[RAC] Add mapping update logic to RuleDataClient

x-pack/plugins/apm/server/plugin.ts

@@ -136,41 +136,49 @@ export class APMPlugin
       }
 
       await ruleDataService.createOrUpdateComponentTemplate({
-        name: componentTemplateName,
-        body: {
-          template: {
-            settings: {
-              number_of_shards: 1,
-            },
-            mappings: mappingFromFieldMap({
-              [SERVICE_NAME]: {
-                type: 'keyword',
-              },
-              [SERVICE_ENVIRONMENT]: {
-                type: 'keyword',
-              },
-              [TRANSACTION_TYPE]: {
-                type: 'keyword',
+        template: {
+          name: componentTemplateName,
+          body: {
+            template: {
+              settings: {
+                number_of_shards: 1,
               },
-              [PROCESSOR_EVENT]: {
-                type: 'keyword',
-              },
-            }),
+              mappings: mappingFromFieldMap({
+                [SERVICE_NAME]: {
+                  type: 'keyword',
+                },
+                [SERVICE_ENVIRONMENT]: {
+                  type: 'keyword',
+                },
+                [TRANSACTION_TYPE]: {
+                  type: 'keyword',
+                },
+                [PROCESSOR_EVENT]: {
+                  type: 'keyword',
+                },
+              }),
+            },
           },
         },
+        templateVersion: 1,
       });
 
       await ruleDataService.createOrUpdateIndexTemplate({
-        name: ruleDataService.getFullAssetName('apm-index-template'),
-        body: {
-          index_patterns: [
-            ruleDataService.getFullAssetName('observability-apm*'),
-          ],
-          composed_of: [
-            ruleDataService.getFullAssetName(TECHNICAL_COMPONENT_TEMPLATE_NAME),
-            componentTemplateName,
-          ],
+        template: {
+          name: ruleDataService.getFullAssetName('apm-index-template'),
+          body: {
+            index_patterns: [
+              ruleDataService.getFullAssetName('observability-apm*'),
+            ],
+            composed_of: [
+              ruleDataService.getFullAssetName(
+                TECHNICAL_COMPONENT_TEMPLATE_NAME
+              ),
+              componentTemplateName,
+            ],
+          },
         },
+        templateVersion: 1,
       });
     });
 

x-pack/plugins/rule_registry/server/rule_data_client/index.ts

@@ -5,9 +5,9 @@
  * 2.0.
  */
 
-import { isEmpty } from 'lodash';
-import type { estypes } from '@elastic/elasticsearch';
+import { IndicesRolloverResponse } from '@elastic/elasticsearch/api/types';
 import { ResponseError } from '@elastic/elasticsearch/lib/errors';
+import { get } from 'lodash';
 import { IndexPatternsFetcher } from '../../../../../src/plugins/data/server';
 import {
   IRuleDataClient,
@@ -70,9 +70,10 @@ export class RuleDataClient implements IRuleDataClient {
     };
   }
 
-  getWriter(options: { namespace?: string } = {}): RuleDataWriter {
+  async getWriter(options: { namespace?: string } = {}): Promise<RuleDataWriter> {
     const { namespace } = options;
     const alias = getNamespacedAlias({ alias: this.options.alias, namespace });
+    await this.rolloverAliasIfNeeded({ namespace });
     return {
       bulk: async (request) => {
         const clusterClient = await this.getClusterClient();
@@ -89,7 +90,7 @@ export class RuleDataClient implements IRuleDataClient {
               response.body.items.length > 0 &&
               response.body.items?.[0]?.index?.error?.type === 'index_not_found_exception'
             ) {
-              return this.createOrUpdateWriteTarget({ namespace }).then(() => {
+              return this.createWriteTargetIfNeeded({ namespace }).then(() => {
                 return clusterClient.bulk(requestWithDefaultParameters);
               });
             }
@@ -102,15 +103,78 @@ export class RuleDataClient implements IRuleDataClient {
     };
   }
 
-  async createOrUpdateWriteTarget({ namespace }: { namespace?: string }) {
+  async rolloverAliasIfNeeded({ namespace }: { namespace?: string }) {
+    const clusterClient = await this.getClusterClient();
+    const alias = getNamespacedAlias({ alias: this.options.alias, namespace });
+    let simulatedRollover: IndicesRolloverResponse;
+    try {
+      ({ body: simulatedRollover } = await clusterClient.indices.rollover({
+        alias,
+        dry_run: true,
+      }));
+    } catch (err) {
+      if (err?.meta?.body?.error?.type !== 'index_not_found_exception') {
+        throw err;
+      }
+      return;
+    }
+
+    const [writeIndexMapping, simulatedIndexMapping] = await Promise.all([
+      clusterClient.indices.get({
+        index: simulatedRollover.old_index,
+      }),
+      clusterClient.indices.simulateIndexTemplate({
+        name: simulatedRollover.new_index,
+      }),
+    ]);
+    const currentVersions = get(writeIndexMapping, [
+      'body',
+      simulatedRollover.old_index,
+      'mappings',
+      '_meta',
+      'versions',
+    ]);
+    const targetVersions = get(simulatedIndexMapping, [
+      'body',
+      'template',
+      'mappings',
+      '_meta',
+      'versions',
+    ]);
+    const componentTemplateRemoved =
+      Object.keys(currentVersions).length > Object.keys(targetVersions).length;
+    const componentTemplateUpdated = Object.entries(targetVersions).reduce(
+      (acc, [templateName, targetTemplateVersion]) => {
+        const currentTemplateVersion = get(currentVersions, templateName);
+        const templateUpdated =
+          currentTemplateVersion == null || currentTemplateVersion < Number(targetTemplateVersion);
+        return acc || templateUpdated;
+      },
+      false
+    );
+    const needRollover = componentTemplateRemoved || componentTemplateUpdated;
+    if (needRollover) {
+      try {
+        await clusterClient.indices.rollover({
+          alias,
+          new_index: simulatedRollover.new_index,
+        });
+      } catch (err) {
+        if (err?.meta?.body?.error?.type !== 'resource_already_exists_exception') {
+          throw err;
+        }
+      }
+    }
+  }
+
+  async createWriteTargetIfNeeded({ namespace }: { namespace?: string }) {
     const alias = getNamespacedAlias({ alias: this.options.alias, namespace });
 
     const clusterClient = await this.getClusterClient();
 
     const { body: aliasExists } = await clusterClient.indices.existsAlias({
       name: alias,
     });
-
     const concreteIndexName = `${alias}-000001`;
 
     if (!aliasExists) {
@@ -132,20 +196,5 @@ export class RuleDataClient implements IRuleDataClient {
         }
       }
     }
-
-    const { body: simulateResponse } = await clusterClient.transport.request({
-      method: 'POST',
-      path: `/_index_template/_simulate_index/${concreteIndexName}`,
-    });
-
-    const mappings: estypes.MappingTypeMapping = simulateResponse.template.mappings;
-
-    if (isEmpty(mappings)) {
-      throw new Error(
-        'No mappings would be generated for this index, possibly due to failed/misconfigured bootstrapping'
-      );
-    }
-
-    await clusterClient.indices.putMapping({ index: `${alias}*`, body: mappings });
   }
 }

x-pack/plugins/rule_registry/server/rule_data_client/types.ts

@@ -33,8 +33,8 @@ export interface RuleDataWriter {
 
 export interface IRuleDataClient {
   getReader(options?: { namespace?: string }): RuleDataReader;
-  getWriter(options?: { namespace?: string }): RuleDataWriter;
-  createOrUpdateWriteTarget(options: { namespace?: string }): Promise<void>;
+  getWriter(options?: { namespace?: string }): Promise<RuleDataWriter>;
+  createWriteTargetIfNeeded(options: { namespace?: string }): Promise<void>;
 }
 
 export interface RuleDataClientConstructorOptions {

x-pack/plugins/rule_registry/server/rule_data_plugin_service/index.ts

@@ -7,6 +7,7 @@
 import { ClusterPutComponentTemplate } from '@elastic/elasticsearch/api/requestParams';
 import { estypes } from '@elastic/elasticsearch';
 import { ElasticsearchClient, Logger } from 'kibana/server';
+import { merge } from 'lodash';
 import { technicalComponentTemplate } from '../../common/assets/component_templates/technical_component_template';
 import {
   DEFAULT_ILM_POLICY_ID,
@@ -78,36 +79,68 @@ export class RuleDataPluginService {
     });
 
     await this._createOrUpdateComponentTemplate({
-      name: this.getFullAssetName(TECHNICAL_COMPONENT_TEMPLATE_NAME),
-      body: technicalComponentTemplate,
+      template: {
+        name: this.getFullAssetName(TECHNICAL_COMPONENT_TEMPLATE_NAME),
+        body: technicalComponentTemplate,
+      },
+      templateVersion: 1,
     });
 
     await this._createOrUpdateComponentTemplate({
-      name: this.getFullAssetName(ECS_COMPONENT_TEMPLATE_NAME),
-      body: ecsComponentTemplate,
+      template: {
+        name: this.getFullAssetName(ECS_COMPONENT_TEMPLATE_NAME),
+        body: ecsComponentTemplate,
+      },
+      templateVersion: 1,
     });
 
     this.options.logger.info(`Installed all assets`);
 
     this.signal.complete();
   }
 
-  private async _createOrUpdateComponentTemplate(
-    template: ClusterPutComponentTemplate<ClusterPutComponentTemplateBody>
-  ) {
+  private async _createOrUpdateComponentTemplate({
+    template,
+    templateVersion,
+  }: {
+    template: ClusterPutComponentTemplate<ClusterPutComponentTemplateBody>;
+    templateVersion: number;
+  }) {
     this.assertWriteEnabled();
 
     const clusterClient = await this.getClusterClient();
     this.options.logger.debug(`Installing component template ${template.name}`);
-    return clusterClient.cluster.putComponentTemplate(template);
+    const mergedTemplate = merge(
+      {
+        body: {
+          template: { mappings: { _meta: { versions: { [template.name]: templateVersion } } } },
+        },
+      },
+      template
+    );
+    return clusterClient.cluster.putComponentTemplate(mergedTemplate);
   }
 
-  private async _createOrUpdateIndexTemplate(template: PutIndexTemplateRequest) {
+  private async _createOrUpdateIndexTemplate({
+    template,
+    templateVersion,
+  }: {
+    template: PutIndexTemplateRequest;
+    templateVersion: number;
+  }) {
     this.assertWriteEnabled();
 
     const clusterClient = await this.getClusterClient();
     this.options.logger.debug(`Installing index template ${template.name}`);
-    return clusterClient.indices.putIndexTemplate(template);
+    const mergedTemplate = merge(
+      {
+        body: {
+          template: { mappings: { _meta: { versions: { [template.name]: templateVersion } } } },
+        },
+      },
+      template
+    );
+    return clusterClient.indices.putIndexTemplate(mergedTemplate);
   }
 
   private async _createOrUpdateLifecyclePolicy(policy: estypes.IlmPutLifecycleRequest) {
@@ -118,16 +151,26 @@ export class RuleDataPluginService {
     return clusterClient.ilm.putLifecycle(policy);
   }
 
-  async createOrUpdateComponentTemplate(
-    template: ClusterPutComponentTemplate<ClusterPutComponentTemplateBody>
-  ) {
+  async createOrUpdateComponentTemplate({
+    template,
+    templateVersion,
+  }: {
+    template: ClusterPutComponentTemplate<ClusterPutComponentTemplateBody>;
+    templateVersion: number;
+  }) {
     await this.wait();
-    return this._createOrUpdateComponentTemplate(template);
+    return this._createOrUpdateComponentTemplate({ template, templateVersion });
   }
 
-  async createOrUpdateIndexTemplate(template: PutIndexTemplateRequest) {
+  async createOrUpdateIndexTemplate({
+    template,
+    templateVersion,
+  }: {
+    template: PutIndexTemplateRequest;
+    templateVersion: number;
+  }) {
     await this.wait();
-    return this._createOrUpdateIndexTemplate(template);
+    return this._createOrUpdateIndexTemplate({ template, templateVersion });
   }
 
   async createOrUpdateLifecyclePolicy(policy: estypes.IlmPutLifecycleRequest) {

x-pack/plugins/rule_registry/server/utils/create_lifecycle_rule_type_factory.ts

@@ -235,7 +235,9 @@ export const createLifecycleRuleTypeFactory: CreateLifecycleRuleTypeFactory = ({
           });
         }
 
-        await ruleDataClient.getWriter().bulk({
+        const ruleDataClientWriter = await ruleDataClient.getWriter();
+
+        await ruleDataClientWriter.bulk({
           body: eventsToIndex
             .flatMap((event) => [{ index: {} }, event])
             .concat(

x-pack/plugins/rule_registry/server/utils/create_persistence_rule_type_factory.ts

@@ -101,7 +101,8 @@ export const createPersistenceRuleTypeFactory: CreatePersistenceRuleTypeFactory
       logger.debug(`Found ${numAlerts} alerts.`);
 
       if (ruleDataClient && numAlerts) {
-        await ruleDataClient.getWriter().bulk({
+        const ruleDataClientWriter = await ruleDataClient.getWriter();
+        await ruleDataClientWriter.bulk({
           body: currentAlerts.flatMap((event) => [{ index: {} }, event]),
         });
       }