@drunk-pulumi/azure 1.0.24 → 1.0.26
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/Aks/Helper.d.ts +4 -6
- package/Aks/Helper.js +13 -18
- package/Aks/Identity.js +3 -3
- package/Aks/index.js +4 -7
- package/AzAd/EnvRoles/EnvRoles.Consts.d.ts +6 -0
- package/AzAd/EnvRoles/EnvRoles.Consts.js +178 -0
- package/AzAd/{EnvRoles.d.ts → EnvRoles/EnvRoles.d.ts} +1 -9
- package/AzAd/EnvRoles/EnvRoles.js +91 -0
- package/AzAd/Group.d.ts +2 -2
- package/AzAd/Group.js +3 -3
- package/AzAd/Helper.js +6 -66
- package/AzAd/Identities/AzDevOpsIdentity.js +4 -5
- package/AzAd/Identities/AzDevOpsManagedIdentity.js +1 -1
- package/AzAd/Identities/AzUserAdRevertSync.js +3 -3
- package/AzAd/Identity.js +1 -2
- package/AzAd/{GraphDefinition.js → Roles/GraphDefinition.js} +1 -1
- package/AzAd/Roles/Role.d.ts +16 -0
- package/AzAd/Roles/Role.js +31 -0
- package/AzAd/{RoleAssignment.d.ts → Roles/RoleAssignment.d.ts} +1 -1
- package/AzAd/{RoleAssignment.js → Roles/RoleAssignment.js} +2 -2
- package/AzAd/{RolesBuiltIn.js → Roles/RolesBuiltIn.js} +1 -1
- package/AzAd/Roles/index.d.ts +3 -0
- package/AzAd/Roles/index.js +22 -0
- package/AzAd/UserAssignedIdentity.js +1 -2
- package/AzAd/index.d.ts +10 -0
- package/AzAd/{Identities/index.js → index.js} +14 -5
- package/Builder/AksBuilder.js +3 -3
- package/Builder/ApimProductBuilder.js +1 -2
- package/Builder/DnsZoneBuilder.js +2 -3
- package/Builder/EnvRoleBuilder.d.ts +4 -23
- package/Builder/EnvRoleBuilder.js +8 -9
- package/Builder/PrivateDnsZoneBuilder.d.ts +1 -1
- package/Builder/PrivateDnsZoneBuilder.js +11 -6
- package/Builder/ResourceBuilder.js +3 -3
- package/Builder/ServiceBusBuilder.js +3 -3
- package/Builder/StorageBuilder.js +6 -1
- package/Builder/types/envRoleBuilder.d.ts +1 -3
- package/Builder/types/resourceBuilder.d.ts +1 -3
- package/Builder/types/storageBuilder.d.ts +1 -0
- package/Cdn/index.d.ts +1 -1
- package/Cdn/index.js +2 -2
- package/Common/AzureEnv/AutoTags.js +27 -0
- package/Common/{AzureEnv.js → AzureEnv/index.js} +3 -3
- package/Common/{LocationBuiltIn.js → Location/LocationBuiltIn.js} +1 -1
- package/Common/Location/index.js +36 -0
- package/Common/{Naming/Rulers.d.ts → Naming.d.ts} +13 -3
- package/Common/Naming.js +398 -0
- package/Common/RsInfo/Helper.js +8 -6
- package/Common/index.d.ts +1 -4
- package/Common/index.js +7 -7
- package/Core/KeyGenerators.js +4 -5
- package/Core/Random.js +2 -3
- package/KeyVault/CustomHelper.d.ts +1 -3
- package/KeyVault/CustomHelper.js +27 -3
- package/KeyVault/Helper.d.ts +5 -8
- package/KeyVault/Helper.js +35 -61
- package/Logs/AppInsight.js +1 -2
- package/Logs/Helpers.js +1 -3
- package/Logs/LogAnalytics.js +1 -2
- package/README.md +37 -29
- package/Sql/index.js +3 -3
- package/Storage/Helper.js +5 -6
- package/Storage/index.js +15 -14
- package/VM/index.js +1 -2
- package/VNet/PrivateEndpoint.d.ts +41 -3
- package/VNet/PrivateEndpoint.js +66 -57
- package/VNet/index.d.ts +1 -11
- package/VNet/index.js +5 -17
- package/envHelper.d.ts +4 -0
- package/envHelper.js +62 -0
- package/package.json +1 -1
- package/types.d.ts +22 -8
- package/AzAd/ConditionalPolicies/index.d.ts +0 -0
- package/AzAd/ConditionalPolicies/index.js +0 -2
- package/AzAd/EnvRoles.Consts.d.ts +0 -22
- package/AzAd/EnvRoles.Consts.js +0 -173
- package/AzAd/EnvRoles.js +0 -94
- package/AzAd/Identities/index.d.ts +0 -4
- package/AzAd/Role.d.ts +0 -17
- package/AzAd/Role.js +0 -30
- package/Common/AutoTags.js +0 -27
- package/Common/GlobalEnv.d.ts +0 -3
- package/Common/GlobalEnv.js +0 -29
- package/Common/Location.js +0 -36
- package/Common/Naming/Rulers.js +0 -537
- package/Common/Naming/index.d.ts +0 -10
- package/Common/Naming/index.js +0 -112
- /package/AzAd/{GraphDefinition.d.ts → Roles/GraphDefinition.d.ts} +0 -0
- /package/AzAd/{RolesBuiltIn.d.ts → Roles/RolesBuiltIn.d.ts} +0 -0
- /package/Common/{AutoTags.d.ts → AzureEnv/AutoTags.d.ts} +0 -0
- /package/Common/{AzureEnv.d.ts → AzureEnv/index.d.ts} +0 -0
- /package/Common/{LocationBuiltIn.d.ts → Location/LocationBuiltIn.d.ts} +0 -0
- /package/Common/{Location.d.ts → Location/index.d.ts} +0 -0
package/AzAd/Helper.js
CHANGED
|
@@ -5,11 +5,11 @@ const Common_1 = require("../Common");
|
|
|
5
5
|
const Helper_1 = require("../KeyVault/Helper");
|
|
6
6
|
const pulumi_1 = require("@pulumi/pulumi");
|
|
7
7
|
const getIdentitySecretNames = (name) => ({
|
|
8
|
-
objectIdName:
|
|
9
|
-
clientIdKeyName:
|
|
10
|
-
clientSecretKeyName:
|
|
11
|
-
principalIdKeyName:
|
|
12
|
-
principalSecretKeyName:
|
|
8
|
+
objectIdName: `${name}-object-id`,
|
|
9
|
+
clientIdKeyName: `${name}-client-id`,
|
|
10
|
+
clientSecretKeyName: `${name}-client-secret`,
|
|
11
|
+
principalIdKeyName: `${name}-principal-id`,
|
|
12
|
+
principalSecretKeyName: `${name}-principal-secret`,
|
|
13
13
|
});
|
|
14
14
|
exports.getIdentitySecretNames = getIdentitySecretNames;
|
|
15
15
|
const getIdentityInfo = async ({ name, vaultInfo, includePrincipal, }) => {
|
|
@@ -37,79 +37,19 @@ const getIdentityInfo = async ({ name, vaultInfo, includePrincipal, }) => {
|
|
|
37
37
|
exports.getIdentityInfo = getIdentityInfo;
|
|
38
38
|
const getIdentityInfoOutput = (props) => (0, pulumi_1.output)((0, exports.getIdentityInfo)(props));
|
|
39
39
|
exports.getIdentityInfoOutput = getIdentityInfoOutput;
|
|
40
|
-
// const grantIdentityToResourceRoles = ({
|
|
41
|
-
// name,
|
|
42
|
-
// roles,
|
|
43
|
-
// principalId,
|
|
44
|
-
// }: WithNamedType & {
|
|
45
|
-
// roles: Array<{ name: string; scope: Input<string> }>;
|
|
46
|
-
// principalId: Input<string>;
|
|
47
|
-
// }) =>
|
|
48
|
-
// roles.map((r) =>
|
|
49
|
-
// roleAssignment({
|
|
50
|
-
// name,
|
|
51
|
-
// roleName: r.name,
|
|
52
|
-
// principalId: principalId,
|
|
53
|
-
// principalType: 'ServicePrincipal',
|
|
54
|
-
// scope: r.scope,
|
|
55
|
-
// }),
|
|
56
|
-
// );
|
|
57
|
-
// const grantIdentityEnvRolesGroup = ({
|
|
58
|
-
// name,
|
|
59
|
-
// roleType,
|
|
60
|
-
// vaultInfo,
|
|
61
|
-
// principalId,
|
|
62
|
-
// }: Required<NamedWithVaultType> & {
|
|
63
|
-
// roleType: EnvRoleKeyTypes;
|
|
64
|
-
// principalId: Input<string>;
|
|
65
|
-
// }) => {
|
|
66
|
-
// const role = output(getEnvRole(roleType, vaultInfo));
|
|
67
|
-
// return role.apply((r) => {
|
|
68
|
-
// if (!role.objectId) return;
|
|
69
|
-
// return addMemberToGroup({
|
|
70
|
-
// name,
|
|
71
|
-
// objectId: principalId,
|
|
72
|
-
// groupObjectId: r.objectId,
|
|
73
|
-
// });
|
|
74
|
-
// });
|
|
75
|
-
// };
|
|
76
|
-
// export const grantIdentityPermissions = ({
|
|
77
|
-
// name,
|
|
78
|
-
// principalId,
|
|
79
|
-
// vaultInfo,
|
|
80
|
-
// role,
|
|
81
|
-
// }: IdentityRoleAssignment &
|
|
82
|
-
// WithNamedType & {
|
|
83
|
-
// principalId: Input<string>;
|
|
84
|
-
// }) => {
|
|
85
|
-
// // if (roles) {
|
|
86
|
-
// // grantIdentityToResourceRoles({ name, roles, principalId });
|
|
87
|
-
// // }
|
|
88
|
-
// if (role && vaultInfo) {
|
|
89
|
-
// grantIdentityEnvRolesGroup({
|
|
90
|
-
// name,
|
|
91
|
-
// roleType: role,
|
|
92
|
-
// principalId,
|
|
93
|
-
// vaultInfo,
|
|
94
|
-
// });
|
|
95
|
-
// }
|
|
96
|
-
// };
|
|
97
40
|
const getUserAssignedIdentityInfo = (name, vaultInfo) => {
|
|
98
41
|
name = Common_1.naming.getUIDName(name);
|
|
99
42
|
const id = (0, pulumi_1.output)((0, Helper_1.getSecret)({
|
|
100
43
|
name: `${name}-id`,
|
|
101
44
|
vaultInfo,
|
|
102
|
-
nameFormatted: true,
|
|
103
45
|
}));
|
|
104
46
|
const clientId = (0, pulumi_1.output)((0, Helper_1.getSecret)({
|
|
105
47
|
name: `${name}-clientId`,
|
|
106
48
|
vaultInfo,
|
|
107
|
-
nameFormatted: true,
|
|
108
49
|
}));
|
|
109
50
|
const principalId = (0, pulumi_1.output)((0, Helper_1.getSecret)({
|
|
110
51
|
name: `${name}-principalId`,
|
|
111
52
|
vaultInfo,
|
|
112
|
-
nameFormatted: true,
|
|
113
53
|
}));
|
|
114
54
|
return {
|
|
115
55
|
id: id?.apply((i) => i?.value),
|
|
@@ -118,4 +58,4 @@ const getUserAssignedIdentityInfo = (name, vaultInfo) => {
|
|
|
118
58
|
};
|
|
119
59
|
};
|
|
120
60
|
exports.getUserAssignedIdentityInfo = getUserAssignedIdentityInfo;
|
|
121
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
61
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -6,9 +6,8 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
6
6
|
exports.getAdoIdentityInfo = exports.defaultAzAdoName = void 0;
|
|
7
7
|
const Common_1 = require("../../Common");
|
|
8
8
|
const Identity_1 = __importDefault(require("../Identity"));
|
|
9
|
-
const
|
|
9
|
+
const Roles_1 = require("../Roles");
|
|
10
10
|
const Helper_1 = require("../Helper");
|
|
11
|
-
const RoleAssignment_1 = require("../RoleAssignment");
|
|
12
11
|
exports.defaultAzAdoName = 'azure-devops';
|
|
13
12
|
/** Get Global ADO Identity */
|
|
14
13
|
const getAdoIdentityInfo = (vaultInfo) => (0, Helper_1.getIdentityInfoOutput)({
|
|
@@ -20,7 +19,7 @@ exports.getAdoIdentityInfo = getAdoIdentityInfo;
|
|
|
20
19
|
/** Create Global ADO Identity */
|
|
21
20
|
exports.default = ({ name = exports.defaultAzAdoName, vaultInfo, isSubOwner, ...others }) => {
|
|
22
21
|
const roleName = isSubOwner ? 'Owner' : 'Contributor';
|
|
23
|
-
const graphAccess = (0,
|
|
22
|
+
const graphAccess = (0, Roles_1.getGraphPermissions)({ name: 'User.Read', type: 'Scope' });
|
|
24
23
|
const ado = (0, Identity_1.default)({
|
|
25
24
|
name,
|
|
26
25
|
appType: 'web',
|
|
@@ -30,7 +29,7 @@ exports.default = ({ name = exports.defaultAzAdoName, vaultInfo, isSubOwner, ...
|
|
|
30
29
|
vaultInfo,
|
|
31
30
|
...others,
|
|
32
31
|
});
|
|
33
|
-
(0,
|
|
32
|
+
(0, Roles_1.roleAssignment)({
|
|
34
33
|
name,
|
|
35
34
|
scope: Common_1.defaultSubScope,
|
|
36
35
|
dependsOn: ado.instance,
|
|
@@ -41,4 +40,4 @@ exports.default = ({ name = exports.defaultAzAdoName, vaultInfo, isSubOwner, ...
|
|
|
41
40
|
console.log(`Add this principal ${name} to [User administrator, Application administrator, Cloud application administrator and Global Reader] of Azure AD to allow to Add/Update and Delete Groups, Users`);
|
|
42
41
|
return ado;
|
|
43
42
|
};
|
|
44
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
43
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -12,4 +12,4 @@ exports.default = ({ name = AzDevOpsIdentity_1.defaultAzAdoName, envRoles, ...ot
|
|
|
12
12
|
});
|
|
13
13
|
envRoles?.addMember('admin', identity.principalId);
|
|
14
14
|
};
|
|
15
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
15
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -4,9 +4,9 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
4
4
|
};
|
|
5
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
6
|
const Identity_1 = __importDefault(require("../Identity"));
|
|
7
|
-
const
|
|
7
|
+
const Roles_1 = require("../Roles");
|
|
8
8
|
exports.default = ({ name, ...others }) => {
|
|
9
|
-
const graphAccess = (0,
|
|
9
|
+
const graphAccess = (0, Roles_1.getGraphPermissions)({ name: 'User.Read.All', type: 'Role' }, { name: 'Group.Read.All', type: 'Role' });
|
|
10
10
|
return (0, Identity_1.default)({
|
|
11
11
|
name,
|
|
12
12
|
appType: 'api',
|
|
@@ -16,4 +16,4 @@ exports.default = ({ name, ...others }) => {
|
|
|
16
16
|
...others,
|
|
17
17
|
});
|
|
18
18
|
};
|
|
19
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
19
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/AzAd/Identity.js
CHANGED
|
@@ -76,7 +76,6 @@ exports.default = ({ name, owners, createClientSecret = false, createPrincipal =
|
|
|
76
76
|
(0, CustomHelper_1.addCustomSecrets)({
|
|
77
77
|
vaultInfo,
|
|
78
78
|
contentType: 'Identity',
|
|
79
|
-
formattedName: true,
|
|
80
79
|
items: [
|
|
81
80
|
{ name: secretNames.objectIdName, value: app.objectId },
|
|
82
81
|
{ name: secretNames.clientIdKeyName, value: app.clientId },
|
|
@@ -136,4 +135,4 @@ exports.default = ({ name, owners, createClientSecret = false, createPrincipal =
|
|
|
136
135
|
instance: app,
|
|
137
136
|
};
|
|
138
137
|
};
|
|
139
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
138
|
+
//# sourceMappingURL=data:application/json;base64,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
|