[ML] Add option for anomaly charts for metric detector should plot min, mean or max as appropriate #81662
Conversation
|
Pinging @elastic/ml-ui (:ml) |
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
|
As discussed, if feasible, I think it makes sense to filter the table and mini swim lane anomalies for the detector function (min / avg / max) as well as the main chart. That way the view shows information for the single series (detector, partitioning fields, function) being viewed.
|
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
| mustCriteria.push({ | ||
| term: { | ||
| function_description: | ||
| actualPlotFunctionIfMetric === 'avg' ? 'mean' : actualPlotFunctionIfMetric, |
There was a problem hiding this comment.
Can you use the enums out of common/constants/aggregation_types here?
x-pack/plugins/ml/public/application/timeseriesexplorer/timeseriesexplorer.js
Outdated
Show resolved
Hide resolved
| if (actualPlotFunction !== undefined) { | ||
| boolCriteria.push({ | ||
| term: { | ||
| function_description: actualPlotFunction === 'avg' ? 'mean' : actualPlotFunction, |
There was a problem hiding this comment.
Can you use the enums out of common/constants/aggregation_types here?
| @@ -57,7 +57,8 @@ export function resultsServiceProvider(client: IScopedClusterClient) { | |||
| dateFormatTz: string, | |||
| maxRecords: number = ANOMALIES_TABLE_DEFAULT_QUERY_SIZE, | |||
| maxExamples: number = DEFAULT_MAX_EXAMPLES, | |||
| influencersFilterQuery: any | |||
| influencersFilterQuery?: any, | |||
| actualPlotFunction?: string | undefined | |||
There was a problem hiding this comment.
Maybe this should be renamed to functionDescription to match the name of the property in the records?
| @@ -37,6 +37,7 @@ function getAnomaliesTableData(client: IScopedClusterClient, payload: any) { | |||
| maxRecords, | |||
| maxExamples, | |||
| influencersFilterQuery, | |||
| actualPlotFunction, | |||
There was a problem hiding this comment.
As before, maybe this should be renamed to functionDescription to match the name of the property in the records?
| @@ -26,6 +26,7 @@ export const anomaliesTableDataSchema = schema.object({ | |||
| maxRecords: schema.number(), | |||
| maxExamples: schema.maybe(schema.number()), | |||
| influencersFilterQuery: schema.maybe(schema.any()), | |||
| actualPlotFunction: schema.maybe(schema.nullable(schema.string())), | |||
There was a problem hiding this comment.
As above, maybe this should be renamed to functionDescription to match the name of the property in the records?
| influencersFilterQuery: any | ||
| maxExamples?: number, | ||
| influencersFilterQuery?: any, | ||
| actualPlotFunction?: string | undefined |
There was a problem hiding this comment.
Maybe this should be renamed to functionDescription to match the name of the property in the records?
|
Coming into the view from the jobs list, I see the function dropdown disappear after selecting a partitioning field:
|
|
Noticed some odd behavior in the chart when using the metric function, which is happening here and also on master. For these anomalies which are in
|
@peteharverson I have added a fix for this issue. The dropdown should now work with or without the partitioning and should be updated.
I also added a fix for this one in ea8d71f. Now, when model plot is enabled, it will 1) get the anomaly records based on the selected function description, and 2) plot the chart point with the actual data point.
|
x-pack/plugins/ml/public/application/timeseriesexplorer/get_function_description.ts
Outdated
Show resolved
Hide resolved
| }) => { | ||
| if (functionDescription === undefined) return null; | ||
| return ( | ||
| <EuiFlexItem style={{ textAlign: 'right' }} grow={false}> |
.../application/timeseriesexplorer/components/plot_function_controls/plot_function_controls.tsx
Outdated
Show resolved
Hide resolved
|
Found what looks like an issue with setting the bounds on the focus chart:
Config is: Same job - the bounds on the main chart aren't set correctly, and also the critical anomaly isn't marked in the swim lane.
Same config, but with model plot enabled - again the critical anomalies don't show up in the swim lane: |
|
@peteharverson I have fixed the two issues in my latest changes. The bounds should be now correct, and the mini swimlanes should should up correctly for when
|
| influencersFilterQuery: any | ||
| maxExamples?: number, | ||
| influencersFilterQuery?: any, | ||
| functionDescription?: string | undefined |
There was a problem hiding this comment.
You should be able to remove | undefined because of the ?.
| import { EuiFlexItem, EuiFormRow, EuiSelect } from '@elastic/eui'; | ||
| import { i18n } from '@kbn/i18n'; | ||
|
|
||
| const plotByFunctionOptions = [ |
There was a problem hiding this comment.
Is it necessary to translate these since they relate to Elasticsearch aggregations?
There was a problem hiding this comment.
Since these are not strict terms that are excluded in the translation guide, I'll keep these translations here.
| if (currentSelectedJob === undefined) { | ||
| return; | ||
| } |
There was a problem hiding this comment.
Can you explain why this check is no longer necessary?
There was a problem hiding this comment.
Thanks for catching that. This was removed by accident. I have revert the change in 64ecedb
| previousProps.selectedDetectorIndex !== this.props.selectedDetectorIndex || | ||
| !isEqual(previousProps.selectedEntities, this.props.selectedEntities) | ||
| ) { | ||
| this.getFunctionDescription(); |
There was a problem hiding this comment.
Could we run into problems with a race condition since this is async function?
(Just trying to understand the implications here, since previously only relying on a change previousProps did make sure we check against from changes coming from outside the components - wondering if with including perviousState and then again triggering async state functions if we might run into render loops)
| earliestMs: number | null, | ||
| latestMs: number | null, | ||
| maxResults: number | undefined, | ||
| functionDescription?: string | undefined |
There was a problem hiding this comment.
As noted above, you should be able to remove | undefined because of the ?.
| @@ -48,6 +49,10 @@ export function buildConfig(record) { | |||
| // define the metric series to be plotted. | |||
| config.entityFields = getEntityFieldList(record); | |||
|
|
|||
| if (record.function === 'metric') { | |||
There was a problem hiding this comment.
Use ML_JOB_AGGREGATION.METRIC from common/constants/aggregation_types
| @@ -142,6 +143,8 @@ export function processDataForFocusAnomalies( | |||
| // Look for a chart point with the same time as the record. | |||
| // If none found, find closest time in chartData set. | |||
| const recordTime = record[TIME_FIELD_NAME]; | |||
| if (record.function === 'metric' && record.function_description !== functionDescription) return; | |||
There was a problem hiding this comment.
Use ML_JOB_AGGREGATION.METRIC from common/constants/aggregation_types
| @@ -160,6 +163,10 @@ export function processDataForFocusAnomalies( | |||
| chartPoint.value = record.actual; | |||
| } | |||
|
|
|||
| if (record.function === 'metric') { | |||
There was a problem hiding this comment.
Use ML_JOB_AGGREGATION.METRIC from common/constants/aggregation_types
| ) => { | ||
| // if the detector's function is metric, fetch the highest scoring anomaly record | ||
| // and set to plot the function_description (avg/min/max) of that record by default | ||
| if (selectedJob?.analysis_config?.detectors[selectedDetectorIndex]?.function !== 'metric') return; |
There was a problem hiding this comment.
Use ML_JOB_AGGREGATION.METRIC from common/constants/aggregation_types
💚 Build SucceededMetrics [docs]@kbn/optimizer bundle module count
async chunks size
History
To update your PR or re-run it, just comment with: |
…n, mean or max as appropriate (elastic#81662)
* master: (39 commits) Fix ilm navigation (elastic#81664) [Lens] Distinct icons for XY and pie chart value labels toolbar (elastic#82927) [data.search.aggs] Throw an error when trying to create an agg type that doesn't exist. (elastic#81509) Index patterns api - load field list on server (elastic#82629) New events resolver (elastic#82170) [App Search] Misc naming tech debt (elastic#82770) load empty_kibana in test to have clean starting point (elastic#82772) Remove data <--> expressions circular dependencies. (elastic#82685) Update 8.0 breaking change template to gather information on how to programmatically detect it. (elastic#82905) Add alerting as codeowners to related documentation folder (elastic#82777) Add captions to user and space grid pages (elastic#82713) add alternate path for x-pack/Cloud test for Lens (elastic#82634) Uses asCurrentUser in getClusterUuid (elastic#82908) [Alerting][Connectors] Add new executor subaction to get 3rd party case fields (elastic#82519) Fix test import objects (elastic#82767) [ML] Add option for anomaly charts for metric detector should plot min, mean or max as appropriate (elastic#81662) Update alert type selection layout to rows instead of grid (elastic#73665) Prevent Kerberos and PKI providers from initiating a new session for unauthenticated XHR/API requests. (elastic#82817) Update grunt and related packages (elastic#79327) Allow the repository to search across all namespaces (elastic#82863) ...
Summary
This PR addresses #65078 by:
Plot the function associated with the record with the highest anomaly high score in the Single Metric Viewer and Anomaly Explorer by default.
Add additional select options so users can choose what function want to view by (e.g.
avg,min, ormax) where the anomaly markers will only show up if they correspond to the right view.Checklist
Delete any items that are not applicable to this PR.