Admin and other Security pages are working as expected. There are already tests in place to check the Admin pages when Ingest is disabled.

FYI @XavierM

[kevinlog]

Something else we can add here is a suite that doesn't enable ingestManager and, at the least, run through the Security tabs to ensure they still load and perhaps smoke test some basic functionality. I did this manually, but it would be good to have that automated as well, especially in the future as Ingest and Endpoint Admin develop further.

I put this up as a quick experiment with taking the ingestManager requirement out of the Security Cypress tests and it seems to work. #71370

My thought is that we could set up a similar suite and take this out of the config -https://github.com/elastic/kibana/pull/71370/files#diff-502bf387cf33d051febd25bc823df26dL49

Wondering what some thoughts are on approaches - @paul-tavares @XavierM ?

[madirey]

@kevinlog I know you're referring to UI functional tests, but just want to point out that we have something similar for the server-side APIs: https://github.com/elastic/kibana/tree/master/x-pack/test/endpoint_api_integration_no_ingest

[kibanamachine]

💚 Build Succeeded

• continuous-integration/kibana-ci/pull-request
• Commit: a4b6218

Build metrics

✅ unchanged

History

• 💚 Build #60621 succeeded eb60b1b
• 💔 Build #60616 failed 19cc454
• 💔 Build #60156 failed c15576c
• 💔 Build #60069 failed dcf65a4

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream