From bcb35b53dcccf56115cb273fc8ddebf7c79606a7 Mon Sep 17 00:00:00 2001 From: talco773 <84714863+talco773@users.noreply.github.com> Date: Sun, 7 May 2023 14:56:09 +0300 Subject: [PATCH 01/31] Adds base for updating Microsoft.Security from version preview/2023-03-01-preview to version 2023-05-01-preview --- .../DeleteSecurityConnector_example.json | 12 + ...curityConnectorSingleResource_example.json | 44 + ...curityConnectorsResourceGroup_example.json | 124 ++ ...ecurityConnectorsSubscription_example.json | 181 ++ .../PatchSecurityConnector_example.json | 64 + .../PutSecurityConnector_example.json | 98 ++ .../securityConnectors.json | 1494 +++++++++++++++++ 7 files changed, 2017 insertions(+) create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json new file mode 100644 index 000000000000..6ebfc633aeea --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json @@ -0,0 +1,12 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "resourceGroupName": "myRg", + "securityConnectorName": "mySecurityConnectorName" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json new file mode 100644 index 000000000000..7028f06f8a42 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json @@ -0,0 +1,44 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", + "resourceGroupName": "exampleResourceGroup", + "securityConnectorName": "exampleSecurityConnectorName" + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", + "name": "exampleSecurityConnectorName", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "environmentData": { + "environmentType": "AwsAccount" + }, + "hierarchyIdentifier": "exampleHierarchyId", + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json new file mode 100644 index 000000000000..1e8a8bcc55ed --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json @@ -0,0 +1,124 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", + "resourceGroupName": "exampleResourceGroup" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAws", + "name": "exampleSecurityConnectorAws", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAwsOrganization", + "name": "exampleSecurityConnectorAwsOrganization", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount", + "organizationalData": { + "organizationMembershipType": "Organization", + "stacksetName": "myStackSetName", + "excludedAccountIds": [ + "excludedAccountIdExample" + ] + } + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGcp", + "name": "exampleSecurityConnectorGcp", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "GcpProject", + "projectDetails": { + "projectNumber": "exampleHierarchyId", + "projectId": "My-0GCP-Project", + "workloadIdentityPoolId": "My-workload-identity-federation-pool-id" + } + }, + "environmentName": "GCP", + "offerings": [ + { + "offeringType": "CspmMonitorGcp", + "nativeCloudConnection": { + "workloadIdentityProviderId": "My workload identity provider Id", + "serviceAccountEmailAddress": "capm@projectName.com" + } + } + ] + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json new file mode 100644 index 000000000000..4c1435a74d6a --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json @@ -0,0 +1,181 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup1/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAws", + "name": "exampleSecurityConnectorAws", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup2/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAwsOrganization", + "name": "exampleSecurityConnectorAwsOrganization", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount", + "organizationalData": { + "organizationMembershipType": "Organization", + "stacksetName": "myStackSetName", + "excludedAccountIds": [ + "excludedAccountIdExample" + ] + } + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGithub", + "name": "githubTest", + "etag": "etag value", + "type": "Microsoft.Security/securityconnectors", + "location": "centralus", + "kind": "", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.SecurityDevops/githubConnectors/exampleGithubConnector", + "environmentName": "Github", + "environmentData": { + "environmentType": "GithubScope" + }, + "offerings": [ + { + "offeringType": "CspmMonitorGithub" + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAzureDevOpsConnectors", + "name": "AzureDevOpsTest", + "etag": "etag value", + "type": "Microsoft.Security/securityconnectors", + "location": "centralus", + "kind": "", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.SecurityDevops/azureDevOpsConnectors/exampleAzureDevOpsConnector", + "environmentName": "Github", + "environmentData": { + "environmentType": "GithubScope" + }, + "offerings": [ + { + "offeringType": "CspmMonitorGithub" + } + ] + } + }, + { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGcp", + "name": "exampleSecurityConnectorGcp", + "type": "Microsoft.Security/securityConnectors", + "etag": "etag value", + "kind": "", + "location": "Central US", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-12-15T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-12-15T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "GcpProject", + "projectDetails": { + "projectNumber": "exampleHierarchyId", + "projectId": "My-0GCP-Project", + "workloadIdentityPoolId": "6c78da41157548d3b1d8b3c72effdf8c" + } + }, + "environmentName": "GCP", + "offerings": [ + { + "offeringType": "CspmMonitorGcp", + "nativeCloudConnection": { + "workloadIdentityProviderId": "My workload identity provider Id", + "serviceAccountEmailAddress": "capm@projectName.com" + } + } + ] + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json new file mode 100644 index 000000000000..0fd2bd8dc98a --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json @@ -0,0 +1,64 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", + "securityConnectorName": "exampleSecurityConnectorName", + "resourceGroupName": "exampleResourceGroup", + "securityConnector": { + "location": "Central US", + "etag": "etag value (must be supplied for update)", + "tags": {}, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", + "name": "exampleSecurityConnectorName", + "type": "Microsoft.Security/securityConnectors", + "location": "Central US", + "kind": "", + "etag": "etag value", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json new file mode 100644 index 000000000000..80d6a941ce58 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json @@ -0,0 +1,98 @@ +{ + "parameters": { + "api-version": "2023-03-01-preview", + "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", + "securityConnectorName": "exampleSecurityConnectorName", + "resourceGroupName": "exampleResourceGroup", + "securityConnector": { + "location": "Central US", + "etag": "etag value (must be supplied for update)", + "tags": {}, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentName": "AWS", + "environmentData": { + "environmentType": "AwsAccount" + }, + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", + "name": "exampleSecurityConnectorName", + "type": "Microsoft.Security/securityConnectors", + "location": "Central US", + "kind": "", + "etag": "", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + }, + "201": { + "body": { + "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", + "name": "exampleSecurityConnectorName", + "type": "Microsoft.Security/securityConnectors", + "location": "Central US", + "kind": "", + "etag": "", + "tags": {}, + "systemData": { + "createdBy": "user@contoso.com", + "createdByType": "User", + "createdAt": "2021-08-31T13:47:50.328Z", + "lastModifiedBy": "user@contoso.com", + "lastModifiedByType": "User", + "lastModifiedAt": "2021-08-31T13:47:50.328Z" + }, + "properties": { + "hierarchyIdentifier": "exampleHierarchyId", + "environmentData": { + "environmentType": "AwsAccount" + }, + "environmentName": "AWS", + "offerings": [ + { + "offeringType": "CspmMonitorAws", + "nativeCloudConnection": { + "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" + } + } + ] + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json new file mode 100644 index 000000000000..b0d34d1f506b --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json @@ -0,0 +1,1494 @@ +{ + "swagger": "2.0", + "info": { + "title": "Security Center", + "description": "API spec for Microsoft.Security (Azure Security Center) resource provider", + "version": "2023-03-01-preview" + }, + "host": "management.azure.com", + "schemes": [ + "https" + ], + "consumes": [ + "application/json" + ], + "produces": [ + "application/json" + ], + "security": [ + { + "azure_auth": [ + "user_impersonation" + ] + } + ], + "securityDefinitions": { + "azure_auth": { + "type": "oauth2", + "authorizationUrl": "https://login.microsoftonline.com/common/oauth2/authorize", + "flow": "implicit", + "description": "Azure Active Directory OAuth2 Flow", + "scopes": { + "user_impersonation": "impersonate your user account" + } + } + }, + "paths": { + "/subscriptions/{subscriptionId}/providers/Microsoft.Security/securityConnectors": { + "get": { + "x-ms-examples": { + "List all security connectors of a specified subscription": { + "$ref": "./examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "description": "Lists all the security connectors in the specified subscription. Use the 'nextLink' property in the response to get the next page of security connectors for the specified subscription.", + "operationId": "SecurityConnectors_List", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityConnectorsList" + } + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + }, + "x-ms-pageable": { + "nextLinkName": "nextLink" + } + } + }, + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors": { + "get": { + "x-ms-examples": { + "List all security connectors of a specified resource group": { + "$ref": "./examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "description": "Lists all the security connectors in the specified resource group. Use the 'nextLink' property in the response to get the next page of security connectors for the specified resource group.", + "operationId": "SecurityConnectors_ListByResourceGroup", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityConnectorsList" + } + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + }, + "x-ms-pageable": { + "nextLinkName": "nextLink" + } + } + }, + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName}": { + "get": { + "x-ms-examples": { + "Retrieve a security connector": { + "$ref": "./examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "description": "Retrieves details of a specific security connector", + "operationId": "SecurityConnectors_Get", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" + }, + { + "$ref": "#/parameters/securityConnectorName" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityConnector" + } + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "put": { + "x-ms-examples": { + "Create or update a security connector": { + "$ref": "./examples/SecurityConnectors/PutSecurityConnector_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "description": "Creates or updates a security connector. If a security connector is already created and a subsequent request is issued for the same security connector id, then it will be updated.", + "operationId": "SecurityConnectors_CreateOrUpdate", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" + }, + { + "$ref": "#/parameters/securityConnectorName" + }, + { + "$ref": "#/parameters/securityConnectorInBody" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityConnector" + } + }, + "201": { + "description": "Created", + "schema": { + "$ref": "#/definitions/SecurityConnector" + } + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "patch": { + "x-ms-examples": { + "Update a security connector": { + "$ref": "./examples/SecurityConnectors/PatchSecurityConnector_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "description": "Updates a security connector", + "operationId": "SecurityConnectors_Update", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" + }, + { + "$ref": "#/parameters/securityConnectorName" + }, + { + "$ref": "#/parameters/securityConnectorInBody" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityConnector" + } + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "delete": { + "x-ms-examples": { + "Delete a security connector": { + "$ref": "./examples/SecurityConnectors/DeleteSecurityConnector_example.json" + } + }, + "tags": [ + "SecurityConnectors" + ], + "operationId": "SecurityConnectors_Delete", + "description": "Deletes a security connector.", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" + }, + { + "$ref": "#/parameters/securityConnectorName" + } + ], + "responses": { + "200": { + "description": "The resource was deleted successfully" + }, + "204": { + "description": "NoContent" + }, + "default": { + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + } + } + }, + "definitions": { + "SecurityConnectorsList": { + "type": "object", + "description": "List of security connectors response.", + "required": [ + "value" + ], + "properties": { + "value": { + "type": "array", + "description": "The list of security connectors under the given scope.", + "items": { + "$ref": "#/definitions/SecurityConnector" + } + }, + "nextLink": { + "readOnly": true, + "type": "string", + "description": "The URI to fetch the next page." + } + } + }, + "SecurityConnector": { + "type": "object", + "description": "The security connector resource.", + "properties": { + "systemData": { + "readOnly": true, + "type": "object", + "description": "Azure Resource Manager metadata containing createdBy and modifiedBy information.", + "$ref": "../../../../../common-types/resource-management/v2/types.json#/definitions/systemData" + }, + "properties": { + "x-ms-client-flatten": true, + "description": "Security connector data", + "$ref": "#/definitions/SecurityConnectorProperties" + } + }, + "allOf": [ + { + "$ref": "../../../common/v1/types.json#/definitions/TrackedResource" + } + ] + }, + "SecurityConnectorProperties": { + "type": "object", + "description": "A set of properties that defines the security connector configuration.", + "properties": { + "hierarchyIdentifier": { + "type": "string", + "description": "The multi cloud resource identifier (account id in case of AWS connector, project number in case of GCP connector)." + }, + "hierarchyIdentifierTrialEndDate": { + "type": "string", + "format": "date-time", + "readOnly": true, + "description": "The date on which the trial period will end, if applicable. Trial period exists for 30 days after upgrading to payed offerings." + }, + "environmentName": { + "type": "string", + "description": "The multi cloud resource's cloud name.", + "enum": [ + "Azure", + "AWS", + "GCP", + "Github", + "AzureDevOps", + "GitLab" + ], + "x-ms-enum": { + "name": "cloudName", + "modelAsString": true + } + }, + "offerings": { + "type": "array", + "description": "A collection of offerings for the security connector.", + "items": { + "$ref": "#/definitions/cloudOffering" + }, + "x-ms-identifiers": [] + }, + "environmentData": { + "type": "object", + "description": "The security connector environment data.", + "$ref": "#/definitions/EnvironmentData" + } + } + }, + "EnvironmentData": { + "type": "object", + "description": "The security connector environment data.", + "discriminator": "environmentType", + "required": [ + "environmentType" + ], + "properties": { + "environmentType": { + "type": "string", + "description": "The type of the environment data.", + "enum": [ + "AwsAccount", + "GcpProject", + "GithubScope", + "AzureDevOpsScope", + "GitlabScope" + ], + "x-ms-enum": { + "name": "environmentType", + "modelAsString": true + } + } + } + }, + "AwsEnvironmentData": { + "type": "object", + "description": "The AWS connector environment data", + "x-ms-discriminator-value": "AwsAccount", + "allOf": [ + { + "$ref": "#/definitions/EnvironmentData" + } + ], + "properties": { + "organizationalData": { + "type": "object", + "description": "The AWS account's organizational data", + "$ref": "#/definitions/AwsOrganizationalData" + }, + "regions": { + "type": "array", + "description": "list of regions to scan", + "items": { + "type": "string", + "description": "AWS regions names" + } + }, + "accountName": { + "type": "string", + "description": "The AWS account name", + "readOnly": true + } + } + }, + "AwsOrganizationalData": { + "type": "object", + "description": "The AWS organization data", + "discriminator": "organizationMembershipType", + "required": [ + "organizationMembershipType" + ], + "properties": { + "organizationMembershipType": { + "type": "string", + "description": "The multi cloud account's membership type in the organization", + "enum": [ + "Member", + "Organization" + ], + "x-ms-enum": { + "name": "organizationMembershipType", + "modelAsString": true + } + } + } + }, + "AwsOrganizationalDataMaster": { + "type": "object", + "description": "The AWS organization data for the master account", + "x-ms-discriminator-value": "Organization", + "allOf": [ + { + "$ref": "#/definitions/AwsOrganizationalData" + } + ], + "properties": { + "stacksetName": { + "type": "string", + "description": "If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset" + }, + "excludedAccountIds": { + "type": "array", + "description": "If the multi cloud account is of membership type organization, list of accounts excluded from offering", + "items": { + "type": "string", + "description": "account IDs" + } + } + } + }, + "AwsOrganizationalDataMember": { + "type": "object", + "description": "The AWS organization data for the member account", + "x-ms-discriminator-value": "Member", + "allOf": [ + { + "$ref": "#/definitions/AwsOrganizationalData" + } + ], + "properties": { + "parentHierarchyId": { + "type": "string", + "description": "If the multi cloud account is not of membership type organization, this will be the ID of the account's parent" + } + } + }, + "GcpProjectEnvironmentData": { + "type": "object", + "description": "The GCP project connector environment data", + "x-ms-discriminator-value": "GcpProject", + "allOf": [ + { + "$ref": "#/definitions/EnvironmentData" + } + ], + "properties": { + "organizationalData": { + "type": "object", + "description": "The Gcp project's organizational data", + "$ref": "#/definitions/GcpOrganizationalData" + }, + "projectDetails": { + "type": "object", + "description": "The Gcp project's details", + "$ref": "#/definitions/GcpProjectDetails" + } + } + }, + "GcpProjectDetails": { + "type": "object", + "description": "The details about the project represented by the security connector", + "properties": { + "projectNumber": { + "type": "string", + "description": "The unique GCP Project number" + }, + "projectId": { + "type": "string", + "description": "The GCP Project id" + }, + "workloadIdentityPoolId": { + "readOnly": true, + "type": "string", + "description": "The GCP workload identity federation pool id" + }, + "projectName": { + "readOnly": true, + "type": "string", + "description": "GCP project name" + } + } + }, + "GcpOrganizationalData": { + "type": "object", + "description": "The gcpOrganization data", + "discriminator": "organizationMembershipType", + "required": [ + "organizationMembershipType" + ], + "properties": { + "organizationMembershipType": { + "type": "string", + "description": "The multi cloud account's membership type in the organization", + "enum": [ + "Member", + "Organization" + ], + "x-ms-enum": { + "name": "organizationMembershipType", + "modelAsString": true + } + } + } + }, + "GcpOrganizationalDataOrganization": { + "type": "object", + "description": "The gcpOrganization data for the parent account", + "x-ms-discriminator-value": "Organization", + "allOf": [ + { + "$ref": "#/definitions/GcpOrganizationalData" + } + ], + "properties": { + "excludedProjectNumbers": { + "type": "array", + "description": "If the multi cloud account is of membership type organization, list of accounts excluded from offering", + "items": { + "type": "string", + "description": "account IDs" + } + }, + "serviceAccountEmailAddress": { + "type": "string", + "description": "The service account email address which represents the organization level permissions container." + }, + "workloadIdentityProviderId": { + "type": "string", + "description": "The GCP workload identity provider id which represents the permissions required to auto provision security connectors" + }, + "organizationName": { + "readOnly": true, + "type": "string", + "description": "GCP organization name" + } + } + }, + "GcpOrganizationalDataMember": { + "type": "object", + "description": "The gcpOrganization data for the member account", + "x-ms-discriminator-value": "Member", + "allOf": [ + { + "$ref": "#/definitions/GcpOrganizationalData" + } + ], + "properties": { + "parentHierarchyId": { + "type": "string", + "description": "If the multi cloud account is not of membership type organization, this will be the ID of the project's parent" + }, + "managementProjectNumber": { + "type": "string", + "description": "The GCP management project number from organizational onboarding" + } + } + }, + "GithubScopeEnvironmentData": { + "type": "object", + "description": "The github scope connector's environment data", + "x-ms-discriminator-value": "GithubScope", + "allOf": [ + { + "$ref": "#/definitions/EnvironmentData" + } + ], + "properties": {} + }, + "AzureDevOpsScopeEnvironmentData": { + "type": "object", + "description": "The AzureDevOps scope connector's environment data", + "x-ms-discriminator-value": "AzureDevOpsScope", + "allOf": [ + { + "$ref": "#/definitions/EnvironmentData" + } + ], + "properties": {} + }, + "GitlabScopeEnvironmentData": { + "type": "object", + "description": "The GitLab scope connector's environment data", + "x-ms-discriminator-value": "GitlabScope", + "allOf": [ + { + "$ref": "#/definitions/EnvironmentData" + } + ], + "properties": {} + }, + "cloudOffering": { + "type": "object", + "description": "The security offering details", + "discriminator": "offeringType", + "required": [ + "offeringType" + ], + "properties": { + "offeringType": { + "type": "string", + "description": "The type of the security offering.", + "enum": [ + "CspmMonitorAws", + "DefenderForContainersAws", + "DefenderForServersAws", + "DefenderForDatabasesAws", + "InformationProtectionAws", + "CspmMonitorGcp", + "CspmMonitorGithub", + "CspmMonitorAzureDevOps", + "DefenderForServersGcp", + "DefenderForContainersGcp", + "DefenderForDatabasesGcp", + "DefenderCspmAws", + "DefenderCspmGcp", + "DefenderForDevOpsGithub", + "DefenderForDevOpsAzureDevOps", + "CspmMonitorGitLab", + "DefenderForDevOpsGitLab" + ], + "x-ms-enum": { + "name": "offeringType", + "modelAsString": true + } + }, + "description": { + "type": "string", + "description": "The offering description.", + "readOnly": true + } + } + }, + "cspmMonitorAwsOffering": { + "type": "object", + "description": "The CSPM monitoring for AWS offering", + "x-ms-discriminator-value": "CspmMonitorAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "nativeCloudConnection": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + } + } + }, + "defenderForContainersAwsOffering": { + "type": "object", + "description": "The Defender for Containers AWS offering", + "x-ms-discriminator-value": "DefenderForContainersAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "kubernetesService": { + "type": "object", + "description": "The kubernetes service connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature used for provisioning resources" + } + } + }, + "kubernetesScubaReader": { + "type": "object", + "description": "The kubernetes to scuba connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature used for reading data" + } + } + }, + "cloudWatchToKinesis": { + "type": "object", + "description": "The cloudwatch to kinesis connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS used by CloudWatch to transfer data into Kinesis" + } + } + }, + "kinesisToS3": { + "type": "object", + "description": "The kinesis to s3 connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS used by Kinesis to transfer data into S3" + } + } + }, + "containerVulnerabilityAssessment": { + "type": "object", + "description": "The container vulnerability assessment configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + }, + "containerVulnerabilityAssessmentTask": { + "type": "object", + "description": "The container vulnerability assessment task configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + }, + "enableContainerVulnerabilityAssessment": { + "type": "boolean", + "description": "Enable container vulnerability assessment feature" + }, + "autoProvisioning": { + "type": "boolean", + "description": "Is audit logs pipeline auto provisioning enabled" + }, + "kubeAuditRetentionTime": { + "type": "integer", + "format": "int64", + "description": "The retention time in days of kube audit logs set on the CloudWatch log group" + }, + "scubaExternalId": { + "type": "string", + "description": "The externalId used by the data reader to prevent the confused deputy attack" + } + } + }, + "defenderForServersAwsOffering": { + "type": "object", + "description": "The Defender for Servers AWS offering", + "x-ms-discriminator-value": "DefenderForServersAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "defenderForServers": { + "type": "object", + "description": "The Defender for servers connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + }, + "arcAutoProvisioning": { + "type": "object", + "description": "The ARC autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is arc auto provisioning enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + }, + "configuration": { + "type": "object", + "description": "Configuration for servers Arc auto provisioning", + "properties": { + "proxy": { + "type": "string", + "description": "Optional HTTP proxy endpoint to use for the Arc agent" + }, + "privateLinkScope": { + "type": "string", + "description": "Optional Arc private link scope resource id to link the Arc agent" + } + } + } + } + }, + "vaAutoProvisioning": { + "type": "object", + "description": "The Vulnerability Assessment autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Vulnerability Assessment auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Vulnerability Assessment autoprovisioning", + "properties": { + "type": { + "type": "string", + "description": "The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'", + "enum": [ + "Qualys", + "TVM" + ], + "x-ms-enum": { + "name": "type", + "modelAsString": true + } + } + } + } + } + }, + "mdeAutoProvisioning": { + "type": "object", + "description": "The Microsoft Defender for Endpoint autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender for Endpoint auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Microsoft Defender for Endpoint autoprovisioning", + "properties": {} + } + } + }, + "subPlan": { + "type": "object", + "description": "configuration for the servers offering subPlan", + "properties": { + "type": { + "type": "string", + "description": "The available sub plans", + "enum": [ + "P1", + "P2" + ], + "x-ms-enum": { + "name": "subPlan", + "modelAsString": true + } + } + } + }, + "vmScanners": { + "type": "object", + "description": "The Microsoft Defender for Server VM scanning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender for Server VM scanning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Microsoft Defender for Server VM scanning", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + }, + "scanningMode": { + "type": "string", + "description": "The scanning mode for the VM scan.", + "enum": [ + "Default" + ], + "x-ms-enum": { + "name": "scanningMode", + "modelAsString": true + } + }, + "exclusionTags": { + "type": "object", + "additionalProperties": { + "type": "string" + }, + "description": "VM tags that indicates that VM should not be scanned" + } + } + } + } + } + } + }, + "defenderFoDatabasesAwsOffering": { + "type": "object", + "description": "The Defender for Databases AWS offering", + "x-ms-discriminator-value": "DefenderForDatabasesAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "arcAutoProvisioning": { + "type": "object", + "description": "The ARC autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is arc auto provisioning enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + }, + "configuration": { + "type": "object", + "description": "Configuration for servers Arc auto provisioning", + "properties": { + "proxy": { + "type": "string", + "description": "Optional http proxy endpoint to use for the Arc agent" + }, + "privateLinkScope": { + "type": "string", + "description": "Optional Arc private link scope resource id to link the Arc agent" + } + } + } + } + }, + "rds": { + "type": "object", + "description": "The RDS configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is RDS protection enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + }, + "databasesDspm": { + "type": "object", + "description": "The databases data security posture management (DSPM) configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is databases data security posture management (DSPM) protection enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + } + } + }, + "informationProtectionAwsOffering": { + "type": "object", + "description": "The information protection for AWS offering", + "x-ms-discriminator-value": "InformationProtectionAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "informationProtection": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + } + } + }, + "cspmMonitorGcpOffering": { + "type": "object", + "description": "The CSPM monitoring for GCP offering", + "x-ms-discriminator-value": "CspmMonitorGcp", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "nativeCloudConnection": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "workloadIdentityProviderId": { + "type": "string", + "description": "The GCP workload identity provider id for the offering" + }, + "serviceAccountEmailAddress": { + "type": "string", + "description": "The service account email address in GCP for this offering" + } + } + } + } + }, + "defenderForServersGcpOffering": { + "type": "object", + "description": "The Defender for Servers GCP offering configurations", + "x-ms-discriminator-value": "DefenderForServersGcp", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "defenderForServers": { + "type": "object", + "description": "The Defender for servers connection configuration", + "properties": { + "workloadIdentityProviderId": { + "type": "string", + "description": "The workload identity provider id in GCP for this feature" + }, + "serviceAccountEmailAddress": { + "type": "string", + "description": "The service account email address in GCP for this feature" + } + } + }, + "arcAutoProvisioning": { + "type": "object", + "description": "The ARC autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is arc auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "Configuration for servers Arc auto provisioning", + "properties": { + "proxy": { + "type": "string", + "description": "Optional HTTP proxy endpoint to use for the Arc agent" + }, + "privateLinkScope": { + "type": "string", + "description": "Optional Arc private link scope resource id to link the Arc agent" + } + } + } + } + }, + "vaAutoProvisioning": { + "type": "object", + "description": "The Vulnerability Assessment autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Vulnerability Assessment auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Vulnerability Assessment autoprovisioning", + "properties": { + "type": { + "type": "string", + "description": "The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'", + "enum": [ + "Qualys", + "TVM" + ], + "x-ms-enum": { + "name": "type", + "modelAsString": true + } + } + } + } + } + }, + "mdeAutoProvisioning": { + "type": "object", + "description": "The Microsoft Defender for Endpoint autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender for Endpoint auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Microsoft Defender for Endpoint autoprovisioning", + "properties": {} + } + } + }, + "subPlan": { + "type": "object", + "description": "configuration for the servers offering subPlan", + "properties": { + "type": { + "type": "string", + "description": "The available sub plans", + "enum": [ + "P1", + "P2" + ], + "x-ms-enum": { + "name": "subPlan", + "modelAsString": true + } + } + } + }, + "vmScanners": { + "type": "object", + "description": "The Microsoft Defender for Server VM scanning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender for Server VM scanning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Microsoft Defender for Server VM scanning", + "properties": { + "scanningMode": { + "type": "string", + "description": "The scanning mode for the VM scan.", + "enum": [ + "Default" + ], + "x-ms-enum": { + "name": "scanningMode", + "modelAsString": true + } + }, + "exclusionTags": { + "type": "object", + "additionalProperties": { + "type": "string" + }, + "description": "VM tags that indicate that VM should not be scanned" + } + } + } + } + } + } + }, + "defenderForDatabasesGcpOffering": { + "type": "object", + "description": "The Defender for Databases GCP offering configurations", + "x-ms-discriminator-value": "DefenderForDatabasesGcp", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "arcAutoProvisioning": { + "type": "object", + "description": "The ARC autoprovisioning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is arc auto provisioning enabled" + }, + "configuration": { + "type": "object", + "description": "Configuration for servers Arc auto provisioning", + "properties": { + "proxy": { + "type": "string", + "description": "Optional http proxy endpoint to use for the Arc agent" + }, + "privateLinkScope": { + "type": "string", + "description": "Optional Arc private link scope resource id to link the Arc agent" + } + } + } + } + }, + "defenderForDatabasesArcAutoProvisioning": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "serviceAccountEmailAddress": { + "type": "string", + "description": "The service account email address in GCP for this offering" + }, + "workloadIdentityProviderId": { + "type": "string", + "description": "The GCP workload identity provider id for this offering" + } + } + } + } + }, + "defenderForContainersGcpOffering": { + "type": "object", + "description": "The containers GCP offering", + "x-ms-discriminator-value": "DefenderForContainersGcp", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "nativeCloudConnection": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "serviceAccountEmailAddress": { + "type": "string", + "description": "The service account email address in GCP for this offering" + }, + "workloadIdentityProviderId": { + "type": "string", + "description": "The GCP workload identity provider id for this offering" + } + } + }, + "dataPipelineNativeCloudConnection": { + "type": "object", + "description": "The native cloud connection configuration", + "properties": { + "serviceAccountEmailAddress": { + "type": "string", + "description": "The data collection service account email address in GCP for this offering" + }, + "workloadIdentityProviderId": { + "type": "string", + "description": "The data collection GCP workload identity provider id for this offering" + } + } + }, + "auditLogsAutoProvisioningFlag": { + "type": "boolean", + "description": "Is audit logs data collection enabled" + }, + "defenderAgentAutoProvisioningFlag": { + "type": "boolean", + "description": "Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled" + }, + "policyAgentAutoProvisioningFlag": { + "type": "boolean", + "description": "Is Policy Kubernetes agent auto provisioning enabled" + } + } + }, + "cspmMonitorGithubOffering": { + "type": "object", + "description": "The CSPM monitoring for github offering", + "x-ms-discriminator-value": "CspmMonitorGithub", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "cspmMonitorAzureDevOpsOffering": { + "type": "object", + "description": "The CSPM monitoring for AzureDevOps offering", + "x-ms-discriminator-value": "CspmMonitorAzureDevOps", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "defenderCspmAwsOffering": { + "type": "object", + "description": "The CSPM P1 for AWS offering", + "x-ms-discriminator-value": "DefenderCspmAws", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": { + "vmScanners": { + "type": "object", + "description": "The Microsoft Defender for Server VM scanning configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender for Server VM scanning enabled" + }, + "configuration": { + "type": "object", + "description": "configuration for Microsoft Defender for Server VM scanning", + "properties": { + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + }, + "scanningMode": { + "type": "string", + "description": "The scanning mode for the VM scan.", + "enum": [ + "Default" + ], + "x-ms-enum": { + "name": "scanningMode", + "modelAsString": true + } + }, + "exclusionTags": { + "type": "object", + "additionalProperties": { + "type": "string" + }, + "description": "VM tags that indicates that VM should not be scanned" + } + } + } + } + }, + "dataSensitivityDiscovery": { + "type": "object", + "description": "The Microsoft Defender Data Sensitivity discovery configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is Microsoft Defender Data Sensitivity discovery enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + }, + "databasesDspm": { + "type": "object", + "description": "The databases DSPM configuration", + "properties": { + "enabled": { + "type": "boolean", + "description": "Is databases DSPM protection enabled" + }, + "cloudRoleArn": { + "type": "string", + "description": "The cloud role ARN in AWS for this feature" + } + } + } + } + }, + "defenderCspmGcpOffering": { + "type": "object", + "description": "The CSPM P1 for GCP offering", + "x-ms-discriminator-value": "DefenderCspmGcp", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "defenderForDevOpsGithubOffering": { + "type": "object", + "description": "The Defender for DevOps for Github offering", + "x-ms-discriminator-value": "DefenderForDevOpsGithub", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "defenderForDevOpsAzureDevOpsOffering": { + "type": "object", + "description": "The Defender for DevOps for Azure DevOps offering", + "x-ms-discriminator-value": "DefenderForDevOpsAzureDevOps", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "cspmMonitorGitLabOffering": { + "type": "object", + "description": "The CSPM (Cloud security posture management) monitoring for gitlab offering", + "x-ms-discriminator-value": "CspmMonitorGitLab", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + }, + "defenderForDevOpsGitLabOffering": { + "type": "object", + "description": "The Defender for DevOps for Gitlab offering", + "x-ms-discriminator-value": "DefenderForDevOpsGitLab", + "allOf": [ + { + "$ref": "#/definitions/cloudOffering" + } + ], + "properties": {} + } + }, + "parameters": { + "securityConnectorName": { + "name": "securityConnectorName", + "in": "path", + "required": true, + "type": "string", + "description": "The security connector name.", + "x-ms-parameter-location": "method" + }, + "securityConnectorInBody": { + "name": "securityConnector", + "in": "body", + "required": true, + "description": "The security connector resource", + "schema": { + "$ref": "#/definitions/SecurityConnector" + }, + "x-ms-parameter-location": "method" + } + } +} From 0e96c137f3f58976b26d055eaf0f5060427b4107 Mon Sep 17 00:00:00 2001 From: talco773 <84714863+talco773@users.noreply.github.com> Date: Sun, 7 May 2023 14:56:14 +0300 Subject: [PATCH 02/31] Updates readme --- .../security/resource-manager/readme.md | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) diff --git a/specification/security/resource-manager/readme.md b/specification/security/resource-manager/readme.md index a24533198fce..c859bbe66651 100644 --- a/specification/security/resource-manager/readme.md +++ b/specification/security/resource-manager/readme.md @@ -78,18 +78,27 @@ These are the global settings for the Security API. title: SecurityCenter description: API spec for Microsoft.Security (Azure Security Center) resource provider openapi-type: arm -tag: package-composite-v3 +tag: package-preview-2023-05 ``` ### Composite packages The following packages may be composed from multiple api-versions. + +### Tag: package-preview-2023-05 + +These settings apply only when `--tag=package-preview-2023-05` is specified on the command line. + +```yaml $(tag) == 'package-preview-2023-05' +input-file: + - Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json +``` ### Tag: package-preview-2023-03-only These settings apply only when `--tag=package-preview-2023-03-only` is specified on the command line. -```yaml $(tag) == 'package-preview-2023-03-only' +``` yaml $(tag) == 'package-preview-2023-03-only' input-file: - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json ``` @@ -98,7 +107,7 @@ input-file: These settings apply only when `--tag=package-preview-2023-01-only` is specified on the command line. -```yaml $(tag) == 'package-preview-2023-01-only' +``` yaml $(tag) == 'package-preview-2023-01-only' input-file: - Microsoft.Security/preview/2023-01-01-preview/securityOperators.json ``` @@ -107,7 +116,7 @@ input-file: These settings apply only when `--tag=package-preview-2023-03` is specified on the command line. -```yaml $(tag) == 'package-preview-2023-03' +``` yaml $(tag) == 'package-preview-2023-03' input-file: - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json - Microsoft.Security/preview/2023-01-01-preview/securityOperators.json From 5735af20e02d4f552df7f790a7bdf5e721e2b6b1 Mon Sep 17 00:00:00 2001 From: talco773 <84714863+talco773@users.noreply.github.com> Date: Sun, 7 May 2023 14:56:17 +0300 Subject: [PATCH 03/31] Updates API version in new specs and examples --- .../SecurityConnectors/DeleteSecurityConnector_example.json | 2 +- .../GetSecurityConnectorSingleResource_example.json | 2 +- .../GetSecurityConnectorsResourceGroup_example.json | 2 +- .../GetSecurityConnectorsSubscription_example.json | 2 +- .../SecurityConnectors/PatchSecurityConnector_example.json | 2 +- .../SecurityConnectors/PutSecurityConnector_example.json | 2 +- .../preview/2023-05-01-preview/securityConnectors.json | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json index 6ebfc633aeea..2fb053bc0553 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "20ff7fc3-e762-44dd-bd96-b71116dcdc23", "resourceGroupName": "myRg", "securityConnectorName": "mySecurityConnectorName" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json index 7028f06f8a42..9aa6ace1cfd2 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", "resourceGroupName": "exampleResourceGroup", "securityConnectorName": "exampleSecurityConnectorName" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json index 1e8a8bcc55ed..820d2b0c9e50 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", "resourceGroupName": "exampleResourceGroup" }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json index 4c1435a74d6a..7bb301aada2d 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5" }, "responses": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json index 0fd2bd8dc98a..4c7ee48bc7a7 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", "securityConnectorName": "exampleSecurityConnectorName", "resourceGroupName": "exampleResourceGroup", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json index 80d6a941ce58..0bbbcb9eabdd 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json @@ -1,6 +1,6 @@ { "parameters": { - "api-version": "2023-03-01-preview", + "api-version": "2023-05-01-preview", "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", "securityConnectorName": "exampleSecurityConnectorName", "resourceGroupName": "exampleResourceGroup", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json index b0d34d1f506b..ec3ffccf2be2 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json @@ -3,7 +3,7 @@ "info": { "title": "Security Center", "description": "API spec for Microsoft.Security (Azure Security Center) resource provider", - "version": "2023-03-01-preview" + "version": "2023-05-01-preview" }, "host": "management.azure.com", "schemes": [ From f9b990ed8797dfccb96c26a15e40476f3b9f4ae5 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 10:46:31 +0300 Subject: [PATCH 04/31] alligned to new design --- .../customRecommedations.json | 389 +++++ ...mentGroupCustomRecommendation_example.json | 32 + ...ConnectorCustomRecommendation_example.json | 33 + ...scriptionCustomRecommendation_example.json | 33 + ...entGroupCustomRecommendations_example.json | 58 + ...onnectorCustomRecommendations_example.json | 58 + ...criptionCustomRecommendations_example.json | 58 + .../DeleteSecurityConnector_example.json | 12 - ...curityConnectorSingleResource_example.json | 44 - ...curityConnectorsResourceGroup_example.json | 124 -- ...ecurityConnectorsSubscription_example.json | 181 -- .../PatchSecurityConnector_example.json | 64 - .../PutSecurityConnector_example.json | 98 -- ...nagementGroupSecurityStandard_example.json | 11 + ...rityConnectorSecurityStandard_example.json | 11 + ...ySubscriptionSecurityStandard_example.json | 11 + ...nagementGroupSecurityStandard_example.json | 39 + ...rityConnectorSecurityStandard_example.json | 39 + ...ySubscriptionSecurityStandard_example.json | 39 + ...agementGroupSecurityStandards_example.json | 70 + ...ityConnectorSecurityStandards_example.json | 70 + ...SubscriptionSecurityStandards_example.json | 72 + ...nagementGroupSecurityStandard_example.json | 87 + ...rityConnectorSecurityStandard_example.json | 84 + ...ySubscriptionSecurityStandard_example.json | 87 + .../securityConnectors.json | 1494 ----------------- .../2023-05-01-preview/securityStandards.json | 380 +++++ .../standardAssignments.json | 401 +++++ 28 files changed, 2062 insertions(+), 2017 deletions(-) create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteByManagementGroupSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySecurityConnectorSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySubscriptionSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json delete mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json new file mode 100644 index 000000000000..0c9079ac73d6 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -0,0 +1,389 @@ +{ + "swagger": "2.0", + "info": { + "title": "Microsoft Defender for Cloud", + "description": "API spec for Microsoft.Security (Microsoft Defender for Cloud) resource provider", + "version": "2023-05-01-preview" + }, + "host": "management.azure.com", + "schemes": [ + "https" + ], + "consumes": [ + "application/json" + ], + "produces": [ + "application/json" + ], + "security": [ + { + "azure_auth": [ + "user_impersonation" + ] + } + ], + "securityDefinitions": { + "azure_auth": { + "type": "oauth2", + "authorizationUrl": "https://login.microsoftonline.com/common/oauth2/authorize", + "flow": "implicit", + "description": "Azure Active Directory OAuth2 Flow", + "scopes": { + "user_impersonation": "impersonate your user account" + } + } + }, + "paths": { + "/{scope}/providers/Microsoft.Security/customRecommendations": { + "get": { + "x-ms-examples": { + "List custom recommendations by subscription scope": { + "$ref": "./examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json" + }, + "List custom recommendations by security connector scope": { + "$ref": "./examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json" + }, + "List custom recommendations by management group scope": { + "$ref": "./examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json" + } + }, + "tags": [ + "customRecommendations" + ], + "description": "Get a list of all relevant custom recommendations over a scope", + "operationId": "customRecommendations_List", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/CustomRecommendationList" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + }, + "x-ms-pageable": { + "nextLinkName": "nextLink" + } + } + }, + "/{scope}/providers/Microsoft.Security/customRecommendations/{customRecommendationName}": { + "get": { + "x-ms-examples": { + "Get a security standard over subscription scope": { + "$ref": "./examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json" + }, + "Get a security standard over security connector scope": { + "$ref": "./examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json" + }, + "Get a security standard over management group scope": { + "$ref": "./examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json" + } + }, + "tags": [ + "customRecommendations" + ], + "description": "Get a specific security standard for the requested scope by customRecommendationName", + "operationId": "customRecommendations_Get", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/customRecommendationName" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/customRecommendation" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "put": { + "x-ms-examples": { + "Create or update security standard over subscription scope": { + "$ref": "./examples/customRecommendations/PutcustomRecommendation_example.json" + }, + "Create or update security standard over security connector scope": { + "$ref": "./examples/customRecommendations/PutSecurityConnectorcustomRecommendation_example.json" + }, + "Create or update security standard over management group scope": { + "$ref": "./examples/customRecommendations/PutManagementGroupcustomRecommendation_example.json" + } + }, + "tags": [ + "customRecommendations" + ], + "description": "Creates or updates a security standard over a given scope", + "operationId": "customRecommendations_CreateOrUpdate", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/customRecommendationName" + }, + { + "$ref": "#/parameters/customRecommendationBody" + } + ], + "responses": { + "201": { + "description": "Created", + "schema": { + "$ref": "#/definitions/customRecommendation" + } + }, + "200": { + "description": "OK - Updated", + "schema": { + "$ref": "#/definitions/customRecommendation" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "delete": { + "x-ms-examples": { + "Delete a security standard over subscription scope": { + "$ref": "./examples/customRecommendations/DeletecustomRecommendation_example.json" + }, + "Delete a security standard over security connector scope": { + "$ref": "./examples/customRecommendations/DeleteSecurityConnectorcustomRecommendation_example.json" + }, + "Delete a security standard over management group scope": { + "$ref": "./examples/customRecommendations/DeleteManagementGroupcustomRecommendation_example.json" + } + }, + "tags": [ + "customRecommendations" + ], + "description": "Delete a security standard over a given scope", + "operationId": "customRecommendations_Delete", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/customRecommendationName" + } + ], + "responses": { + "200": { + "description": "OK - security standard was deleted" + }, + "202": { + "description": "Accepted - The operation still in progress", + "headers": { + "location": { + "type": "string", + "description": "Location URL for the deletion status" + } + } + }, + "204": { + "description": "No Content - security standard does not exist" + }, + "default": { + "description": "Error response describing why the operation failed" + } + }, + "x-ms-long-running-operation": true, + "x-ms-long-running-operation-options": { + "final-state-via": "location" + } + } + } + }, + "definitions": { + "CustomRecommendationsList": { + "type": "object", + "description": "A list of Custom Recommendations", + "properties": { + "value": { + "description": "Collection of Custom Recommendations", + "readOnly": true, + "type": "array", + "items": { + "$ref": "#/definitions/CustomRecommendation" + } + }, + "nextLink": { + "description": "The link used to get the next page of operations.", + "type": "string" + } + } + }, + "CustomRecommendation": { + "type": "object", + "description": "Custom Recommendation", + "properties": { + "properties": { + "x-ms-client-flatten": true, + "description": "describes Custom Recommendation properties.", + "$ref": "#/definitions/CustomRecommendationProperties" + } + }, + "allOf": [ + { + "$ref": "../../../common/v1/types.json#/definitions/Resource" + } + ] + }, + "CustomRecommendationProperties": { + "type": "object", + "description": "describes the Custom Recommendation properties", + "properties": { + "query": { + "description": "KQL query representing the Recommendation results required.", + "type": "string" + }, + "cloudProviders": { + "description": "List of all standard supported clouds.", + "type": "array", + "items": { + "$ref": "#/definitions/RecommendationSupportedClouds" + } + }, + "severity": { + "description": "The severity to relate to the assessments generated by this Recommendation.", + "type": "string", + "enum": [ + "High", + "Medium", + "Low" + ], + "x-ms-enum": { + "name": "severityEnum", + "modelAsString": true + }, + "x-ms-client-default": "Low" + }, + "displayName": { + "description": "The display name of the assessments generated by this Recommendation.", + "type": "string" + }, + "description": { + "description": "The description to relate to the assessments generated by this Recommendation.", + "type": "string" + }, + "remediationDescription": { + "description": "The remediation description to relate to the assessments generated by this Recommendation.", + "type": "string" + }, + "assessmentKey": { + "description": "The assessment metadata key used when an assessment is generated for this Recommendation.", + "type": "string", + "readOnly": true + }, + "metadata": { + "$ref": "#/definitions/CustomRecommendationMetaData" + } + } + }, + "CustomRecommendationMetaData": { + "type": "object", + "description": "The recommendation metadata", + "properties": { + "createdBy": { + "description": "recommendation Created by object id (GUID)", + "type": "string", + "readOnly": true + }, + "createdOn": { + "description": "recommendation creation date", + "type": "string", + "format": "date-time", + "readOnly": true + }, + "updatedBy": { + "description": "recommendation last updated by object id (GUID)", + "type": "string", + "readOnly": true + }, + "updatedOn": { + "description": "recommendation last update date", + "type": "string", + "format": "date-time", + "readOnly": true + } + } + }, + "RecommendationSupportedClouds": { + "type": "string", + "description": "The cloud that the recommendation is supported on.", + "enum": [ + "Azure", + "AWS", + "GCP" + ], + "x-ms-enum": { + "name": "RecommendationSupportedClouds", + "modelAsString": false + } + } + }, + "parameters": { + "customRecommendationName": { + "name": "customRecommendationName", + "in": "path", + "required": true, + "type": "string", + "description": "Name of the Custom Recommendation.", + "x-ms-parameter-location": "method" + }, + "customRecommendationBody": { + "name": "customRecommendationBody", + "in": "body", + "description": "Custom Recommendation body", + "required": true, + "schema": { + "$ref": "#/definitions/customRecommendationRequest" + }, + "x-ms-parameter-location": "method" + }, + "Scope": { + "name": "scope", + "in": "path", + "required": true, + "type": "string", + "description": "The scope of the custom recommendation. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'", + "x-ms-parameter-location": "method" + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json new file mode 100644 index 000000000000..29981ad7830e --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json @@ -0,0 +1,32 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso" + }, + "responses": { + "200": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", + "name": "MycustomRecommendation1", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json new file mode 100644 index 000000000000..c0178fe01406 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json @@ -0,0 +1,33 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", + "name": "MycustomRecommendation1", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json new file mode 100644 index 000000000000..72973f13fa68 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json @@ -0,0 +1,33 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/customRecommendations/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json new file mode 100644 index 000000000000..c3ccc1105222 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json @@ -0,0 +1,58 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", + "name": "MycustomRecommendation1", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customRecommendations/MycustomRecommendation2", + "name": "MycustomRecommendation2", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json new file mode 100644 index 000000000000..ca318c402120 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json @@ -0,0 +1,58 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", + "name": "MycustomRecommendation1", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/customRecommendations/MycustomRecommendation2", + "name": "MycustomRecommendation2", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json new file mode 100644 index 000000000000..4a5ce6233f83 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json @@ -0,0 +1,58 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", + "name": "MycustomRecommendation1", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/customRecommendations/MycustomRecommendation2", + "name": "MycustomRecommendation2", + "type": "Microsoft.Security/customRecommendations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json deleted file mode 100644 index 2fb053bc0553..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/DeleteSecurityConnector_example.json +++ /dev/null @@ -1,12 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "20ff7fc3-e762-44dd-bd96-b71116dcdc23", - "resourceGroupName": "myRg", - "securityConnectorName": "mySecurityConnectorName" - }, - "responses": { - "200": {}, - "204": {} - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json deleted file mode 100644 index 9aa6ace1cfd2..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json +++ /dev/null @@ -1,44 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", - "resourceGroupName": "exampleResourceGroup", - "securityConnectorName": "exampleSecurityConnectorName" - }, - "responses": { - "200": { - "body": { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", - "name": "exampleSecurityConnectorName", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "environmentData": { - "environmentType": "AwsAccount" - }, - "hierarchyIdentifier": "exampleHierarchyId", - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json deleted file mode 100644 index 820d2b0c9e50..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json +++ /dev/null @@ -1,124 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", - "resourceGroupName": "exampleResourceGroup" - }, - "responses": { - "200": { - "body": { - "value": [ - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAws", - "name": "exampleSecurityConnectorAws", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAwsOrganization", - "name": "exampleSecurityConnectorAwsOrganization", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount", - "organizationalData": { - "organizationMembershipType": "Organization", - "stacksetName": "myStackSetName", - "excludedAccountIds": [ - "excludedAccountIdExample" - ] - } - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGcp", - "name": "exampleSecurityConnectorGcp", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "GcpProject", - "projectDetails": { - "projectNumber": "exampleHierarchyId", - "projectId": "My-0GCP-Project", - "workloadIdentityPoolId": "My-workload-identity-federation-pool-id" - } - }, - "environmentName": "GCP", - "offerings": [ - { - "offeringType": "CspmMonitorGcp", - "nativeCloudConnection": { - "workloadIdentityProviderId": "My workload identity provider Id", - "serviceAccountEmailAddress": "capm@projectName.com" - } - } - ] - } - } - ] - } - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json deleted file mode 100644 index 7bb301aada2d..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json +++ /dev/null @@ -1,181 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5" - }, - "responses": { - "200": { - "body": { - "value": [ - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup1/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAws", - "name": "exampleSecurityConnectorAws", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup2/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAwsOrganization", - "name": "exampleSecurityConnectorAwsOrganization", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount", - "organizationalData": { - "organizationMembershipType": "Organization", - "stacksetName": "myStackSetName", - "excludedAccountIds": [ - "excludedAccountIdExample" - ] - } - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGithub", - "name": "githubTest", - "etag": "etag value", - "type": "Microsoft.Security/securityconnectors", - "location": "centralus", - "kind": "", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.SecurityDevops/githubConnectors/exampleGithubConnector", - "environmentName": "Github", - "environmentData": { - "environmentType": "GithubScope" - }, - "offerings": [ - { - "offeringType": "CspmMonitorGithub" - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorAzureDevOpsConnectors", - "name": "AzureDevOpsTest", - "etag": "etag value", - "type": "Microsoft.Security/securityconnectors", - "location": "centralus", - "kind": "", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.SecurityDevops/azureDevOpsConnectors/exampleAzureDevOpsConnector", - "environmentName": "Github", - "environmentData": { - "environmentType": "GithubScope" - }, - "offerings": [ - { - "offeringType": "CspmMonitorGithub" - } - ] - } - }, - { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup3/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorGcp", - "name": "exampleSecurityConnectorGcp", - "type": "Microsoft.Security/securityConnectors", - "etag": "etag value", - "kind": "", - "location": "Central US", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-12-15T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-12-15T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "GcpProject", - "projectDetails": { - "projectNumber": "exampleHierarchyId", - "projectId": "My-0GCP-Project", - "workloadIdentityPoolId": "6c78da41157548d3b1d8b3c72effdf8c" - } - }, - "environmentName": "GCP", - "offerings": [ - { - "offeringType": "CspmMonitorGcp", - "nativeCloudConnection": { - "workloadIdentityProviderId": "My workload identity provider Id", - "serviceAccountEmailAddress": "capm@projectName.com" - } - } - ] - } - } - ] - } - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json deleted file mode 100644 index 4c7ee48bc7a7..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PatchSecurityConnector_example.json +++ /dev/null @@ -1,64 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", - "securityConnectorName": "exampleSecurityConnectorName", - "resourceGroupName": "exampleResourceGroup", - "securityConnector": { - "location": "Central US", - "etag": "etag value (must be supplied for update)", - "tags": {}, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - }, - "responses": { - "200": { - "body": { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", - "name": "exampleSecurityConnectorName", - "type": "Microsoft.Security/securityConnectors", - "location": "Central US", - "kind": "", - "etag": "etag value", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json deleted file mode 100644 index 0bbbcb9eabdd..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityConnectors/PutSecurityConnector_example.json +++ /dev/null @@ -1,98 +0,0 @@ -{ - "parameters": { - "api-version": "2023-05-01-preview", - "subscriptionId": "a5caac9c-5c04-49af-b3d0-e204f40345d5", - "securityConnectorName": "exampleSecurityConnectorName", - "resourceGroupName": "exampleResourceGroup", - "securityConnector": { - "location": "Central US", - "etag": "etag value (must be supplied for update)", - "tags": {}, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentName": "AWS", - "environmentData": { - "environmentType": "AwsAccount" - }, - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - }, - "responses": { - "200": { - "body": { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", - "name": "exampleSecurityConnectorName", - "type": "Microsoft.Security/securityConnectors", - "location": "Central US", - "kind": "", - "etag": "", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - }, - "201": { - "body": { - "id": "/subscriptions/a5caac9c-5c04-49af-b3d0-e204f40345d5/resourceGroups/exampleResourceGroup/providers/Microsoft.Security/securityConnectors/exampleSecurityConnectorName", - "name": "exampleSecurityConnectorName", - "type": "Microsoft.Security/securityConnectors", - "location": "Central US", - "kind": "", - "etag": "", - "tags": {}, - "systemData": { - "createdBy": "user@contoso.com", - "createdByType": "User", - "createdAt": "2021-08-31T13:47:50.328Z", - "lastModifiedBy": "user@contoso.com", - "lastModifiedByType": "User", - "lastModifiedAt": "2021-08-31T13:47:50.328Z" - }, - "properties": { - "hierarchyIdentifier": "exampleHierarchyId", - "environmentData": { - "environmentType": "AwsAccount" - }, - "environmentName": "AWS", - "offerings": [ - { - "offeringType": "CspmMonitorAws", - "nativeCloudConnection": { - "cloudRoleArn": "arn:aws:iam::00000000:role/ASCMonitor" - } - } - ] - } - } - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteByManagementGroupSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteByManagementGroupSecurityStandard_example.json new file mode 100644 index 000000000000..e292c9b1b5f1 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteByManagementGroupSecurityStandard_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "standardId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySecurityConnectorSecurityStandard_example.json new file mode 100644 index 000000000000..af575d2b8fe1 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySecurityConnectorSecurityStandard_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "standardId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySubscriptionSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySubscriptionSecurityStandard_example.json new file mode 100644 index 000000000000..e3b3da70f294 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/DeleteBySubscriptionSecurityStandard_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "standardId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json new file mode 100644 index 000000000000..b1dce16c6c0a --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json @@ -0,0 +1,39 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "standardId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json new file mode 100644 index 000000000000..9426f70d95f0 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json @@ -0,0 +1,39 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "standardId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json new file mode 100644 index 000000000000..9d9ddcfd846f --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json @@ -0,0 +1,39 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "standardId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json new file mode 100644 index 000000000000..cbc6886330e4 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json @@ -0,0 +1,70 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/securityStandards/155afdf9-d239-4a5c-847f-89da613e7143", + "name": "155afdf9-d239-4a5c-847f-89da613e7143", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 2", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json new file mode 100644 index 000000000000..17dc437d4338 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json @@ -0,0 +1,70 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/securityStandards/155afdf9-d239-4a5c-847f-89da613e7143", + "name": "155afdf9-d239-4a5c-847f-89da613e7143", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 2", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json new file mode 100644 index 000000000000..d2262fb28971 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json @@ -0,0 +1,72 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Cross cloud standard 1", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/securityStandards/155afdf9-d239-4a5c-847f-89da613e7143", + "name": "155afdf9-d239-4a5c-847f-89da613e7143", + "type": "Microsoft.Security/securityStandards", + "location": "East US", + "etag": "etag value", + "properties": { + "displayName": "Cross cloud standard 2", + "standardType": "Custom", + "description": "Controls and security data implementing security recommendations defined in Azure Security", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json new file mode 100644 index 000000000000..91ebf6d77e0e --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json @@ -0,0 +1,87 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "standardId": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "standard": { + "properties": { + "displayName": "Azure Test Security Standard 1", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions" + } + } + }, + "responses": { + "200": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "standardType": "Custom", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "standardType": "Custom", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json new file mode 100644 index 000000000000..5740a15d7239 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json @@ -0,0 +1,84 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "standardId": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "standard": { + "properties": { + "displayName": "Azure Test Security Standard 1", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ] + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "standardType": "Custom", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "description": "description of Azure Test Security Standard 1", + "category": "SecurityCenter", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json new file mode 100644 index 000000000000..6646e113df05 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json @@ -0,0 +1,87 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "standardId": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "standard": { + "properties": { + "displayName": "Azure Test Security Standard 1", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions" + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "standardType": "Custom", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myResourceGroup/provider/Microsoft.Security/standards/8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "name": "8bb8be0a-6010-4789-812f-e4d661c4ed0e", + "type": "Microsoft.Security/securityStandards", + "properties": { + "displayName": "Azure Test Security Standard 1", + "standardType": "Custom", + "description": "description of Azure Test Security Standard 1", + "assessments": [ + { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + { + "assessmentKey": "dbd0cb49-b563-45e7-9724-889e799fa648" + } + ], + "cloudProviders": [ + "GCP" + ], + "policySetDefinitionId": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json deleted file mode 100644 index ec3ffccf2be2..000000000000 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json +++ /dev/null @@ -1,1494 +0,0 @@ -{ - "swagger": "2.0", - "info": { - "title": "Security Center", - "description": "API spec for Microsoft.Security (Azure Security Center) resource provider", - "version": "2023-05-01-preview" - }, - "host": "management.azure.com", - "schemes": [ - "https" - ], - "consumes": [ - "application/json" - ], - "produces": [ - "application/json" - ], - "security": [ - { - "azure_auth": [ - "user_impersonation" - ] - } - ], - "securityDefinitions": { - "azure_auth": { - "type": "oauth2", - "authorizationUrl": "https://login.microsoftonline.com/common/oauth2/authorize", - "flow": "implicit", - "description": "Azure Active Directory OAuth2 Flow", - "scopes": { - "user_impersonation": "impersonate your user account" - } - } - }, - "paths": { - "/subscriptions/{subscriptionId}/providers/Microsoft.Security/securityConnectors": { - "get": { - "x-ms-examples": { - "List all security connectors of a specified subscription": { - "$ref": "./examples/SecurityConnectors/GetSecurityConnectorsSubscription_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "description": "Lists all the security connectors in the specified subscription. Use the 'nextLink' property in the response to get the next page of security connectors for the specified subscription.", - "operationId": "SecurityConnectors_List", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - } - ], - "responses": { - "200": { - "description": "OK", - "schema": { - "$ref": "#/definitions/SecurityConnectorsList" - } - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - }, - "x-ms-pageable": { - "nextLinkName": "nextLink" - } - } - }, - "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors": { - "get": { - "x-ms-examples": { - "List all security connectors of a specified resource group": { - "$ref": "./examples/SecurityConnectors/GetSecurityConnectorsResourceGroup_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "description": "Lists all the security connectors in the specified resource group. Use the 'nextLink' property in the response to get the next page of security connectors for the specified resource group.", - "operationId": "SecurityConnectors_ListByResourceGroup", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" - } - ], - "responses": { - "200": { - "description": "OK", - "schema": { - "$ref": "#/definitions/SecurityConnectorsList" - } - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - }, - "x-ms-pageable": { - "nextLinkName": "nextLink" - } - } - }, - "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName}": { - "get": { - "x-ms-examples": { - "Retrieve a security connector": { - "$ref": "./examples/SecurityConnectors/GetSecurityConnectorSingleResource_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "description": "Retrieves details of a specific security connector", - "operationId": "SecurityConnectors_Get", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" - }, - { - "$ref": "#/parameters/securityConnectorName" - } - ], - "responses": { - "200": { - "description": "OK", - "schema": { - "$ref": "#/definitions/SecurityConnector" - } - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - } - }, - "put": { - "x-ms-examples": { - "Create or update a security connector": { - "$ref": "./examples/SecurityConnectors/PutSecurityConnector_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "description": "Creates or updates a security connector. If a security connector is already created and a subsequent request is issued for the same security connector id, then it will be updated.", - "operationId": "SecurityConnectors_CreateOrUpdate", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" - }, - { - "$ref": "#/parameters/securityConnectorName" - }, - { - "$ref": "#/parameters/securityConnectorInBody" - } - ], - "responses": { - "200": { - "description": "OK", - "schema": { - "$ref": "#/definitions/SecurityConnector" - } - }, - "201": { - "description": "Created", - "schema": { - "$ref": "#/definitions/SecurityConnector" - } - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - } - }, - "patch": { - "x-ms-examples": { - "Update a security connector": { - "$ref": "./examples/SecurityConnectors/PatchSecurityConnector_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "description": "Updates a security connector", - "operationId": "SecurityConnectors_Update", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" - }, - { - "$ref": "#/parameters/securityConnectorName" - }, - { - "$ref": "#/parameters/securityConnectorInBody" - } - ], - "responses": { - "200": { - "description": "OK", - "schema": { - "$ref": "#/definitions/SecurityConnector" - } - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - } - }, - "delete": { - "x-ms-examples": { - "Delete a security connector": { - "$ref": "./examples/SecurityConnectors/DeleteSecurityConnector_example.json" - } - }, - "tags": [ - "SecurityConnectors" - ], - "operationId": "SecurityConnectors_Delete", - "description": "Deletes a security connector.", - "parameters": [ - { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/SubscriptionId" - }, - { - "$ref": "../../../common/v1/types.json#/parameters/ResourceGroupName" - }, - { - "$ref": "#/parameters/securityConnectorName" - } - ], - "responses": { - "200": { - "description": "The resource was deleted successfully" - }, - "204": { - "description": "NoContent" - }, - "default": { - "description": "Error response that describes why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } - } - } - } - } - }, - "definitions": { - "SecurityConnectorsList": { - "type": "object", - "description": "List of security connectors response.", - "required": [ - "value" - ], - "properties": { - "value": { - "type": "array", - "description": "The list of security connectors under the given scope.", - "items": { - "$ref": "#/definitions/SecurityConnector" - } - }, - "nextLink": { - "readOnly": true, - "type": "string", - "description": "The URI to fetch the next page." - } - } - }, - "SecurityConnector": { - "type": "object", - "description": "The security connector resource.", - "properties": { - "systemData": { - "readOnly": true, - "type": "object", - "description": "Azure Resource Manager metadata containing createdBy and modifiedBy information.", - "$ref": "../../../../../common-types/resource-management/v2/types.json#/definitions/systemData" - }, - "properties": { - "x-ms-client-flatten": true, - "description": "Security connector data", - "$ref": "#/definitions/SecurityConnectorProperties" - } - }, - "allOf": [ - { - "$ref": "../../../common/v1/types.json#/definitions/TrackedResource" - } - ] - }, - "SecurityConnectorProperties": { - "type": "object", - "description": "A set of properties that defines the security connector configuration.", - "properties": { - "hierarchyIdentifier": { - "type": "string", - "description": "The multi cloud resource identifier (account id in case of AWS connector, project number in case of GCP connector)." - }, - "hierarchyIdentifierTrialEndDate": { - "type": "string", - "format": "date-time", - "readOnly": true, - "description": "The date on which the trial period will end, if applicable. Trial period exists for 30 days after upgrading to payed offerings." - }, - "environmentName": { - "type": "string", - "description": "The multi cloud resource's cloud name.", - "enum": [ - "Azure", - "AWS", - "GCP", - "Github", - "AzureDevOps", - "GitLab" - ], - "x-ms-enum": { - "name": "cloudName", - "modelAsString": true - } - }, - "offerings": { - "type": "array", - "description": "A collection of offerings for the security connector.", - "items": { - "$ref": "#/definitions/cloudOffering" - }, - "x-ms-identifiers": [] - }, - "environmentData": { - "type": "object", - "description": "The security connector environment data.", - "$ref": "#/definitions/EnvironmentData" - } - } - }, - "EnvironmentData": { - "type": "object", - "description": "The security connector environment data.", - "discriminator": "environmentType", - "required": [ - "environmentType" - ], - "properties": { - "environmentType": { - "type": "string", - "description": "The type of the environment data.", - "enum": [ - "AwsAccount", - "GcpProject", - "GithubScope", - "AzureDevOpsScope", - "GitlabScope" - ], - "x-ms-enum": { - "name": "environmentType", - "modelAsString": true - } - } - } - }, - "AwsEnvironmentData": { - "type": "object", - "description": "The AWS connector environment data", - "x-ms-discriminator-value": "AwsAccount", - "allOf": [ - { - "$ref": "#/definitions/EnvironmentData" - } - ], - "properties": { - "organizationalData": { - "type": "object", - "description": "The AWS account's organizational data", - "$ref": "#/definitions/AwsOrganizationalData" - }, - "regions": { - "type": "array", - "description": "list of regions to scan", - "items": { - "type": "string", - "description": "AWS regions names" - } - }, - "accountName": { - "type": "string", - "description": "The AWS account name", - "readOnly": true - } - } - }, - "AwsOrganizationalData": { - "type": "object", - "description": "The AWS organization data", - "discriminator": "organizationMembershipType", - "required": [ - "organizationMembershipType" - ], - "properties": { - "organizationMembershipType": { - "type": "string", - "description": "The multi cloud account's membership type in the organization", - "enum": [ - "Member", - "Organization" - ], - "x-ms-enum": { - "name": "organizationMembershipType", - "modelAsString": true - } - } - } - }, - "AwsOrganizationalDataMaster": { - "type": "object", - "description": "The AWS organization data for the master account", - "x-ms-discriminator-value": "Organization", - "allOf": [ - { - "$ref": "#/definitions/AwsOrganizationalData" - } - ], - "properties": { - "stacksetName": { - "type": "string", - "description": "If the multi cloud account is of membership type organization, this will be the name of the onboarding stackset" - }, - "excludedAccountIds": { - "type": "array", - "description": "If the multi cloud account is of membership type organization, list of accounts excluded from offering", - "items": { - "type": "string", - "description": "account IDs" - } - } - } - }, - "AwsOrganizationalDataMember": { - "type": "object", - "description": "The AWS organization data for the member account", - "x-ms-discriminator-value": "Member", - "allOf": [ - { - "$ref": "#/definitions/AwsOrganizationalData" - } - ], - "properties": { - "parentHierarchyId": { - "type": "string", - "description": "If the multi cloud account is not of membership type organization, this will be the ID of the account's parent" - } - } - }, - "GcpProjectEnvironmentData": { - "type": "object", - "description": "The GCP project connector environment data", - "x-ms-discriminator-value": "GcpProject", - "allOf": [ - { - "$ref": "#/definitions/EnvironmentData" - } - ], - "properties": { - "organizationalData": { - "type": "object", - "description": "The Gcp project's organizational data", - "$ref": "#/definitions/GcpOrganizationalData" - }, - "projectDetails": { - "type": "object", - "description": "The Gcp project's details", - "$ref": "#/definitions/GcpProjectDetails" - } - } - }, - "GcpProjectDetails": { - "type": "object", - "description": "The details about the project represented by the security connector", - "properties": { - "projectNumber": { - "type": "string", - "description": "The unique GCP Project number" - }, - "projectId": { - "type": "string", - "description": "The GCP Project id" - }, - "workloadIdentityPoolId": { - "readOnly": true, - "type": "string", - "description": "The GCP workload identity federation pool id" - }, - "projectName": { - "readOnly": true, - "type": "string", - "description": "GCP project name" - } - } - }, - "GcpOrganizationalData": { - "type": "object", - "description": "The gcpOrganization data", - "discriminator": "organizationMembershipType", - "required": [ - "organizationMembershipType" - ], - "properties": { - "organizationMembershipType": { - "type": "string", - "description": "The multi cloud account's membership type in the organization", - "enum": [ - "Member", - "Organization" - ], - "x-ms-enum": { - "name": "organizationMembershipType", - "modelAsString": true - } - } - } - }, - "GcpOrganizationalDataOrganization": { - "type": "object", - "description": "The gcpOrganization data for the parent account", - "x-ms-discriminator-value": "Organization", - "allOf": [ - { - "$ref": "#/definitions/GcpOrganizationalData" - } - ], - "properties": { - "excludedProjectNumbers": { - "type": "array", - "description": "If the multi cloud account is of membership type organization, list of accounts excluded from offering", - "items": { - "type": "string", - "description": "account IDs" - } - }, - "serviceAccountEmailAddress": { - "type": "string", - "description": "The service account email address which represents the organization level permissions container." - }, - "workloadIdentityProviderId": { - "type": "string", - "description": "The GCP workload identity provider id which represents the permissions required to auto provision security connectors" - }, - "organizationName": { - "readOnly": true, - "type": "string", - "description": "GCP organization name" - } - } - }, - "GcpOrganizationalDataMember": { - "type": "object", - "description": "The gcpOrganization data for the member account", - "x-ms-discriminator-value": "Member", - "allOf": [ - { - "$ref": "#/definitions/GcpOrganizationalData" - } - ], - "properties": { - "parentHierarchyId": { - "type": "string", - "description": "If the multi cloud account is not of membership type organization, this will be the ID of the project's parent" - }, - "managementProjectNumber": { - "type": "string", - "description": "The GCP management project number from organizational onboarding" - } - } - }, - "GithubScopeEnvironmentData": { - "type": "object", - "description": "The github scope connector's environment data", - "x-ms-discriminator-value": "GithubScope", - "allOf": [ - { - "$ref": "#/definitions/EnvironmentData" - } - ], - "properties": {} - }, - "AzureDevOpsScopeEnvironmentData": { - "type": "object", - "description": "The AzureDevOps scope connector's environment data", - "x-ms-discriminator-value": "AzureDevOpsScope", - "allOf": [ - { - "$ref": "#/definitions/EnvironmentData" - } - ], - "properties": {} - }, - "GitlabScopeEnvironmentData": { - "type": "object", - "description": "The GitLab scope connector's environment data", - "x-ms-discriminator-value": "GitlabScope", - "allOf": [ - { - "$ref": "#/definitions/EnvironmentData" - } - ], - "properties": {} - }, - "cloudOffering": { - "type": "object", - "description": "The security offering details", - "discriminator": "offeringType", - "required": [ - "offeringType" - ], - "properties": { - "offeringType": { - "type": "string", - "description": "The type of the security offering.", - "enum": [ - "CspmMonitorAws", - "DefenderForContainersAws", - "DefenderForServersAws", - "DefenderForDatabasesAws", - "InformationProtectionAws", - "CspmMonitorGcp", - "CspmMonitorGithub", - "CspmMonitorAzureDevOps", - "DefenderForServersGcp", - "DefenderForContainersGcp", - "DefenderForDatabasesGcp", - "DefenderCspmAws", - "DefenderCspmGcp", - "DefenderForDevOpsGithub", - "DefenderForDevOpsAzureDevOps", - "CspmMonitorGitLab", - "DefenderForDevOpsGitLab" - ], - "x-ms-enum": { - "name": "offeringType", - "modelAsString": true - } - }, - "description": { - "type": "string", - "description": "The offering description.", - "readOnly": true - } - } - }, - "cspmMonitorAwsOffering": { - "type": "object", - "description": "The CSPM monitoring for AWS offering", - "x-ms-discriminator-value": "CspmMonitorAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "nativeCloudConnection": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - } - } - }, - "defenderForContainersAwsOffering": { - "type": "object", - "description": "The Defender for Containers AWS offering", - "x-ms-discriminator-value": "DefenderForContainersAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "kubernetesService": { - "type": "object", - "description": "The kubernetes service connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature used for provisioning resources" - } - } - }, - "kubernetesScubaReader": { - "type": "object", - "description": "The kubernetes to scuba connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature used for reading data" - } - } - }, - "cloudWatchToKinesis": { - "type": "object", - "description": "The cloudwatch to kinesis connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS used by CloudWatch to transfer data into Kinesis" - } - } - }, - "kinesisToS3": { - "type": "object", - "description": "The kinesis to s3 connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS used by Kinesis to transfer data into S3" - } - } - }, - "containerVulnerabilityAssessment": { - "type": "object", - "description": "The container vulnerability assessment configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - }, - "containerVulnerabilityAssessmentTask": { - "type": "object", - "description": "The container vulnerability assessment task configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - }, - "enableContainerVulnerabilityAssessment": { - "type": "boolean", - "description": "Enable container vulnerability assessment feature" - }, - "autoProvisioning": { - "type": "boolean", - "description": "Is audit logs pipeline auto provisioning enabled" - }, - "kubeAuditRetentionTime": { - "type": "integer", - "format": "int64", - "description": "The retention time in days of kube audit logs set on the CloudWatch log group" - }, - "scubaExternalId": { - "type": "string", - "description": "The externalId used by the data reader to prevent the confused deputy attack" - } - } - }, - "defenderForServersAwsOffering": { - "type": "object", - "description": "The Defender for Servers AWS offering", - "x-ms-discriminator-value": "DefenderForServersAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "defenderForServers": { - "type": "object", - "description": "The Defender for servers connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - }, - "arcAutoProvisioning": { - "type": "object", - "description": "The ARC autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is arc auto provisioning enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - }, - "configuration": { - "type": "object", - "description": "Configuration for servers Arc auto provisioning", - "properties": { - "proxy": { - "type": "string", - "description": "Optional HTTP proxy endpoint to use for the Arc agent" - }, - "privateLinkScope": { - "type": "string", - "description": "Optional Arc private link scope resource id to link the Arc agent" - } - } - } - } - }, - "vaAutoProvisioning": { - "type": "object", - "description": "The Vulnerability Assessment autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Vulnerability Assessment auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Vulnerability Assessment autoprovisioning", - "properties": { - "type": { - "type": "string", - "description": "The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'", - "enum": [ - "Qualys", - "TVM" - ], - "x-ms-enum": { - "name": "type", - "modelAsString": true - } - } - } - } - } - }, - "mdeAutoProvisioning": { - "type": "object", - "description": "The Microsoft Defender for Endpoint autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender for Endpoint auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Microsoft Defender for Endpoint autoprovisioning", - "properties": {} - } - } - }, - "subPlan": { - "type": "object", - "description": "configuration for the servers offering subPlan", - "properties": { - "type": { - "type": "string", - "description": "The available sub plans", - "enum": [ - "P1", - "P2" - ], - "x-ms-enum": { - "name": "subPlan", - "modelAsString": true - } - } - } - }, - "vmScanners": { - "type": "object", - "description": "The Microsoft Defender for Server VM scanning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender for Server VM scanning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Microsoft Defender for Server VM scanning", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - }, - "scanningMode": { - "type": "string", - "description": "The scanning mode for the VM scan.", - "enum": [ - "Default" - ], - "x-ms-enum": { - "name": "scanningMode", - "modelAsString": true - } - }, - "exclusionTags": { - "type": "object", - "additionalProperties": { - "type": "string" - }, - "description": "VM tags that indicates that VM should not be scanned" - } - } - } - } - } - } - }, - "defenderFoDatabasesAwsOffering": { - "type": "object", - "description": "The Defender for Databases AWS offering", - "x-ms-discriminator-value": "DefenderForDatabasesAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "arcAutoProvisioning": { - "type": "object", - "description": "The ARC autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is arc auto provisioning enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - }, - "configuration": { - "type": "object", - "description": "Configuration for servers Arc auto provisioning", - "properties": { - "proxy": { - "type": "string", - "description": "Optional http proxy endpoint to use for the Arc agent" - }, - "privateLinkScope": { - "type": "string", - "description": "Optional Arc private link scope resource id to link the Arc agent" - } - } - } - } - }, - "rds": { - "type": "object", - "description": "The RDS configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is RDS protection enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - }, - "databasesDspm": { - "type": "object", - "description": "The databases data security posture management (DSPM) configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is databases data security posture management (DSPM) protection enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - } - } - }, - "informationProtectionAwsOffering": { - "type": "object", - "description": "The information protection for AWS offering", - "x-ms-discriminator-value": "InformationProtectionAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "informationProtection": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - } - } - }, - "cspmMonitorGcpOffering": { - "type": "object", - "description": "The CSPM monitoring for GCP offering", - "x-ms-discriminator-value": "CspmMonitorGcp", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "nativeCloudConnection": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "workloadIdentityProviderId": { - "type": "string", - "description": "The GCP workload identity provider id for the offering" - }, - "serviceAccountEmailAddress": { - "type": "string", - "description": "The service account email address in GCP for this offering" - } - } - } - } - }, - "defenderForServersGcpOffering": { - "type": "object", - "description": "The Defender for Servers GCP offering configurations", - "x-ms-discriminator-value": "DefenderForServersGcp", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "defenderForServers": { - "type": "object", - "description": "The Defender for servers connection configuration", - "properties": { - "workloadIdentityProviderId": { - "type": "string", - "description": "The workload identity provider id in GCP for this feature" - }, - "serviceAccountEmailAddress": { - "type": "string", - "description": "The service account email address in GCP for this feature" - } - } - }, - "arcAutoProvisioning": { - "type": "object", - "description": "The ARC autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is arc auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "Configuration for servers Arc auto provisioning", - "properties": { - "proxy": { - "type": "string", - "description": "Optional HTTP proxy endpoint to use for the Arc agent" - }, - "privateLinkScope": { - "type": "string", - "description": "Optional Arc private link scope resource id to link the Arc agent" - } - } - } - } - }, - "vaAutoProvisioning": { - "type": "object", - "description": "The Vulnerability Assessment autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Vulnerability Assessment auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Vulnerability Assessment autoprovisioning", - "properties": { - "type": { - "type": "string", - "description": "The Vulnerability Assessment solution to be provisioned. Can be either 'TVM' or 'Qualys'", - "enum": [ - "Qualys", - "TVM" - ], - "x-ms-enum": { - "name": "type", - "modelAsString": true - } - } - } - } - } - }, - "mdeAutoProvisioning": { - "type": "object", - "description": "The Microsoft Defender for Endpoint autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender for Endpoint auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Microsoft Defender for Endpoint autoprovisioning", - "properties": {} - } - } - }, - "subPlan": { - "type": "object", - "description": "configuration for the servers offering subPlan", - "properties": { - "type": { - "type": "string", - "description": "The available sub plans", - "enum": [ - "P1", - "P2" - ], - "x-ms-enum": { - "name": "subPlan", - "modelAsString": true - } - } - } - }, - "vmScanners": { - "type": "object", - "description": "The Microsoft Defender for Server VM scanning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender for Server VM scanning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Microsoft Defender for Server VM scanning", - "properties": { - "scanningMode": { - "type": "string", - "description": "The scanning mode for the VM scan.", - "enum": [ - "Default" - ], - "x-ms-enum": { - "name": "scanningMode", - "modelAsString": true - } - }, - "exclusionTags": { - "type": "object", - "additionalProperties": { - "type": "string" - }, - "description": "VM tags that indicate that VM should not be scanned" - } - } - } - } - } - } - }, - "defenderForDatabasesGcpOffering": { - "type": "object", - "description": "The Defender for Databases GCP offering configurations", - "x-ms-discriminator-value": "DefenderForDatabasesGcp", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "arcAutoProvisioning": { - "type": "object", - "description": "The ARC autoprovisioning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is arc auto provisioning enabled" - }, - "configuration": { - "type": "object", - "description": "Configuration for servers Arc auto provisioning", - "properties": { - "proxy": { - "type": "string", - "description": "Optional http proxy endpoint to use for the Arc agent" - }, - "privateLinkScope": { - "type": "string", - "description": "Optional Arc private link scope resource id to link the Arc agent" - } - } - } - } - }, - "defenderForDatabasesArcAutoProvisioning": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "serviceAccountEmailAddress": { - "type": "string", - "description": "The service account email address in GCP for this offering" - }, - "workloadIdentityProviderId": { - "type": "string", - "description": "The GCP workload identity provider id for this offering" - } - } - } - } - }, - "defenderForContainersGcpOffering": { - "type": "object", - "description": "The containers GCP offering", - "x-ms-discriminator-value": "DefenderForContainersGcp", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "nativeCloudConnection": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "serviceAccountEmailAddress": { - "type": "string", - "description": "The service account email address in GCP for this offering" - }, - "workloadIdentityProviderId": { - "type": "string", - "description": "The GCP workload identity provider id for this offering" - } - } - }, - "dataPipelineNativeCloudConnection": { - "type": "object", - "description": "The native cloud connection configuration", - "properties": { - "serviceAccountEmailAddress": { - "type": "string", - "description": "The data collection service account email address in GCP for this offering" - }, - "workloadIdentityProviderId": { - "type": "string", - "description": "The data collection GCP workload identity provider id for this offering" - } - } - }, - "auditLogsAutoProvisioningFlag": { - "type": "boolean", - "description": "Is audit logs data collection enabled" - }, - "defenderAgentAutoProvisioningFlag": { - "type": "boolean", - "description": "Is Microsoft Defender for Cloud Kubernetes agent auto provisioning enabled" - }, - "policyAgentAutoProvisioningFlag": { - "type": "boolean", - "description": "Is Policy Kubernetes agent auto provisioning enabled" - } - } - }, - "cspmMonitorGithubOffering": { - "type": "object", - "description": "The CSPM monitoring for github offering", - "x-ms-discriminator-value": "CspmMonitorGithub", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "cspmMonitorAzureDevOpsOffering": { - "type": "object", - "description": "The CSPM monitoring for AzureDevOps offering", - "x-ms-discriminator-value": "CspmMonitorAzureDevOps", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "defenderCspmAwsOffering": { - "type": "object", - "description": "The CSPM P1 for AWS offering", - "x-ms-discriminator-value": "DefenderCspmAws", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": { - "vmScanners": { - "type": "object", - "description": "The Microsoft Defender for Server VM scanning configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender for Server VM scanning enabled" - }, - "configuration": { - "type": "object", - "description": "configuration for Microsoft Defender for Server VM scanning", - "properties": { - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - }, - "scanningMode": { - "type": "string", - "description": "The scanning mode for the VM scan.", - "enum": [ - "Default" - ], - "x-ms-enum": { - "name": "scanningMode", - "modelAsString": true - } - }, - "exclusionTags": { - "type": "object", - "additionalProperties": { - "type": "string" - }, - "description": "VM tags that indicates that VM should not be scanned" - } - } - } - } - }, - "dataSensitivityDiscovery": { - "type": "object", - "description": "The Microsoft Defender Data Sensitivity discovery configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is Microsoft Defender Data Sensitivity discovery enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - }, - "databasesDspm": { - "type": "object", - "description": "The databases DSPM configuration", - "properties": { - "enabled": { - "type": "boolean", - "description": "Is databases DSPM protection enabled" - }, - "cloudRoleArn": { - "type": "string", - "description": "The cloud role ARN in AWS for this feature" - } - } - } - } - }, - "defenderCspmGcpOffering": { - "type": "object", - "description": "The CSPM P1 for GCP offering", - "x-ms-discriminator-value": "DefenderCspmGcp", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "defenderForDevOpsGithubOffering": { - "type": "object", - "description": "The Defender for DevOps for Github offering", - "x-ms-discriminator-value": "DefenderForDevOpsGithub", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "defenderForDevOpsAzureDevOpsOffering": { - "type": "object", - "description": "The Defender for DevOps for Azure DevOps offering", - "x-ms-discriminator-value": "DefenderForDevOpsAzureDevOps", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "cspmMonitorGitLabOffering": { - "type": "object", - "description": "The CSPM (Cloud security posture management) monitoring for gitlab offering", - "x-ms-discriminator-value": "CspmMonitorGitLab", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - }, - "defenderForDevOpsGitLabOffering": { - "type": "object", - "description": "The Defender for DevOps for Gitlab offering", - "x-ms-discriminator-value": "DefenderForDevOpsGitLab", - "allOf": [ - { - "$ref": "#/definitions/cloudOffering" - } - ], - "properties": {} - } - }, - "parameters": { - "securityConnectorName": { - "name": "securityConnectorName", - "in": "path", - "required": true, - "type": "string", - "description": "The security connector name.", - "x-ms-parameter-location": "method" - }, - "securityConnectorInBody": { - "name": "securityConnector", - "in": "body", - "required": true, - "description": "The security connector resource", - "schema": { - "$ref": "#/definitions/SecurityConnector" - }, - "x-ms-parameter-location": "method" - } - } -} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json new file mode 100644 index 000000000000..654ba86d05d0 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -0,0 +1,380 @@ +{ + "swagger": "2.0", + "info": { + "title": "Microsoft Defender for Cloud", + "description": "API spec for Microsoft.Security (Microsoft Defender for Cloud) resource provider", + "version": "2023-05-01-preview" + }, + "host": "management.azure.com", + "schemes": [ + "https" + ], + "consumes": [ + "application/json" + ], + "produces": [ + "application/json" + ], + "security": [ + { + "azure_auth": [ + "user_impersonation" + ] + } + ], + "securityDefinitions": { + "azure_auth": { + "type": "oauth2", + "authorizationUrl": "https://login.microsoftonline.com/common/oauth2/authorize", + "flow": "implicit", + "description": "Azure Active Directory OAuth2 Flow", + "scopes": { + "user_impersonation": "impersonate your user account" + } + } + }, + "paths": { + "/{scope}/providers/Microsoft.Security/securityStandards": { + "get": { + "x-ms-examples": { + "List security standards by subscription scope": { + "$ref": "./examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json" + }, + "List security standards by security connector scope": { + "$ref": "./examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json" + }, + "List security standards by management group scope": { + "$ref": "./examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json" + } + }, + "tags": [ + "securityStandards" + ], + "description": "Get a list of all relevant security standards over a scope", + "operationId": "securityStandards_List", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityStandardList" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + }, + "x-ms-pageable": { + "nextLinkName": "nextLink" + } + } + }, + "/{scope}/providers/Microsoft.Security/securityStandards/{standardId}": { + "get": { + "x-ms-examples": { + "Get a security standard over subscription scope": { + "$ref": "./examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json" + }, + "Get a security standard over security connector scope": { + "$ref": "./examples/securityStandards/GetBySecurityConnectorSecurityStandard_example.json" + }, + "Get a security standard over management group scope": { + "$ref": "./examples/securityStandards/GetByManagementGroupSecurityStandard_example.json" + } + }, + "tags": [ + "securityStandards" + ], + "description": "Get a specific security standard for the requested scope by standardId", + "operationId": "securityStandards_Get", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/StandardId" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/SecurityStandard" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "put": { + "x-ms-examples": { + "Create or update security standard over subscription scope": { + "$ref": "./examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json" + }, + "Create or update security standard over security connector scope": { + "$ref": "./examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json" + }, + "Create or update security standard over management group scope": { + "$ref": "./examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json" + } + }, + "tags": [ + "securityStandards" + ], + "description": "Creates or updates a security standard over a given scope", + "operationId": "securityStandards_CreateOrUpdate", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/StandardId" + }, + { + "$ref": "#/parameters/SecurityStandardBody" + } + ], + "responses": { + "201": { + "description": "Created", + "schema": { + "$ref": "#/definitions/SecurityStandard" + } + }, + "200": { + "description": "OK - Updated", + "schema": { + "$ref": "#/definitions/SecurityStandard" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "delete": { + "x-ms-examples": { + "Delete a security standard over subscription scope": { + "$ref": "./examples/securityStandards/DeleteBySubscriptionSecurityStandard_example.json" + }, + "Delete a security standard over security connector scope": { + "$ref": "./examples/securityStandards/DeleteBySecurityConnectorSecurityStandard_example.json" + }, + "Delete a security standard over management group scope": { + "$ref": "./examples/securityStandards/DeleteByManagementGroupSecurityStandard_example.json" + } + }, + "tags": [ + "securityStandards" + ], + "description": "Delete a security standard over a given scope", + "operationId": "securityStandards_Delete", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + }, + { + "$ref": "#/parameters/StandardId" + } + ], + "responses": { + "200": { + "description": "OK - security standard was deleted" + }, + "204": { + "description": "No Content - security standard does not exist" + }, + "default": { + "description": "Error response describing why the operation failed" + } + }, + "x-ms-long-running-operation": true, + "x-ms-long-running-operation-options": { + "final-state-via": "location" + } + } + } + }, + "definitions": { + "SecurityStandardList": { + "type": "object", + "description": "Page of a Standard list", + "properties": { + "value": { + "description": "Collection of standards in this page", + "readOnly": true, + "type": "array", + "items": { + "$ref": "#/definitions/SecurityStandard" + } + }, + "nextLink": { + "readOnly": true, + "type": "string", + "description": "The URI to fetch the next page" + } + } + }, + "SecurityStandard": { + "type": "object", + "description": "Security Standard on a resource", + "properties": { + "properties": { + "description": "Properties of a security standard", + "x-ms-client-flatten": true, + "$ref": "#/definitions/StandardProperties" + } + }, + "allOf": [ + { + "$ref": "../../../common/v1/types.json#/definitions/Resource" + } + ] + }, + "StandardProperties": { + "type": "object", + "description": "Describes properties of a standard.", + "properties": { + "displayName": { + "description": "display name of the standard, equivalent to the standardId", + "type": "string" + }, + "standardType": { + "description": "standard type (Custom or BuiltIn only currently)", + "type": "string", + "readOnly": true + }, + "description": { + "description": "description of the standard", + "type": "string" + }, + "assessments": { + "description": "List of assessment keys to apply to standard scope.", + "type": "array", + "items": { + "$ref": "#/definitions/StandardComponentProperties" + } + }, + "cloudProviders": { + "description": "List of all standard supported clouds.", + "type": "array", + "items": { + "$ref": "#/definitions/StandardSupportedClouds" + } + }, + "policySetDefinitionId": { + "description": "The policy set defintion id associated with the standard.", + "type": "string" + }, + "metadata": { + "$ref": "#/definitions/StandardMetadata" + } + } + }, + "StandardMetadata": { + "type": "object", + "description": "The standard metadata", + "properties": { + "createdBy": { + "description": "standard Created by object id (GUID)", + "type": "string", + "readOnly": true + }, + "createdOn": { + "description": "standard creation date", + "type": "string", + "format": "date-time", + "readOnly": true + }, + "updatedBy": { + "description": "standard last updated by object id (GUID)", + "type": "string", + "readOnly": true + }, + "updatedOn": { + "description": "standard last update date", + "type": "string", + "format": "date-time", + "readOnly": true + } + } + }, + "StandardComponentProperties": { + "type": "object", + "description": "Describes properties of an component as related to the standard", + "properties": { + "assessmentKey": { + "description": "the assessment key", + "type": "string" + } + } + }, + "StandardSupportedClouds": { + "type": "string", + "description": "The cloud that the standard is supported on.", + "enum": [ + "Azure", + "AWS", + "GCP" + ], + "x-ms-enum": { + "name": "StandardSupportedClouds", + "modelAsString": false + } + } + }, + "parameters": { + "StandardId": { + "name": "standardId", + "in": "path", + "required": true, + "type": "string", + "description": "The Security Standard key - unique key for the standard type", + "x-ms-parameter-location": "method" + }, + "StandardBody": { + "name": "standard", + "in": "body", + "required": true, + "schema": { + "$ref": "#/definitions/Standard" + }, + "description": "Custom security standard over a pre-defined scope", + "x-ms-parameter-location": "method" + }, + "Scope": { + "name": "scope", + "in": "path", + "required": true, + "type": "string", + "description": "The scope of the security standard. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'", + "x-ms-parameter-location": "method" + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json new file mode 100644 index 000000000000..e16453836d3c --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -0,0 +1,401 @@ +{ + "swagger": "2.0", + "info": { + "title": "Microsoft Defender for Cloud", + "description": "API spec for Microsoft.Security (Microsoft Defender for Cloud) resource provider", + "version": "2023-05-01-preview" + }, + "host": "management.azure.com", + "schemes": [ + "https" + ], + "consumes": [ + "application/json" + ], + "produces": [ + "application/json" + ], + "security": [ + { + "azure_auth": [ + "user_impersonation" + ] + } + ], + "securityDefinitions": { + "azure_auth": { + "type": "oauth2", + "authorizationUrl": "https://login.microsoftonline.com/common/oauth2/authorize", + "flow": "implicit", + "description": "Azure Active Directory OAuth2 Flow", + "scopes": { + "user_impersonation": "impersonate your user account" + } + } + }, + "paths": { + "/{resourceId}/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}": { + "delete": { + "tags": [ + "standardAssignments" + ], + "operationId": "standardAssignments_Delete", + "summary": "Deletes a standard assignmnet.", + "description": "This operation deletes a standard assignmnet, given its name and the scope it was created in. The scope of a standard assignmnet is the part of its ID preceding '/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}'.", + "x-ms-examples": { + "Delete a standard assignmnet": { + "$ref": "./examples/deletestandardAssignment.json" + } + }, + "parameters": [ + { + "$ref": "#/parameters/StandardAssignmentName" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + } + ], + "responses": { + "200": { + "description": "OK - Returns information about the deleted assignment.", + "schema": { + "$ref": "#/definitions/standardAssignment" + } + }, + "204": { + "description": "No Content - the standard assignmnet doesn't exist." + }, + "default": { + "description": "Error response describing why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "put": { + "tags": [ + "standardAssignments" + ], + "operationId": "standardAssignments_Create", + "summary": "Creates or updates a standard assignmnet.", + "description": " This operation creates or updates a standard assignmnet with the given scope and name. standard assignmnets apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group.", + "x-ms-examples": { + "Create or update a standard assignmnet": { + "$ref": "./examples/createstandardAssignment.json" + }, + "Create or update a standard assignmnet with multiple non-compliance messages": { + "$ref": "./examples/createstandardAssignmentNonComplianceMessages.json" + }, + "Create or update a standard assignmnet with a system assigned identity": { + "$ref": "./examples/createstandardAssignmentWithIdentity.json" + }, + "Create or update a standard assignmnet with a user assigned identity": { + "$ref": "./examples/createstandardAssignmentWithUserAssignedIdentity.json" + }, + "Create or update a standard assignmnet without enforcing policy effect during resource creation or update.": { + "$ref": "./examples/createstandardAssignmentWithoutEnforcement.json" + }, + "Create or update a standard assignmnet with resource selectors": { + "$ref": "./examples/createstandardAssignmentWithResourceSelectors.json" + }, + "Create or update a standard assignmnet with overrides": { + "$ref": "./examples/createstandardAssignmentWithOverrides.json" + } + }, + "parameters": [ + { + "$ref": "#/parameters/StandardAssignmentName" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + } + ], + "responses": { + "201": { + "description": "Created - Returns information about the new standard assignmnet.", + "schema": { + "$ref": "#/definitions/standardAssignment" + } + }, + "default": { + "description": "Error response describing why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + }, + "get": { + "tags": [ + "standardAssignments" + ], + "operationId": "standardAssignments_Get", + "summary": "Retrieves a standard assignmnet.", + "description": "This operation retrieves a single standard assignmnet, given its name and the scope it was created at.", + "x-ms-examples": { + "Retrieve a standard assignmnet": { + "$ref": "./examples/getstandardAssignment.json" + }, + "Retrieve a standard assignmnet with a system assigned identity": { + "$ref": "./examples/getstandardAssignmentWithIdentity.json" + }, + "Retrieve a standard assignmnet with a user assigned identity": { + "$ref": "./examples/getstandardAssignmentWithUserAssignedIdentity.json" + }, + "Retrieve a standard assignmnet with resource selectors": { + "$ref": "./examples/getstandardAssignmentWithResourceSelectors.json" + }, + "Retrieve a standard assignmnet with overrides": { + "$ref": "./examples/getstandardAssignmentWithOverrides.json" + } + }, + "parameters": [ + { + "$ref": "#/parameters/StandardAssignmentName" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + } + ], + "responses": { + "200": { + "description": "OK - Returns information about the standard assignmnet.", + "schema": { + "$ref": "#/definitions/standardAssignment" + } + }, + "default": { + "description": "Error response describing why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + } + } + }, + "/{scope}/providers/Microsoft.Security/standardAssignments": { + "get": { + "x-ms-examples": { + "List security standards by subscription scope": { + "$ref": "./examples/standardAssignments/ListBySubscriptionstandardAssignments_example.json" + }, + "List security standards by security connector scope": { + "$ref": "./examples/standardAssignments/ListBySecurityConnectorstandardAssignments_example.json" + }, + "List security standards by management group scope": { + "$ref": "./examples/standardAssignments/ListByManagementGroupstandardAssignments_example.json" + } + }, + "tags": [ + "standardAssignments" + ], + "description": "Get a list of all relevant security standards over a scope", + "operationId": "standardAssignments_List", + "parameters": [ + { + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/Scope" + } + ], + "responses": { + "200": { + "description": "OK", + "schema": { + "$ref": "#/definitions/StandardAssignmentList" + } + }, + "default": { + "description": "Error response describing why the operation failed", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } + } + }, + "x-ms-pageable": { + "nextLinkName": "nextLink" + } + } + } + }, + "definitions": { + "StandardAssignmentList": { + "type": "object", + "description": "Page of a standard assignment list", + "properties": { + "value": { + "description": "Collection of standardAssignments in this page", + "readOnly": true, + "type": "array", + "items": { + "$ref": "#/definitions/StandardsAssignment" + } + }, + "nextLink": { + "readOnly": true, + "type": "string", + "description": "The URI to fetch the next page" + } + } + }, + "StandardsAssignment": { + "type": "object", + "description": "Security Assignment on a resource group over a given scope", + "properties": { + "properties": { + "description": "Properties of a security standard assignment", + "x-ms-client-flatten": true, + "$ref": "#/definitions/StandardAssignmentProperties" + } + }, + "allOf": [ + { + "$ref": "../../../common/v1/types.json#/definitions/Resource" + } + ] + }, + "StandardAssignmentProperties": { + "type": "object", + "description": "Describes the properties of a standardAssignment", + "properties": { + "displayName": { + "description": "display name of the standardAssignment", + "type": "string" + }, + "description": { + "description": "description of the standardAssignment", + "type": "string" + }, + "assignedStandard": { + "description": "Standard item with key as applied to this standard assignment over the given scope", + "$ref": "#/definitions/AssignedStandardItem" + }, + "effect": { + "description": "expected effect of this assignment (Audit/Exempt)", + "type": "string" + }, + "excludedScopes": { + "type": "array", + "description": "Excluded scopes, filter out the descendants of the scope (on management scopes)", + "items": { + "description": "The excluded scope", + "type": "string" + }, + "x-ms-identifiers": [] + }, + "expiresOn": { + "description": "Expiration date of this assignment as a full ISO date", + "type": "string", + "format": "date-time" + }, + "exemptionData": { + "description": "Additional data about assignment that has Exempt effect", + "type": "object", + "properties": { + "exemptionCategory": { + "description": "Exemption category of this assignment", + "type": "string" + }, + "assignedAssessment": { + "description": "Component item with key as applied to this standard assignment over the given scope", + "$ref": "#/definitions/AssignedAssessmentItem" + }, + "parentScope": { + "description": "the parent scope of the assingment, can be subscription or connector.", + "type": "string" + } + } + }, + "metadata": { + "$ref": "#/definitions/StandardAssignmentMetadata" + } + } + }, + "StandardAssignmentMetadata": { + "type": "object", + "description": "The standard assignment metadata", + "properties": { + "createdBy": { + "description": "standard assignment Created by object id (GUID)", + "type": "string", + "readOnly": true + }, + "createdOn": { + "description": "standard assignment creation date", + "type": "string", + "format": "date-time", + "readOnly": true + }, + "updatedBy": { + "description": "standard assignment last updated by object id (GUID)", + "type": "string", + "readOnly": true + }, + "updatedOn": { + "description": "standard assignment last update date", + "type": "string", + "format": "date-time", + "readOnly": true + } + } + }, + "AssignedStandardItem": { + "type": "object", + "description": "describe the properties of a of a security standard object reference", + "properties": { + "id": { + "description": "full resourceId of the Microsoft.Security/standard object", + "type": "string" + } + } + }, + "AssignedAssessmentItem": { + "type": "object", + "description": "describe the properties of a security assessment object reference (by key)", + "properties": { + "assessmentKey": { + "description": "unique key to a security assessment object", + "type": "string" + } + } + } + }, + "parameters": { + "StandardAssignmentName": { + "name": "standardAssignmentName", + "in": "path", + "required": true, + "type": "string", + "description": "The security standard assignment key - unique key for the standard assignment", + "x-ms-parameter-location": "method" + }, + "StandardsAssignmentBody": { + "name": "standardAssignment", + "in": "body", + "required": true, + "schema": { + "$ref": "#/definitions/StandardsAssignment" + }, + "description": "Custom standard assignment over a pre-defined scope", + "x-ms-parameter-location": "method" + }, + "Scope": { + "name": "scope", + "in": "path", + "required": true, + "type": "string", + "description": "The scope of the standard assignment. Valid scopes are: management group (format: 'providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: 'subscriptions/{subscriptionId}'), or security connector (format: 'subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/securityConnectors/{securityConnectorName})'", + "x-ms-parameter-location": "method" + } + } From 6edd6a70e6299a60ec5ba4b5c68c9dbc8cce5e4f Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 11:15:21 +0300 Subject: [PATCH 05/31] added custom recommendations examples --- .../customRecommedations.json | 14 ++-- ...mentGroupCustomRecommendation_example.json | 11 +++ ...ConnectorCustomRecommendation_example.json | 11 +++ ...scriptionCustomRecommendation_example.json | 11 +++ ...mentGroupCustomRecommendation_example.json | 7 +- ...mentGroupCustomRecommendation_example.json | 69 +++++++++++++++++++ ...ConnectorCustomRecommendation_example.json | 69 +++++++++++++++++++ ...scriptionCustomRecommendation_example.json | 69 +++++++++++++++++++ 8 files changed, 251 insertions(+), 10 deletions(-) create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 0c9079ac73d6..ea6b27dec898 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -126,13 +126,13 @@ "put": { "x-ms-examples": { "Create or update security standard over subscription scope": { - "$ref": "./examples/customRecommendations/PutcustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/PutBySubscriptionCustomRecommendation_example.json" }, "Create or update security standard over security connector scope": { - "$ref": "./examples/customRecommendations/PutSecurityConnectorcustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/PutBySecurityConnectorCustomRecommendation_example.json" }, "Create or update security standard over management group scope": { - "$ref": "./examples/customRecommendations/PutManagementGroupcustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/PutByManagementGroupCustomRecommendation_example.json" } }, "tags": [ @@ -178,13 +178,13 @@ "delete": { "x-ms-examples": { "Delete a security standard over subscription scope": { - "$ref": "./examples/customRecommendations/DeletecustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/DeleteBySubscriptionCustomRecommendation_example.json" }, "Delete a security standard over security connector scope": { - "$ref": "./examples/customRecommendations/DeleteSecurityConnectorcustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json" }, "Delete a security standard over management group scope": { - "$ref": "./examples/customRecommendations/DeleteManagementGroupcustomRecommendation_example.json" + "$ref": "./examples/customRecommendations/DeleteByManagementGroupCustomRecommendation_example.json" } }, "tags": [ @@ -373,7 +373,7 @@ "description": "Custom Recommendation body", "required": true, "schema": { - "$ref": "#/definitions/customRecommendationRequest" + "$ref": "#/definitions/CustomRecommendation" }, "x-ms-parameter-location": "method" }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json new file mode 100644 index 000000000000..5f8c0eda22dc --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "recommendationId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json new file mode 100644 index 000000000000..7b29ee90381f --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "recommendationId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json new file mode 100644 index 000000000000..300b97019ca5 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json index 29981ad7830e..14afa10af525 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json @@ -1,13 +1,14 @@ { "parameters": { "api-version": "2023-05-01-preview", - "scope": "providers/Microsoft.Management/managementGroups/contoso" + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { "200": { "body": { - "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customRecommendations/MycustomRecommendation1", - "name": "MycustomRecommendation1", + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customRecommendations/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", "type": "Microsoft.Security/customRecommendations", "properties": { "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json new file mode 100644 index 000000000000..d6c97ba269b0 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json @@ -0,0 +1,69 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customAssessmentAutomationBody": { + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to..." + } + } + }, + "responses": { + "200": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json new file mode 100644 index 000000000000..b56801e5fdd9 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json @@ -0,0 +1,69 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customAssessmentAutomationBody": { + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to..." + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json new file mode 100644 index 000000000000..5d3168938f0d --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json @@ -0,0 +1,69 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/e5d1b86c-3051-44d5-8802-aa65d45a279b", + "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customAssessmentAutomationBody": { + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to..." + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/e5d1b86c-3051-44d5-8802-aa65d45a279b/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/subscriptions/e5d1b86c-3051-44d5-8802-aa65d45a279b/providers/Microsoft.Security/customAssessmentAutomations/33e7cc6e-a139-4723-a0e5-76993aee0771", + "name": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "type": "Microsoft.Security/customAssessmentAutomations", + "properties": { + "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", + "cloudProviders": [ + "AWS" + ], + "severity": "Medium", + "displayName": "Password Policy", + "description": "organization passwords policy", + "remediationDescription": "Change password policy to...", + "assessmentKey": "d5f442f7-7e77-4bcf-a450-a9c1b9a94eeb", + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} From c3f60cf806644fea1aaa0e5168c579767e9aa79b Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 12:38:22 +0300 Subject: [PATCH 06/31] added security assignments exemples --- .../customRecommedations.json | 9 -- ...mentGroupCustomRecommendation_example.json | 2 +- ...ConnectorCustomRecommendation_example.json | 2 +- ...scriptionCustomRecommendation_example.json | 2 +- ...mentGroupCustomRecommendation_example.json | 2 +- ...ConnectorCustomRecommendation_example.json | 2 +- ...scriptionCustomRecommendation_example.json | 2 +- .../DeleteStandardAssignment.json | 11 +++ .../GetStandardAssignment.json | 38 +++++++++ .../ListStandardAssignments.json | 61 +++++++++++++ .../PutExemptionStandardAssignment.json | 85 +++++++++++++++++++ .../PutStandardAssignment.json | 69 +++++++++++++++ .../standardAssignments.json | 78 +++++------------ 13 files changed, 290 insertions(+), 73 deletions(-) create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json create mode 100644 specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index ea6b27dec898..5d65232d48fe 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -207,15 +207,6 @@ "200": { "description": "OK - security standard was deleted" }, - "202": { - "description": "Accepted - The operation still in progress", - "headers": { - "location": { - "type": "string", - "description": "Location URL for the deletion status" - } - } - }, "204": { "description": "No Content - security standard does not exist" }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json index 5f8c0eda22dc..fde0c7248a2d 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "providers/Microsoft.Management/managementGroups/contoso", - "recommendationId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + "customRecommendationName": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" }, "responses": { "200": {}, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json index 7b29ee90381f..bf6844718cb0 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", - "recommendationId": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + "customRecommendationName": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" }, "responses": { "200": {}, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json index 300b97019ca5..0d19aaedc9af 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", - "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + "customRecommendationName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { "200": {}, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json index 14afa10af525..42c29a293507 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "providers/Microsoft.Management/managementGroups/contoso", - "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + "customRecommendationName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { "200": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json index c0178fe01406..8e8a1d68a24f 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", - "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + "customRecommendationName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { "200": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json index 72973f13fa68..1f6a5ee3bac4 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json @@ -2,7 +2,7 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", - "recommendationId": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + "customRecommendationName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { "200": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json new file mode 100644 index 000000000000..052978eb23f8 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json @@ -0,0 +1,11 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "standardAssignmentName": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" + }, + "responses": { + "200": {}, + "204": {} + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json new file mode 100644 index 000000000000..0b5499bef88c --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json @@ -0,0 +1,38 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "providers/Microsoft.Management/managementGroups/contoso", + "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "responses": { + "200": { + "body": { + "id": "/providers/Microsoft.Management/managementGroups/contoso/providers/Microsoft.Security/securityStandards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "Test exemption", + "description": "Exemption description", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Exempt", + "expiresOn": "2022-05-01T19:50:47.083633Z", + "exemptionData": { + "exemptionCategory": "waiver", + "assignedAssessment": { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + }, + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json new file mode 100644 index 000000000000..9948d294cd66 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json @@ -0,0 +1,61 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector" + }, + "responses": { + "200": { + "body": { + "value": [ + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "ASC Default", + "description": "Set of policies monitored by Azure Security Center for cross cloud", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Audit", + "excludedScopes": [], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + { + "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a9", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "Test exemption", + "description": "Exemption description", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Exempt", + "expiresOn": "2022-05-01T19:50:47.083633Z", + "exemptionData": { + "exemptionCategory": "waiver", + "assignedAssessment": { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + "parentScope": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors" + }, + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + ] + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json new file mode 100644 index 000000000000..bbae734bbd42 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json @@ -0,0 +1,85 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "resourceId": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26/resourceGroups/ANAT_TEST_RG/providers/Microsoft.Compute/virtualMachines/anatTestE2LA", + "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "assignment": { + "properties": { + "displayName": "Test exemption", + "description": "Exemption description", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Exempt", + "expiresOn": "2022-05-01T19:50:47.083633Z", + "exemptionData": { + "exemptionCategory": "waiver", + "assignedAssessment": { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + "parentScope": "/subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + } + } + } + }, + "responses": { + "200": { + "body": { + "id": "/subscriptions/212f9889-769e-45ae-ab43-6da33674bd26/resourceGroups/ANAT_TEST_RG/providers/Microsoft.Compute/virtualMachines/anatTestE2LA/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "Test exemption", + "description": "Exemption description", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Exempt", + "expiresOn": "2022-05-01T19:50:47.083633Z", + "exemptionData": { + "exemptionCategory": "waiver", + "assignedAssessment": { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + }, + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "/subscriptions/212f9889-769e-45ae-ab43-6da33674bd26/resourceGroups/ANAT_TEST_RG/providers/Microsoft.Compute/virtualMachines/anatTestE2LA/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "Test exemption", + "description": "Exemption description", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Exempt", + "expiresOn": "2022-05-01T19:50:47.083633Z", + "exemptionData": { + "exemptionCategory": "waiver", + "assignedAssessment": { + "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" + }, + "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + }, + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json new file mode 100644 index 000000000000..ba6ded161b64 --- /dev/null +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json @@ -0,0 +1,69 @@ +{ + "parameters": { + "api-version": "2023-05-01-preview", + "resourceId": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", + "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "assignment": { + "properties": { + "displayName": "ASC Default", + "description": "Set of policies monitored by Azure Security Center for cross cloud", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Audit", + "excludedScopes": [], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + }, + "responses": { + "200": { + "body": { + "id": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "ASC Default", + "description": "Set of policies monitored by Azure Security Center for cross cloud", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Audit", + "excludedScopes": [], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + }, + "201": { + "body": { + "id": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/standardAssignments/1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "name": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", + "type": "Microsoft.Security/standardAssignments", + "properties": { + "displayName": "ASC Default", + "description": "Set of policies monitored by Azure Security Center for cross cloud", + "assignedStandard": { + "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" + }, + "effect": "Audit", + "excludedScopes": [], + "metadata": { + "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "createdOn": "2022-11-10T08:31:26.7993124Z", + "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "updatedOn": "2022-11-10T08:31:26.7993124Z" + } + } + } + } + } +} diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index e16453836d3c..41fc1be97bc3 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -44,7 +44,7 @@ "description": "This operation deletes a standard assignmnet, given its name and the scope it was created in. The scope of a standard assignmnet is the part of its ID preceding '/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}'.", "x-ms-examples": { "Delete a standard assignmnet": { - "$ref": "./examples/deletestandardAssignment.json" + "$ref": "./examples/StandardAssignments/DeleteStandardAssignment.json" } }, "parameters": [ @@ -60,19 +60,13 @@ ], "responses": { "200": { - "description": "OK - Returns information about the deleted assignment.", - "schema": { - "$ref": "#/definitions/standardAssignment" - } + "description": "OK - standard assignments was deleted" }, "204": { - "description": "No Content - the standard assignmnet doesn't exist." + "description": "No Content - standard assignments does not exist" }, "default": { - "description": "Error response describing why the operation failed.", - "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" - } + "description": "Error response describing why the operation failed" } } }, @@ -84,26 +78,11 @@ "summary": "Creates or updates a standard assignmnet.", "description": " This operation creates or updates a standard assignmnet with the given scope and name. standard assignmnets apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group.", "x-ms-examples": { - "Create or update a standard assignmnet": { - "$ref": "./examples/createstandardAssignment.json" - }, - "Create or update a standard assignmnet with multiple non-compliance messages": { - "$ref": "./examples/createstandardAssignmentNonComplianceMessages.json" - }, - "Create or update a standard assignmnet with a system assigned identity": { - "$ref": "./examples/createstandardAssignmentWithIdentity.json" + "Put an audit standard assignmnet": { + "$ref": "./examples/StandardAssignments/PutStandardAssignment.json" }, - "Create or update a standard assignmnet with a user assigned identity": { - "$ref": "./examples/createstandardAssignmentWithUserAssignedIdentity.json" - }, - "Create or update a standard assignmnet without enforcing policy effect during resource creation or update.": { - "$ref": "./examples/createstandardAssignmentWithoutEnforcement.json" - }, - "Create or update a standard assignmnet with resource selectors": { - "$ref": "./examples/createstandardAssignmentWithResourceSelectors.json" - }, - "Create or update a standard assignmnet with overrides": { - "$ref": "./examples/createstandardAssignmentWithOverrides.json" + "Put exemption standard assignmnet": { + "$ref": "./examples/StandardAssignments/PutExemptionStandardAssignment.json" } }, "parameters": [ @@ -141,19 +120,7 @@ "description": "This operation retrieves a single standard assignmnet, given its name and the scope it was created at.", "x-ms-examples": { "Retrieve a standard assignmnet": { - "$ref": "./examples/getstandardAssignment.json" - }, - "Retrieve a standard assignmnet with a system assigned identity": { - "$ref": "./examples/getstandardAssignmentWithIdentity.json" - }, - "Retrieve a standard assignmnet with a user assigned identity": { - "$ref": "./examples/getstandardAssignmentWithUserAssignedIdentity.json" - }, - "Retrieve a standard assignmnet with resource selectors": { - "$ref": "./examples/getstandardAssignmentWithResourceSelectors.json" - }, - "Retrieve a standard assignmnet with overrides": { - "$ref": "./examples/getstandardAssignmentWithOverrides.json" + "$ref": "./examples/StandardAssignments/GetStandardAssignment.json" } }, "parameters": [ @@ -186,20 +153,14 @@ "/{scope}/providers/Microsoft.Security/standardAssignments": { "get": { "x-ms-examples": { - "List security standards by subscription scope": { - "$ref": "./examples/standardAssignments/ListBySubscriptionstandardAssignments_example.json" - }, - "List security standards by security connector scope": { - "$ref": "./examples/standardAssignments/ListBySecurityConnectorstandardAssignments_example.json" - }, - "List security standards by management group scope": { - "$ref": "./examples/standardAssignments/ListByManagementGroupstandardAssignments_example.json" + "List standard assignments": { + "$ref": "./examples/StandardAssignments/ListStandardAssignments.json" } }, "tags": [ "standardAssignments" ], - "description": "Get a list of all relevant security standards over a scope", + "description": "Get a list of all relevant standard assignmentss over a scope", "operationId": "standardAssignments_List", "parameters": [ { @@ -230,7 +191,7 @@ } }, "definitions": { - "StandardAssignmentList": { + "StandardAssignmentsList": { "type": "object", "description": "Page of a standard assignment list", "properties": { @@ -239,7 +200,7 @@ "readOnly": true, "type": "array", "items": { - "$ref": "#/definitions/StandardsAssignment" + "$ref": "#/definitions/StandardAssignment" } }, "nextLink": { @@ -249,12 +210,12 @@ } } }, - "StandardsAssignment": { + "StandardAssignment": { "type": "object", "description": "Security Assignment on a resource group over a given scope", "properties": { "properties": { - "description": "Properties of a security standard assignment", + "description": "Properties of a standard assignments assignment", "x-ms-client-flatten": true, "$ref": "#/definitions/StandardAssignmentProperties" } @@ -352,7 +313,7 @@ }, "AssignedStandardItem": { "type": "object", - "description": "describe the properties of a of a security standard object reference", + "description": "describe the properties of a of a standard assignments object reference", "properties": { "id": { "description": "full resourceId of the Microsoft.Security/standard object", @@ -377,7 +338,7 @@ "in": "path", "required": true, "type": "string", - "description": "The security standard assignment key - unique key for the standard assignment", + "description": "The standard assignments assignment key - unique key for the standard assignment", "x-ms-parameter-location": "method" }, "StandardsAssignmentBody": { @@ -385,7 +346,7 @@ "in": "body", "required": true, "schema": { - "$ref": "#/definitions/StandardsAssignment" + "$ref": "#/definitions/StandardAssignments" }, "description": "Custom standard assignment over a pre-defined scope", "x-ms-parameter-location": "method" @@ -399,3 +360,4 @@ "x-ms-parameter-location": "method" } } +} From f5d01f97e8563b85167d054a512428d5d6a850b0 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 12:48:10 +0300 Subject: [PATCH 07/31] update readme --- specification/security/resource-manager/readme.md | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/specification/security/resource-manager/readme.md b/specification/security/resource-manager/readme.md index c859bbe66651..418717dc7ac8 100644 --- a/specification/security/resource-manager/readme.md +++ b/specification/security/resource-manager/readme.md @@ -100,7 +100,9 @@ These settings apply only when `--tag=package-preview-2023-03-only` is specified ``` yaml $(tag) == 'package-preview-2023-03-only' input-file: - - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json + - Microsoft.Security/preview/2023-03-01-preview/customRecommedations.json + - Microsoft.Security/preview/2023-03-01-preview/securityStandards.json + - Microsoft.Security/preview/2023-03-01-preview/standardAssignments.json ``` ### Tag: package-preview-2023-01-only @@ -382,6 +384,9 @@ input-file: - Microsoft.Security/preview/2023-02-01-preview/sqlVulnerabilityAssessmentsBaselineRuleOperations.json - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json - Microsoft.Security/preview/2023-01-01-preview/securityOperators.json +- Microsoft.Security/preview/2023-03-01-preview/customRecommedations.json +- Microsoft.Security/preview/2023-03-01-preview/securityStandards.json +- Microsoft.Security/preview/2023-03-01-preview/standardAssignments.json # Needed when there is more than one input file From 143c2ac08517ed8fac6b0df46f028db7c80bfddf Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 12:54:37 +0300 Subject: [PATCH 08/31] fixed names --- .../preview/2023-05-01-preview/customRecommedations.json | 8 ++++---- .../preview/2023-05-01-preview/securityStandards.json | 4 ++-- .../preview/2023-05-01-preview/standardAssignments.json | 4 ++-- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 5d65232d48fe..dddbb437b29a 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -64,7 +64,7 @@ "200": { "description": "OK", "schema": { - "$ref": "#/definitions/CustomRecommendationList" + "$ref": "#/definitions/CustomRecommendationsList" } }, "default": { @@ -112,7 +112,7 @@ "200": { "description": "OK", "schema": { - "$ref": "#/definitions/customRecommendation" + "$ref": "#/definitions/CustomRecommendation" } }, "default": { @@ -158,13 +158,13 @@ "201": { "description": "Created", "schema": { - "$ref": "#/definitions/customRecommendation" + "$ref": "#/definitions/CustomRecommendation" } }, "200": { "description": "OK - Updated", "schema": { - "$ref": "#/definitions/customRecommendation" + "$ref": "#/definitions/CustomRecommendation" } }, "default": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 654ba86d05d0..c173012a7cd9 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -358,12 +358,12 @@ "description": "The Security Standard key - unique key for the standard type", "x-ms-parameter-location": "method" }, - "StandardBody": { + "SecurityStandardBody": { "name": "standard", "in": "body", "required": true, "schema": { - "$ref": "#/definitions/Standard" + "$ref": "#/definitions/SecurityStandard" }, "description": "Custom security standard over a pre-defined scope", "x-ms-parameter-location": "method" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 41fc1be97bc3..841e4e8ef335 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -174,7 +174,7 @@ "200": { "description": "OK", "schema": { - "$ref": "#/definitions/StandardAssignmentList" + "$ref": "#/definitions/StandardAssignmentsList" } }, "default": { @@ -346,7 +346,7 @@ "in": "body", "required": true, "schema": { - "$ref": "#/definitions/StandardAssignments" + "$ref": "#/definitions/StandardAssignment" }, "description": "Custom standard assignment over a pre-defined scope", "x-ms-parameter-location": "method" From 971d5ce61f09262aa293c483e12ca484bc12399f Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 14:04:30 +0300 Subject: [PATCH 09/31] fixed names --- .../preview/2023-05-01-preview/standardAssignments.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 841e4e8ef335..c4dcad077b26 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -100,7 +100,7 @@ "201": { "description": "Created - Returns information about the new standard assignmnet.", "schema": { - "$ref": "#/definitions/standardAssignment" + "$ref": "#/definitions/StandardAssignment" } }, "default": { @@ -138,7 +138,7 @@ "200": { "description": "OK - Returns information about the standard assignmnet.", "schema": { - "$ref": "#/definitions/standardAssignment" + "$ref": "#/definitions/StandardAssignment" } }, "default": { From 832d615634a4688328afbbe86b13b7faa9c57298 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 14:32:28 +0300 Subject: [PATCH 10/31] small fixes --- .../customRecommedations.json | 36 +++++++++---------- .../2023-05-01-preview/securityStandards.json | 8 ++--- .../standardAssignments.json | 8 ++--- 3 files changed, 26 insertions(+), 26 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index dddbb437b29a..6ed28f6e32dc 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -48,7 +48,7 @@ } }, "tags": [ - "customRecommendations" + "CustomRecommendations" ], "description": "Get a list of all relevant custom recommendations over a scope", "operationId": "customRecommendations_List", @@ -82,20 +82,20 @@ "/{scope}/providers/Microsoft.Security/customRecommendations/{customRecommendationName}": { "get": { "x-ms-examples": { - "Get a security standard over subscription scope": { + "Get a custom recommendation over subscription scope": { "$ref": "./examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json" }, - "Get a security standard over security connector scope": { + "Get a custom recommendation over security connector scope": { "$ref": "./examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json" }, - "Get a security standard over management group scope": { + "Get a custom recommendation over management group scope": { "$ref": "./examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json" } }, "tags": [ - "customRecommendations" + "CustomRecommendations" ], - "description": "Get a specific security standard for the requested scope by customRecommendationName", + "description": "Get a specific custom recommendation for the requested scope by customRecommendationName", "operationId": "customRecommendations_Get", "parameters": [ { @@ -125,20 +125,20 @@ }, "put": { "x-ms-examples": { - "Create or update security standard over subscription scope": { + "Create or update custom recommendation over subscription scope": { "$ref": "./examples/customRecommendations/PutBySubscriptionCustomRecommendation_example.json" }, - "Create or update security standard over security connector scope": { + "Create or update custom recommendation over security connector scope": { "$ref": "./examples/customRecommendations/PutBySecurityConnectorCustomRecommendation_example.json" }, - "Create or update security standard over management group scope": { + "Create or update custom recommendation over management group scope": { "$ref": "./examples/customRecommendations/PutByManagementGroupCustomRecommendation_example.json" } }, "tags": [ - "customRecommendations" + "CustomRecommendations" ], - "description": "Creates or updates a security standard over a given scope", + "description": "Creates or updates a custom recommendation over a given scope", "operationId": "customRecommendations_CreateOrUpdate", "parameters": [ { @@ -177,20 +177,20 @@ }, "delete": { "x-ms-examples": { - "Delete a security standard over subscription scope": { + "Delete a custom recommendation over subscription scope": { "$ref": "./examples/customRecommendations/DeleteBySubscriptionCustomRecommendation_example.json" }, - "Delete a security standard over security connector scope": { + "Delete a custom recommendation over security connector scope": { "$ref": "./examples/customRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json" }, - "Delete a security standard over management group scope": { + "Delete a custom recommendation over management group scope": { "$ref": "./examples/customRecommendations/DeleteByManagementGroupCustomRecommendation_example.json" } }, "tags": [ - "customRecommendations" + "CustomRecommendations" ], - "description": "Delete a security standard over a given scope", + "description": "Delete a custom recommendation over a given scope", "operationId": "customRecommendations_Delete", "parameters": [ { @@ -205,10 +205,10 @@ ], "responses": { "200": { - "description": "OK - security standard was deleted" + "description": "OK - custom recommendation was deleted" }, "204": { - "description": "No Content - security standard does not exist" + "description": "No Content - custom recommendation does not exist" }, "default": { "description": "Error response describing why the operation failed" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index c173012a7cd9..5e5cb15457c3 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -48,7 +48,7 @@ } }, "tags": [ - "securityStandards" + "SecurityStandards" ], "description": "Get a list of all relevant security standards over a scope", "operationId": "securityStandards_List", @@ -93,7 +93,7 @@ } }, "tags": [ - "securityStandards" + "SecurityStandards" ], "description": "Get a specific security standard for the requested scope by standardId", "operationId": "securityStandards_Get", @@ -136,7 +136,7 @@ } }, "tags": [ - "securityStandards" + "SecurityStandards" ], "description": "Creates or updates a security standard over a given scope", "operationId": "securityStandards_CreateOrUpdate", @@ -188,7 +188,7 @@ } }, "tags": [ - "securityStandards" + "SecurityStandards" ], "description": "Delete a security standard over a given scope", "operationId": "securityStandards_Delete", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index c4dcad077b26..630a72128e75 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -37,7 +37,7 @@ "/{resourceId}/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}": { "delete": { "tags": [ - "standardAssignments" + "StandardAssignments" ], "operationId": "standardAssignments_Delete", "summary": "Deletes a standard assignmnet.", @@ -72,7 +72,7 @@ }, "put": { "tags": [ - "standardAssignments" + "StandardAssignments" ], "operationId": "standardAssignments_Create", "summary": "Creates or updates a standard assignmnet.", @@ -113,7 +113,7 @@ }, "get": { "tags": [ - "standardAssignments" + "StandardAssignments" ], "operationId": "standardAssignments_Get", "summary": "Retrieves a standard assignmnet.", @@ -158,7 +158,7 @@ } }, "tags": [ - "standardAssignments" + "StandardAssignments" ], "description": "Get a list of all relevant standard assignmentss over a scope", "operationId": "standardAssignments_List", From ab352db83760c36443b4558af8a9ffa0398ba31d Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 15:10:50 +0300 Subject: [PATCH 11/31] small fixes --- .../2023-05-01-preview/standardAssignments.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 630a72128e75..1f96b6706368 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -39,7 +39,7 @@ "tags": [ "StandardAssignments" ], - "operationId": "standardAssignments_Delete", + "operationId": "StandardAssignments_Delete", "summary": "Deletes a standard assignmnet.", "description": "This operation deletes a standard assignmnet, given its name and the scope it was created in. The scope of a standard assignmnet is the part of its ID preceding '/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}'.", "x-ms-examples": { @@ -74,7 +74,7 @@ "tags": [ "StandardAssignments" ], - "operationId": "standardAssignments_Create", + "operationId": "StandardAssignments_Create", "summary": "Creates or updates a standard assignmnet.", "description": " This operation creates or updates a standard assignmnet with the given scope and name. standard assignmnets apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group.", "x-ms-examples": { @@ -115,7 +115,7 @@ "tags": [ "StandardAssignments" ], - "operationId": "standardAssignments_Get", + "operationId": "StandardAssignments_Get", "summary": "Retrieves a standard assignmnet.", "description": "This operation retrieves a single standard assignmnet, given its name and the scope it was created at.", "x-ms-examples": { @@ -160,8 +160,8 @@ "tags": [ "StandardAssignments" ], - "description": "Get a list of all relevant standard assignmentss over a scope", - "operationId": "standardAssignments_List", + "description": "Get a list of all relevant standard assignments over a scope", + "operationId": "StandardAssignments_List", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" From 050c34e121fd2b4688dad21970736242fd02c617 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 16:08:50 +0300 Subject: [PATCH 12/31] small fixes --- .../preview/2023-05-01-preview/customRecommedations.json | 8 ++++---- .../preview/2023-05-01-preview/securityStandards.json | 8 ++++---- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 6ed28f6e32dc..8b9b89e0a73a 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -51,7 +51,7 @@ "CustomRecommendations" ], "description": "Get a list of all relevant custom recommendations over a scope", - "operationId": "customRecommendations_List", + "operationId": "CustomRecommendations_List", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -96,7 +96,7 @@ "CustomRecommendations" ], "description": "Get a specific custom recommendation for the requested scope by customRecommendationName", - "operationId": "customRecommendations_Get", + "operationId": "CustomRecommendations_Get", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -139,7 +139,7 @@ "CustomRecommendations" ], "description": "Creates or updates a custom recommendation over a given scope", - "operationId": "customRecommendations_CreateOrUpdate", + "operationId": "CustomRecommendations_CreateOrUpdate", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -191,7 +191,7 @@ "CustomRecommendations" ], "description": "Delete a custom recommendation over a given scope", - "operationId": "customRecommendations_Delete", + "operationId": "CustomRecommendations_Delete", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 5e5cb15457c3..3f212da20f9c 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -51,7 +51,7 @@ "SecurityStandards" ], "description": "Get a list of all relevant security standards over a scope", - "operationId": "securityStandards_List", + "operationId": "SecurityStandards_List", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -96,7 +96,7 @@ "SecurityStandards" ], "description": "Get a specific security standard for the requested scope by standardId", - "operationId": "securityStandards_Get", + "operationId": "SecurityStandards_Get", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -139,7 +139,7 @@ "SecurityStandards" ], "description": "Creates or updates a security standard over a given scope", - "operationId": "securityStandards_CreateOrUpdate", + "operationId": "SecurityStandards_CreateOrUpdate", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -191,7 +191,7 @@ "SecurityStandards" ], "description": "Delete a security standard over a given scope", - "operationId": "securityStandards_Delete", + "operationId": "SecurityStandards_Delete", "parameters": [ { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" From 6275e49641470a36942f5b0f9e0013673892332d Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 16:51:54 +0300 Subject: [PATCH 13/31] fixed readme --- specification/security/resource-manager/readme.md | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/specification/security/resource-manager/readme.md b/specification/security/resource-manager/readme.md index 418717dc7ac8..6ce8a84d2eee 100644 --- a/specification/security/resource-manager/readme.md +++ b/specification/security/resource-manager/readme.md @@ -92,7 +92,9 @@ These settings apply only when `--tag=package-preview-2023-05` is specified on t ```yaml $(tag) == 'package-preview-2023-05' input-file: - - Microsoft.Security/preview/2023-05-01-preview/securityConnectors.json + - Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json + - Microsoft.Security/preview/2023-05-01-preview/securityStandards.json + - Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json ``` ### Tag: package-preview-2023-03-only @@ -100,9 +102,7 @@ These settings apply only when `--tag=package-preview-2023-03-only` is specified ``` yaml $(tag) == 'package-preview-2023-03-only' input-file: - - Microsoft.Security/preview/2023-03-01-preview/customRecommedations.json - - Microsoft.Security/preview/2023-03-01-preview/securityStandards.json - - Microsoft.Security/preview/2023-03-01-preview/standardAssignments.json + - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json ``` ### Tag: package-preview-2023-01-only @@ -384,9 +384,9 @@ input-file: - Microsoft.Security/preview/2023-02-01-preview/sqlVulnerabilityAssessmentsBaselineRuleOperations.json - Microsoft.Security/preview/2023-03-01-preview/securityConnectors.json - Microsoft.Security/preview/2023-01-01-preview/securityOperators.json -- Microsoft.Security/preview/2023-03-01-preview/customRecommedations.json -- Microsoft.Security/preview/2023-03-01-preview/securityStandards.json -- Microsoft.Security/preview/2023-03-01-preview/standardAssignments.json +- Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +- Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +- Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json # Needed when there is more than one input file From 0a3d0676a9ce53e3bb6a042047ba062a02f1608a Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 17:01:49 +0300 Subject: [PATCH 14/31] avocado fixes --- .../2023-05-01-preview/customRecommedations.json | 12 ++++++------ .../StandardAssignments/PutStandardAssignment.json | 1 + .../2023-05-01-preview/securityStandards.json | 10 +++++----- 3 files changed, 12 insertions(+), 11 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 8b9b89e0a73a..cd6609d34d60 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -126,13 +126,13 @@ "put": { "x-ms-examples": { "Create or update custom recommendation over subscription scope": { - "$ref": "./examples/customRecommendations/PutBySubscriptionCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json" }, "Create or update custom recommendation over security connector scope": { - "$ref": "./examples/customRecommendations/PutBySecurityConnectorCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json" }, "Create or update custom recommendation over management group scope": { - "$ref": "./examples/customRecommendations/PutByManagementGroupCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json" } }, "tags": [ @@ -178,13 +178,13 @@ "delete": { "x-ms-examples": { "Delete a custom recommendation over subscription scope": { - "$ref": "./examples/customRecommendations/DeleteBySubscriptionCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/DeleteBySubscriptionCustomRecommendation_example.json" }, "Delete a custom recommendation over security connector scope": { - "$ref": "./examples/customRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/DeleteBySecurityConnectorCustomRecommendation_example.json" }, "Delete a custom recommendation over management group scope": { - "$ref": "./examples/customRecommendations/DeleteByManagementGroupCustomRecommendation_example.json" + "$ref": "./examples/CustomRecommendations/DeleteByManagementGroupCustomRecommendation_example.json" } }, "tags": [ diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json index ba6ded161b64..d90964f9598e 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json @@ -19,6 +19,7 @@ "updatedOn": "2022-11-10T08:31:26.7993124Z" } } + } }, "responses": { "200": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 3f212da20f9c..204763086482 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -86,10 +86,10 @@ "$ref": "./examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json" }, "Get a security standard over security connector scope": { - "$ref": "./examples/securityStandards/GetBySecurityConnectorSecurityStandard_example.json" + "$ref": "./examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json" }, "Get a security standard over management group scope": { - "$ref": "./examples/securityStandards/GetByManagementGroupSecurityStandard_example.json" + "$ref": "./examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json" } }, "tags": [ @@ -178,13 +178,13 @@ "delete": { "x-ms-examples": { "Delete a security standard over subscription scope": { - "$ref": "./examples/securityStandards/DeleteBySubscriptionSecurityStandard_example.json" + "$ref": "./examples/SecurityStandards/DeleteBySubscriptionSecurityStandard_example.json" }, "Delete a security standard over security connector scope": { - "$ref": "./examples/securityStandards/DeleteBySecurityConnectorSecurityStandard_example.json" + "$ref": "./examples/SecurityStandards/DeleteBySecurityConnectorSecurityStandard_example.json" }, "Delete a security standard over management group scope": { - "$ref": "./examples/securityStandards/DeleteByManagementGroupSecurityStandard_example.json" + "$ref": "./examples/SecurityStandards/DeleteByManagementGroupSecurityStandard_example.json" } }, "tags": [ From efee89c87a2867b6756e7e03593756295691a6b7 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 17:14:29 +0300 Subject: [PATCH 15/31] spell check fixes --- .../2023-05-01-preview/securityStandards.json | 2 +- .../standardAssignments.json | 24 +++++++++---------- 2 files changed, 13 insertions(+), 13 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 204763086482..a5d1f693a58f 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -289,7 +289,7 @@ } }, "policySetDefinitionId": { - "description": "The policy set defintion id associated with the standard.", + "description": "The policy set definition id associated with the standard.", "type": "string" }, "metadata": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 1f96b6706368..bcf11f67d990 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -40,10 +40,10 @@ "StandardAssignments" ], "operationId": "StandardAssignments_Delete", - "summary": "Deletes a standard assignmnet.", - "description": "This operation deletes a standard assignmnet, given its name and the scope it was created in. The scope of a standard assignmnet is the part of its ID preceding '/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}'.", + "summary": "Deletes a standard assignment.", + "description": "This operation deletes a standard assignment, given its name and the scope it was created in. The scope of a standard assignment is the part of its ID preceding '/providers/Microsoft.Security/standardAssignments/{standardAssignmentName}'.", "x-ms-examples": { - "Delete a standard assignmnet": { + "Delete a standard assignment": { "$ref": "./examples/StandardAssignments/DeleteStandardAssignment.json" } }, @@ -75,13 +75,13 @@ "StandardAssignments" ], "operationId": "StandardAssignments_Create", - "summary": "Creates or updates a standard assignmnet.", - "description": " This operation creates or updates a standard assignmnet with the given scope and name. standard assignmnets apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group.", + "summary": "Creates or updates a standard assignment.", + "description": " This operation creates or updates a standard assignment with the given scope and name. standard assignments apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group.", "x-ms-examples": { - "Put an audit standard assignmnet": { + "Put an audit standard assignment": { "$ref": "./examples/StandardAssignments/PutStandardAssignment.json" }, - "Put exemption standard assignmnet": { + "Put exemption standard assignment": { "$ref": "./examples/StandardAssignments/PutExemptionStandardAssignment.json" } }, @@ -98,7 +98,7 @@ ], "responses": { "201": { - "description": "Created - Returns information about the new standard assignmnet.", + "description": "Created - Returns information about the new standard assignment.", "schema": { "$ref": "#/definitions/StandardAssignment" } @@ -116,10 +116,10 @@ "StandardAssignments" ], "operationId": "StandardAssignments_Get", - "summary": "Retrieves a standard assignmnet.", - "description": "This operation retrieves a single standard assignmnet, given its name and the scope it was created at.", + "summary": "Retrieves a standard assignment.", + "description": "This operation retrieves a single standard assignment, given its name and the scope it was created at.", "x-ms-examples": { - "Retrieve a standard assignmnet": { + "Retrieve a standard assignment": { "$ref": "./examples/StandardAssignments/GetStandardAssignment.json" } }, @@ -136,7 +136,7 @@ ], "responses": { "200": { - "description": "OK - Returns information about the standard assignmnet.", + "description": "OK - Returns information about the standard assignment.", "schema": { "$ref": "#/definitions/StandardAssignment" } From 91f03288b482e35aca5b681c0ce587f6b40e6b57 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 17:21:46 +0300 Subject: [PATCH 16/31] ModelValidation fixes --- .../PutByManagementGroupCustomRecommendation_example.json | 4 ++-- .../PutBySecurityConnectorCustomRecommendation_example.json | 4 ++-- .../PutBySubscriptionCustomRecommendation_example.json | 4 ++-- .../ListBySubscriptionSecurityStandards_example.json | 2 -- .../PutBySecurityConnectorSecurityStandard_example.json | 1 - .../StandardAssignments/DeleteStandardAssignment.json | 2 +- .../preview/2023-05-01-preview/standardAssignments.json | 6 ++++++ 7 files changed, 13 insertions(+), 10 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json index d6c97ba269b0..a52f0b59c7f8 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json @@ -2,8 +2,8 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "providers/Microsoft.Management/managementGroups/contoso", - "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", - "customAssessmentAutomationBody": { + "customRecommendationName": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customRecommendationBody": { "properties": { "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", "cloudProviders": [ diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json index b56801e5fdd9..6cd4ee16387f 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json @@ -2,8 +2,8 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", - "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", - "customAssessmentAutomationBody": { + "customRecommendationName": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customRecommendationBody": { "properties": { "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", "cloudProviders": [ diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json index 5d3168938f0d..cebc57d8a27b 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json @@ -2,8 +2,8 @@ "parameters": { "api-version": "2023-05-01-preview", "scope": "subscriptions/e5d1b86c-3051-44d5-8802-aa65d45a279b", - "recommendationId": "33e7cc6e-a139-4723-a0e5-76993aee0771", - "customAssessmentAutomationBody": { + "customRecommendationName": "33e7cc6e-a139-4723-a0e5-76993aee0771", + "customRecommendationBody": { "properties": { "query": "RawEntityMetadata | where Environment == 'GCP' and Identifiers.Type == 'compute.firewalls' | extend IslogConfigEnabled = tobool(Record.logConfig.enable) | extend HealthStatus = iff(IslogConfigEnabled, 'HEALTHY', 'UNHEALTHY')", "cloudProviders": [ diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json index d2262fb28971..df6428719546 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json @@ -39,8 +39,6 @@ "id": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Security/securityStandards/155afdf9-d239-4a5c-847f-89da613e7143", "name": "155afdf9-d239-4a5c-847f-89da613e7143", "type": "Microsoft.Security/securityStandards", - "location": "East US", - "etag": "etag value", "properties": { "displayName": "Cross cloud standard 2", "standardType": "Custom", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json index 5740a15d7239..1972eba19df7 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json @@ -59,7 +59,6 @@ "properties": { "displayName": "Azure Test Security Standard 1", "description": "description of Azure Test Security Standard 1", - "category": "SecurityCenter", "assessments": [ { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json index 052978eb23f8..90eba90f18a4 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/DeleteStandardAssignment.json @@ -1,7 +1,7 @@ { "parameters": { "api-version": "2023-05-01-preview", - "scope": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", + "resourceId": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector", "standardAssignmentName": "ad9a8e26-29d9-4829-bb30-e597a58cdbb8" }, "responses": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index bcf11f67d990..6d079d04644e 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -103,6 +103,12 @@ "$ref": "#/definitions/StandardAssignment" } }, + "200": { + "description": "OK - Updated", + "schema": { + "$ref": "#/definitions/StandardAssignment" + } + }, "default": { "description": "Error response describing why the operation failed.", "schema": { From 50ddb9e3d8691603a7ad6b1ca057627e459abc40 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 22 May 2023 17:58:43 +0300 Subject: [PATCH 17/31] validation fixes --- .../customRecommedations.json | 6 +++++- .../GetStandardAssignment.json | 2 +- .../2023-05-01-preview/securityStandards.json | 9 +++++++-- .../standardAssignments.json | 20 +++++++++++-------- 4 files changed, 25 insertions(+), 12 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index cd6609d34d60..2ca2fd8c33e3 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -211,7 +211,10 @@ "description": "No Content - custom recommendation does not exist" }, "default": { - "description": "Error response describing why the operation failed" + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } } }, "x-ms-long-running-operation": true, @@ -355,6 +358,7 @@ "in": "path", "required": true, "type": "string", + "pattern": "[{]?[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}[}]?$", "description": "Name of the Custom Recommendation.", "x-ms-parameter-location": "method" }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json index 0b5499bef88c..1dfea717eefb 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json @@ -1,7 +1,7 @@ { "parameters": { "api-version": "2023-05-01-preview", - "scope": "providers/Microsoft.Management/managementGroups/contoso", + "resourceId": "providers/Microsoft.Management/managementGroups/contoso", "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "responses": { diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index a5d1f693a58f..a24f59187296 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -211,7 +211,10 @@ "description": "No Content - security standard does not exist" }, "default": { - "description": "Error response describing why the operation failed" + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } } }, "x-ms-long-running-operation": true, @@ -279,7 +282,8 @@ "type": "array", "items": { "$ref": "#/definitions/StandardComponentProperties" - } + }, + "x-ms-identifiers": [] }, "cloudProviders": { "description": "List of all standard supported clouds.", @@ -355,6 +359,7 @@ "in": "path", "required": true, "type": "string", + "pattern": "[{]?[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}[}]?$", "description": "The Security Standard key - unique key for the standard type", "x-ms-parameter-location": "method" }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 6d079d04644e..4f6e3de8b0bf 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -49,13 +49,13 @@ }, "parameters": [ { - "$ref": "#/parameters/StandardAssignmentName" + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" } ], "responses": { @@ -66,7 +66,10 @@ "description": "No Content - standard assignments does not exist" }, "default": { - "description": "Error response describing why the operation failed" + "description": "Error response that describes why the operation failed.", + "schema": { + "$ref": "../../../common/v1/types.json#/definitions/CloudError" + } } } }, @@ -87,13 +90,13 @@ }, "parameters": [ { - "$ref": "#/parameters/StandardAssignmentName" + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" } ], "responses": { @@ -279,7 +282,7 @@ "$ref": "#/definitions/AssignedAssessmentItem" }, "parentScope": { - "description": "the parent scope of the assingment, can be subscription or connector.", + "description": "the parent scope of the assignment, can be subscription or connector.", "type": "string" } } @@ -344,6 +347,7 @@ "in": "path", "required": true, "type": "string", + "pattern": "[{]?[0-9a-fA-F]{8}-(?:[0-9a-fA-F]{4}-){3}[0-9a-fA-F]{12}[}]?$", "description": "The standard assignments assignment key - unique key for the standard assignment", "x-ms-parameter-location": "method" }, From c7f5d624ffd06bd6ea9b31c98dbccbb683b7a316 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 29 May 2023 15:01:03 +0300 Subject: [PATCH 18/31] addressed comments --- .../customRecommedations.json | 10 +++--- .../2023-05-01-preview/securityStandards.json | 31 ++++++++++++------- .../standardAssignments.json | 27 ++++++++++++++-- 3 files changed, 49 insertions(+), 19 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 2ca2fd8c33e3..7b38a604c4be 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -271,7 +271,7 @@ "description": "List of all standard supported clouds.", "type": "array", "items": { - "$ref": "#/definitions/RecommendationSupportedClouds" + "$ref": "#/definitions/RecommendationSupportedCloud" } }, "severity": { @@ -325,12 +325,12 @@ "format": "date-time", "readOnly": true }, - "updatedBy": { + "lastUpdatedBy": { "description": "recommendation last updated by object id (GUID)", "type": "string", "readOnly": true }, - "updatedOn": { + "lastUpdatedOn": { "description": "recommendation last update date", "type": "string", "format": "date-time", @@ -338,7 +338,7 @@ } } }, - "RecommendationSupportedClouds": { + "RecommendationSupportedCloud": { "type": "string", "description": "The cloud that the recommendation is supported on.", "enum": [ @@ -348,7 +348,7 @@ ], "x-ms-enum": { "name": "RecommendationSupportedClouds", - "modelAsString": false + "modelAsString": true } } }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index a24f59187296..8750e991f16e 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -271,7 +271,15 @@ "standardType": { "description": "standard type (Custom or BuiltIn only currently)", "type": "string", - "readOnly": true + "readOnly": true, + "enum": [ + "Custom", + "BuiltIn" + ], + "x-ms-enum": { + "name": "standardType", + "modelAsString": true + } }, "description": { "description": "description of the standard", @@ -281,7 +289,7 @@ "description": "List of assessment keys to apply to standard scope.", "type": "array", "items": { - "$ref": "#/definitions/StandardComponentProperties" + "$ref": "#/definitions/AssessmentProperties" }, "x-ms-identifiers": [] }, @@ -289,7 +297,7 @@ "description": "List of all standard supported clouds.", "type": "array", "items": { - "$ref": "#/definitions/StandardSupportedClouds" + "$ref": "#/definitions/StandardSupportedCloud" } }, "policySetDefinitionId": { @@ -297,7 +305,8 @@ "type": "string" }, "metadata": { - "$ref": "#/definitions/StandardMetadata" + "$ref": "#/definitions/StandardMetadata", + "description": "The security standard metadata." } } }, @@ -316,12 +325,12 @@ "format": "date-time", "readOnly": true }, - "updatedBy": { + "lastUpdatedBy": { "description": "standard last updated by object id (GUID)", "type": "string", "readOnly": true }, - "updatedOn": { + "lastUpdatedOn": { "description": "standard last update date", "type": "string", "format": "date-time", @@ -329,9 +338,9 @@ } } }, - "StandardComponentProperties": { + "AssessmentProperties": { "type": "object", - "description": "Describes properties of an component as related to the standard", + "description": "Describes properties of an assessment as related to the standard", "properties": { "assessmentKey": { "description": "the assessment key", @@ -339,7 +348,7 @@ } } }, - "StandardSupportedClouds": { + "StandardSupportedCloud": { "type": "string", "description": "The cloud that the standard is supported on.", "enum": [ @@ -348,8 +357,8 @@ "GCP" ], "x-ms-enum": { - "name": "StandardSupportedClouds", - "modelAsString": false + "name": "StandardSupportedCloud", + "modelAsString": true } } }, diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 4f6e3de8b0bf..ed37dde387da 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -97,6 +97,9 @@ }, { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + }, + { + "$ref": "#/parameters/StandardsAssignmentBody" } ], "responses": { @@ -253,7 +256,15 @@ }, "effect": { "description": "expected effect of this assignment (Audit/Exempt)", - "type": "string" + "type": "string", + "enum": [ + "Audit", + "Exempt" + ], + "x-ms-enum": { + "name": "effect", + "modelAsString": true + } }, "excludedScopes": { "type": "array", @@ -275,7 +286,15 @@ "properties": { "exemptionCategory": { "description": "Exemption category of this assignment", - "type": "string" + "type": "string", + "enum": [ + "Waiver", + "Mitigated" + ], + "x-ms-enum": { + "name": "exemptionCategory", + "modelAsString": true + } }, "assignedAssessment": { "description": "Component item with key as applied to this standard assignment over the given scope", @@ -288,7 +307,9 @@ } }, "metadata": { - "$ref": "#/definitions/StandardAssignmentMetadata" + "$ref": "#/definitions/StandardAssignmentMetadata", + "description": "The standard assignment metadata." + } } }, From b6a1384ef2a04574f9756a4889d1ddfc8a60e712 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 29 May 2023 16:05:50 +0300 Subject: [PATCH 19/31] update examples --- ...yManagementGroupCustomRecommendation_example.json | 4 ++-- ...ecurityConnectorCustomRecommendation_example.json | 4 ++-- ...etBySubscriptionCustomRecommendation_example.json | 4 ++-- ...ManagementGroupCustomRecommendations_example.json | 8 ++++---- ...curityConnectorCustomRecommendations_example.json | 8 ++++---- ...tBySubscriptionCustomRecommendations_example.json | 8 ++++---- ...yManagementGroupCustomRecommendation_example.json | 8 ++++---- ...ecurityConnectorCustomRecommendation_example.json | 8 ++++---- ...utBySubscriptionCustomRecommendation_example.json | 8 ++++---- ...GetByManagementGroupSecurityStandard_example.json | 4 ++-- ...tBySecurityConnectorSecurityStandard_example.json | 4 ++-- .../GetBySubscriptionSecurityStandard_example.json | 4 ++-- ...stByManagementGroupSecurityStandards_example.json | 8 ++++---- ...BySecurityConnectorSecurityStandards_example.json | 8 ++++---- .../ListBySubscriptionSecurityStandards_example.json | 8 ++++---- ...PutByManagementGroupSecurityStandard_example.json | 8 ++++---- ...tBySecurityConnectorSecurityStandard_example.json | 8 ++++---- .../PutBySubscriptionSecurityStandard_example.json | 8 ++++---- .../StandardAssignments/GetStandardAssignment.json | 4 ++-- .../StandardAssignments/ListStandardAssignments.json | 8 ++++---- .../PutExemptionStandardAssignment.json | 8 ++++---- .../StandardAssignments/PutStandardAssignment.json | 12 ++++++------ .../2023-05-01-preview/standardAssignments.json | 4 ++-- 23 files changed, 78 insertions(+), 78 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json index 42c29a293507..eb4ec44598c3 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetByManagementGroupCustomRecommendation_example.json @@ -23,8 +23,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json index 8e8a1d68a24f..9939234309a8 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySecurityConnectorCustomRecommendation_example.json @@ -23,8 +23,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json index 1f6a5ee3bac4..558a97b8d3f5 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/GetBySubscriptionCustomRecommendation_example.json @@ -23,8 +23,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json index c3ccc1105222..0e6902ca2403 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListByManagementGroupCustomRecommendations_example.json @@ -24,8 +24,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -46,8 +46,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json index ca318c402120..5ec36036969a 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySecurityConnectorCustomRecommendations_example.json @@ -24,8 +24,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -46,8 +46,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json index 4a5ce6233f83..40450f54a819 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/ListBySubscriptionCustomRecommendations_example.json @@ -24,8 +24,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -46,8 +46,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json index a52f0b59c7f8..1d04fea8a8ad 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutByManagementGroupCustomRecommendation_example.json @@ -35,8 +35,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -59,8 +59,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json index 6cd4ee16387f..1e91c1d49a23 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySecurityConnectorCustomRecommendation_example.json @@ -35,8 +35,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -59,8 +59,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json index cebc57d8a27b..051af93c9ffb 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/CustomRecommendations/PutBySubscriptionCustomRecommendation_example.json @@ -35,8 +35,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -59,8 +59,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json index b1dce16c6c0a..5ab664c2a932 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetByManagementGroupSecurityStandard_example.json @@ -29,8 +29,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json index 9426f70d95f0..65e9bdbcb928 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySecurityConnectorSecurityStandard_example.json @@ -29,8 +29,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json index 9d9ddcfd846f..515c4a54eb1c 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/GetBySubscriptionSecurityStandard_example.json @@ -29,8 +29,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json index cbc6886330e4..dfb89392f305 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListByManagementGroupSecurityStandards_example.json @@ -30,8 +30,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -58,8 +58,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json index 17dc437d4338..08aaccb0bd17 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySecurityConnectorSecurityStandards_example.json @@ -30,8 +30,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -58,8 +58,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json index df6428719546..02ad0f29bc8d 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/ListBySubscriptionSecurityStandards_example.json @@ -30,8 +30,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -58,8 +58,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json index 91ebf6d77e0e..222a6fef5e66 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutByManagementGroupSecurityStandard_example.json @@ -47,8 +47,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -77,8 +77,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json index 1972eba19df7..61aa06bcea5f 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySecurityConnectorSecurityStandard_example.json @@ -45,8 +45,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -73,8 +73,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json index 6646e113df05..a683240afb60 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/SecurityStandards/PutBySubscriptionSecurityStandard_example.json @@ -47,8 +47,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -77,8 +77,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json index 1dfea717eefb..3dcb85006a0e 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json @@ -28,8 +28,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json index 9948d294cd66..3f7dc9da32ac 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json @@ -22,8 +22,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } }, @@ -49,8 +49,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json index bbae734bbd42..7637970b28a9 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json @@ -46,8 +46,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -75,8 +75,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json index d90964f9598e..468232c50337 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json @@ -15,8 +15,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -38,8 +38,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } @@ -60,8 +60,8 @@ "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", "createdOn": "2022-11-10T08:31:26.7993124Z", - "updatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "updatedOn": "2022-11-10T08:31:26.7993124Z" + "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", + "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index ed37dde387da..c1d8bc50b597 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -328,12 +328,12 @@ "format": "date-time", "readOnly": true }, - "updatedBy": { + "lastUpdatedBy": { "description": "standard assignment last updated by object id (GUID)", "type": "string", "readOnly": true }, - "updatedOn": { + "lastUpdatedOn": { "description": "standard assignment last update date", "type": "string", "format": "date-time", From 40dae32414c5d7d4b58065f27944b6f7d0984b85 Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 29 May 2023 16:18:09 +0300 Subject: [PATCH 20/31] update examples --- .../StandardAssignments/PutExemptionStandardAssignment.json | 2 +- .../examples/StandardAssignments/PutStandardAssignment.json | 2 +- .../preview/2023-05-01-preview/standardAssignments.json | 4 ++-- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json index 7637970b28a9..3901977b0e0e 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json @@ -3,7 +3,7 @@ "api-version": "2023-05-01-preview", "resourceId": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26/resourceGroups/ANAT_TEST_RG/providers/Microsoft.Compute/virtualMachines/anatTestE2LA", "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", - "assignment": { + "standardAssignment": { "properties": { "displayName": "Test exemption", "description": "Exemption description", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json index 468232c50337..49ffe9c2167d 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json @@ -3,7 +3,7 @@ "api-version": "2023-05-01-preview", "resourceId": "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23", "standardAssignmentName": "1f3afdf9-d0c9-4c3d-847f-89da613e70a8", - "assignment": { + "standardAssignment": { "properties": { "displayName": "ASC Default", "description": "Set of policies monitored by Azure Security Center for cross cloud", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index c1d8bc50b597..58e2dbc30d96 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -288,8 +288,8 @@ "description": "Exemption category of this assignment", "type": "string", "enum": [ - "Waiver", - "Mitigated" + "waiver", + "mitigated" ], "x-ms-enum": { "name": "exemptionCategory", From ede6cab6fddc5cfcefa2139aab0726852feaebea Mon Sep 17 00:00:00 2001 From: talcohen Date: Mon, 29 May 2023 16:46:14 +0300 Subject: [PATCH 21/31] update examples --- .../StandardAssignments/PutStandardAssignment.json | 8 +------- 1 file changed, 1 insertion(+), 7 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json index 49ffe9c2167d..023a97e52ed8 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutStandardAssignment.json @@ -11,13 +11,7 @@ "id": "/providers/Microsoft.Security/Standards/1f3afdf9-d0c9-4c3d-847f-89da613e70a8" }, "effect": "Audit", - "excludedScopes": [], - "metadata": { - "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "createdOn": "2022-11-10T08:31:26.7993124Z", - "lastUpdatedBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", - "lastUpdatedOn": "2022-11-10T08:31:26.7993124Z" - } + "excludedScopes": [] } } }, From 6979305a4a5cb1883153b1d44297013f853eb9ed Mon Sep 17 00:00:00 2001 From: talcohen Date: Tue, 30 May 2023 09:56:08 +0300 Subject: [PATCH 22/31] prettier --- .../preview/2023-05-01-preview/standardAssignments.json | 1 - 1 file changed, 1 deletion(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 58e2dbc30d96..4255073d1188 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -309,7 +309,6 @@ "metadata": { "$ref": "#/definitions/StandardAssignmentMetadata", "description": "The standard assignment metadata." - } } }, From c89cc00acc6b172bda9497671bc330b24f348df9 Mon Sep 17 00:00:00 2001 From: talcohen Date: Wed, 31 May 2023 19:32:53 +0300 Subject: [PATCH 23/31] remove parent scope --- .../StandardAssignments/GetStandardAssignment.json | 3 +-- .../StandardAssignments/ListStandardAssignments.json | 3 +-- .../PutExemptionStandardAssignment.json | 9 +++------ .../preview/2023-05-01-preview/standardAssignments.json | 4 ---- 4 files changed, 5 insertions(+), 14 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json index 3dcb85006a0e..38aece45c76f 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/GetStandardAssignment.json @@ -22,8 +22,7 @@ "exemptionCategory": "waiver", "assignedAssessment": { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" - }, - "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + } }, "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json index 3f7dc9da32ac..20befa520b71 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/ListStandardAssignments.json @@ -43,8 +43,7 @@ "exemptionCategory": "waiver", "assignedAssessment": { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" - }, - "parentScope": "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors" + } }, "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json index 3901977b0e0e..6ebede37f5b6 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/examples/StandardAssignments/PutExemptionStandardAssignment.json @@ -16,8 +16,7 @@ "exemptionCategory": "waiver", "assignedAssessment": { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" - }, - "parentScope": "/subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + } } } } @@ -40,8 +39,7 @@ "exemptionCategory": "waiver", "assignedAssessment": { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" - }, - "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + } }, "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", @@ -69,8 +67,7 @@ "exemptionCategory": "waiver", "assignedAssessment": { "assessmentKey": "1195afff-c881-495e-9bc5-1486211ae03f" - }, - "parentScope": "subscriptions/212f9889-769e-45ae-ab43-6da33674bd26" + } }, "metadata": { "createdBy": "c23b5354-ff0a-4b2a-9f92-6f144effd936", diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 4255073d1188..4bcc4f1aca11 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -299,10 +299,6 @@ "assignedAssessment": { "description": "Component item with key as applied to this standard assignment over the given scope", "$ref": "#/definitions/AssignedAssessmentItem" - }, - "parentScope": { - "description": "the parent scope of the assignment, can be subscription or connector.", - "type": "string" } } }, From 97afdaac6d1e12c45b677d52d78e991f5ce3d839 Mon Sep 17 00:00:00 2001 From: talcohen Date: Wed, 7 Jun 2023 16:24:04 +0300 Subject: [PATCH 24/31] changed to v2 clouderror --- .../preview/2023-05-01-preview/securityStandards.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 8750e991f16e..5a78b38cd368 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -70,7 +70,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } }, @@ -118,7 +118,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } } @@ -170,7 +170,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } } @@ -213,7 +213,7 @@ "default": { "description": "Error response that describes why the operation failed.", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } }, From b2e3b8f9abbf438aa4e1998d2d910c60eddbfda6 Mon Sep 17 00:00:00 2001 From: talcohen Date: Wed, 7 Jun 2023 17:01:45 +0300 Subject: [PATCH 25/31] changed to v2 clouderror --- .../preview/2023-05-01-preview/customRecommedations.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 7b38a604c4be..cb5deecaa854 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -70,7 +70,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } }, @@ -118,7 +118,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } } @@ -170,7 +170,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } } @@ -213,7 +213,7 @@ "default": { "description": "Error response that describes why the operation failed.", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } }, From c3021033561eea46d447b95aceb182ef77c8e586 Mon Sep 17 00:00:00 2001 From: talcohen Date: Wed, 7 Jun 2023 17:11:16 +0300 Subject: [PATCH 26/31] fix parameters order --- .../2023-05-01-preview/standardAssignments.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 4bcc4f1aca11..3447adf9d243 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -90,10 +90,10 @@ }, "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "#/parameters/StandardAssignmentName" + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" }, { "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" @@ -137,13 +137,13 @@ }, "parameters": [ { - "$ref": "#/parameters/StandardAssignmentName" + "$ref": "../../../common/v1/types.json#/parameters/ResourceId" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "../../../common/v1/types.json#/parameters/ResourceId" + "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" } ], "responses": { From a60d9e74f8a1b71070c1ab455add668b84901bfa Mon Sep 17 00:00:00 2001 From: talcohen Date: Thu, 8 Jun 2023 12:08:47 +0300 Subject: [PATCH 27/31] fix delete --- .../preview/2023-05-01-preview/customRecommedations.json | 4 ---- .../preview/2023-05-01-preview/securityStandards.json | 4 ---- 2 files changed, 8 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index cb5deecaa854..2d040e13d90b 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -216,10 +216,6 @@ "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } - }, - "x-ms-long-running-operation": true, - "x-ms-long-running-operation-options": { - "final-state-via": "location" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 5a78b38cd368..74e207f71ab0 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -216,10 +216,6 @@ "$ref": "../../../common/v2/types.json#/definitions/CloudError" } } - }, - "x-ms-long-running-operation": true, - "x-ms-long-running-operation-options": { - "final-state-via": "location" } } } From cbc3456c11ec2581727013265a61ca62f34ccf2b Mon Sep 17 00:00:00 2001 From: talcohen Date: Thu, 8 Jun 2023 12:16:08 +0300 Subject: [PATCH 28/31] fixed parameters versions --- .../2023-05-01-preview/customRecommedations.json | 16 ++++++++-------- .../2023-05-01-preview/securityStandards.json | 16 ++++++++-------- .../2023-05-01-preview/standardAssignments.json | 8 ++++---- 3 files changed, 20 insertions(+), 20 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json index 2d040e13d90b..6c38c09a213c 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/customRecommedations.json @@ -54,7 +54,7 @@ "operationId": "CustomRecommendations_List", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -70,7 +70,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } }, @@ -99,7 +99,7 @@ "operationId": "CustomRecommendations_Get", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -118,7 +118,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -142,7 +142,7 @@ "operationId": "CustomRecommendations_CreateOrUpdate", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -170,7 +170,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -194,7 +194,7 @@ "operationId": "CustomRecommendations_Delete", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -213,7 +213,7 @@ "default": { "description": "Error response that describes why the operation failed.", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 74e207f71ab0..44a7e15c1f30 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -54,7 +54,7 @@ "operationId": "SecurityStandards_List", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -70,7 +70,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } }, @@ -99,7 +99,7 @@ "operationId": "SecurityStandards_Get", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -118,7 +118,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -142,7 +142,7 @@ "operationId": "SecurityStandards_CreateOrUpdate", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -170,7 +170,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -194,7 +194,7 @@ "operationId": "SecurityStandards_Delete", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" @@ -213,7 +213,7 @@ "default": { "description": "Error response that describes why the operation failed.", "schema": { - "$ref": "../../../common/v2/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 3447adf9d243..8ceeec753baf 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -68,7 +68,7 @@ "default": { "description": "Error response that describes why the operation failed.", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -118,7 +118,7 @@ "default": { "description": "Error response describing why the operation failed.", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -156,7 +156,7 @@ "default": { "description": "Error response describing why the operation failed.", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } } @@ -192,7 +192,7 @@ "default": { "description": "Error response describing why the operation failed", "schema": { - "$ref": "../../../common/v1/types.json#/definitions/CloudError" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/definitions/ErrorResponse" } } }, From dd3fdee574772749d9ab9451bbf67577ed5a3ec6 Mon Sep 17 00:00:00 2001 From: talcohen Date: Thu, 8 Jun 2023 12:18:08 +0300 Subject: [PATCH 29/31] fixed parameters versions --- .../preview/2023-05-01-preview/standardAssignments.json | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json index 8ceeec753baf..df8051e41471 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/standardAssignments.json @@ -55,7 +55,7 @@ "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" } ], "responses": { @@ -96,7 +96,7 @@ "$ref": "../../../common/v1/types.json#/parameters/ResourceId" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/StandardsAssignmentBody" @@ -143,7 +143,7 @@ "$ref": "#/parameters/StandardAssignmentName" }, { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" } ], "responses": { @@ -176,7 +176,7 @@ "operationId": "StandardAssignments_List", "parameters": [ { - "$ref": "../../../common/v1/types.json#/parameters/ApiVersion" + "$ref": "../../../../../common-types/resource-management/v5/types.json#/parameters/ApiVersionParameter" }, { "$ref": "#/parameters/Scope" From 3a7de2dec9c24b9c4043b92fdae0b726f740e9a0 Mon Sep 17 00:00:00 2001 From: talcohen Date: Thu, 8 Jun 2023 16:07:40 +0300 Subject: [PATCH 30/31] update standard type --- .../preview/2023-05-01-preview/securityStandards.json | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json index 44a7e15c1f30..e2c6d6420445 100644 --- a/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json +++ b/specification/security/resource-manager/Microsoft.Security/preview/2023-05-01-preview/securityStandards.json @@ -265,12 +265,13 @@ "type": "string" }, "standardType": { - "description": "standard type (Custom or BuiltIn only currently)", + "description": "standard type (Custom or Default or Compliance only currently)", "type": "string", "readOnly": true, "enum": [ "Custom", - "BuiltIn" + "Default", + "Compliance" ], "x-ms-enum": { "name": "standardType", From 0d6fa56e9d486d20ceb09b6eb2d1560fad8c63f0 Mon Sep 17 00:00:00 2001 From: talcohen Date: Tue, 11 Jul 2023 14:09:44 +0300 Subject: [PATCH 31/31] change back default tag --- specification/security/resource-manager/readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/specification/security/resource-manager/readme.md b/specification/security/resource-manager/readme.md index bcdebdacea67..8cceee715cb3 100644 --- a/specification/security/resource-manager/readme.md +++ b/specification/security/resource-manager/readme.md @@ -78,7 +78,7 @@ These are the global settings for the Security API. title: SecurityCenter description: API spec for Microsoft.Security (Azure Security Center) resource provider openapi-type: arm -tag: package-preview-2023-05 +tag: package-composite-v3 ``` ### Composite packages