[Fleet] Create API to report status of integrations synchronization

[criamico]

Closes #192363

Summary

Add endpoint that compares integrations installed on remote cluster with integrations in ccr index fleet-synced-integrations-ccr-<outputId>. Feature flag: enableSyncIntegrationsOnRemote

• Use the ccr info api to check that the ccr index is active
• Compare the content of the two indices and report the sync status for each integration:

GET kbn:/api/fleet/remote_synced_integrations/status

{
  "integrations": [
    {
      "package_name": "akamai",
      "package_version": "2.28.0",
      "updated_at": "2025-03-27T10:29:52.485Z",
      "sync_status": true
    },
    {
      "package_name": "auth0",
      "package_version": "1.21.0",
      "updated_at": "2025-03-26T12:06:26.268Z",
      "sync_status": false,
      "error": "Installation status: not_installed" 
    },
]

• Check that the integrations have custom assets and report their sync status (follow up of [Fleet] install custom assets on remote cluster #215504)

Testing

Setup local env with the guide added in dev_docs (preview)

• Install some integrations on local cluster, wait that they are synced on remote
• From remote cluster dev tools, run

GET kbn:/api/fleet/remote_synced_integrations/status

• To verify that custom assets are synced choose an integration, for instance system
• From the package policy select a var, advanced options and add a custom mapping and a custom pipeline. In my example I used system

• Run the endpoint again and you should see the status of custom assets too:

{
  "integrations": [
    {
      "package_name": "akamai",
      "package_version": "2.28.0",
      "updated_at": "2025-03-27T10:29:52.485Z",
      "sync_status": "completed"
    },
    {
      "package_name": "elastic_agent",
      "package_version": "2.2.0",
      "updated_at": "2025-03-26T14:06:29.216Z",
      "sync_status": "completed"
    },
    {
      "package_name": "synthetics",
      "package_version": "1.4.1",
      "updated_at": "2025-03-26T14:06:31.909Z",
      "sync_status": "completed"
    },
    {
      "package_name": "system",
      "package_version": "1.67.3",
      "updated_at": "2025-03-28T10:08:00.602Z",
      "sync_status": "completed"
    }
  ],
  "custom_assets": {
    "component_template:logs-system.auth@custom": {
      "name": "logs-system.auth@custom",
      "type": "component_template",
      "package_name": "system",
      "package_version": "1.67.3",
      "sync_status": "completed"
    },
    "ingest_pipeline:logs-system.auth@custom": {
      "name": "logs-system.auth@custom",
      "type": "ingest_pipeline",
      "package_name": "system",
      "package_version": "1.67.3",
      "sync_status": "completed"
    }
  }
}

Checklist

• Documentation was added for features that require explanation or tutorials
• Unit or functional tests were updated or added to match the most common scenarios

[criamico]

@elasticmachine merge upstream

[juliaElastic]

it's not necessarily an error if the main cluster doesn't have any integrations either

[criamico]

I went for the solution of fetching all the pipelines and component templates and keep them on memory, instead of doing a call for each one in the loop below. @juliaElastic do you think it could become a performance issue?

[juliaElastic]

We should only compare pipelines and component templates that match '*@custom', like it's done in custom_assets.ts. The other assets are already installed when the package is installed, no need to compare them.

[juliaElastic]

pipelines have an optional version which we can use to compare like here

kibana/x-pack/platform/plugins/shared/fleet/server/tasks/sync_integrations/custom_assets.ts

Line 241 in b438a71

(existingPipeline.version && existingPipeline.version < customAsset.pipeline.version) ||

we should probably have a common logic to compare here and custom_assets.ts

[criamico]

@elasticmachine merge upstream

[elasticmachine]

Pinging @elastic/fleet (Team:Fleet)

[criamico]

@juliaElastic based on the new requirements in #217025 we should be able to query by output_id:

Create API that queries remote kibana sync status API by output ID (to be used by the UI to show status)
e.g. /api/fleet/remote_synced_integrations/{output_id}/status -> https://{remote_kibana}/api/fleet/remote_synced_integrations/status

In a previous commit it was already by output_id. Do you think we'll need to keep the general status? Otherwise I'll change it directly in this PR.

[criamico]

@elasticmachine merge upstream

[juliaElastic]

@juliaElastic based on the new requirements in #217025 we should be able to query by output_id:

Create API that queries remote kibana sync status API by output ID (to be used by the UI to show status)
e.g. /api/fleet/remote_synced_integrations/{output_id}/status -> https://{remote_kibana}/api/fleet/remote_synced_integrations/status

In a previous commit it was already by output_id. Do you think we'll need to keep the general status? Otherwise I'll change it directly in this PR.

We can keep as is in the current pr, as it collects the status in the remote cluster. The new API by output_id will only call the remote API using the remote output kibana url and API key.

[criamico]

@elasticmachine merge upstream

[juliaElastic]

should we return the error message instead of throwing an error?

[criamico]

It's handled here: https://github.com/elastic/kibana/pull/216178/files#diff-f8de6a6d308d65b9d61c400a2fdbebe1078e67eaf036537c028476260be254f5R312-R315

I left the throw block and handled outside because we might need this function elsewhere, this is a basic utility for the ccr case.

[juliaElastic]

okay, then shouldn't we return the error in the catch there? https://github.com/elastic/kibana/pull/216178/files#diff-f8de6a6d308d65b9d61c400a2fdbebe1078e67eaf036537c028476260be254f5R324

[criamico]

Fixed, I added some unit tests to cover these cases

[juliaElastic]

the version comparison should be done before the equality check, so we can skip the equality check if the version is not equal

[juliaElastic]

should this be synchronizing (the deletion might not have happened yet) unless we know there was an error deleting?

[juliaElastic]

same here, should these be synchronizing unless we know there was an error deleting?

[criamico]

@elasticmachine merge upstream

[juliaElastic]

this should be synchronizing too

[elasticmachine]

💚 Build Succeeded

• Buildkite Build
• Commit: f884e10

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id	before	after	diff
fleet	1199	1201	+2

History

• 💚 Build #290276 succeeded 317ed18
• 💔 Build #290206 failed 2b4cb2e
• 💔 Build #290141 failed 4519bd6
• 💔 Build #290074 failed 0907204
• 💛 Build #289957 was flaky 8129bf4
• 💔 Build #289827 failed 3a0db47

cc @criamico

[juliaElastic]

can we return the error message if install_status: install_failed from latest_install_failed_attempts or latest_executed_state?

kibana/x-pack/platform/plugins/shared/fleet/common/types/models/epm.ts

Line 674 in 0c5fa84

latest_install_failed_attempts?: InstallFailedAttempt[];

[juliaElastic]

LGTM, thanks for the updates