Open muskangulati-qasource opened 3 months ago
Pinging @elastic/security-solution (Team: SecuritySolution)
Pinging @elastic/security-defend-workflows (Team:Defend Workflows)
@manishgupta-qasource please review!
Reviewed & assigned to @ferullo
Hey @muskangulati-qasource 👋 , sorry I should have stated that more clearly - we just need Crowdstrike
integration - the Falcon Inteligence
is not a part of our functionality.
@tomsonpl @muskangulati-qasource it sounds like there is no issue affecting testing the Crowdstrike bi-directional connector then.
AFAIK the integration is owned by @narph 's team so this bug should be transferred to them. Is that right?
@ferullo, feel free to transfer it to the integrations repo.
@narph 👍 transferred and assigned to you.
Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)
the error message is not well defined for the human readibility
I disagree that the error message is not well-defined for human readability. While it may be true that the error message is detailed, I would argue that this is actually a strength and that this message is informative.
An error message that is not well-defined would likely be vague or ambiguous, leaving the user to guess at the cause of the problem. In this case, the message includes the URL that was being requested, the response status code, status message, and raw response from CrowdStrike. This level of detail helps users understand what went wrong so they can fix it.
This error format is general and setup to surface any type of failure that can occur while executing a CEL program (syntax, logic, network, auth, rate-limit, service failure, response format, etc). If PM thinks this error should be more visually appealing or should use more simple language ("authentication failed") then we can discuss ways of making that happen.
Description: The error message for CrowdStrike Falcon Intelligence is not defined for authentication failed
Build Details:
Preconditions:
Steps to Reproduce:
Actual Result: The error message for CrowdStrike Falcon Intelligence is not defined for authentication failed
Expected Result: The error message for CrowdStrike Falcon Intelligence should be defined properly for authentication failed
Screenshot
Login credentials Link here
Logs N/A