elasticmachine
commented
1 week ago Pinging @elastic/kibana-cloud-security-posture (Team:Cloud Security)
Open opauloh opened 1 week ago
elasticmachine
commented
1 week ago Pinging @elastic/kibana-cloud-security-posture (Team:Cloud Security)
opauloh
commented
2 days ago I have a draft PR including the X-Request-ID using APM's traceparent, however, I had no success in testing the PR on the ESS environment with the QAF tool and the ci:cloud-deployment is not working, I'm blocking the issue until I can successfully test the changes with the QAF tool or when using the ci:cloud-deployment tag on the PR.
Summary
This ticket aims to include the
X-Request-IDHeader on all HTTP calls from the Kibana server to the Agentless API.The
X-Request-IDshould be captured from thecurrentTraceparentprovided by the APM service.If a request is initiated as part of a background job, all Kibana transactions with the Agentless Api should happen after calling Apm's startTransaction.
Motivation
If a customer receives an error it can include the ID in a bug report, allowing the SDH operators to look up the corresponding log statements (without having to rely on timestamps, IPs, etc).
Also, this generated ID does not contain any sensitive information (client_id, cluster_id, etc), and won't violate the user's privacy as a unique ID is created per request it does help with tracking all the transactions related to a request when debugging an issue.
Definition of done
X-Request-IDHeader included on all HTTP calls from the Kibana server to the Agentless API.X-Request-IDis the currentTraceparent string captured from Apm Service and is unique per request.X-Request-IDis included on the error logs thrown on the try/catch blocks.X-Request-ID.Related tasks/epics