Kibana: Neutral-naming in Kibana

Created on 12 Jul 2020  路  12Comments  路  Source: elastic/kibana

Elastic has decided to move away from white/black-list terms to more inclusive allow/deny-list, this issue tracks places in Kibana we need to refactor for allow/deny-list:

Allow list:

  • whitelist in HTTP server xsrf @elastic/kibana-platform (will be removed with 8.0 release)
  • [ ] requestHeadersWhitelist in Elasticsearch client @elastic/kibana-platform https://github.com/elastic/kibana/pull/71610 (waiting for https://github.com/elastic/kibana/issues/71398#issuecomment-658888476)
  • [ ] referrerWhitelist in HTTP server @elastic/kibana-platform https://github.com/elastic/kibana/pull/71625 (waiting for https://github.com/elastic/kibana/issues/71398#issuecomment-658888476)
  • [x] in packages/kbn-config-schema/src/types/string_type.ts @elastic/kibana-platform https://github.com/elastic/kibana/pull/71607
  • [ ] LICENSE_WHITELIST and DEV_ONLY_LICENSE_WHITELIST, and mockModulesWhitelist and other in /src/dev @elastic/kibana-operations
  • [x] "whitelist" in actions_config.test.ts tests and whitelistError in actions plugin @elastic/kibana-alerting-services #71630
  • [x] whitelistUrlSchemes in field formats @elastic/kibana-app-arch https://github.com/elastic/kibana/pull/71400
  • [x] "whitelist" in src/core/MIGRATION.md @elastic/kibana-platform https://github.com/elastic/kibana/pull/71607
  • [x] in kibana_utils plugin @elastic/kibana-app-arch https://github.com/elastic/kibana/pull/71400
  • [x] whitelistUrlSchemes in security_solution plugin @elastic/siem https://github.com/elastic/kibana/pull/71858
  • [x] filterWhitelist in uptime plugin @elastic/uptime
  • requestHeadersWhitelist and referrerWhitelist @elastic/kibana-operations
  • [x] in docs/maps/connect-to-ems.asciidoc @elastic/kibana-gis
  • [x] xpack.actions.urlWhitelistConfigurationError translation @elastic/kibana-alerting-services #71630
  • [x] in docs/user/alerting/index.asciidoc @elastic/kibana-alerting-services elastic/kibana#71630
  • [x] xpack.snapshotRestore.repositoryForm.typeReadonly.urlWhitelistDescription translation in snapshot_restore plugin @elastic/es-ui https://github.com/elastic/kibana/pull/71438
  • [x] URL "whitelist" for Graph in docs/management/advanced-options.asciidoc @elastic/kibana-app https://github.com/elastic/kibana/pull/71416

Deny list:

SecuritySolution Alerting Services AppServices Geo KibanaApp Operations Platform Presentation SIEM
Source
picture streamich
7 👎1 👍1

Most helpful comment

I'd go with elasticsearch.allowedRequestHeaders, which sounds more natural and simplifies reading.

picture restrry on 14 Jul 2020
👍3

All 12 comments

I got a couple questions:

  • To which version(s) should this be backported?

  • Do we have any consensus on new terminology / naming, for consistency?

In names (more specifically user facing config properties)

elasticsearch.requestHeadersWhitelist -> elasticsearch.requestHeadersAllowlist or elasticsearch.allowedRequestHeaders ?

when used as a verb:

This is used to whitelist the key -> This is used to allow the key or This is used to allowlist the key

pgayvallet picture pgayvallet on 14 Jul 2020

I'd go with elasticsearch.allowedRequestHeaders, which sounds more natural and simplifies reading.

restrry picture restrry on 14 Jul 2020
👍3

If it helps anyone else, I think a lot of these don't need to be "replace white and black with allow and disallow". For example, in https://github.com/elastic/kibana/pull/71522, I noticed blacklist was easily replaced with invalid. YMMV.

clintandrewhall picture clintandrewhall on 14 Jul 2020

I hate to combine two issues, but changing kibana.yml settings is a big enough hassle that it may be worth doing the snake case and stack consistency check as part of this.

jbudz picture jbudz on 14 Jul 2020

FYI There's some work going on to come up with a project plan to get consistency on this refactoring as much as possible across the stack. Don't have a link yet, but coming soon.

lcawl picture lcawl on 14 Jul 2020

@jbudz I guess I should put https://github.com/elastic/kibana/pull/71625 and https://github.com/elastic/kibana/pull/71610. on standby then?

pgayvallet picture pgayvallet on 15 Jul 2020

@pgayvallet yes let's hold off for now. It's amazing to see the activity this issue, but we also want to be consistent and careful with both the names, especially any changes that might affect docs, BWC, etc.

If there are internal code references we can change I think we can go ahead. Otherwise as @lcawl mentioned there's a coordinated effort being organized for neutral naming across engineering. Especially if we're going to be deprecating settings let's make sure everyone is aligned on consistent change so we only have to change it once.

peterschretlen picture peterschretlen on 15 Jul 2020
👍1

Corresponding elasticsearch issue: https://github.com/elastic/elasticsearch/issues/58087

peterschretlen picture peterschretlen on 15 Jul 2020
  • To which version(s) should this be backported?

I have the same question. What do you think?

cnasikas picture cnasikas on 16 Jul 2020 
* [ ]  `whitelist` in HTTP server xsrf @elastic/kibana-platform

We decided not to rename this once since it is already deprecated and slated to be removed in 8.0

joshdover picture joshdover on 12 Aug 2020

Zube action closed this, so re-opening

paulb-elastic picture paulb-elastic on 24 Nov 2020

Pinging @elastic/kibana-app-services (Team:AppServices)

elasticmachine picture elasticmachine on 2 Dec 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

ynux picture ynux  路  3Comments
stacey-gammon picture stacey-gammon  路  3Comments
timroes picture timroes  路  3Comments
ctindel picture ctindel  路  3Comments
stacey-gammon picture stacey-gammon  路  3Comments