-
Notifications
You must be signed in to change notification settings - Fork 5.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Hub Generated] Review request for Microsoft.Security to add version stable/2020-01-01 #8805
[Hub Generated] Review request for Microsoft.Security to add version stable/2020-01-01 #8805
Conversation
Pull request contains merge conflicts. |
No commit pushedDate could be found for PR 8805 in repo Azure/azure-rest-api-specs |
Can one of the admins verify this patch? |
/azp run |
Azure Pipelines successfully started running 3 pipeline(s). |
Hi @nitsi is this PR ready for review? If so, given that you have the permission to edit labels, it would be best to add a |
azure-sdk-for-python - Release
- Breaking Change detected in SDK
|
azure-sdk-for-net - Release
|
azure-cli-extensions
No readme.md specification configuration files were found that are associated with the files modified in this pull request, or swagger_to_sdk section in readme.md is not configured
|
azure-sdk-for-go - Release
|
azure-sdk-for-js - Release
|
azure-sdk-for-java - Release
No readme.md specification configuration files were found that are associated with the files modified in this pull request, or swagger_to_sdk section in readme.md is not configured
|
You have inconsistency enum definitions between here and the |
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
Pull request contains merge conflicts. |
1 similar comment
Pull request contains merge conflicts. |
Azure Pipelines successfully started running 1 pipeline(s). |
There is another enum called |
Azure Pipelines successfully started running 1 pipeline(s). |
Azure Pipelines successfully started running 1 pipeline(s). |
} | ||
} | ||
}, | ||
"ResourceIdentifier": { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please model resource identifiers using the standard ARM id string format rather than writing a custom model for it. This has the following benefits:
- Consistency with other ARM services.
- Allows other services (ARM, ARG, ARM Deployments) to programatically understand resource dependencies.
- Avoids users of the SDK to have to write resourceId parsing (e.g. if a user wants to fetch a loganalytics resource and pass the id to this field).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Hi, can you explain " standard ARM id string format" ?
ResourceIdentifiers has 2 formatting types, which property "type" is common , and each has its own additional properties.
Do you mean to include only the type property as string, and allow additional properties?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think Anthony is talking about using the standard ARM resource ID string (something like /subscriptions/{id}/resourceGroups/{rg}/providers...
) You are basically doing that with Azure Resources, but I definitely see the challenge with LA which is partially in the data plane (due to agent IDs).
In reply to: 437166909 [](ancestors = 437166909)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We definitely should drop "Identifier" from the definition name and the property above (see comment above). It can be confused with the meaning of the id
property which is the resource identifier.
In reply to: 439029078 [](ancestors = 439029078,437166909)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
See my comment on your other comment about the resourceIdentifiers. It is not just the "ARMResourceId" , there are some identifiers for the resource , ARMResourceId is identifier in terms of AzureResource. There are some more resource identifiers for the resource
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Replied on that one. I'm disagreeing with Anthony and agreeing with you, but have a concern about naming.
In reply to: 439064304 [](ancestors = 439064304)
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
specification/security/resource-manager/Microsoft.Security/stable/2020-01-01/alerts.json
Outdated
Show resolved
Hide resolved
Comment was made before the most recent commit for PR 8805 in repo Azure/azure-rest-api-specs |
"resourceIdentifiers": { | ||
"readOnly": true, | ||
"type": "array", | ||
"description": "The resource identifiers for this alert which can be used to direct the alert to the right product exposure group (tenant, workspace, subscription etc.). There can be multiple identifiers of different type per alert.", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The resource identifiers for this alert [](start = 26, length = 39)
This doesn't seem accurate. The resource identifier for the alert is in the id
property of the alert resource. I think you mean something else here. Would impactedResources
, affectedResources
or something like that be a better fit?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It is an array of all the identifiers for the resource: we can have AADIdentifier (which has AadTenantId inside) , AzureResource ( which has AzureResourceId inside) , LogAnalytics ( which has WorkspaceId, WorkspaceSubscriptionId and some more identifiers inside).
So the name - resourceIdentfiers will hold all the identifiers for this resource. not just the "resourceId" itself
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, I got that. All I'm saying is that the description text of "The resource identifiers for this alert" is confusing. The text is ambiguous and implies that the alert is being identified by the resourceIdentifiers
property. I think part of the issue is the name of the property (schema of the property is fine) I think the name of the name should be changed to something that better captures the relationship between the alert and the resources. Maybe impactedResources
, affectedResources
, or something like that?
In reply to: 439062511 [](ancestors = 439062511)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changed the description, and removed "for this alert". Do you thing it is more clear now?. We use this name internally in schema which we expose to out partners so changing it might be confusing.
Azure Pipelines successfully started running 1 pipeline(s). |
azure-sdk-for-python-track2 - Release
No readme.md specification configuration files were found that are associated with the files modified in this pull request, or swagger_to_sdk section in readme.md is not configured
|
@chiragg4u can you take over ARM review on this one also? |
"type": "AzureResource" | ||
}, | ||
{ | ||
"workspaceId": "f419f624-acad-4d89-b86d-f62fa387f019", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why did we modeled this differently? Can't we use azureResourceId as workspace is also an Azure resource?
Please work with Gaurav Bhatnagar for continuing the review.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Those are different values , or did you mean something else? I'll work with Gaurav
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
can the workspace Id be the ARM resource ID which is of the form /subsccriptions/{id}/resourceGroups/{rgname}/..../workspaces/{name}? @yibirnba ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
we keep this separately on different properties: WorkspaceId, WorkspaceSubscriptionId, WorkspaceResourceGroup, AgentId , since those are not mandatory fields and we want to show information that we have
"type": "object", | ||
"description": "describes security alert properties.", | ||
"properties": { | ||
"alertType": { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
please make this enum and list all the possible values
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
alertType is not a closed list, there are hundreds of types, and new types are been added often
"type": "AzureResource" | ||
}, | ||
{ | ||
"workspaceId": "f419f624-acad-4d89-b86d-f62fa387f019", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
can the workspace Id be the ARM resource ID which is of the form /subsccriptions/{id}/resourceGroups/{rgname}/..../workspaces/{name}? @yibirnba ?
Adding new APIs requires a new api-version as per the new versioning guidelines. If you need or think this must be added to the existing api-version, please get sign off from Azure API review board. Adrian hall, Johan Stenberg, Jeffrey Richter etc. can help |
Removing ARM Review label as APIs are fine from ARM standpoint. |
Hi @nitsi is this PR ready to merge? This LGTM and should be good to merge. If this is ready to merge, please remove the |
Azure Pipelines successfully started running 1 pipeline(s). |
Hi @nitsi do we have any update on this? Please let me know if this is ready to merge |
Not yet, we still have a few things to do before:
We will give you an update once we are ready |
@ArcturusZhang Please marge |
azure-resource-manager-schemas - Release
|
If you are a MSFT employee you can view your work branch via this link.
Contribution checklist: