Searching key-value pairs in alert search yields incorrect results

XMLWordPrintable

    • 2
    • Severity 2 - Major

      Issue Summary

      Searching key-value pairs in the alert search is returning incorrect results for the status filter on the query.

      Steps to Reproduce

      1. Search key-value pairs in the alert search
        1. example: status: open AND (incident-alert-type: Owner OR incident-alert-type: responder)

      Expected Results

      This isn't supported search syntax as far as I'm aware, so I'd expect an error or no results.

      Actual Results

      Closed alerts are returned with the results.

      Workaround

      Use the 'detailsPair' search option.

      Syntax: detailsPair("key":"value")

              Assignee:
              Halit Şimşek
              Reporter:
              Brennan Kiely
              Votes:
              3 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: