[Security Solution][Explore] Fixes failing test in MKI environments (e…

…lastic#186116)

Fix: elastic#179231

##Summary

When we changed the default role used in Cypress from `admin` to
`platform_engineer`, the
`x-pack/test/security_solution_cypress/cypress/e2e/explore/cases/creation.cy.ts`
test started to fail in MKI environments.

The test was failing in both assertions for MKI environments:

cy.get(CASE_DETAILS_USERNAMES).eq(REPORTER).should('contain', username);
cy.get(CASE_DETAILS_USERNAMES).eq(PARTICIPANTS).should('contain',
username);

This was happening because we were hardcoding the username and this is a
thing we should not be doing anymore since we are making the test prone
to failures.

In this PR we are fixing that behavior by using a method that retrieves
the correct value.

x-pack/test/security_solution_cypress/cypress/e2e/explore/cases/creation.cy.ts

@@ -48,16 +48,21 @@ import {
   fillCasesMandatoryfields,
   filterStatusOpen,
 } from '../../../tasks/create_new_case';
-import { login } from '../../../tasks/login';
 import { visit, visitWithTimeRange } from '../../../tasks/navigation';
 
 import { CASES_URL, OVERVIEW_URL } from '../../../urls/navigation';
 import { ELASTICSEARCH_USERNAME, IS_SERVERLESS } from '../../../env_var_names_constants';
 import { deleteCases } from '../../../tasks/api_calls/cases';
+import { login } from '../../../tasks/login';
 
-// https://github.com/elastic/kibana/issues/179231
 const isServerless = Cypress.env(IS_SERVERLESS);
-const username = isServerless ? 'platform_engineer' : Cypress.env(ELASTICSEARCH_USERNAME);
+const getUsername = () => {
+  if (isServerless) {
+    return cy.task('getFullname');
+  } else {
+    return cy.wrap(Cypress.env(ELASTICSEARCH_USERNAME));
+  }
+};
 
 // Tracked by https://github.com/elastic/security-team/issues/7696
 describe('Cases', { tags: ['@ess', '@serverless'] }, () => {
@@ -109,12 +114,17 @@ describe('Cases', { tags: ['@ess', '@serverless'] }, () => {
     cy.get(CASE_DETAILS_PAGE_TITLE).should('have.text', this.mycase.name);
     cy.get(CASE_DETAILS_STATUS).should('have.text', 'Open');
     cy.get(CASE_DETAILS_USER_ACTION_DESCRIPTION_EVENT).should('have.text', 'Description');
+
     cy.get(CASE_DETAILS_DESCRIPTION).should(
       'have.text',
       `${this.mycase.description} ${this.mycase.timeline.title}`
     );
-    cy.get(CASE_DETAILS_USERNAMES).eq(REPORTER).should('contain', username);
-    cy.get(CASE_DETAILS_USERNAMES).eq(PARTICIPANTS).should('contain', username);
+
+    getUsername().then((username) => {
+      cy.get(CASE_DETAILS_USERNAMES).eq(REPORTER).should('contain', username);
+      cy.get(CASE_DETAILS_USERNAMES).eq(PARTICIPANTS).should('contain', username);
+    });
+
     cy.get(CASE_DETAILS_TAGS).should('have.text', expectedTags);
 
     EXPECTED_METRICS.forEach((metric) => {

x-pack/test/security_solution_cypress/cypress/env_var_names_constants.ts

@@ -5,6 +5,8 @@
  * 2.0.
  */
 
+import { ROLES } from '@kbn/security-solution-plugin/common/test';
+
 /**
  * The `CYPRESS_ELASTICSEARCH_USERNAME` environment variable specifies the
  * username to be used when authenticating with Kibana
@@ -28,3 +30,9 @@ export const IS_SERVERLESS = 'IS_SERVERLESS';
  * environment is a real MKI.
  */
 export const CLOUD_SERVERLESS = 'CLOUD_SERVERLESS';
+
+/**
+ * The `DEFAULT_SERVERLESS_ROLE` environment variable specifies the default role used
+ * on serverless tests/
+ */
+export const DEFAULT_SERVERLESS_ROLE = ROLES.platform_engineer;

x-pack/test/security_solution_cypress/cypress/support/saml_auth.ts

@@ -9,6 +9,7 @@ import { ToolingLog } from '@kbn/tooling-log';
 
 import { SecurityRoleName } from '@kbn/security-solution-plugin/common/test';
 import { HostOptions, SamlSessionManager } from '@kbn/test';
+import { DEFAULT_SERVERLESS_ROLE } from '../env_var_names_constants';
 
 export const samlAuthentication = async (
   on: Cypress.PluginEvents,
@@ -28,10 +29,11 @@ export const samlAuthentication = async (
     password: config.env.ELASTICSEARCH_PASSWORD,
   };
 
+  // If config.env.PROXY_ORG is set, it means that proxy service is used to create projects. Define the proxy org filename to override the roles.
+  const rolesFilename = config.env.PROXY_ORG ? `${config.env.PROXY_ORG}.json` : undefined;
+
   on('task', {
     getSessionCookie: async (role: string | SecurityRoleName): Promise<string> => {
-      // If config.env.PROXY_ORG is set, it means that proxy service is used to create projects. Define the proxy org filename to override the roles.
-      const rolesFilename = config.env.PROXY_ORG ? `${config.env.PROXY_ORG}.json` : undefined;
       const sessionManager = new SamlSessionManager(
         {
           hostOptions,
@@ -42,5 +44,19 @@ export const samlAuthentication = async (
       );
       return sessionManager.getSessionCookieForRole(role);
     },
+    getFullname: async (
+      role: string | SecurityRoleName = DEFAULT_SERVERLESS_ROLE
+    ): Promise<string> => {
+      const sessionManager = new SamlSessionManager(
+        {
+          hostOptions,
+          log,
+          isCloud: config.env.CLOUD_SERVERLESS,
+        },
+        rolesFilename
+      );
+      const { full_name: fullName } = await sessionManager.getUserData(role);
+      return fullName;
+    },
   });
 };

x-pack/test/security_solution_cypress/cypress/tasks/login.ts

@@ -10,6 +10,7 @@ import { KNOWN_SERVERLESS_ROLE_DEFINITIONS } from '@kbn/security-solution-plugin
 import { LOGOUT_URL } from '../urls/navigation';
 import {
   CLOUD_SERVERLESS,
+  DEFAULT_SERVERLESS_ROLE,
   ELASTICSEARCH_PASSWORD,
   ELASTICSEARCH_USERNAME,
   IS_SERVERLESS,
@@ -45,7 +46,7 @@ export const login = (role?: SecurityRoleName): void => {
 
   if (Cypress.env(IS_SERVERLESS)) {
     if (!role) {
-      testRole = 'platform_engineer';
+      testRole = DEFAULT_SERVERLESS_ROLE;
     } else {
       testRole = role;
     }