[Cloud Security] CloudSetup component integrated with Cloud Asset Discovery (#231343)

Author: seanrathier

x-pack/platform/plugins/private/translations/translations/de-DE.json

@@ -7,6 +7,15 @@
 import type { VulnSeverity } from './types/vulnerabilities';
 import type { MisconfigurationEvaluationStatus } from './types/misconfigurations';
 
+export const ORGANIZATION_ACCOUNT = 'organization-account';
+export const SINGLE_ACCOUNT = 'single-account';
+export const AZURE_SINGLE_ACCOUNT = SINGLE_ACCOUNT;
+export const AZURE_ORGANIZATION_ACCOUNT = ORGANIZATION_ACCOUNT;
+export const AWS_SINGLE_ACCOUNT = SINGLE_ACCOUNT;
+export const AWS_ORGANIZATION_ACCOUNT = ORGANIZATION_ACCOUNT;
+export const GCP_SINGLE_ACCOUNT = SINGLE_ACCOUNT;
+export const GCP_ORGANIZATION_ACCOUNT = ORGANIZATION_ACCOUNT;
+
 export const KSPM_POLICY_TEMPLATE = 'kspm';
 export const CSPM_POLICY_TEMPLATE = 'cspm';
 export const CDR_LATEST_NATIVE_MISCONFIGURATIONS_INDEX_ALIAS =

x-pack/platform/plugins/private/translations/translations/fr-FR.json

@@ -48,3 +48,4 @@ export {
   getFindingsDetectionRuleSearchTags,
 } from './rules/detection_rules';
 export type { RuleResponse } from './rules/rule';
+export * from './test_subjects';

x-pack/platform/plugins/private/translations/translations/ja-JP.json

@@ -0,0 +1,72 @@
+/*
+ * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+ * or more contributor license agreements. Licensed under the Elastic License
+ * 2.0; you may not use this file except in compliance with the Elastic License
+ * 2.0.
+ */
+
+export const AWS_PROVIDER_TEST_SUBJ = 'cloudSetupAwsTestId';
+export const AWS_CLOUD_FORMATION_ACCORDION_TEST_SUBJ =
+  'launchAwsCloudFormationAccordianInstructions';
+export const AWS_LAUNCH_CLOUD_FORMATION_TEST_SUBJ = 'launchCloudFormationAgentlessButton';
+export const AWS_CREDENTIALS_TYPE_SELECTOR_TEST_SUBJ = 'aws-credentials-type-selector';
+export const AWS_CREDENTIALS_TYPE_OPTIONS_TEST_SUBJECTS = {
+  CLOUDFORMATION: 'aws-cloudformation-setup-option',
+  MANUAL: 'aws-manual-setup-option',
+};
+
+export const AWS_ORGANIZATION_ACCOUNT_TEST_SUBJ = 'awsOrganizationTestId';
+export const AWS_SINGLE_ACCOUNT_TEST_SUBJ = 'awsSingleTestId';
+
+export const AWS_INPUT_TEST_SUBJECTS = {
+  ROLE_ARN: 'awsRoleArnInput',
+  DIRECT_ACCESS_KEY_ID: 'awsDirectAccessKeyId',
+  DIRECT_ACCESS_SECRET_KEY: 'passwordInput-secret-access-key',
+  TEMP_ACCESS_KEY_ID: 'awsTemporaryKeysAccessKeyId',
+  TEMP_ACCESS_SECRET_KEY: 'passwordInput-secret-access-key',
+  TEMP_ACCESS_SESSION_TOKEN: 'awsTemporaryKeysSessionToken',
+  SHARED_CREDENTIALS_FILE: 'awsSharedCredentialFile',
+  SHARED_CREDENTIALS_PROFILE_NAME: 'awsCredentialProfileName',
+};
+
+export const GCP_PROVIDER_TEST_SUBJ = 'cloudSetupGcpTestId';
+export const GCP_ORGANIZATION_ACCOUNT_TEST_SUBJ = 'gcpOrganizationAccountTestId';
+export const GCP_SINGLE_ACCOUNT_TEST_SUBJ = 'gcpSingleAccountTestId';
+
+export const GCP_INPUT_FIELDS_TEST_SUBJECTS = {
+  GOOGLE_CLOUD_SHELL_SETUP: 'google_cloud_shell_setup_test_id',
+  PROJECT_ID: 'project_id_test_id',
+  ORGANIZATION_ID: 'organization_id_test_id',
+  CREDENTIALS_TYPE: 'credentials_type_test_id',
+  CREDENTIALS_FILE: 'credentials_file_test_id',
+  CREDENTIALS_JSON: 'textAreaInput-credentials-json',
+  CREDENTIALS_JSON_SECRET_PANEL: 'credentials_json_secret_panel_test_id',
+};
+
+export const GCP_CREDENTIALS_TYPE_OPTIONS_TEST_SUBJECTS = {
+  CLOUD_SHELL: 'gcpGoogleCloudShellOptionTestId',
+  MANUAL: 'gcpManualOptionTestId',
+};
+
+export const AZURE_PROVIDER_TEST_SUBJ = 'cloudSetupAzureTestId';
+export const AZURE_ORGANIZATION_ACCOUNT_TEST_SUBJ = 'azureOrganizationAccountTestId';
+export const AZURE_SINGLE_ACCOUNT_TEST_SUBJ = 'azureSingleAccountTestId';
+export const AZURE_CREDENTIALS_TYPE_SELECTOR_TEST_SUBJ = 'azure-credentials-type-selector';
+
+export const AZURE_SETUP_FORMAT_TEST_SUBJECTS = {
+  ARM_TEMPLATE: 'cloudSetupAzureArmTemplate',
+  MANUAL: 'cloudSetupAzureManual',
+};
+
+export const AZURE_INPUT_FIELDS_TEST_SUBJECTS = {
+  TENANT_ID: 'cloudSetupAzureTenantId',
+  CLIENT_ID: 'cloudSetupAzureClientId',
+  CLIENT_SECRET: 'passwordInput-client-secret',
+  CLIENT_CERTIFICATE_PATH: 'cloudSetupAzureClientCertificatePath',
+  CLIENT_CERTIFICATE_PASSWORD: 'passwordInput-client-certificate-password',
+  CLIENT_USERNAME: 'cloudSetupAzureClientUsername',
+  CLIENT_PASSWORD: 'cloudSetupAzureClientPassword',
+};
+
+export const ADVANCED_OPTION_ACCORDION_TEST_SUBJ = 'advancedOptionsAccordion';
+export const NAMESPACE_INPUT_TEST_SUBJ = 'namespaceInputTestId';

x-pack/platform/plugins/private/translations/translations/zh-CN.json

@@ -7,12 +7,7 @@
 
 export type * from './src/types';
 export * from './src/constants/navigation';
-export {
-  AWS_ORGANIZATION_ACCOUNT,
-  AWS_SINGLE_ACCOUNT,
-  GCP_ORGANIZATION_ACCOUNT,
-  GCP_SINGLE_ACCOUNT,
-} from './src/components/fleet_extensions/constants';
+
 export type { CloudSetupConfig } from './src/components/fleet_extensions/types';
 export type { NavFilter } from './src/utils/query_utils';
 export { showErrorToast } from './src/utils/show_error_toast';

x-pack/solutions/security/packages/kbn-cloud-security-posture/common/constants.ts

@@ -8,8 +8,8 @@ import React from 'react';
 import { render, screen, waitFor } from '@testing-library/react';
 import userEvent from '@testing-library/user-event';
 import { I18nProvider } from '@kbn/i18n-react';
+import { AWS_ORGANIZATION_ACCOUNT, AWS_SINGLE_ACCOUNT } from '@kbn/cloud-security-posture-common';
 import { AwsAccountTypeSelect } from './aws_account_type_selector';
-import { AWS_ORGANIZATION_ACCOUNT, AWS_SINGLE_ACCOUNT } from '../constants';
 import { useCloudSetup } from '../hooks/use_cloud_setup_context';
 import type {
   NewPackagePolicy,

x-pack/solutions/security/packages/kbn-cloud-security-posture/common/index.ts

@@ -11,11 +11,16 @@ import type { NewPackagePolicyInput, PackageInfo } from '@kbn/fleet-plugin/commo
 import type { NewPackagePolicy } from '@kbn/fleet-plugin/public';
 import { EuiCallOut, EuiSpacer, EuiText } from '@elastic/eui';
 import { FormattedMessage } from '@kbn/i18n-react';
+import {
+  AWS_ORGANIZATION_ACCOUNT_TEST_SUBJ,
+  AWS_SINGLE_ACCOUNT_TEST_SUBJ,
+  AWS_ORGANIZATION_ACCOUNT,
+  AWS_SINGLE_ACCOUNT,
+} from '@kbn/cloud-security-posture-common';
 import { updatePolicyWithInputs } from '../utils';
 import type { CspRadioGroupProps } from '../../csp_boxed_radio_group';
 import { RadioGroup } from '../../csp_boxed_radio_group';
 import type { AwsAccountType, UpdatePolicy } from '../types';
-import { AWS_ORGANIZATION_ACCOUNT, AWS_SINGLE_ACCOUNT } from '../constants';
 import { useCloudSetup } from '../hooks/use_cloud_setup_context';
 
 const getAwsAccountType = (input: NewPackagePolicyInput): AwsAccountType | undefined =>
@@ -25,31 +30,31 @@ const getAwsAccountTypeOptions = (isAwsOrgDisabled: boolean): CspRadioGroupProps
   {
     id: AWS_ORGANIZATION_ACCOUNT,
     label: i18n.translate(
-      'securitySolutionPackages.fleetIntegration.awsAccountType.awsOrganizationLabel',
+      'securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.organizationLabel',
       {
         defaultMessage: 'AWS Organization',
       }
     ),
     disabled: isAwsOrgDisabled,
     tooltip: isAwsOrgDisabled
       ? i18n.translate(
-          'securitySolutionPackages.fleetIntegration.awsAccountType.awsOrganizationDisabledTooltip',
+          'securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.organizationDisabledTooltip',
           {
             defaultMessage: 'Supported from integration version 1.5.0 and above',
           }
         )
       : undefined,
-    testId: 'awsOrganizationTestId',
+    testId: AWS_ORGANIZATION_ACCOUNT_TEST_SUBJ,
   },
   {
     id: AWS_SINGLE_ACCOUNT,
     label: i18n.translate(
-      'securitySolutionPackages.fleetIntegration.awsAccountType.singleAccountLabel',
+      'securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.singleAccountLabel',
       {
         defaultMessage: 'Single Account',
       }
     ),
-    testId: 'awsSingleTestId',
+    testId: AWS_SINGLE_ACCOUNT_TEST_SUBJ,
   },
 ];
 
@@ -66,7 +71,7 @@ export const AwsAccountTypeSelect = ({
   packageInfo: PackageInfo;
   disabled: boolean;
 }) => {
-  const { awsOrganizationEnabled, awsPolicyType } = useCloudSetup();
+  const { awsOrganizationEnabled, awsPolicyType, shortName } = useCloudSetup();
 
   const awsAccountTypeOptions = useMemo(
     () => getAwsAccountTypeOptions(!awsOrganizationEnabled),
@@ -97,7 +102,7 @@ export const AwsAccountTypeSelect = ({
     <>
       <EuiText color="subdued" size="s">
         <FormattedMessage
-          id="securitySolutionPackages.fleetIntegration.awsAccountTypeDescriptionLabel"
+          id="securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.descriptionLabel"
           defaultMessage="Select between single account or organization, and then fill in the name and description to help identify this integration."
         />
       </EuiText>
@@ -106,7 +111,7 @@ export const AwsAccountTypeSelect = ({
         <>
           <EuiCallOut color="warning">
             <FormattedMessage
-              id="securitySolutionPackages.fleetIntegration.awsAccountType.awsOrganizationNotSupportedMessage"
+              id="securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.awsOrganizationNotSupportedMessage"
               defaultMessage="AWS Organization not supported in current integration version. Please upgrade to the latest version to enable AWS Organizations integration."
             />
           </EuiCallOut>
@@ -135,7 +140,7 @@ export const AwsAccountTypeSelect = ({
           <EuiSpacer size="l" />
           <EuiText color="subdued" size="s">
             <FormattedMessage
-              id="securitySolutionPackages.fleetIntegration.awsAccountType.awsOrganizationDescription"
+              id="securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.awsOrganizationDescription"
               defaultMessage="Connect Elastic to every AWS Account (current and future) in your environment by providing Elastic with read-only (configuration) access to your AWS organization."
             />
           </EuiText>
@@ -146,8 +151,9 @@ export const AwsAccountTypeSelect = ({
           <EuiSpacer size="l" />
           <EuiText color="subdued" size="s">
             <FormattedMessage
-              id="securitySolutionPackages.fleetIntegration.awsAccountType.singleAccountDescription"
-              defaultMessage="Deploying to a single account is suitable for an initial POC. To ensure complete coverage, it is strongly recommended to deploy CSPM at the organization-level, which automatically connects all accounts (both current and future)."
+              id="securitySolutionPackages.cloudSecurityPosture.cloudSetup.aws.accountType.singleAccountDescription"
+              defaultMessage="Deploying to a single account is suitable for an initial POC. To ensure complete coverage, it is strongly recommended to deploy {shortName} at the organization-level, which automatically connects all accounts (both current and future)."
+              values={{ shortName }}
             />
           </EuiText>
         </>