@drunk-pulumi/azure 1.0.7 → 1.0.9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/Aks/Helper.d.ts +3 -3
- package/Aks/Helper.js +2 -3
- package/Aks/Identity.js +17 -17
- package/Aks/index.d.ts +13 -15
- package/Aks/index.js +63 -64
- package/Automation/index.d.ts +4 -4
- package/Automation/index.js +13 -9
- package/AzAd/EnvRoles.d.ts +0 -5
- package/AzAd/EnvRoles.js +3 -4
- package/AzAd/Group.d.ts +4 -4
- package/AzAd/Group.js +14 -5
- package/AzAd/Helper.d.ts +3 -8
- package/AzAd/Helper.js +67 -51
- package/AzAd/Identities/AzDevOpsManagedIdentity.d.ts +3 -3
- package/AzAd/Identities/AzDevOpsManagedIdentity.js +4 -4
- package/AzAd/Identities/AzUserAdRevertSync.d.ts +2 -2
- package/AzAd/Identities/EnvUID.d.ts +4 -0
- package/AzAd/Identities/EnvUID.js +21 -0
- package/AzAd/Identities/index.d.ts +1 -1
- package/AzAd/Identities/index.js +3 -3
- package/AzAd/Identity.d.ts +2 -2
- package/AzAd/Identity.js +3 -8
- package/AzAd/RoleAssignment.d.ts +2 -2
- package/AzAd/UserAssignedIdentity.d.ts +4 -3
- package/AzAd/UserAssignedIdentity.js +10 -13
- package/Builder/AksBuilder.d.ts +2 -2
- package/Builder/AksBuilder.js +14 -7
- package/Builder/ApimBuilder.js +8 -10
- package/Builder/CdnBuilder.d.ts +2 -2
- package/Builder/CdnBuilder.js +1 -1
- package/Builder/PrivateDnsZoneBuilder.js +4 -5
- package/Builder/ResourceBuilder.d.ts +2 -2
- package/Builder/ResourceBuilder.js +42 -5
- package/Builder/SqlBuilder.d.ts +2 -2
- package/Builder/SqlBuilder.js +9 -10
- package/Builder/VaultBuilder.d.ts +2 -3
- package/Builder/VaultBuilder.js +16 -15
- package/Builder/VmBuilder.d.ts +2 -2
- package/Builder/VmBuilder.js +12 -3
- package/Builder/VnetBuilder.d.ts +2 -2
- package/Builder/VnetBuilder.js +100 -53
- package/Builder/types/apimBuilder.d.ts +8 -9
- package/Builder/types/apimPolicyBuilder.d.ts +3 -3
- package/Builder/types/apimProductBuilder.d.ts +2 -2
- package/Builder/types/askBuilder.d.ts +8 -3
- package/Builder/types/envRoleBuilder.d.ts +2 -2
- package/Builder/types/genericBuilder.d.ts +2 -8
- package/Builder/types/genericBuilder.js +1 -1
- package/Builder/types/resourceBuilder.d.ts +12 -6
- package/Builder/types/sqlBuilder.d.ts +4 -5
- package/Builder/types/vaultBuilder.d.ts +4 -3
- package/Builder/types/vmBuilder.d.ts +6 -2
- package/Builder/types/vnetBuilder.d.ts +13 -12
- package/Cdn/CdnEndpoint.d.ts +1 -1
- package/Cdn/CdnEndpoint.js +2 -3
- package/Common/AzureEnv.d.ts +0 -7
- package/Common/AzureEnv.js +2 -44
- package/Common/GlobalEnv.d.ts +1 -3
- package/Common/GlobalEnv.js +19 -21
- package/Common/Helpers.d.ts +0 -1
- package/Common/Helpers.js +29 -29
- package/Common/Naming.d.ts +68 -0
- package/Common/Naming.js +189 -0
- package/Common/RsInfo/Helper.d.ts +4 -0
- package/Common/RsInfo/Helper.js +48 -0
- package/Common/RsInfo/index.d.ts +31 -0
- package/Common/RsInfo/index.js +245 -0
- package/Common/index.d.ts +3 -0
- package/Common/index.js +5 -2
- package/ContainerRegistry/Helper.d.ts +2 -9
- package/ContainerRegistry/Helper.js +36 -31
- package/Core/KeyGenerators.js +2 -2
- package/Core/Locker.d.ts +6 -4
- package/Core/Locker.js +23 -2
- package/Core/Random.d.ts +2 -2
- package/Core/Random.js +2 -1
- package/Core/ResourceCreator.js +3 -6
- package/CosmosDb/index.d.ts +3 -3
- package/CosmosDb/index.js +14 -14
- package/IOT/Hub/index.js +2 -1
- package/KeyVault/CustomHelper.d.ts +4 -3
- package/KeyVault/CustomHelper.js +3 -2
- package/KeyVault/Helper.d.ts +5 -1
- package/KeyVault/Helper.js +13 -2
- package/KeyVault/index.d.ts +1 -6
- package/KeyVault/index.js +19 -14
- package/Logs/AppInsight.js +3 -1
- package/Logs/Helpers.d.ts +5 -54
- package/Logs/Helpers.js +41 -68
- package/Logs/LogAnalytics.d.ts +5 -11
- package/Logs/LogAnalytics.js +11 -11
- package/Logs/WebTest.d.ts +2 -2
- package/Logs/WebTest.js +13 -13
- package/Logs/index.d.ts +7 -22
- package/Logs/index.js +33 -52
- package/Postgresql/index.js +3 -3
- package/ServiceBus/index.d.ts +4 -5
- package/ServiceBus/index.js +10 -8
- package/Sql/Helper.js +4 -4
- package/Sql/SqlDb.js +3 -6
- package/Sql/index.d.ts +2 -5
- package/Sql/index.js +12 -21
- package/Storage/Helper.d.ts +2 -28
- package/Storage/Helper.js +58 -77
- package/Storage/index.d.ts +2 -2
- package/Storage/index.js +7 -6
- package/VM/DiskEncryptionSet.d.ts +4 -6
- package/VM/DiskEncryptionSet.js +18 -6
- package/VM/index.d.ts +3 -3
- package/VM/index.js +37 -13
- package/VNet/Firewall.d.ts +8 -6
- package/VNet/Firewall.js +25 -28
- package/VNet/FirewallPolicies/CloudPCFirewallPolicy.js +2 -2
- package/VNet/Helper.d.ts +3 -20
- package/VNet/Helper.js +6 -49
- package/VNet/IpAddress.js +3 -6
- package/VNet/IpAddressPrefix.d.ts +2 -2
- package/VNet/IpAddressPrefix.js +3 -3
- package/VNet/NSGRules/BlockInternetSecurityRule.d.ts +3 -0
- package/VNet/NSGRules/BlockInternetSecurityRule.js +34 -0
- package/VNet/NSGRules/index.d.ts +5 -4
- package/VNet/NSGRules/index.js +4 -2
- package/VNet/NetworkPeering.d.ts +18 -6
- package/VNet/NetworkPeering.js +43 -27
- package/VNet/PrivateEndpoint.js +2 -2
- package/VNet/VirtualWAN.js +2 -2
- package/VNet/types.d.ts +3 -8
- package/Web/AppConfig.js +2 -1
- package/package.json +4 -5
- package/types.d.ts +85 -30
- package/Aks/VmSetAutoScale/index.d.ts +0 -14
- package/Aks/VmSetAutoScale/index.js +0 -155
- package/Aks/VmSetMonitor/index.d.ts +0 -10
- package/Aks/VmSetMonitor/index.js +0 -90
- package/Apim/Helpers.d.ts +0 -2
- package/Apim/Helpers.js +0 -18
- package/AzAd/Identities/GlobalUserAssignedIdentity.d.ts +0 -4
- package/AzAd/Identities/GlobalUserAssignedIdentity.js +0 -19
- package/Common/Naming/index.d.ts +0 -67
- package/Common/Naming/index.js +0 -161
- package/Core/Helper.d.ts +0 -18
- package/Core/Helper.js +0 -42
- package/VNet/index.d.ts +0 -65
- package/VNet/index.js +0 -220
- package/Web/Helpers.d.ts +0 -6
- package/Web/Helpers.js +0 -59
package/AzAd/Group.js
CHANGED
|
@@ -65,10 +65,19 @@ const getAdGroup = (displayName) => {
|
|
|
65
65
|
return (0, pulumi_1.output)(azuread.getGroup({ displayName }));
|
|
66
66
|
};
|
|
67
67
|
exports.getAdGroup = getAdGroup;
|
|
68
|
-
const addMemberToGroup = ({ name, objectId, groupObjectId, }) => (0, pulumi_1.output)([objectId, groupObjectId]).apply(([oId, gId]) =>
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
68
|
+
const addMemberToGroup = ({ name, objectId, groupObjectId, }) => (0, pulumi_1.output)([objectId, groupObjectId]).apply(([oId, gId]) => {
|
|
69
|
+
if (!oId || !gId) {
|
|
70
|
+
// throw new Error(
|
|
71
|
+
// `Both 'objectId' and 'groupObjectId' are compulsory for the GroupMember to be added.`,
|
|
72
|
+
// );
|
|
73
|
+
console.warn(`Either the 'objectId' or 'groupObjectId' empty. So the GroupMember will be ignored.`);
|
|
74
|
+
return undefined;
|
|
75
|
+
}
|
|
76
|
+
return new azuread.GroupMember(`${name}-${gId}-${oId}`, {
|
|
77
|
+
groupObjectId,
|
|
78
|
+
memberObjectId: objectId,
|
|
79
|
+
});
|
|
80
|
+
});
|
|
72
81
|
exports.addMemberToGroup = addMemberToGroup;
|
|
73
82
|
const addGroupToGroup = (groupMemberName, groupObjectId) => {
|
|
74
83
|
const group = (0, exports.getAdGroup)(groupMemberName);
|
|
@@ -89,4 +98,4 @@ const assignRolesToGroup = ({ roles, groupName, scope, }) => (0, pulumi_1.output
|
|
|
89
98
|
})));
|
|
90
99
|
});
|
|
91
100
|
exports.assignRolesToGroup = assignRolesToGroup;
|
|
92
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
101
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiR3JvdXAuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi9zcmMvQXpBZC9Hcm91cC50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiOzs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7OztBQUFBLHlEQUEyQztBQUMzQywyQ0FBdUQ7QUFDdkQsc0NBQTRDO0FBRTVDLHFEQUFrRDtBQUNsRCxzQ0FBcUM7QUFpQnJDLGtCQUFlLEtBQUssRUFBRSxFQUFFLElBQUksRUFBRSxXQUFXLEVBQUUsT0FBTyxFQUFFLE1BQU0sRUFBZ0IsRUFBRSxFQUFFO0lBQzVFLE1BQU0sS0FBSyxHQUFHLElBQUksT0FBTyxDQUFDLEtBQUssQ0FBQyxJQUFJLEVBQUU7UUFDcEMsV0FBVyxFQUFFLElBQUk7UUFDakIsc0JBQXNCLEVBQUUsS0FBSztRQUM3Qiw2QkFBNkI7UUFDN0IsK0JBQStCO1FBQy9CLFdBQVcsRUFBRSxLQUFLO1FBQ2xCLGVBQWUsRUFBRSxJQUFJO1FBQ3JCLE1BQU07S0FDUCxDQUFDLENBQUM7SUFFSCxJQUFJLE9BQU8sRUFBRSxDQUFDO1FBQ1osT0FBTyxDQUFDLEdBQUcsQ0FDVCxDQUFDLENBQUMsRUFBRSxDQUFDLEVBQUUsRUFBRSxDQUNQLElBQUksT0FBTyxDQUFDLFdBQVcsQ0FBQyxHQUFHLElBQUksV0FBVyxDQUFDLEVBQUUsRUFBRTtZQUM3QyxhQUFhLEVBQUUsS0FBSyxDQUFDLEVBQUU7WUFDdkIsY0FBYyxFQUFFLENBQUM7U0FDbEIsQ0FBQyxDQUNMLENBQUM7SUFDSixDQUFDO0lBRUQsSUFBSSxXQUFXLEVBQUUsQ0FBQztRQUNoQixNQUFNLE9BQU8sQ0FBQyxHQUFHLENBQ2YsV0FBVyxDQUFDLEdBQUcsQ0FBQyxDQUFDLENBQUMsRUFBRSxFQUFFLENBQ3BCLElBQUEsK0JBQWMsRUFBQztZQUNiLElBQUk7WUFDSixXQUFXLEVBQUUsS0FBSyxDQUFDLFFBQVE7WUFDM0IsYUFBYSxFQUFFLE9BQU87WUFDdEIsUUFBUSxFQUFFLENBQUMsQ0FBQyxRQUFRO1lBQ3BCLEtBQUssRUFBRSxDQUFDLENBQUMsS0FBSyxJQUFJLHdCQUFlO1NBQ2xDLENBQUMsQ0FDSCxDQUNGLENBQUM7SUFDSixDQUFDO0lBRUQsT0FBTyxLQUFLLENBQUM7QUFDZixDQUFDLENBQUM7QUFFSyxNQUFNLFVBQVUsR0FBRyxDQUFDLFdBQW1CLEVBQUUsRUFBRTtJQUNoRCxJQUFJLGlCQUFRO1FBQ1YsT0FBTyxJQUFBLGVBQU0sRUFBQztZQUNaLFdBQVc7WUFDWCxRQUFRLEVBQUUsc0NBQXNDO1NBQy9CLENBQUMsQ0FBQztJQUN2QixPQUFPLElBQUEsZUFBTSxFQUFDLE9BQU8sQ0FBQyxRQUFRLENBQUMsRUFBRSxXQUFXLEVBQUUsQ0FBQyxDQUFDLENBQUM7QUFDbkQsQ0FBQyxDQUFDO0FBUFcsUUFBQSxVQUFVLGNBT3JCO0FBRUssTUFBTSxnQkFBZ0IsR0FBRyxDQUFDLEVBQy9CLElBQUksRUFDSixRQUFRLEVBQ1IsYUFBYSxHQUlkLEVBQUUsRUFBRSxDQUNILElBQUEsZUFBTSxFQUFDLENBQUMsUUFBUSxFQUFFLGFBQWEsQ0FBQyxDQUFDLENBQUMsS0FBSyxDQUFDLENBQUMsQ0FBQyxHQUFHLEVBQUUsR0FBRyxDQUFDLEVBQUUsRUFBRTtJQUNyRCxJQUFJLENBQUMsR0FBRyxJQUFJLENBQUMsR0FBRyxFQUFFLENBQUM7UUFDakIsbUJBQW1CO1FBQ25CLDJGQUEyRjtRQUMzRixLQUFLO1FBQ0wsT0FBTyxDQUFDLElBQUksQ0FDVixxRkFBcUYsQ0FDdEYsQ0FBQztRQUNGLE9BQU8sU0FBUyxDQUFDO0lBQ25CLENBQUM7SUFDRCxPQUFPLElBQUksT0FBTyxDQUFDLFdBQVcsQ0FBQyxHQUFHLElBQUksSUFBSSxHQUFHLElBQUksR0FBRyxFQUFFLEVBQUU7UUFDdEQsYUFBYTtRQUNiLGNBQWMsRUFBRSxRQUFRO0tBQ3pCLENBQUMsQ0FBQztBQUNMLENBQUMsQ0FBQyxDQUFDO0FBdEJRLFFBQUEsZ0JBQWdCLG9CQXNCeEI7QUFFRSxNQUFNLGVBQWUsR0FBRyxDQUM3QixlQUF1QixFQUN2QixhQUE2QixFQUM3QixFQUFFO0lBQ0YsTUFBTSxLQUFLLEdBQUcsSUFBQSxrQkFBVSxFQUFDLGVBQWUsQ0FBQyxDQUFDO0lBRTFDLE9BQU8sYUFBYSxDQUFDLEtBQUssQ0FDeEIsQ0FBQyxDQUFDLEVBQUUsRUFBRSxDQUNKLElBQUksT0FBTyxDQUFDLFdBQVcsQ0FBQyxHQUFHLENBQUMsSUFBSSxlQUFlLEVBQUUsRUFBRTtRQUNqRCxhQUFhLEVBQUUsQ0FBQztRQUNoQixjQUFjLEVBQUUsS0FBSyxDQUFDLFFBQVE7S0FDL0IsQ0FBQyxDQUNMLENBQUM7QUFDSixDQUFDLENBQUM7QUFiVyxRQUFBLGVBQWUsbUJBYTFCO0FBRUssTUFBTSxrQkFBa0IsR0FBRyxDQUFDLEVBQ2pDLEtBQUssRUFDTCxTQUFTLEVBQ1QsS0FBSyxHQUtOLEVBQUUsRUFBRSxDQUNILElBQUEsZUFBTSxFQUFDLEtBQUssSUFBSSxFQUFFO0lBQ2hCLE1BQU0sS0FBSyxHQUFHLElBQUEsa0JBQVUsRUFBQyxTQUFTLENBQUMsQ0FBQztJQUNwQyxPQUFPLE1BQU0sT0FBTyxDQUFDLEdBQUcsQ0FDdEIsS0FBSyxDQUFDLEdBQUcsQ0FBQyxDQUFDLENBQUMsRUFBRSxFQUFFLENBQ2QsSUFBQSwrQkFBYyxFQUFDO1FBQ2IsSUFBSSxFQUFFLFNBQVM7UUFDZixXQUFXLEVBQUUsS0FBSyxDQUFDLFFBQVE7UUFDM0IsYUFBYSxFQUFFLE9BQU87UUFDdEIsUUFBUSxFQUFFLENBQUM7UUFDWCxLQUFLLEVBQUUsS0FBSyxJQUFJLHdCQUFlO0tBQ2hDLENBQUMsQ0FDSCxDQUNGLENBQUM7QUFDSixDQUFDLENBQUMsQ0FBQztBQXRCUSxRQUFBLGtCQUFrQixzQkFzQjFCIn0=
|
package/AzAd/Helper.d.ts
CHANGED
|
@@ -1,6 +1,5 @@
|
|
|
1
|
-
import { IdentityInfo,
|
|
2
|
-
|
|
3
|
-
interface Props extends NamedType {
|
|
1
|
+
import { IdentityInfo, KeyVaultInfo, WithNamedType } from '../types';
|
|
2
|
+
interface Props extends WithNamedType {
|
|
4
3
|
includePrincipal?: boolean;
|
|
5
4
|
vaultInfo: KeyVaultInfo;
|
|
6
5
|
}
|
|
@@ -21,9 +20,5 @@ export declare const getIdentitySecretNames: (name: string) => {
|
|
|
21
20
|
};
|
|
22
21
|
export declare const getIdentityInfo: ({ name, vaultInfo, includePrincipal, }: Props) => Promise<IdentityInfoResults>;
|
|
23
22
|
export declare const getIdentityInfoOutput: (props: Props) => import("@pulumi/pulumi").Output<import("@pulumi/pulumi").UnwrappedObject<IdentityInfoResults>>;
|
|
24
|
-
export declare const
|
|
25
|
-
principalId: Input<string>;
|
|
26
|
-
}) => void;
|
|
27
|
-
export declare const getUserAssignedIdentityInfo: (name: string, vaultInfo: KeyVaultInfo) => Promise<IdentityInfo>;
|
|
28
|
-
export declare const getUserAssignedIdentityInfoOutput: (name: string, vaultInfo: KeyVaultInfo) => import("@pulumi/pulumi").Output<import("@pulumi/pulumi").UnwrappedObject<IdentityInfo>>;
|
|
23
|
+
export declare const getUserAssignedIdentityInfo: (name: string, vaultInfo: KeyVaultInfo) => IdentityInfo;
|
|
29
24
|
export {};
|
package/AzAd/Helper.js
CHANGED
|
@@ -1,12 +1,9 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
3
|
+
exports.getUserAssignedIdentityInfo = exports.getIdentityInfoOutput = exports.getIdentityInfo = exports.getIdentitySecretNames = void 0;
|
|
4
4
|
const Common_1 = require("../Common");
|
|
5
5
|
const Helper_1 = require("../KeyVault/Helper");
|
|
6
6
|
const pulumi_1 = require("@pulumi/pulumi");
|
|
7
|
-
const EnvRoles_1 = require("./EnvRoles");
|
|
8
|
-
const RoleAssignment_1 = require("./RoleAssignment");
|
|
9
|
-
const Group_1 = require("./Group");
|
|
10
7
|
const getIdentitySecretNames = (name) => ({
|
|
11
8
|
objectIdName: (0, Common_1.getSecretName)(`${name}-object-id`),
|
|
12
9
|
clientIdKeyName: (0, Common_1.getSecretName)(`${name}-client-id`),
|
|
@@ -40,60 +37,79 @@ const getIdentityInfo = async ({ name, vaultInfo, includePrincipal, }) => {
|
|
|
40
37
|
exports.getIdentityInfo = getIdentityInfo;
|
|
41
38
|
const getIdentityInfoOutput = (props) => (0, pulumi_1.output)((0, exports.getIdentityInfo)(props));
|
|
42
39
|
exports.getIdentityInfoOutput = getIdentityInfoOutput;
|
|
43
|
-
const grantIdentityToResourceRoles = ({
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
40
|
+
// const grantIdentityToResourceRoles = ({
|
|
41
|
+
// name,
|
|
42
|
+
// roles,
|
|
43
|
+
// principalId,
|
|
44
|
+
// }: WithNamedType & {
|
|
45
|
+
// roles: Array<{ name: string; scope: Input<string> }>;
|
|
46
|
+
// principalId: Input<string>;
|
|
47
|
+
// }) =>
|
|
48
|
+
// roles.map((r) =>
|
|
49
|
+
// roleAssignment({
|
|
50
|
+
// name,
|
|
51
|
+
// roleName: r.name,
|
|
52
|
+
// principalId: principalId,
|
|
53
|
+
// principalType: 'ServicePrincipal',
|
|
54
|
+
// scope: r.scope,
|
|
55
|
+
// }),
|
|
56
|
+
// );
|
|
57
|
+
// const grantIdentityEnvRolesGroup = ({
|
|
58
|
+
// name,
|
|
59
|
+
// roleType,
|
|
60
|
+
// vaultInfo,
|
|
61
|
+
// principalId,
|
|
62
|
+
// }: Required<NamedWithVaultType> & {
|
|
63
|
+
// roleType: EnvRoleKeyTypes;
|
|
64
|
+
// principalId: Input<string>;
|
|
65
|
+
// }) => {
|
|
66
|
+
// const role = output(getEnvRole(roleType, vaultInfo));
|
|
67
|
+
// return role.apply((r) => {
|
|
68
|
+
// if (!role.objectId) return;
|
|
69
|
+
// return addMemberToGroup({
|
|
70
|
+
// name,
|
|
71
|
+
// objectId: principalId,
|
|
72
|
+
// groupObjectId: r.objectId,
|
|
73
|
+
// });
|
|
74
|
+
// });
|
|
75
|
+
// };
|
|
76
|
+
// export const grantIdentityPermissions = ({
|
|
77
|
+
// name,
|
|
78
|
+
// principalId,
|
|
79
|
+
// vaultInfo,
|
|
80
|
+
// role,
|
|
81
|
+
// }: IdentityRoleAssignment &
|
|
82
|
+
// WithNamedType & {
|
|
83
|
+
// principalId: Input<string>;
|
|
84
|
+
// }) => {
|
|
85
|
+
// // if (roles) {
|
|
86
|
+
// // grantIdentityToResourceRoles({ name, roles, principalId });
|
|
87
|
+
// // }
|
|
88
|
+
// if (role && vaultInfo) {
|
|
89
|
+
// grantIdentityEnvRolesGroup({
|
|
90
|
+
// name,
|
|
91
|
+
// roleType: role,
|
|
92
|
+
// principalId,
|
|
93
|
+
// vaultInfo,
|
|
94
|
+
// });
|
|
95
|
+
// }
|
|
96
|
+
// };
|
|
97
|
+
const getUserAssignedIdentityInfo = (name, vaultInfo) => {
|
|
98
|
+
name = (0, Common_1.getUIDName)(name);
|
|
99
|
+
const id = (0, pulumi_1.output)((0, Helper_1.getSecret)({
|
|
79
100
|
name: `${name}-id`,
|
|
80
101
|
vaultInfo,
|
|
81
102
|
nameFormatted: true,
|
|
82
|
-
});
|
|
83
|
-
const principalId =
|
|
103
|
+
}));
|
|
104
|
+
const principalId = (0, pulumi_1.output)((0, Helper_1.getSecret)({
|
|
84
105
|
name: `${name}-principalId`,
|
|
85
106
|
vaultInfo,
|
|
86
107
|
nameFormatted: true,
|
|
87
|
-
});
|
|
88
|
-
const info = (0, Common_1.parseResourceInfoFromId)(id.value);
|
|
108
|
+
}));
|
|
89
109
|
return {
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
id: info.id,
|
|
93
|
-
principalId: principalId.value,
|
|
110
|
+
id: id?.apply((i) => i?.value),
|
|
111
|
+
principalId: principalId?.apply((i) => i?.value),
|
|
94
112
|
};
|
|
95
113
|
};
|
|
96
114
|
exports.getUserAssignedIdentityInfo = getUserAssignedIdentityInfo;
|
|
97
|
-
|
|
98
|
-
exports.getUserAssignedIdentityInfoOutput = getUserAssignedIdentityInfoOutput;
|
|
99
|
-
//# sourceMappingURL=data:application/json;base64,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
|
|
115
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiSGVscGVyLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vc3JjL0F6QWQvSGVscGVyLnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7OztBQUFBLHNDQUF1RTtBQUN2RSwrQ0FBK0M7QUFFL0MsMkNBQXdDO0FBZ0JqQyxNQUFNLHNCQUFzQixHQUFHLENBQUMsSUFBWSxFQUFFLEVBQUUsQ0FBQyxDQUFDO0lBQ3ZELFlBQVksRUFBRSxJQUFBLHNCQUFhLEVBQUMsR0FBRyxJQUFJLFlBQVksQ0FBQztJQUNoRCxlQUFlLEVBQUUsSUFBQSxzQkFBYSxFQUFDLEdBQUcsSUFBSSxZQUFZLENBQUM7SUFDbkQsbUJBQW1CLEVBQUUsSUFBQSxzQkFBYSxFQUFDLEdBQUcsSUFBSSxnQkFBZ0IsQ0FBQztJQUMzRCxrQkFBa0IsRUFBRSxJQUFBLHNCQUFhLEVBQUMsR0FBRyxJQUFJLGVBQWUsQ0FBQztJQUN6RCxzQkFBc0IsRUFBRSxJQUFBLHNCQUFhLEVBQUMsR0FBRyxJQUFJLG1CQUFtQixDQUFDO0NBQ2xFLENBQUMsQ0FBQztBQU5VLFFBQUEsc0JBQXNCLDBCQU1oQztBQUVJLE1BQU0sZUFBZSxHQUFHLEtBQUssRUFBRSxFQUNwQyxJQUFJLEVBQ0osU0FBUyxFQUNULGdCQUFnQixHQUNWLEVBQWdDLEVBQUU7SUFDeEMsSUFBSSxHQUFHLElBQUEsd0JBQWUsRUFBQyxJQUFJLENBQUMsQ0FBQztJQUM3QixNQUFNLFdBQVcsR0FBRyxJQUFBLDhCQUFzQixFQUFDLElBQUksQ0FBQyxDQUFDO0lBRWpELE1BQU0sQ0FBQyxRQUFRLEVBQUUsUUFBUSxFQUFFLFlBQVksQ0FBQyxHQUFHLE1BQU0sT0FBTyxDQUFDLEdBQUcsQ0FBQztRQUMzRCxJQUFBLGtCQUFTLEVBQUMsRUFBRSxJQUFJLEVBQUUsV0FBVyxDQUFDLFlBQVksRUFBRSxTQUFTLEVBQUUsQ0FBQztRQUN4RCxJQUFBLGtCQUFTLEVBQUMsRUFBRSxJQUFJLEVBQUUsV0FBVyxDQUFDLGVBQWUsRUFBRSxTQUFTLEVBQUUsQ0FBQztRQUMzRCxJQUFBLGtCQUFTLEVBQUMsRUFBRSxJQUFJLEVBQUUsV0FBVyxDQUFDLG1CQUFtQixFQUFFLFNBQVMsRUFBRSxDQUFDO0tBQ2hFLENBQUMsQ0FBQztJQUVILE1BQU0sQ0FBQyxXQUFXLEVBQUUsZUFBZSxDQUFDLEdBQUcsZ0JBQWdCO1FBQ3JELENBQUMsQ0FBQyxNQUFNLE9BQU8sQ0FBQyxHQUFHLENBQUM7WUFDaEIsSUFBQSxrQkFBUyxFQUFDLEVBQUUsSUFBSSxFQUFFLFdBQVcsQ0FBQyxrQkFBa0IsRUFBRSxTQUFTLEVBQUUsQ0FBQztZQUM5RCxJQUFBLGtCQUFTLEVBQUMsRUFBRSxJQUFJLEVBQUUsV0FBVyxDQUFDLHNCQUFzQixFQUFFLFNBQVMsRUFBRSxDQUFDO1NBQ25FLENBQUM7UUFDSixDQUFDLENBQUMsQ0FBQyxTQUFTLEVBQUUsU0FBUyxDQUFDLENBQUM7SUFFM0IsT0FBTztRQUNMLFFBQVEsRUFBRSxRQUFTLENBQUMsS0FBTTtRQUMxQixRQUFRLEVBQUUsUUFBUyxDQUFDLEtBQU07UUFDMUIsWUFBWSxFQUFFLFlBQVksRUFBRSxLQUFLO1FBQ2pDLFdBQVcsRUFBRSxXQUFXLEVBQUUsS0FBSztRQUMvQixlQUFlLEVBQUUsZUFBZSxFQUFFLEtBQUs7S0FDeEMsQ0FBQztBQUNKLENBQUMsQ0FBQztBQTVCVyxRQUFBLGVBQWUsbUJBNEIxQjtBQUVLLE1BQU0scUJBQXFCLEdBQUcsQ0FBQyxLQUFZLEVBQUUsRUFBRSxDQUNwRCxJQUFBLGVBQU0sRUFBc0IsSUFBQSx1QkFBZSxFQUFDLEtBQUssQ0FBQyxDQUFDLENBQUM7QUFEekMsUUFBQSxxQkFBcUIseUJBQ29CO0FBRXRELDBDQUEwQztBQUMxQyxVQUFVO0FBQ1YsV0FBVztBQUNYLGlCQUFpQjtBQUNqQix1QkFBdUI7QUFDdkIsMERBQTBEO0FBQzFELGdDQUFnQztBQUNoQyxRQUFRO0FBQ1IscUJBQXFCO0FBQ3JCLHVCQUF1QjtBQUN2QixjQUFjO0FBQ2QsMEJBQTBCO0FBQzFCLGtDQUFrQztBQUNsQywyQ0FBMkM7QUFDM0Msd0JBQXdCO0FBQ3hCLFVBQVU7QUFDVixPQUFPO0FBRVAsd0NBQXdDO0FBQ3hDLFVBQVU7QUFDVixjQUFjO0FBQ2QsZUFBZTtBQUNmLGlCQUFpQjtBQUNqQixzQ0FBc0M7QUFDdEMsK0JBQStCO0FBQy9CLGdDQUFnQztBQUNoQyxVQUFVO0FBQ1YsMERBQTBEO0FBQzFELCtCQUErQjtBQUMvQixrQ0FBa0M7QUFDbEMsZ0NBQWdDO0FBQ2hDLGNBQWM7QUFDZCwrQkFBK0I7QUFDL0IsbUNBQW1DO0FBQ25DLFVBQVU7QUFDVixRQUFRO0FBQ1IsS0FBSztBQUVMLDZDQUE2QztBQUM3QyxVQUFVO0FBQ1YsaUJBQWlCO0FBQ2pCLGVBQWU7QUFDZixVQUFVO0FBQ1YsOEJBQThCO0FBQzlCLHNCQUFzQjtBQUN0QixrQ0FBa0M7QUFDbEMsWUFBWTtBQUNaLG9CQUFvQjtBQUNwQixxRUFBcUU7QUFDckUsU0FBUztBQUNULDZCQUE2QjtBQUM3QixtQ0FBbUM7QUFDbkMsY0FBYztBQUNkLHdCQUF3QjtBQUN4QixxQkFBcUI7QUFDckIsbUJBQW1CO0FBQ25CLFVBQVU7QUFDVixNQUFNO0FBQ04sS0FBSztBQUVFLE1BQU0sMkJBQTJCLEdBQUcsQ0FDekMsSUFBWSxFQUNaLFNBQXVCLEVBQ1QsRUFBRTtJQUNoQixJQUFJLEdBQUcsSUFBQSxtQkFBVSxFQUFDLElBQUksQ0FBQyxDQUFDO0lBRXhCLE1BQU0sRUFBRSxHQUFHLElBQUEsZUFBTSxFQUNmLElBQUEsa0JBQVMsRUFBQztRQUNSLElBQUksRUFBRSxHQUFHLElBQUksS0FBSztRQUNsQixTQUFTO1FBQ1QsYUFBYSxFQUFFLElBQUk7S0FDcEIsQ0FBQyxDQUNILENBQUM7SUFDRixNQUFNLFdBQVcsR0FBRyxJQUFBLGVBQU0sRUFDeEIsSUFBQSxrQkFBUyxFQUFDO1FBQ1IsSUFBSSxFQUFFLEdBQUcsSUFBSSxjQUFjO1FBQzNCLFNBQVM7UUFDVCxhQUFhLEVBQUUsSUFBSTtLQUNwQixDQUFDLENBQ0gsQ0FBQztJQUVGLE9BQU87UUFDTCxFQUFFLEVBQUUsRUFBRSxFQUFFLEtBQUssQ0FBQyxDQUFDLENBQUMsRUFBRSxFQUFFLENBQUMsQ0FBQyxFQUFFLEtBQU0sQ0FBQztRQUMvQixXQUFXLEVBQUUsV0FBVyxFQUFFLEtBQUssQ0FBQyxDQUFDLENBQUMsRUFBRSxFQUFFLENBQUMsQ0FBQyxFQUFFLEtBQU0sQ0FBQztLQUNsRCxDQUFDO0FBQ0osQ0FBQyxDQUFDO0FBekJXLFFBQUEsMkJBQTJCLCtCQXlCdEMifQ==
|
|
@@ -1,6 +1,6 @@
|
|
|
1
|
-
import { BasicResourceArgs } from '../../types';
|
|
2
|
-
interface Props extends Omit<BasicResourceArgs, 'name'
|
|
1
|
+
import { BasicResourceArgs, WithEnvRoles, WithVaultInfo } from '../../types';
|
|
2
|
+
interface Props extends Omit<BasicResourceArgs, 'name'>, WithVaultInfo, WithEnvRoles {
|
|
3
3
|
name?: string;
|
|
4
4
|
}
|
|
5
|
-
declare const _default: ({ name, ...others }: Props) =>
|
|
5
|
+
declare const _default: ({ name, envRoles, ...others }: Props) => void;
|
|
6
6
|
export default _default;
|
|
@@ -5,11 +5,11 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
5
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
6
|
const UserAssignedIdentity_1 = __importDefault(require("../UserAssignedIdentity"));
|
|
7
7
|
const AzDevOpsIdentity_1 = require("./AzDevOpsIdentity");
|
|
8
|
-
exports.default = ({ name = AzDevOpsIdentity_1.defaultAzAdoName, ...others }) => {
|
|
9
|
-
|
|
8
|
+
exports.default = ({ name = AzDevOpsIdentity_1.defaultAzAdoName, envRoles, ...others }) => {
|
|
9
|
+
const identity = (0, UserAssignedIdentity_1.default)({
|
|
10
10
|
name,
|
|
11
|
-
role: 'admin',
|
|
12
11
|
...others,
|
|
13
12
|
});
|
|
13
|
+
envRoles?.addMember('admin', identity.principalId);
|
|
14
14
|
};
|
|
15
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
15
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -1,5 +1,5 @@
|
|
|
1
|
-
import { KeyVaultInfo,
|
|
2
|
-
interface Props extends
|
|
1
|
+
import { KeyVaultInfo, WithNamedType } from '../../types';
|
|
2
|
+
interface Props extends WithNamedType {
|
|
3
3
|
vaultInfo: KeyVaultInfo;
|
|
4
4
|
}
|
|
5
5
|
declare const _default: ({ name, ...others }: Props) => import("../Identity").IdentityResult;
|
|
@@ -0,0 +1,4 @@
|
|
|
1
|
+
import { KeyVaultInfo, WithEnvRoles, WithVaultInfo } from '../../types';
|
|
2
|
+
import { UserAssignedIdentityProps } from '../UserAssignedIdentity';
|
|
3
|
+
export declare const create: ({ envRoles, ...others }: Omit<UserAssignedIdentityProps, "name" | "role"> & WithEnvRoles & WithVaultInfo) => import("../../types").IdentityInfoWithInstance<import("@pulumi/azure-native/managedidentity/userAssignedIdentity").UserAssignedIdentity>;
|
|
4
|
+
export declare const get: (vaultInfo: KeyVaultInfo) => import("../../types").IdentityInfo;
|
|
@@ -0,0 +1,21 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
3
|
+
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
4
|
+
};
|
|
5
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
|
+
exports.get = exports.create = void 0;
|
|
7
|
+
const Helper_1 = require("../Helper");
|
|
8
|
+
const UserAssignedIdentity_1 = __importDefault(require("../UserAssignedIdentity"));
|
|
9
|
+
const Common_1 = require("../../Common");
|
|
10
|
+
const create = ({ envRoles, ...others }) => {
|
|
11
|
+
const identity = (0, UserAssignedIdentity_1.default)({
|
|
12
|
+
...others,
|
|
13
|
+
name: Common_1.currentEnv,
|
|
14
|
+
});
|
|
15
|
+
envRoles?.addMember('admin', identity.principalId);
|
|
16
|
+
return identity;
|
|
17
|
+
};
|
|
18
|
+
exports.create = create;
|
|
19
|
+
const get = (vaultInfo) => (0, Helper_1.getUserAssignedIdentityInfo)(Common_1.currentEnv, vaultInfo);
|
|
20
|
+
exports.get = get;
|
|
21
|
+
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -1,4 +1,4 @@
|
|
|
1
1
|
export { default as AzDevOpsIdentity } from './AzDevOpsIdentity';
|
|
2
2
|
export { default as AzDevOpsManagedIdentity } from './AzDevOpsManagedIdentity';
|
|
3
3
|
export { default as AzUserAdRevertSync } from './AzUserAdRevertSync';
|
|
4
|
-
export * as
|
|
4
|
+
export * as EnvUID from './EnvUID';
|
package/AzAd/Identities/index.js
CHANGED
|
@@ -26,12 +26,12 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
|
26
26
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
27
27
|
};
|
|
28
28
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
29
|
-
exports.
|
|
29
|
+
exports.EnvUID = exports.AzUserAdRevertSync = exports.AzDevOpsManagedIdentity = exports.AzDevOpsIdentity = void 0;
|
|
30
30
|
var AzDevOpsIdentity_1 = require("./AzDevOpsIdentity");
|
|
31
31
|
Object.defineProperty(exports, "AzDevOpsIdentity", { enumerable: true, get: function () { return __importDefault(AzDevOpsIdentity_1).default; } });
|
|
32
32
|
var AzDevOpsManagedIdentity_1 = require("./AzDevOpsManagedIdentity");
|
|
33
33
|
Object.defineProperty(exports, "AzDevOpsManagedIdentity", { enumerable: true, get: function () { return __importDefault(AzDevOpsManagedIdentity_1).default; } });
|
|
34
34
|
var AzUserAdRevertSync_1 = require("./AzUserAdRevertSync");
|
|
35
35
|
Object.defineProperty(exports, "AzUserAdRevertSync", { enumerable: true, get: function () { return __importDefault(AzUserAdRevertSync_1).default; } });
|
|
36
|
-
exports.
|
|
37
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
36
|
+
exports.EnvUID = __importStar(require("./EnvUID"));
|
|
37
|
+
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi9zcmMvQXpBZC9JZGVudGl0aWVzL2luZGV4LnRzIl0sIm5hbWVzIjpbXSwibWFwcGluZ3MiOiI7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7Ozs7O0FBQUEsdURBQWlFO0FBQXhELHFJQUFBLE9BQU8sT0FBb0I7QUFDcEMscUVBQStFO0FBQXRFLG1KQUFBLE9BQU8sT0FBMkI7QUFDM0MsMkRBQXFFO0FBQTVELHlJQUFBLE9BQU8sT0FBc0I7QUFDdEMsbURBQW1DIn0=
|
package/AzAd/Identity.d.ts
CHANGED
|
@@ -2,7 +2,7 @@ import * as azureAD from '@pulumi/azuread';
|
|
|
2
2
|
import * as pulumi from '@pulumi/pulumi';
|
|
3
3
|
import { Output } from '@pulumi/pulumi';
|
|
4
4
|
import { ApplicationApiOauth2PermissionScope, ApplicationAppRole, ApplicationOptionalClaims, ApplicationRequiredResourceAccess } from '@pulumi/azuread/types/input';
|
|
5
|
-
import {
|
|
5
|
+
import { WithNamedType, NamedWithVaultBasicArgs } from '../types';
|
|
6
6
|
type PreAuthApplicationProps = {
|
|
7
7
|
appId: string;
|
|
8
8
|
oauth2PermissionNames: string[];
|
|
@@ -24,7 +24,7 @@ interface IdentityProps extends NamedWithVaultBasicArgs {
|
|
|
24
24
|
requiredResourceAccesses?: pulumi.Input<pulumi.Input<ApplicationRequiredResourceAccess>[]>;
|
|
25
25
|
optionalClaims?: pulumi.Input<ApplicationOptionalClaims>;
|
|
26
26
|
}
|
|
27
|
-
export type IdentityResult =
|
|
27
|
+
export type IdentityResult = WithNamedType & {
|
|
28
28
|
objectId: Output<string>;
|
|
29
29
|
clientId: Output<string>;
|
|
30
30
|
clientSecret: Output<string> | undefined;
|
package/AzAd/Identity.js
CHANGED
|
@@ -95,6 +95,7 @@ exports.default = ({ name, owners, createClientSecret = false, createPrincipal =
|
|
|
95
95
|
value: clientSecret,
|
|
96
96
|
vaultInfo,
|
|
97
97
|
contentType: 'Identity',
|
|
98
|
+
dependsOn: app,
|
|
98
99
|
});
|
|
99
100
|
}
|
|
100
101
|
}
|
|
@@ -112,17 +113,11 @@ exports.default = ({ name, owners, createClientSecret = false, createPrincipal =
|
|
|
112
113
|
endDateRelative: '43800h',
|
|
113
114
|
//value: randomPassword({ name: `${name}-principalSecret` }).result,
|
|
114
115
|
}).value;
|
|
115
|
-
// grantIdentityPermissions({
|
|
116
|
-
// name,
|
|
117
|
-
// envRole,
|
|
118
|
-
// roles,
|
|
119
|
-
// vaultInfo,
|
|
120
|
-
// principalId: principal.objectId,
|
|
121
|
-
// });
|
|
122
116
|
if (vaultInfo) {
|
|
123
117
|
(0, CustomHelper_1.addCustomSecrets)({
|
|
124
118
|
vaultInfo,
|
|
125
119
|
contentType: 'Identity',
|
|
120
|
+
dependsOn: principal,
|
|
126
121
|
items: [
|
|
127
122
|
{ name: secretNames.principalIdKeyName, value: principal.objectId },
|
|
128
123
|
{ name: secretNames.principalSecretKeyName, value: principalSecret },
|
|
@@ -140,4 +135,4 @@ exports.default = ({ name, owners, createClientSecret = false, createPrincipal =
|
|
|
140
135
|
resource: app,
|
|
141
136
|
};
|
|
142
137
|
};
|
|
143
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
138
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/AzAd/RoleAssignment.d.ts
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
import * as native from '@pulumi/azure-native';
|
|
2
2
|
import * as pulumi from '@pulumi/pulumi';
|
|
3
3
|
import { Input, Resource } from '@pulumi/pulumi';
|
|
4
|
-
import {
|
|
4
|
+
import { WithNamedType } from '../types';
|
|
5
5
|
type GetRoleProps = {
|
|
6
6
|
roleName: string;
|
|
7
7
|
};
|
|
@@ -96,7 +96,7 @@ export declare const getRoleDefinitionByName: ({ roleName }: GetRoleProps) => {
|
|
|
96
96
|
type: string;
|
|
97
97
|
name: string;
|
|
98
98
|
};
|
|
99
|
-
export type RoleAssignmentProps =
|
|
99
|
+
export type RoleAssignmentProps = WithNamedType & {
|
|
100
100
|
roleName: string;
|
|
101
101
|
scope?: pulumi.Input<string>;
|
|
102
102
|
principalId: pulumi.Input<string>;
|
|
@@ -1,5 +1,6 @@
|
|
|
1
|
-
import { BasicResourceArgs,
|
|
2
|
-
|
|
1
|
+
import { BasicResourceArgs, IdentityInfoWithInstance, WithVaultInfo } from '../types';
|
|
2
|
+
import * as mid from '@pulumi/azure-native/managedidentity';
|
|
3
|
+
export interface UserAssignedIdentityProps extends BasicResourceArgs, WithVaultInfo {
|
|
3
4
|
}
|
|
4
|
-
declare const _default: ({ name, group, vaultInfo, dependsOn, importUri, ignoreChanges,
|
|
5
|
+
declare const _default: ({ name, group, vaultInfo, dependsOn, importUri, ignoreChanges, }: UserAssignedIdentityProps) => IdentityInfoWithInstance<mid.UserAssignedIdentity>;
|
|
5
6
|
export default _default;
|
|
@@ -24,21 +24,14 @@ var __importStar = (this && this.__importStar) || function (mod) {
|
|
|
24
24
|
};
|
|
25
25
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
26
26
|
const CustomHelper_1 = require("../KeyVault/CustomHelper");
|
|
27
|
-
const
|
|
27
|
+
const mid = __importStar(require("@pulumi/azure-native/managedidentity"));
|
|
28
28
|
const Common_1 = require("../Common");
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
const managedIdentity = new azure.managedidentity.UserAssignedIdentity(name, {
|
|
29
|
+
exports.default = ({ name, group, vaultInfo, dependsOn, importUri, ignoreChanges, }) => {
|
|
30
|
+
name = (0, Common_1.getUIDName)(name);
|
|
31
|
+
const managedIdentity = new mid.UserAssignedIdentity(name, {
|
|
33
32
|
resourceName: name,
|
|
34
33
|
...group,
|
|
35
34
|
}, { dependsOn, import: importUri, ignoreChanges });
|
|
36
|
-
(0, Helper_1.grantIdentityPermissions)({
|
|
37
|
-
...others,
|
|
38
|
-
name,
|
|
39
|
-
vaultInfo,
|
|
40
|
-
principalId: managedIdentity.principalId,
|
|
41
|
-
});
|
|
42
35
|
if (vaultInfo) {
|
|
43
36
|
(0, CustomHelper_1.addCustomSecrets)({
|
|
44
37
|
vaultInfo,
|
|
@@ -57,6 +50,10 @@ exports.default = ({ name, group, vaultInfo, dependsOn, importUri, ignoreChanges
|
|
|
57
50
|
],
|
|
58
51
|
});
|
|
59
52
|
}
|
|
60
|
-
return
|
|
53
|
+
return {
|
|
54
|
+
id: managedIdentity.id,
|
|
55
|
+
principalId: managedIdentity.principalId,
|
|
56
|
+
instance: managedIdentity,
|
|
57
|
+
};
|
|
61
58
|
};
|
|
62
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
59
|
+
//# sourceMappingURL=data:application/json;base64,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
|
package/Builder/AksBuilder.d.ts
CHANGED
|
@@ -1,3 +1,3 @@
|
|
|
1
|
-
import {
|
|
2
|
-
declare const _default: (props:
|
|
1
|
+
import { AksBuilderArgs, ISshBuilder } from './types';
|
|
2
|
+
declare const _default: (props: AksBuilderArgs) => ISshBuilder;
|
|
3
3
|
export default _default;
|
package/Builder/AksBuilder.js
CHANGED
|
@@ -11,6 +11,7 @@ const KeyGenerators_1 = require("../Core/KeyGenerators");
|
|
|
11
11
|
const containerservice_1 = require("@pulumi/azure-native/containerservice");
|
|
12
12
|
const Aks_1 = __importDefault(require("../Aks"));
|
|
13
13
|
class AksBuilder extends types_1.BuilderAsync {
|
|
14
|
+
args;
|
|
14
15
|
//Instances
|
|
15
16
|
_sshInstance = undefined;
|
|
16
17
|
_askInstance = undefined;
|
|
@@ -25,8 +26,10 @@ class AksBuilder extends types_1.BuilderAsync {
|
|
|
25
26
|
_defaultNode = undefined;
|
|
26
27
|
_importProps = undefined;
|
|
27
28
|
_lock = false;
|
|
28
|
-
|
|
29
|
-
|
|
29
|
+
_encryptionProps = undefined;
|
|
30
|
+
constructor(args) {
|
|
31
|
+
super(args);
|
|
32
|
+
this.args = args;
|
|
30
33
|
}
|
|
31
34
|
//Info collection methods
|
|
32
35
|
withNewSsh(props) {
|
|
@@ -61,6 +64,10 @@ class AksBuilder extends types_1.BuilderAsync {
|
|
|
61
64
|
this._defaultNode = props;
|
|
62
65
|
return this;
|
|
63
66
|
}
|
|
67
|
+
enableEncryption(props) {
|
|
68
|
+
this._encryptionProps = props;
|
|
69
|
+
return this;
|
|
70
|
+
}
|
|
64
71
|
lock() {
|
|
65
72
|
this._lock = true;
|
|
66
73
|
return this;
|
|
@@ -91,6 +98,7 @@ class AksBuilder extends types_1.BuilderAsync {
|
|
|
91
98
|
adminUsername: this._sshInstance.userName,
|
|
92
99
|
sshKeys: [sshKey],
|
|
93
100
|
},
|
|
101
|
+
diskEncryptionSetId: this._encryptionProps?.diskEncryptionSetId,
|
|
94
102
|
defaultNodePool: this._defaultNode,
|
|
95
103
|
nodePools: this._nodePoolsProps,
|
|
96
104
|
features: this._featureProps,
|
|
@@ -100,14 +108,13 @@ class AksBuilder extends types_1.BuilderAsync {
|
|
|
100
108
|
lock: this._lock,
|
|
101
109
|
});
|
|
102
110
|
//Grant read permission to AKS Node Group
|
|
103
|
-
if (this.
|
|
104
|
-
this._askInstance.instance.nodeResourceGroup) {
|
|
111
|
+
if (this.args.envRoles && this._askInstance.instance.nodeResourceGroup) {
|
|
105
112
|
(0, EnvRoles_Consts_1.grantEnvRolesAccess)({
|
|
106
113
|
name: `${this._askInstance.name}-node-group`,
|
|
107
114
|
dependsOn: this._askInstance.instance,
|
|
108
|
-
envRoles: this.
|
|
115
|
+
envRoles: this.args.envRoles.info(),
|
|
109
116
|
enableRGRoles: { readOnly: true },
|
|
110
|
-
scope: (0, pulumi_1.interpolate)
|
|
117
|
+
scope: (0, pulumi_1.interpolate) `${Common_1.defaultSubScope}/resourceGroups/${this._askInstance.instance.nodeResourceGroup}`,
|
|
111
118
|
});
|
|
112
119
|
}
|
|
113
120
|
}
|
|
@@ -118,4 +125,4 @@ class AksBuilder extends types_1.BuilderAsync {
|
|
|
118
125
|
}
|
|
119
126
|
}
|
|
120
127
|
exports.default = (props) => new AksBuilder(props);
|
|
121
|
-
//# sourceMappingURL=data:application/json;base64,
|
|
128
|
+
//# sourceMappingURL=data:application/json;base64,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
|