npm - @drunk-pulumi/azure-components - Versions diffs - 0.0.6 - Mend

@drunk-pulumi/azure-components 0.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (181) hide show

package/PulumiPlugin.yaml +1 -0
package/README.md +1 -0
package/ResourceBuilder.d.ts +54 -0
package/ResourceBuilder.js +71 -0
package/aks/AzKubernetes.d.ts +55 -0
package/aks/AzKubernetes.js +288 -0
package/aks/ContainerRegistry.d.ts +19 -0
package/aks/ContainerRegistry.js +119 -0
package/aks/helpers.d.ts +6 -0
package/aks/helpers.js +52 -0
package/aks/index.d.ts +3 -0
package/aks/index.js +43 -0
package/app/AppCert.d.ts +15 -0
package/app/AppCert.js +74 -0
package/app/AppConfig.d.ts +18 -0
package/app/AppConfig.js +124 -0
package/app/AppService.d.ts +69 -0
package/app/AppService.js +122 -0
package/app/IoTHub.d.ts +15 -0
package/app/IoTHub.js +80 -0
package/app/LogicApp.d.ts +19 -0
package/app/LogicApp.js +77 -0
package/app/SignalR.d.ts +45 -0
package/app/SignalR.js +125 -0
package/app/index.d.ts +6 -0
package/app/index.js +23 -0
package/azAd/AppRegistration.d.ts +52 -0
package/azAd/AppRegistration.js +165 -0
package/azAd/AzRole.d.ts +14 -0
package/azAd/AzRole.js +72 -0
package/azAd/CustomRoles.d.ts +10 -0
package/azAd/CustomRoles.js +73 -0
package/azAd/GroupRole.d.ts +29 -0
package/azAd/GroupRole.js +107 -0
package/azAd/RoleAssignment.d.ts +15 -0
package/azAd/RoleAssignment.js +63 -0
package/azAd/UserAssignedIdentity.d.ts +17 -0
package/azAd/UserAssignedIdentity.js +76 -0
package/azAd/helpers/graphBuiltIn.d.ts +14 -0
package/azAd/helpers/graphBuiltIn.js +5134 -0
package/azAd/helpers/index.d.ts +3 -0
package/azAd/helpers/index.js +39 -0
package/azAd/helpers/rolesBuiltIn.d.ts +90 -0
package/azAd/helpers/rolesBuiltIn.js +18601 -0
package/azAd/helpers/rsRoleDefinition.d.ts +62 -0
package/azAd/helpers/rsRoleDefinition.js +120 -0
package/azAd/index.d.ts +7 -0
package/azAd/index.js +24 -0
package/base/BaseComponent.d.ts +53 -0
package/base/BaseComponent.js +98 -0
package/base/BaseResourceComponent.d.ts +108 -0
package/base/BaseResourceComponent.js +180 -0
package/base/helpers.d.ts +12 -0
package/base/helpers.js +29 -0
package/base/index.d.ts +3 -0
package/base/index.js +43 -0
package/common/PGPGenerator.d.ts +26 -0
package/common/PGPGenerator.js +72 -0
package/common/RandomPassword.d.ts +21 -0
package/common/RandomPassword.js +84 -0
package/common/RandomString.d.ts +20 -0
package/common/RandomString.js +74 -0
package/common/ResourceLocker.d.ts +9 -0
package/common/ResourceLocker.js +52 -0
package/common/RsGroup.d.ts +20 -0
package/common/RsGroup.js +85 -0
package/common/SshGenerator.d.ts +17 -0
package/common/SshGenerator.js +66 -0
package/common/index.d.ts +5 -0
package/common/index.js +22 -0
package/database/AzSql.d.ts +71 -0
package/database/AzSql.js +283 -0
package/database/MySql.d.ts +35 -0
package/database/MySql.js +181 -0
package/database/Postgres.d.ts +32 -0
package/database/Postgres.js +171 -0
package/database/Redis.d.ts +26 -0
package/database/Redis.js +125 -0
package/database/helpers.d.ts +7 -0
package/database/helpers.js +52 -0
package/database/index.d.ts +5 -0
package/database/index.js +45 -0
package/helpers/Location/LocationBuiltIn.d.ts +6 -0
package/helpers/Location/LocationBuiltIn.js +493 -0
package/helpers/Location/index.d.ts +3 -0
package/helpers/Location/index.js +25 -0
package/helpers/autoTags.d.ts +1 -0
package/helpers/autoTags.js +27 -0
package/helpers/azureEnv.d.ts +21 -0
package/helpers/azureEnv.js +102 -0
package/helpers/configHelper.d.ts +5 -0
package/helpers/configHelper.js +54 -0
package/helpers/index.d.ts +4 -0
package/helpers/index.js +41 -0
package/helpers/rsHelpers.d.ts +18 -0
package/helpers/rsHelpers.js +92 -0
package/helpers/stackEnv.d.ts +4 -0
package/helpers/stackEnv.js +54 -0
package/index.d.ts +14 -0
package/index.js +53 -0
package/logs/Logs.d.ts +48 -0
package/logs/Logs.js +154 -0
package/logs/helpers.d.ts +1 -0
package/logs/helpers.js +38 -0
package/logs/index.d.ts +1 -0
package/logs/index.js +18 -0
package/package.json +34 -0
package/services/Automation.d.ts +16 -0
package/services/Automation.js +85 -0
package/services/AzSearch.d.ts +20 -0
package/services/AzSearch.js +113 -0
package/services/ServiceBus.d.ts +42 -0
package/services/ServiceBus.js +256 -0
package/services/index.d.ts +3 -0
package/services/index.js +20 -0
package/storage/StorageAccount.d.ts +53 -0
package/storage/StorageAccount.js +261 -0
package/storage/helpers.d.ts +24 -0
package/storage/helpers.js +89 -0
package/storage/index.d.ts +2 -0
package/storage/index.js +42 -0
package/types.d.ts +125 -0
package/types.js +3 -0
package/vault/EncryptionKey.d.ts +21 -0
package/vault/EncryptionKey.js +73 -0
package/vault/KeyVault.d.ts +31 -0
package/vault/KeyVault.js +110 -0
package/vault/VaultSecret.d.ts +23 -0
package/vault/VaultSecret.js +72 -0
package/vault/VaultSecrets.d.ts +25 -0
package/vault/VaultSecrets.js +31 -0
package/vault/helpers.d.ts +1 -0
package/vault/helpers.js +13 -0
package/vault/index.d.ts +5 -0
package/vault/index.js +45 -0
package/vm/DiskEncryptionSet.d.ts +16 -0
package/vm/DiskEncryptionSet.js +74 -0
package/vm/VirtualMachine.d.ts +45 -0
package/vm/VirtualMachine.js +192 -0
package/vm/helpers.d.ts +16 -0
package/vm/helpers.js +15 -0
package/vm/index.d.ts +3 -0
package/vm/index.js +43 -0
package/vnet/AzCdn.d.ts +44 -0
package/vnet/AzCdn.js +276 -0
package/vnet/Basion.d.ts +19 -0
package/vnet/Basion.js +78 -0
package/vnet/DnsZone.d.ts +36 -0
package/vnet/DnsZone.js +113 -0
package/vnet/Firewall.d.ts +53 -0
package/vnet/Firewall.js +136 -0
package/vnet/FirewallPolicies/FirewallPolicyBuilder.d.ts +18 -0
package/vnet/FirewallPolicies/FirewallPolicyBuilder.js +91 -0
package/vnet/FirewallPolicies/commonPolicies.d.ts +10 -0
package/vnet/FirewallPolicies/commonPolicies.js +55 -0
package/vnet/FirewallPolicies/index.d.ts +0 -0
package/vnet/FirewallPolicies/index.js +2 -0
package/vnet/IpAddresses.d.ts +36 -0
package/vnet/IpAddresses.js +74 -0
package/vnet/NetworkPeering.d.ts +21 -0
package/vnet/NetworkPeering.js +85 -0
package/vnet/PrivateDnsZone.d.ts +38 -0
package/vnet/PrivateDnsZone.js +111 -0
package/vnet/PrivateEndpoint.d.ts +43 -0
package/vnet/PrivateEndpoint.js +181 -0
package/vnet/RouteTable.d.ts +22 -0
package/vnet/RouteTable.js +75 -0
package/vnet/VirtualNetwork.d.ts +99 -0
package/vnet/VirtualNetwork.js +311 -0
package/vnet/VpnGateway.d.ts +18 -0
package/vnet/VpnGateway.js +90 -0
package/vnet/helpers.d.ts +16 -0
package/vnet/helpers.js +47 -0
package/vnet/index.d.ts +13 -0
package/vnet/index.js +53 -0
package/vnet/securityRules/SecurityRuleBuilder.d.ts +12 -0
package/vnet/securityRules/SecurityRuleBuilder.js +55 -0
package/vnet/securityRules/commonRules.d.ts +9 -0
package/vnet/securityRules/commonRules.js +94 -0
package/vnet/securityRules/index.d.ts +2 -0
package/vnet/securityRules/index.js +19 -0

package/azAd/CustomRoles.js ADDED Viewed

@@ -0,0 +1,73 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CustomRoles = void 0;
+const auth = __importStar(require("@pulumi/azure-native/authorization"));
+const BaseComponent_1 = require("../base/BaseComponent");
+const helpers_1 = require("../base/helpers");
+const helpers_2 = require("../helpers");
+class CustomRoles extends BaseComponent_1.BaseComponent {
+    constructor(name, args, opts) {
+        super((0, helpers_1.getComponentResourceType)('CustomRoles'), name, args, opts);
+        if (args.enableJustInTimeRemoteRole) {
+            this.createJustInTimeRemoteRole();
+        }
+    }
+    getOutputs() {
+        return {};
+    }
+    createJustInTimeRemoteRole() {
+        return new auth.RoleDefinition('JustInTime-User-Remote-Request', {
+            roleName: 'Just-In-Time-User-Remote-Request-Role',
+            description: 'Just-in-time virtual machine user remote request role',
+            scope: helpers_2.azureEnv.defaultSubScope,
+            permissions: [
+                {
+                    actions: [
+                        'Microsoft.Security/locations/jitNetworkAccessPolicies/initiate/action',
+                        'Microsoft.Security/locations/jitNetworkAccessPolicies/*/read',
+                        'Microsoft.Security/policies/read',
+                        'Microsoft.Compute/virtualMachines/read',
+                        'Microsoft.Network/networkInterfaces/*/read',
+                    ],
+                    notActions: [],
+                },
+            ],
+            assignableScopes: [helpers_2.azureEnv.defaultSubScope],
+        });
+    }
+}
+exports.CustomRoles = CustomRoles;
+//# sourceMappingURL=data:application/json;base64,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

package/azAd/GroupRole.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import * as pulumi from '@pulumi/pulumi';
+import { BaseComponent } from '../base/BaseComponent';
+import * as types from '../types';
+import { AzRoleArgs } from './AzRole';
+export interface GroupRoleArgs extends Pick<AzRoleArgs, 'owners' | 'preventDuplicateNames'>, Partial<Record<types.GroupRoleTypes, Pick<AzRoleArgs, 'members'>>> {
+    preventDuplicateNames?: pulumi.Input<boolean>;
+}
+export interface GroupRoleOutput {
+    objectId: string;
+    displayName: string;
+}
+export declare class GroupRole extends BaseComponent<GroupRoleArgs> {
+    readonly admin: pulumi.Output<GroupRoleOutput>;
+    readonly contributor: pulumi.Output<GroupRoleOutput>;
+    readonly readOnly: pulumi.Output<GroupRoleOutput>;
+    constructor(name?: string, args?: GroupRoleArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        admin: pulumi.Output<GroupRoleOutput>;
+        contributor: pulumi.Output<GroupRoleOutput>;
+        readOnly: pulumi.Output<GroupRoleOutput>;
+    };
+    private configHierarchyRoles;
+    /**
+     * Selectively picks properties from the component instance
+     * @param keys - Array of property keys to pick from the component
+     * @returns Object containing only the selected properties
+     */
+    PickOutputs<K extends keyof this>(...keys: K[]): Pick<this, K>;
+}

package/azAd/GroupRole.js ADDED Viewed

@@ -0,0 +1,107 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GroupRole = void 0;
+const azAd = __importStar(require("@pulumi/azuread"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const BaseComponent_1 = require("../base/BaseComponent");
+const helpers_1 = require("../base/helpers");
+const helpers_2 = require("../helpers");
+const AzRole_1 = require("./AzRole");
+class GroupRole extends BaseComponent_1.BaseComponent {
+    admin;
+    contributor;
+    readOnly;
+    constructor(name = helpers_2.stackInfo.stack, args = {}, opts) {
+        super((0, helpers_1.getComponentResourceType)('GroupRole'), name, args, opts);
+        const roles = ['admin', 'contributor', 'readOnly'];
+        const roleInstances = Object.fromEntries(roles.map((role) => [
+            role,
+            new AzRole_1.AzRole(`${name} ${role}`, {
+                owners: args.owners,
+                members: args[role]?.members,
+                preventDuplicateNames: args.preventDuplicateNames,
+            }, { parent: this }),
+        ]));
+        this.admin = pulumi.output({
+            objectId: roleInstances.admin.objectId,
+            displayName: roleInstances.admin.displayName,
+        });
+        this.contributor = pulumi.output({
+            objectId: roleInstances.contributor.objectId,
+            displayName: roleInstances.contributor.displayName,
+        });
+        this.readOnly = pulumi.output({
+            objectId: roleInstances.readOnly.objectId,
+            displayName: roleInstances.readOnly.displayName,
+        });
+        this.configHierarchyRoles(roleInstances);
+        this.registerOutputs(this.getOutputs());
+    }
+    getOutputs() {
+        return {
+            admin: this.admin,
+            contributor: this.contributor,
+            readOnly: this.readOnly,
+        };
+    }
+    configHierarchyRoles(roles) {
+        if (this.admin && this.contributor) {
+            new azAd.GroupMember(`${this.name}-admin2contributor`, {
+                groupObjectId: this.contributor.objectId,
+                memberObjectId: this.admin.objectId,
+            }, { dependsOn: Object.values(roles), parent: this });
+        }
+        if (this.contributor && this.readOnly) {
+            new azAd.GroupMember(`${this.name}-contributor2readOnly`, {
+                groupObjectId: this.readOnly.objectId,
+                memberObjectId: this.contributor.objectId,
+            }, { dependsOn: Object.values(roles), parent: this });
+        }
+    }
+    /**
+     * Selectively picks properties from the component instance
+     * @param keys - Array of property keys to pick from the component
+     * @returns Object containing only the selected properties
+     */
+    PickOutputs(...keys) {
+        return keys.reduce((acc, key) => {
+            acc[key] = this[key];
+            return acc;
+        }, {});
+    }
+}
+exports.GroupRole = GroupRole;
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiR3JvdXBSb2xlLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vc3JjL2F6QWQvR3JvdXBSb2xlLnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7OztBQUFBLHNEQUF3QztBQUN4Qyx1REFBeUM7QUFDekMseURBQXNEO0FBQ3RELDZDQUEyRDtBQUMzRCx3Q0FBdUM7QUFFdkMscUNBQThDO0FBYTlDLE1BQWEsU0FBVSxTQUFRLDZCQUE0QjtJQUN6QyxLQUFLLENBQWlDO0lBQ3RDLFdBQVcsQ0FBaUM7SUFDNUMsUUFBUSxDQUFpQztJQUV6RCxZQUFZLE9BQWUsbUJBQVMsQ0FBQyxLQUFLLEVBQUUsT0FBc0IsRUFBRSxFQUFFLElBQXNDO1FBQzFHLEtBQUssQ0FBQyxJQUFBLGtDQUF3QixFQUFDLFdBQVcsQ0FBQyxFQUFFLElBQUksRUFBRSxJQUFJLEVBQUUsSUFBSSxDQUFDLENBQUM7UUFFL0QsTUFBTSxLQUFLLEdBQUcsQ0FBQyxPQUFPLEVBQUUsYUFBYSxFQUFFLFVBQVUsQ0FBVSxDQUFDO1FBRTVELE1BQU0sYUFBYSxHQUFHLE1BQU0sQ0FBQyxXQUFXLENBQ3RDLEtBQUssQ0FBQyxHQUFHLENBQUMsQ0FBQyxJQUFJLEVBQUUsRUFBRSxDQUFDO1lBQ2xCLElBQUk7WUFDSixJQUFJLGVBQU0sQ0FDUixHQUFHLElBQUksSUFBSSxJQUFJLEVBQUUsRUFDakI7Z0JBQ0UsTUFBTSxFQUFFLElBQUksQ0FBQyxNQUFNO2dCQUNuQixPQUFPLEVBQUUsSUFBSSxDQUFDLElBQUksQ0FBQyxFQUFFLE9BQU87Z0JBQzVCLHFCQUFxQixFQUFFLElBQUksQ0FBQyxxQkFBcUI7YUFDbEQsRUFDRCxFQUFFLE1BQU0sRUFBRSxJQUFJLEVBQUUsQ0FDakI7U0FDRixDQUFDLENBQ0gsQ0FBQztRQUVGLElBQUksQ0FBQyxLQUFLLEdBQUcsTUFBTSxDQUFDLE1BQU0sQ0FBQztZQUN6QixRQUFRLEVBQUUsYUFBYSxDQUFDLEtBQUssQ0FBQyxRQUFRO1lBQ3RDLFdBQVcsRUFBRSxhQUFhLENBQUMsS0FBSyxDQUFDLFdBQVc7U0FDN0MsQ0FBQyxDQUFDO1FBRUgsSUFBSSxDQUFDLFdBQVcsR0FBRyxNQUFNLENBQUMsTUFBTSxDQUFDO1lBQy9CLFFBQVEsRUFBRSxhQUFhLENBQUMsV0FBVyxDQUFDLFFBQVE7WUFDNUMsV0FBVyxFQUFFLGFBQWEsQ0FBQyxXQUFXLENBQUMsV0FBVztTQUNuRCxDQUFDLENBQUM7UUFFSCxJQUFJLENBQUMsUUFBUSxHQUFHLE1BQU0sQ0FBQyxNQUFNLENBQUM7WUFDNUIsUUFBUSxFQUFFLGFBQWEsQ0FBQyxRQUFRLENBQUMsUUFBUTtZQUN6QyxXQUFXLEVBQUUsYUFBYSxDQUFDLFFBQVEsQ0FBQyxXQUFXO1NBQ2hELENBQUMsQ0FBQztRQUVILElBQUksQ0FBQyxvQkFBb0IsQ0FBQyxhQUFhLENBQUMsQ0FBQztRQUV6QyxJQUFJLENBQUMsZUFBZSxDQUFDLElBQUksQ0FBQyxVQUFVLEVBQUUsQ0FBQyxDQUFDO0lBQzFDLENBQUM7SUFFTSxVQUFVO1FBQ2YsT0FBTztZQUNMLEtBQUssRUFBRSxJQUFJLENBQUMsS0FBSztZQUNqQixXQUFXLEVBQUUsSUFBSSxDQUFDLFdBQVc7WUFDN0IsUUFBUSxFQUFFLElBQUksQ0FBQyxRQUFRO1NBQ3hCLENBQUM7SUFDSixDQUFDO0lBRU8sb0JBQW9CLENBQUMsS0FBOEI7UUFDekQsSUFBSSxJQUFJLENBQUMsS0FBSyxJQUFJLElBQUksQ0FBQyxXQUFXLEVBQUUsQ0FBQztZQUNuQyxJQUFJLElBQUksQ0FBQyxXQUFXLENBQ2xCLEdBQUcsSUFBSSxDQUFDLElBQUksb0JBQW9CLEVBQ2hDO2dCQUNFLGFBQWEsRUFBRSxJQUFJLENBQUMsV0FBVyxDQUFDLFFBQVE7Z0JBQ3hDLGNBQWMsRUFBRSxJQUFJLENBQUMsS0FBSyxDQUFDLFFBQVE7YUFDcEMsRUFDRCxFQUFFLFNBQVMsRUFBRSxNQUFNLENBQUMsTUFBTSxDQUFDLEtBQUssQ0FBQyxFQUFFLE1BQU0sRUFBRSxJQUFJLEVBQUUsQ0FDbEQsQ0FBQztRQUNKLENBQUM7UUFFRCxJQUFJLElBQUksQ0FBQyxXQUFXLElBQUksSUFBSSxDQUFDLFFBQVEsRUFBRSxDQUFDO1lBQ3RDLElBQUksSUFBSSxDQUFDLFdBQVcsQ0FDbEIsR0FBRyxJQUFJLENBQUMsSUFBSSx1QkFBdUIsRUFDbkM7Z0JBQ0UsYUFBYSxFQUFFLElBQUksQ0FBQyxRQUFRLENBQUMsUUFBUTtnQkFDckMsY0FBYyxFQUFFLElBQUksQ0FBQyxXQUFXLENBQUMsUUFBUTthQUMxQyxFQUNELEVBQUUsU0FBUyxFQUFFLE1BQU0sQ0FBQyxNQUFNLENBQUMsS0FBSyxDQUFDLEVBQUUsTUFBTSxFQUFFLElBQUksRUFBRSxDQUNsRCxDQUFDO1FBQ0osQ0FBQztJQUNILENBQUM7SUFFRDs7OztPQUlHO0lBQ0ksV0FBVyxDQUF1QixHQUFHLElBQVM7UUFDbkQsT0FBTyxJQUFJLENBQUMsTUFBTSxDQUFDLENBQUMsR0FBRyxFQUFFLEdBQUcsRUFBRSxFQUFFO1lBQzlCLEdBQUcsQ0FBQyxHQUFHLENBQUMsR0FBSSxJQUFZLENBQUMsR0FBRyxDQUFDLENBQUM7WUFDOUIsT0FBTyxHQUFHLENBQUM7UUFDYixDQUFDLEVBQUUsRUFBbUIsQ0FBQyxDQUFDO0lBQzFCLENBQUM7Q0FDRjtBQXhGRCw4QkF3RkMifQ==

package/azAd/RoleAssignment.d.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import * as auth from '@pulumi/azure-native/authorization';
+import * as pulumi from '@pulumi/pulumi';
+import { BaseComponent } from '../base/BaseComponent';
+export interface RoleAssignmentArgs extends Omit<auth.RoleAssignmentArgs, 'roleDefinitionId'> {
+    roleName: 'Owner' | 'Contributor' | 'Reader' | string;
+}
+export declare class RoleAssignment extends BaseComponent<RoleAssignmentArgs> {
+    readonly id: pulumi.Output<string>;
+    readonly resourceName: pulumi.Output<string>;
+    constructor(name: string, args: RoleAssignmentArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        id: pulumi.Output<string>;
+        resourceName: pulumi.Output<string>;
+    };
+}

package/azAd/RoleAssignment.js ADDED Viewed

@@ -0,0 +1,63 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RoleAssignment = void 0;
+const auth = __importStar(require("@pulumi/azure-native/authorization"));
+const BaseComponent_1 = require("../base/BaseComponent");
+const rolesBuiltIn_1 = require("./helpers/rolesBuiltIn");
+class RoleAssignment extends BaseComponent_1.BaseComponent {
+    id;
+    resourceName;
+    constructor(name, args, opts) {
+        super('RoleAssignment', name, args, opts);
+        const { roleName, ...props } = args;
+        const role = (0, rolesBuiltIn_1.getRoleDefinitionByName)(roleName);
+        const assignment = new auth.RoleAssignment(name, {
+            ...props,
+            roleDefinitionId: role.id,
+        }, { ...opts, parent: this });
+        this.id = assignment.id;
+        this.resourceName = assignment.name;
+        this.registerOutputs(this.getOutputs());
+    }
+    getOutputs() {
+        return {
+            id: this.id,
+            resourceName: this.resourceName,
+        };
+    }
+}
+exports.RoleAssignment = RoleAssignment;
+//# sourceMappingURL=data:application/json;base64,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

package/azAd/UserAssignedIdentity.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import * as pulumi from '@pulumi/pulumi';
+import { BaseArgs, BaseResourceComponent } from '../base';
+import { WithMemberOfArgs, WithResourceGroupInputs } from '../types';
+export interface UserAssignedIdentityArgs extends Omit<BaseArgs, 'groupRoles'>, WithMemberOfArgs, WithResourceGroupInputs {
+}
+export declare class UserAssignedIdentity extends BaseResourceComponent<UserAssignedIdentityArgs> {
+    readonly id: pulumi.Output<string>;
+    readonly clientId: pulumi.Output<string>;
+    readonly principalId: pulumi.Output<string>;
+    constructor(name: string, args: UserAssignedIdentityArgs, opts?: pulumi.ComponentResourceOptions);
+    getOutputs(): {
+        id: pulumi.Output<string>;
+        clientId: pulumi.Output<string>;
+        principalId: pulumi.Output<string>;
+    };
+    private addMemberOf;
+}

package/azAd/UserAssignedIdentity.js ADDED Viewed

@@ -0,0 +1,76 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserAssignedIdentity = void 0;
+const mid = __importStar(require("@pulumi/azure-native/managedidentity"));
+const azAd = __importStar(require("@pulumi/azuread"));
+const pulumi = __importStar(require("@pulumi/pulumi"));
+const base_1 = require("../base");
+class UserAssignedIdentity extends base_1.BaseResourceComponent {
+    id;
+    clientId;
+    principalId;
+    constructor(name, args, opts) {
+        super('UserAssignedIdentity', name, args, opts);
+        const managedIdentity = new mid.UserAssignedIdentity(name, { ...args.rsGroup }, { ...opts, parent: this });
+        this.addSecrets({
+            id: managedIdentity.id,
+            clientId: managedIdentity.clientId,
+            principalId: managedIdentity.principalId,
+        });
+        this.id = managedIdentity.id;
+        this.clientId = managedIdentity.clientId;
+        this.principalId = managedIdentity.principalId;
+        this.addMemberOf();
+        this.registerOutputs();
+    }
+    getOutputs() {
+        return {
+            id: this.id,
+            clientId: this.clientId,
+            principalId: this.principalId,
+        };
+    }
+    addMemberOf() {
+        if (!this.args.memberof)
+            return;
+        this.args.memberof.map((group) => pulumi.output(group).apply((id) => new azAd.GroupMember(`${this.name}-${id.objectId}`, {
+            groupObjectId: id.objectId,
+            memberObjectId: this.principalId,
+        }, { parent: this })));
+    }
+}
+exports.UserAssignedIdentity = UserAssignedIdentity;
+//# sourceMappingURL=data:application/json;base64,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

package/azAd/helpers/graphBuiltIn.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+type RoleProps = {
+    name: string;
+    type: 'Scope' | 'Role';
+};
+type RoleResultProps = {
+    id: string;
+    type: 'Scope' | 'Role';
+};
+type PermissionProps = {
+    resourceAppId: string;
+    resourceAccesses: Array<RoleResultProps>;
+};
+export declare function getGraphPermissions(...roleNames: RoleProps[]): PermissionProps;
+export {};