@drunk-pulumi/azure 0.0.21 → 0.0.22
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/Common/AzureEnv.d.ts +9 -7
- package/Common/AzureEnv.js +27 -22
- package/KeyVault/index.d.ts +4 -4
- package/KeyVault/index.js +23 -24
- package/package.json +2 -2
package/Common/AzureEnv.d.ts
CHANGED
|
@@ -1,14 +1,16 @@
|
|
|
1
|
-
import
|
|
2
|
-
import {
|
|
3
|
-
|
|
4
|
-
export declare const
|
|
1
|
+
import * as pulumi from "@pulumi/pulumi";
|
|
2
|
+
import { KeyVaultInfo, ResourceGroupInfo } from "../types";
|
|
3
|
+
import { ResourceInfoArg } from "./ResourceEnv";
|
|
4
|
+
export declare const tenantId: pulumi.Output<string>;
|
|
5
|
+
export declare const subscriptionId: pulumi.Output<string>;
|
|
6
|
+
export declare const currentPrincipal: pulumi.Output<string>;
|
|
5
7
|
export declare const currentLocation: string;
|
|
6
|
-
export declare const defaultScope:
|
|
8
|
+
export declare const defaultScope: pulumi.Output<string>;
|
|
7
9
|
/** ======== Default Variables ================*/
|
|
8
10
|
export declare const defaultTags: {
|
|
9
11
|
environment: string;
|
|
10
12
|
organization: string;
|
|
11
|
-
|
|
13
|
+
"pulumi-project": string;
|
|
12
14
|
};
|
|
13
15
|
export declare enum Environments {
|
|
14
16
|
Global = "global",
|
|
@@ -26,7 +28,7 @@ export declare const isLocal: boolean;
|
|
|
26
28
|
export declare const currentEnv: Environments;
|
|
27
29
|
/** Get Key Vault by Group Name. Group Name is the name use to create the resource and resource group together. */
|
|
28
30
|
export declare const getKeyVaultInfo: (groupName: string) => KeyVaultInfo;
|
|
29
|
-
export declare const getResourceIdFromInfo: ({ group, name, provider, }: ResourceInfoArg) =>
|
|
31
|
+
export declare const getResourceIdFromInfo: ({ group, name, provider, }: ResourceInfoArg) => pulumi.Output<string>;
|
|
30
32
|
/**Get Resource Info from Resource ID. Sample ID is "/subscriptions/01af663e-76dd-45ac-9e57-9c8e0d3ee350/resourceGroups/sandbox-codehbd-group-hbd/providers/Microsoft.Network/virtualNetworks/sandbox-codehbd-vnet-hbd"*/
|
|
31
33
|
export interface ResourceInfo {
|
|
32
34
|
name: string;
|
package/Common/AzureEnv.js
CHANGED
|
@@ -1,25 +1,30 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.getResourceInfoFromId = exports.getResourceIdFromInfo = exports.getKeyVaultInfo = exports.currentEnv = exports.isLocal = exports.isGlobal = exports.isPrd = exports.isSandbox = exports.isDev = exports.isEnv = exports.Environments = exports.defaultTags = exports.defaultScope = exports.currentLocation = exports.subscriptionId = exports.tenantId = void 0;
|
|
4
|
-
const
|
|
3
|
+
exports.getResourceInfoFromId = exports.getResourceIdFromInfo = exports.getKeyVaultInfo = exports.currentEnv = exports.isLocal = exports.isGlobal = exports.isPrd = exports.isSandbox = exports.isDev = exports.isEnv = exports.Environments = exports.defaultTags = exports.defaultScope = exports.currentLocation = exports.currentPrincipal = exports.subscriptionId = exports.tenantId = void 0;
|
|
4
|
+
const pulumi = require("@pulumi/pulumi");
|
|
5
|
+
const azure_native_1 = require("@pulumi/azure-native");
|
|
5
6
|
const AutoTags_1 = require("./AutoTags");
|
|
6
7
|
const Naming_1 = require("./Naming");
|
|
7
8
|
const StackEnv_1 = require("./StackEnv");
|
|
8
|
-
const config =
|
|
9
|
-
exports.tenantId = config
|
|
10
|
-
exports.subscriptionId = config
|
|
11
|
-
|
|
12
|
-
exports.currentLocation =
|
|
13
|
-
exports.defaultScope =
|
|
9
|
+
const config = pulumi.output(azure_native_1.authorization.getClientConfig());
|
|
10
|
+
exports.tenantId = config.apply((c) => c.tenantId);
|
|
11
|
+
exports.subscriptionId = config.apply((c) => c.subscriptionId);
|
|
12
|
+
exports.currentPrincipal = config.apply((c) => c.objectId);
|
|
13
|
+
exports.currentLocation = JSON.parse(process.env.PULUMI_CONFIG ?? "{}")["azure-native:config:location"];
|
|
14
|
+
exports.defaultScope = pulumi.interpolate `/subscriptions/${exports.subscriptionId}`;
|
|
14
15
|
//Print and Check
|
|
15
|
-
|
|
16
|
-
console.log(`
|
|
16
|
+
pulumi.all([exports.subscriptionId, exports.tenantId]).apply(([s, t]) => {
|
|
17
|
+
console.log(`Azure Environment:`, {
|
|
18
|
+
TenantId: t,
|
|
19
|
+
SubscriptionId: s,
|
|
20
|
+
currentLocation: exports.currentLocation,
|
|
21
|
+
});
|
|
17
22
|
});
|
|
18
23
|
/** ======== Default Variables ================*/
|
|
19
24
|
exports.defaultTags = {
|
|
20
25
|
environment: StackEnv_1.stack,
|
|
21
26
|
organization: StackEnv_1.organization,
|
|
22
|
-
|
|
27
|
+
"pulumi-project": StackEnv_1.projectName,
|
|
23
28
|
};
|
|
24
29
|
(0, AutoTags_1.registerAutoTags)(exports.defaultTags);
|
|
25
30
|
var Environments;
|
|
@@ -56,29 +61,29 @@ const getKeyVaultInfo = (groupName) => {
|
|
|
56
61
|
return {
|
|
57
62
|
name: vaultName,
|
|
58
63
|
group: { resourceGroupName: resourceGroupName, location: exports.currentLocation },
|
|
59
|
-
id:
|
|
64
|
+
id: pulumi.interpolate `/subscriptions/${exports.subscriptionId}/resourceGroups/${resourceGroupName}/providers/Microsoft.KeyVault/vaults/${vaultName}`,
|
|
60
65
|
};
|
|
61
66
|
};
|
|
62
67
|
exports.getKeyVaultInfo = getKeyVaultInfo;
|
|
63
68
|
const getResourceIdFromInfo = ({ group, name, provider, }) => {
|
|
64
69
|
if (!name && !provider)
|
|
65
|
-
return
|
|
70
|
+
return pulumi.interpolate `/subscriptions/${exports.subscriptionId}/resourceGroups/${group.resourceGroupName}`;
|
|
66
71
|
else if (name && provider)
|
|
67
|
-
return
|
|
68
|
-
throw new Error(
|
|
72
|
+
return pulumi.interpolate `/subscriptions/${exports.subscriptionId}/resourceGroups/${group.resourceGroupName}/providers/${provider}/${name}`;
|
|
73
|
+
throw new Error("Resource Info is invalid.");
|
|
69
74
|
};
|
|
70
75
|
exports.getResourceIdFromInfo = getResourceIdFromInfo;
|
|
71
76
|
const getResourceInfoFromId = (id) => {
|
|
72
77
|
if (!id)
|
|
73
78
|
return undefined;
|
|
74
|
-
const details = id.split(
|
|
75
|
-
let name =
|
|
76
|
-
let groupName =
|
|
77
|
-
let subscriptionId =
|
|
79
|
+
const details = id.split("/");
|
|
80
|
+
let name = "";
|
|
81
|
+
let groupName = "";
|
|
82
|
+
let subscriptionId = "";
|
|
78
83
|
details.forEach((d, index) => {
|
|
79
|
-
if (d ===
|
|
84
|
+
if (d === "subscriptions")
|
|
80
85
|
subscriptionId = details[index + 1];
|
|
81
|
-
if (d ===
|
|
86
|
+
if (d === "resourceGroups" || d === "resourcegroups")
|
|
82
87
|
groupName = details[index + 1];
|
|
83
88
|
if (index === details.length - 1)
|
|
84
89
|
name = d;
|
|
@@ -91,4 +96,4 @@ const getResourceInfoFromId = (id) => {
|
|
|
91
96
|
};
|
|
92
97
|
};
|
|
93
98
|
exports.getResourceInfoFromId = getResourceInfoFromId;
|
|
94
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
99
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiQXp1cmVFbnYuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi9zcmMvQ29tbW9uL0F6dXJlRW52LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7OztBQUFBLHlDQUF5QztBQUN6Qyx1REFBcUQ7QUFDckQseUNBQThDO0FBRTlDLHFDQUFpRTtBQUVqRSx5Q0FBOEQ7QUFFOUQsTUFBTSxNQUFNLEdBQUcsTUFBTSxDQUFDLE1BQU0sQ0FBQyw0QkFBYSxDQUFDLGVBQWUsRUFBRSxDQUFDLENBQUM7QUFDakQsUUFBQSxRQUFRLEdBQUcsTUFBTSxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsRUFBRSxFQUFFLENBQUMsQ0FBQyxDQUFDLFFBQVEsQ0FBQyxDQUFDO0FBQzNDLFFBQUEsY0FBYyxHQUFHLE1BQU0sQ0FBQyxLQUFLLENBQUMsQ0FBQyxDQUFDLEVBQUUsRUFBRSxDQUFDLENBQUMsQ0FBQyxjQUFjLENBQUMsQ0FBQztBQUN2RCxRQUFBLGdCQUFnQixHQUFHLE1BQU0sQ0FBQyxLQUFLLENBQUMsQ0FBQyxDQUFDLEVBQUUsRUFBRSxDQUFDLENBQUMsQ0FBQyxRQUFRLENBQUMsQ0FBQztBQUNuRCxRQUFBLGVBQWUsR0FBRyxJQUFJLENBQUMsS0FBSyxDQUFDLE9BQU8sQ0FBQyxHQUFHLENBQUMsYUFBYSxJQUFJLElBQUksQ0FBQyxDQUMxRSw4QkFBOEIsQ0FDckIsQ0FBQztBQUNDLFFBQUEsWUFBWSxHQUFHLE1BQU0sQ0FBQyxXQUFXLENBQUEsa0JBQWtCLHNCQUFjLEVBQUUsQ0FBQztBQUVqRixpQkFBaUI7QUFDakIsTUFBTSxDQUFDLEdBQUcsQ0FBQyxDQUFDLHNCQUFjLEVBQUUsZ0JBQVEsQ0FBQyxDQUFDLENBQUMsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDLEVBQUUsQ0FBQyxDQUFDLEVBQUUsRUFBRTtJQUN0RCxPQUFPLENBQUMsR0FBRyxDQUFDLG9CQUFvQixFQUFFO1FBQ2hDLFFBQVEsRUFBRSxDQUFDO1FBQ1gsY0FBYyxFQUFFLENBQUM7UUFDakIsZUFBZSxFQUFmLHVCQUFlO0tBQ2hCLENBQUMsQ0FBQztBQUNMLENBQUMsQ0FBQyxDQUFDO0FBRUgsaURBQWlEO0FBRXBDLFFBQUEsV0FBVyxHQUFHO0lBQ3pCLFdBQVcsRUFBRSxnQkFBSztJQUNsQixZQUFZLEVBQUUsdUJBQVk7SUFDMUIsZ0JBQWdCLEVBQUUsc0JBQVc7Q0FDOUIsQ0FBQztBQUVGLElBQUEsMkJBQWdCLEVBQUMsbUJBQVcsQ0FBQyxDQUFDO0FBRTlCLElBQVksWUFNWDtBQU5ELFdBQVksWUFBWTtJQUN0QixpQ0FBaUIsQ0FBQTtJQUNqQiwrQkFBZSxDQUFBO0lBQ2YsMkJBQVcsQ0FBQTtJQUNYLG1DQUFtQixDQUFBO0lBQ25CLDJCQUFXLENBQUE7QUFDYixDQUFDLEVBTlcsWUFBWSw0QkFBWixZQUFZLFFBTXZCO0FBRU0sTUFBTSxLQUFLLEdBQUcsQ0FBQyxHQUFpQixFQUFFLEVBQUUsQ0FBQyxnQkFBSyxDQUFDLFFBQVEsQ0FBQyxHQUFHLENBQUMsQ0FBQztBQUFuRCxRQUFBLEtBQUssU0FBOEM7QUFDbkQsUUFBQSxLQUFLLEdBQUcsSUFBQSxhQUFLLEVBQUMsWUFBWSxDQUFDLEdBQUcsQ0FBQyxDQUFDO0FBQ2hDLFFBQUEsU0FBUyxHQUFHLElBQUEsYUFBSyxFQUFDLFlBQVksQ0FBQyxPQUFPLENBQUMsQ0FBQztBQUN4QyxRQUFBLEtBQUssR0FBRyxJQUFBLGFBQUssRUFBQyxZQUFZLENBQUMsR0FBRyxDQUFDLENBQUM7QUFDaEMsUUFBQSxRQUFRLEdBQUcsSUFBQSxhQUFLLEVBQUMsWUFBWSxDQUFDLE1BQU0sQ0FBQyxDQUFDO0FBQ3RDLFFBQUEsT0FBTyxHQUFHLElBQUEsYUFBSyxFQUFDLFlBQVksQ0FBQyxLQUFLLENBQUMsQ0FBQztBQUVqRCxNQUFNLGFBQWEsR0FBRyxHQUFHLEVBQUU7SUFDekIsSUFBSSxnQkFBUTtRQUFFLE9BQU8sWUFBWSxDQUFDLE1BQU0sQ0FBQztJQUN6QyxJQUFJLGFBQUs7UUFBRSxPQUFPLFlBQVksQ0FBQyxHQUFHLENBQUM7SUFDbkMsSUFBSSxpQkFBUztRQUFFLE9BQU8sWUFBWSxDQUFDLE9BQU8sQ0FBQztJQUUzQyxJQUFJLGFBQUs7UUFBRSxPQUFPLFlBQVksQ0FBQyxHQUFHLENBQUM7SUFFbkMsT0FBTyxZQUFZLENBQUMsS0FBSyxDQUFDO0FBQzVCLENBQUMsQ0FBQztBQUVXLFFBQUEsVUFBVSxHQUFHLGFBQWEsRUFBRSxDQUFDO0FBRTFDLGtIQUFrSDtBQUMzRyxNQUFNLGVBQWUsR0FBRyxDQUFDLFNBQWlCLEVBQWdCLEVBQUU7SUFDakUsTUFBTSxTQUFTLEdBQUcsSUFBQSx3QkFBZSxFQUFDLFNBQVMsQ0FBQyxDQUFDO0lBQzdDLE1BQU0saUJBQWlCLEdBQUcsSUFBQSw2QkFBb0IsRUFBQyxTQUFTLENBQUMsQ0FBQztJQUUxRCxPQUFPO1FBQ0wsSUFBSSxFQUFFLFNBQVM7UUFDZixLQUFLLEVBQUUsRUFBRSxpQkFBaUIsRUFBRSxpQkFBaUIsRUFBRSxRQUFRLEVBQUUsdUJBQWUsRUFBRTtRQUMxRSxFQUFFLEVBQUUsTUFBTSxDQUFDLFdBQVcsQ0FBQSxrQkFBa0Isc0JBQWMsbUJBQW1CLGlCQUFpQix3Q0FBd0MsU0FBUyxFQUFFO0tBQzlJLENBQUM7QUFDSixDQUFDLENBQUM7QUFUVyxRQUFBLGVBQWUsbUJBUzFCO0FBRUssTUFBTSxxQkFBcUIsR0FBRyxDQUFDLEVBQ3BDLEtBQUssRUFDTCxJQUFJLEVBQ0osUUFBUSxHQUNRLEVBQUUsRUFBRTtJQUNwQixJQUFJLENBQUMsSUFBSSxJQUFJLENBQUMsUUFBUTtRQUNwQixPQUFPLE1BQU0sQ0FBQyxXQUFXLENBQUEsa0JBQWtCLHNCQUFjLG1CQUFtQixLQUFLLENBQUMsaUJBQWlCLEVBQUUsQ0FBQztTQUNuRyxJQUFJLElBQUksSUFBSSxRQUFRO1FBQ3ZCLE9BQU8sTUFBTSxDQUFDLFdBQVcsQ0FBQSxrQkFBa0Isc0JBQWMsbUJBQW1CLEtBQUssQ0FBQyxpQkFBaUIsY0FBYyxRQUFRLElBQUksSUFBSSxFQUFFLENBQUM7SUFFdEksTUFBTSxJQUFJLEtBQUssQ0FBQywyQkFBMkIsQ0FBQyxDQUFDO0FBQy9DLENBQUMsQ0FBQztBQVhXLFFBQUEscUJBQXFCLHlCQVdoQztBQVVLLE1BQU0scUJBQXFCLEdBQUcsQ0FBQyxFQUFVLEVBQTRCLEVBQUU7SUFDNUUsSUFBSSxDQUFDLEVBQUU7UUFBRSxPQUFPLFNBQVMsQ0FBQztJQUUxQixNQUFNLE9BQU8sR0FBRyxFQUFFLENBQUMsS0FBSyxDQUFDLEdBQUcsQ0FBQyxDQUFDO0lBQzlCLElBQUksSUFBSSxHQUFHLEVBQUUsQ0FBQztJQUNkLElBQUksU0FBUyxHQUFHLEVBQUUsQ0FBQztJQUNuQixJQUFJLGNBQWMsR0FBRyxFQUFFLENBQUM7SUFFeEIsT0FBTyxDQUFDLE9BQU8sQ0FBQyxDQUFDLENBQUMsRUFBRSxLQUFLLEVBQUUsRUFBRTtRQUMzQixJQUFJLENBQUMsS0FBSyxlQUFlO1lBQUUsY0FBYyxHQUFHLE9BQU8sQ0FBQyxLQUFLLEdBQUcsQ0FBQyxDQUFDLENBQUM7UUFDL0QsSUFBSSxDQUFDLEtBQUssZ0JBQWdCLElBQUksQ0FBQyxLQUFLLGdCQUFnQjtZQUNsRCxTQUFTLEdBQUcsT0FBTyxDQUFDLEtBQUssR0FBRyxDQUFDLENBQUMsQ0FBQztRQUNqQyxJQUFJLEtBQUssS0FBSyxPQUFPLENBQUMsTUFBTSxHQUFHLENBQUM7WUFBRSxJQUFJLEdBQUcsQ0FBQyxDQUFDO0lBQzdDLENBQUMsQ0FBQyxDQUFDO0lBRUgsT0FBTztRQUNMLElBQUk7UUFDSixFQUFFO1FBQ0YsS0FBSyxFQUFFLEVBQUUsaUJBQWlCLEVBQUUsU0FBUyxFQUFFLFFBQVEsRUFBRSx1QkFBZSxFQUFFO1FBQ2xFLGNBQWM7S0FDZixDQUFDO0FBQ0osQ0FBQyxDQUFDO0FBckJXLFFBQUEscUJBQXFCLHlCQXFCaEMifQ==
|
package/KeyVault/index.d.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
|
-
import { Input } from
|
|
2
|
-
import { BasicMonitorArgs, PrivateLinkProps } from
|
|
3
|
-
import { BasicResourceArgs } from
|
|
4
|
-
import { VaultAccessType } from
|
|
1
|
+
import { Input } from "@pulumi/pulumi";
|
|
2
|
+
import { BasicMonitorArgs, PrivateLinkProps } from "../types";
|
|
3
|
+
import { BasicResourceArgs } from "../types";
|
|
4
|
+
import { VaultAccessType } from "./VaultAccess";
|
|
5
5
|
interface Props extends BasicResourceArgs {
|
|
6
6
|
/**The default-encryption-key, tenant-id va subscription-id will be added to the secrets and keys*/
|
|
7
7
|
createDefaultValues?: boolean;
|
package/KeyVault/index.js
CHANGED
|
@@ -9,7 +9,7 @@ const PrivateEndpoint_1 = require("../VNet/PrivateEndpoint");
|
|
|
9
9
|
const CustomHelper_1 = require("./CustomHelper");
|
|
10
10
|
const VaultPermissions_1 = require("./VaultPermissions");
|
|
11
11
|
const VaultAccess_1 = require("./VaultAccess");
|
|
12
|
-
const
|
|
12
|
+
const Group_1 = require("../AzAd/Group");
|
|
13
13
|
exports.default = ({ name,
|
|
14
14
|
//nameConvention,
|
|
15
15
|
group, auth = {
|
|
@@ -39,8 +39,8 @@ group, auth = {
|
|
|
39
39
|
...others,
|
|
40
40
|
properties: {
|
|
41
41
|
tenantId: AzureEnv_1.tenantId,
|
|
42
|
-
sku: { name:
|
|
43
|
-
createMode:
|
|
42
|
+
sku: { name: "standard", family: "A" },
|
|
43
|
+
createMode: "default",
|
|
44
44
|
enableRbacAuthorization: true,
|
|
45
45
|
accessPolicies: undefined,
|
|
46
46
|
enablePurgeProtection: true,
|
|
@@ -50,7 +50,7 @@ group, auth = {
|
|
|
50
50
|
enabledForDiskEncryption: true,
|
|
51
51
|
networkAcls: network
|
|
52
52
|
? {
|
|
53
|
-
bypass:
|
|
53
|
+
bypass: "AzureServices",
|
|
54
54
|
defaultAction: types_1.enums.keyvault.NetworkRuleAction.Deny,
|
|
55
55
|
ipRules: network.ipAddresses
|
|
56
56
|
? network.ipAddresses.map((i) => ({ value: i }))
|
|
@@ -60,29 +60,33 @@ group, auth = {
|
|
|
60
60
|
: undefined,
|
|
61
61
|
}
|
|
62
62
|
: {
|
|
63
|
-
bypass:
|
|
63
|
+
bypass: "AzureServices",
|
|
64
64
|
defaultAction: types_1.enums.keyvault.NetworkRuleAction.Allow,
|
|
65
65
|
},
|
|
66
66
|
},
|
|
67
67
|
tags: AzureEnv_1.defaultTags,
|
|
68
68
|
});
|
|
69
69
|
//Grant RBAC permission
|
|
70
|
-
//if (auth?.enableRbac) {
|
|
71
70
|
(0, VaultPermissions_1.grantVaultRbacPermission)({
|
|
72
71
|
name: `${name}-ReadOnlyGroup`,
|
|
73
72
|
scope: resource.id,
|
|
74
73
|
objectId: readOnlyGroup.objectId,
|
|
75
|
-
permission:
|
|
76
|
-
principalType:
|
|
74
|
+
permission: "ReadOnly",
|
|
75
|
+
principalType: "Group",
|
|
77
76
|
});
|
|
78
77
|
(0, VaultPermissions_1.grantVaultRbacPermission)({
|
|
79
78
|
name: `${name}-AdminGroup`,
|
|
80
79
|
scope: resource.id,
|
|
81
80
|
objectId: adminGroup.objectId,
|
|
82
|
-
permission:
|
|
83
|
-
principalType:
|
|
81
|
+
permission: "ReadWrite",
|
|
82
|
+
principalType: "Group",
|
|
83
|
+
});
|
|
84
|
+
//Add current principal to the admin group
|
|
85
|
+
(0, Group_1.addUserToGroup)({
|
|
86
|
+
name: `${name}-current-principal-as-admin`,
|
|
87
|
+
objectId: AzureEnv_1.currentPrincipal,
|
|
88
|
+
groupObjectId: adminGroup.objectId,
|
|
84
89
|
});
|
|
85
|
-
//}
|
|
86
90
|
//To Vault Info
|
|
87
91
|
const toVaultInfo = () => ({ name: vaultName, group, id: resource.id });
|
|
88
92
|
//Add Diagnostic
|
|
@@ -90,7 +94,7 @@ group, auth = {
|
|
|
90
94
|
name,
|
|
91
95
|
targetResourceId: resource.id,
|
|
92
96
|
...logInfo,
|
|
93
|
-
logsCategories: [
|
|
97
|
+
logsCategories: ["AuditEvent"],
|
|
94
98
|
});
|
|
95
99
|
// Create Private Link
|
|
96
100
|
const createPrivateLink = (props) => (0, PrivateEndpoint_1.default)({
|
|
@@ -98,28 +102,23 @@ group, auth = {
|
|
|
98
102
|
group,
|
|
99
103
|
...props,
|
|
100
104
|
resourceId: resource.id,
|
|
101
|
-
privateDnsZoneName:
|
|
102
|
-
linkServiceGroupIds: [
|
|
105
|
+
privateDnsZoneName: "privatelink.vaultcore.azure.net",
|
|
106
|
+
linkServiceGroupIds: ["keyVault"],
|
|
103
107
|
});
|
|
104
108
|
if (createDefaultValues) {
|
|
105
109
|
const vaultInfo = toVaultInfo();
|
|
106
110
|
(0, CustomHelper_1.addCustomSecret)({
|
|
107
|
-
name:
|
|
111
|
+
name: "tenant-id",
|
|
108
112
|
value: AzureEnv_1.tenantId,
|
|
109
113
|
vaultInfo,
|
|
110
|
-
contentType:
|
|
114
|
+
contentType: "KeyVault Default Values",
|
|
111
115
|
dependsOn: resource,
|
|
112
116
|
});
|
|
113
117
|
(0, CustomHelper_1.addCustomSecret)({
|
|
114
|
-
name:
|
|
118
|
+
name: "subscription-id",
|
|
115
119
|
value: AzureEnv_1.subscriptionId,
|
|
116
120
|
vaultInfo,
|
|
117
|
-
contentType:
|
|
118
|
-
dependsOn: resource,
|
|
119
|
-
});
|
|
120
|
-
(0, Helper_1.addKey)({
|
|
121
|
-
name: 'default-encryption-key',
|
|
122
|
-
vaultInfo,
|
|
121
|
+
contentType: "KeyVault Default Values",
|
|
123
122
|
dependsOn: resource,
|
|
124
123
|
});
|
|
125
124
|
}
|
|
@@ -133,4 +132,4 @@ group, auth = {
|
|
|
133
132
|
createPrivateLink,
|
|
134
133
|
};
|
|
135
134
|
};
|
|
136
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
135
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@drunk-pulumi/azure",
|
|
3
|
-
"version": "0.0.
|
|
3
|
+
"version": "0.0.22",
|
|
4
4
|
"author": "drunkcoding@outlook.com",
|
|
5
5
|
"description": "The custom helpers pulumi-azure",
|
|
6
6
|
"license": "MIT",
|
|
@@ -17,7 +17,7 @@
|
|
|
17
17
|
"url": "https://github.com/baoduy/drunk-pulumi-azure.git"
|
|
18
18
|
},
|
|
19
19
|
"dependencies": {
|
|
20
|
-
"@drunk-pulumi/azure-providers": "^0.0.
|
|
20
|
+
"@drunk-pulumi/azure-providers": "^0.0.5",
|
|
21
21
|
"@pulumi/azure-native": "^2.32.0",
|
|
22
22
|
"@pulumi/azuread": "5.47.2",
|
|
23
23
|
"@pulumi/pulumi": "^3.111.1",
|