From 252d9a53203fa7be1a12edb21c6ab1d81dce4e72 Mon Sep 17 00:00:00 2001
From: Jason Ertel <jason.ertel@securityonionsolutions.com>
Date: Wed, 1 May 2024 12:51:04 -0400
Subject: [PATCH] make rule settings advanced

---
 salt/idstools/soc_idstools.yaml | 3 +++
 salt/suricata/soc_suricata.yaml | 1 +
 2 files changed, 4 insertions(+)

diff --git a/salt/idstools/soc_idstools.yaml b/salt/idstools/soc_idstools.yaml
index f4389f8ba..ce8b56569 100644
--- a/salt/idstools/soc_idstools.yaml
+++ b/salt/idstools/soc_idstools.yaml
@@ -26,6 +26,7 @@ idstools:
       regex: \d*|re:.*
       helpLink: managing-alerts.html
       readonlyUi: True
+      advanced: true
     enabled:
       description: Contains the list of NIDS rules (or regex patterns) enabled across the grid. This setting is readonly; Use the Detections screen to enable rules.
       global: True
@@ -34,6 +35,7 @@ idstools:
       regex: \d*|re:.*
       helpLink: managing-alerts.html
       readonlyUi: True
+      advanced: true
     modify:
       description: Contains the list of NIDS rules (SID "REGEX_SEARCH_TERM" "REGEX_REPLACE_TERM"). This setting is readonly; Use the Detections screen to modify rules.
       global: True
@@ -41,6 +43,7 @@ idstools:
       forcedType: "[]string"
       helpLink: managing-alerts.html
       readonlyUi: True
+      advanced: true
   rules:
     local__rules:
       description: Contains the list of custom NIDS rules applied to the grid. This setting is readonly; Use the Detections screen to adjust rules.
diff --git a/salt/suricata/soc_suricata.yaml b/salt/suricata/soc_suricata.yaml
index f7c3b2920..75ad1e476 100644
--- a/salt/suricata/soc_suricata.yaml
+++ b/salt/suricata/soc_suricata.yaml
@@ -12,6 +12,7 @@ suricata:
       title: SIDS
       helpLink: suricata.html
       readonlyUi: True
+      advanced: true
   classification:
     classification__config:
       description: Classifications config file.