[Security Solution][Alert Details] - clicking on a value in the value column should open a preview #189864
Labels
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Team:Threat Hunting:Investigations
Security Solution Investigations Team
Team:Threat Hunting
Security Solution Threat Hunting Team
v8.16.0
Milestone
Description
In the alert details expandable flyout Table tab we show all the field/value pairs. Some of them (
host.ip
,host.name
,kibana.alert.rule.name
,user.name
...) can be interacted with. The user can click on the value and the current behavior is to open the corresponding detailed page in a new tab (host detail, user detail, network detail, rule detail...)To be consistent with the recent work that enabled host and user previews as well as alert previews throughout the flyout, we should apply the same logic here and open the preview panels instead of navigating to a new page.
Users will still be able to navigate to the detailed pages after opening the previews, by clicking on the footer of those preview panels.
Current behavior
Screen.Recording.2024-08-05.at.11.16.58.AM.mov
Screen.Recording.2024-08-05.at.11.17.33.AM.mov
Desired behavior
Screen.Recording.2024-08-05.at.11.22.13.AM.mov
Acceptance criteria
Notes
The network/ip flyout currently doesn't have a preview flyout. The work is logged in this ticket.
The text was updated successfully, but these errors were encountered: