[Security Solution][Alert Details] - clicking on a value in the value column should open a preview #189864
Assignees
Labels
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Team:Threat Hunting:Investigations
Security Solution Investigations Team
Team:Threat Hunting
Security Solution Threat Hunting Team
v8.16.0
Milestone
Comments
PhilippeOberti
added
Team:Threat Hunting
|
Pinging @elastic/security-threat-hunting (Team:Threat Hunting) |
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
|
Pinging @elastic/security-threat-hunting-investigations (Team:Threat Hunting:Investigations) |
|
#190560 enables preview in table tab |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
In the alert details expandable flyout Table tab we show all the field/value pairs. Some of them (
host.ip,host.name,kibana.alert.rule.name,user.name...) can be interacted with. The user can click on the value and the current behavior is to open the corresponding detailed page in a new tab (host detail, user detail, network detail, rule detail...)To be consistent with the recent work that enabled host and user previews as well as alert previews throughout the flyout, we should apply the same logic here and open the preview panels instead of navigating to a new page.
Users will still be able to navigate to the detailed pages after opening the previews, by clicking on the footer of those preview panels.
Current behavior
Screen.Recording.2024-08-05.at.11.16.58.AM.mov
Screen.Recording.2024-08-05.at.11.17.33.AM.mov
Desired behavior
Screen.Recording.2024-08-05.at.11.22.13.AM.mov
Acceptance criteria
Notes
The network/ip flyout currently doesn't have a preview flyout. The work is logged in this ticket.
The text was updated successfully, but these errors were encountered: