Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[8.17](backport #4221) Audit unenroll should not set unenrolled_at attribute #4225

Merged
merged 1 commit into from
Dec 18, 2024
Merged

[8.17](backport #4221) Audit unenroll should not set unenrolled_at attribute #4225

merged 1 commit into from
Dec 18, 2024

Conversation

mergify[bot]
Copy link
Contributor

@mergify mergify bot commented Dec 17, 2024

What is the problem this PR solves?

On systems where defend is running and may report as orphaned during an upgrade process, the unenrolled_at attribute will be set and will prevent future upgrade commands from being issued through Kibana.

How does this PR solve the problem?

Do not set the unenrolled_at attribute when the audit/unenroll API is called.
Remove the unenrolled_at attribute if it's set during checkin.

Design Checklist

  • I have ensured my design is stateless and will work when multiple fleet-server instances are behind a load balancer.
  • I have or intend to scale test my changes, ensuring it will work reliably with 100K+ agents connected.
  • I have included fail safe mechanisms to limit the load on fleet-server: rate limiting, circuit breakers, caching, load shedding, etc.

Checklist

  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • I have made corresponding change to the default configuration files
  • I have added tests that prove my fix is effective or that my feature works
  • I have added an entry in ./changelog/fragments using the changelog tool

Related issues

This is an automatic backport of pull request #4221 done by [Mergify](https://mergify.com).

@michel-laterman @mergify
Audit unenroll should not set unenrolled_at attribute (#4221)
c605a2b 
Do not set the unenrolled_at attribute when the audit/unenroll API is called.
Remove the unenrolled_at attribute if it's set during checkin.

(cherry picked from commit 8450b71)
@mergify mergify bot requested a review from a team as a code owner December 17, 2024 19:31
@mergify mergify bot added the backport label Dec 17, 2024
@elastic-sonarqube Elastic SonarQube
Copy link

Quality Gate failed Quality Gate failed

Failed conditions
E Maintainability Rating on New Code (required ≥ A)

See analysis details on SonarQube

Catch issues before they fail your Quality Gate with our IDE extension SonarLint SonarLint

@ycombinator ycombinator merged commit ea0bda9 into 8.17 Dec 18, 2024
7 of 8 checks passed
@ycombinator ycombinator deleted the mergify/bp/8.17/pr-4221 branch December 18, 2024 00:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@michel-laterman michel-laterman michel-laterman approved these changes

@michalpristas michalpristas Awaiting requested review from michalpristas michalpristas is a code owner automatically assigned from elastic/elastic-agent-control-plane

@blakerouse blakerouse Awaiting requested review from blakerouse blakerouse is a code owner automatically assigned from elastic/elastic-agent-control-plane

Assignees

@michel-laterman michel-laterman

Labels
backport
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@michel-laterman @ycombinator