[Cases] Cases assignees sub feature

[kqualters-elastic]

Summary

This pr implements a new cases assignee sub-feature, allowing users to control a role's ability to change the assignee of a case. With the permission enabled, they can assign any user to any case, with it disabled, the assignees component is hidden.

Read only + enabled:

All + assign disabled:

Checklist

• Documentation was added for features that require explanation or tutorials
• Unit or functional tests were updated or added to match the most common scenarios

[elasticmachine]

Pinging @elastic/response-ops (Team:ResponseOps)

[elasticmachine]

Pinging @elastic/security-threat-hunting-investigations (Team:Threat Hunting:Investigations)

[kqualters-elastic]

@kc13greiner updated

[kc13greiner]

Nit: I think V3 variants of users: casesNoDelete, obsCasesNoDelete, and secAllCasesNoDelete (the names are sort of misleading, the have the minimal_all privilege) should be added here.

[kc13greiner]

Nit: I think V1 and V2 variants of users: casesNoDelete, obsCasesNoDelete, and secAllCasesNoDelete (the names are sort of misleading, the have the minimal_all privilege) should be added here.

[kqualters-elastic]

that I agree with, I think I was just trying to avoid a permutation explosion in these test names, this is quickly going to become untenable how it currently works, i.e. secCasesV3MinAllWithSettingsWithoutCommentWithReopenWithoutDeleteWithAssign ha

[kc13greiner]

@kc13greiner ya I updated the 2 solution definitions as well, all should be in sync. As for the tests, since these are ultimately just a static blob of json, there aren't really any unit level tests that 'know' exactly what should/shouldn't be in each, as the json blob is the source of truth itself. I've just been relying on the integration tests in x-pack/test/api_integration/apis/cases, x-pack/test/cases_api_integration, & x-pack/test/security_api_integration/tests/features, with most in x-pack/test/api_integration/apis/cases, although clearly there's not a test that should have been failing for that improper configuration I had in this pr for a while now.

@kqualters-elastic I found the tests I was looking for 👍 I added a few suggestions to help cover the minimal_all

Changes to the the V1/2/3 of all types LGTM.

Thank you for making all those changes!

[kc13greiner]

Left a few suggestions above for improved test coverage of minimal_all

Overall LGTM - great work!

[michaelolo24]

@elasticmachine merge upstream

[elasticmachine]

💚 Build Succeeded

• Buildkite Build
• Commit: f9fd4d9
• Storybooks Preview
• Kibana Serverless Image: docker.elastic.co/kibana-ci/kibana-serverless:pr-201654-f9fd4d9a9e9e

Metrics [docs]

Public APIs missing comments

Total count of every public API that lacks a comment. Target amount is 0. Run node scripts/build_api_docs --plugin [yourplugin] --stats comments for more detailed information.

id	before	after	diff
cases	105	109	+4
observability	689	690	+1
total			+5

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
cases	540.5KB	540.8KB	+263.0B

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id	before	after	diff
cases	162.2KB	162.5KB	+318.0B
observability	102.1KB	102.1KB	+74.0B
observabilityShared	93.9KB	93.9KB	+20.0B
total			+412.0B

Unknown metric groups

API count

id	before	after	diff
cases	125	129	+4
observability	697	698	+1
total			+5

ESLint disabled line counts

id	before	after	diff
cases	63	64	+1

References to deprecated APIs

id	before	after	diff
ml	57	60	+3

Total ESLint disabled count

id	before	after	diff
cases	81	82	+1

History

• 💔 Build #271846 failed e9d4f33
• 💚 Build #271840 succeeded 0a09c89
• 💔 Build #271823 failed cbef6bf
• 💚 Build #271801 succeeded 547e024
• 💚 Build #271332 succeeded 7437b84

[kibanamachine]

Starting backport for target branches: 8.x

https://github.com/elastic/kibana/actions/runs/13056276893

[kibanamachine]

💔 All backports failed

Status	Branch	Result
❌	8.x	Backport failed because of merge conflicts

Manual backport

To create the backport manually run:

node scripts/backport --pr 201654

Questions ?

Please refer to the Backport tool documentation

[kibanamachine]

Friendly reminder: Looks like this PR hasn’t been backported yet.
To create automatically backports add a backport:* label or prevent reminders by adding the backport:skip label.
You can also create backports manually by running node scripts/backport --pr 201654 locally

[kobelb]

I just updated the labels on this PR. It didn't merge before the 9.0/8.18 feature freeze, and the backport to 8.x failed. Right now, this change will only be included in 9.1. I'm assuming that we'll be fixing the backport, so I added the 8.19 label.

[kqualters-elastic]

💚 All backports created successfully

Status	Branch	Result
✅	8.18

Note: Successful backport PRs will be merged automatically after passing CI.

Questions ?

Please refer to the Backport tool documentation

[kqualters-elastic]

💔 Some backports could not be created

Status	Branch	Result
❌	9.0	Cherrypick failed because the selected commit (0e7c608) is empty. Did you already backport this commit?
✅	8.x

Note: Successful backport PRs will be merged automatically after passing CI.

Manual backport

To create the backport manually run:

node scripts/backport --pr 201654

Questions ?

Please refer to the Backport tool documentation

[kqualters-elastic]

@kobelb I think it made it in to 9.0 bc1, but not 8.18: https://github.com/elastic/kibana/commits/fd1f8b62137f14e93716e298e4e931b576e2ca13 for 9.0 vs
https://github.com/elastic/kibana/commits/33e6754d67870b0e403266b752c3973539506cc6 for 8.18 (and as the backport above is still open). The 8.18 backport in particular gave me a bunch of issues locally, and now is failing on buildkite with an error that seems completely unrelated:

ERROR Failed to capture OAS: {
--
  | "errno": -28,
  | "code": "ENOSPC",
  | "syscall": "mkdir",
  | "path": "/opt/buildkite-agent/builds/bk-agent-prod-gcp-1738636880036796160/elastic/kibana-pull-request/kibana/.es/es-test-cluster/ES_TMPDIR"
  | }
  | ERROR UNHANDLED ERROR
  | ERROR Error: ENOSPC: no space left on device, mkdir '/opt/buildkite-agent/builds/bk-agent-prod-gcp-1738636880036796160/elastic/kibana-pull-request/kibana/.es/es-test-cluster/ES_TMPDIR'

I think it would be ok to include in 8.18 BC2 as long as CI passes eventually, given that it's in 9.0 already, but if anyone disagrees I can close it.