> => [
{
field: 'level',
name: i18n.INFORMATION_LEVEL_HEADER,
@@ -85,9 +85,7 @@ export const RiskInformationButtonIcon = ({ riskEntity }: { riskEntity: RiskScor
}
data-test-subj="open-risk-information-flyout-trigger"
/>
- {isFlyoutVisible && (
-
- )}
+ {isFlyoutVisible && }
);
};
@@ -100,20 +98,12 @@ export const RiskInformationButtonEmpty = ({ riskEntity }: { riskEntity: RiskSco
{i18n.INFO_BUTTON_TEXT}
- {isFlyoutVisible && (
-
- )}
+ {isFlyoutVisible && }
);
};
-const RiskInformationFlyout = ({
- handleOnClose,
- riskEntity,
-}: {
- handleOnClose: () => void;
- riskEntity: RiskScoreEntity;
-}) => {
+export const RiskInformationFlyout = ({ handleOnClose }: { handleOnClose: () => void }) => {
const { euiTheme } = useEuiTheme();
const simpleFlyoutTitleId = useGeneratedHtmlId({
prefix: 'RiskInformation',
@@ -157,15 +147,13 @@ const RiskInformationFlyout = ({
),
@@ -176,15 +164,13 @@ const RiskInformationFlyout = ({
),
@@ -236,26 +222,22 @@ const RiskInformationFlyout = ({
}
/>
diff --git a/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_information/translations.ts b/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_information/translations.ts
index 112c6d37ca4a2..20fa22bbc26f5 100644
--- a/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_information/translations.ts
+++ b/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_information/translations.ts
@@ -23,7 +23,7 @@ export const INFORMATION_ARIA_LABEL = i18n.translate(
}
);
-export const INFORMATION_RISK_HEADER = (riskEntity: RiskScoreEntity) =>
+export const INFORMATION_RISK_HEADER = (riskEntity?: RiskScoreEntity) =>
i18n.translate('xpack.securitySolution.riskInformation.riskHeader', {
defaultMessage: '{riskEntity} risk score range',
values: {
diff --git a/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_score_onboarding/risk_score_doc_link.tsx b/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_score_onboarding/risk_score_doc_link.tsx
index cae89799d2d1e..dbe56fd74931e 100644
--- a/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_score_onboarding/risk_score_doc_link.tsx
+++ b/x-pack/plugins/security_solution/public/explore/components/risk_score/risk_score_onboarding/risk_score_doc_link.tsx
@@ -6,20 +6,31 @@
*/
import { EuiLink } from '@elastic/eui';
-import React from 'react';
+import React, { useMemo } from 'react';
import { RiskScoreEntity } from '../../../../../common/search_strategy';
-import { RISKY_HOSTS_DOC_LINK, RISKY_USERS_DOC_LINK } from '../../../../../common/constants';
+import {
+ RISKY_HOSTS_DOC_LINK,
+ RISKY_USERS_DOC_LINK,
+ RISKY_ENTITY_SCORE_DOC_LINK,
+} from '../../../../../common/constants';
import { LEARN_MORE } from '../../../../overview/components/entity_analytics/risk_score/translations';
const RiskScoreDocLinkComponent = ({
riskScoreEntity,
title,
}: {
- riskScoreEntity: RiskScoreEntity;
+ riskScoreEntity?: RiskScoreEntity;
title?: string | React.ReactNode;
}) => {
- const docLink =
- riskScoreEntity === RiskScoreEntity.user ? RISKY_USERS_DOC_LINK : RISKY_HOSTS_DOC_LINK;
+ const docLink = useMemo(() => {
+ if (!riskScoreEntity) {
+ return RISKY_ENTITY_SCORE_DOC_LINK;
+ }
+ if (riskScoreEntity === RiskScoreEntity.user) {
+ return RISKY_USERS_DOC_LINK;
+ }
+ return RISKY_HOSTS_DOC_LINK;
+ }, [riskScoreEntity]);
return (
diff --git a/x-pack/plugins/security_solution/public/explore/components/risk_score/translations.ts b/x-pack/plugins/security_solution/public/explore/components/risk_score/translations.ts
index 501de5719a63e..d072607544d4f 100644
--- a/x-pack/plugins/security_solution/public/explore/components/risk_score/translations.ts
+++ b/x-pack/plugins/security_solution/public/explore/components/risk_score/translations.ts
@@ -24,6 +24,14 @@ export const USERS = i18n.translate('xpack.securitySolution.riskScore.overview.u
defaultMessage: 'Users',
});
+export const ENTITY = i18n.translate('xpack.securitySolution.riskScore.overview.entityTitle', {
+ defaultMessage: 'Entity',
+});
+
+export const ENTITIES = i18n.translate('xpack.securitySolution.riskScore.overview.entities', {
+ defaultMessage: 'Entities',
+});
+
export const RISK_SCORE_TITLE = (riskEntity: RiskScoreEntity) =>
i18n.translate('xpack.securitySolution.riskScore.overview.riskScoreTitle', {
defaultMessage: '{riskEntity} Risk Score',
@@ -41,22 +49,26 @@ export const ENTITY_RISK_LEVEL = (riskEntity: RiskScoreEntity) =>
});
export const getRiskEntityTranslation = (
- riskEntity: RiskScoreEntity,
+ riskEntity?: RiskScoreEntity,
lowercase = false,
plural = false
) => {
- if (lowercase) {
- if (plural) {
- return (riskEntity === RiskScoreEntity.host ? HOSTS : USERS).toLowerCase();
- }
+ const text = getRiskEntityTranslationText(riskEntity, plural);
+ return lowercase ? text.toLowerCase() : text;
+};
- return (riskEntity === RiskScoreEntity.host ? HOST : USER).toLowerCase();
- }
- if (plural) {
- return riskEntity === RiskScoreEntity.host ? HOSTS : USERS;
+export const getRiskEntityTranslationText = (
+ riskEntity: RiskScoreEntity | undefined,
+ plural: boolean
+) => {
+ switch (riskEntity) {
+ case RiskScoreEntity.host:
+ return plural ? HOSTS : HOST;
+ case RiskScoreEntity.user:
+ return plural ? USERS : USER;
+ default:
+ return plural ? ENTITIES : ENTITY;
}
-
- return riskEntity === RiskScoreEntity.host ? HOST : USER;
};
export const ALERTS = i18n.translate('xpack.securitySolution.riskScore.overview.alerts', {
diff --git a/x-pack/plugins/security_solution/public/overview/components/entity_analytics/risk_score/translations.ts b/x-pack/plugins/security_solution/public/overview/components/entity_analytics/risk_score/translations.ts
index f2e3296133ffd..22fe8a3d52823 100644
--- a/x-pack/plugins/security_solution/public/overview/components/entity_analytics/risk_score/translations.ts
+++ b/x-pack/plugins/security_solution/public/overview/components/entity_analytics/risk_score/translations.ts
@@ -25,7 +25,7 @@ export const VIEW_ALL = i18n.translate(
}
);
-export const LEARN_MORE = (riskEntity: RiskScoreEntity) =>
+export const LEARN_MORE = (riskEntity?: RiskScoreEntity) =>
i18n.translate('xpack.securitySolution.entityAnalytics.riskDashboard.learnMore', {
defaultMessage: 'Learn more about {riskEntity} risk',
values: {
diff --git a/x-pack/plugins/translations/translations/fr-FR.json b/x-pack/plugins/translations/translations/fr-FR.json
index 14fd4d47428bc..7be7358c87010 100644
--- a/x-pack/plugins/translations/translations/fr-FR.json
+++ b/x-pack/plugins/translations/translations/fr-FR.json
@@ -32342,12 +32342,7 @@
"xpack.securitySolution.responseActionsList.list.recordRange": "Affichage de {range} sur {total} {recordsLabel}",
"xpack.securitySolution.responseActionsList.list.recordRangeLabel": "{records, plural, one {action de réponse} many {actions de réponse} other {actions de réponse}}",
"xpack.securitySolution.riskInformation.howCalculatedText": "Le dispositif Entity Risk s'exécute toutes les heures afin de regrouper les alertes \"Open\" et \"Acknowledged\" des 30 derniers jours et attribue un score de risque à l'hôte ou à l'utilisateur. Il agrège ensuite les scores de risque individuels et les normalise dans une fourchette de 0 à 100 à l'aide de {riemannZetaLink} .",
- "xpack.securitySolution.riskInformation.learnMore": "En savoir plus sur les risques {riskEntity}.",
"xpack.securitySolution.riskInformation.riskHeader": "Plage de scores de risque de {riskEntity}",
- "xpack.securitySolution.riskInformation.riskScoreFieldLabel": "Score de risque de {riskEntity}",
- "xpack.securitySolution.riskInformation.riskScoreFieldText": "Le champ {riskScoreField} représente le risque normalisé du {riskEntity} sous la forme d'une valeur numérique unique. Vous pouvez utiliser cette valeur comme indicateur relatif du risque dans les playbooks de triage et de réponse.",
- "xpack.securitySolution.riskInformation.riskScoreLevelLabel": "Niveau de risque {riskEntity}",
- "xpack.securitySolution.riskInformation.riskScoreLevelText": "Le champ {riskLevelField} représente l'un des six niveaux de risque de {riskEntity}, sur la base d'indicateurs de risque prédéfinis.",
"xpack.securitySolution.riskScore.api.ingestPipeline.delete.errorMessageTitle": "Impossible de supprimer {totalCount, plural, =1 {pipeline} one {pipelines} many {pipelines} other {pipelines}} d'ingestion",
"xpack.securitySolution.riskScore.api.transforms.delete.errorMessageTitle": "Impossible de supprimer {totalCount, plural, =1 {Transformer} one {Transformations} many {Transformations} other {Transformations}}",
"xpack.securitySolution.riskScore.api.transforms.start.errorMessageTitle": "Impossible de démarrer {totalCount, plural, =1 {Transformer} one {Transformations} many {Transformations} other {Transformations}}",
diff --git a/x-pack/plugins/translations/translations/ja-JP.json b/x-pack/plugins/translations/translations/ja-JP.json
index fc171a39a330e..4b2a982b0be43 100644
--- a/x-pack/plugins/translations/translations/ja-JP.json
+++ b/x-pack/plugins/translations/translations/ja-JP.json
@@ -32340,12 +32340,7 @@
"xpack.securitySolution.responseActionsList.list.recordRange": "{total} {recordsLabel}件中{range}を表示中",
"xpack.securitySolution.responseActionsList.list.recordRangeLabel": "{records, plural, other {対応アクション}}",
"xpack.securitySolution.riskInformation.howCalculatedText": "エンティティリスクエンジンは、過去30日間の\"オープン\"および\"確認済み\"アラートを集約し、ホストまたはユーザーにリスクスコアを割り当てるために1時間ごとに実行されます。次に、個々のリスクスコアを集約し、{riemannZetaLink}を使用して0~100の範囲に正規化します。",
- "xpack.securitySolution.riskInformation.learnMore": "{riskEntity}リスクの詳細",
"xpack.securitySolution.riskInformation.riskHeader": "{riskEntity}リスクスコア範囲",
- "xpack.securitySolution.riskInformation.riskScoreFieldLabel": "{riskEntity}リスクスコア",
- "xpack.securitySolution.riskInformation.riskScoreFieldText": "{riskScoreField}フィールドは{riskEntity}の正規化されたリスクを1つの数値として表します。この値は、トリアージとレスポンスのプレイブックでリスクの相対的な指標として使用できます。",
- "xpack.securitySolution.riskInformation.riskScoreLevelLabel": "{riskEntity}リスクレベル",
- "xpack.securitySolution.riskInformation.riskScoreLevelText": "{riskLevelField}フィールドは、定義済みのリスクメトリックに基づく{riskEntity}の6つのリスクレベルのうちの1つを表します。",
"xpack.securitySolution.riskScore.api.ingestPipeline.delete.errorMessageTitle": "インジェスト{totalCount, plural, =1 {パイプライン} other {パイプライン}}を削除できませんでした",
"xpack.securitySolution.riskScore.api.transforms.delete.errorMessageTitle": "{totalCount, plural, =1 {変換} other {変換}}の削除に失敗しました",
"xpack.securitySolution.riskScore.api.transforms.start.errorMessageTitle": "{totalCount, plural, =1 {変換} other {変換}}の開始に失敗しました",
diff --git a/x-pack/plugins/translations/translations/zh-CN.json b/x-pack/plugins/translations/translations/zh-CN.json
index d20c775fd323e..93f98c413795a 100644
--- a/x-pack/plugins/translations/translations/zh-CN.json
+++ b/x-pack/plugins/translations/translations/zh-CN.json
@@ -32336,12 +32336,7 @@
"xpack.securitySolution.responseActionsList.list.recordRange": "正在显示第 {range} 个(共 {total} 个){recordsLabel}",
"xpack.securitySolution.responseActionsList.list.recordRangeLabel": "{records, plural, other {响应操作}}",
"xpack.securitySolution.riskInformation.howCalculatedText": "实体风险引擎每小时运行一次,以聚合过去 30 天出现的“未结”和“已确认”告警,并为主机或用户分配风险分数。然后,它会聚合各个风险分数并使用 {riemannZetaLink} 将其标准化为 0-100 范围。",
- "xpack.securitySolution.riskInformation.learnMore": "详细了解 {riskEntity} 风险",
"xpack.securitySolution.riskInformation.riskHeader": "{riskEntity} 风险分数范围",
- "xpack.securitySolution.riskInformation.riskScoreFieldLabel": "{riskEntity} 风险分数",
- "xpack.securitySolution.riskInformation.riskScoreFieldText": "{riskScoreField} 字段以单个数字值表示 {riskEntity} 的标准化风险。您可以在分类和响应 playbook 中将此值用作相对风险指标。",
- "xpack.securitySolution.riskInformation.riskScoreLevelLabel": "{riskEntity} 风险级别",
- "xpack.securitySolution.riskInformation.riskScoreLevelText": "{riskLevelField} 字段根据预定义的风险指标表示 {riskEntity} 的六个风险级别之一。",
"xpack.securitySolution.riskScore.api.ingestPipeline.delete.errorMessageTitle": "无法删除采集{totalCount, plural, =1 {管道} other {管道}}",
"xpack.securitySolution.riskScore.api.transforms.delete.errorMessageTitle": "无法删除{totalCount, plural, =1 {转换} other {转换}}",
"xpack.securitySolution.riskScore.api.transforms.start.errorMessageTitle": "无法启动{totalCount, plural, =1 {转换} other {转换}}",