[Bug] Merge Into Case search by title not working #1983
Comments
|
Workarround identified : using * (wildcard) character allows to find cases |
|
You must use lowercase always an between wilcards. For me, * string * is working (no spaces) |
|
Thanks for your feedback. This issue becomes a request for the devs to fix this behavior. So we don't have to use such workarounds. |
That works for some cases, but when searching for an IP (say for example |
|
Little heads up on the workarround, I learned the hard way that using wildcards tends to bypass the indexes, so TheHive was behaving like pre-4.1 and was painfully slow. It prints out this log when using wildcards : |
Is this valid in 4.1.4? |
|
This looks fixed in 4.1.4 |
|
We are on 4.1.4 and still got the issue :( Could it be because we got very old data (+ 1 year old) and not everything is indexed ? |
Request Type
Bug
Work Environment
Problem Description
When trying to merge an alert into a case using the "Merge Into Case" button, if you search your case by case title, you will find that it shows no case at all. Even after a reindex.
The request "/api/v1/query?name=get-case-for-merge" seems to never return anything.
Steps to Reproduce
Complementary information
TheHive logs, shows nothing out of the ordinary, it reponds 200 as if everything went well.
The text was updated successfully, but these errors were encountered: