@drunk-pulumi/azure 0.0.41 → 0.0.43

package/Builder/ApimPolicyBuilder.js

@@ -0,0 +1,384 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const apim = __importStar(require("@pulumi/azure-native/apimanagement"));
+const StackEnv_1 = require("../Common/StackEnv");
+const Helper_1 = require("../VNet/Helper");
+const xml_formatter_1 = __importDefault(require("xml-formatter"));
+const types_1 = require("./types");
+class ApimPolicyBuilder {
+    props;
+    _baseUrl = undefined;
+    _rewriteUri = undefined;
+    _rateLimit = undefined;
+    _cacheOptions = undefined;
+    _backendCert = undefined;
+    _verifyClientCert = undefined;
+    _cors = undefined;
+    _validateJwtWhitelistIp = undefined;
+    _mockResponses = [];
+    _headers = [];
+    _checkHeaders = [];
+    _whitelistIps = [];
+    _findAndReplaces = [];
+    //private _inboundCustomPolicies: ApimCustomPolicyType[] = [];
+    //private _outboundCustomPolicies: ApimCustomPolicyType[] = [];
+    _inboundPolicies = [];
+    _outboundPolicies = [];
+    constructor(props) {
+        this.props = props;
+    }
+    setBaseUrl(props) {
+        this._baseUrl = props;
+        return this;
+    }
+    setHeader(props) {
+        this._headers.push(props);
+        return this;
+    }
+    checkHeader(props) {
+        this._checkHeaders.push(props);
+        return this;
+    }
+    mockResponse(props) {
+        this._mockResponses.push(props);
+        return this;
+    }
+    rewriteUri(props) {
+        this._rewriteUri = props;
+        return this;
+    }
+    setRateLimit(props) {
+        this._rateLimit = props;
+        return this;
+    }
+    setCacheOptions(props) {
+        this._cacheOptions = props;
+        return this;
+    }
+    setBackendCert(props) {
+        this._backendCert = props;
+        return this;
+    }
+    verifyClientCert(props) {
+        this._verifyClientCert = props;
+        return this;
+    }
+    setCors(props) {
+        this._cors = props;
+        return this;
+    }
+    setClientIpHeader(props) {
+        this._headers.push({
+            name: props.headerKey ?? `x-${StackEnv_1.organization}-clientIp`,
+            value: "@(context.Request.IpAddress)",
+            type: types_1.SetHeaderTypes.override,
+        });
+        return this;
+    }
+    /** Filter IP from Bearer Token */
+    validateJwtWhitelistIp(props) {
+        this._validateJwtWhitelistIp = props;
+        return this;
+    }
+    /** IP Address Whitelisting */
+    setWhitelistIPs(props) {
+        this._whitelistIps.push(props);
+        return this;
+    }
+    /**Replace outbound results */
+    setFindAndReplaces(props) {
+        this._findAndReplaces.push(props);
+        return this;
+    }
+    //Custom Policies
+    // public withInboundPolicy(props: ApimCustomPolicyType): IApimPolicyBuilder {
+    //   this._inboundCustomPolicies.push(props);
+    //   return this;
+    // }
+    // public withOutPolicy(props: ApimCustomPolicyType): IApimPolicyBuilder {
+    //   this._outboundCustomPolicies.push(props);
+    //   return this;
+    // }
+    buildBaseUrl() {
+        if (!this._baseUrl)
+            return;
+        this._inboundPolicies.push(`<set-backend-service base-url="${this._baseUrl.url}" />`);
+    }
+    buildHeaders() {
+        this._inboundPolicies.push(...this._headers.map((h) => {
+            let rs = `<set-header name="${h.name}" exists-action="${h.type}">`;
+            if (h.value) {
+                rs += ` <value>${h.value}</value>`;
+            }
+            rs += "</set-header>";
+            return rs;
+        }));
+    }
+    buildCheckHeaders() {
+        this._inboundPolicies.push(...this._checkHeaders.map((ch) => `<check-header name="${ch.name}" failed-check-httpcode="401" failed-check-error-message="The header ${ch.name} is not found" ignore-case="true">
+    ${ch.value ? ch.value.map((v) => `<value>${v}</value>`).join("\n") : ""}
+</check-header>`));
+    }
+    buildMockResponse() {
+        this._inboundPolicies.push(...this._mockResponses.map((m) => `<mock-response status-code="${m.code ?? 200}" content-type="${m.contentType ?? "application/json"}" />`));
+    }
+    buildRewriteUri() {
+        if (!this._rewriteUri)
+            return;
+        this._inboundPolicies.push(`<rewrite-uri template="${this._rewriteUri.template ?? "/"}" />`);
+    }
+    buildRateLimit() {
+        if (!this._rateLimit)
+            return;
+        this._inboundPolicies.push(this._rateLimit.successConditionOnly
+            ? `<rate-limit-by-key calls="${this._rateLimit.calls ?? 10}" renewal-period="${this._rateLimit.inSecond ?? 10}" counter-key="@(context.Request.IpAddress)" increment-condition="@(context.Response.StatusCode &gt;= 200 &amp;&amp; context.Response.StatusCode &lt; 300)" />`
+            : `<rate-limit-by-key calls="${this._rateLimit.calls ?? 10}" renewal-period="${this._rateLimit.inSecond ?? 10}" counter-key="@(context.Request.IpAddress)" />`);
+    }
+    buildCacheOptions() {
+        if (!this._cacheOptions)
+            return;
+        this._inboundPolicies.push(`<cache-lookup vary-by-developer="false" 
+            vary-by-developer-groups="false" 
+            allow-private-response-caching="true" 
+            must-revalidate="true" 
+            downstream-caching-type="public" />`);
+        this._outboundPolicies.push(`<cache-store duration="${this._cacheOptions.duration ?? 60}" />`);
+    }
+    buildBackendCert() {
+        if (!this._backendCert)
+            return;
+        this._inboundPolicies.push(`<authentication-certificate thumbprint="${this._backendCert.thumbprint}" />`);
+    }
+    buildVerifyClientCert() {
+        if (!this._verifyClientCert)
+            return;
+        this._inboundPolicies.push(`<choose>
+        <when condition="@(context.Request.Certificate == null${this._verifyClientCert.verifyCert
+            ? " || !context.Request.Certificate.VerifyNoRevocation()"
+            : ""}${this._verifyClientCert.issuer
+            ? ` || context.Request.Certificate.Issuer != "${this._verifyClientCert.issuer}"`
+            : ""}${this._verifyClientCert.subject
+            ? ` || context.Request.Certificate.SubjectName.Name != "${this._verifyClientCert.subject}"`
+            : ""}${this._verifyClientCert.thumbprint
+            ? ` || context.Request.Certificate.Thumbprint != "${this._verifyClientCert.thumbprint}"`
+            : ""})" >
+          <return-response>
+            <set-status code="403" reason="Invalid client certificate" />
+          </return-response>
+      </when>
+    </choose>`);
+    }
+    buildCors() {
+        if (!this._cors)
+            return;
+        const orgs = this._cors.origins
+            ? this._cors.origins.map((o) => `<origin>${o}</origin>`)
+            : ["<origin>*</origin>"];
+        const cors = `<cors allow-credentials="${Array.isArray(this._cors.origins)}">
+    <allowed-origins>
+        ${orgs.join("\n")}
+    </allowed-origins>
+    <allowed-methods preflight-result-max-age="300">
+        <method>*</method>
+    </allowed-methods>
+    <allowed-headers>
+        <header>*</header>
+    </allowed-headers>
+</cors>`;
+        this._inboundPolicies.push(cors);
+    }
+    buildValidateJwtWhitelistIp() {
+        if (!this._validateJwtWhitelistIp)
+            return;
+        const claimKey = this._validateJwtWhitelistIp.claimKey ?? "client_IpWhitelist";
+        const setHeader = `<set-header name="IpAddressValidation" exists-action="override">
+      <value>@{
+		Boolean ipAddressValid = false;
+		string authHeader = context.Request.Headers.GetValueOrDefault("Authorization", "");
+		if (authHeader?.Length > 0)
+		{
+			string[] authHeaderParts = authHeader.Split(' ');
+			if (authHeaderParts?.Length == 2 && authHeaderParts[0].Equals("Bearer", StringComparison.InvariantCultureIgnoreCase))
+			{
+				if (authHeaderParts[1].TryParseJwt(out Jwt jwt))
+				{
+					var ipsWhitelist = jwt.Claims.GetValueOrDefault("${claimKey}", "");
+                    IEnumerable<string> ips = ipsWhitelist
+                        .Split(new char[] { ';', ',' }, StringSplitOptions.RemoveEmptyEntries)
+                        .Select(p => p.Trim());
+              
+                    if(string.IsNullOrEmpty(ipsWhitelist) || ips.Contains(context.Request.IpAddress))
+                    {
+                        ipAddressValid = true;
+                    }
+			    }
+			}
+        }
+        else
+        {
+           ipAddressValid = true;
+        }
+				
+        return ipAddressValid.ToString();
+      }</value>
+  </set-header>`;
+        const checkHeader = `<choose>
+		<when condition="@(context.Request.Headers.GetValueOrDefault("IpAddressValidation", "").Equals(Boolean.FalseString))">
+        <return-response>
+            <set-status code="403" reason="Forbidden"/>
+              <set-body>@{
+                return new JObject(
+                  new JProperty("message","The IP does not match.")
+                ).ToString();
+              }</set-body>
+        </return-response>
+		 </when>
+</choose>`;
+        //Create Policy Fragment
+        const pfName = `${this.props.name}-PolicyFragment`;
+        new apim.PolicyFragment(pfName, {
+            id: pfName,
+            description: pfName,
+            serviceName: this.props.apimServiceName,
+            resourceGroupName: this.props.group.resourceGroupName,
+            format: "xml",
+            value: (0, xml_formatter_1.default)(`
+        <fragment>
+            ${setHeader}
+            ${checkHeader}
+        </fragment>
+      `),
+        });
+        this._inboundPolicies.push(`<include-fragment fragment-id="${pfName}" />`);
+    }
+    buildWhiteListIps() {
+        if (this._whitelistIps.length <= 0)
+            return;
+        const ipAddresses = this._whitelistIps.flatMap((ip) => ip.ipAddresses);
+        const policy = `<ip-filter action="allow">\r\n${ipAddresses
+            .map((ip) => {
+            if (ip.includes("/")) {
+                const range = (0, Helper_1.getIpsRange)(ip);
+                return `<address-range from="${range.first}" to="${range.last}" />`;
+            }
+            return `<address>${ip}</address>`;
+        })
+            .join("\r\n")}
+        </ip-filter>`;
+        this._inboundPolicies.push(policy);
+    }
+    buildFindAndReplace() {
+        if (!this._findAndReplaces)
+            return;
+        this._outboundPolicies.push(...this._findAndReplaces
+            .map((f) => `<find-and-replace from="${f.from}" to="${f.to}" />`)
+            .join("\n"));
+    }
+    // private buildCustomRules() {
+    //   if (this._inboundCustomPolicies) {
+    //     this._inboundPolicies.push(
+    //       ...this._inboundCustomPolicies.map((i) => i.policy),
+    //     );
+    //   }
+    //   if (this._outboundPolicies) {
+    //     this._outboundPolicies.push(
+    //       ...this._outboundCustomPolicies.map((i) => i.policy),
+    //     );
+    //   }
+    // }
+    build() {
+        this.buildHeaders();
+        this.buildBaseUrl();
+        this.buildRewriteUri();
+        this.buildCacheOptions();
+        this.buildMockResponse();
+        this.buildRateLimit();
+        this.buildBackendCert();
+        this.buildCors();
+        this.buildValidateJwtWhitelistIp();
+        this.buildWhiteListIps();
+        this.buildCheckHeaders();
+        this.buildFindAndReplace();
+        //this.buildCustomRules();
+        //This must be a last rule
+        this.buildVerifyClientCert();
+        let backend = "<base />";
+        if (!this._mockResponses) {
+            backend =
+                '<forward-request timeout="120" follow-redirects="true" buffer-request-body="true" fail-on-error-status-code="true"/>';
+        }
+        const xmlPolicy = `<policies>
+  <inbound>
+      <base />
+      ${this._inboundPolicies.join("\n")}
+  </inbound>
+  <backend>
+      ${backend}
+  </backend>
+  <outbound>
+      <base />
+      <set-header name="Strict-Transport-Security" exists-action="override">    
+          <value>max-age=15724800; includeSubDomains</value>    
+      </set-header>    
+      <set-header name="X-XSS-Protection" exists-action="override">    
+          <value>1; mode=block</value>    
+      </set-header>    
+      <set-header name="Content-Security-Policy" exists-action="override">    
+          <value>default-src 'self' data: 'unsafe-inline' 'unsafe-eval'</value>    
+      </set-header>    
+      <set-header name="X-Frame-Options" exists-action="override">    
+          <value>Deny</value>    
+      </set-header>    
+      <set-header name="X-Content-Type-Options" exists-action="override">    
+          <value>nosniff</value>    
+      </set-header>    
+      <set-header name="Expect-Ct" exists-action="override">    
+          <value>max-age=604800,enforce</value>    
+      </set-header>    
+      <set-header name="Cache-Control" exists-action="override">    
+          <value>none</value>    
+      </set-header>    
+      <set-header name="X-Powered-By" exists-action="delete" />    
+      <set-header name="X-AspNet-Version" exists-action="delete" />
+      
+      ${this._outboundPolicies.join("\n")}
+  </outbound>
+  <on-error>
+      <base />
+  </on-error>
+</policies>`;
+        return (0, xml_formatter_1.default)(xmlPolicy, {
+            strictMode: true,
+            throwOnFailure: true,
+            forceSelfClosingEmptyTag: true,
+        });
+    }
+}
+exports.default = ApimPolicyBuilder;
+//# sourceMappingURL=data:application/json;base64,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

package/Builder/ApimProductBuilder.d.ts

@@ -0,0 +1,21 @@
+import { ResourceInfo } from "../types";
+import { APimApiBuilderFunction, ApimApiPolicyType, ApimChildBuilderProps, ApimProductSubscriptionBuilderType, BuilderAsync, IApimProductBuilder, IBuilderAsync } from "./types";
+export declare class ApimProductBuilder extends BuilderAsync<ResourceInfo> implements IApimProductBuilder {
+    private props;
+    private _apis;
+    private _requiredSubscription;
+    private _productInstance;
+    private _subInstance;
+    private _productInstanceName;
+    private _policyString;
+    private _state;
+    constructor(props: ApimChildBuilderProps);
+    withPolicies(props: ApimApiPolicyType): IApimProductBuilder;
+    requiredSubscription(props: ApimProductSubscriptionBuilderType): IApimProductBuilder;
+    withApi(props: APimApiBuilderFunction): IApimProductBuilder;
+    published(): IBuilderAsync<ResourceInfo>;
+    private buildProduct;
+    private buildSubscription;
+    private buildApis;
+    build(): Promise<ResourceInfo>;
+}

package/Builder/ApimProductBuilder.js

@@ -0,0 +1,153 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApimProductBuilder = void 0;
+const apim = __importStar(require("@pulumi/azure-native/apimanagement"));
+const pulumi_1 = require("@pulumi/pulumi");
+const Naming_1 = require("../Common/Naming");
+const Random_1 = require("../Core/Random");
+const CustomHelper_1 = require("../KeyVault/CustomHelper");
+const ApimApiBuilder_1 = __importDefault(require("./ApimApiBuilder"));
+const ApimPolicyBuilder_1 = __importDefault(require("./ApimPolicyBuilder"));
+const types_1 = require("./types");
+class ApimProductBuilder extends types_1.BuilderAsync {
+    props;
+    _apis = [];
+    _requiredSubscription = undefined;
+    _productInstance = undefined;
+    _subInstance = undefined;
+    _productInstanceName;
+    _policyString;
+    _state = "notPublished";
+    constructor(props) {
+        super(props);
+        this.props = props;
+        this._productInstanceName = `${props.name}-product`;
+        //Empty Policy
+        this._policyString = new ApimPolicyBuilder_1.default({
+            ...props,
+            name: this._productInstanceName,
+        }).build();
+    }
+    withPolicies(props) {
+        this._policyString = props(new ApimPolicyBuilder_1.default({ ...this.props, name: this._productInstanceName })).build();
+        return this;
+    }
+    requiredSubscription(props) {
+        this._requiredSubscription = props;
+        return this;
+    }
+    withApi(props) {
+        this._apis.push(props);
+        return this;
+    }
+    published() {
+        this._state = "published";
+        return this;
+    }
+    buildProduct() {
+        this._productInstance = new apim.Product(this._productInstanceName, {
+            productId: this._productInstanceName,
+            displayName: this._productInstanceName,
+            description: this._productInstanceName,
+            serviceName: this.props.apimServiceName,
+            resourceGroupName: this.props.group.resourceGroupName,
+            state: this._state,
+            subscriptionRequired: Boolean(this._requiredSubscription),
+            approvalRequired: this._requiredSubscription
+                ? this._requiredSubscription?.approvalRequired
+                : undefined,
+            subscriptionsLimit: this._requiredSubscription?.subscriptionsLimit ?? 5,
+        });
+        if (this._policyString) {
+            new apim.ProductPolicy(`${this._productInstanceName}-policy`, {
+                serviceName: this.props.apimServiceName,
+                resourceGroupName: this.props.group.resourceGroupName,
+                productId: this._productInstanceName,
+                format: "xml",
+                policyId: "policy",
+                value: this._policyString,
+            });
+        }
+    }
+    buildSubscription() {
+        if (!this._productInstance)
+            return;
+        const subName = `${this.props.name}-sub`;
+        const primaryKey = (0, Naming_1.getPasswordName)(subName, "primary");
+        const secondaryKey = (0, Naming_1.getPasswordName)(subName, "secondary");
+        const primaryPass = (0, Random_1.randomPassword)({ name: primaryKey }).result;
+        const secondaryPass = (0, Random_1.randomPassword)({ name: secondaryKey }).result;
+        this._subInstance = new apim.Subscription(subName, {
+            sid: subName,
+            displayName: subName,
+            serviceName: this.props.apimServiceName,
+            resourceGroupName: this.props.group.resourceGroupName,
+            scope: (0, pulumi_1.interpolate) `/products/${this._productInstance.id}`,
+            primaryKey: primaryPass,
+            secondaryKey: secondaryPass,
+        }, { dependsOn: this._productInstance });
+        (0, CustomHelper_1.addCustomSecret)({
+            name: primaryKey,
+            formattedName: true,
+            value: primaryPass,
+            contentType: subName,
+            vaultInfo: this.props.vaultInfo,
+            dependsOn: this._subInstance,
+        });
+        (0, CustomHelper_1.addCustomSecret)({
+            name: secondaryKey,
+            formattedName: true,
+            value: secondaryPass,
+            contentType: subName,
+            vaultInfo: this.props.vaultInfo,
+            dependsOn: this._subInstance,
+        });
+    }
+    async buildApis() {
+        const tasks = this._apis.map((api) => api(new ApimApiBuilder_1.default({
+            ...this.props,
+            productId: this._productInstanceName,
+            requiredSubscription: Boolean(this._requiredSubscription),
+            dependsOn: this._productInstance,
+        })).build());
+        await Promise.all(tasks);
+    }
+    async build() {
+        this.buildProduct();
+        this.buildSubscription();
+        await this.buildApis();
+        return {
+            resourceName: this._productInstanceName,
+            group: this.props.group,
+            id: this._productInstance.id,
+        };
+    }
+}
+exports.ApimProductBuilder = ApimProductBuilder;
+//# sourceMappingURL=data:application/json;base64,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

package/Builder/ApimRootBuilder.d.ts

@@ -0,0 +1,9 @@
+import { ResourceInfo } from "../types";
+import { BuilderProps, IApimProductBuilder, IApimWorkspaceBuilder } from "./types";
+export default class ApimRootBuilder {
+    private props;
+    private constructor();
+    static from(apimInfo: ResourceInfo, props: Omit<BuilderProps, "group" | "name">): ApimRootBuilder;
+    newProduct(name: string): IApimProductBuilder;
+    newWorkspace(name: string): IApimWorkspaceBuilder;
+}

package/Builder/ApimRootBuilder.js

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const ApimProductBuilder_1 = require("./ApimProductBuilder");
+const ApimWorkspaceBuilder_1 = require("./ApimWorkspaceBuilder");
+class ApimRootBuilder {
+    props;
+    constructor(props) {
+        this.props = props;
+    }
+    static from(apimInfo, props) {
+        return new ApimRootBuilder({
+            ...props,
+            name: apimInfo.resourceName,
+            apimServiceName: apimInfo.resourceName,
+            group: apimInfo.group,
+        });
+    }
+    newProduct(name) {
+        return new ApimProductBuilder_1.ApimProductBuilder({ ...this.props, name });
+    }
+    newWorkspace(name) {
+        return new ApimWorkspaceBuilder_1.ApimWorkspaceBuilder({ ...this.props, name });
+    }
+}
+exports.default = ApimRootBuilder;
+//# sourceMappingURL=data:application/json;base64,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

package/Builder/ApimWorkspaceBuilder.d.ts

@@ -0,0 +1,10 @@
+import { ResourceInfo } from "../types";
+import { ApimChildBuilderProps, Builder, IApimWorkspaceBuilder } from "./types";
+export declare class ApimWorkspaceBuilder extends Builder<ResourceInfo> implements IApimWorkspaceBuilder {
+    private props;
+    private _wpInstanceName;
+    private _wpInstance;
+    constructor(props: ApimChildBuilderProps);
+    private buildWp;
+    build(): ResourceInfo;
+}