-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Fleet] Specify which variables should be configurable for an integration per policy #96319
Comments
Pinging @elastic/fleet (Team:Fleet) |
Is there any precedent in the UI for some fields on a policy being editable and some being disabled? Wondering if there's an existing system I can hook this into, or if I'll have to build that from scratch. |
@jfsiii Recently worked on some parts with the managed policy which might contain something similar? @jen-huang Are you aware of anything here? |
Restrictions on a managed policy is not field-specific, rather the entire policy cannot be changed which is simple from a technical standpoint. This will be more complex and we don't have an existing system to do this yet, off the top of my head I wonder if we can add a new field to the vars we save on package policies called In my head, by default all vars in a pre-configured policy are not writable, so this flag acts as an allowlist. |
I would go with |
In the PR I've opened I've implemented a blocklist using a field of |
Thanks, blocklist it is then. |
With #94509 an API endpoint in Kibana was introduced to preconfigure packages and setup the stack. In the scenario that the stack is setup from an external call, it is likely that some of the variables preconfigured should not be modified. An example of this is the policy with Fleet Server in Elastic Cloud. Users should not be able to modify the host and port as it is constant and otherwise would break the setup. Same for the APM integration. At the same time, there might be second policy with APM inside where all these variables are available.
To make this possible, the preconfigure API should be extended to all to specify as part of the policy creation, which fields should be editable and which ones not.
The text was updated successfully, but these errors were encountered: