@drunk-pulumi/azure 0.0.19

package/Apim/index.js

@@ -0,0 +1,118 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const apimanagement = require("@pulumi/azure-native/apimanagement");
+const AzureEnv_1 = require("../Common/AzureEnv");
+const Naming_1 = require("../Common/Naming");
+const StackEnv_1 = require("../Common/StackEnv");
+const Random_1 = require("../Core/Random");
+const ResourceCreator_1 = require("../Core/ResourceCreator");
+const ApimSignInSettings_1 = require("@drunk-pulumi/azure-providers/ApimSignInSettings");
+const ApimSignUpSettings_1 = require("@drunk-pulumi/azure-providers/ApimSignUpSettings");
+exports.default = ({ name, group, customDomain, insight, sku, capacity = 1, lock = true, alertEmail, ...others }) => {
+    const apimName = (0, Naming_1.getApimName)(name);
+    const { resource } = (0, ResourceCreator_1.default)(apimanagement.ApiManagementService, {
+        serviceName: apimName,
+        ...group,
+        publisherEmail: alertEmail,
+        publisherName: StackEnv_1.organization,
+        notificationSenderEmail: "apimgmt-noreply@mail.windowsazure.com",
+        //enableClientCertificate: true,
+        sku: { name: sku, capacity: sku === "Consumption" ? 0 : capacity },
+        identity: { type: "SystemAssigned" },
+        hostnameConfigurations: customDomain
+            ? [
+                //   {
+                //     type: 'Management',
+                //     hostName: `mm-${customDomain.domain}`,
+                //     certificatePassword: customDomain.certificatePassword,
+                //     negotiateClientCertificate: false,
+                //     encodedCertificate: customDomain.certificate,
+                //     defaultSslBinding: false,
+                //   },
+                //   {
+                //     type: 'DeveloperPortal',
+                //     hostName: `dev-${customDomain.domain}`,
+                //     certificatePassword: customDomain.certificatePassword,
+                //     negotiateClientCertificate: false,
+                //     encodedCertificate: customDomain.certificate,
+                //     defaultSslBinding: false,
+                //   },
+                {
+                    type: "Proxy",
+                    hostName: customDomain.domain,
+                    certificatePassword: customDomain.certificatePassword,
+                    negotiateClientCertificate: false,
+                    encodedCertificate: customDomain.certificate,
+                    defaultSslBinding: false,
+                },
+                //   {
+                //     type: 'Scm',
+                //     hostName: `scm-${customDomain.domain}`,
+                //     certificatePassword: customDomain.certificatePassword,
+                //     negotiateClientCertificate: false,
+                //     encodedCertificate: customDomain.certificate,
+                //     defaultSslBinding: false,
+                //   },
+            ]
+            : undefined,
+        customProperties: {
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Protocols.Server.Http2": "true",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Backend.Protocols.Ssl30": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Backend.Protocols.Tls10": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Backend.Protocols.Tls11": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_RSA_WITH_AES_128_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_RSA_WITH_AES_128_CBC_SHA256": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_RSA_WITH_AES_128_GCM_SHA256": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_RSA_WITH_AES_256_CBC_SHA": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TLS_RSA_WITH_AES_256_CBC_SHA256": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Ciphers.TripleDes168": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Protocols.Ssl30": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Protocols.Tls10": "false",
+            "Microsoft.WindowsAzure.ApiManagement.Gateway.Security.Protocols.Tls11": "false",
+        },
+        tags: AzureEnv_1.defaultTags,
+        lock,
+        ...others,
+        ignoreChanges: [],
+    });
+    const apim = resource;
+    //Link AppInsights in
+    if (insight) {
+        const insightName = `${apimName}-insight`;
+        //App Insight Logs
+        new apimanagement.Logger(insightName, {
+            loggerType: apimanagement.LoggerType.ApplicationInsights,
+            description: "App Insight Logger",
+            loggerId: (0, Random_1.randomUuId)(insightName).result,
+            resourceId: insight.id,
+            credentials: {
+                //This credential will be add to NameValue automatically.
+                instrumentationKey: insight.key,
+            },
+            serviceName: apim.name,
+            ...group,
+        });
+    }
+    //Turn of the SignIn
+    new ApimSignInSettings_1.ApimSignInSettingsResource(apimName, { serviceName: apim.name, ...group, enabled: false }, { dependsOn: apim });
+    //Turn off the setting
+    new ApimSignUpSettings_1.ApimSignUpSettingsResource(apimName, {
+        serviceName: apim.name,
+        ...group,
+        enabled: false,
+        termsOfService: {
+            consentRequired: false,
+            enabled: false,
+            text: "terms Of Service",
+        },
+    }, { dependsOn: apim });
+    return {
+        apim,
+        toApimInfo: () => ({ serviceName: apimName, group }),
+    };
+};
+//# sourceMappingURL=data:application/json;base64,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

package/Apps/LogicApp.d.ts

@@ -0,0 +1,12 @@
+import { BasicResourceArgs, DefaultResourceArgs } from '../types';
+interface Props extends BasicResourceArgs, DefaultResourceArgs {
+}
+declare const _default: ({ name, ...others }: Props) => {
+    resource: import("@pulumi/pulumi").CustomResource & {
+        id: import("@pulumi/pulumi").Output<string>;
+        urn: import("@pulumi/pulumi").Output<string>;
+    };
+    locker: import("@pulumi/azure-native/authorization/managementLockByScope").ManagementLockByScope | undefined;
+    diagnostic: import("@pulumi/azure-native/aadiam/diagnosticSetting").DiagnosticSetting | undefined;
+};
+export default _default;

package/Apps/LogicApp.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const logic = require("@pulumi/azure-native/logic");
+const ResourceCreator_1 = require("../Core/ResourceCreator");
+const AzureEnv_1 = require("../Common/AzureEnv");
+const Common_1 = require("../Common");
+const Naming_1 = require("../Common/Naming");
+exports.default = ({ name, ...others }) => {
+    const n = (0, Naming_1.getCertOrderName)(name);
+    const order = (0, ResourceCreator_1.default)(logic.Workflow, {
+        workflowName: n,
+        ...Common_1.global.groupInfo,
+        ...others,
+        sku: '',
+        tags: AzureEnv_1.defaultTags,
+    });
+    return order;
+};
+//# sourceMappingURL=data:application/json;base64,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

package/Automation/AutoAccount.d.ts

@@ -0,0 +1,5 @@
+import { BasicResourceArgs } from '../types';
+interface Props extends BasicResourceArgs {
+}
+declare const _default: ({ name, group }: Props) => import("@pulumi/azure-native/automation/automationAccount").AutomationAccount;
+export default _default;

package/Automation/AutoAccount.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const automation = require("@pulumi/azure-native/automation");
+const Naming_1 = require("../Common/Naming");
+const AzureEnv_1 = require("../Common/AzureEnv");
+exports.default = ({ name, group }) => {
+    name = (0, Naming_1.getAutomationAccountName)(name);
+    return new automation.AutomationAccount(name, {
+        automationAccountName: name,
+        ...group,
+        publicNetworkAccess: false,
+        identity: { type: 'SystemAssigned' },
+        disableLocalAuth: true,
+        sku: {
+            name: 'Free', //Free, Basic
+        },
+        tags: AzureEnv_1.defaultTags,
+    });
+};
+//# sourceMappingURL=data:application/json;base64,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

package/AzAd/B2C.d.ts

@@ -0,0 +1,9 @@
+import { BasicResourceArgs } from '../types';
+type Locations = 'United States' | 'Europe' | 'Asia Pacific' | 'Australia';
+interface Props extends BasicResourceArgs {
+    displayName: string;
+    location: Locations;
+    lock?: boolean;
+}
+declare const _default: ({ name, group, location, displayName, lock }: Props) => import("@pulumi/azure-native/azureactivedirectory/b2ctenant").B2CTenant;
+export default _default;

package/AzAd/B2C.js

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const native = require("@pulumi/azure-native");
+const Naming_1 = require("../Common/Naming");
+const Locker_1 = require("../Core/Locker");
+const getCountryCode = (location) => {
+    switch (location) {
+        case 'Asia Pacific':
+            return 'SG';
+        case 'Australia':
+            return 'AU';
+        case 'United States':
+            return 'US';
+        case 'Europe':
+            return 'EU';
+        default:
+            return 'SG';
+    }
+};
+exports.default = ({ name, group, location, displayName, lock }) => {
+    const n = (0, Naming_1.getB2cName)(name);
+    const b2cTenant = new native.azureactivedirectory.B2CTenant(n, {
+        resourceName: n,
+        ...group,
+        location,
+        countryCode: getCountryCode(location),
+        displayName,
+        sku: {
+            name: native.azureactivedirectory.B2CResourceSKUName.Standard,
+            tier: native.azureactivedirectory.B2CResourceSKUTier.A0,
+        },
+    });
+    if (lock) {
+        (0, Locker_1.default)({ name, resourceId: b2cTenant.id, dependsOn: b2cTenant });
+    }
+    return b2cTenant;
+};
+//# sourceMappingURL=data:application/json;base64,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

package/AzAd/ConditionalPolicies/index.js

@@ -0,0 +1,2 @@
+"use strict";
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi9zcmMvQXpBZC9Db25kaXRpb25hbFBvbGljaWVzL2luZGV4LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiIifQ==

package/AzAd/EnvRoles.d.ts

@@ -0,0 +1,12 @@
+import { RoleNameType } from './Role';
+declare const envRoleConfig: {
+    readOnly: RoleNameType;
+    contributor: RoleNameType;
+    admin: RoleNameType;
+};
+export type EnvRoleNamesType = {
+    [k in keyof typeof envRoleConfig]: string;
+};
+export declare const getEnvRoleNames: (includeOrganization?: boolean) => EnvRoleNamesType;
+declare const _default: (includeOrganization?: boolean) => EnvRoleNamesType;
+export default _default;

package/AzAd/EnvRoles.js

@@ -0,0 +1,62 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getEnvRoleNames = void 0;
+const AzureEnv_1 = require("../Common/AzureEnv");
+const Role_1 = require("./Role");
+const AzDevOps_1 = require("./Identities/AzDevOps");
+const Group_1 = require("./Group");
+const envRoleConfig = {
+    readOnly: {
+        env: AzureEnv_1.currentEnv,
+        roleName: 'Readonly',
+        appName: 'Azure',
+    },
+    contributor: {
+        env: AzureEnv_1.currentEnv,
+        roleName: 'Contributor',
+        appName: 'Azure',
+    },
+    admin: {
+        env: AzureEnv_1.currentEnv,
+        roleName: 'Admin',
+        appName: 'Azure',
+    },
+};
+const getEnvRoleNames = (includeOrganization = true) => ({
+    readOnly: (0, Role_1.getRoleName)({ ...envRoleConfig.readOnly, includeOrganization }),
+    contributor: (0, Role_1.getRoleName)({
+        ...envRoleConfig.contributor,
+        includeOrganization,
+    }),
+    admin: (0, Role_1.getRoleName)({ ...envRoleConfig.admin, includeOrganization }),
+});
+exports.getEnvRoleNames = getEnvRoleNames;
+exports.default = (includeOrganization = true) => {
+    //ReadOnly
+    (0, Role_1.default)({
+        ...envRoleConfig.readOnly,
+        includeOrganization,
+        permissions: [{ roleName: 'Reader', scope: AzureEnv_1.defaultScope }],
+    });
+    //Contributor
+    (0, Role_1.default)({
+        ...envRoleConfig.contributor,
+        includeOrganization,
+        permissions: [{ roleName: 'Reader', scope: AzureEnv_1.defaultScope }],
+    });
+    //Admin
+    const adminGroup = (0, Role_1.default)({
+        ...envRoleConfig.admin,
+        includeOrganization,
+        permissions: [{ roleName: 'Reader', scope: AzureEnv_1.defaultScope }],
+    });
+    //Add Global ADO Identity as Admin
+    const ado = (0, AzDevOps_1.getAdoIdentity)();
+    (0, Group_1.addUserToGroup)({
+        name: 'ado-admin-role',
+        groupObjectId: adminGroup.objectId,
+        objectId: ado.principal.objectId,
+    });
+    return (0, exports.getEnvRoleNames)(includeOrganization);
+};
+//# sourceMappingURL=data:application/json;base64,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

package/AzAd/GraphDefinition.d.ts

@@ -0,0 +1,14 @@
+type RoleProps = {
+    name: string;
+    type: 'Scope' | 'Role';
+};
+type RoleResultProps = {
+    id: string;
+    type: 'Scope' | 'Role';
+};
+type PermissionProps = {
+    resourceAppId: string;
+    resourceAccesses: Array<RoleResultProps>;
+};
+export declare const getGraphPermissions: (...roleNames: RoleProps[]) => PermissionProps;
+export {};