From 0d48a52a4166fc09362ca64f7a02a70013415bad Mon Sep 17 00:00:00 2001 From: SDKAuto Date: Sun, 30 Jan 2022 08:45:00 +0000 Subject: [PATCH] CodeGen from PR 17556 in Azure/azure-rest-api-specs Merge fde8174ada3227d627175ea85cbbf6ee02a444af into 6574b8020fbe45dd36da2527947e0f83bf63866e --- .../arm-securityinsight/CHANGELOG.md | 106 + .../arm-securityinsight/_meta.json | 8 +- .../arm-securityinsight/api-extractor.json | 25 +- .../arm-securityinsight/package.json | 25 +- .../node/my_test/recording_sample_test.js | 5 - .../review/arm-securityinsight.api.md | 358 +- .../arm-securityinsight/sample.env | 4 - ...ppendTagsToAThreatIntelligenceIndicator.ts | 42 - .../samples-dev/checkRequirementsForAad.ts | 41 - .../checkRequirementsForAadNoAuthorization.ts | 41 - .../checkRequirementsForAadNoLicense.ts | 41 - .../samples-dev/checkRequirementsForAsc.ts | 41 - .../checkRequirementsForDynamics365.ts | 41 - .../samples-dev/checkRequirementsForMcas.ts | 41 - .../samples-dev/checkRequirementsForMdatp.ts | 41 - ...uirementsForMicrosoftThreatIntelligence.ts | 41 - ...equirementsForMicrosoftThreatProtection.ts | 41 - .../checkRequirementsForOfficeAtp.ts | 41 - .../checkRequirementsForOfficeIrm.ts | 41 - .../samples-dev/checkRequirementsForTi.ts | 41 - .../checkRequirementsForTiTaxii.ts | 41 - .../connectAnApiPollingDataConnector.ts | 51 - .../createANewThreatIntelligence.ts | 57 - .../samples-dev/createOrUpdateFullMetadata.ts | 92 - .../createOrUpdateMinimalMetadata.ts | 42 - .../createSentinelOnboardingState.ts | 45 - .../samples-dev/createsASourceControl.ts | 52 - .../samples-dev/createsIncidentTeamsGroup.ts | 40 - ...reatesOrUpdatesAApiPollingDataConnector.ts | 135 - .../samples-dev/createsOrUpdatesABookmark.ts | 49 - .../createsOrUpdatesABookmarkRelation.ts | 42 - ...eatesOrUpdatesADynamics365DataConnector.ts | 45 - .../createsOrUpdatesAFusionAlertRule.ts | 42 - ...createsOrUpdatesAGenericUiDataConnector.ts | 173 - ...sAMicrosoftSecurityIncidentCreationRule.ts | 46 - .../createsOrUpdatesANrtAlertRule.ts | 59 - .../createsOrUpdatesAScheduledAlertRule.ts | 86 - ...esAThreatIntelligenceTaxiiDataConnector.ts | 53 - .../samples-dev/createsOrUpdatesAWatchlist.ts | 44 - ...sAWatchlistAndBulkCreatesWatchlistItems.ts | 47 - .../createsOrUpdatesAWatchlistItem.ts | 49 - .../createsOrUpdatesAnActionOfAlertRule.ts | 45 - .../createsOrUpdatesAnActivityEntityQuery.ts | 61 - .../createsOrUpdatesAnAutomationRule.ts | 75 - .../samples-dev/createsOrUpdatesAnIncident.ts | 49 - .../createsOrUpdatesAnIncidentComment.ts | 39 - .../createsOrUpdatesAnIncidentRelation.ts | 42 - ...reatesOrUpdatesAnOffice365DataConnector.ts | 49 - ...ThreatIntelligencePlatformDataConnector.ts | 44 - .../deleteAApiPollingDataConnector.ts | 35 - .../samples-dev/deleteABookmark.ts | 35 - .../deleteAGenericUiDataConnector.ts | 35 - .../samples-dev/deleteASourceControl.ts | 35 - .../deleteAThreatIntelligenceIndicator.ts | 35 - .../samples-dev/deleteAWatchlist.ts | 35 - .../samples-dev/deleteAWatchlistItem.ts | 37 - .../samples-dev/deleteAnActionOfAlertRule.ts | 37 - .../samples-dev/deleteAnAlertRule.ts | 35 - .../samples-dev/deleteAnAutomationRule.ts | 35 - .../samples-dev/deleteAnEntityQuery.ts | 35 - .../samples-dev/deleteAnIncident.ts | 35 - .../deleteAnOffice365DataConnector.ts | 35 - .../samples-dev/deleteAnOfficeConsent.ts | 35 - .../samples-dev/deleteEyesOnSettings.ts | 35 - .../samples-dev/deleteMetadata.ts | 35 - .../deleteSentinelOnboardingState.ts | 35 - .../samples-dev/deleteTheBookmarkRelation.ts | 37 - .../samples-dev/deleteTheIncidentComment.ts | 37 - .../samples-dev/deleteTheIncidentRelation.ts | 37 - .../disconnectAnApiPollingDataConnector.ts | 35 - .../samples-dev/entityInsight.ts | 45 - .../samples-dev/entityTimeline.ts | 44 - .../samples-dev/expandAnBookmark.ts | 44 - .../samples-dev/expandAnEntity.ts | 44 - .../getAApiPollingDataConnector.ts | 35 - .../samples-dev/getAAscDataConnector.ts | 35 - .../samples-dev/getABookmark.ts | 35 - .../samples-dev/getABookmarkRelation.ts | 37 - .../samples-dev/getACloudApplicationEntity.ts | 35 - .../samples-dev/getADnsEntity.ts | 35 - .../getADynamics365DataConnector.ts | 35 - .../samples-dev/getAFileEntity.ts | 35 - .../samples-dev/getAFileHashEntity.ts | 35 - .../samples-dev/getAFusionAlertRule.ts | 35 - .../samples-dev/getAGenericUiDataConnector.ts | 35 - .../samples-dev/getAHostEntity.ts | 35 - .../samples-dev/getAMailClusterEntity.ts | 35 - .../samples-dev/getAMailMessageEntity.ts | 35 - .../samples-dev/getAMailboxEntity.ts | 35 - .../samples-dev/getAMalwareEntity.ts | 35 - .../samples-dev/getAMcasDataConnector.ts | 35 - .../samples-dev/getAMdatpDataConnector.ts | 35 - ...tAMicrosoftSecurityIncidentCreationRule.ts | 35 - ...icrosoftThreatIntelligenceDataConnector.ts | 35 - ...AMicrosoftThreatProtectionDataConnector.ts | 35 - .../samples-dev/getAOfficeAtpDataConnector.ts | 35 - .../samples-dev/getAOfficeIrmDataConnector.ts | 35 - .../samples-dev/getAProcessEntity.ts | 35 - .../samples-dev/getARegistryKeyEntity.ts | 35 - .../samples-dev/getARegistryValueEntity.ts | 35 - .../samples-dev/getAScheduledAlertRule.ts | 35 - .../samples-dev/getASecurityAlertEntity.ts | 35 - .../samples-dev/getASecurityGroupEntity.ts | 35 - .../samples-dev/getASourceControl.ts | 35 - .../samples-dev/getASubmissionMailEntity.ts | 35 - .../samples-dev/getATiDataConnector.ts | 35 - .../samples-dev/getATiTaxiiDataConnector.ts | 35 - .../samples-dev/getAUrlEntity.ts | 35 - .../samples-dev/getAWatchlist.ts | 35 - .../samples-dev/getAWatchlistItem.ts | 37 - .../samples-dev/getAlertRuleTemplateById.ts | 35 - .../samples-dev/getAllActionsOfAlertRule.ts | 38 - .../samples-dev/getAllAlertRuleTemplates.ts | 36 - .../samples-dev/getAllAlertRules.ts | 36 - .../samples-dev/getAllAutomationRules.ts | 36 - .../samples-dev/getAllBookmarkRelations.ts | 38 - .../samples-dev/getAllBookmarks.ts | 36 - .../samples-dev/getAllDataConnectors.ts | 36 - .../samples-dev/getAllEntities.ts | 36 - .../samples-dev/getAllEntityQueries.ts | 39 - .../samples-dev/getAllEntityQueryTemplates.ts | 36 - .../samples-dev/getAllIncidentAlerts.ts | 35 - .../samples-dev/getAllIncidentBookmarks.ts | 35 - .../samples-dev/getAllIncidentComments.ts | 38 - .../samples-dev/getAllIncidentRelations.ts | 38 - .../samples-dev/getAllIncidents.ts | 40 - .../samples-dev/getAllMetadata.ts | 36 - ...dataWithODataFilterOrOrderbyOrSkipOrTop.ts | 36 - .../samples-dev/getAllOfficeConsents.ts | 36 - .../samples-dev/getAllRelationsOfAnEntity.ts | 38 - .../getAllSentinelOnboardingStates.ts | 33 - .../samples-dev/getAllSettings.ts | 33 - .../samples-dev/getAllSourceControls.ts | 36 - .../getAllThreatIntelligenceIndicators.ts | 36 - .../samples-dev/getAllWatchlistItems.ts | 38 - .../samples-dev/getAllWatchlists.ts | 36 - .../samples-dev/getAnAadDataConnector.ts | 35 - .../samples-dev/getAnAatpDataConnector.ts | 35 - .../samples-dev/getAnAccountEntity.ts | 35 - .../samples-dev/getAnActionOfAlertRule.ts | 37 - .../samples-dev/getAnActivityEntityQuery.ts | 35 - .../getAnActivityEntityQueryTemplate.ts | 35 - .../samples-dev/getAnAutomationRule.ts | 35 - .../getAnAwsCloudTrailDataConnector.ts | 35 - .../samples-dev/getAnAwsS3DataConnector.ts | 35 - .../samples-dev/getAnAzureResourceEntity.ts | 35 - .../samples-dev/getAnEntityRelation.ts | 37 - .../samples-dev/getAnExpansionEntityQuery.ts | 35 - .../samples-dev/getAnIPEntity.ts | 35 - .../samples-dev/getAnIncident.ts | 35 - .../samples-dev/getAnIncidentComment.ts | 37 - .../samples-dev/getAnIncidentRelation.ts | 37 - .../samples-dev/getAnIoTDeviceEntity.ts | 35 - .../samples-dev/getAnNrtAlertRule.ts | 35 - .../getAnOffice365DataConnector.ts | 35 - .../samples-dev/getAnOfficeConsent.ts | 35 - .../samples-dev/getEntityQuery.ts | 37 - .../samples-dev/getEyesOnSettings.ts | 35 - .../getGeodataForASingleIPAddress.ts | 30 - .../samples-dev/getRepositoryList.ts | 38 - .../samples-dev/getSentinelOnboardingState.ts | 35 - .../samples-dev/getSingleMetadataByName.ts | 35 - .../getThreatIntelligenceIndicatorsMetrics.ts | 33 - ...getWhoisInformationForASingleDomainName.ts | 30 - .../getsAllIncidentRelatedEntities.ts | 35 - ...ligenceIndicatorsAsPerFilteringCriteria.ts | 49 - .../replaceTagsToAThreatIntelligence.ts | 44 - .../updateAThreatIntelligenceIndicator.ts | 59 - .../samples-dev/updateEyesOnSettings.ts | 40 - .../samples-dev/updateMetadata.ts | 39 - .../viewAThreatIntelligenceIndicatorByName.ts | 35 - .../arm-securityinsight/src/models/index.ts | 1732 +++++----- .../arm-securityinsight/src/models/mappers.ts | 3013 ++++++++++------- .../src/models/parameters.ts | 207 +- .../src/operations/automationRules.ts | 149 +- .../src/operations/dataConnectors.ts | 4 +- .../src/operations/entities.ts | 2 +- .../src/operations/entityQueries.ts | 4 +- .../src/operations/index.ts | 12 +- .../operationsInterfaces/automationRules.ts | 22 +- .../src/operationsInterfaces/index.ts | 12 +- .../src/securityInsights.ts | 62 +- .../arm-securityinsight/tsconfig.json | 16 +- 183 files changed, 3439 insertions(+), 8969 deletions(-) delete mode 100644 sdk/securityinsight/arm-securityinsight/recordings/node/my_test/recording_sample_test.js delete mode 100644 sdk/securityinsight/arm-securityinsight/sample.env delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/appendTagsToAThreatIntelligenceIndicator.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAad.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoAuthorization.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoLicense.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAsc.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForDynamics365.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMcas.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMdatp.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatIntelligence.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatProtection.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeAtp.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeIrm.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTi.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTiTaxii.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/connectAnApiPollingDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createANewThreatIntelligence.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateFullMetadata.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateMinimalMetadata.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createSentinelOnboardingState.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsASourceControl.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsIncidentTeamsGroup.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAApiPollingDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmark.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmarkRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesADynamics365DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAFusionAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAGenericUiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAMicrosoftSecurityIncidentCreationRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesANrtAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAScheduledAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAThreatIntelligenceTaxiiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlist.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistItem.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActionOfAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActivityEntityQuery.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnAutomationRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncident.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentComment.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnOffice365DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnThreatIntelligencePlatformDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAApiPollingDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteABookmark.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAGenericUiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteASourceControl.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAThreatIntelligenceIndicator.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlist.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlistItem.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnActionOfAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAutomationRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnEntityQuery.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnIncident.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOffice365DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOfficeConsent.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteEyesOnSettings.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteMetadata.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteSentinelOnboardingState.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheBookmarkRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentComment.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/disconnectAnApiPollingDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/entityInsight.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/entityTimeline.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/expandAnBookmark.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/expandAnEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAApiPollingDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAAscDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getABookmark.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getABookmarkRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getACloudApplicationEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getADnsEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getADynamics365DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAFileEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAFileHashEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAFusionAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAGenericUiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAHostEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMailClusterEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMailMessageEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMailboxEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMalwareEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMcasDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMdatpDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftSecurityIncidentCreationRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatIntelligenceDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatProtectionDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeAtpDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeIrmDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAProcessEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryKeyEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryValueEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAScheduledAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityAlertEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityGroupEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getASourceControl.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getASubmissionMailEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getATiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getATiTaxiiDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAUrlEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlist.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlistItem.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAlertRuleTemplateById.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllActionsOfAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRuleTemplates.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRules.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllAutomationRules.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarkRelations.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarks.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllDataConnectors.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntities.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueries.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueryTemplates.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentAlerts.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentBookmarks.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentComments.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentRelations.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidents.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadata.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllOfficeConsents.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllRelationsOfAnEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllSentinelOnboardingStates.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllSettings.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllSourceControls.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllThreatIntelligenceIndicators.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlistItems.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlists.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAadDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAatpDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAccountEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnActionOfAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQuery.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQueryTemplate.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAutomationRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsCloudTrailDataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsS3DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnAzureResourceEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnEntityRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnExpansionEntityQuery.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnIPEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncident.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentComment.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentRelation.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnIoTDeviceEntity.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnNrtAlertRule.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnOffice365DataConnector.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getAnOfficeConsent.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getEntityQuery.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getEyesOnSettings.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getGeodataForASingleIPAddress.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getRepositoryList.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getSentinelOnboardingState.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getSingleMetadataByName.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getThreatIntelligenceIndicatorsMetrics.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getWhoisInformationForASingleDomainName.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/getsAllIncidentRelatedEntities.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/queryThreatIntelligenceIndicatorsAsPerFilteringCriteria.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/replaceTagsToAThreatIntelligence.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/updateAThreatIntelligenceIndicator.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/updateEyesOnSettings.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/updateMetadata.ts delete mode 100644 sdk/securityinsight/arm-securityinsight/samples-dev/viewAThreatIntelligenceIndicatorByName.ts diff --git a/sdk/securityinsight/arm-securityinsight/CHANGELOG.md b/sdk/securityinsight/arm-securityinsight/CHANGELOG.md index b31724782786..32aab8b644c3 100644 --- a/sdk/securityinsight/arm-securityinsight/CHANGELOG.md +++ b/sdk/securityinsight/arm-securityinsight/CHANGELOG.md @@ -1,5 +1,111 @@ # Release History +## 1.0.0-beta.2 (2022-01-30) + +**Features** + + - Added operation AutomationRules.manualTriggerPlaybook + - Added Interface AutomationRulesManualTriggerPlaybookOptionalParams + - Added Interface BookmarkEntityMappings + - Added Interface EntityFieldMapping + - Added Interface FusionScenarioExclusionPattern + - Added Interface FusionSourceSettings + - Added Interface FusionSourceSubTypeSetting + - Added Interface FusionSubTypeSeverityFilter + - Added Interface FusionSubTypeSeverityFiltersItem + - Added Interface FusionTemplateSourceSetting + - Added Interface FusionTemplateSourceSubType + - Added Interface FusionTemplateSubTypeSeverityFilter + - Added Interface ManualTriggerRequestBody + - Added Interface Office365ProjectConnectorDataTypes + - Added Interface OfficePowerBIConnectorDataTypes + - Added Type Alias ActionType + - Added Type Alias AlertRuleTemplateWithMitreProperties + - Added Type Alias AutomationRulesDeleteResponse + - Added Type Alias AutomationRulesManualTriggerPlaybookResponse + - Added Type Alias ConditionType + - Added Type Alias Enum12 + - Added Type Alias Office365ProjectCheckRequirements + - Added Type Alias Office365ProjectCheckRequirementsProperties + - Added Type Alias Office365ProjectConnectorDataTypesLogs + - Added Type Alias Office365ProjectDataConnector + - Added Type Alias Office365ProjectDataConnectorProperties + - Added Type Alias OfficePowerBICheckRequirements + - Added Type Alias OfficePowerBICheckRequirementsProperties + - Added Type Alias OfficePowerBIConnectorDataTypesLogs + - Added Type Alias OfficePowerBIDataConnector + - Added Type Alias OfficePowerBIDataConnectorProperties + - Added Type Alias PropertyConditionProperties + - Interface AutomationRulesCreateOrUpdateOptionalParams has a new optional parameter automationRuleToUpsert + - Interface IncidentAdditionalData has a new optional parameter providerIncidentUrl + - Interface IncidentAdditionalData has a new optional parameter techniques + - Interface QueryBasedAlertRuleProperties has a new optional parameter techniques + - Add parameters of AlertRuleTemplateWithMitreProperties to TypeAlias FusionAlertRuleTemplateProperties + - Add parameters of AlertRuleTemplateWithMitreProperties to TypeAlias MLBehaviorAnalyticsAlertRuleTemplateProperties + - Add parameters of AlertRuleTemplateWithMitreProperties to TypeAlias NrtAlertRuleTemplateProperties + - Add parameters of AlertRuleTemplateWithMitreProperties to TypeAlias ScheduledAlertRuleTemplateProperties + - Add parameters of AlertRuleTemplateWithMitreProperties to TypeAlias ThreatIntelligenceAlertRuleTemplateProperties + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter severity + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter status + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter classification + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter classificationReason + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter classificationComment + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter owner + - Type Alias AutomationRuleModifyPropertiesAction has a new parameter labels + - Type Alias AutomationRuleRunPlaybookAction has a new parameter logicAppResourceId + - Type Alias AutomationRuleRunPlaybookAction has a new parameter tenantId + - Type Alias Bookmark has a new parameter entityMappings + - Type Alias Bookmark has a new parameter tactics + - Type Alias Bookmark has a new parameter techniques + - Type Alias FusionAlertRule has a new parameter sourceSettings + - Type Alias FusionAlertRule has a new parameter scenarioExclusionPatterns + - Type Alias FusionAlertRule has a new parameter techniques + - Type Alias FusionAlertRuleTemplate has a new parameter techniques + - Type Alias FusionAlertRuleTemplate has a new parameter sourceSettings + - Type Alias MLBehaviorAnalyticsAlertRule has a new parameter techniques + - Type Alias MLBehaviorAnalyticsAlertRuleTemplate has a new parameter techniques + - Type Alias NrtAlertRule has a new parameter techniques + - Type Alias NrtAlertRuleTemplate has a new parameter techniques + - Type Alias ScheduledAlertRule has a new parameter techniques + - Type Alias ScheduledAlertRuleTemplate has a new parameter techniques + - Type Alias ThreatIntelligenceAlertRule has a new parameter techniques + - Type Alias ThreatIntelligenceAlertRuleTemplate has a new parameter techniques + - Added Enum KnownActionType + - Added Enum KnownConditionType + - Added Enum KnownEnum12 + - Enum KnownAttackTactic has a new value ImpairProcessControl + - Enum KnownAttackTactic has a new value InhibitResponseFunction + - Enum KnownAttackTactic has a new value Reconnaissance + - Enum KnownAttackTactic has a new value ResourceDevelopment + - Enum KnownAutomationRulePropertyConditionSupportedProperty has a new value AlertProductNames + - Enum KnownAutomationRulePropertyConditionSupportedProperty has a new value IncidentLabel + - Enum KnownDataConnectorKind has a new value Office365Project + - Enum KnownDataConnectorKind has a new value OfficePowerBI + +**Breaking Changes** + + - Operation AutomationRules.createOrUpdate has a new signature + - Interface QueryBasedAlertRuleTemplateProperties no longer has parameter tactics + - Delete parameters of AlertRuleTemplatePropertiesBase in TypeAlias FusionAlertRuleTemplateProperties + - Delete parameters of AlertRuleTemplatePropertiesBase in TypeAlias MLBehaviorAnalyticsAlertRuleTemplateProperties + - Delete parameters of AlertRuleTemplatePropertiesBase in TypeAlias NrtAlertRuleTemplateProperties + - Delete parameters of AlertRuleTemplatePropertiesBase in TypeAlias ScheduledAlertRuleTemplateProperties + - Delete parameters of AlertRuleTemplatePropertiesBase in TypeAlias ThreatIntelligenceAlertRuleTemplateProperties + - Type Alias AutomationRuleModifyPropertiesAction no longer has parameter actionConfiguration + - Type Alias AutomationRuleRunPlaybookAction no longer has parameter actionConfiguration + - Type Alias FusionAlertRuleTemplateProperties no longer has parameter tactics + - Type Alias MLBehaviorAnalyticsAlertRuleTemplateProperties no longer has parameter tactics + - Type Alias ThreatIntelligenceAlertRuleTemplateProperties no longer has parameter tactics + - Type Alias FusionAlertRuleTemplateProperties has a new parameter sourceSettings + - Parameter displayName of Type Alias AutomationRule is now required + - Parameter order of Type Alias AutomationRule is now required + - Parameter triggeringLogic of Type Alias AutomationRule is now required + - Parameter actions of Type Alias AutomationRule is now required + - Removed Enum KnownAutomationRuleActionType + - Removed Enum KnownAutomationRuleConditionType + - Removed Enum KnownEnum8 + + ## 1.0.0-beta.1 (2022-01-19) The package of @azure/arm-securityinsight is using our next generation design principles. To learn more, please refer to our documentation [Quick Start](https://aka.ms/js-track2-quickstart). diff --git a/sdk/securityinsight/arm-securityinsight/_meta.json b/sdk/securityinsight/arm-securityinsight/_meta.json index 55f48480abfc..200746dda55c 100644 --- a/sdk/securityinsight/arm-securityinsight/_meta.json +++ b/sdk/securityinsight/arm-securityinsight/_meta.json @@ -1,7 +1,7 @@ { - "commit": "1b0a465061c68175898f8f5d27f0301f42ce994c", + "commit": "bda207de0ff091bdfd5580794328dc02dd682240", "readme": "specification/securityinsights/resource-manager/readme.md", - "autorest_command": "autorest --version=3.7.3 --typescript --modelerfour.lenient-model-deduplication --head-as-boolean=true --license-header=MICROSOFT_MIT_NO_VERSION --generate-test --typescript-sdks-folder=D:\\mydev\\azure-sdk-for-js ../azure-rest-api-specs/specification/iotspaces/resource-manager/readme.md --use=@autorest/typescript@6.0.0-alpha.16.20220114.1 --generate-sample=true", + "autorest_command": "autorest --version=3.7.3 --typescript --modelerfour.lenient-model-deduplication --head-as-boolean=true --license-header=MICROSOFT_MIT_NO_VERSION --generate-test --typescript-sdks-folder=/home/vsts/work/1/s/azure-sdk-for-js ../azure-rest-api-specs/specification/securityinsights/resource-manager/readme.md --use=@autorest/typescript@6.0.0-alpha.16.20220105.1", "repository_url": "https://github.com/Azure/azure-rest-api-specs.git", - "use": "@autorest/typescript@6.0.0-alpha.16.20220114.1" -} + "use": "@autorest/typescript@6.0.0-alpha.16.20220105.1" +} \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/api-extractor.json b/sdk/securityinsight/arm-securityinsight/api-extractor.json index c343bf73e921..ba4f20f727f2 100644 --- a/sdk/securityinsight/arm-securityinsight/api-extractor.json +++ b/sdk/securityinsight/arm-securityinsight/api-extractor.json @@ -1,18 +1,31 @@ { "$schema": "https://developer.microsoft.com/json-schemas/api-extractor/v7/api-extractor.schema.json", "mainEntryPointFilePath": "./dist-esm/src/index.d.ts", - "docModel": { "enabled": true }, - "apiReport": { "enabled": true, "reportFolder": "./review" }, + "docModel": { + "enabled": true + }, + "apiReport": { + "enabled": true, + "reportFolder": "./review" + }, "dtsRollup": { "enabled": true, "untrimmedFilePath": "", "publicTrimmedFilePath": "./types/arm-securityinsight.d.ts" }, "messages": { - "tsdocMessageReporting": { "default": { "logLevel": "none" } }, + "tsdocMessageReporting": { + "default": { + "logLevel": "none" + } + }, "extractorMessageReporting": { - "ae-missing-release-tag": { "logLevel": "none" }, - "ae-unresolved-link": { "logLevel": "none" } + "ae-missing-release-tag": { + "logLevel": "none" + }, + "ae-unresolved-link": { + "logLevel": "none" + } } } -} +} \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/package.json b/sdk/securityinsight/arm-securityinsight/package.json index 60b9c83bbb72..b2038651cd78 100644 --- a/sdk/securityinsight/arm-securityinsight/package.json +++ b/sdk/securityinsight/arm-securityinsight/package.json @@ -3,8 +3,10 @@ "sdk-type": "mgmt", "author": "Microsoft Corporation", "description": "A generated SDK for SecurityInsights.", - "version": "1.0.0-beta.1", - "engines": { "node": ">=12.0.0" }, + "version": "1.0.0-beta.2", + "engines": { + "node": ">=12.0.0" + }, "dependencies": { "@azure/core-paging": "^1.2.0", "@azure/core-client": "^1.0.0", @@ -12,7 +14,13 @@ "@azure/core-rest-pipeline": "^1.1.0", "tslib": "^2.2.0" }, - "keywords": ["node", "azure", "typescript", "browser", "isomorphic"], + "keywords": [ + "node", + "azure", + "typescript", + "browser", + "isomorphic" + ], "license": "MIT", "main": "./dist/index.js", "module": "./dist-esm/src/index.js", @@ -39,7 +47,9 @@ "type": "git", "url": "https://github.com/Azure/azure-sdk-for-js.git" }, - "bugs": { "url": "https://github.com/Azure/azure-sdk-for-js/issues" }, + "bugs": { + "url": "https://github.com/Azure/azure-sdk-for-js/issues" + }, "files": [ "dist/**/*.js", "dist/**/*.js.map", @@ -86,10 +96,5 @@ "docs": "echo skipped" }, "sideEffects": false, - "//metadata": { - "constantPaths": [ - { "path": "src/SecurityInsights.ts", "prefix": "packageDetails" } - ] - }, "autoPublish": true -} +} \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/recordings/node/my_test/recording_sample_test.js b/sdk/securityinsight/arm-securityinsight/recordings/node/my_test/recording_sample_test.js deleted file mode 100644 index 0f6ecb857acf..000000000000 --- a/sdk/securityinsight/arm-securityinsight/recordings/node/my_test/recording_sample_test.js +++ /dev/null @@ -1,5 +0,0 @@ -let nock = require('nock'); - -module.exports.hash = "7a6be38bb8cb644d64b4094802301751"; - -module.exports.testInfo = {"uniqueName":{},"newDate":{}} diff --git a/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md b/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md index 0c10f5865d27..358b6b868f16 100644 --- a/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md +++ b/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md @@ -153,6 +153,9 @@ export interface ActionsListByAlertRuleOptionalParams extends coreClient.Operati // @public export type ActionsListByAlertRuleResponse = ActionsList; +// @public +export type ActionType = string; + // @public export type ActivityCustomEntityQuery = CustomEntityQuery & { title?: string; @@ -347,6 +350,12 @@ export type AlertRuleTemplatesListResponse = AlertRuleTemplatesList; // @public (undocumented) export type AlertRuleTemplateUnion = AlertRuleTemplate | MLBehaviorAnalyticsAlertRuleTemplate | FusionAlertRuleTemplate | ThreatIntelligenceAlertRuleTemplate | MicrosoftSecurityIncidentCreationAlertRuleTemplate | ScheduledAlertRuleTemplate | NrtAlertRuleTemplate; +// @public +export type AlertRuleTemplateWithMitreProperties = AlertRuleTemplatePropertiesBase & { + tactics?: AttackTactic[]; + techniques?: string[]; +}; + // @public (undocumented) export type AlertRuleUnion = AlertRule | MLBehaviorAnalyticsAlertRule | FusionAlertRule | ThreatIntelligenceAlertRule | MicrosoftSecurityIncidentCreationAlertRule | ScheduledAlertRule | NrtAlertRule; @@ -389,57 +398,47 @@ export type ASCDataConnectorProperties = DataConnectorWithAlertsProperties & { // @public export type AttackTactic = string; -// @public +// @public (undocumented) export type AutomationRule = ResourceWithEtag & { - displayName?: string; - order?: number; - triggeringLogic?: AutomationRuleTriggeringLogic; - actions?: AutomationRuleActionUnion[]; - readonly createdTimeUtc?: Date; + displayName: string; + order: number; + triggeringLogic: AutomationRuleTriggeringLogic; + actions: AutomationRuleActionUnion[]; readonly lastModifiedTimeUtc?: Date; - readonly createdBy?: ClientInfo; + readonly createdTimeUtc?: Date; readonly lastModifiedBy?: ClientInfo; + readonly createdBy?: ClientInfo; }; // @public export interface AutomationRuleAction { - actionType: "RunPlaybook" | "ModifyProperties"; + actionType: "ModifyProperties" | "RunPlaybook"; + // (undocumented) order: number; } -// @public -export type AutomationRuleActionType = string; - // @public (undocumented) -export type AutomationRuleActionUnion = AutomationRuleAction | AutomationRuleRunPlaybookAction | AutomationRuleModifyPropertiesAction; +export type AutomationRuleActionUnion = AutomationRuleAction | AutomationRuleModifyPropertiesAction | AutomationRuleRunPlaybookAction; // @public export interface AutomationRuleCondition { conditionType: "Property"; } -// @public -export type AutomationRuleConditionType = string; - // @public (undocumented) -export type AutomationRuleConditionUnion = AutomationRuleCondition | AutomationRulePropertyValuesCondition; +export type AutomationRuleConditionUnion = AutomationRuleCondition | PropertyConditionProperties; // @public export type AutomationRuleModifyPropertiesAction = AutomationRuleAction & { actionType: "ModifyProperties"; - actionConfiguration: AutomationRuleModifyPropertiesActionConfiguration; -}; - -// @public -export interface AutomationRuleModifyPropertiesActionConfiguration { + severity?: IncidentSeverity; + status?: IncidentStatus; classification?: IncidentClassification; - classificationComment?: string; classificationReason?: IncidentClassificationReason; - labels?: IncidentLabel[]; + classificationComment?: string; owner?: IncidentOwnerInfo; - severity?: IncidentSeverity; - status?: IncidentStatus; -} + labels?: IncidentLabel[]; +}; // @public export type AutomationRulePropertyConditionSupportedOperator = string; @@ -447,41 +446,25 @@ export type AutomationRulePropertyConditionSupportedOperator = string; // @public export type AutomationRulePropertyConditionSupportedProperty = string; -// @public -export type AutomationRulePropertyValuesCondition = AutomationRuleCondition & { - conditionType: "Property"; - conditionProperties: AutomationRulePropertyValuesConditionProperties; -}; - -// @public -export interface AutomationRulePropertyValuesConditionProperties { - operator?: AutomationRulePropertyConditionSupportedOperator; - propertyName?: AutomationRulePropertyConditionSupportedProperty; - propertyValues?: string[]; -} - // @public export type AutomationRuleRunPlaybookAction = AutomationRuleAction & { actionType: "RunPlaybook"; - actionConfiguration: AutomationRuleRunPlaybookActionConfiguration; -}; - -// @public -export interface AutomationRuleRunPlaybookActionConfiguration { logicAppResourceId?: string; tenantId?: string; -} +}; // @public export interface AutomationRules { - createOrUpdate(resourceGroupName: string, workspaceName: string, automationRuleId: string, automationRule: AutomationRule, options?: AutomationRulesCreateOrUpdateOptionalParams): Promise; - delete(resourceGroupName: string, workspaceName: string, automationRuleId: string, options?: AutomationRulesDeleteOptionalParams): Promise; + createOrUpdate(resourceGroupName: string, workspaceName: string, automationRuleId: string, options?: AutomationRulesCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, automationRuleId: string, options?: AutomationRulesDeleteOptionalParams): Promise; get(resourceGroupName: string, workspaceName: string, automationRuleId: string, options?: AutomationRulesGetOptionalParams): Promise; list(resourceGroupName: string, workspaceName: string, options?: AutomationRulesListOptionalParams): PagedAsyncIterableIterator; + manualTriggerPlaybook(resourceGroupName: string, workspaceName: string, incidentIdentifier: string, options?: AutomationRulesManualTriggerPlaybookOptionalParams): Promise; } // @public export interface AutomationRulesCreateOrUpdateOptionalParams extends coreClient.OperationOptions { + automationRuleToUpsert?: AutomationRule; } // @public @@ -491,6 +474,9 @@ export type AutomationRulesCreateOrUpdateResponse = AutomationRule; export interface AutomationRulesDeleteOptionalParams extends coreClient.OperationOptions { } +// @public +export type AutomationRulesDeleteResponse = Record; + // @public export interface AutomationRulesGetOptionalParams extends coreClient.OperationOptions { } @@ -498,10 +484,12 @@ export interface AutomationRulesGetOptionalParams extends coreClient.OperationOp // @public export type AutomationRulesGetResponse = AutomationRule; -// @public +// @public (undocumented) export interface AutomationRulesList { - readonly nextLink?: string; - value: AutomationRule[]; + // (undocumented) + nextLink?: string; + // (undocumented) + value?: AutomationRule[]; } // @public @@ -518,12 +506,23 @@ export interface AutomationRulesListOptionalParams extends coreClient.OperationO // @public export type AutomationRulesListResponse = AutomationRulesList; +// @public +export interface AutomationRulesManualTriggerPlaybookOptionalParams extends coreClient.OperationOptions { + // (undocumented) + requestBody?: ManualTriggerRequestBody; +} + +// @public +export type AutomationRulesManualTriggerPlaybookResponse = Record; + // @public export interface AutomationRuleTriggeringLogic { conditions?: AutomationRuleConditionUnion[]; expirationTimeUtc?: Date; isEnabled: boolean; + // (undocumented) triggersOn: TriggersOn; + // (undocumented) triggersWhen: TriggersWhen; } @@ -604,8 +603,17 @@ export type Bookmark = ResourceWithEtag & { queryStartTime?: Date; queryEndTime?: Date; incidentInfo?: IncidentInfo; + entityMappings?: BookmarkEntityMappings[]; + tactics?: AttackTactic[]; + techniques?: string[]; }; +// @public +export interface BookmarkEntityMappings { + entityType?: string; + fieldMappings?: EntityFieldMapping[]; +} + // @public export type BookmarkExpandOperationResponse = BookmarkExpandResponse; @@ -886,6 +894,9 @@ export type CodelessUiDataConnector = DataConnector & { connectorUiConfig?: CodelessUiConnectorConfigProperties; }; +// @public +export type ConditionType = string; + // @public export type ConfidenceLevel = string; @@ -1004,7 +1015,7 @@ export interface DataConnectors { // @public export interface DataConnectorsCheckRequirements { - kind: "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "ThreatIntelligence" | "ThreatIntelligenceTaxii"; + kind: "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" | "ThreatIntelligenceTaxii"; } // @public @@ -1020,7 +1031,7 @@ export interface DataConnectorsCheckRequirementsPostOptionalParams extends coreC export type DataConnectorsCheckRequirementsPostResponse = DataConnectorRequirementsState; // @public (undocumented) -export type DataConnectorsCheckRequirementsUnion = DataConnectorsCheckRequirements | AADCheckRequirements | AatpCheckRequirements | ASCCheckRequirements | AwsCloudTrailCheckRequirements | AwsS3CheckRequirements | Dynamics365CheckRequirements | McasCheckRequirements | MdatpCheckRequirements | MstiCheckRequirements | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements | TICheckRequirements | TiTaxiiCheckRequirements; +export type DataConnectorsCheckRequirementsUnion = DataConnectorsCheckRequirements | AADCheckRequirements | AatpCheckRequirements | ASCCheckRequirements | AwsCloudTrailCheckRequirements | AwsS3CheckRequirements | Dynamics365CheckRequirements | McasCheckRequirements | MdatpCheckRequirements | MstiCheckRequirements | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements | Office365ProjectCheckRequirements | OfficePowerBICheckRequirements | TICheckRequirements | TiTaxiiCheckRequirements; // @public export interface DataConnectorsConnectOptionalParams extends coreClient.OperationOptions { @@ -1068,7 +1079,7 @@ export interface DataConnectorTenantId { } // @public (undocumented) -export type DataConnectorUnion = DataConnector | AADDataConnector | MstiDataConnector | MTPDataConnector | AatpDataConnector | ASCDataConnector | AwsCloudTrailDataConnector | AwsS3DataConnector | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector | OfficeIRMDataConnector | MdatpDataConnector | OfficeDataConnector | TIDataConnector | TiTaxiiDataConnector | CodelessUiDataConnector | CodelessApiPollingDataConnector; +export type DataConnectorUnion = DataConnector | AADDataConnector | MstiDataConnector | MTPDataConnector | AatpDataConnector | ASCDataConnector | AwsCloudTrailDataConnector | AwsS3DataConnector | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector | Office365ProjectDataConnector | OfficePowerBIDataConnector | OfficeIRMDataConnector | MdatpDataConnector | OfficeDataConnector | TIDataConnector | TiTaxiiDataConnector | CodelessUiDataConnector | CodelessApiPollingDataConnector; // @public export interface DataConnectorWithAlertsProperties { @@ -1358,6 +1369,12 @@ export interface EntityExpandResponseValue { entities?: EntityUnion[]; } +// @public +export interface EntityFieldMapping { + identifier?: string; + value?: string; +} + // @public export interface EntityGetInsightsParameters { addDefaultExtendedTimeRange?: boolean; @@ -1435,7 +1452,7 @@ export type EntityQueriesGetResponse = EntityQueryUnion; // @public export interface EntityQueriesListNextOptionalParams extends coreClient.OperationOptions { - kind?: Enum8; + kind?: Enum12; } // @public @@ -1443,7 +1460,7 @@ export type EntityQueriesListNextResponse = EntityQueryList; // @public export interface EntityQueriesListOptionalParams extends coreClient.OperationOptions { - kind?: Enum8; + kind?: Enum12; } // @public @@ -1578,27 +1595,7 @@ export type EntityType = string; export type EntityUnion = Entity | SecurityAlert | HuntingBookmark | AccountEntity | AzureResourceEntity | CloudApplicationEntity | DnsEntity | FileEntity | FileHashEntity | HostEntity | IoTDeviceEntity | IpEntity | MailboxEntity | MailClusterEntity | MailMessageEntity | MalwareEntity | ProcessEntity | RegistryKeyEntity | RegistryValueEntity | SecurityGroupEntity | SubmissionMailEntity | UrlEntity; // @public -export type Enum8 = string; - -// @public -export interface ErrorAdditionalInfo { - readonly info?: Record; - readonly type?: string; -} - -// @public -export interface ErrorDetail { - readonly additionalInfo?: ErrorAdditionalInfo[]; - readonly code?: string; - readonly details?: ErrorDetail[]; - readonly message?: string; - readonly target?: string; -} - -// @public -export interface ErrorResponse { - error?: ErrorDetail; -} +export type Enum12 = string; // @public export type EventGroupingAggregationKind = string; @@ -1687,9 +1684,12 @@ export type FusionAlertRule = AlertRule & { readonly description?: string; readonly displayName?: string; enabled?: boolean; + sourceSettings?: FusionSourceSettings[]; + scenarioExclusionPatterns?: FusionScenarioExclusionPattern[]; readonly lastModifiedUtc?: Date; readonly severity?: AlertSeverity; readonly tactics?: AttackTactic[]; + readonly techniques?: string[]; }; // @public @@ -1701,16 +1701,70 @@ export type FusionAlertRuleTemplate = AlertRuleTemplate & { displayName?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; status?: TemplateStatus; - severity?: AlertSeverity; tactics?: AttackTactic[]; + techniques?: string[]; + severity?: AlertSeverity; + sourceSettings?: FusionTemplateSourceSetting[]; }; // @public -export type FusionAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { +export type FusionAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { severity: AlertSeverity; - tactics?: AttackTactic[]; + sourceSettings: FusionTemplateSourceSetting[]; }; +// @public +export interface FusionScenarioExclusionPattern { + dateAddedInUTC: string; + exclusionPattern: string; +} + +// @public +export interface FusionSourceSettings { + enabled: boolean; + sourceName: string; + sourceSubTypes?: FusionSourceSubTypeSetting[]; +} + +// @public +export interface FusionSourceSubTypeSetting { + enabled: boolean; + severityFilters: FusionSubTypeSeverityFilter; + readonly sourceSubTypeDisplayName?: string; + sourceSubTypeName: string; +} + +// @public +export interface FusionSubTypeSeverityFilter { + filters?: FusionSubTypeSeverityFiltersItem[]; + readonly isSupported?: boolean; +} + +// @public +export interface FusionSubTypeSeverityFiltersItem { + enabled: boolean; + severity: AlertSeverity; +} + +// @public +export interface FusionTemplateSourceSetting { + sourceName: string; + sourceSubTypes?: FusionTemplateSourceSubType[]; +} + +// @public +export interface FusionTemplateSourceSubType { + severityFilter: FusionTemplateSubTypeSeverityFilter; + readonly sourceSubTypeDisplayName?: string; + sourceSubTypeName: string; +} + +// @public +export interface FusionTemplateSubTypeSeverityFilter { + isSupported: boolean; + severityFilters?: AlertSeverity[]; +} + // @public export interface GeoLocation { readonly asn?: number; @@ -1852,7 +1906,9 @@ export interface IncidentAdditionalData { readonly alertsCount?: number; readonly bookmarksCount?: number; readonly commentsCount?: number; + readonly providerIncidentUrl?: string; readonly tactics?: AttackTactic[]; + readonly techniques?: string[]; } // @public @@ -2283,6 +2339,12 @@ export type KillChainIntent = string; // @public export type Kind = string; +// @public +export enum KnownActionType { + ModifyProperties = "ModifyProperties", + RunPlaybook = "RunPlaybook" +} + // @public export enum KnownAlertDetail { DisplayName = "DisplayName", @@ -2349,6 +2411,10 @@ export enum KnownAttackTactic { // (undocumented) Impact = "Impact", // (undocumented) + ImpairProcessControl = "ImpairProcessControl", + // (undocumented) + InhibitResponseFunction = "InhibitResponseFunction", + // (undocumented) InitialAccess = "InitialAccess", // (undocumented) LateralMovement = "LateralMovement", @@ -2357,18 +2423,11 @@ export enum KnownAttackTactic { // (undocumented) PreAttack = "PreAttack", // (undocumented) - PrivilegeEscalation = "PrivilegeEscalation" -} - -// @public -export enum KnownAutomationRuleActionType { - ModifyProperties = "ModifyProperties", - RunPlaybook = "RunPlaybook" -} - -// @public -export enum KnownAutomationRuleConditionType { - Property = "Property" + PrivilegeEscalation = "PrivilegeEscalation", + // (undocumented) + Reconnaissance = "Reconnaissance", + // (undocumented) + ResourceDevelopment = "ResourceDevelopment" } // @public @@ -2393,6 +2452,7 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { AccountPuid = "AccountPUID", AccountSid = "AccountSid", AccountUPNSuffix = "AccountUPNSuffix", + AlertProductNames = "AlertProductNames", AzureResourceResourceId = "AzureResourceResourceId", AzureResourceSubscriptionId = "AzureResourceSubscriptionId", CloudApplicationAppId = "CloudApplicationAppId", @@ -2407,6 +2467,7 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { HostNTDomain = "HostNTDomain", HostOSVersion = "HostOSVersion", IncidentDescription = "IncidentDescription", + IncidentLabel = "IncidentLabel", IncidentProviderName = "IncidentProviderName", IncidentRelatedAnalyticRuleIds = "IncidentRelatedAnalyticRuleIds", IncidentSeverity = "IncidentSeverity", @@ -2439,6 +2500,11 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { Url = "Url" } +// @public +export enum KnownConditionType { + Property = "Property" +} + // @public export enum KnownConfidenceLevel { High = "High", @@ -2533,10 +2599,14 @@ export enum KnownDataConnectorKind { // (undocumented) Office365 = "Office365", // (undocumented) + Office365Project = "Office365Project", + // (undocumented) OfficeATP = "OfficeATP", // (undocumented) OfficeIRM = "OfficeIRM", // (undocumented) + OfficePowerBI = "OfficePowerBI", + // (undocumented) ThreatIntelligence = "ThreatIntelligence", // (undocumented) ThreatIntelligenceTaxii = "ThreatIntelligenceTaxii" @@ -2661,7 +2731,7 @@ export enum KnownEntityType { } // @public -export enum KnownEnum8 { +export enum KnownEnum12 { // (undocumented) Activity = "Activity", // (undocumented) @@ -3145,6 +3215,14 @@ export type MalwareEntityProperties = EntityCommonProperties & { readonly processEntityIds?: string[]; }; +// @public (undocumented) +export interface ManualTriggerRequestBody { + // (undocumented) + logicAppsResourceId?: string; + // (undocumented) + tenantId?: string; +} + // @public export type MatchingMethod = string; @@ -3383,6 +3461,7 @@ export type MLBehaviorAnalyticsAlertRule = AlertRule & { readonly lastModifiedUtc?: Date; readonly severity?: AlertSeverity; readonly tactics?: AttackTactic[]; + readonly techniques?: string[]; }; // @public @@ -3394,14 +3473,14 @@ export type MLBehaviorAnalyticsAlertRuleTemplate = AlertRuleTemplate & { displayName?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; status?: TemplateStatus; - severity?: AlertSeverity; tactics?: AttackTactic[]; + techniques?: string[]; + severity?: AlertSeverity; }; // @public -export type MLBehaviorAnalyticsAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { +export type MLBehaviorAnalyticsAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { severity: AlertSeverity; - tactics?: AttackTactic[]; }; // @public @@ -3474,13 +3553,14 @@ export type NrtAlertRule = AlertRule & { templateVersion?: string; description?: string; query?: string; + tactics?: AttackTactic[]; + techniques?: string[]; displayName?: string; enabled?: boolean; readonly lastModifiedUtc?: Date; suppressionDuration?: string; suppressionEnabled?: boolean; severity?: AlertSeverity; - tactics?: AttackTactic[]; incidentConfiguration?: IncidentConfiguration; customDetails?: { [propertyName: string]: string; @@ -3501,9 +3581,10 @@ export type NrtAlertRuleTemplate = AlertRuleTemplate & { displayName?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; status?: TemplateStatus; + tactics?: AttackTactic[]; + techniques?: string[]; query?: string; severity?: AlertSeverity; - tactics?: AttackTactic[]; version?: string; customDetails?: { [propertyName: string]: string; @@ -3513,7 +3594,35 @@ export type NrtAlertRuleTemplate = AlertRuleTemplate & { }; // @public -export type NrtAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & QueryBasedAlertRuleTemplateProperties & {}; +export type NrtAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & QueryBasedAlertRuleTemplateProperties & {}; + +// @public +export type Office365ProjectCheckRequirements = DataConnectorsCheckRequirements & { + kind: "Office365Project"; + tenantId?: string; +}; + +// @public +export type Office365ProjectCheckRequirementsProperties = DataConnectorTenantId & {}; + +// @public +export interface Office365ProjectConnectorDataTypes { + logs: Office365ProjectConnectorDataTypesLogs; +} + +// @public +export type Office365ProjectConnectorDataTypesLogs = DataConnectorDataTypeCommon & {}; + +// @public +export type Office365ProjectDataConnector = DataConnector & { + tenantId?: string; + dataTypes?: Office365ProjectConnectorDataTypes; +}; + +// @public +export type Office365ProjectDataConnectorProperties = DataConnectorTenantId & { + dataTypes: Office365ProjectConnectorDataTypes; +}; // @public export type OfficeATPCheckRequirements = DataConnectorsCheckRequirements & { @@ -3622,6 +3731,34 @@ export type OfficeIRMDataConnector = DataConnector & { // @public export type OfficeIRMDataConnectorProperties = DataConnectorTenantId & DataConnectorWithAlertsProperties & {}; +// @public +export type OfficePowerBICheckRequirements = DataConnectorsCheckRequirements & { + kind: "OfficePowerBI"; + tenantId?: string; +}; + +// @public +export type OfficePowerBICheckRequirementsProperties = DataConnectorTenantId & {}; + +// @public +export interface OfficePowerBIConnectorDataTypes { + logs: OfficePowerBIConnectorDataTypesLogs; +} + +// @public +export type OfficePowerBIConnectorDataTypesLogs = DataConnectorDataTypeCommon & {}; + +// @public +export type OfficePowerBIDataConnector = DataConnector & { + tenantId?: string; + dataTypes?: OfficePowerBIConnectorDataTypes; +}; + +// @public +export type OfficePowerBIDataConnectorProperties = DataConnectorTenantId & { + dataTypes: OfficePowerBIConnectorDataTypes; +}; + // @public export interface Operation { display?: OperationDisplay; @@ -3757,6 +3894,14 @@ export interface ProductSettingsUpdateOptionalParams extends coreClient.Operatio // @public export type ProductSettingsUpdateResponse = SettingsUnion; +// @public +export type PropertyConditionProperties = AutomationRuleCondition & { + conditionType: "Property"; + propertyName?: AutomationRulePropertyConditionSupportedProperty; + operator?: AutomationRulePropertyConditionSupportedOperator; + propertyValues?: string[]; +}; + // @public export type ProviderName = string; @@ -3778,6 +3923,7 @@ export interface QueryBasedAlertRuleProperties { suppressionDuration: string; suppressionEnabled: boolean; tactics?: AttackTactic[]; + techniques?: string[]; templateVersion?: string; } @@ -3790,7 +3936,6 @@ export interface QueryBasedAlertRuleTemplateProperties { entityMappings?: EntityMapping[]; query?: string; severity?: AlertSeverity; - tactics?: AttackTactic[]; version?: string; } @@ -3922,13 +4067,14 @@ export type ScheduledAlertRule = AlertRule & { templateVersion?: string; description?: string; query?: string; + tactics?: AttackTactic[]; + techniques?: string[]; displayName?: string; enabled?: boolean; readonly lastModifiedUtc?: Date; suppressionDuration?: string; suppressionEnabled?: boolean; severity?: AlertSeverity; - tactics?: AttackTactic[]; incidentConfiguration?: IncidentConfiguration; customDetails?: { [propertyName: string]: string; @@ -3958,9 +4104,10 @@ export type ScheduledAlertRuleTemplate = AlertRuleTemplate & { displayName?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; status?: TemplateStatus; + tactics?: AttackTactic[]; + techniques?: string[]; query?: string; severity?: AlertSeverity; - tactics?: AttackTactic[]; version?: string; customDetails?: { [propertyName: string]: string; @@ -3975,7 +4122,7 @@ export type ScheduledAlertRuleTemplate = AlertRuleTemplate & { }; // @public -export type ScheduledAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & QueryBasedAlertRuleTemplateProperties & ScheduledAlertRuleCommonProperties & {}; +export type ScheduledAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & QueryBasedAlertRuleTemplateProperties & ScheduledAlertRuleCommonProperties & {}; // @public export type SecurityAlert = Entity & { @@ -4396,6 +4543,7 @@ export type ThreatIntelligenceAlertRule = AlertRule & { readonly lastModifiedUtc?: Date; readonly severity?: AlertSeverity; readonly tactics?: AttackTactic[]; + readonly techniques?: string[]; }; // @public @@ -4407,14 +4555,14 @@ export type ThreatIntelligenceAlertRuleTemplate = AlertRuleTemplate & { displayName?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; status?: TemplateStatus; - severity?: AlertSeverity; tactics?: AttackTactic[]; + techniques?: string[]; + severity?: AlertSeverity; }; // @public -export type ThreatIntelligenceAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { +export type ThreatIntelligenceAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { severity: AlertSeverity; - tactics?: AttackTactic[]; }; // @public diff --git a/sdk/securityinsight/arm-securityinsight/sample.env b/sdk/securityinsight/arm-securityinsight/sample.env deleted file mode 100644 index 672847a3fea0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/sample.env +++ /dev/null @@ -1,4 +0,0 @@ -# App registration secret for AAD authentication -AZURE_CLIENT_SECRET= -AZURE_CLIENT_ID= -AZURE_TENANT_ID= \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/appendTagsToAThreatIntelligenceIndicator.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/appendTagsToAThreatIntelligenceIndicator.ts deleted file mode 100644 index 2c78bcb43f11..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/appendTagsToAThreatIntelligenceIndicator.ts +++ /dev/null @@ -1,42 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Append tags to a threat intelligence indicator. - * - * @summary Append tags to a threat intelligence indicator. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/AppendTagsThreatIntelligence.json - */ -import { - ThreatIntelligenceAppendTags, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function appendTagsToAThreatIntelligenceIndicator() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const name = "d9cd6f0b-96b9-3984-17cd-a779d1e15a93"; - const threatIntelligenceAppendTags: ThreatIntelligenceAppendTags = { - threatIntelligenceTags: ["tag1", "tag2"] - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.appendTags( - resourceGroupName, - workspaceName, - name, - threatIntelligenceAppendTags - ); - console.log(result); -} - -appendTagsToAThreatIntelligenceIndicator().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAad.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAad.ts deleted file mode 100644 index 9ba4a9a5b6a4..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAad.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsAzureActiveDirectory.json - */ -import { - AADCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForAad() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: AADCheckRequirements = { - kind: "AzureActiveDirectory", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForAad().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoAuthorization.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoAuthorization.ts deleted file mode 100644 index 12939965dc51..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoAuthorization.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsAzureActiveDirectoryNoAuthorization.json - */ -import { - AADCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForAadNoAuthorization() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: AADCheckRequirements = { - kind: "AzureActiveDirectory", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForAadNoAuthorization().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoLicense.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoLicense.ts deleted file mode 100644 index 5377418a066d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAadNoLicense.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsAzureActiveDirectoryNoLicense.json - */ -import { - AADCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForAadNoLicense() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: AADCheckRequirements = { - kind: "AzureActiveDirectory", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForAadNoLicense().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAsc.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAsc.ts deleted file mode 100644 index dad20f08a7cf..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForAsc.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsAzureSecurityCenter.json - */ -import { - ASCCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForAsc() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: ASCCheckRequirements = { - kind: "AzureSecurityCenter", - subscriptionId: "c0688291-89d7-4bed-87a2-a7b1bff43f4c" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForAsc().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForDynamics365.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForDynamics365.ts deleted file mode 100644 index 4a40c2d2454b..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForDynamics365.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsDynamics365.json - */ -import { - Dynamics365CheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForDynamics365() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: Dynamics365CheckRequirements = { - kind: "Dynamics365", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForDynamics365().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMcas.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMcas.ts deleted file mode 100644 index 72115065bd0a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMcas.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsMicrosoftCloudAppSecurity.json - */ -import { - McasCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForMcas() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: McasCheckRequirements = { - kind: "MicrosoftCloudAppSecurity", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForMcas().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMdatp.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMdatp.ts deleted file mode 100644 index 518fb624297c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMdatp.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsMdatp.json - */ -import { - McasCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForMdatp() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: McasCheckRequirements = { - kind: "MicrosoftCloudAppSecurity", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForMdatp().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatIntelligence.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatIntelligence.ts deleted file mode 100644 index b7ee470b9bc9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatIntelligence.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsMicrosoftThreatIntelligence.json - */ -import { - MstiCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForMicrosoftThreatIntelligence() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: MstiCheckRequirements = { - kind: "MicrosoftThreatIntelligence", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForMicrosoftThreatIntelligence().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatProtection.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatProtection.ts deleted file mode 100644 index f48dce332ad7..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForMicrosoftThreatProtection.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsMicrosoftThreatProtection.json - */ -import { - MtpCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForMicrosoftThreatProtection() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: MtpCheckRequirements = { - kind: "MicrosoftThreatProtection", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForMicrosoftThreatProtection().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeAtp.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeAtp.ts deleted file mode 100644 index 79e5007f2608..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeAtp.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsOfficeATP.json - */ -import { - OfficeATPCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForOfficeAtp() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: OfficeATPCheckRequirements = { - kind: "OfficeATP", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForOfficeAtp().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeIrm.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeIrm.ts deleted file mode 100644 index 3e7231a6be43..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForOfficeIrm.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsOfficeIRM.json - */ -import { - OfficeIRMCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForOfficeIrm() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: OfficeIRMCheckRequirements = { - kind: "OfficeIRM", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForOfficeIrm().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTi.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTi.ts deleted file mode 100644 index b914f9bb4260..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTi.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsThreatIntelligence.json - */ -import { - TICheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForTi() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: TICheckRequirements = { - kind: "ThreatIntelligence", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForTi().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTiTaxii.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTiTaxii.ts deleted file mode 100644 index f0083b03a524..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/checkRequirementsForTiTaxii.ts +++ /dev/null @@ -1,41 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get requirements state for a data connector type. - * - * @summary Get requirements state for a data connector type. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CheckRequirementsThreatIntelligenceTaxii.json - */ -import { - TiTaxiiCheckRequirements, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function checkRequirementsForTiTaxii() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorsCheckRequirements: TiTaxiiCheckRequirements = { - kind: "ThreatIntelligenceTaxii", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectorsCheckRequirementsOperations.post( - resourceGroupName, - workspaceName, - dataConnectorsCheckRequirements - ); - console.log(result); -} - -checkRequirementsForTiTaxii().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/connectAnApiPollingDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/connectAnApiPollingDataConnector.ts deleted file mode 100644 index ac4355385373..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/connectAnApiPollingDataConnector.ts +++ /dev/null @@ -1,51 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Connects a data connector. - * - * @summary Connects a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/ConnectAPIPolling.json - */ -import { - DataConnectorConnectBody, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function connectAnApiPollingDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const connectBody: DataConnectorConnectBody = { - apiKey: "123456789", - kind: "APIKey", - requestConfigUserInputValues: [ - { - displayText: "Organization Name", - placeHolderName: "{{placeHolder1}}", - placeHolderValue: "somePlaceHolderValue", - requestObjectKey: "apiEndpoint" - } - ] - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.connect( - resourceGroupName, - workspaceName, - dataConnectorId, - connectBody - ); - console.log(result); -} - -connectAnApiPollingDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createANewThreatIntelligence.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createANewThreatIntelligence.ts deleted file mode 100644 index b3f4ccd57bcd..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createANewThreatIntelligence.ts +++ /dev/null @@ -1,57 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Create a new threat intelligence indicator. - * - * @summary Create a new threat intelligence indicator. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/CreateThreatIntelligence.json - */ -import { - ThreatIntelligenceIndicatorModelForRequestBody, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createANewThreatIntelligence() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const threatIntelligenceProperties: ThreatIntelligenceIndicatorModelForRequestBody = { - description: "debugging indicators", - confidence: 78, - createdByRef: "contoso@contoso.com", - displayName: "new schema", - externalReferences: [], - granularMarkings: [], - killChainPhases: [], - kind: "indicator", - labels: [], - modified: "", - pattern: "[url:value = 'https://www.contoso.com']", - patternType: "url", - revoked: false, - source: "Azure Sentinel", - threatIntelligenceTags: ["new schema"], - threatTypes: ["compromised"], - validFrom: "2021-09-15T17:44:00.114052Z", - validUntil: "" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.createIndicator( - resourceGroupName, - workspaceName, - threatIntelligenceProperties - ); - console.log(result); -} - -createANewThreatIntelligence().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateFullMetadata.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateFullMetadata.ts deleted file mode 100644 index eba217cff89a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateFullMetadata.ts +++ /dev/null @@ -1,92 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Create a Metadata. - * - * @summary Create a Metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/PutMetadata.json - */ -import { MetadataModel, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createOrUpdateFullMetadata() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const metadataName = "metadataName"; - const metadata: MetadataModel = { - author: { name: "User Name", email: "email@microsoft.com" }, - categories: { - domains: ["Application", "Security – Insider Threat"], - verticals: ["Healthcare"] - }, - contentId: "c00ee137-7475-47c8-9cce-ec6f0f1bedd0", - dependencies: { - criteria: [ - { - criteria: [ - { - name: "Microsoft Defender for Endpoint", - contentId: "045d06d0-ee72-4794-aba4-cf5646e4c756", - kind: "DataConnector" - }, - { - contentId: "dbfcb2cc-d782-40ef-8d94-fe7af58a6f2d", - kind: "DataConnector" - }, - { - contentId: "de4dca9b-eb37-47d6-a56f-b8b06b261593", - kind: "DataConnector", - version: "2.0" - } - ], - operator: "OR" - }, - { - contentId: "31ee11cc-9989-4de8-b176-5e0ef5c4dbab", - kind: "Playbook", - version: "1.0" - }, - { contentId: "21ba424a-9438-4444-953a-7059539a7a1b", kind: "Parser" } - ], - operator: "AND" - }, - firstPublishDate: new Date("2021-05-18"), - kind: "AnalyticsRule", - lastPublishDate: new Date("2021-05-18"), - parentId: - "/subscriptions/2e1dc338-d04d-4443-b721-037eff4fdcac/resourceGroups/myRg/providers/Microsoft.OperationalInsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/alertRules/ruleName", - providers: ["Amazon", "Microsoft"], - source: { - name: "Contoso Solution 1.0", - kind: "Solution", - sourceId: "b688a130-76f4-4a07-bf57-762222a3cadf" - }, - support: { - name: "Microsoft", - email: "support@microsoft.com", - link: "https://support.microsoft.com/", - tier: "Partner" - }, - version: "1.0.0.0" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.metadata.create( - resourceGroupName, - workspaceName, - metadataName, - metadata - ); - console.log(result); -} - -createOrUpdateFullMetadata().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateMinimalMetadata.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateMinimalMetadata.ts deleted file mode 100644 index efa1f054c69e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createOrUpdateMinimalMetadata.ts +++ /dev/null @@ -1,42 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Create a Metadata. - * - * @summary Create a Metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/PutMetadataMinimal.json - */ -import { MetadataModel, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createOrUpdateMinimalMetadata() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const metadataName = "metadataName"; - const metadata: MetadataModel = { - contentId: "c00ee137-7475-47c8-9cce-ec6f0f1bedd0", - kind: "AnalyticsRule", - parentId: - "/subscriptions/2e1dc338-d04d-4443-b721-037eff4fdcac/resourceGroups/myRg/providers/Microsoft.OperationalInsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/alertRules/ruleName" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.metadata.create( - resourceGroupName, - workspaceName, - metadataName, - metadata - ); - console.log(result); -} - -createOrUpdateMinimalMetadata().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createSentinelOnboardingState.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createSentinelOnboardingState.ts deleted file mode 100644 index 648c490a3bda..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createSentinelOnboardingState.ts +++ /dev/null @@ -1,45 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Create Sentinel onboarding state - * - * @summary Create Sentinel onboarding state - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/onboardingStates/CreateSentinelOnboardingState.json - */ -import { - SentinelOnboardingState, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createSentinelOnboardingState() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sentinelOnboardingStateName = "default"; - const sentinelOnboardingStateParameter: SentinelOnboardingState = { - customerManagedKey: false - }; - const options = { - sentinelOnboardingStateParameter: sentinelOnboardingStateParameter - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sentinelOnboardingStates.create( - resourceGroupName, - workspaceName, - sentinelOnboardingStateName, - options - ); - console.log(result); -} - -createSentinelOnboardingState().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsASourceControl.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsASourceControl.ts deleted file mode 100644 index 9019501b7149..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsASourceControl.ts +++ /dev/null @@ -1,52 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates a source control. - * - * @summary Creates a source control. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/sourcecontrols/CreateSourceControl.json - */ -import { SourceControl, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsASourceControl() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sourceControlId = "789e0c1f-4a3d-43ad-809c-e713b677b04a"; - const sourceControl: SourceControl = { - description: "This is a source control", - contentTypes: ["AnalyticRules", "Workbook"], - displayName: "My Source Control", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - repoType: "Github", - repository: { - branch: "master", - displayUrl: "https://github.com/user/repo", - pathMapping: [ - { path: "path/to/rules", contentType: "AnalyticRules" }, - { path: "path/to/workbooks", contentType: "Workbook" } - ], - url: "https://github.com/user/repo" - } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sourceControls.create( - resourceGroupName, - workspaceName, - sourceControlId, - sourceControl - ); - console.log(result); -} - -createsASourceControl().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsIncidentTeamsGroup.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsIncidentTeamsGroup.ts deleted file mode 100644 index 6d6b316b017f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsIncidentTeamsGroup.ts +++ /dev/null @@ -1,40 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates a Microsoft team to investigate the incident by sharing information and insights between participants. - * - * @summary Creates a Microsoft team to investigate the incident by sharing information and insights between participants. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/CreateTeam.json - */ -import { TeamProperties, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsIncidentTeamsGroup() { - const subscriptionId = "9023f5b5-df22-4313-8fbf-b4b75af8a6d9"; - const resourceGroupName = "ambawolvese5resourcegroup"; - const workspaceName = "AmbaE5WestCentralUS"; - const incidentId = "69a30280-6a4c-4aa7-9af0-5d63f335d600"; - const teamProperties: TeamProperties = { - teamDescription: "Team description", - teamName: "Team name" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.createTeam( - resourceGroupName, - workspaceName, - incidentId, - teamProperties - ); - console.log(result); -} - -createsIncidentTeamsGroup().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAApiPollingDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAApiPollingDataConnector.ts deleted file mode 100644 index 56dcac374830..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAApiPollingDataConnector.ts +++ /dev/null @@ -1,135 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateAPIPolling.json - */ -import { - CodelessApiPollingDataConnector, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAApiPollingDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const dataConnector: CodelessApiPollingDataConnector = { - connectorUiConfig: { - availability: { isPreview: true, status: 1 }, - connectivityCriteria: [{ type: "SentinelKindsV2", value: [] }], - dataTypes: [ - { - name: "{{graphQueriesTableName}}", - lastDataReceivedQuery: - "{{graphQueriesTableName}}\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)" - } - ], - descriptionMarkdown: - "The GitHub audit log connector provides the capability to ingest GitHub logs into Azure Sentinel. By connecting GitHub audit logs into Azure Sentinel, you can view this data in workbooks, use it to create custom alerts, and improve your investigation process.", - graphQueries: [ - { - baseQuery: "{{graphQueriesTableName}}", - legend: "GitHub audit log events", - metricName: "Total events received" - } - ], - graphQueriesTableName: "GitHubAuditLogPolling_CL", - instructionSteps: [ - { - description: - "Enable GitHub audit Logs. \n Follow [this](https://docs.github.com/en/github/authenticating-to-github/keeping-your-account-and-data-secure/creating-a-personal-access-token) to create or find your personal key", - instructions: [ - { - type: "APIKey", - parameters: { - enable: "true", - userRequestPlaceHoldersInput: [ - { - displayText: "Organization Name", - placeHolderName: "{{placeHolder1}}", - placeHolderValue: "", - requestObjectKey: "apiEndpoint" - } - ] - } - } - ], - title: "Connect GitHub Enterprise Audit Log to Azure Sentinel" - } - ], - permissions: { - customs: [ - { - name: "GitHub API personal token Key", - description: - "You need access to GitHub personal token, the key should have 'admin:org' scope" - } - ], - resourceProvider: [ - { - permissionsDisplayText: "read and write permissions are required.", - provider: "Microsoft.OperationalInsights/workspaces", - providerDisplayName: "Workspace", - requiredPermissions: { delete: true, read: true, write: true }, - scope: "Workspace" - } - ] - }, - publisher: "GitHub", - sampleQueries: [ - { - description: "All logs", - query: "{{graphQueriesTableName}}\n | take 10 " - } - ], - title: "GitHub Enterprise Audit Log" - }, - kind: "APIPolling", - pollingConfig: { - auth: { - apiKeyIdentifier: "token", - apiKeyName: "Authorization", - authType: "APIKey" - }, - paging: { pageSizeParaName: "per_page", pagingType: "LinkHeader" }, - response: { eventsJsonPaths: ["$"] }, - request: { - apiEndpoint: - "https://api.github.com/organizations/{{placeHolder1}}/audit-log", - headers: { Accept: "application/json", "User-Agent": "Scuba" }, - httpMethod: "Get", - queryParameters: { - phrase: "created:{_QueryWindowStartTime}..{_QueryWindowEndTime}" - }, - queryTimeFormat: "yyyy-MM-ddTHH:mm:ssZ", - queryWindowInMin: 15, - rateLimitQps: 50, - retryCount: 2, - timeoutInSeconds: 60 - } - } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesAApiPollingDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmark.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmark.ts deleted file mode 100644 index 644a882e8772..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmark.ts +++ /dev/null @@ -1,49 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the bookmark. - * - * @summary Creates or updates the bookmark. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/CreateBookmark.json - */ -import { Bookmark, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesABookmark() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const bookmark: Bookmark = { - created: new Date("2021-09-01T13:15:30Z"), - createdBy: { objectId: "2046feea-040d-4a46-9e2b-91c2941bfa70" }, - displayName: "My bookmark", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - labels: ["Tag1", "Tag2"], - notes: "Found a suspicious activity", - query: - "SecurityEvent | where TimeGenerated > ago(1d) and TimeGenerated < ago(2d)", - queryResult: "Security Event query result", - updated: new Date("2021-09-01T13:15:30Z"), - updatedBy: { objectId: "2046feea-040d-4a46-9e2b-91c2941bfa70" } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarks.createOrUpdate( - resourceGroupName, - workspaceName, - bookmarkId, - bookmark - ); - console.log(result); -} - -createsOrUpdatesABookmark().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmarkRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmarkRelation.ts deleted file mode 100644 index efe7550ea9d3..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesABookmarkRelation.ts +++ /dev/null @@ -1,42 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates the bookmark relation. - * - * @summary Creates the bookmark relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/relations/CreateBookmarkRelation.json - */ -import { Relation, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesABookmarkRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "2216d0e1-91e3-4902-89fd-d2df8c535096"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const relation: Relation = { - relatedResourceId: - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.OperationalInsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/incidents/afbd324f-6c48-459c-8710-8d1e1cd03812" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarkRelations.createOrUpdate( - resourceGroupName, - workspaceName, - bookmarkId, - relationName, - relation - ); - console.log(result); -} - -createsOrUpdatesABookmarkRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesADynamics365DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesADynamics365DataConnector.ts deleted file mode 100644 index 2cee47940896..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesADynamics365DataConnector.ts +++ /dev/null @@ -1,45 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateDynamics365DataConnetor.json - */ -import { - Dynamics365DataConnector, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesADynamics365DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c2541efb-c9a6-47fe-9501-87d1017d1512"; - const dataConnector: Dynamics365DataConnector = { - dataTypes: { dynamics365CdsActivities: { state: "Enabled" } }, - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - kind: "Dynamics365", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesADynamics365DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAFusionAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAFusionAlertRule.ts deleted file mode 100644 index 717de53c8655..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAFusionAlertRule.ts +++ /dev/null @@ -1,42 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the alert rule. - * - * @summary Creates or updates the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/CreateFusionAlertRule.json - */ -import { FusionAlertRule, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAFusionAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "myFirstFusionRule"; - const alertRule: FusionAlertRule = { - alertRuleTemplateName: "f71aba3d-28fb-450b-b192-4e76a83015c8", - enabled: true, - etag: "3d00c3ca-0000-0100-0000-5d42d5010000", - kind: "Fusion" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.createOrUpdate( - resourceGroupName, - workspaceName, - ruleId, - alertRule - ); - console.log(result); -} - -createsOrUpdatesAFusionAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAGenericUiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAGenericUiDataConnector.ts deleted file mode 100644 index 242eb36f3fc0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAGenericUiDataConnector.ts +++ /dev/null @@ -1,173 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateGenericUI.json - */ -import { - CodelessUiDataConnector, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAGenericUiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const dataConnector: CodelessUiDataConnector = { - connectorUiConfig: { - availability: { isPreview: true, status: 1 }, - connectivityCriteria: [ - { - type: "IsConnectedQuery", - value: [ - "{{graphQueriesTableName}}\n | summarize LastLogReceived = max(TimeGenerated)\n | project IsConnected = LastLogReceived > ago(30d)" - ] - } - ], - dataTypes: [ - { - name: "{{graphQueriesTableName}}", - lastDataReceivedQuery: - "{{graphQueriesTableName}}\n | summarize Time = max(TimeGenerated)\n | where isnotempty(Time)" - } - ], - descriptionMarkdown: - "The [Qualys Vulnerability Management (VM)](https://www.qualys.com/apps/vulnerability-management/) data connector provides the capability to ingest vulnerability host detection data into Azure Sentinel through the Qualys API. The connector provides visibility into host detection data from vulerability scans. This connector provides Azure Sentinel the capability to view dashboards, create custom alerts, and improve investigation ", - graphQueries: [ - { - baseQuery: "{{graphQueriesTableName}}", - legend: "{{graphQueriesTableName}}", - metricName: "Total data received" - } - ], - graphQueriesTableName: "QualysHostDetection_CL", - instructionSteps: [ - { - description: - ">**NOTE:** This connector uses Azure Functions to connect to Qualys VM to pull its logs into Azure Sentinel. This might result in additional data ingestion costs. Check the [Azure Functions pricing page](https://azure.microsoft.com/pricing/details/functions/) for details.", - title: "" - }, - { - description: - ">**(Optional Step)** Securely store workspace and API authorization key(s) or token(s) in Azure Key Vault. Azure Key Vault provides a secure mechanism to store and retrieve key values. [Follow these instructions](https://docs.microsoft.com/azure/app-service/app-service-key-vault-references) to use Azure Key Vault with an Azure Function App.", - title: "" - }, - { - description: - "**STEP 1 - Configuration steps for the Qualys VM API**\n\n1. Log into the Qualys Vulnerability Management console with an administrator account, select the **Users** tab and the **Users** subtab. \n2. Click on the **New** drop-down menu and select **Users..**\n3. Create a username and password for the API account. \n4. In the **User Roles** tab, ensure the account role is set to **Manager** and access is allowed to **GUI** and **API**\n4. Log out of the administrator account and log into the console with the new API credentials for validation, then log out of the API account. \n5. Log back into the console using an administrator account and modify the API accounts User Roles, removing access to **GUI**. \n6. Save all changes.", - title: "" - }, - { - description: - "**STEP 2 - Choose ONE from the following two deployment options to deploy the connector and the associated Azure Function**\n\n>**IMPORTANT:** Before deploying the Qualys VM connector, have the Workspace ID and Workspace Primary Key (can be copied from the following), as well as the Qualys VM API Authorization Key(s), readily available.", - instructions: [ - { - type: "CopyableLabel", - parameters: { fillWith: ["WorkspaceId"], label: "Workspace ID" } - }, - { - type: "CopyableLabel", - parameters: { fillWith: ["PrimaryKey"], label: "Primary Key" } - } - ], - title: "" - }, - { - description: - 'Use this method for automated deployment of the Qualys VM connector using an ARM Tempate.\n\n1. Click the **Deploy to Azure** button below. \n\n [![Deploy To Azure](https://aka.ms/deploytoazurebutton)](https://aka.ms/sentinelqualysvmazuredeploy)\n2. Select the preferred **Subscription**, **Resource Group** and **Location**. \n3. Enter the **Workspace ID**, **Workspace Key**, **API Username**, **API Password** , update the **URI**, and any additional URI **Filter Parameters** (each filter should be separated by an "&" symbol, no spaces.) \n> - Enter the URI that corresponds to your region. The complete list of API Server URLs can be [found here](https://www.qualys.com/docs/qualys-api-vmpc-user-guide.pdf#G4.735348) -- There is no need to add a time suffix to the URI, the Function App will dynamically append the Time Value to the URI in the proper format. \n - The default **Time Interval** is set to pull the last five (5) minutes of data. If the time interval needs to be modified, it is recommended to change the Function App Timer Trigger accordingly (in the function.json file, post deployment) to prevent overlapping data ingestion. \n> - Note: If using Azure Key Vault secrets for any of the values above, use the`@Microsoft.KeyVault(SecretUri={Security Identifier})`schema in place of the string values. Refer to [Key Vault references documentation](https://docs.microsoft.com/azure/app-service/app-service-key-vault-references) for further details. \n4. Mark the checkbox labeled **I agree to the terms and conditions stated above**. \n5. Click **Purchase** to deploy.', - title: "Option 1 - Azure Resource Manager (ARM) Template" - }, - { - description: - "Use the following step-by-step instructions to deploy the Quayls VM connector manually with Azure Functions.", - title: "Option 2 - Manual Deployment of Azure Functions" - }, - { - description: - "**1. Create a Function App**\n\n1. From the Azure Portal, navigate to [Function App](https://portal.azure.com/#blade/HubsExtension/BrowseResource/resourceType/Microsoft.Web%2Fsites/kind/functionapp), and select **+ Add**.\n2. In the **Basics** tab, ensure Runtime stack is set to **Powershell Core**. \n3. In the **Hosting** tab, ensure the **Consumption (Serverless)** plan type is selected.\n4. Make other preferrable configuration changes, if needed, then click **Create**.", - title: "" - }, - { - description: - "**2. Import Function App Code**\n\n1. In the newly created Function App, select **Functions** on the left pane and click **+ New Function**.\n2. Select **Timer Trigger**.\n3. Enter a unique Function **Name** and leave the default cron schedule of every 5 minutes, then click **Create**.\n5. Click on **Code + Test** on the left pane. \n6. Copy the [Function App Code](https://aka.ms/sentinelqualysvmazurefunctioncode) and paste into the Function App `run.ps1` editor.\n7. Click **Save**.", - title: "" - }, - { - description: - '**3. Configure the Function App**\n\n1. In the Function App, select the Function App Name and select **Configuration**.\n2. In the **Application settings** tab, select **+ New application setting**.\n3. Add each of the following seven (7) application settings individually, with their respective string values (case-sensitive): \n apiUsername\n apiPassword\n workspaceID\n workspaceKey\n uri\n filterParameters\n timeInterval\n> - Enter the URI that corresponds to your region. The complete list of API Server URLs can be [found here](https://www.qualys.com/docs/qualys-api-vmpc-user-guide.pdf#G4.735348). The `uri` value must follow the following schema: `https:///api/2.0/fo/asset/host/vm/detection/?action=list&vm_processed_after=` -- There is no need to add a time suffix to the URI, the Function App will dynamically append the Time Value to the URI in the proper format.\n> - Add any additional filter parameters, for the `filterParameters` variable, that need to be appended to the URI. Each parameter should be seperated by an "&" symbol and should not include any spaces.\n> - Set the `timeInterval` (in minutes) to the value of `5` to correspond to the Timer Trigger of every `5` minutes. If the time interval needs to be modified, it is recommended to change the Function App Timer Trigger accordingly to prevent overlapping data ingestion.\n> - Note: If using Azure Key Vault, use the`@Microsoft.KeyVault(SecretUri={Security Identifier})`schema in place of the string values. Refer to [Key Vault references documentation](https://docs.microsoft.com/azure/app-service/app-service-key-vault-references) for further details.\n4. Once all application settings have been entered, click **Save**.', - title: "" - }, - { - description: - '**4. Configure the host.json**.\n\nDue to the potentially large amount of Qualys host detection data being ingested, it can cause the execution time to surpass the default Function App timeout of five (5) minutes. Increase the default timeout duration to the maximum of ten (10) minutes, under the Consumption Plan, to allow more time for the Function App to execute.\n\n1. In the Function App, select the Function App Name and select the **App Service Editor** blade.\n2. Click **Go** to open the editor, then select the **host.json** file under the **wwwroot** directory.\n3. Add the line `"functionTimeout": "00:10:00",` above the `managedDependancy` line \n4. Ensure **SAVED** appears on the top right corner of the editor, then exit the editor.\n\n> NOTE: If a longer timeout duration is required, consider upgrading to an [App Service Plan](https://docs.microsoft.com/azure/azure-functions/functions-scale#timeout)', - title: "" - } - ], - permissions: { - customs: [ - { - name: "Microsoft.Web/sites permissions", - description: - "Read and write permissions to Azure Functions to create a Function App is required. [See the documentation to learn more about Azure Functions](https://docs.microsoft.com/azure/azure-functions/)." - }, - { - name: "Qualys API Key", - description: - "A Qualys VM API username and password is required. [See the documentation to learn more about Qualys VM API](https://www.qualys.com/docs/qualys-api-vmpc-user-guide.pdf)." - } - ], - resourceProvider: [ - { - permissionsDisplayText: - "read and write permissions on the workspace are required.", - provider: "Microsoft.OperationalInsights/workspaces", - providerDisplayName: "Workspace", - requiredPermissions: { delete: true, read: true, write: true }, - scope: "Workspace" - }, - { - permissionsDisplayText: - "read permissions to shared keys for the workspace are required. [See the documentation to learn more about workspace keys](https://docs.microsoft.com/azure/azure-monitor/platform/agent-windows#obtain-workspace-id-and-key).", - provider: "Microsoft.OperationalInsights/workspaces/sharedKeys", - providerDisplayName: "Keys", - requiredPermissions: { action: true }, - scope: "Workspace" - } - ] - }, - publisher: "Qualys", - sampleQueries: [ - { - description: "Top 10 Vulerabilities detected", - query: - "{{graphQueriesTableName}}\n | mv-expand todynamic(Detections_s)\n | extend Vulnerability = tostring(Detections_s.Results)\n | summarize count() by Vulnerability\n | top 10 by count_" - } - ], - title: "Qualys Vulnerability Management (CCP DEMO)" - }, - kind: "GenericUI" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesAGenericUiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAMicrosoftSecurityIncidentCreationRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAMicrosoftSecurityIncidentCreationRule.ts deleted file mode 100644 index acb0f608c12b..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAMicrosoftSecurityIncidentCreationRule.ts +++ /dev/null @@ -1,46 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the alert rule. - * - * @summary Creates or updates the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/CreateMicrosoftSecurityIncidentCreationAlertRule.json - */ -import { - MicrosoftSecurityIncidentCreationAlertRule, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAMicrosoftSecurityIncidentCreationRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "microsoftSecurityIncidentCreationRuleExample"; - const alertRule: MicrosoftSecurityIncidentCreationAlertRule = { - displayName: "testing displayname", - enabled: true, - etag: '"260097e0-0000-0d00-0000-5d6fa88f0000"', - kind: "MicrosoftSecurityIncidentCreation", - productFilter: "Microsoft Cloud App Security" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.createOrUpdate( - resourceGroupName, - workspaceName, - ruleId, - alertRule - ); - console.log(result); -} - -createsOrUpdatesAMicrosoftSecurityIncidentCreationRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesANrtAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesANrtAlertRule.ts deleted file mode 100644 index f5abe41d2354..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesANrtAlertRule.ts +++ /dev/null @@ -1,59 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the alert rule. - * - * @summary Creates or updates the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/CreateNrtAlertRule.json - */ -import { NrtAlertRule, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesANrtAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const alertRule: NrtAlertRule = { - description: "", - displayName: "Rule2", - enabled: true, - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - incidentConfiguration: { - createIncident: true, - groupingConfiguration: { - enabled: true, - groupByEntities: ["Host", "Account"], - lookbackDuration: "PT5H", - matchingMethod: "Selected", - reopenClosedIncident: false - } - }, - kind: "NRT", - query: - "ProtectionStatus | extend HostCustomEntity = Computer | extend IPCustomEntity = ComputerIP_Hidden", - severity: "High", - suppressionDuration: "PT1H", - suppressionEnabled: false, - tactics: ["Persistence", "LateralMovement"] - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.createOrUpdate( - resourceGroupName, - workspaceName, - ruleId, - alertRule - ); - console.log(result); -} - -createsOrUpdatesANrtAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAScheduledAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAScheduledAlertRule.ts deleted file mode 100644 index 7944dfca8e72..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAScheduledAlertRule.ts +++ /dev/null @@ -1,86 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the alert rule. - * - * @summary Creates or updates the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/CreateScheduledAlertRule.json - */ -import { - ScheduledAlertRule, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAScheduledAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const alertRule: ScheduledAlertRule = { - description: "An example for a scheduled rule", - alertDetailsOverride: { - alertDescriptionFormat: "Suspicious activity was made by {{ComputerIP}}", - alertDisplayNameFormat: "Alert from {{Computer}}" - }, - customDetails: { - operatingSystemName: "OSName", - operatingSystemType: "OSType" - }, - displayName: "My scheduled rule", - enabled: true, - entityMappings: [ - { - entityType: "Host", - fieldMappings: [{ columnName: "Computer", identifier: "FullName" }] - }, - { - entityType: "IP", - fieldMappings: [{ columnName: "ComputerIP", identifier: "Address" }] - } - ], - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - eventGroupingSettings: { aggregationKind: "AlertPerResult" }, - incidentConfiguration: { - createIncident: true, - groupingConfiguration: { - enabled: true, - groupByAlertDetails: ["DisplayName"], - groupByCustomDetails: ["OperatingSystemType", "OperatingSystemName"], - groupByEntities: ["Host"], - lookbackDuration: "PT5H", - matchingMethod: "Selected", - reopenClosedIncident: false - } - }, - kind: "Scheduled", - query: "Heartbeat", - queryFrequency: "PT1H", - queryPeriod: "P2DT1H30M", - severity: "High", - suppressionDuration: "PT1H", - suppressionEnabled: false, - tactics: ["Persistence", "LateralMovement"], - triggerOperator: "GreaterThan", - triggerThreshold: 0 - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.createOrUpdate( - resourceGroupName, - workspaceName, - ruleId, - alertRule - ); - console.log(result); -} - -createsOrUpdatesAScheduledAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAThreatIntelligenceTaxiiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAThreatIntelligenceTaxiiDataConnector.ts deleted file mode 100644 index b90e4357667b..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAThreatIntelligenceTaxiiDataConnector.ts +++ /dev/null @@ -1,53 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateThreatIntelligenceTaxiiDataConnector.json - */ -import { - TiTaxiiDataConnector, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAThreatIntelligenceTaxiiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const dataConnector: TiTaxiiDataConnector = { - collectionId: "135", - dataTypes: { taxiiClient: { state: "Enabled" } }, - etag: "d12423f6-a60b-4ca5-88c0-feb1a182d0f0", - friendlyName: "testTaxii", - kind: "ThreatIntelligenceTaxii", - password: "--", - pollingFrequency: "OnceADay", - taxiiLookbackPeriod: new Date("2020-01-01T13:00:30.123Z"), - taxiiServer: "https://limo.anomali.com/api/v1/taxii2/feeds", - tenantId: "06b3ccb8-1384-4bcc-aec7-852f6d57161b", - userName: "--", - workspaceId: "dd124572-4962-4495-9bd2-9dade12314b4" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesAThreatIntelligenceTaxiiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlist.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlist.ts deleted file mode 100644 index 8b9b564ab925..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlist.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates a watchlist and its watchlist items (bulk creation, e.g. through text/csv content type). To create a Watchlist and its items, we should call this endpoint with rawContent and contentType properties. - * - * @summary Creates or updates a watchlist and its watchlist items (bulk creation, e.g. through text/csv content type). To create a Watchlist and its items, we should call this endpoint with rawContent and contentType properties. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/CreateWatchlist.json - */ -import { Watchlist, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAWatchlist() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const watchlist: Watchlist = { - description: "Watchlist from CSV content", - displayName: "High Value Assets Watchlist", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - itemsSearchKey: "header1", - provider: "Microsoft", - source: "Local file" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlists.createOrUpdate( - resourceGroupName, - workspaceName, - watchlistAlias, - watchlist - ); - console.log(result); -} - -createsOrUpdatesAWatchlist().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems.ts deleted file mode 100644 index e8822f496ef2..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems.ts +++ /dev/null @@ -1,47 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates a watchlist and its watchlist items (bulk creation, e.g. through text/csv content type). To create a Watchlist and its items, we should call this endpoint with rawContent and contentType properties. - * - * @summary Creates or updates a watchlist and its watchlist items (bulk creation, e.g. through text/csv content type). To create a Watchlist and its items, we should call this endpoint with rawContent and contentType properties. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/CreateWatchlistAndWatchlistItems.json - */ -import { Watchlist, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const watchlist: Watchlist = { - description: "Watchlist from CSV content", - contentType: "text/csv", - displayName: "High Value Assets Watchlist", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - itemsSearchKey: "header1", - numberOfLinesToSkip: 1, - provider: "Microsoft", - rawContent: "This line will be skipped\nheader1,header2\nvalue1,value2", - source: "Local file" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlists.createOrUpdate( - resourceGroupName, - workspaceName, - watchlistAlias, - watchlist - ); - console.log(result); -} - -createsOrUpdatesAWatchlistAndBulkCreatesWatchlistItems().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistItem.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistItem.ts deleted file mode 100644 index 324c8e20ee5e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAWatchlistItem.ts +++ /dev/null @@ -1,49 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates a watchlist item. - * - * @summary Creates or updates a watchlist item. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/CreateWatchlistItem.json - */ -import { WatchlistItem, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAWatchlistItem() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const watchlistItemId = "82ba292c-dc97-4dfc-969d-d4dd9e666842"; - const watchlistItem: WatchlistItem = { - etag: "0300bf09-0000-0000-0000-5c37296e0000", - itemsKeyValue: { - "Business tier": "10.0.2.0/24", - "Data tier": "10.0.2.0/24", - "Gateway subnet": "10.0.255.224/27", - "Private DMZ in": "10.0.0.0/27", - "Public DMZ out": "10.0.0.96/27", - "Web Tier": "10.0.1.0/24" - } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlistItems.createOrUpdate( - resourceGroupName, - workspaceName, - watchlistAlias, - watchlistItemId, - watchlistItem - ); - console.log(result); -} - -createsOrUpdatesAWatchlistItem().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActionOfAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActionOfAlertRule.ts deleted file mode 100644 index a3772f08b1e7..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActionOfAlertRule.ts +++ /dev/null @@ -1,45 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the action of alert rule. - * - * @summary Creates or updates the action of alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/actions/CreateActionOfAlertRule.json - */ -import { ActionRequest, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnActionOfAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const actionId = "912bec42-cb66-4c03-ac63-1761b6898c3e"; - const action: ActionRequest = { - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - logicAppResourceId: - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.Logic/workflows/MyAlerts", - triggerUri: - "https://prod-31.northcentralus.logic.azure.com:443/workflows/cd3765391efd48549fd7681ded1d48d7/triggers/manual/paths/invoke?api-version=2016-10-01&sp=%2Ftriggers%2Fmanual%2Frun&sv=1.0&sig=signature" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.actions.createOrUpdate( - resourceGroupName, - workspaceName, - ruleId, - actionId, - action - ); - console.log(result); -} - -createsOrUpdatesAnActionOfAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActivityEntityQuery.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActivityEntityQuery.ts deleted file mode 100644 index ebb04b068400..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnActivityEntityQuery.ts +++ /dev/null @@ -1,61 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the entity query. - * - * @summary Creates or updates the entity query. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueries/CreateEntityQueryActivity.json - */ -import { - ActivityCustomEntityQuery, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnActivityEntityQuery() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityQueryId = "07da3cc8-c8ad-4710-a44e-334cdcb7882b"; - const entityQuery: ActivityCustomEntityQuery = { - description: "Account deleted on host", - content: - "On '{{Computer}}' the account '{{TargetAccount}}' was deleted by '{{AddedBy}}'", - enabled: true, - entitiesFilter: { hostOsFamily: ["Windows"] }, - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - inputEntityType: "Host", - kind: "Activity", - queryDefinitions: { - query: - "let GetAccountActions = (v_Host_Name:string, v_Host_NTDomain:string, v_Host_DnsDomain:string, v_Host_AzureID:string, v_Host_OMSAgentID:string){\nSecurityEvent\n| where EventID in (4725, 4726, 4767, 4720, 4722, 4723, 4724)\n// parsing for Host to handle variety of conventions coming from data\n| extend Host_HostName = case(\nComputer has '@', tostring(split(Computer, '@')[0]),\nComputer has '\\', tostring(split(Computer, '\\')[1]),\nComputer has '.', tostring(split(Computer, '.')[0]),\nComputer\n)\n| extend Host_NTDomain = case(\nComputer has '\\', tostring(split(Computer, '\\')[0]), \nComputer has '.', tostring(split(Computer, '.')[-2]), \nComputer\n)\n| extend Host_DnsDomain = case(\nComputer has '\\', tostring(split(Computer, '\\')[0]), \nComputer has '.', strcat_array(array_slice(split(Computer,'.'),-2,-1),'.'), \nComputer\n)\n| where (Host_HostName =~ v_Host_Name and Host_NTDomain =~ v_Host_NTDomain) \nor (Host_HostName =~ v_Host_Name and Host_DnsDomain =~ v_Host_DnsDomain) \nor v_Host_AzureID =~ _ResourceId \nor v_Host_OMSAgentID == SourceComputerId\n| project TimeGenerated, EventID, Activity, Computer, TargetAccount, TargetUserName, TargetDomainName, TargetSid, SubjectUserName, SubjectUserSid, _ResourceId, SourceComputerId\n| extend AddedBy = SubjectUserName\n// Future support for Activities\n| extend timestamp = TimeGenerated, HostCustomEntity = Computer, AccountCustomEntity = TargetAccount\n};\nGetAccountActions('{{Host_HostName}}', '{{Host_NTDomain}}', '{{Host_DnsDomain}}', '{{Host_AzureID}}', '{{Host_OMSAgentID}}')\n \n| where EventID == 4726 " - }, - requiredInputFieldsSets: [ - ["Host_HostName", "Host_NTDomain"], - ["Host_HostName", "Host_DnsDomain"], - ["Host_AzureID"], - ["Host_OMSAgentID"] - ], - templateName: undefined, - title: "An account was deleted on this host" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityQueries.createOrUpdate( - resourceGroupName, - workspaceName, - entityQueryId, - entityQuery - ); - console.log(result); -} - -createsOrUpdatesAnActivityEntityQuery().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnAutomationRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnAutomationRule.ts deleted file mode 100644 index 126daa10af28..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnAutomationRule.ts +++ /dev/null @@ -1,75 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the automation rule. - * - * @summary Creates or updates the automation rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/automationRules/CreateAutomationRule.json - */ -import { AutomationRule, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnAutomationRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const automationRuleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const automationRule: AutomationRule = { - actions: [ - { - actionConfiguration: { severity: "High" }, - actionType: "ModifyProperties", - order: 1 - }, - { - actionConfiguration: { - logicAppResourceId: - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.Logic/workflows/IncidentPlaybook", - tenantId: "ee48efaf-50c6-411b-9345-b2bdc3eb4abc" - }, - actionType: "RunPlaybook", - order: 2 - } - ], - displayName: "High severity incidents escalation", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - order: 1, - triggeringLogic: { - conditions: [ - { - conditionProperties: { - operator: "Contains", - propertyName: "IncidentRelatedAnalyticRuleIds", - propertyValues: [ - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.OperationalInsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/alertRules/fab3d2d4-747f-46a7-8ef0-9c0be8112bf7", - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.OperationalInsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/alertRules/8deb8303-e94d-46ff-96e0-5fd94b33df1a" - ] - }, - conditionType: "Property" - } - ], - isEnabled: true, - triggersOn: "Incidents", - triggersWhen: "Created" - } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.automationRules.createOrUpdate( - resourceGroupName, - workspaceName, - automationRuleId, - automationRule - ); - console.log(result); -} - -createsOrUpdatesAnAutomationRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncident.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncident.ts deleted file mode 100644 index 323c285a287e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncident.ts +++ /dev/null @@ -1,49 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the incident. - * - * @summary Creates or updates the incident. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/CreateIncident.json - */ -import { Incident, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnIncident() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const incident: Incident = { - description: "This is a demo incident", - classification: "FalsePositive", - classificationComment: "Not a malicious activity", - classificationReason: "IncorrectAlertLogic", - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - firstActivityTimeUtc: new Date("2019-01-01T13:00:30Z"), - lastActivityTimeUtc: new Date("2019-01-01T13:05:30Z"), - owner: { objectId: "2046feea-040d-4a46-9e2b-91c2941bfa70" }, - severity: "High", - status: "Closed", - title: "My incident" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.createOrUpdate( - resourceGroupName, - workspaceName, - incidentId, - incident - ); - console.log(result); -} - -createsOrUpdatesAnIncident().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentComment.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentComment.ts deleted file mode 100644 index 55d671c4631f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentComment.ts +++ /dev/null @@ -1,39 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the incident comment. - * - * @summary Creates or updates the incident comment. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/comments/CreateIncidentComment.json - */ -import { IncidentComment, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnIncidentComment() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const incidentCommentId = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const incidentComment: IncidentComment = { message: "Some message" }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentComments.createOrUpdate( - resourceGroupName, - workspaceName, - incidentId, - incidentCommentId, - incidentComment - ); - console.log(result); -} - -createsOrUpdatesAnIncidentComment().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentRelation.ts deleted file mode 100644 index 016a8546f067..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnIncidentRelation.ts +++ /dev/null @@ -1,42 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the incident relation. - * - * @summary Creates or updates the incident relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/relations/CreateIncidentRelation.json - */ -import { Relation, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnIncidentRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const relation: Relation = { - relatedResourceId: - "/subscriptions/d0cfe6b2-9ac0-4464-9919-dccaee2e48c0/resourceGroups/myRg/providers/Microsoft.OperationalIinsights/workspaces/myWorkspace/providers/Microsoft.SecurityInsights/bookmarks/2216d0e1-91e3-4902-89fd-d2df8c535096" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentRelations.createOrUpdate( - resourceGroupName, - workspaceName, - incidentId, - relationName, - relation - ); - console.log(result); -} - -createsOrUpdatesAnIncidentRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnOffice365DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnOffice365DataConnector.ts deleted file mode 100644 index 2455611d924c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnOffice365DataConnector.ts +++ /dev/null @@ -1,49 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateOfficeDataConnetor.json - */ -import { - OfficeDataConnector, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnOffice365DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const dataConnector: OfficeDataConnector = { - dataTypes: { - exchange: { state: "Enabled" }, - sharePoint: { state: "Enabled" }, - teams: { state: "Enabled" } - }, - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - kind: "Office365", - tenantId: "2070ecc9-b4d5-4ae4-adaa-936fa1954fa8" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesAnOffice365DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnThreatIntelligencePlatformDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnThreatIntelligencePlatformDataConnector.ts deleted file mode 100644 index 7425f3b88d5c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/createsOrUpdatesAnThreatIntelligencePlatformDataConnector.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Creates or updates the data connector. - * - * @summary Creates or updates the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/CreateThreatIntelligenceDataConnector.json - */ -import { TIDataConnector, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function createsOrUpdatesAnThreatIntelligencePlatformDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const dataConnector: TIDataConnector = { - dataTypes: { indicators: { state: "Enabled" } }, - kind: "ThreatIntelligence", - tenantId: "06b3ccb8-1384-4bcc-aec7-852f6d57161b", - tipLookbackPeriod: new Date("2020-01-01T13:00:30.123Z") - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.createOrUpdate( - resourceGroupName, - workspaceName, - dataConnectorId, - dataConnector - ); - console.log(result); -} - -createsOrUpdatesAnThreatIntelligencePlatformDataConnector().catch( - console.error -); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAApiPollingDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAApiPollingDataConnector.ts deleted file mode 100644 index 16aa8500a3d4..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAApiPollingDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the data connector. - * - * @summary Delete the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/DeleteAPIPolling.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAApiPollingDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.delete( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -deleteAApiPollingDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteABookmark.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteABookmark.ts deleted file mode 100644 index af5b85f047c9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteABookmark.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the bookmark. - * - * @summary Delete the bookmark. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/DeleteBookmark.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteABookmark() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarks.delete( - resourceGroupName, - workspaceName, - bookmarkId - ); - console.log(result); -} - -deleteABookmark().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAGenericUiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAGenericUiDataConnector.ts deleted file mode 100644 index 14b9953455c2..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAGenericUiDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the data connector. - * - * @summary Delete the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/DeleteGenericUI.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAGenericUiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.delete( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -deleteAGenericUiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteASourceControl.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteASourceControl.ts deleted file mode 100644 index 1b1fae5498dc..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteASourceControl.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete a source control. - * - * @summary Delete a source control. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/sourcecontrols/DeleteSourceControl.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteASourceControl() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sourceControlId = "789e0c1f-4a3d-43ad-809c-e713b677b04a"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sourceControls.delete( - resourceGroupName, - workspaceName, - sourceControlId - ); - console.log(result); -} - -deleteASourceControl().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAThreatIntelligenceIndicator.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAThreatIntelligenceIndicator.ts deleted file mode 100644 index c42fe7c78323..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAThreatIntelligenceIndicator.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete a threat intelligence indicator. - * - * @summary Delete a threat intelligence indicator. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/DeleteThreatIntelligence.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAThreatIntelligenceIndicator() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const name = "d9cd6f0b-96b9-3984-17cd-a779d1e15a93"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.delete( - resourceGroupName, - workspaceName, - name - ); - console.log(result); -} - -deleteAThreatIntelligenceIndicator().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlist.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlist.ts deleted file mode 100644 index 80f673be5f60..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlist.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete a watchlist. - * - * @summary Delete a watchlist. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/DeleteWatchlist.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAWatchlist() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlists.delete( - resourceGroupName, - workspaceName, - watchlistAlias - ); - console.log(result); -} - -deleteAWatchlist().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlistItem.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlistItem.ts deleted file mode 100644 index c950f5853294..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAWatchlistItem.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete a watchlist item. - * - * @summary Delete a watchlist item. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/DeleteWatchlistItem.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAWatchlistItem() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const watchlistItemId = "4008512e-1d30-48b2-9ee2-d3612ed9d3ea"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlistItems.delete( - resourceGroupName, - workspaceName, - watchlistAlias, - watchlistItemId - ); - console.log(result); -} - -deleteAWatchlistItem().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnActionOfAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnActionOfAlertRule.ts deleted file mode 100644 index 729b1ec31bc8..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnActionOfAlertRule.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the action of alert rule. - * - * @summary Delete the action of alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/actions/DeleteActionOfAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnActionOfAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const actionId = "912bec42-cb66-4c03-ac63-1761b6898c3e"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.actions.delete( - resourceGroupName, - workspaceName, - ruleId, - actionId - ); - console.log(result); -} - -deleteAnActionOfAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAlertRule.ts deleted file mode 100644 index c0b7a94ce5f5..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAlertRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the alert rule. - * - * @summary Delete the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/DeleteAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.delete( - resourceGroupName, - workspaceName, - ruleId - ); - console.log(result); -} - -deleteAnAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAutomationRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAutomationRule.ts deleted file mode 100644 index 14f322df81f7..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnAutomationRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the automation rule. - * - * @summary Delete the automation rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/automationRules/DeleteAutomationRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnAutomationRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const automationRuleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.automationRules.delete( - resourceGroupName, - workspaceName, - automationRuleId - ); - console.log(result); -} - -deleteAnAutomationRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnEntityQuery.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnEntityQuery.ts deleted file mode 100644 index a829131fdb7b..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnEntityQuery.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the entity query. - * - * @summary Delete the entity query. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueries/DeleteEntityQuery.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnEntityQuery() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityQueryId = "07da3cc8-c8ad-4710-a44e-334cdcb7882b"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityQueries.delete( - resourceGroupName, - workspaceName, - entityQueryId - ); - console.log(result); -} - -deleteAnEntityQuery().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnIncident.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnIncident.ts deleted file mode 100644 index cb0bba6ea3f1..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnIncident.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the incident. - * - * @summary Delete the incident. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/DeleteIncident.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnIncident() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.delete( - resourceGroupName, - workspaceName, - incidentId - ); - console.log(result); -} - -deleteAnIncident().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOffice365DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOffice365DataConnector.ts deleted file mode 100644 index ffe717638cd5..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOffice365DataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the data connector. - * - * @summary Delete the data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/DeleteOfficeDataConnetor.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnOffice365DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.delete( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -deleteAnOffice365DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOfficeConsent.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOfficeConsent.ts deleted file mode 100644 index 644f4b017c3f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteAnOfficeConsent.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the office365 consent. - * - * @summary Delete the office365 consent. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/officeConsents/DeleteOfficeConsents.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteAnOfficeConsent() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const consentId = "04e5fd05-ff86-4b97-b8d2-1c20933cb46c"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.officeConsents.delete( - resourceGroupName, - workspaceName, - consentId - ); - console.log(result); -} - -deleteAnOfficeConsent().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteEyesOnSettings.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteEyesOnSettings.ts deleted file mode 100644 index 2fb0ff17a92c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteEyesOnSettings.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete setting of the product. - * - * @summary Delete setting of the product. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/settings/DeleteEyesOnSetting.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteEyesOnSettings() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const settingsName = "EyesOn"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.productSettings.delete( - resourceGroupName, - workspaceName, - settingsName - ); - console.log(result); -} - -deleteEyesOnSettings().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteMetadata.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteMetadata.ts deleted file mode 100644 index 8cf5605716c8..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteMetadata.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete a Metadata. - * - * @summary Delete a Metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/DeleteMetadata.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteMetadata() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const metadataName = "metadataName"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.metadata.delete( - resourceGroupName, - workspaceName, - metadataName - ); - console.log(result); -} - -deleteMetadata().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteSentinelOnboardingState.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteSentinelOnboardingState.ts deleted file mode 100644 index 02cbcc29622a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteSentinelOnboardingState.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete Sentinel onboarding state - * - * @summary Delete Sentinel onboarding state - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/onboardingStates/DeleteSentinelOnboardingState.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteSentinelOnboardingState() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sentinelOnboardingStateName = "default"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sentinelOnboardingStates.delete( - resourceGroupName, - workspaceName, - sentinelOnboardingStateName - ); - console.log(result); -} - -deleteSentinelOnboardingState().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheBookmarkRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheBookmarkRelation.ts deleted file mode 100644 index 24ca75fb9a3d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheBookmarkRelation.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the bookmark relation. - * - * @summary Delete the bookmark relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/relations/DeleteBookmarkRelation.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteTheBookmarkRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "2216d0e1-91e3-4902-89fd-d2df8c535096"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarkRelations.delete( - resourceGroupName, - workspaceName, - bookmarkId, - relationName - ); - console.log(result); -} - -deleteTheBookmarkRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentComment.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentComment.ts deleted file mode 100644 index 504a10296ae9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentComment.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the incident comment. - * - * @summary Delete the incident comment. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/comments/DeleteIncidentComment.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteTheIncidentComment() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const incidentCommentId = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentComments.delete( - resourceGroupName, - workspaceName, - incidentId, - incidentCommentId - ); - console.log(result); -} - -deleteTheIncidentComment().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentRelation.ts deleted file mode 100644 index 218bee4f1c0c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/deleteTheIncidentRelation.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Delete the incident relation. - * - * @summary Delete the incident relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/relations/DeleteIncidentRelation.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function deleteTheIncidentRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentRelations.delete( - resourceGroupName, - workspaceName, - incidentId, - relationName - ); - console.log(result); -} - -deleteTheIncidentRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/disconnectAnApiPollingDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/disconnectAnApiPollingDataConnector.ts deleted file mode 100644 index 303a04f33542..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/disconnectAnApiPollingDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Disconnect a data connector. - * - * @summary Disconnect a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/DisconnectAPIPolling.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function disconnectAnApiPollingDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.disconnect( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -disconnectAnApiPollingDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/entityInsight.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/entityInsight.ts deleted file mode 100644 index 4cbff14eee7a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/entityInsight.ts +++ /dev/null @@ -1,45 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Execute Insights for an entity. - * - * @summary Execute Insights for an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/insights/PostGetInsights.json - */ -import { - EntityGetInsightsParameters, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function entityInsight() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const parameters: EntityGetInsightsParameters = { - addDefaultExtendedTimeRange: false, - endTime: new Date("2021-10-01T00:00:00.000Z"), - insightQueryIds: ["cae8d0aa-aa45-4d53-8d88-17dd64ffd4e4"], - startTime: new Date("2021-09-01T00:00:00.000Z") - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.getInsights( - resourceGroupName, - workspaceName, - entityId, - parameters - ); - console.log(result); -} - -entityInsight().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/entityTimeline.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/entityTimeline.ts deleted file mode 100644 index f5cc25480e29..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/entityTimeline.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Timeline for an entity. - * - * @summary Timeline for an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/timeline/PostTimelineEntity.json - */ -import { - EntityTimelineParameters, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function entityTimeline() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const parameters: EntityTimelineParameters = { - endTime: new Date("2021-10-01T00:00:00.000Z"), - numberOfBucket: 4, - startTime: new Date("2021-09-01T00:00:00.000Z") - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entitiesGetTimeline.list( - resourceGroupName, - workspaceName, - entityId, - parameters - ); - console.log(result); -} - -entityTimeline().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnBookmark.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnBookmark.ts deleted file mode 100644 index a7fb4b5f084a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnBookmark.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Expand an bookmark - * - * @summary Expand an bookmark - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/expand/PostExpandBookmark.json - */ -import { - BookmarkExpandParameters, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function expandAnBookmark() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const parameters: BookmarkExpandParameters = { - endTime: new Date("2020-01-24T17:21:00.000Z"), - expansionId: "27f76e63-c41b-480f-bb18-12ad2e011d49", - startTime: new Date("2019-12-25T17:21:00.000Z") - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarkOperations.expand( - resourceGroupName, - workspaceName, - bookmarkId, - parameters - ); - console.log(result); -} - -expandAnBookmark().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnEntity.ts deleted file mode 100644 index a71657d9ba60..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/expandAnEntity.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Expands an entity. - * - * @summary Expands an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/expand/PostExpandEntity.json - */ -import { - EntityExpandParameters, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function expandAnEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const parameters: EntityExpandParameters = { - endTime: new Date("2019-05-26T00:00:00.000Z"), - expansionId: "a77992f3-25e9-4d01-99a4-5ff606cc410a", - startTime: new Date("2019-04-25T00:00:00.000Z") - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.expand( - resourceGroupName, - workspaceName, - entityId, - parameters - ); - console.log(result); -} - -expandAnEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAApiPollingDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAApiPollingDataConnector.ts deleted file mode 100644 index aa27fcc29059..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAApiPollingDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAPIPolling.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAApiPollingDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAApiPollingDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAAscDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAAscDataConnector.ts deleted file mode 100644 index 0a9f1a555367..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAAscDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAzureSecurityCenterById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAAscDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "763f9fa1-c2d3-4fa2-93e9-bccd4899aa12"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAAscDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmark.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmark.ts deleted file mode 100644 index 47f2583ac60b..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmark.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a bookmark. - * - * @summary Gets a bookmark. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/GetBookmarkById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getABookmark() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarks.get( - resourceGroupName, - workspaceName, - bookmarkId - ); - console.log(result); -} - -getABookmark().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmarkRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmarkRelation.ts deleted file mode 100644 index f7eb7772c46e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getABookmarkRelation.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a bookmark relation. - * - * @summary Gets a bookmark relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/relations/GetBookmarkRelationByName.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getABookmarkRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "2216d0e1-91e3-4902-89fd-d2df8c535096"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.bookmarkRelations.get( - resourceGroupName, - workspaceName, - bookmarkId, - relationName - ); - console.log(result); -} - -getABookmarkRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getACloudApplicationEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getACloudApplicationEntity.ts deleted file mode 100644 index 3f3178a8cb1a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getACloudApplicationEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetCloudApplicationEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getACloudApplicationEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getACloudApplicationEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getADnsEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getADnsEntity.ts deleted file mode 100644 index bd3e1994a6df..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getADnsEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetDnsEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getADnsEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "f4e74920-f2c0-4412-a45f-66d94fdf01f8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getADnsEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getADynamics365DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getADynamics365DataConnector.ts deleted file mode 100644 index 89f801108394..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getADynamics365DataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetDynamics365DataConnectorById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getADynamics365DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c2541efb-c9a6-47fe-9501-87d1017d1512"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getADynamics365DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileEntity.ts deleted file mode 100644 index f5c3bddf3ade..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetFileEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAFileEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "af378b21-b4aa-4fe7-bc70-13f8621a322f"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAFileEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileHashEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileHashEntity.ts deleted file mode 100644 index b77e91dfbd63..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFileHashEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetFileHashEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAFileHashEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "ea359fa6-c1e5-f878-e105-6344f3e399a1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAFileHashEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFusionAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAFusionAlertRule.ts deleted file mode 100644 index b74fa8d29fe9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAFusionAlertRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the alert rule. - * - * @summary Gets the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/GetFusionAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAFusionAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "myFirstFusionRule"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.get( - resourceGroupName, - workspaceName, - ruleId - ); - console.log(result); -} - -getAFusionAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAGenericUiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAGenericUiDataConnector.ts deleted file mode 100644 index c4199b14af4c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAGenericUiDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetGenericUI.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAGenericUiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "316ec55e-7138-4d63-ab18-90c8a60fd1c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAGenericUiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAHostEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAHostEntity.ts deleted file mode 100644 index 2f03bf3e64e2..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAHostEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetHostEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAHostEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAHostEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailClusterEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailClusterEntity.ts deleted file mode 100644 index f88ff274d854..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailClusterEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetMailClusterEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMailClusterEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAMailClusterEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailMessageEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailMessageEntity.ts deleted file mode 100644 index c5e7e485e050..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailMessageEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetMailMessageEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMailMessageEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAMailMessageEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailboxEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailboxEntity.ts deleted file mode 100644 index 48682a675ae5..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMailboxEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetMailboxEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMailboxEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAMailboxEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMalwareEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMalwareEntity.ts deleted file mode 100644 index b5c0d80350c3..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMalwareEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetMalwareEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMalwareEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "af378b21-b4aa-4fe7-bc70-13f8621a322f"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAMalwareEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMcasDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMcasDataConnector.ts deleted file mode 100644 index 641c9044f6bd..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMcasDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetMicrosoftCloudAppSecurityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMcasDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "b96d014d-b5c2-4a01-9aba-a8058f629d42"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAMcasDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMdatpDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMdatpDataConnector.ts deleted file mode 100644 index 57afb5c94428..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMdatpDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetMicrosoftDefenderAdvancedThreatProtectionById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMdatpDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "06b3ccb8-1384-4bcc-aec7-852f6d57161b"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAMdatpDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftSecurityIncidentCreationRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftSecurityIncidentCreationRule.ts deleted file mode 100644 index bed861f353ac..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftSecurityIncidentCreationRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the alert rule. - * - * @summary Gets the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/GetMicrosoftSecurityIncidentCreationAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMicrosoftSecurityIncidentCreationRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "microsoftSecurityIncidentCreationRuleExample"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.get( - resourceGroupName, - workspaceName, - ruleId - ); - console.log(result); -} - -getAMicrosoftSecurityIncidentCreationRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatIntelligenceDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatIntelligenceDataConnector.ts deleted file mode 100644 index 665cc2d484e8..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatIntelligenceDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetMicrosoftThreatIntelligenceById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMicrosoftThreatIntelligenceDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c345bf40-8509-4ed2-b947-50cb773aaf04"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAMicrosoftThreatIntelligenceDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatProtectionDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatProtectionDataConnector.ts deleted file mode 100644 index 44478189955a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAMicrosoftThreatProtectionDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetMicrosoftThreatProtectionById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAMicrosoftThreatProtectionDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c345bf40-8509-4ed2-b947-50cb773aaf04"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAMicrosoftThreatProtectionDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeAtpDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeAtpDataConnector.ts deleted file mode 100644 index 6a3d566602aa..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeAtpDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetOffice365AdvancedThreatProtectionById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAOfficeAtpDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "3d3e955e-33eb-401d-89a7-251c81ddd660"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAOfficeAtpDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeIrmDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeIrmDataConnector.ts deleted file mode 100644 index 6488bac4a404..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAOfficeIrmDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetMicrosoftInsiderRiskManagementById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAOfficeIrmDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "3d3e955e-33eb-401d-89a7-251c81ddd660"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAOfficeIrmDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAProcessEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAProcessEntity.ts deleted file mode 100644 index 7b0cffa82d62..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAProcessEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetProcessEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAProcessEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "7264685c-038c-42c6-948c-38e14ef1fb98"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAProcessEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryKeyEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryKeyEntity.ts deleted file mode 100644 index 13df73f5773a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryKeyEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetRegistryKeyEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getARegistryKeyEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getARegistryKeyEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryValueEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryValueEntity.ts deleted file mode 100644 index c496a6dc4786..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getARegistryValueEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetRegistryValueEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getARegistryValueEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "dc44bd11-b348-4d76-ad29-37bf7aa41356"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getARegistryValueEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAScheduledAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAScheduledAlertRule.ts deleted file mode 100644 index b5496fcd5624..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAScheduledAlertRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the alert rule. - * - * @summary Gets the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/GetScheduledAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAScheduledAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.get( - resourceGroupName, - workspaceName, - ruleId - ); - console.log(result); -} - -getAScheduledAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityAlertEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityAlertEntity.ts deleted file mode 100644 index f3c2e745eb33..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityAlertEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetSecurityAlertEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getASecurityAlertEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "4aa486e0-6f85-41af-99ea-7acdce7be6c8"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getASecurityAlertEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityGroupEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityGroupEntity.ts deleted file mode 100644 index 34aa4ff3b39a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getASecurityGroupEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetSecurityGroupEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getASecurityGroupEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getASecurityGroupEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getASourceControl.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getASourceControl.ts deleted file mode 100644 index b91719879304..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getASourceControl.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a source control byt its identifier. - * - * @summary Gets a source control byt its identifier. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/sourcecontrols/GetSourceControlById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getASourceControl() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sourceControlId = "789e0c1f-4a3d-43ad-809c-e713b677b04a"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sourceControls.get( - resourceGroupName, - workspaceName, - sourceControlId - ); - console.log(result); -} - -getASourceControl().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getASubmissionMailEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getASubmissionMailEntity.ts deleted file mode 100644 index 15e1fc35dbf0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getASubmissionMailEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetSubmissionMailEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getASubmissionMailEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getASubmissionMailEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getATiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getATiDataConnector.ts deleted file mode 100644 index 5ec739f5fa6f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getATiDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetThreatIntelligenceById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getATiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c345bf40-8509-4ed2-b947-50cb773aaf04"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getATiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getATiTaxiiDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getATiTaxiiDataConnector.ts deleted file mode 100644 index 8160667ac7d5..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getATiTaxiiDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetThreatIntelligenceTaxiiById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getATiTaxiiDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c39bb458-02a7-4b3f-b0c8-71a1d2692652"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getATiTaxiiDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAUrlEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAUrlEntity.ts deleted file mode 100644 index 4536fecedb33..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAUrlEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetUrlEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAUrlEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAUrlEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlist.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlist.ts deleted file mode 100644 index 8eb9d170effb..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlist.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a watchlist, without its watchlist items. - * - * @summary Gets a watchlist, without its watchlist items. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/GetWatchlistByAlias.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAWatchlist() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlists.get( - resourceGroupName, - workspaceName, - watchlistAlias - ); - console.log(result); -} - -getAWatchlist().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlistItem.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlistItem.ts deleted file mode 100644 index 89ab54634d61..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAWatchlistItem.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a watchlist, without its watchlist items. - * - * @summary Gets a watchlist, without its watchlist items. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/GetWatchlistItemById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAWatchlistItem() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const watchlistItemId = "3f8901fe-63d9-4875-9ad5-9fb3b8105797"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.watchlistItems.get( - resourceGroupName, - workspaceName, - watchlistAlias, - watchlistItemId - ); - console.log(result); -} - -getAWatchlistItem().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAlertRuleTemplateById.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAlertRuleTemplateById.ts deleted file mode 100644 index ae6eceb0493a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAlertRuleTemplateById.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the alert rule template. - * - * @summary Gets the alert rule template. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRuleTemplates/GetAlertRuleTemplateById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAlertRuleTemplateById() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const alertRuleTemplateId = "65360bb0-8986-4ade-a89d-af3cf44d28aa"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRuleTemplates.get( - resourceGroupName, - workspaceName, - alertRuleTemplateId - ); - console.log(result); -} - -getAlertRuleTemplateById().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllActionsOfAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllActionsOfAlertRule.ts deleted file mode 100644 index 21af1357efb9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllActionsOfAlertRule.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all actions of alert rule. - * - * @summary Gets all actions of alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/actions/GetAllActionsByAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllActionsOfAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.actions.listByAlertRule( - resourceGroupName, - workspaceName, - ruleId - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllActionsOfAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRuleTemplates.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRuleTemplates.ts deleted file mode 100644 index 21764f1ce5cf..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRuleTemplates.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all alert rule templates. - * - * @summary Gets all alert rule templates. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRuleTemplates/GetAlertRuleTemplates.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllAlertRuleTemplates() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.alertRuleTemplates.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllAlertRuleTemplates().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRules.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRules.ts deleted file mode 100644 index 26052edda0f3..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAlertRules.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all alert rules. - * - * @summary Gets all alert rules. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/GetAllAlertRules.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllAlertRules() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.alertRules.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllAlertRules().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAutomationRules.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAutomationRules.ts deleted file mode 100644 index 645907382dd9..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllAutomationRules.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all automation rules. - * - * @summary Gets all automation rules. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/automationRules/GetAllAutomationRules.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllAutomationRules() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.automationRules.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllAutomationRules().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarkRelations.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarkRelations.ts deleted file mode 100644 index a1068e4d6a19..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarkRelations.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all bookmark relations. - * - * @summary Gets all bookmark relations. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/relations/GetAllBookmarkRelations.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllBookmarkRelations() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const bookmarkId = "2216d0e1-91e3-4902-89fd-d2df8c535096"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.bookmarkRelations.list( - resourceGroupName, - workspaceName, - bookmarkId - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllBookmarkRelations().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarks.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarks.ts deleted file mode 100644 index fc0a3f851e4e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllBookmarks.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all bookmarks. - * - * @summary Gets all bookmarks. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/bookmarks/GetBookmarks.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllBookmarks() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.bookmarks.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllBookmarks().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllDataConnectors.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllDataConnectors.ts deleted file mode 100644 index 520ed9fe6474..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllDataConnectors.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all data connectors. - * - * @summary Gets all data connectors. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetDataConnectors.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllDataConnectors() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.dataConnectors.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllDataConnectors().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntities.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntities.ts deleted file mode 100644 index 35a53889d3b3..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntities.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all entities. - * - * @summary Gets all entities. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetEntities.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllEntities() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.entities.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllEntities().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueries.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueries.ts deleted file mode 100644 index 5a7c7df049c7..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueries.ts +++ /dev/null @@ -1,39 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all entity queries. - * - * @summary Gets all entity queries. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueries/GetEntityQueries.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllEntityQueries() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const kind = "Expansion"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const options = { kind: kind }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.entityQueries.list( - resourceGroupName, - workspaceName, - options - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllEntityQueries().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueryTemplates.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueryTemplates.ts deleted file mode 100644 index 00c5d2864798..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllEntityQueryTemplates.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all entity query templates. - * - * @summary Gets all entity query templates. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueryTemplates/GetEntityQueryTemplates.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllEntityQueryTemplates() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.entityQueryTemplates.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllEntityQueryTemplates().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentAlerts.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentAlerts.ts deleted file mode 100644 index 684ebf333449..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentAlerts.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incident alerts. - * - * @summary Gets all incident alerts. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/GetAllIncidentAlerts.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllIncidentAlerts() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.listAlerts( - resourceGroupName, - workspaceName, - incidentId - ); - console.log(result); -} - -getAllIncidentAlerts().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentBookmarks.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentBookmarks.ts deleted file mode 100644 index b84bab8b8520..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentBookmarks.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incident bookmarks. - * - * @summary Gets all incident bookmarks. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/GetAllIncidentBookmarks.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllIncidentBookmarks() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.listBookmarks( - resourceGroupName, - workspaceName, - incidentId - ); - console.log(result); -} - -getAllIncidentBookmarks().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentComments.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentComments.ts deleted file mode 100644 index 422aa1660c5c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentComments.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incident comments. - * - * @summary Gets all incident comments. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/comments/GetAllIncidentComments.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllIncidentComments() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.incidentComments.list( - resourceGroupName, - workspaceName, - incidentId - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllIncidentComments().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentRelations.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentRelations.ts deleted file mode 100644 index c80a61685410..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidentRelations.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incident relations. - * - * @summary Gets all incident relations. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/relations/GetAllIncidentRelations.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllIncidentRelations() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.incidentRelations.list( - resourceGroupName, - workspaceName, - incidentId - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllIncidentRelations().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidents.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidents.ts deleted file mode 100644 index ba75b5240dc5..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllIncidents.ts +++ /dev/null @@ -1,40 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incidents. - * - * @summary Gets all incidents. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/GetIncidents.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllIncidents() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const orderby = "properties/createdTimeUtc desc"; - const top = 1; - const options = { orderby: orderby, top: top }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.incidents.list( - resourceGroupName, - workspaceName, - options - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllIncidents().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadata.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadata.ts deleted file mode 100644 index ed6562506118..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadata.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to List of all metadata - * - * @summary List of all metadata - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/GetAllMetadata.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllMetadata() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.metadata.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllMetadata().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop.ts deleted file mode 100644 index 7a9cf78d91e0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to List of all metadata - * - * @summary List of all metadata - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/GetAllMetadataOData.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.metadata.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllMetadataWithODataFilterOrOrderbyOrSkipOrTop().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllOfficeConsents.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllOfficeConsents.ts deleted file mode 100644 index a6277ab187e0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllOfficeConsents.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all office365 consents. - * - * @summary Gets all office365 consents. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/officeConsents/GetOfficeConsents.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllOfficeConsents() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.officeConsents.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllOfficeConsents().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllRelationsOfAnEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllRelationsOfAnEntity.ts deleted file mode 100644 index d00a1cc3751e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllRelationsOfAnEntity.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all relations of an entity. - * - * @summary Gets all relations of an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/relations/GetAllEntityRelations.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllRelationsOfAnEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.entitiesRelations.list( - resourceGroupName, - workspaceName, - entityId - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllRelationsOfAnEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSentinelOnboardingStates.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSentinelOnboardingStates.ts deleted file mode 100644 index d943eb13fd8a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSentinelOnboardingStates.ts +++ /dev/null @@ -1,33 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all Sentinel onboarding states - * - * @summary Gets all Sentinel onboarding states - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/onboardingStates/GetAllSentinelOnboardingStates.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllSentinelOnboardingStates() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sentinelOnboardingStates.list( - resourceGroupName, - workspaceName - ); - console.log(result); -} - -getAllSentinelOnboardingStates().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSettings.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSettings.ts deleted file mode 100644 index ab9f04e64d7d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSettings.ts +++ /dev/null @@ -1,33 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to List of all the settings - * - * @summary List of all the settings - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/settings/GetAllSettings.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllSettings() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.productSettings.list( - resourceGroupName, - workspaceName - ); - console.log(result); -} - -getAllSettings().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSourceControls.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSourceControls.ts deleted file mode 100644 index 06a4d95c429e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllSourceControls.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all source controls, without source control items. - * - * @summary Gets all source controls, without source control items. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/sourcecontrols/GetSourceControls.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllSourceControls() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.sourceControls.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllSourceControls().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllThreatIntelligenceIndicators.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllThreatIntelligenceIndicators.ts deleted file mode 100644 index 8fb80bc3bca6..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllThreatIntelligenceIndicators.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get all threat intelligence indicators. - * - * @summary Get all threat intelligence indicators. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/GetThreatIntelligence.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllThreatIntelligenceIndicators() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.threatIntelligenceIndicators.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllThreatIntelligenceIndicators().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlistItems.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlistItems.ts deleted file mode 100644 index 71f2ee457802..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlistItems.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all watchlist Items. - * - * @summary Gets all watchlist Items. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/GetWatchlistItems.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllWatchlistItems() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const watchlistAlias = "highValueAsset"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.watchlistItems.list( - resourceGroupName, - workspaceName, - watchlistAlias - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllWatchlistItems().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlists.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlists.ts deleted file mode 100644 index c45edd1c79f0..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAllWatchlists.ts +++ /dev/null @@ -1,36 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all watchlists, without watchlist items. - * - * @summary Gets all watchlists, without watchlist items. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/watchlists/GetWatchlists.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAllWatchlists() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.watchlists.list( - resourceGroupName, - workspaceName - )) { - resArray.push(item); - } - console.log(resArray); -} - -getAllWatchlists().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAadDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAadDataConnector.ts deleted file mode 100644 index cb0b0029bebd..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAadDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAzureActiveDirectoryById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAadDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "f0cd27d2-5f03-4c06-ba31-d2dc82dcb51d"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAnAadDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAatpDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAatpDataConnector.ts deleted file mode 100644 index f018187b66cd..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAatpDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAzureAdvancedThreatProtectionById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAatpDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "07e42cb3-e658-4e90-801c-efa0f29d3d44"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAnAatpDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAccountEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAccountEntity.ts deleted file mode 100644 index c8c704467bed..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAccountEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetAccountEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAccountEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAnAccountEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActionOfAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActionOfAlertRule.ts deleted file mode 100644 index ac12ef5fb24c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActionOfAlertRule.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the action of alert rule. - * - * @summary Gets the action of alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/actions/GetActionOfAlertRuleById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnActionOfAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const actionId = "912bec42-cb66-4c03-ac63-1761b6898c3e"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.actions.get( - resourceGroupName, - workspaceName, - ruleId, - actionId - ); - console.log(result); -} - -getAnActionOfAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQuery.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQuery.ts deleted file mode 100644 index a6d9b71be07f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQuery.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity query. - * - * @summary Gets an entity query. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueries/GetActivityEntityQueryById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnActivityEntityQuery() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityQueryId = "07da3cc8-c8ad-4710-a44e-334cdcb7882b"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityQueries.get( - resourceGroupName, - workspaceName, - entityQueryId - ); - console.log(result); -} - -getAnActivityEntityQuery().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQueryTemplate.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQueryTemplate.ts deleted file mode 100644 index 73e457c09f6c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnActivityEntityQueryTemplate.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity query. - * - * @summary Gets an entity query. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueryTemplates/GetActivityEntityQueryTemplateById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnActivityEntityQueryTemplate() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityQueryTemplateId = "07da3cc8-c8ad-4710-a44e-334cdcb7882b"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityQueryTemplates.get( - resourceGroupName, - workspaceName, - entityQueryTemplateId - ); - console.log(result); -} - -getAnActivityEntityQueryTemplate().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAutomationRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAutomationRule.ts deleted file mode 100644 index d5aadec1afb2..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAutomationRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the automation rule. - * - * @summary Gets the automation rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/automationRules/GetAutomationRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAutomationRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const automationRuleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.automationRules.get( - resourceGroupName, - workspaceName, - automationRuleId - ); - console.log(result); -} - -getAnAutomationRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsCloudTrailDataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsCloudTrailDataConnector.ts deleted file mode 100644 index d7c181800c4a..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsCloudTrailDataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAmazonWebServicesCloudTrailById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAwsCloudTrailDataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "c345bf40-8509-4ed2-b947-50cb773aaf04"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAnAwsCloudTrailDataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsS3DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsS3DataConnector.ts deleted file mode 100644 index 80a043399230..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAwsS3DataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetAmazonWebServicesS3ById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAwsS3DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "afef3743-0c88-469c-84ff-ca2e87dc1e48"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAnAwsS3DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAzureResourceEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAzureResourceEntity.ts deleted file mode 100644 index de6880c2263e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnAzureResourceEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetAzureResourceEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnAzureResourceEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAnAzureResourceEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnEntityRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnEntityRelation.ts deleted file mode 100644 index f241df0a73a4..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnEntityRelation.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity relation. - * - * @summary Gets an entity relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/relations/GetEntityRelationByName.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnEntityRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityRelations.getRelation( - resourceGroupName, - workspaceName, - entityId, - relationName - ); - console.log(result); -} - -getAnEntityRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnExpansionEntityQuery.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnExpansionEntityQuery.ts deleted file mode 100644 index 47d100baf970..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnExpansionEntityQuery.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity query. - * - * @summary Gets an entity query. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entityQueries/GetExpansionEntityQueryById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnExpansionEntityQuery() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityQueryId = "07da3cc8-c8ad-4710-a44e-334cdcb7882b"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entityQueries.get( - resourceGroupName, - workspaceName, - entityQueryId - ); - console.log(result); -} - -getAnExpansionEntityQuery().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIPEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIPEntity.ts deleted file mode 100644 index b3bbc0a4c562..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIPEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetIpEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnIPEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAnIPEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncident.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncident.ts deleted file mode 100644 index 67c3bb6fb54f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncident.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an incident. - * - * @summary Gets an incident. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/GetIncidentById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnIncident() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.get( - resourceGroupName, - workspaceName, - incidentId - ); - console.log(result); -} - -getAnIncident().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentComment.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentComment.ts deleted file mode 100644 index 1cef0ba579c1..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentComment.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an incident comment. - * - * @summary Gets an incident comment. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/comments/GetIncidentCommentById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnIncidentComment() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const incidentCommentId = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentComments.get( - resourceGroupName, - workspaceName, - incidentId, - incidentCommentId - ); - console.log(result); -} - -getAnIncidentComment().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentRelation.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentRelation.ts deleted file mode 100644 index 61a9adf59ba6..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIncidentRelation.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an incident relation. - * - * @summary Gets an incident relation. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/relations/GetIncidentRelationByName.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnIncidentRelation() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const relationName = "4bb36b7b-26ff-4d1c-9cbe-0d8ab3da0014"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidentRelations.get( - resourceGroupName, - workspaceName, - incidentId, - relationName - ); - console.log(result); -} - -getAnIncidentRelation().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIoTDeviceEntity.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIoTDeviceEntity.ts deleted file mode 100644 index 638568cf5711..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnIoTDeviceEntity.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an entity. - * - * @summary Gets an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetIoTDeviceEntityById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnIoTDeviceEntity() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.get( - resourceGroupName, - workspaceName, - entityId - ); - console.log(result); -} - -getAnIoTDeviceEntity().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnNrtAlertRule.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnNrtAlertRule.ts deleted file mode 100644 index 1a3922497c73..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnNrtAlertRule.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets the alert rule. - * - * @summary Gets the alert rule. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/alertRules/GetNrtAlertRule.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnNrtAlertRule() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const ruleId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.alertRules.get( - resourceGroupName, - workspaceName, - ruleId - ); - console.log(result); -} - -getAnNrtAlertRule().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOffice365DataConnector.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOffice365DataConnector.ts deleted file mode 100644 index 7c0692688e4e..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOffice365DataConnector.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a data connector. - * - * @summary Gets a data connector. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/dataConnectors/GetOfficeDataConnetorById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnOffice365DataConnector() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const dataConnectorId = "73e01a99-5cd7-4139-a149-9f2736ff2ab5"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.dataConnectors.get( - resourceGroupName, - workspaceName, - dataConnectorId - ); - console.log(result); -} - -getAnOffice365DataConnector().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOfficeConsent.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOfficeConsent.ts deleted file mode 100644 index c3c6d5d1f2da..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getAnOfficeConsent.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets an office365 consent. - * - * @summary Gets an office365 consent. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/officeConsents/GetOfficeConsentsById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getAnOfficeConsent() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const consentId = "04e5fd05-ff86-4b97-b8d2-1c20933cb46c"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.officeConsents.get( - resourceGroupName, - workspaceName, - consentId - ); - console.log(result); -} - -getAnOfficeConsent().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getEntityQuery.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getEntityQuery.ts deleted file mode 100644 index cc428330a0e1..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getEntityQuery.ts +++ /dev/null @@ -1,37 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get Insights and Activities for an entity. - * - * @summary Get Insights and Activities for an entity. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/entities/GetQueries.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getEntityQuery() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const entityId = "e1d3d618-e11f-478b-98e3-bb381539a8e1"; - const kind = "Insight"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.entities.queries( - resourceGroupName, - workspaceName, - entityId, - kind - ); - console.log(result); -} - -getEntityQuery().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getEyesOnSettings.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getEyesOnSettings.ts deleted file mode 100644 index 9156f8b35392..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getEyesOnSettings.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a setting. - * - * @summary Gets a setting. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/settings/GetEyesOnSetting.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getEyesOnSettings() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const settingsName = "EyesOn"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.productSettings.get( - resourceGroupName, - workspaceName, - settingsName - ); - console.log(result); -} - -getEyesOnSettings().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getGeodataForASingleIPAddress.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getGeodataForASingleIPAddress.ts deleted file mode 100644 index a491187e3657..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getGeodataForASingleIPAddress.ts +++ /dev/null @@ -1,30 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get geodata for a single IP address - * - * @summary Get geodata for a single IP address - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/enrichment/GetGeodataByIp.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getGeodataForASingleIPAddress() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const ipAddress = "1.2.3.4"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.iPGeodata.get(resourceGroupName, ipAddress); - console.log(result); -} - -getGeodataForASingleIPAddress().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getRepositoryList.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getRepositoryList.ts deleted file mode 100644 index 18b87d88d49d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getRepositoryList.ts +++ /dev/null @@ -1,38 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets a list of repositories metadata. - * - * @summary Gets a list of repositories metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/repositories/GetRepositories.json - */ -import { RepoType, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getRepositoryList() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const repoType: RepoType = "Github"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.sourceControlOperations.listRepositories( - resourceGroupName, - workspaceName, - repoType - )) { - resArray.push(item); - } - console.log(resArray); -} - -getRepositoryList().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getSentinelOnboardingState.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getSentinelOnboardingState.ts deleted file mode 100644 index 69a533313f1d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getSentinelOnboardingState.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get Sentinel onboarding state - * - * @summary Get Sentinel onboarding state - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/onboardingStates/GetSentinelOnboardingState.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getSentinelOnboardingState() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const sentinelOnboardingStateName = "default"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.sentinelOnboardingStates.get( - resourceGroupName, - workspaceName, - sentinelOnboardingStateName - ); - console.log(result); -} - -getSentinelOnboardingState().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getSingleMetadataByName.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getSingleMetadataByName.ts deleted file mode 100644 index 79371928be46..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getSingleMetadataByName.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get a Metadata. - * - * @summary Get a Metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/GetMetadata.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getSingleMetadataByName() { - const subscriptionId = "2e1dc338-d04d-4443-b721-037eff4fdcac"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const metadataName = "metadataName"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.metadata.get( - resourceGroupName, - workspaceName, - metadataName - ); - console.log(result); -} - -getSingleMetadataByName().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getThreatIntelligenceIndicatorsMetrics.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getThreatIntelligenceIndicatorsMetrics.ts deleted file mode 100644 index c8263678cdfe..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getThreatIntelligenceIndicatorsMetrics.ts +++ /dev/null @@ -1,33 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get threat intelligence indicators metrics (Indicators counts by Type, Threat Type, Source). - * - * @summary Get threat intelligence indicators metrics (Indicators counts by Type, Threat Type, Source). - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/CollectThreatIntelligenceMetrics.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getThreatIntelligenceIndicatorsMetrics() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicatorMetrics.list( - resourceGroupName, - workspaceName - ); - console.log(result); -} - -getThreatIntelligenceIndicatorsMetrics().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getWhoisInformationForASingleDomainName.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getWhoisInformationForASingleDomainName.ts deleted file mode 100644 index 7209b96ab755..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getWhoisInformationForASingleDomainName.ts +++ /dev/null @@ -1,30 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Get whois information for a single domain name - * - * @summary Get whois information for a single domain name - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/enrichment/GetWhoisByDomainName.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getWhoisInformationForASingleDomainName() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const domain = "microsoft.com"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.domainWhois.get(resourceGroupName, domain); - console.log(result); -} - -getWhoisInformationForASingleDomainName().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/getsAllIncidentRelatedEntities.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/getsAllIncidentRelatedEntities.ts deleted file mode 100644 index 43b56e714db7..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/getsAllIncidentRelatedEntities.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Gets all incident related entities. - * - * @summary Gets all incident related entities. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/incidents/entities/GetAllIncidentEntities.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function getsAllIncidentRelatedEntities() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const incidentId = "afbd324f-6c48-459c-8710-8d1e1cd03812"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.incidents.listEntities( - resourceGroupName, - workspaceName, - incidentId - ); - console.log(result); -} - -getsAllIncidentRelatedEntities().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/queryThreatIntelligenceIndicatorsAsPerFilteringCriteria.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/queryThreatIntelligenceIndicatorsAsPerFilteringCriteria.ts deleted file mode 100644 index 76267bb0da24..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/queryThreatIntelligenceIndicatorsAsPerFilteringCriteria.ts +++ /dev/null @@ -1,49 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Query threat intelligence indicators as per filtering criteria. - * - * @summary Query threat intelligence indicators as per filtering criteria. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/QueryThreatIntelligence.json - */ -import { - ThreatIntelligenceFilteringCriteria, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function queryThreatIntelligenceIndicatorsAsPerFilteringCriteria() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const threatIntelligenceFilteringCriteria: ThreatIntelligenceFilteringCriteria = { - maxConfidence: 80, - maxValidUntil: "2021-04-25T17:44:00.114052Z", - minConfidence: 25, - minValidUntil: "2021-04-05T17:44:00.114052Z", - pageSize: 100, - sortBy: [{ itemKey: "lastUpdatedTimeUtc", sortOrder: "descending" }], - sources: ["Azure Sentinel"] - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const resArray = new Array(); - for await (let item of client.threatIntelligenceIndicator.listQueryIndicators( - resourceGroupName, - workspaceName, - threatIntelligenceFilteringCriteria - )) { - resArray.push(item); - } - console.log(resArray); -} - -queryThreatIntelligenceIndicatorsAsPerFilteringCriteria().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/replaceTagsToAThreatIntelligence.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/replaceTagsToAThreatIntelligence.ts deleted file mode 100644 index ff333677079d..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/replaceTagsToAThreatIntelligence.ts +++ /dev/null @@ -1,44 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Replace tags added to a threat intelligence indicator. - * - * @summary Replace tags added to a threat intelligence indicator. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/ReplaceTagsThreatIntelligence.json - */ -import { - ThreatIntelligenceIndicatorModelForRequestBody, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function replaceTagsToAThreatIntelligence() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const name = "d9cd6f0b-96b9-3984-17cd-a779d1e15a93"; - const threatIntelligenceReplaceTags: ThreatIntelligenceIndicatorModelForRequestBody = { - etag: '"0000262c-0000-0800-0000-5e9767060000"', - kind: "indicator", - threatIntelligenceTags: ["patching tags"] - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.replaceTags( - resourceGroupName, - workspaceName, - name, - threatIntelligenceReplaceTags - ); - console.log(result); -} - -replaceTagsToAThreatIntelligence().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/updateAThreatIntelligenceIndicator.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/updateAThreatIntelligenceIndicator.ts deleted file mode 100644 index 10113e30467f..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/updateAThreatIntelligenceIndicator.ts +++ /dev/null @@ -1,59 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Update a threat Intelligence indicator. - * - * @summary Update a threat Intelligence indicator. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/UpdateThreatIntelligence.json - */ -import { - ThreatIntelligenceIndicatorModelForRequestBody, - SecurityInsights -} from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function updateAThreatIntelligenceIndicator() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const name = "d9cd6f0b-96b9-3984-17cd-a779d1e15a93"; - const threatIntelligenceProperties: ThreatIntelligenceIndicatorModelForRequestBody = { - description: "debugging indicators", - confidence: 78, - createdByRef: "contoso@contoso.com", - displayName: "new schema", - externalReferences: [], - granularMarkings: [], - killChainPhases: [], - kind: "indicator", - labels: [], - modified: "", - pattern: "[url:value = 'https://www.contoso.com']", - patternType: "url", - revoked: false, - source: "Azure Sentinel", - threatIntelligenceTags: ["new schema"], - threatTypes: ["compromised"], - validFrom: "2020-04-15T17:44:00.114052Z", - validUntil: "" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.create( - resourceGroupName, - workspaceName, - name, - threatIntelligenceProperties - ); - console.log(result); -} - -updateAThreatIntelligenceIndicator().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/updateEyesOnSettings.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/updateEyesOnSettings.ts deleted file mode 100644 index e4cdde71626c..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/updateEyesOnSettings.ts +++ /dev/null @@ -1,40 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Updates setting. - * - * @summary Updates setting. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/settings/UpdateEyesOnSetting.json - */ -import { EyesOn, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function updateEyesOnSettings() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const settingsName = "EyesOn"; - const settings: EyesOn = { - etag: '"0300bf09-0000-0000-0000-5c37296e0000"', - kind: "EyesOn" - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.productSettings.update( - resourceGroupName, - workspaceName, - settingsName, - settings - ); - console.log(result); -} - -updateEyesOnSettings().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/updateMetadata.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/updateMetadata.ts deleted file mode 100644 index 57e0d8d95556..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/updateMetadata.ts +++ /dev/null @@ -1,39 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to Update an existing Metadata. - * - * @summary Update an existing Metadata. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/metadata/PatchMetadata.json - */ -import { MetadataPatch, SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function updateMetadata() { - const subscriptionId = "d0cfe6b2-9ac0-4464-9919-dccaee2e48c0"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const metadataName = "metadataName"; - const metadataPatch: MetadataPatch = { - author: { name: "User Name", email: "email@microsoft.com" } - }; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.metadata.update( - resourceGroupName, - workspaceName, - metadataName, - metadataPatch - ); - console.log(result); -} - -updateMetadata().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/samples-dev/viewAThreatIntelligenceIndicatorByName.ts b/sdk/securityinsight/arm-securityinsight/samples-dev/viewAThreatIntelligenceIndicatorByName.ts deleted file mode 100644 index ef17e1d713ab..000000000000 --- a/sdk/securityinsight/arm-securityinsight/samples-dev/viewAThreatIntelligenceIndicatorByName.ts +++ /dev/null @@ -1,35 +0,0 @@ -/* - * Copyright (c) Microsoft Corporation. - * Licensed under the MIT License. - * - * Code generated by Microsoft (R) AutoRest Code Generator. - * Changes may cause incorrect behavior and will be lost if the code is regenerated. - */ - -// Copyright (c) Microsoft Corporation. -// Licensed under the MIT License. -/** - * This sample demonstrates how to View a threat intelligence indicator by name. - * - * @summary View a threat intelligence indicator by name. - * x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/examples/threatintelligence/GetThreatIntelligenceById.json - */ -import { SecurityInsights } from "@azure/arm-securityinsight"; -import { DefaultAzureCredential } from "@azure/identity"; - -async function viewAThreatIntelligenceIndicatorByName() { - const subscriptionId = "bd794837-4d29-4647-9105-6339bfdb4e6a"; - const resourceGroupName = "myRg"; - const workspaceName = "myWorkspace"; - const name = "e16ef847-962e-d7b6-9c8b-a33e4bd30e47"; - const credential = new DefaultAzureCredential(); - const client = new SecurityInsights(credential, subscriptionId); - const result = await client.threatIntelligenceIndicator.get( - resourceGroupName, - workspaceName, - name - ); - console.log(result); -} - -viewAThreatIntelligenceIndicatorByName().catch(console.error); diff --git a/sdk/securityinsight/arm-securityinsight/src/models/index.ts b/sdk/securityinsight/arm-securityinsight/src/models/index.ts index 592c467dbfea..477488bc3c74 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/index.ts @@ -10,11 +10,11 @@ import * as coreClient from "@azure/core-client"; export type AutomationRuleConditionUnion = | AutomationRuleCondition - | AutomationRulePropertyValuesCondition; + | PropertyConditionProperties; export type AutomationRuleActionUnion = | AutomationRuleAction - | AutomationRuleRunPlaybookAction - | AutomationRuleModifyPropertiesAction; + | AutomationRuleModifyPropertiesAction + | AutomationRuleRunPlaybookAction; export type EntityTimelineItemUnion = | EntityTimelineItem | ActivityTimelineItem @@ -35,6 +35,8 @@ export type DataConnectorsCheckRequirementsUnion = | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements + | Office365ProjectCheckRequirements + | OfficePowerBICheckRequirements | TICheckRequirements | TiTaxiiCheckRequirements; export type AlertRuleTemplateUnion = @@ -107,6 +109,8 @@ export type DataConnectorUnion = | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector + | Office365ProjectDataConnector + | OfficePowerBIDataConnector | OfficeIRMDataConnector | MdatpDataConnector | OfficeDataConnector @@ -214,26 +218,13 @@ export interface AlertRuleTemplatesList { value: AlertRuleTemplateUnion[]; } -/** List all the automation rules. */ -export interface AutomationRulesList { - /** - * URL to fetch the next set of automation rules. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of automation rules. */ - value: AutomationRule[]; -} - /** Describes automation rule triggering logic */ export interface AutomationRuleTriggeringLogic { - /** Determines whether the automation rule is enabled or disabled. */ + /** Determines whether the automation rule is enabled or disabled */ isEnabled: boolean; /** Determines when the automation rule should automatically expire and be disabled. */ expirationTimeUtc?: Date; - /** The type of object the automation rule triggers on */ triggersOn: TriggersOn; - /** The type of event the automation rule triggers on */ triggersWhen: TriggersWhen; /** The conditions to evaluate to determine if the automation rule should be triggered on a given object */ conditions?: AutomationRuleConditionUnion[]; @@ -248,8 +239,7 @@ export interface AutomationRuleCondition { /** Describes an automation rule action */ export interface AutomationRuleAction { /** Polymorphic discriminator, which specifies the different types this object can be */ - actionType: "RunPlaybook" | "ModifyProperties"; - /** The order of execution of the automation rule action */ + actionType: "ModifyProperties" | "RunPlaybook"; order: number; } @@ -265,10 +255,20 @@ export interface ClientInfo { userPrincipalName?: string; } +export interface AutomationRulesList { + value?: AutomationRule[]; + nextLink?: string; +} + +export interface ManualTriggerRequestBody { + tenantId?: string; + logicAppsResourceId?: string; +} + /** List all the bookmarks. */ export interface BookmarkList { /** - * URL to fetch the next set of cases. + * URL to fetch the next set of bookmarks. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly nextLink?: string; @@ -304,6 +304,22 @@ export interface IncidentInfo { relationName?: string; } +/** Describes the entity mappings of a single entity */ +export interface BookmarkEntityMappings { + /** The entity type */ + entityType?: string; + /** Array of fields mapping for that entity type */ + fieldMappings?: EntityFieldMapping[]; +} + +/** Map identifiers of a single entity */ +export interface EntityFieldMapping { + /** Alert V3 identifier */ + identifier?: string; + /** The value of the identifier */ + value?: string; +} + /** List of relations. */ export interface RelationList { /** @@ -485,17 +501,6 @@ export interface EnrichmentDomainWhoisContact { email?: string; } -/** List of all the entity queries. */ -export interface EntityQueryList { - /** - * URL to fetch the next set of entity queries. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of entity queries. */ - value: EntityQueryUnion[]; -} - /** List of all the entities. */ export interface EntityList { /** @@ -689,6 +694,28 @@ export interface InsightsTableResultColumnsItem { name?: string; } +/** List of all the entity queries. */ +export interface EntityQueryList { + /** + * URL to fetch the next set of entity queries. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of entity queries. */ + value: EntityQueryUnion[]; +} + +/** List of all the entity query templates. */ +export interface EntityQueryTemplateList { + /** + * URL to fetch the next set of entity query templates. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of entity query templates. */ + value: EntityQueryTemplateUnion[]; +} + /** List all the incidents. */ export interface IncidentList { /** @@ -722,11 +749,21 @@ export interface IncidentAdditionalData { * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly alertProductNames?: string[]; + /** + * The provider incident url to the incident in Microsoft 365 Defender portal + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly providerIncidentUrl?: string; /** * The tactics associated with incident * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly tactics?: AttackTactic[]; + /** + * The techniques associated with incident's tactics' + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly techniques?: string[]; } /** Represents an incident label */ @@ -932,6 +969,17 @@ export interface MetadataCategories { verticals?: string[]; } +/** List of all the office365 consents. */ +export interface OfficeConsentList { + /** + * URL to fetch the next set of office consents. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of the consents. */ + value: OfficeConsent[]; +} + /** List of the Sentinel onboarding states */ export interface SentinelOnboardingStatesList { /** Array of Sentinel onboarding states */ @@ -998,135 +1046,6 @@ export interface ContentPathMap { path?: string; } -/** List all the watchlists. */ -export interface WatchlistList { - /** - * URL to fetch the next set of watchlists. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of watchlist. */ - value: Watchlist[]; -} - -/** List all the watchlist items. */ -export interface WatchlistItemList { - /** - * URL to fetch the next set of watchlist item. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of watchlist items. */ - value: WatchlistItem[]; -} - -/** List all the data connectors. */ -export interface DataConnectorList { - /** - * URL to fetch the next set of data connectors. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of data connectors. */ - value: DataConnectorUnion[]; -} - -/** Represents Codeless API Polling data connector. */ -export interface DataConnectorConnectBody { - /** The authentication kind used to poll the data */ - kind?: ConnectAuthKind; - /** The API key of the audit server. */ - apiKey?: string; - /** The client secret of the OAuth 2.0 application. */ - clientSecret?: string; - /** The client id of the OAuth 2.0 application. */ - clientId?: string; - /** The authorization code used in OAuth 2.0 code flow to issue a token. */ - authorizationCode?: string; - /** The user name in the audit log server. */ - userName?: string; - /** The user password in the audit log server. */ - password?: string; - requestConfigUserInputValues?: Record[]; -} - -/** Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.). */ -export interface ErrorResponse { - /** The error object. */ - error?: ErrorDetail; -} - -/** The error detail. */ -export interface ErrorDetail { - /** - * The error code. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly code?: string; - /** - * The error message. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly message?: string; - /** - * The error target. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly target?: string; - /** - * The error details. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly details?: ErrorDetail[]; - /** - * The error additional info. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly additionalInfo?: ErrorAdditionalInfo[]; -} - -/** The resource management error additional info. */ -export interface ErrorAdditionalInfo { - /** - * The additional info type. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly type?: string; - /** - * The additional info. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly info?: Record; -} - -/** Data connector requirements properties. */ -export interface DataConnectorsCheckRequirements { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: - | "AzureActiveDirectory" - | "AzureAdvancedThreatProtection" - | "AzureSecurityCenter" - | "AmazonWebServicesCloudTrail" - | "AmazonWebServicesS3" - | "Dynamics365" - | "MicrosoftCloudAppSecurity" - | "MicrosoftDefenderAdvancedThreatProtection" - | "MicrosoftThreatIntelligence" - | "MicrosoftThreatProtection" - | "OfficeATP" - | "OfficeIRM" - | "ThreatIntelligence" - | "ThreatIntelligenceTaxii"; -} - -/** Data connector requirements status. */ -export interface DataConnectorRequirementsState { - /** Authorization state for this connector */ - authorizationState?: DataConnectorAuthorizationState; - /** License state for this connector */ - licenseState?: DataConnectorLicenseState; -} - /** Describes threat kill chain phase entity */ export interface ThreatIntelligenceKillChainPhase { /** Kill chainName name */ @@ -1268,69 +1187,129 @@ export interface ThreatIntelligenceAppendTags { threatIntelligenceTags?: string[]; } -/** Lists the operations available in the SecurityInsights RP. */ -export interface OperationsList { +/** List all the watchlists. */ +export interface WatchlistList { /** - * URL to fetch the next set of operations. + * URL to fetch the next set of watchlists. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly nextLink?: string; - /** Array of operations */ - value: Operation[]; -} - -/** Operation provided by provider */ -export interface Operation { - /** Properties of the operation */ - display?: OperationDisplay; - /** Name of the operation */ - name?: string; - /** The origin of the operation */ - origin?: string; - /** Indicates whether the operation is a data action */ - isDataAction?: boolean; -} - -/** Properties of the operation */ -export interface OperationDisplay { - /** Description of the operation */ - description?: string; - /** Operation name */ - operation?: string; - /** Provider name */ - provider?: string; - /** Resource name */ - resource?: string; + /** Array of watchlist. */ + value: Watchlist[]; } -/** List of all the office365 consents. */ -export interface OfficeConsentList { +/** List all the watchlist items. */ +export interface WatchlistItemList { /** - * URL to fetch the next set of office consents. + * URL to fetch the next set of watchlist item. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly nextLink?: string; - /** Array of the consents. */ - value: OfficeConsent[]; + /** Array of watchlist items. */ + value: WatchlistItem[]; } -/** List of all the entity query templates. */ -export interface EntityQueryTemplateList { +/** List all the data connectors. */ +export interface DataConnectorList { /** - * URL to fetch the next set of entity query templates. + * URL to fetch the next set of data connectors. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly nextLink?: string; - /** Array of entity query templates. */ - value: EntityQueryTemplateUnion[]; + /** Array of data connectors. */ + value: DataConnectorUnion[]; } -/** alert rule template data sources */ -export interface AlertRuleTemplateDataSource { - /** The connector id that provides the following data types */ - connectorId?: string; - /** The data types used by the alert rule template */ - dataTypes?: string[]; +/** Represents Codeless API Polling data connector. */ +export interface DataConnectorConnectBody { + /** The authentication kind used to poll the data */ + kind?: ConnectAuthKind; + /** The API key of the audit server. */ + apiKey?: string; + /** The client secret of the OAuth 2.0 application. */ + clientSecret?: string; + /** The client id of the OAuth 2.0 application. */ + clientId?: string; + /** The authorization code used in OAuth 2.0 code flow to issue a token. */ + authorizationCode?: string; + /** The user name in the audit log server. */ + userName?: string; + /** The user password in the audit log server. */ + password?: string; + requestConfigUserInputValues?: Record[]; +} + +/** Data connector requirements properties. */ +export interface DataConnectorsCheckRequirements { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: + | "AzureActiveDirectory" + | "AzureAdvancedThreatProtection" + | "AzureSecurityCenter" + | "AmazonWebServicesCloudTrail" + | "AmazonWebServicesS3" + | "Dynamics365" + | "MicrosoftCloudAppSecurity" + | "MicrosoftDefenderAdvancedThreatProtection" + | "MicrosoftThreatIntelligence" + | "MicrosoftThreatProtection" + | "OfficeATP" + | "OfficeIRM" + | "Office365Project" + | "OfficePowerBI" + | "ThreatIntelligence" + | "ThreatIntelligenceTaxii"; +} + +/** Data connector requirements status. */ +export interface DataConnectorRequirementsState { + /** Authorization state for this connector */ + authorizationState?: DataConnectorAuthorizationState; + /** License state for this connector */ + licenseState?: DataConnectorLicenseState; +} + +/** Lists the operations available in the SecurityInsights RP. */ +export interface OperationsList { + /** + * URL to fetch the next set of operations. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of operations */ + value: Operation[]; +} + +/** Operation provided by provider */ +export interface Operation { + /** Properties of the operation */ + display?: OperationDisplay; + /** Name of the operation */ + name?: string; + /** The origin of the operation */ + origin?: string; + /** Indicates whether the operation is a data action */ + isDataAction?: boolean; +} + +/** Properties of the operation */ +export interface OperationDisplay { + /** Description of the operation */ + description?: string; + /** Operation name */ + operation?: string; + /** Provider name */ + provider?: string; + /** Resource name */ + resource?: string; +} + +/** alert rule template data sources */ +export interface AlertRuleTemplateDataSource { + /** The connector id that provides the following data types */ + connectorId?: string; + /** The data types used by the alert rule template */ + dataTypes?: string[]; } /** Base alert rule template property bag. */ @@ -1363,8 +1342,6 @@ export interface QueryBasedAlertRuleTemplateProperties { query?: string; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The version of this template - in format , where all are numbers. For example <1.0.2>. */ version?: string; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -1403,6 +1380,87 @@ export interface AlertDetailsOverride { alertSeverityColumnName?: string; } +/** Represents a supported source signal configuration in Fusion detection. */ +export interface FusionSourceSettings { + /** Determines whether this source signal is enabled or disabled in Fusion detection. */ + enabled: boolean; + /** Name of the Fusion source signal. Refer to Fusion alert rule template for supported values. */ + sourceName: string; + /** Configuration for all source subtypes under this source signal consumed in fusion detection. */ + sourceSubTypes?: FusionSourceSubTypeSetting[]; +} + +/** Represents a supported source subtype configuration under a source signal in Fusion detection. */ +export interface FusionSourceSubTypeSetting { + /** Determines whether this source subtype under source signal is enabled or disabled in Fusion detection. */ + enabled: boolean; + /** The Name of the source subtype under a given source signal in Fusion detection. Refer to Fusion alert rule template for supported values. */ + sourceSubTypeName: string; + /** + * The display name of source subtype under a source signal consumed in Fusion detection. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly sourceSubTypeDisplayName?: string; + /** Severity configuration for a source subtype consumed in fusion detection. */ + severityFilters: FusionSubTypeSeverityFilter; +} + +/** Represents severity configuration for a source subtype consumed in Fusion detection. */ +export interface FusionSubTypeSeverityFilter { + /** + * Determines whether this source subtype supports severity configuration or not. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly isSupported?: boolean; + /** Individual Severity configuration settings for a given source subtype consumed in Fusion detection. */ + filters?: FusionSubTypeSeverityFiltersItem[]; +} + +/** Represents a Severity filter setting for a given source subtype consumed in Fusion detection. */ +export interface FusionSubTypeSeverityFiltersItem { + /** The Severity for a given source subtype consumed in Fusion detection. */ + severity: AlertSeverity; + /** Determines whether this severity is enabled or disabled for this source subtype consumed in Fusion detection. */ + enabled: boolean; +} + +/** Represents a Fusion scenario exclusion patterns in Fusion detection. */ +export interface FusionScenarioExclusionPattern { + /** Scenario exclusion pattern. */ + exclusionPattern: string; + /** DateTime when scenario exclusion pattern is added in UTC. */ + dateAddedInUTC: string; +} + +/** Represents a source signal consumed in Fusion detection. */ +export interface FusionTemplateSourceSetting { + /** The name of a source signal consumed in Fusion detection. */ + sourceName: string; + /** All supported source subtypes under this source signal consumed in fusion detection. */ + sourceSubTypes?: FusionTemplateSourceSubType[]; +} + +/** Represents a source subtype under a source signal consumed in Fusion detection. */ +export interface FusionTemplateSourceSubType { + /** The name of source subtype under a source signal consumed in Fusion detection. */ + sourceSubTypeName: string; + /** + * The display name of source subtype under a source signal consumed in Fusion detection. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly sourceSubTypeDisplayName?: string; + /** Severity configuration available for a source subtype consumed in fusion detection. */ + severityFilter: FusionTemplateSubTypeSeverityFilter; +} + +/** Represents severity configurations available for a source subtype consumed in Fusion detection. */ +export interface FusionTemplateSubTypeSeverityFilter { + /** Determines whether severity configuration is supported for this source subtype consumed in Fusion detection. */ + isSupported: boolean; + /** List of all supported severities for this source subtype consumed in Fusion detection. */ + severityFilters?: AlertSeverity[]; +} + /** MicrosoftSecurityIncidentCreation rule common property bag. */ export interface MicrosoftSecurityIncidentCreationAlertRuleCommonProperties { /** the alerts' displayNames on which the cases will be generated */ @@ -1425,6 +1483,10 @@ export interface QueryBasedAlertRuleProperties { description?: string; /** The query that creates alerts for this rule. */ query?: string; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The display name for alerts created by this alert rule. */ displayName: string; /** Determines whether this alert rule is enabled or disabled. */ @@ -1440,8 +1502,6 @@ export interface QueryBasedAlertRuleProperties { suppressionEnabled: boolean; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The settings of the incidents that created from alerts triggered by this analytics rule */ incidentConfiguration?: IncidentConfiguration; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -1498,48 +1558,6 @@ export interface EventGroupingSettings { aggregationKind?: EventGroupingAggregationKind; } -/** The configuration of the run playbook automation rule action */ -export interface AutomationRuleRunPlaybookActionConfiguration { - /** The resource id of the playbook resource */ - logicAppResourceId?: string; - /** The tenant id of the playbook resource */ - tenantId?: string; -} - -/** The configuration of the modify properties automation rule action */ -export interface AutomationRuleModifyPropertiesActionConfiguration { - /** The reason the incident was closed */ - classification?: IncidentClassification; - /** Describes the reason the incident was closed */ - classificationComment?: string; - /** The classification reason the incident was closed with */ - classificationReason?: IncidentClassificationReason; - /** List of labels to add to the incident */ - labels?: IncidentLabel[]; - /** Describes a user that the incident is assigned to */ - owner?: IncidentOwnerInfo; - /** The severity of the incident */ - severity?: IncidentSeverity; - /** The status of the incident */ - status?: IncidentStatus; -} - -/** The configuration of the automation rule condition */ -export interface AutomationRulePropertyValuesConditionProperties { - /** The property to evaluate */ - propertyName?: AutomationRulePropertyConditionSupportedProperty; - /** The operator to use for evaluation the condition */ - operator?: AutomationRulePropertyConditionSupportedOperator; - /** The values to use for evaluating the condition */ - propertyValues?: string[]; -} - -/** The Activity query definitions */ -export interface ActivityEntityQueriesPropertiesQueryDefinitions { - /** The Activity query to run on a given entity */ - query?: string; -} - /** An properties abstract Query item for entity */ export interface EntityQueryItemProperties { /** Data types for template */ @@ -1614,6 +1632,26 @@ export interface InsightQueryItemPropertiesReferenceTimeRange { beforeRange?: string; } +/** The Activity query definitions */ +export interface ActivityEntityQueriesPropertiesQueryDefinitions { + /** The Activity query to run on a given entity */ + query?: string; +} + +/** The Activity query definitions */ +export interface ActivityEntityQueryTemplatePropertiesQueryDefinitions { + /** The Activity query to run on a given entity */ + query?: string; + /** The dimensions we want to summarize the timeline results on, this is comma separated list */ + summarizeBy?: string; +} + +/** The data type definition */ +export interface DataTypeDefinitions { + /** The data type name */ + dataType?: string; +} + /** The pricing tier of the solution */ export interface Sku { /** The kind of the tier */ @@ -1678,6 +1716,18 @@ export interface Dynamics365DataConnectorDataTypes { dynamics365CdsActivities: Dynamics365DataConnectorDataTypesDynamics365CdsActivities; } +/** The available data types for Office Microsoft Project data connector. */ +export interface Office365ProjectConnectorDataTypes { + /** Logs data type. */ + logs: Office365ProjectConnectorDataTypesLogs; +} + +/** The available data types for Office Microsoft PowerBI data connector. */ +export interface OfficePowerBIConnectorDataTypes { + /** Logs data type. */ + logs: OfficePowerBIConnectorDataTypesLogs; +} + /** The available data types for office data connector. */ export interface OfficeDataConnectorDataTypes { /** Exchange data type connection. */ @@ -1936,20 +1986,6 @@ export interface CodelessConnectorPollingResponseProperties { isGzipCompressed?: boolean; } -/** The Activity query definitions */ -export interface ActivityEntityQueryTemplatePropertiesQueryDefinitions { - /** The Activity query to run on a given entity */ - query?: string; - /** The dimensions we want to summarize the timeline results on, this is comma separated list */ - summarizeBy?: string; -} - -/** The data type definition */ -export interface DataTypeDefinitions { - /** The data type name */ - dataType?: string; -} - /** ThreatIntelligence property bag. */ export interface ThreatIntelligence { /** @@ -2041,6 +2077,12 @@ export type Entity = Resource & { kind: EntityKind; }; +/** Specific entity query template. */ +export type EntityQueryTemplate = Resource & { + /** the entity query template kind */ + kind: EntityQueryTemplateKind; +}; + /** Consent for Office365 tenant that already made. */ export type OfficeConsent = Resource & { /** The tenantId of the Office365 with the consent. */ @@ -2049,12 +2091,6 @@ export type OfficeConsent = Resource & { consentId?: string; }; -/** Specific entity query template. */ -export type EntityQueryTemplate = Resource & { - /** the entity query template kind */ - kind: EntityQueryTemplateKind; -}; - /** Action property bag. */ export type ActionResponseProperties = ActionPropertiesBase & { /** The name of the logic app's workflow. */ @@ -2068,27 +2104,43 @@ export type ActionRequestProperties = ActionPropertiesBase & { }; /** Describes an automation rule condition that evaluates a property's value */ -export type AutomationRulePropertyValuesCondition = AutomationRuleCondition & { +export type PropertyConditionProperties = AutomationRuleCondition & { /** Polymorphic discriminator, which specifies the different types this object can be */ conditionType: "Property"; - /** The configuration of the automation rule condition */ - conditionProperties: AutomationRulePropertyValuesConditionProperties; -}; - -/** Describes an automation rule action to run a playbook */ -export type AutomationRuleRunPlaybookAction = AutomationRuleAction & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - actionType: "RunPlaybook"; - /** The configuration of the run playbook automation rule action */ - actionConfiguration: AutomationRuleRunPlaybookActionConfiguration; + /** The property to evaluate in an automation rule property condition */ + propertyName?: AutomationRulePropertyConditionSupportedProperty; + operator?: AutomationRulePropertyConditionSupportedOperator; + propertyValues?: string[]; }; /** Describes an automation rule action to modify an object's properties */ export type AutomationRuleModifyPropertiesAction = AutomationRuleAction & { /** Polymorphic discriminator, which specifies the different types this object can be */ actionType: "ModifyProperties"; - /** The configuration of the modify properties automation rule action */ - actionConfiguration: AutomationRuleModifyPropertiesActionConfiguration; + /** The severity of the incident */ + severity?: IncidentSeverity; + /** The status of the incident */ + status?: IncidentStatus; + /** The reason the incident was closed */ + classification?: IncidentClassification; + /** The classification reason the incident was closed with */ + classificationReason?: IncidentClassificationReason; + /** Describes the reason the incident was closed */ + classificationComment?: string; + /** Information on the user an incident is assigned to */ + owner?: IncidentOwnerInfo; + /** List of labels to add to the incident */ + labels?: IncidentLabel[]; +}; + +/** Describes an automation rule action to run a playbook */ +export type AutomationRuleRunPlaybookAction = AutomationRuleAction & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + actionType: "RunPlaybook"; + /** The resource id of the playbook resource */ + logicAppResourceId?: string; + /** The tenant id of the playbook resource */ + tenantId?: string; }; /** Represents Activity timeline item. */ @@ -3088,114 +3140,6 @@ export type UrlEntityProperties = EntityCommonProperties & { readonly url?: string; }; -/** Represents AAD (Azure Active Directory) requirements check request. */ -export type AADCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "AzureActiveDirectory"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents AATP (Azure Advanced Threat Protection) requirements check request. */ -export type AatpCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "AzureAdvancedThreatProtection"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents ASC (Azure Security Center) requirements check request. */ -export type ASCCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "AzureSecurityCenter"; - /** The subscription id to connect to, and get the data from. */ - subscriptionId?: string; -}; - -/** Amazon Web Services CloudTrail requirements check request. */ -export type AwsCloudTrailCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "AmazonWebServicesCloudTrail"; -}; - -/** Amazon Web Services S3 requirements check request. */ -export type AwsS3CheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "AmazonWebServicesS3"; -}; - -/** Represents Dynamics365 requirements check request. */ -export type Dynamics365CheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "Dynamics365"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents MCAS (Microsoft Cloud App Security) requirements check request. */ -export type McasCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "MicrosoftCloudAppSecurity"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents MDATP (Microsoft Defender Advanced Threat Protection) requirements check request. */ -export type MdatpCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "MicrosoftDefenderAdvancedThreatProtection"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents Microsoft Threat Intelligence requirements check request. */ -export type MstiCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "MicrosoftThreatIntelligence"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents MTP (Microsoft Threat Protection) requirements check request. */ -export type MtpCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "MicrosoftThreatProtection"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents OfficeATP (Office 365 Advanced Threat Protection) requirements check request. */ -export type OfficeATPCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "OfficeATP"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Represents OfficeIRM (Microsoft Insider Risk Management) requirements check request. */ -export type OfficeIRMCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "OfficeIRM"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Threat Intelligence Platforms data connector check requirements */ -export type TICheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "ThreatIntelligence"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - -/** Threat Intelligence TAXII data connector check requirements */ -export type TiTaxiiCheckRequirements = DataConnectorsCheckRequirements & { - /** Polymorphic discriminator, which specifies the different types this object can be */ - kind: "ThreatIntelligenceTaxii"; - /** The tenant id to connect to, and get the data from. */ - tenantId?: string; -}; - /** Threat intelligence indicator entity used in request body. */ export type ThreatIntelligenceIndicatorModelForRequestBody = ThreatIntelligenceResourceKind & { /** Etag of the azure resource */ @@ -3272,28 +3216,136 @@ export type ThreatIntelligenceIndicatorModelForRequestBody = ThreatIntelligenceR export type ThreatIntelligenceInformation = ResourceWithEtag & ThreatIntelligenceResourceKind & {}; -/** MLBehaviorAnalytics alert rule template properties. */ -export type MLBehaviorAnalyticsAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { - /** The severity for alerts created by this alert rule. */ - severity: AlertSeverity; - /** The tactics of the alert rule template. */ - tactics?: AttackTactic[]; +/** Represents AAD (Azure Active Directory) requirements check request. */ +export type AADCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "AzureActiveDirectory"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; }; -/** Fusion alert rule template properties */ -export type FusionAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { - /** The severity for alerts created by this alert rule. */ - severity: AlertSeverity; - /** The tactics of the alert rule template */ - tactics?: AttackTactic[]; +/** Represents AATP (Azure Advanced Threat Protection) requirements check request. */ +export type AatpCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "AzureAdvancedThreatProtection"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; }; -/** Threat Intelligence alert rule template properties */ -export type ThreatIntelligenceAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & { - /** The severity for alerts created by this alert rule. */ - severity: AlertSeverity; - /** The tactics of the alert rule template */ +/** Represents ASC (Azure Security Center) requirements check request. */ +export type ASCCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "AzureSecurityCenter"; + /** The subscription id to connect to, and get the data from. */ + subscriptionId?: string; +}; + +/** Amazon Web Services CloudTrail requirements check request. */ +export type AwsCloudTrailCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "AmazonWebServicesCloudTrail"; +}; + +/** Amazon Web Services S3 requirements check request. */ +export type AwsS3CheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "AmazonWebServicesS3"; +}; + +/** Represents Dynamics365 requirements check request. */ +export type Dynamics365CheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "Dynamics365"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents MCAS (Microsoft Cloud App Security) requirements check request. */ +export type McasCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftCloudAppSecurity"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents MDATP (Microsoft Defender Advanced Threat Protection) requirements check request. */ +export type MdatpCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftDefenderAdvancedThreatProtection"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents Microsoft Threat Intelligence requirements check request. */ +export type MstiCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftThreatIntelligence"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents MTP (Microsoft Threat Protection) requirements check request. */ +export type MtpCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftThreatProtection"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents OfficeATP (Office 365 Advanced Threat Protection) requirements check request. */ +export type OfficeATPCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "OfficeATP"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents OfficeIRM (Microsoft Insider Risk Management) requirements check request. */ +export type OfficeIRMCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "OfficeIRM"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents Office365 Project requirements check request. */ +export type Office365ProjectCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "Office365Project"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Represents Office PowerBI requirements check request. */ +export type OfficePowerBICheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "OfficePowerBI"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Threat Intelligence Platforms data connector check requirements */ +export type TICheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "ThreatIntelligence"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Threat Intelligence TAXII data connector check requirements */ +export type TiTaxiiCheckRequirements = DataConnectorsCheckRequirements & { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "ThreatIntelligenceTaxii"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +}; + +/** Alert rule template with MITRE property bag. */ +export type AlertRuleTemplateWithMitreProperties = AlertRuleTemplatePropertiesBase & { + /** The tactics of the alert rule */ tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; }; /** MicrosoftSecurityIncidentCreation rule template properties */ @@ -3301,12 +3353,12 @@ export type MicrosoftSecurityIncidentCreationAlertRuleTemplateProperties = Alert MicrosoftSecurityIncidentCreationAlertRuleCommonProperties & {}; /** Scheduled alert rule template properties */ -export type ScheduledAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & +export type ScheduledAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & QueryBasedAlertRuleTemplateProperties & ScheduledAlertRuleCommonProperties & {}; /** NRT alert rule template properties */ -export type NrtAlertRuleTemplateProperties = AlertRuleTemplatePropertiesBase & +export type NrtAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & QueryBasedAlertRuleTemplateProperties & {}; /** MicrosoftSecurityIncidentCreation rule property bag. */ @@ -3380,6 +3432,12 @@ export type OfficeATPCheckRequirementsProperties = DataConnectorTenantId & {}; /** OfficeIRM (Microsoft Insider Risk Management) requirements check properties. */ export type OfficeIRMCheckRequirementsProperties = DataConnectorTenantId & {}; +/** Office365 Project requirements check properties. */ +export type Office365ProjectCheckRequirementsProperties = DataConnectorTenantId & {}; + +/** Office PowerBI requirements check properties. */ +export type OfficePowerBICheckRequirementsProperties = DataConnectorTenantId & {}; + /** Threat Intelligence Platforms data connector required properties. */ export type TICheckRequirementsProperties = DataConnectorTenantId & {}; @@ -3422,6 +3480,18 @@ export type Dynamics365DataConnectorProperties = DataConnectorTenantId & { export type OfficeATPDataConnectorProperties = DataConnectorTenantId & DataConnectorWithAlertsProperties & {}; +/** Office Microsoft Project data connector properties. */ +export type Office365ProjectDataConnectorProperties = DataConnectorTenantId & { + /** The available data types for the connector. */ + dataTypes: Office365ProjectConnectorDataTypes; +}; + +/** Office Microsoft PowerBI data connector properties. */ +export type OfficePowerBIDataConnectorProperties = DataConnectorTenantId & { + /** The available data types for the connector. */ + dataTypes: OfficePowerBIConnectorDataTypes; +}; + /** OfficeIRM (Microsoft Insider Risk Management) data connector properties. */ export type OfficeIRMDataConnectorProperties = DataConnectorTenantId & DataConnectorWithAlertsProperties & {}; @@ -3502,6 +3572,12 @@ export type AwsS3DataConnectorDataTypesLogs = DataConnectorDataTypeCommon & {}; /** Common Data Service data type connection. */ export type Dynamics365DataConnectorDataTypesDynamics365CdsActivities = DataConnectorDataTypeCommon & {}; +/** Logs data type. */ +export type Office365ProjectConnectorDataTypesLogs = DataConnectorDataTypeCommon & {}; + +/** Logs data type. */ +export type OfficePowerBIConnectorDataTypesLogs = DataConnectorDataTypeCommon & {}; + /** Exchange data type connection. */ export type OfficeDataConnectorDataTypesExchange = DataConnectorDataTypeCommon & {}; @@ -3556,36 +3632,35 @@ export type ActionRequest = ResourceWithEtag & { triggerUri?: string; }; -/** Represents an automation rule. */ export type AutomationRule = ResourceWithEtag & { - /** The display name of the automation rule */ - displayName?: string; + /** The display name of the automation rule */ + displayName: string; /** The order of execution of the automation rule */ - order?: number; - /** The triggering logic of the automation rule */ - triggeringLogic?: AutomationRuleTriggeringLogic; + order: number; + /** Describes automation rule triggering logic */ + triggeringLogic: AutomationRuleTriggeringLogic; /** The actions to execute when the automation rule is triggered */ - actions?: AutomationRuleActionUnion[]; - /** - * The time the automation rule was created - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly createdTimeUtc?: Date; + actions: AutomationRuleActionUnion[]; /** * The last time the automation rule was updated * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly lastModifiedTimeUtc?: Date; /** - * Describes the client that created the automation rule + * The time the automation rule was created * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly createdBy?: ClientInfo; + readonly createdTimeUtc?: Date; /** - * Describes the client that last updated the automation rule + * Information on the client (user or application) that made some action * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly lastModifiedBy?: ClientInfo; + /** + * Information on the client (user or application) that made some action + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly createdBy?: ClientInfo; }; /** Represents a bookmark in Azure Security Insights. */ @@ -3616,6 +3691,12 @@ export type Bookmark = ResourceWithEtag & { queryEndTime?: Date; /** Describes an incident that relates to bookmark */ incidentInfo?: IncidentInfo; + /** Describes the entity mappings of the bookmark */ + entityMappings?: BookmarkEntityMappings[]; + /** A list of relevant mitre attacks */ + tactics?: AttackTactic[]; + /** A list of relevant mitre techniques */ + techniques?: string[]; }; /** Represents a relation between two resources */ @@ -3916,10 +3997,12 @@ export type MLBehaviorAnalyticsAlertRuleTemplate = AlertRuleTemplate & { requiredDataConnectors?: AlertRuleTemplateDataSource[]; /** The alert rule template status. */ status?: TemplateStatus; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule template. */ - tactics?: AttackTactic[]; }; /** Represents Fusion alert rule template. */ @@ -3944,10 +4027,14 @@ export type FusionAlertRuleTemplate = AlertRuleTemplate & { requiredDataConnectors?: AlertRuleTemplateDataSource[]; /** The alert rule template status. */ status?: TemplateStatus; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule template */ - tactics?: AttackTactic[]; + /** All supported source signal configurations consumed in fusion detection. */ + sourceSettings?: FusionTemplateSourceSetting[]; }; /** Represents Threat Intelligence alert rule template. */ @@ -3972,10 +4059,12 @@ export type ThreatIntelligenceAlertRuleTemplate = AlertRuleTemplate & { requiredDataConnectors?: AlertRuleTemplateDataSource[]; /** The alert rule template status. */ status?: TemplateStatus; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule template */ - tactics?: AttackTactic[]; }; /** Represents MicrosoftSecurityIncidentCreation rule template. */ @@ -4032,12 +4121,14 @@ export type ScheduledAlertRuleTemplate = AlertRuleTemplate & { requiredDataConnectors?: AlertRuleTemplateDataSource[]; /** The alert rule template status. */ status?: TemplateStatus; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The query that creates alerts for this rule. */ query?: string; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The version of this template - in format , where all are numbers. For example <1.0.2>. */ version?: string; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -4080,12 +4171,14 @@ export type NrtAlertRuleTemplate = AlertRuleTemplate & { requiredDataConnectors?: AlertRuleTemplateDataSource[]; /** The alert rule template status. */ status?: TemplateStatus; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The query that creates alerts for this rule. */ query?: string; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The version of this template - in format , where all are numbers. For example <1.0.2>. */ version?: string; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -5259,13 +5352,33 @@ export type ThreatIntelligenceIndicatorModel = ThreatIntelligenceInformation & { extensions?: { [propertyName: string]: any }; }; -export type PermissionsCustomsItem = Customs & {}; +/** MLBehaviorAnalytics alert rule template properties. */ +export type MLBehaviorAnalyticsAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { + /** The severity for alerts created by this alert rule. */ + severity: AlertSeverity; +}; -/** Represents MLBehaviorAnalytics alert rule. */ -export type MLBehaviorAnalyticsAlertRule = AlertRule & { - /** The Name of the alert rule template used to create this rule. */ - alertRuleTemplateName?: string; - /** +/** Fusion alert rule template properties */ +export type FusionAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { + /** The severity for alerts created by this alert rule. */ + severity: AlertSeverity; + /** All supported source signal configurations consumed in fusion detection. */ + sourceSettings: FusionTemplateSourceSetting[]; +}; + +/** Threat Intelligence alert rule template properties */ +export type ThreatIntelligenceAlertRuleTemplateProperties = AlertRuleTemplateWithMitreProperties & { + /** The severity for alerts created by this alert rule. */ + severity: AlertSeverity; +}; + +export type PermissionsCustomsItem = Customs & {}; + +/** Represents MLBehaviorAnalytics alert rule. */ +export type MLBehaviorAnalyticsAlertRule = AlertRule & { + /** The Name of the alert rule template used to create this rule. */ + alertRuleTemplateName?: string; + /** * The description of the alert rule. * NOTE: This property will not be serialized. It can only be populated by the server. */ @@ -5292,6 +5405,11 @@ export type MLBehaviorAnalyticsAlertRule = AlertRule & { * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly tactics?: AttackTactic[]; + /** + * The techniques of the alert rule + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly techniques?: string[]; }; /** Represents Fusion alert rule. */ @@ -5310,6 +5428,10 @@ export type FusionAlertRule = AlertRule & { readonly displayName?: string; /** Determines whether this alert rule is enabled or disabled. */ enabled?: boolean; + /** Configuration for all supported source signals in fusion detection. */ + sourceSettings?: FusionSourceSettings[]; + /** Configuration to exclude scenarios in fusion detection. */ + scenarioExclusionPatterns?: FusionScenarioExclusionPattern[]; /** * The last time that this alert has been modified. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5325,6 +5447,11 @@ export type FusionAlertRule = AlertRule & { * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly tactics?: AttackTactic[]; + /** + * The techniques of the alert rule + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly techniques?: string[]; }; /** Represents Threat Intelligence alert rule. */ @@ -5358,6 +5485,11 @@ export type ThreatIntelligenceAlertRule = AlertRule & { * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly tactics?: AttackTactic[]; + /** + * The techniques of the alert rule + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly techniques?: string[]; }; /** Represents MicrosoftSecurityIncidentCreation rule. */ @@ -5405,6 +5537,10 @@ export type ScheduledAlertRule = AlertRule & { description?: string; /** The query that creates alerts for this rule. */ query?: string; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The display name for alerts created by this alert rule. */ displayName?: string; /** Determines whether this alert rule is enabled or disabled. */ @@ -5420,8 +5556,6 @@ export type ScheduledAlertRule = AlertRule & { suppressionEnabled?: boolean; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The settings of the incidents that created from alerts triggered by this analytics rule */ incidentConfiguration?: IncidentConfiguration; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -5442,6 +5576,10 @@ export type NrtAlertRule = AlertRule & { description?: string; /** The query that creates alerts for this rule. */ query?: string; + /** The tactics of the alert rule */ + tactics?: AttackTactic[]; + /** The techniques of the alert rule */ + techniques?: string[]; /** The display name for alerts created by this alert rule. */ displayName?: string; /** Determines whether this alert rule is enabled or disabled. */ @@ -5457,8 +5595,6 @@ export type NrtAlertRule = AlertRule & { suppressionEnabled?: boolean; /** The severity for alerts created by this alert rule. */ severity?: AlertSeverity; - /** The tactics of the alert rule */ - tactics?: AttackTactic[]; /** The settings of the incidents that created from alerts triggered by this analytics rule */ incidentConfiguration?: IncidentConfiguration; /** Dictionary of string key-value pairs of columns to be attached to the alert */ @@ -5666,6 +5802,22 @@ export type OfficeATPDataConnector = DataConnector & { dataTypes?: AlertsDataTypeOfDataConnector; }; +/** Represents Office Microsoft Project data connector. */ +export type Office365ProjectDataConnector = DataConnector & { + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; + /** The available data types for the connector. */ + dataTypes?: Office365ProjectConnectorDataTypes; +}; + +/** Represents Office Microsoft PowerBI data connector. */ +export type OfficePowerBIDataConnector = DataConnector & { + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; + /** The available data types for the connector. */ + dataTypes?: OfficePowerBIConnectorDataTypes; +}; + /** Represents OfficeIRM (Microsoft Insider Risk Management) data connector. */ export type OfficeIRMDataConnector = DataConnector & { /** The tenant id to connect to, and get the data from. */ @@ -5812,23 +5964,23 @@ export enum KnownTriggersWhen { */ export type TriggersWhen = string; -/** Known values of {@link AutomationRuleConditionType} that the service accepts. */ -export enum KnownAutomationRuleConditionType { +/** Known values of {@link ConditionType} that the service accepts. */ +export enum KnownConditionType { /** Evaluate an object property value */ Property = "Property" } /** - * Defines values for AutomationRuleConditionType. \ - * {@link KnownAutomationRuleConditionType} can be used interchangeably with AutomationRuleConditionType, + * Defines values for ConditionType. \ + * {@link KnownConditionType} can be used interchangeably with ConditionType, * this enum contains the known values that the service supports. * ### Known values supported by the service * **Property**: Evaluate an object property value */ -export type AutomationRuleConditionType = string; +export type ConditionType = string; -/** Known values of {@link AutomationRuleActionType} that the service accepts. */ -export enum KnownAutomationRuleActionType { +/** Known values of {@link ActionType} that the service accepts. */ +export enum KnownActionType { /** Modify an object's properties */ ModifyProperties = "ModifyProperties", /** Run a playbook on an object */ @@ -5836,14 +5988,14 @@ export enum KnownAutomationRuleActionType { } /** - * Defines values for AutomationRuleActionType. \ - * {@link KnownAutomationRuleActionType} can be used interchangeably with AutomationRuleActionType, + * Defines values for ActionType. \ + * {@link KnownActionType} can be used interchangeably with ActionType, * this enum contains the known values that the service supports. * ### Known values supported by the service * **ModifyProperties**: Modify an object's properties \ * **RunPlaybook**: Run a playbook on an object */ -export type AutomationRuleActionType = string; +export type ActionType = string; /** Known values of {@link IncidentSeverity} that the service accepts. */ export enum KnownIncidentSeverity { @@ -5869,6 +6021,52 @@ export enum KnownIncidentSeverity { */ export type IncidentSeverity = string; +/** Known values of {@link AttackTactic} that the service accepts. */ +export enum KnownAttackTactic { + Reconnaissance = "Reconnaissance", + ResourceDevelopment = "ResourceDevelopment", + InitialAccess = "InitialAccess", + Execution = "Execution", + Persistence = "Persistence", + PrivilegeEscalation = "PrivilegeEscalation", + DefenseEvasion = "DefenseEvasion", + CredentialAccess = "CredentialAccess", + Discovery = "Discovery", + LateralMovement = "LateralMovement", + Collection = "Collection", + Exfiltration = "Exfiltration", + CommandAndControl = "CommandAndControl", + Impact = "Impact", + PreAttack = "PreAttack", + ImpairProcessControl = "ImpairProcessControl", + InhibitResponseFunction = "InhibitResponseFunction" +} + +/** + * Defines values for AttackTactic. \ + * {@link KnownAttackTactic} can be used interchangeably with AttackTactic, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Reconnaissance** \ + * **ResourceDevelopment** \ + * **InitialAccess** \ + * **Execution** \ + * **Persistence** \ + * **PrivilegeEscalation** \ + * **DefenseEvasion** \ + * **CredentialAccess** \ + * **Discovery** \ + * **LateralMovement** \ + * **Collection** \ + * **Exfiltration** \ + * **CommandAndControl** \ + * **Impact** \ + * **PreAttack** \ + * **ImpairProcessControl** \ + * **InhibitResponseFunction** + */ +export type AttackTactic = string; + /** Known values of {@link EntityKind} that the service accepts. */ export enum KnownEntityKind { /** Entity represents account in the system. */ @@ -5944,21 +6142,41 @@ export enum KnownEntityKind { */ export type EntityKind = string; -/** Known values of {@link Enum8} that the service accepts. */ -export enum KnownEnum8 { - Expansion = "Expansion", - Activity = "Activity" +/** Known values of {@link EntityTimelineKind} that the service accepts. */ +export enum KnownEntityTimelineKind { + /** activity */ + Activity = "Activity", + /** bookmarks */ + Bookmark = "Bookmark", + /** security alerts */ + SecurityAlert = "SecurityAlert" } /** - * Defines values for Enum8. \ - * {@link KnownEnum8} can be used interchangeably with Enum8, + * Defines values for EntityTimelineKind. \ + * {@link KnownEntityTimelineKind} can be used interchangeably with EntityTimelineKind, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **Expansion** \ - * **Activity** + * **Activity**: activity \ + * **Bookmark**: bookmarks \ + * **SecurityAlert**: security alerts + */ +export type EntityTimelineKind = string; + +/** Known values of {@link EntityItemQueryKind} that the service accepts. */ +export enum KnownEntityItemQueryKind { + /** insight */ + Insight = "Insight" +} + +/** + * Defines values for EntityItemQueryKind. \ + * {@link KnownEntityItemQueryKind} can be used interchangeably with EntityItemQueryKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Insight**: insight */ -export type Enum8 = string; +export type EntityItemQueryKind = string; /** Known values of {@link EntityQueryKind} that the service accepts. */ export enum KnownEntityQueryKind { @@ -5978,93 +6196,49 @@ export enum KnownEntityQueryKind { */ export type EntityQueryKind = string; -/** Known values of {@link CustomEntityQueryKind} that the service accepts. */ -export enum KnownCustomEntityQueryKind { +/** Known values of {@link Enum12} that the service accepts. */ +export enum KnownEnum12 { + Expansion = "Expansion", Activity = "Activity" } /** - * Defines values for CustomEntityQueryKind. \ - * {@link KnownCustomEntityQueryKind} can be used interchangeably with CustomEntityQueryKind, + * Defines values for Enum12. \ + * {@link KnownEnum12} can be used interchangeably with Enum12, * this enum contains the known values that the service supports. * ### Known values supported by the service + * **Expansion** \ * **Activity** */ -export type CustomEntityQueryKind = string; - -/** Known values of {@link EntityTimelineKind} that the service accepts. */ -export enum KnownEntityTimelineKind { - /** activity */ - Activity = "Activity", - /** bookmarks */ - Bookmark = "Bookmark", - /** security alerts */ - SecurityAlert = "SecurityAlert" -} - -/** - * Defines values for EntityTimelineKind. \ - * {@link KnownEntityTimelineKind} can be used interchangeably with EntityTimelineKind, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **Activity**: activity \ - * **Bookmark**: bookmarks \ - * **SecurityAlert**: security alerts - */ -export type EntityTimelineKind = string; +export type Enum12 = string; -/** Known values of {@link EntityItemQueryKind} that the service accepts. */ -export enum KnownEntityItemQueryKind { - /** insight */ - Insight = "Insight" +/** Known values of {@link CustomEntityQueryKind} that the service accepts. */ +export enum KnownCustomEntityQueryKind { + Activity = "Activity" } /** - * Defines values for EntityItemQueryKind. \ - * {@link KnownEntityItemQueryKind} can be used interchangeably with EntityItemQueryKind, + * Defines values for CustomEntityQueryKind. \ + * {@link KnownCustomEntityQueryKind} can be used interchangeably with CustomEntityQueryKind, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **Insight**: insight + * **Activity** */ -export type EntityItemQueryKind = string; +export type CustomEntityQueryKind = string; -/** Known values of {@link AttackTactic} that the service accepts. */ -export enum KnownAttackTactic { - InitialAccess = "InitialAccess", - Execution = "Execution", - Persistence = "Persistence", - PrivilegeEscalation = "PrivilegeEscalation", - DefenseEvasion = "DefenseEvasion", - CredentialAccess = "CredentialAccess", - Discovery = "Discovery", - LateralMovement = "LateralMovement", - Collection = "Collection", - Exfiltration = "Exfiltration", - CommandAndControl = "CommandAndControl", - Impact = "Impact", - PreAttack = "PreAttack" +/** Known values of {@link EntityQueryTemplateKind} that the service accepts. */ +export enum KnownEntityQueryTemplateKind { + Activity = "Activity" } /** - * Defines values for AttackTactic. \ - * {@link KnownAttackTactic} can be used interchangeably with AttackTactic, + * Defines values for EntityQueryTemplateKind. \ + * {@link KnownEntityQueryTemplateKind} can be used interchangeably with EntityQueryTemplateKind, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **InitialAccess** \ - * **Execution** \ - * **Persistence** \ - * **PrivilegeEscalation** \ - * **DefenseEvasion** \ - * **CredentialAccess** \ - * **Discovery** \ - * **LateralMovement** \ - * **Collection** \ - * **Exfiltration** \ - * **CommandAndControl** \ - * **Impact** \ - * **PreAttack** + * **Activity** */ -export type AttackTactic = string; +export type EntityQueryTemplateKind = string; /** Known values of {@link IncidentClassification} that the service accepts. */ export enum KnownIncidentClassification { @@ -6470,6 +6644,39 @@ export enum KnownContentType { */ export type ContentType = string; +/** Known values of {@link ThreatIntelligenceResourceKindEnum} that the service accepts. */ +export enum KnownThreatIntelligenceResourceKindEnum { + /** Entity represents threat intelligence indicator in the system. */ + Indicator = "indicator" +} + +/** + * Defines values for ThreatIntelligenceResourceKindEnum. \ + * {@link KnownThreatIntelligenceResourceKindEnum} can be used interchangeably with ThreatIntelligenceResourceKindEnum, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **indicator**: Entity represents threat intelligence indicator in the system. + */ +export type ThreatIntelligenceResourceKindEnum = string; + +/** Known values of {@link ThreatIntelligenceSortingCriteriaEnum} that the service accepts. */ +export enum KnownThreatIntelligenceSortingCriteriaEnum { + Unsorted = "unsorted", + Ascending = "ascending", + Descending = "descending" +} + +/** + * Defines values for ThreatIntelligenceSortingCriteriaEnum. \ + * {@link KnownThreatIntelligenceSortingCriteriaEnum} can be used interchangeably with ThreatIntelligenceSortingCriteriaEnum, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **unsorted** \ + * **ascending** \ + * **descending** + */ +export type ThreatIntelligenceSortingCriteriaEnum = string; + /** Known values of {@link Source} that the service accepts. */ export enum KnownSource { LocalFile = "Local file", @@ -6496,6 +6703,8 @@ export enum KnownDataConnectorKind { Office365 = "Office365", OfficeATP = "OfficeATP", OfficeIRM = "OfficeIRM", + Office365Project = "Office365Project", + OfficePowerBI = "OfficePowerBI", AmazonWebServicesCloudTrail = "AmazonWebServicesCloudTrail", AmazonWebServicesS3 = "AmazonWebServicesS3", AzureAdvancedThreatProtection = "AzureAdvancedThreatProtection", @@ -6520,6 +6729,8 @@ export enum KnownDataConnectorKind { * **Office365** \ * **OfficeATP** \ * **OfficeIRM** \ + * **Office365Project** \ + * **OfficePowerBI** \ * **AmazonWebServicesCloudTrail** \ * **AmazonWebServicesS3** \ * **AzureAdvancedThreatProtection** \ @@ -6584,73 +6795,26 @@ export enum KnownDataConnectorLicenseState { */ export type DataConnectorLicenseState = string; -/** Known values of {@link ThreatIntelligenceResourceKindEnum} that the service accepts. */ -export enum KnownThreatIntelligenceResourceKindEnum { - /** Entity represents threat intelligence indicator in the system. */ - Indicator = "indicator" +/** Known values of {@link TemplateStatus} that the service accepts. */ +export enum KnownTemplateStatus { + /** Alert rule template installed. and can not use more then once */ + Installed = "Installed", + /** Alert rule template is available. */ + Available = "Available", + /** Alert rule template is not available */ + NotAvailable = "NotAvailable" } /** - * Defines values for ThreatIntelligenceResourceKindEnum. \ - * {@link KnownThreatIntelligenceResourceKindEnum} can be used interchangeably with ThreatIntelligenceResourceKindEnum, + * Defines values for TemplateStatus. \ + * {@link KnownTemplateStatus} can be used interchangeably with TemplateStatus, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **indicator**: Entity represents threat intelligence indicator in the system. + * **Installed**: Alert rule template installed. and can not use more then once \ + * **Available**: Alert rule template is available. \ + * **NotAvailable**: Alert rule template is not available */ -export type ThreatIntelligenceResourceKindEnum = string; - -/** Known values of {@link ThreatIntelligenceSortingCriteriaEnum} that the service accepts. */ -export enum KnownThreatIntelligenceSortingCriteriaEnum { - Unsorted = "unsorted", - Ascending = "ascending", - Descending = "descending" -} - -/** - * Defines values for ThreatIntelligenceSortingCriteriaEnum. \ - * {@link KnownThreatIntelligenceSortingCriteriaEnum} can be used interchangeably with ThreatIntelligenceSortingCriteriaEnum, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **unsorted** \ - * **ascending** \ - * **descending** - */ -export type ThreatIntelligenceSortingCriteriaEnum = string; - -/** Known values of {@link EntityQueryTemplateKind} that the service accepts. */ -export enum KnownEntityQueryTemplateKind { - Activity = "Activity" -} - -/** - * Defines values for EntityQueryTemplateKind. \ - * {@link KnownEntityQueryTemplateKind} can be used interchangeably with EntityQueryTemplateKind, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **Activity** - */ -export type EntityQueryTemplateKind = string; - -/** Known values of {@link TemplateStatus} that the service accepts. */ -export enum KnownTemplateStatus { - /** Alert rule template installed. and can not use more then once */ - Installed = "Installed", - /** Alert rule template is available. */ - Available = "Available", - /** Alert rule template is not available */ - NotAvailable = "NotAvailable" -} - -/** - * Defines values for TemplateStatus. \ - * {@link KnownTemplateStatus} can be used interchangeably with TemplateStatus, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **Installed**: Alert rule template installed. and can not use more then once \ - * **Available**: Alert rule template is available. \ - * **NotAvailable**: Alert rule template is not available - */ -export type TemplateStatus = string; +export type TemplateStatus = string; /** Known values of {@link EntityMappingType} that the service accepts. */ export enum KnownEntityMappingType { @@ -6809,15 +6973,17 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { IncidentSeverity = "IncidentSeverity", /** The status of the incident */ IncidentStatus = "IncidentStatus", - /** The tactics of the incident */ - IncidentTactics = "IncidentTactics", /** The related Analytic rule ids of the incident */ IncidentRelatedAnalyticRuleIds = "IncidentRelatedAnalyticRuleIds", + /** The tactics of the incident */ + IncidentTactics = "IncidentTactics", + /** The labels of the incident */ + IncidentLabel = "IncidentLabel", /** The provider name of the incident */ IncidentProviderName = "IncidentProviderName", /** The account Azure Active Directory tenant id */ AccountAadTenantId = "AccountAadTenantId", - /** The account Azure Active Directory user id. */ + /** The account Azure Active Directory user id */ AccountAadUserId = "AccountAadUserId", /** The account name */ AccountName = "AccountName", @@ -6831,6 +6997,8 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { AccountObjectGuid = "AccountObjectGuid", /** The account user principal name suffix */ AccountUPNSuffix = "AccountUPNSuffix", + /** The name of the product of the alert */ + AlertProductNames = "AlertProductNames", /** The Azure resource id */ AzureResourceResourceId = "AzureResourceResourceId", /** The Azure resource subscription id */ @@ -6857,7 +7025,7 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { HostNTDomain = "HostNTDomain", /** The host operating system */ HostOSVersion = "HostOSVersion", - /** The IoT device id */ + /** "The IoT device id */ IoTDeviceId = "IoTDeviceId", /** The IoT device name */ IoTDeviceName = "IoTDeviceName", @@ -6916,17 +7084,19 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { * **IncidentDescription**: The description of the incident \ * **IncidentSeverity**: The severity of the incident \ * **IncidentStatus**: The status of the incident \ - * **IncidentTactics**: The tactics of the incident \ * **IncidentRelatedAnalyticRuleIds**: The related Analytic rule ids of the incident \ + * **IncidentTactics**: The tactics of the incident \ + * **IncidentLabel**: The labels of the incident \ * **IncidentProviderName**: The provider name of the incident \ * **AccountAadTenantId**: The account Azure Active Directory tenant id \ - * **AccountAadUserId**: The account Azure Active Directory user id. \ + * **AccountAadUserId**: The account Azure Active Directory user id \ * **AccountName**: The account name \ * **AccountNTDomain**: The account NetBIOS domain name \ * **AccountPUID**: The account Azure Active Directory Passport User ID \ * **AccountSid**: The account security identifier \ * **AccountObjectGuid**: The account unique identifier \ * **AccountUPNSuffix**: The account user principal name suffix \ + * **AlertProductNames**: The name of the product of the alert \ * **AzureResourceResourceId**: The Azure resource id \ * **AzureResourceSubscriptionId**: The Azure resource subscription id \ * **CloudApplicationAppId**: The cloud application identifier \ @@ -6940,7 +7110,7 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { * **HostNetBiosName**: The host NetBIOS name \ * **HostNTDomain**: The host NT domain \ * **HostOSVersion**: The host operating system \ - * **IoTDeviceId**: The IoT device id \ + * **IoTDeviceId**: "The IoT device id \ * **IoTDeviceName**: The IoT device name \ * **IoTDeviceType**: The IoT device type \ * **IoTDeviceVendor**: The IoT device vendor \ @@ -7482,13 +7652,6 @@ export interface AlertRuleTemplatesListNextOptionalParams /** Contains response data for the listNext operation. */ export type AlertRuleTemplatesListNextResponse = AlertRuleTemplatesList; -/** Optional parameters. */ -export interface AutomationRulesListOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the list operation. */ -export type AutomationRulesListResponse = AutomationRulesList; - /** Optional parameters. */ export interface AutomationRulesGetOptionalParams extends coreClient.OperationOptions {} @@ -7498,7 +7661,10 @@ export type AutomationRulesGetResponse = AutomationRule; /** Optional parameters. */ export interface AutomationRulesCreateOrUpdateOptionalParams - extends coreClient.OperationOptions {} + extends coreClient.OperationOptions { + /** The automation rule */ + automationRuleToUpsert?: AutomationRule; +} /** Contains response data for the createOrUpdate operation. */ export type AutomationRulesCreateOrUpdateResponse = AutomationRule; @@ -7507,6 +7673,28 @@ export type AutomationRulesCreateOrUpdateResponse = AutomationRule; export interface AutomationRulesDeleteOptionalParams extends coreClient.OperationOptions {} +/** Contains response data for the delete operation. */ +export type AutomationRulesDeleteResponse = Record; + +/** Optional parameters. */ +export interface AutomationRulesListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type AutomationRulesListResponse = AutomationRulesList; + +/** Optional parameters. */ +export interface AutomationRulesManualTriggerPlaybookOptionalParams + extends coreClient.OperationOptions { + requestBody?: ManualTriggerRequestBody; +} + +/** Contains response data for the manualTriggerPlaybook operation. */ +export type AutomationRulesManualTriggerPlaybookResponse = Record< + string, + unknown +>; + /** Optional parameters. */ export interface AutomationRulesListNextOptionalParams extends coreClient.OperationOptions {} @@ -7617,44 +7805,6 @@ export interface DomainWhoisGetOptionalParams /** Contains response data for the get operation. */ export type DomainWhoisGetResponse = EnrichmentDomainWhois; -/** Optional parameters. */ -export interface EntityQueriesListOptionalParams - extends coreClient.OperationOptions { - /** The entity query kind we want to fetch */ - kind?: Enum8; -} - -/** Contains response data for the list operation. */ -export type EntityQueriesListResponse = EntityQueryList; - -/** Optional parameters. */ -export interface EntityQueriesGetOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the get operation. */ -export type EntityQueriesGetResponse = EntityQueryUnion; - -/** Optional parameters. */ -export interface EntityQueriesCreateOrUpdateOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the createOrUpdate operation. */ -export type EntityQueriesCreateOrUpdateResponse = EntityQueryUnion; - -/** Optional parameters. */ -export interface EntityQueriesDeleteOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface EntityQueriesListNextOptionalParams - extends coreClient.OperationOptions { - /** The entity query kind we want to fetch */ - kind?: Enum8; -} - -/** Contains response data for the listNext operation. */ -export type EntityQueriesListNextResponse = EntityQueryList; - /** Optional parameters. */ export interface EntitiesListOptionalParams extends coreClient.OperationOptions {} @@ -7743,6 +7893,65 @@ export interface EntityRelationsGetRelationOptionalParams /** Contains response data for the getRelation operation. */ export type EntityRelationsGetRelationResponse = Relation; +/** Optional parameters. */ +export interface EntityQueriesListOptionalParams + extends coreClient.OperationOptions { + /** The entity query kind we want to fetch */ + kind?: Enum12; +} + +/** Contains response data for the list operation. */ +export type EntityQueriesListResponse = EntityQueryList; + +/** Optional parameters. */ +export interface EntityQueriesGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type EntityQueriesGetResponse = EntityQueryUnion; + +/** Optional parameters. */ +export interface EntityQueriesCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type EntityQueriesCreateOrUpdateResponse = EntityQueryUnion; + +/** Optional parameters. */ +export interface EntityQueriesDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface EntityQueriesListNextOptionalParams + extends coreClient.OperationOptions { + /** The entity query kind we want to fetch */ + kind?: Enum12; +} + +/** Contains response data for the listNext operation. */ +export type EntityQueriesListNextResponse = EntityQueryList; + +/** Optional parameters. */ +export interface EntityQueryTemplatesListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type EntityQueryTemplatesListResponse = EntityQueryTemplateList; + +/** Optional parameters. */ +export interface EntityQueryTemplatesGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type EntityQueryTemplatesGetResponse = EntityQueryTemplateUnion; + +/** Optional parameters. */ +export interface EntityQueryTemplatesListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type EntityQueryTemplatesListNextResponse = EntityQueryTemplateList; + /** Optional parameters. */ export interface IncidentsListOptionalParams extends coreClient.OperationOptions { @@ -7978,6 +8187,31 @@ export interface MetadataListNextOptionalParams /** Contains response data for the listNext operation. */ export type MetadataListNextResponse = MetadataList; +/** Optional parameters. */ +export interface OfficeConsentsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type OfficeConsentsListResponse = OfficeConsentList; + +/** Optional parameters. */ +export interface OfficeConsentsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type OfficeConsentsGetResponse = OfficeConsent; + +/** Optional parameters. */ +export interface OfficeConsentsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface OfficeConsentsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type OfficeConsentsListNextResponse = OfficeConsentList; + /** Optional parameters. */ export interface SentinelOnboardingStatesGetOptionalParams extends coreClient.OperationOptions {} @@ -8077,117 +8311,6 @@ export interface SourceControlsListNextOptionalParams /** Contains response data for the listNext operation. */ export type SourceControlsListNextResponse = SourceControlList; -/** Optional parameters. */ -export interface WatchlistsListOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the list operation. */ -export type WatchlistsListResponse = WatchlistList; - -/** Optional parameters. */ -export interface WatchlistsGetOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the get operation. */ -export type WatchlistsGetResponse = Watchlist; - -/** Optional parameters. */ -export interface WatchlistsDeleteOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface WatchlistsCreateOrUpdateOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the createOrUpdate operation. */ -export type WatchlistsCreateOrUpdateResponse = Watchlist; - -/** Optional parameters. */ -export interface WatchlistsListNextOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the listNext operation. */ -export type WatchlistsListNextResponse = WatchlistList; - -/** Optional parameters. */ -export interface WatchlistItemsListOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the list operation. */ -export type WatchlistItemsListResponse = WatchlistItemList; - -/** Optional parameters. */ -export interface WatchlistItemsGetOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the get operation. */ -export type WatchlistItemsGetResponse = WatchlistItem; - -/** Optional parameters. */ -export interface WatchlistItemsDeleteOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface WatchlistItemsCreateOrUpdateOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the createOrUpdate operation. */ -export type WatchlistItemsCreateOrUpdateResponse = WatchlistItem; - -/** Optional parameters. */ -export interface WatchlistItemsListNextOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the listNext operation. */ -export type WatchlistItemsListNextResponse = WatchlistItemList; - -/** Optional parameters. */ -export interface DataConnectorsListOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the list operation. */ -export type DataConnectorsListResponse = DataConnectorList; - -/** Optional parameters. */ -export interface DataConnectorsGetOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the get operation. */ -export type DataConnectorsGetResponse = DataConnectorUnion; - -/** Optional parameters. */ -export interface DataConnectorsCreateOrUpdateOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the createOrUpdate operation. */ -export type DataConnectorsCreateOrUpdateResponse = DataConnectorUnion; - -/** Optional parameters. */ -export interface DataConnectorsDeleteOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface DataConnectorsConnectOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface DataConnectorsDisconnectOptionalParams - extends coreClient.OperationOptions {} - -/** Optional parameters. */ -export interface DataConnectorsListNextOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the listNext operation. */ -export type DataConnectorsListNextResponse = DataConnectorList; - -/** Optional parameters. */ -export interface DataConnectorsCheckRequirementsPostOptionalParams - extends coreClient.OperationOptions {} - -/** Contains response data for the post operation. */ -export type DataConnectorsCheckRequirementsPostResponse = DataConnectorRequirementsState; - /** Optional parameters. */ export interface ThreatIntelligenceIndicatorCreateIndicatorOptionalParams extends coreClient.OperationOptions {} @@ -8278,64 +8401,129 @@ export interface ThreatIntelligenceIndicatorMetricsListOptionalParams export type ThreatIntelligenceIndicatorMetricsListResponse = ThreatIntelligenceMetricsList; /** Optional parameters. */ -export interface OperationsListOptionalParams +export interface WatchlistsListOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the list operation. */ -export type OperationsListResponse = OperationsList; +export type WatchlistsListResponse = WatchlistList; /** Optional parameters. */ -export interface OperationsListNextOptionalParams +export interface WatchlistsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WatchlistsGetResponse = Watchlist; + +/** Optional parameters. */ +export interface WatchlistsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WatchlistsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WatchlistsCreateOrUpdateResponse = Watchlist; + +/** Optional parameters. */ +export interface WatchlistsListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type OperationsListNextResponse = OperationsList; +export type WatchlistsListNextResponse = WatchlistList; /** Optional parameters. */ -export interface OfficeConsentsListOptionalParams +export interface WatchlistItemsListOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the list operation. */ -export type OfficeConsentsListResponse = OfficeConsentList; +export type WatchlistItemsListResponse = WatchlistItemList; /** Optional parameters. */ -export interface OfficeConsentsGetOptionalParams +export interface WatchlistItemsGetOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the get operation. */ -export type OfficeConsentsGetResponse = OfficeConsent; +export type WatchlistItemsGetResponse = WatchlistItem; /** Optional parameters. */ -export interface OfficeConsentsDeleteOptionalParams +export interface WatchlistItemsDeleteOptionalParams extends coreClient.OperationOptions {} /** Optional parameters. */ -export interface OfficeConsentsListNextOptionalParams +export interface WatchlistItemsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WatchlistItemsCreateOrUpdateResponse = WatchlistItem; + +/** Optional parameters. */ +export interface WatchlistItemsListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type OfficeConsentsListNextResponse = OfficeConsentList; +export type WatchlistItemsListNextResponse = WatchlistItemList; /** Optional parameters. */ -export interface EntityQueryTemplatesListOptionalParams +export interface DataConnectorsListOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the list operation. */ -export type EntityQueryTemplatesListResponse = EntityQueryTemplateList; +export type DataConnectorsListResponse = DataConnectorList; /** Optional parameters. */ -export interface EntityQueryTemplatesGetOptionalParams +export interface DataConnectorsGetOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the get operation. */ -export type EntityQueryTemplatesGetResponse = EntityQueryTemplateUnion; +export type DataConnectorsGetResponse = DataConnectorUnion; /** Optional parameters. */ -export interface EntityQueryTemplatesListNextOptionalParams +export interface DataConnectorsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type DataConnectorsCreateOrUpdateResponse = DataConnectorUnion; + +/** Optional parameters. */ +export interface DataConnectorsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface DataConnectorsConnectOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface DataConnectorsDisconnectOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface DataConnectorsListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type EntityQueryTemplatesListNextResponse = EntityQueryTemplateList; +export type DataConnectorsListNextResponse = DataConnectorList; + +/** Optional parameters. */ +export interface DataConnectorsCheckRequirementsPostOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the post operation. */ +export type DataConnectorsCheckRequirementsPostResponse = DataConnectorRequirementsState; + +/** Optional parameters. */ +export interface OperationsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type OperationsListResponse = OperationsList; + +/** Optional parameters. */ +export interface OperationsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type OperationsListNextResponse = OperationsList; /** Optional parameters. */ export interface SecurityInsightsOptionalParams diff --git a/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts b/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts index dee7eb969f7d..8c23c08b50a5 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts @@ -232,35 +232,6 @@ export const AlertRuleTemplatesList: coreClient.CompositeMapper = { } }; -export const AutomationRulesList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AutomationRulesList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, - type: { - name: "String" - } - }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "AutomationRule" - } - } - } - } - } - } -}; - export const AutomationRuleTriggeringLogic: coreClient.CompositeMapper = { type: { name: "Composite", @@ -391,6 +362,54 @@ export const ClientInfo: coreClient.CompositeMapper = { } }; +export const AutomationRulesList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AutomationRulesList", + modelProperties: { + value: { + serializedName: "value", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AutomationRule" + } + } + } + }, + nextLink: { + serializedName: "nextLink", + type: { + name: "String" + } + } + } + } +}; + +export const ManualTriggerRequestBody: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ManualTriggerRequestBody", + modelProperties: { + tenantId: { + serializedName: "tenantId", + type: { + name: "Uuid" + } + }, + logicAppsResourceId: { + serializedName: "logicAppsResourceId", + type: { + name: "String" + } + } + } + } +}; + export const BookmarkList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -483,6 +502,54 @@ export const IncidentInfo: coreClient.CompositeMapper = { } }; +export const BookmarkEntityMappings: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "BookmarkEntityMappings", + modelProperties: { + entityType: { + serializedName: "entityType", + type: { + name: "String" + } + }, + fieldMappings: { + serializedName: "fieldMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityFieldMapping" + } + } + } + } + } + } +}; + +export const EntityFieldMapping: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityFieldMapping", + modelProperties: { + identifier: { + serializedName: "identifier", + type: { + name: "String" + } + }, + value: { + serializedName: "value", + type: { + name: "String" + } + } + } + } +}; + export const RelationList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -1031,35 +1098,6 @@ export const EnrichmentDomainWhoisContact: coreClient.CompositeMapper = { } }; -export const EntityQueryList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityQueryList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, - type: { - name: "String" - } - }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQuery" - } - } - } - } - } - } -}; - export const EntityList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -1685,6 +1723,64 @@ export const InsightsTableResultColumnsItem: coreClient.CompositeMapper = { } }; +export const EntityQueryList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityQueryList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQuery" + } + } + } + } + } + } +}; + +export const EntityQueryTemplateList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityQueryTemplateList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQueryTemplate" + } + } + } + } + } + } +}; + export const IncidentList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -1752,6 +1848,13 @@ export const IncidentAdditionalData: coreClient.CompositeMapper = { } } }, + providerIncidentUrl: { + serializedName: "providerIncidentUrl", + readOnly: true, + type: { + name: "String" + } + }, tactics: { serializedName: "tactics", readOnly: true, @@ -1763,6 +1866,18 @@ export const IncidentAdditionalData: coreClient.CompositeMapper = { } } } + }, + techniques: { + serializedName: "techniques", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } @@ -2297,6 +2412,35 @@ export const MetadataCategories: coreClient.CompositeMapper = { } }; +export const OfficeConsentList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeConsentList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "OfficeConsent" + } + } + } + } + } + } +}; + export const SentinelOnboardingStatesList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -2497,56 +2641,46 @@ export const ContentPathMap: coreClient.CompositeMapper = { } }; -export const WatchlistList: coreClient.CompositeMapper = { +export const ThreatIntelligenceKillChainPhase: coreClient.CompositeMapper = { type: { name: "Composite", - className: "WatchlistList", + className: "ThreatIntelligenceKillChainPhase", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + killChainName: { + serializedName: "killChainName", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + phaseName: { + serializedName: "phaseName", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "Watchlist" - } - } + name: "String" } } } } }; -export const WatchlistItemList: coreClient.CompositeMapper = { +export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { type: { name: "Composite", - className: "WatchlistItemList", + className: "ThreatIntelligenceParsedPattern", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + patternTypeKey: { + serializedName: "patternTypeKey", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + patternTypeValues: { + serializedName: "patternTypeValues", type: { name: "Sequence", element: { type: { name: "Composite", - className: "WatchlistItem" + className: "ThreatIntelligenceParsedPatternTypeValue" } } } @@ -2555,90 +2689,91 @@ export const WatchlistItemList: coreClient.CompositeMapper = { } }; -export const DataConnectorList: coreClient.CompositeMapper = { +export const ThreatIntelligenceParsedPatternTypeValue: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorList", + className: "ThreatIntelligenceParsedPatternTypeValue", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + valueType: { + serializedName: "valueType", type: { name: "String" } }, value: { serializedName: "value", - required: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "DataConnector" - } - } + name: "String" } } } } }; -export const DataConnectorConnectBody: coreClient.CompositeMapper = { +export const ThreatIntelligenceExternalReference: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorConnectBody", + className: "ThreatIntelligenceExternalReference", modelProperties: { - kind: { - serializedName: "kind", + description: { + serializedName: "description", type: { name: "String" } }, - apiKey: { - serializedName: "apiKey", + externalId: { + serializedName: "externalId", type: { name: "String" } }, - clientSecret: { - serializedName: "clientSecret", + sourceName: { + serializedName: "sourceName", type: { name: "String" } }, - clientId: { - serializedName: "clientId", + url: { + serializedName: "url", type: { name: "String" } }, - authorizationCode: { - serializedName: "authorizationCode", + hashes: { + serializedName: "hashes", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "String" } } } - }, - userName: { - serializedName: "userName", + } + } + } +}; + +export const ThreatIntelligenceGranularMarkingModel: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceGranularMarkingModel", + modelProperties: { + language: { + serializedName: "language", type: { name: "String" } }, - password: { - serializedName: "password", + markingRef: { + serializedName: "markingRef", type: { - name: "String" + name: "Number" } }, - requestConfigUserInputValues: { - serializedName: "requestConfigUserInputValues", + selectors: { + serializedName: "selectors", type: { name: "Sequence", element: { type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "String" } } } @@ -2647,184 +2782,271 @@ export const DataConnectorConnectBody: coreClient.CompositeMapper = { } }; -export const ErrorResponse: coreClient.CompositeMapper = { +export const ThreatIntelligenceResourceKind: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ErrorResponse", + className: "ThreatIntelligenceResourceKind", modelProperties: { - error: { - serializedName: "error", + kind: { + serializedName: "kind", + required: true, type: { - name: "Composite", - className: "ErrorDetail" + name: "String" } } } } }; -export const ErrorDetail: coreClient.CompositeMapper = { +export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ErrorDetail", + className: "ThreatIntelligenceInformationList", modelProperties: { - code: { - serializedName: "code", + nextLink: { + serializedName: "nextLink", readOnly: true, type: { name: "String" } }, - message: { - serializedName: "message", - readOnly: true, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceInformation" + } + } + } + } + } + } +}; + +export const ThreatIntelligenceFilteringCriteria: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceFilteringCriteria", + modelProperties: { + pageSize: { + serializedName: "pageSize", + type: { + name: "Number" + } + }, + minConfidence: { + serializedName: "minConfidence", + type: { + name: "Number" + } + }, + maxConfidence: { + serializedName: "maxConfidence", + type: { + name: "Number" + } + }, + minValidUntil: { + serializedName: "minValidUntil", type: { name: "String" } }, - target: { - serializedName: "target", - readOnly: true, + maxValidUntil: { + serializedName: "maxValidUntil", type: { name: "String" } }, - details: { - serializedName: "details", - readOnly: true, + includeDisabled: { + serializedName: "includeDisabled", + type: { + name: "Boolean" + } + }, + sortBy: { + serializedName: "sortBy", type: { name: "Sequence", element: { type: { name: "Composite", - className: "ErrorDetail" + className: "ThreatIntelligenceSortingCriteria" } } } }, - additionalInfo: { - serializedName: "additionalInfo", - readOnly: true, + sources: { + serializedName: "sources", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "ErrorAdditionalInfo" + name: "String" + } + } + } + }, + patternTypes: { + serializedName: "patternTypes", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + threatTypes: { + serializedName: "threatTypes", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + ids: { + serializedName: "ids", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + keywords: { + serializedName: "keywords", + type: { + name: "Sequence", + element: { + type: { + name: "String" } } } + }, + skipToken: { + serializedName: "skipToken", + type: { + name: "String" + } } } } }; -export const ErrorAdditionalInfo: coreClient.CompositeMapper = { +export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ErrorAdditionalInfo", + className: "ThreatIntelligenceSortingCriteria", modelProperties: { - type: { - serializedName: "type", - readOnly: true, + itemKey: { + serializedName: "itemKey", type: { name: "String" } }, - info: { - serializedName: "info", - readOnly: true, + sortOrder: { + serializedName: "sortOrder", type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "String" } } } } }; -export const DataConnectorsCheckRequirements: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetricsList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorsCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "ThreatIntelligenceMetricsList", modelProperties: { - kind: { - serializedName: "kind", + value: { + serializedName: "value", required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceMetrics" + } + } } } } } }; -export const DataConnectorRequirementsState: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetrics: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorRequirementsState", + className: "ThreatIntelligenceMetrics", modelProperties: { - authorizationState: { - serializedName: "authorizationState", - type: { - name: "String" - } - }, - licenseState: { - serializedName: "licenseState", + properties: { + serializedName: "properties", type: { - name: "String" + name: "Composite", + className: "ThreatIntelligenceMetric" } } } } }; -export const ThreatIntelligenceKillChainPhase: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetric: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceKillChainPhase", + className: "ThreatIntelligenceMetric", modelProperties: { - killChainName: { - serializedName: "killChainName", + lastUpdatedTimeUtc: { + serializedName: "lastUpdatedTimeUtc", type: { name: "String" } }, - phaseName: { - serializedName: "phaseName", + threatTypeMetrics: { + serializedName: "threatTypeMetrics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceMetricEntity" + } + } } - } - } - } -}; - -export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceParsedPattern", - modelProperties: { - patternTypeKey: { - serializedName: "patternTypeKey", + }, + patternTypeMetrics: { + serializedName: "patternTypeMetrics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceMetricEntity" + } + } } }, - patternTypeValues: { - serializedName: "patternTypeValues", + sourceMetrics: { + serializedName: "sourceMetrics", type: { name: "Sequence", element: { type: { name: "Composite", - className: "ThreatIntelligenceParsedPatternTypeValue" + className: "ThreatIntelligenceMetricEntity" } } } @@ -2833,91 +3055,68 @@ export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceParsedPatternTypeValue: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetricEntity: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceParsedPatternTypeValue", + className: "ThreatIntelligenceMetricEntity", modelProperties: { - valueType: { - serializedName: "valueType", + metricName: { + serializedName: "metricName", type: { name: "String" } }, - value: { - serializedName: "value", + metricValue: { + serializedName: "metricValue", type: { - name: "String" + name: "Number" } } } } }; -export const ThreatIntelligenceExternalReference: coreClient.CompositeMapper = { +export const ThreatIntelligenceAppendTags: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceExternalReference", + className: "ThreatIntelligenceAppendTags", modelProperties: { - description: { - serializedName: "description", - type: { - name: "String" - } - }, - externalId: { - serializedName: "externalId", - type: { - name: "String" - } - }, - sourceName: { - serializedName: "sourceName", - type: { - name: "String" - } - }, - url: { - serializedName: "url", - type: { - name: "String" - } - }, - hashes: { - serializedName: "hashes", + threatIntelligenceTags: { + serializedName: "threatIntelligenceTags", type: { - name: "Dictionary", - value: { type: { name: "String" } } + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const ThreatIntelligenceGranularMarkingModel: coreClient.CompositeMapper = { +export const WatchlistList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceGranularMarkingModel", + className: "WatchlistList", modelProperties: { - language: { - serializedName: "language", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - markingRef: { - serializedName: "markingRef", - type: { - name: "Number" - } - }, - selectors: { - serializedName: "selectors", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "Watchlist" } } } @@ -2926,26 +3125,39 @@ export const ThreatIntelligenceGranularMarkingModel: coreClient.CompositeMapper } }; -export const ThreatIntelligenceResourceKind: coreClient.CompositeMapper = { +export const WatchlistItemList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceResourceKind", + className: "WatchlistItemList", modelProperties: { - kind: { - serializedName: "kind", - required: true, + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "WatchlistItem" + } + } + } } } } }; -export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { +export const DataConnectorList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceInformationList", + className: "DataConnectorList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -2962,7 +3174,7 @@ export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "ThreatIntelligenceInformation" + className: "DataConnector" } } } @@ -2971,137 +3183,82 @@ export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceFilteringCriteria: coreClient.CompositeMapper = { +export const DataConnectorConnectBody: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceFilteringCriteria", + className: "DataConnectorConnectBody", modelProperties: { - pageSize: { - serializedName: "pageSize", + kind: { + serializedName: "kind", type: { - name: "Number" + name: "String" } }, - minConfidence: { - serializedName: "minConfidence", + apiKey: { + serializedName: "apiKey", type: { - name: "Number" + name: "String" } }, - maxConfidence: { - serializedName: "maxConfidence", + clientSecret: { + serializedName: "clientSecret", type: { - name: "Number" + name: "String" } }, - minValidUntil: { - serializedName: "minValidUntil", + clientId: { + serializedName: "clientId", type: { name: "String" } }, - maxValidUntil: { - serializedName: "maxValidUntil", + authorizationCode: { + serializedName: "authorizationCode", type: { name: "String" } }, - includeDisabled: { - serializedName: "includeDisabled", + userName: { + serializedName: "userName", type: { - name: "Boolean" + name: "String" } }, - sortBy: { - serializedName: "sortBy", + password: { + serializedName: "password", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceSortingCriteria" - } - } + name: "String" } }, - sources: { - serializedName: "sources", + requestConfigUserInputValues: { + serializedName: "requestConfigUserInputValues", type: { name: "Sequence", element: { type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } } } } - }, - patternTypes: { - serializedName: "patternTypes", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - threatTypes: { - serializedName: "threatTypes", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - ids: { - serializedName: "ids", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - keywords: { - serializedName: "keywords", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - skipToken: { - serializedName: "skipToken", - type: { - name: "String" - } - } - } - } -}; - -export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceSortingCriteria", - modelProperties: { - itemKey: { - serializedName: "itemKey", - type: { - name: "String" - } - }, - sortOrder: { - serializedName: "sortOrder", + } + } + } +}; + +export const DataConnectorsCheckRequirements: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "DataConnectorsCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -3110,131 +3267,22 @@ export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceMetricsList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricsList", - modelProperties: { - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetrics" - } - } - } - } - } - } -}; - -export const ThreatIntelligenceMetrics: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceMetrics", - modelProperties: { - properties: { - serializedName: "properties", - type: { - name: "Composite", - className: "ThreatIntelligenceMetric" - } - } - } - } -}; - -export const ThreatIntelligenceMetric: coreClient.CompositeMapper = { +export const DataConnectorRequirementsState: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceMetric", + className: "DataConnectorRequirementsState", modelProperties: { - lastUpdatedTimeUtc: { - serializedName: "lastUpdatedTimeUtc", + authorizationState: { + serializedName: "authorizationState", type: { name: "String" } }, - threatTypeMetrics: { - serializedName: "threatTypeMetrics", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } - } - }, - patternTypeMetrics: { - serializedName: "patternTypeMetrics", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } - } - }, - sourceMetrics: { - serializedName: "sourceMetrics", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } - } - } - } - } -}; - -export const ThreatIntelligenceMetricEntity: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity", - modelProperties: { - metricName: { - serializedName: "metricName", + licenseState: { + serializedName: "licenseState", type: { name: "String" } - }, - metricValue: { - serializedName: "metricValue", - type: { - name: "Number" - } - } - } - } -}; - -export const ThreatIntelligenceAppendTags: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceAppendTags", - modelProperties: { - threatIntelligenceTags: { - serializedName: "threatIntelligenceTags", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } } } } @@ -3336,64 +3384,6 @@ export const OperationDisplay: coreClient.CompositeMapper = { } }; -export const OfficeConsentList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeConsentList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, - type: { - name: "String" - } - }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "OfficeConsent" - } - } - } - } - } - } -}; - -export const EntityQueryTemplateList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityQueryTemplateList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, - type: { - name: "String" - } - }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQueryTemplate" - } - } - } - } - } - } -}; - export const AlertRuleTemplateDataSource: coreClient.CompositeMapper = { type: { name: "Composite", @@ -3496,17 +3486,6 @@ export const QueryBasedAlertRuleTemplateProperties: coreClient.CompositeMapper = name: "String" } }, - tactics: { - serializedName: "tactics", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, version: { serializedName: "version", type: { @@ -3624,7 +3603,238 @@ export const AlertDetailsOverride: coreClient.CompositeMapper = { } }; -export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreClient.CompositeMapper = { +export const FusionSourceSettings: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionSourceSettings", + modelProperties: { + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + }, + sourceName: { + serializedName: "sourceName", + required: true, + type: { + name: "String" + } + }, + sourceSubTypes: { + serializedName: "sourceSubTypes", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionSourceSubTypeSetting" + } + } + } + } + } + } +}; + +export const FusionSourceSubTypeSetting: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionSourceSubTypeSetting", + modelProperties: { + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + }, + sourceSubTypeName: { + serializedName: "sourceSubTypeName", + required: true, + type: { + name: "String" + } + }, + sourceSubTypeDisplayName: { + serializedName: "sourceSubTypeDisplayName", + readOnly: true, + type: { + name: "String" + } + }, + severityFilters: { + serializedName: "severityFilters", + type: { + name: "Composite", + className: "FusionSubTypeSeverityFilter" + } + } + } + } +}; + +export const FusionSubTypeSeverityFilter: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionSubTypeSeverityFilter", + modelProperties: { + isSupported: { + serializedName: "isSupported", + readOnly: true, + type: { + name: "Boolean" + } + }, + filters: { + serializedName: "filters", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionSubTypeSeverityFiltersItem" + } + } + } + } + } + } +}; + +export const FusionSubTypeSeverityFiltersItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionSubTypeSeverityFiltersItem", + modelProperties: { + severity: { + serializedName: "severity", + required: true, + type: { + name: "String" + } + }, + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + } + } + } +}; + +export const FusionScenarioExclusionPattern: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionScenarioExclusionPattern", + modelProperties: { + exclusionPattern: { + serializedName: "exclusionPattern", + required: true, + type: { + name: "String" + } + }, + dateAddedInUTC: { + serializedName: "dateAddedInUTC", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const FusionTemplateSourceSetting: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionTemplateSourceSetting", + modelProperties: { + sourceName: { + serializedName: "sourceName", + required: true, + type: { + name: "String" + } + }, + sourceSubTypes: { + serializedName: "sourceSubTypes", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionTemplateSourceSubType" + } + } + } + } + } + } +}; + +export const FusionTemplateSourceSubType: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionTemplateSourceSubType", + modelProperties: { + sourceSubTypeName: { + serializedName: "sourceSubTypeName", + required: true, + type: { + name: "String" + } + }, + sourceSubTypeDisplayName: { + serializedName: "sourceSubTypeDisplayName", + readOnly: true, + type: { + name: "String" + } + }, + severityFilter: { + serializedName: "severityFilter", + type: { + name: "Composite", + className: "FusionTemplateSubTypeSeverityFilter" + } + } + } + } +}; + +export const FusionTemplateSubTypeSeverityFilter: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionTemplateSubTypeSeverityFilter", + modelProperties: { + isSupported: { + serializedName: "isSupported", + required: true, + type: { + name: "Boolean" + } + }, + severityFilters: { + serializedName: "severityFilters", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreClient.CompositeMapper = { type: { name: "Composite", className: "MicrosoftSecurityIncidentCreationAlertRuleCommonProperties", @@ -3702,6 +3912,28 @@ export const QueryBasedAlertRuleProperties: coreClient.CompositeMapper = { name: "String" } }, + tactics: { + serializedName: "tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, displayName: { serializedName: "displayName", required: true, @@ -3743,17 +3975,6 @@ export const QueryBasedAlertRuleProperties: coreClient.CompositeMapper = { name: "String" } }, - tactics: { - serializedName: "tactics", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, incidentConfiguration: { serializedName: "incidentConfiguration", type: { @@ -3940,183 +4161,57 @@ export const EventGroupingSettings: coreClient.CompositeMapper = { } }; -export const AutomationRuleRunPlaybookActionConfiguration: coreClient.CompositeMapper = { +export const EntityQueryItemProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRuleRunPlaybookActionConfiguration", + className: "EntityQueryItemProperties", modelProperties: { - logicAppResourceId: { - serializedName: "logicAppResourceId", + dataTypes: { + serializedName: "dataTypes", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQueryItemPropertiesDataTypesItem" + } + } } }, - tenantId: { - serializedName: "tenantId", + inputEntityType: { + serializedName: "inputEntityType", type: { name: "String" } + }, + requiredInputFieldsSets: { + serializedName: "requiredInputFieldsSets", + type: { + name: "Sequence", + element: { + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + }, + entitiesFilter: { + serializedName: "entitiesFilter", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } } } } }; -export const AutomationRuleModifyPropertiesActionConfiguration: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AutomationRuleModifyPropertiesActionConfiguration", - modelProperties: { - classification: { - serializedName: "classification", - type: { - name: "String" - } - }, - classificationComment: { - serializedName: "classificationComment", - type: { - name: "String" - } - }, - classificationReason: { - serializedName: "classificationReason", - type: { - name: "String" - } - }, - labels: { - serializedName: "labels", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "IncidentLabel" - } - } - } - }, - owner: { - serializedName: "owner", - type: { - name: "Composite", - className: "IncidentOwnerInfo" - } - }, - severity: { - serializedName: "severity", - type: { - name: "String" - } - }, - status: { - serializedName: "status", - type: { - name: "String" - } - } - } - } -}; - -export const AutomationRulePropertyValuesConditionProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AutomationRulePropertyValuesConditionProperties", - modelProperties: { - propertyName: { - serializedName: "propertyName", - type: { - name: "String" - } - }, - operator: { - serializedName: "operator", - type: { - name: "String" - } - }, - propertyValues: { - serializedName: "propertyValues", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - } - } - } -}; - -export const ActivityEntityQueriesPropertiesQueryDefinitions: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ActivityEntityQueriesPropertiesQueryDefinitions", - modelProperties: { - query: { - serializedName: "query", - type: { - name: "String" - } - } - } - } -}; - -export const EntityQueryItemProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityQueryItemProperties", - modelProperties: { - dataTypes: { - serializedName: "dataTypes", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQueryItemPropertiesDataTypesItem" - } - } - } - }, - inputEntityType: { - serializedName: "inputEntityType", - type: { - name: "String" - } - }, - requiredInputFieldsSets: { - serializedName: "requiredInputFieldsSets", - type: { - name: "Sequence", - element: { - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - } - } - }, - entitiesFilter: { - serializedName: "entitiesFilter", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - } - } - } -}; - -export const EntityQueryItemPropertiesDataTypesItem: coreClient.CompositeMapper = { +export const EntityQueryItemPropertiesDataTypesItem: coreClient.CompositeMapper = { type: { name: "Composite", className: "EntityQueryItemPropertiesDataTypesItem", @@ -4312,6 +4407,57 @@ export const InsightQueryItemPropertiesReferenceTimeRange: coreClient.CompositeM } }; +export const ActivityEntityQueriesPropertiesQueryDefinitions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ActivityEntityQueriesPropertiesQueryDefinitions", + modelProperties: { + query: { + serializedName: "query", + type: { + name: "String" + } + } + } + } +}; + +export const ActivityEntityQueryTemplatePropertiesQueryDefinitions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ActivityEntityQueryTemplatePropertiesQueryDefinitions", + modelProperties: { + query: { + serializedName: "query", + type: { + name: "String" + } + }, + summarizeBy: { + serializedName: "summarizeBy", + type: { + name: "String" + } + } + } + } +}; + +export const DataTypeDefinitions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "DataTypeDefinitions", + modelProperties: { + dataType: { + serializedName: "dataType", + type: { + name: "String" + } + } + } + } +}; + export const Sku: coreClient.CompositeMapper = { type: { name: "Composite", @@ -4484,6 +4630,38 @@ export const Dynamics365DataConnectorDataTypes: coreClient.CompositeMapper = { } }; +export const Office365ProjectConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypes", + modelProperties: { + logs: { + serializedName: "logs", + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypesLogs" + } + } + } + } +}; + +export const OfficePowerBIConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypes", + modelProperties: { + logs: { + serializedName: "logs", + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypesLogs" + } + } + } + } +}; + export const OfficeDataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", @@ -5295,64 +5473,28 @@ export const CodelessConnectorPollingResponseProperties: coreClient.CompositeMap } }; -export const ActivityEntityQueryTemplatePropertiesQueryDefinitions: coreClient.CompositeMapper = { +export const ThreatIntelligence: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActivityEntityQueryTemplatePropertiesQueryDefinitions", + className: "ThreatIntelligence", modelProperties: { - query: { - serializedName: "query", + confidence: { + serializedName: "confidence", + readOnly: true, type: { - name: "String" + name: "Number" } }, - summarizeBy: { - serializedName: "summarizeBy", + providerName: { + serializedName: "providerName", + readOnly: true, type: { name: "String" } - } - } - } -}; - -export const DataTypeDefinitions: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "DataTypeDefinitions", - modelProperties: { - dataType: { - serializedName: "dataType", - type: { - name: "String" - } - } - } - } -}; - -export const ThreatIntelligence: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligence", - modelProperties: { - confidence: { - serializedName: "confidence", - readOnly: true, - type: { - name: "Number" - } - }, - providerName: { - serializedName: "providerName", - readOnly: true, - type: { - name: "String" - } - }, - reportLink: { - serializedName: "reportLink", - readOnly: true, + }, + reportLink: { + serializedName: "reportLink", + readOnly: true, type: { name: "String" } @@ -5502,20 +5644,21 @@ export const Entity: coreClient.CompositeMapper = { } }; -export const OfficeConsent: coreClient.CompositeMapper = { +export const EntityQueryTemplate: coreClient.CompositeMapper = { + serializedName: "EntityQueryTemplate", type: { name: "Composite", - className: "OfficeConsent", + className: "EntityQueryTemplate", + uberParent: "Resource", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, modelProperties: { ...Resource.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - }, - consentId: { - serializedName: "properties.consentId", + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -5524,21 +5667,20 @@ export const OfficeConsent: coreClient.CompositeMapper = { } }; -export const EntityQueryTemplate: coreClient.CompositeMapper = { - serializedName: "EntityQueryTemplate", +export const OfficeConsent: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityQueryTemplate", - uberParent: "Resource", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "OfficeConsent", modelProperties: { ...Resource.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + }, + consentId: { + serializedName: "properties.consentId", type: { name: "String" } @@ -5580,63 +5722,126 @@ export const ActionRequestProperties: coreClient.CompositeMapper = { } }; -export const AutomationRulePropertyValuesCondition: coreClient.CompositeMapper = { +export const PropertyConditionProperties: coreClient.CompositeMapper = { serializedName: "Property", type: { name: "Composite", - className: "AutomationRulePropertyValuesCondition", + className: "PropertyConditionProperties", uberParent: "AutomationRuleCondition", polymorphicDiscriminator: AutomationRuleCondition.type.polymorphicDiscriminator, modelProperties: { ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + propertyName: { + serializedName: "conditionProperties.propertyName", type: { - name: "Composite", - className: "AutomationRulePropertyValuesConditionProperties" + name: "String" + } + }, + operator: { + serializedName: "conditionProperties.operator", + type: { + name: "String" + } + }, + propertyValues: { + serializedName: "conditionProperties.propertyValues", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const AutomationRuleRunPlaybookAction: coreClient.CompositeMapper = { - serializedName: "RunPlaybook", +export const AutomationRuleModifyPropertiesAction: coreClient.CompositeMapper = { + serializedName: "ModifyProperties", type: { name: "Composite", - className: "AutomationRuleRunPlaybookAction", + className: "AutomationRuleModifyPropertiesAction", uberParent: "AutomationRuleAction", polymorphicDiscriminator: AutomationRuleAction.type.polymorphicDiscriminator, modelProperties: { ...AutomationRuleAction.type.modelProperties, - actionConfiguration: { - serializedName: "actionConfiguration", + severity: { + serializedName: "actionConfiguration.severity", + type: { + name: "String" + } + }, + status: { + serializedName: "actionConfiguration.status", + type: { + name: "String" + } + }, + classification: { + serializedName: "actionConfiguration.classification", + type: { + name: "String" + } + }, + classificationReason: { + serializedName: "actionConfiguration.classificationReason", + type: { + name: "String" + } + }, + classificationComment: { + serializedName: "actionConfiguration.classificationComment", + type: { + name: "String" + } + }, + owner: { + serializedName: "actionConfiguration.owner", type: { name: "Composite", - className: "AutomationRuleRunPlaybookActionConfiguration" + className: "IncidentOwnerInfo" + } + }, + labels: { + serializedName: "actionConfiguration.labels", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "IncidentLabel" + } + } } } } } }; -export const AutomationRuleModifyPropertiesAction: coreClient.CompositeMapper = { - serializedName: "ModifyProperties", +export const AutomationRuleRunPlaybookAction: coreClient.CompositeMapper = { + serializedName: "RunPlaybook", type: { name: "Composite", - className: "AutomationRuleModifyPropertiesAction", + className: "AutomationRuleRunPlaybookAction", uberParent: "AutomationRuleAction", polymorphicDiscriminator: AutomationRuleAction.type.polymorphicDiscriminator, modelProperties: { ...AutomationRuleAction.type.modelProperties, - actionConfiguration: { - serializedName: "actionConfiguration", + logicAppResourceId: { + serializedName: "actionConfiguration.logicAppResourceId", type: { - name: "Composite", - className: "AutomationRuleModifyPropertiesActionConfiguration" + name: "String" + } + }, + tenantId: { + serializedName: "actionConfiguration.tenantId", + type: { + name: "Uuid" } } } @@ -7588,317 +7793,49 @@ export const UrlEntityProperties: coreClient.CompositeMapper = { } }; -export const AADCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureActiveDirectory", +export const ThreatIntelligenceIndicatorModelForRequestBody: coreClient.CompositeMapper = { + serializedName: "indicator", type: { name: "Composite", - className: "AADCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "ThreatIntelligenceIndicatorModelForRequestBody", modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + ...ThreatIntelligenceResourceKind.type.modelProperties, + etag: { + serializedName: "etag", type: { name: "String" } - } - } - } -}; - -export const AatpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureAdvancedThreatProtection", - type: { - name: "Composite", - className: "AatpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + additionalData: { + serializedName: "properties.additionalData", + readOnly: true, + type: { + name: "Dictionary", + value: { + type: { name: "Dictionary", value: { type: { name: "any" } } } + } + } + }, + friendlyName: { + serializedName: "properties.friendlyName", + readOnly: true, type: { name: "String" } - } - } - } -}; - -export const ASCCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureSecurityCenter", - type: { - name: "Composite", - className: "ASCCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - subscriptionId: { - serializedName: "properties.subscriptionId", - type: { - name: "String" - } - } - } - } -}; - -export const AwsCloudTrailCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AmazonWebServicesCloudTrail", - type: { - name: "Composite", - className: "AwsCloudTrailCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties - } - } -}; - -export const AwsS3CheckRequirements: coreClient.CompositeMapper = { - serializedName: "AmazonWebServicesS3", - type: { - name: "Composite", - className: "AwsS3CheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties - } - } -}; - -export const Dynamics365CheckRequirements: coreClient.CompositeMapper = { - serializedName: "Dynamics365", - type: { - name: "Composite", - className: "Dynamics365CheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const McasCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftCloudAppSecurity", - type: { - name: "Composite", - className: "McasCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const MdatpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftDefenderAdvancedThreatProtection", - type: { - name: "Composite", - className: "MdatpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const MstiCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftThreatIntelligence", - type: { - name: "Composite", - className: "MstiCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const MtpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftThreatProtection", - type: { - name: "Composite", - className: "MtpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const OfficeATPCheckRequirements: coreClient.CompositeMapper = { - serializedName: "OfficeATP", - type: { - name: "Composite", - className: "OfficeATPCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const OfficeIRMCheckRequirements: coreClient.CompositeMapper = { - serializedName: "OfficeIRM", - type: { - name: "Composite", - className: "OfficeIRMCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const TICheckRequirements: coreClient.CompositeMapper = { - serializedName: "ThreatIntelligence", - type: { - name: "Composite", - className: "TICheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const TiTaxiiCheckRequirements: coreClient.CompositeMapper = { - serializedName: "ThreatIntelligenceTaxii", - type: { - name: "Composite", - className: "TiTaxiiCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } - } - } -}; - -export const ThreatIntelligenceIndicatorModelForRequestBody: coreClient.CompositeMapper = { - serializedName: "indicator", - type: { - name: "Composite", - className: "ThreatIntelligenceIndicatorModelForRequestBody", - modelProperties: { - ...ThreatIntelligenceResourceKind.type.modelProperties, - etag: { - serializedName: "etag", - type: { - name: "String" - } - }, - additionalData: { - serializedName: "properties.additionalData", - readOnly: true, - type: { - name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } - } - }, - friendlyName: { - serializedName: "properties.friendlyName", - readOnly: true, - type: { - name: "String" - } - }, - threatIntelligenceTags: { - serializedName: "properties.threatIntelligenceTags", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - lastUpdatedTimeUtc: { - serializedName: "properties.lastUpdatedTimeUtc", + }, + threatIntelligenceTags: { + serializedName: "properties.threatIntelligenceTags", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + lastUpdatedTimeUtc: { + serializedName: "properties.lastUpdatedTimeUtc", type: { name: "String" } @@ -8123,47 +8060,320 @@ export const ThreatIntelligenceInformation: coreClient.CompositeMapper = { } }; -export const MLBehaviorAnalyticsAlertRuleTemplateProperties: coreClient.CompositeMapper = { +export const AADCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureActiveDirectory", + type: { + name: "Composite", + className: "AADCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const AatpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureAdvancedThreatProtection", + type: { + name: "Composite", + className: "AatpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const ASCCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureSecurityCenter", + type: { + name: "Composite", + className: "ASCCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + subscriptionId: { + serializedName: "properties.subscriptionId", + type: { + name: "String" + } + } + } + } +}; + +export const AwsCloudTrailCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AmazonWebServicesCloudTrail", + type: { + name: "Composite", + className: "AwsCloudTrailCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties + } + } +}; + +export const AwsS3CheckRequirements: coreClient.CompositeMapper = { + serializedName: "AmazonWebServicesS3", + type: { + name: "Composite", + className: "AwsS3CheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties + } + } +}; + +export const Dynamics365CheckRequirements: coreClient.CompositeMapper = { + serializedName: "Dynamics365", + type: { + name: "Composite", + className: "Dynamics365CheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const McasCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftCloudAppSecurity", + type: { + name: "Composite", + className: "McasCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MdatpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftDefenderAdvancedThreatProtection", + type: { + name: "Composite", + className: "MdatpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MstiCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftThreatIntelligence", + type: { + name: "Composite", + className: "MstiCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MtpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftThreatProtection", + type: { + name: "Composite", + className: "MtpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficeATPCheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficeATP", + type: { + name: "Composite", + className: "OfficeATPCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficeIRMCheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficeIRM", + type: { + name: "Composite", + className: "OfficeIRMCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const Office365ProjectCheckRequirements: coreClient.CompositeMapper = { + serializedName: "Office365Project", + type: { + name: "Composite", + className: "Office365ProjectCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficePowerBICheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficePowerBI", + type: { + name: "Composite", + className: "OfficePowerBICheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const TICheckRequirements: coreClient.CompositeMapper = { + serializedName: "ThreatIntelligence", + type: { + name: "Composite", + className: "TICheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const TiTaxiiCheckRequirements: coreClient.CompositeMapper = { + serializedName: "ThreatIntelligenceTaxii", type: { name: "Composite", - className: "MLBehaviorAnalyticsAlertRuleTemplateProperties", + className: "TiTaxiiCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, - severity: { - serializedName: "severity", - required: true, + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", type: { name: "String" } - }, - tactics: { - serializedName: "tactics", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } } } } }; -export const FusionAlertRuleTemplateProperties: coreClient.CompositeMapper = { +export const AlertRuleTemplateWithMitreProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FusionAlertRuleTemplateProperties", + className: "AlertRuleTemplateWithMitreProperties", modelProperties: { ...AlertRuleTemplatePropertiesBase.type.modelProperties, - severity: { - serializedName: "severity", - required: true, - type: { - name: "String" - } - }, tactics: { serializedName: "tactics", type: { @@ -8174,26 +8384,9 @@ export const FusionAlertRuleTemplateProperties: coreClient.CompositeMapper = { } } } - } - } - } -}; - -export const ThreatIntelligenceAlertRuleTemplateProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ThreatIntelligenceAlertRuleTemplateProperties", - modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, - severity: { - serializedName: "severity", - required: true, - type: { - name: "String" - } }, - tactics: { - serializedName: "tactics", + techniques: { + serializedName: "techniques", type: { name: "Sequence", element: { @@ -8224,7 +8417,7 @@ export const ScheduledAlertRuleTemplateProperties: coreClient.CompositeMapper = name: "Composite", className: "ScheduledAlertRuleTemplateProperties", modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, ...QueryBasedAlertRuleTemplateProperties.type.modelProperties, ...ScheduledAlertRuleCommonProperties.type.modelProperties } @@ -8236,7 +8429,7 @@ export const NrtAlertRuleTemplateProperties: coreClient.CompositeMapper = { name: "Composite", className: "NrtAlertRuleTemplateProperties", modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, ...QueryBasedAlertRuleTemplateProperties.type.modelProperties } } @@ -8461,6 +8654,26 @@ export const OfficeIRMCheckRequirementsProperties: coreClient.CompositeMapper = } }; +export const Office365ProjectCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const OfficePowerBICheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBICheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + export const TICheckRequirementsProperties: coreClient.CompositeMapper = { type: { name: "Composite", @@ -8582,6 +8795,40 @@ export const OfficeATPDataConnectorProperties: coreClient.CompositeMapper = { } }; +export const Office365ProjectDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypes" + } + } + } + } +}; + +export const OfficePowerBIDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypes" + } + } + } + } +}; + export const OfficeIRMDataConnectorProperties: coreClient.CompositeMapper = { type: { name: "Composite", @@ -8820,6 +9067,26 @@ export const Dynamics365DataConnectorDataTypesDynamics365CdsActivities: coreClie } }; +export const Office365ProjectConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const OfficePowerBIConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + export const OfficeDataConnectorDataTypesExchange: coreClient.CompositeMapper = { type: { name: "Composite", @@ -9025,12 +9292,14 @@ export const AutomationRule: coreClient.CompositeMapper = { ...ResourceWithEtag.type.modelProperties, displayName: { serializedName: "properties.displayName", + required: true, type: { name: "String" } }, order: { serializedName: "properties.order", + required: true, type: { name: "Number" } @@ -9044,6 +9313,7 @@ export const AutomationRule: coreClient.CompositeMapper = { }, actions: { serializedName: "properties.actions", + required: true, type: { name: "Sequence", element: { @@ -9054,29 +9324,29 @@ export const AutomationRule: coreClient.CompositeMapper = { } } }, - createdTimeUtc: { - serializedName: "properties.createdTimeUtc", + lastModifiedTimeUtc: { + serializedName: "properties.lastModifiedTimeUtc", readOnly: true, type: { name: "DateTime" } }, - lastModifiedTimeUtc: { - serializedName: "properties.lastModifiedTimeUtc", + createdTimeUtc: { + serializedName: "properties.createdTimeUtc", readOnly: true, type: { name: "DateTime" } }, - createdBy: { - serializedName: "properties.createdBy", + lastModifiedBy: { + serializedName: "properties.lastModifiedBy", type: { name: "Composite", className: "ClientInfo" } }, - lastModifiedBy: { - serializedName: "properties.lastModifiedBy", + createdBy: { + serializedName: "properties.createdBy", type: { name: "Composite", className: "ClientInfo" @@ -9177,6 +9447,40 @@ export const Bookmark: coreClient.CompositeMapper = { name: "Composite", className: "IncidentInfo" } + }, + entityMappings: { + serializedName: "properties.entityMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "BookmarkEntityMappings" + } + } + } + }, + tactics: { + serializedName: "properties.tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } @@ -10025,14 +10329,19 @@ export const MLBehaviorAnalyticsAlertRuleTemplate: coreClient.CompositeMapper = name: "String" } }, - severity: { - serializedName: "properties.severity", + tactics: { + serializedName: "properties.tactics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - tactics: { - serializedName: "properties.tactics", + techniques: { + serializedName: "properties.techniques", type: { name: "Sequence", element: { @@ -10041,6 +10350,12 @@ export const MLBehaviorAnalyticsAlertRuleTemplate: coreClient.CompositeMapper = } } } + }, + severity: { + serializedName: "properties.severity", + type: { + name: "String" + } } } } @@ -10105,19 +10420,42 @@ export const FusionAlertRuleTemplate: coreClient.CompositeMapper = { name: "String" } }, + tactics: { + serializedName: "properties.tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, severity: { serializedName: "properties.severity", type: { name: "String" } }, - tactics: { - serializedName: "properties.tactics", + sourceSettings: { + serializedName: "properties.sourceSettings", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "FusionTemplateSourceSetting" } } } @@ -10185,14 +10523,19 @@ export const ThreatIntelligenceAlertRuleTemplate: coreClient.CompositeMapper = { name: "String" } }, - severity: { - serializedName: "properties.severity", + tactics: { + serializedName: "properties.tactics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - tactics: { - serializedName: "properties.tactics", + techniques: { + serializedName: "properties.techniques", type: { name: "Sequence", element: { @@ -10201,6 +10544,12 @@ export const ThreatIntelligenceAlertRuleTemplate: coreClient.CompositeMapper = { } } } + }, + severity: { + serializedName: "properties.severity", + type: { + name: "String" + } } } } @@ -10367,27 +10716,38 @@ export const ScheduledAlertRuleTemplate: coreClient.CompositeMapper = { name: "String" } }, - query: { - serializedName: "properties.query", + tactics: { + serializedName: "properties.tactics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - severity: { - serializedName: "properties.severity", + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + query: { + serializedName: "properties.query", type: { name: "String" } }, - tactics: { - serializedName: "properties.tactics", + severity: { + serializedName: "properties.severity", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, version: { @@ -10517,20 +10877,19 @@ export const NrtAlertRuleTemplate: coreClient.CompositeMapper = { name: "String" } }, - query: { - serializedName: "properties.query", - type: { - name: "String" - } - }, - severity: { - serializedName: "properties.severity", + tactics: { + serializedName: "properties.tactics", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - tactics: { - serializedName: "properties.tactics", + techniques: { + serializedName: "properties.techniques", type: { name: "Sequence", element: { @@ -10540,6 +10899,18 @@ export const NrtAlertRuleTemplate: coreClient.CompositeMapper = { } } }, + query: { + serializedName: "properties.query", + type: { + name: "String" + } + }, + severity: { + serializedName: "properties.severity", + type: { + name: "String" + } + }, version: { serializedName: "properties.version", type: { @@ -12817,6 +13188,70 @@ export const ThreatIntelligenceIndicatorModel: coreClient.CompositeMapper = { } }; +export const MLBehaviorAnalyticsAlertRuleTemplateProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MLBehaviorAnalyticsAlertRuleTemplateProperties", + modelProperties: { + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, + severity: { + serializedName: "severity", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const FusionAlertRuleTemplateProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionAlertRuleTemplateProperties", + modelProperties: { + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, + severity: { + serializedName: "severity", + required: true, + type: { + name: "String" + } + }, + sourceSettings: { + serializedName: "sourceSettings", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionTemplateSourceSetting" + } + } + } + } + } + } +}; + +export const ThreatIntelligenceAlertRuleTemplateProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceAlertRuleTemplateProperties", + modelProperties: { + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, + severity: { + serializedName: "severity", + required: true, + type: { + name: "String" + } + } + } + } +}; + export const PermissionsCustomsItem: coreClient.CompositeMapper = { type: { name: "Composite", @@ -12887,6 +13322,18 @@ export const MLBehaviorAnalyticsAlertRule: coreClient.CompositeMapper = { } } } + }, + techniques: { + serializedName: "properties.techniques", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } @@ -12927,6 +13374,30 @@ export const FusionAlertRule: coreClient.CompositeMapper = { name: "Boolean" } }, + sourceSettings: { + serializedName: "properties.sourceSettings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionSourceSettings" + } + } + } + }, + scenarioExclusionPatterns: { + serializedName: "properties.scenarioExclusionPatterns", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionScenarioExclusionPattern" + } + } + } + }, lastModifiedUtc: { serializedName: "properties.lastModifiedUtc", readOnly: true, @@ -12952,6 +13423,18 @@ export const FusionAlertRule: coreClient.CompositeMapper = { } } } + }, + techniques: { + serializedName: "properties.techniques", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } @@ -13017,6 +13500,18 @@ export const ThreatIntelligenceAlertRule: coreClient.CompositeMapper = { } } } + }, + techniques: { + serializedName: "properties.techniques", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } @@ -13170,6 +13665,28 @@ export const ScheduledAlertRule: coreClient.CompositeMapper = { name: "String" } }, + tactics: { + serializedName: "properties.tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, displayName: { serializedName: "properties.displayName", type: { @@ -13207,17 +13724,6 @@ export const ScheduledAlertRule: coreClient.CompositeMapper = { name: "String" } }, - tactics: { - serializedName: "properties.tactics", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, incidentConfiguration: { serializedName: "properties.incidentConfiguration", type: { @@ -13288,6 +13794,28 @@ export const NrtAlertRule: coreClient.CompositeMapper = { name: "String" } }, + tactics: { + serializedName: "properties.tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, displayName: { serializedName: "properties.displayName", type: { @@ -13325,17 +13853,6 @@ export const NrtAlertRule: coreClient.CompositeMapper = { name: "String" } }, - tactics: { - serializedName: "properties.tactics", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, incidentConfiguration: { serializedName: "properties.incidentConfiguration", type: { @@ -13988,6 +14505,58 @@ export const OfficeATPDataConnector: coreClient.CompositeMapper = { } }; +export const Office365ProjectDataConnector: coreClient.CompositeMapper = { + serializedName: "Office365Project", + type: { + name: "Composite", + className: "Office365ProjectDataConnector", + uberParent: "Resource", + polymorphicDiscriminator: Resource.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnector.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + }, + dataTypes: { + serializedName: "properties.dataTypes", + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypes" + } + } + } + } +}; + +export const OfficePowerBIDataConnector: coreClient.CompositeMapper = { + serializedName: "OfficePowerBI", + type: { + name: "Composite", + className: "OfficePowerBIDataConnector", + uberParent: "Resource", + polymorphicDiscriminator: Resource.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnector.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + }, + dataTypes: { + serializedName: "properties.dataTypes", + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypes" + } + } + } + } +}; + export const OfficeIRMDataConnector: coreClient.CompositeMapper = { serializedName: "OfficeIRM", type: { @@ -14231,13 +14800,14 @@ export let discriminators = { "Resource.AlertRuleTemplate": AlertRuleTemplate, "Resource.Entity": Entity, "Resource.EntityQueryTemplate": EntityQueryTemplate, - "AutomationRuleCondition.Property": AutomationRulePropertyValuesCondition, - "AutomationRuleAction.RunPlaybook": AutomationRuleRunPlaybookAction, + "AutomationRuleCondition.Property": PropertyConditionProperties, "AutomationRuleAction.ModifyProperties": AutomationRuleModifyPropertiesAction, + "AutomationRuleAction.RunPlaybook": AutomationRuleRunPlaybookAction, "EntityTimelineItem.Activity": ActivityTimelineItem, "EntityTimelineItem.Bookmark": BookmarkTimelineItem, "EntityTimelineItem.SecurityAlert": SecurityAlertTimelineItem, "EntityQueryItem.Insight": InsightQueryItem, + "ThreatIntelligenceResourceKind.ThreatIntelligenceInformation": ThreatIntelligenceInformation, "DataConnectorsCheckRequirements.AzureActiveDirectory": AADCheckRequirements, "DataConnectorsCheckRequirements.AzureAdvancedThreatProtection": AatpCheckRequirements, "DataConnectorsCheckRequirements.AzureSecurityCenter": ASCCheckRequirements, @@ -14250,9 +14820,10 @@ export let discriminators = { "DataConnectorsCheckRequirements.MicrosoftThreatProtection": MtpCheckRequirements, "DataConnectorsCheckRequirements.OfficeATP": OfficeATPCheckRequirements, "DataConnectorsCheckRequirements.OfficeIRM": OfficeIRMCheckRequirements, + "DataConnectorsCheckRequirements.Office365Project": Office365ProjectCheckRequirements, + "DataConnectorsCheckRequirements.OfficePowerBI": OfficePowerBICheckRequirements, "DataConnectorsCheckRequirements.ThreatIntelligence": TICheckRequirements, "DataConnectorsCheckRequirements.ThreatIntelligenceTaxii": TiTaxiiCheckRequirements, - "ThreatIntelligenceResourceKind.ThreatIntelligenceInformation": ThreatIntelligenceInformation, "Resource.AlertRule": AlertRule, "Resource.EntityQuery": EntityQuery, "Resource.CustomEntityQuery": CustomEntityQuery, @@ -14302,6 +14873,8 @@ export let discriminators = { "Resource.MicrosoftCloudAppSecurity": McasDataConnector, "Resource.Dynamics365": Dynamics365DataConnector, "Resource.OfficeATP": OfficeATPDataConnector, + "Resource.Office365Project": Office365ProjectDataConnector, + "Resource.OfficePowerBI": OfficePowerBIDataConnector, "Resource.OfficeIRM": OfficeIRMDataConnector, "Resource.MicrosoftDefenderAdvancedThreatProtection": MdatpDataConnector, "Resource.Office365": OfficeDataConnector, diff --git a/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts b/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts index f9957be1f9cd..79e8d58e1239 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts @@ -15,13 +15,14 @@ import { AlertRule as AlertRuleMapper, ActionRequest as ActionRequestMapper, AutomationRule as AutomationRuleMapper, + ManualTriggerRequestBody as ManualTriggerRequestBodyMapper, Bookmark as BookmarkMapper, Relation as RelationMapper, BookmarkExpandParameters as BookmarkExpandParametersMapper, - CustomEntityQuery as CustomEntityQueryMapper, EntityExpandParameters as EntityExpandParametersMapper, EntityGetInsightsParameters as EntityGetInsightsParametersMapper, EntityTimelineParameters as EntityTimelineParametersMapper, + CustomEntityQuery as CustomEntityQueryMapper, Incident as IncidentMapper, TeamProperties as TeamPropertiesMapper, IncidentComment as IncidentCommentMapper, @@ -30,14 +31,14 @@ import { SentinelOnboardingState as SentinelOnboardingStateMapper, Settings as SettingsMapper, SourceControl as SourceControlMapper, + ThreatIntelligenceIndicatorModelForRequestBody as ThreatIntelligenceIndicatorModelForRequestBodyMapper, + ThreatIntelligenceFilteringCriteria as ThreatIntelligenceFilteringCriteriaMapper, + ThreatIntelligenceAppendTags as ThreatIntelligenceAppendTagsMapper, Watchlist as WatchlistMapper, WatchlistItem as WatchlistItemMapper, DataConnector as DataConnectorMapper, DataConnectorConnectBody as DataConnectorConnectBodyMapper, - DataConnectorsCheckRequirements as DataConnectorsCheckRequirementsMapper, - ThreatIntelligenceIndicatorModelForRequestBody as ThreatIntelligenceIndicatorModelForRequestBodyMapper, - ThreatIntelligenceFilteringCriteria as ThreatIntelligenceFilteringCriteriaMapper, - ThreatIntelligenceAppendTags as ThreatIntelligenceAppendTagsMapper + DataConnectorsCheckRequirements as DataConnectorsCheckRequirementsMapper } from "../models/mappers"; export const accept: OperationParameter = { @@ -67,7 +68,7 @@ export const $host: OperationURLParameter = { export const apiVersion: OperationQueryParameter = { parameterPath: "apiVersion", mapper: { - defaultValue: "2021-09-01-preview", + defaultValue: "2021-10-01-preview", isConstant: true, serializedName: "api-version", type: { @@ -198,11 +199,27 @@ export const automationRuleId: OperationURLParameter = { } }; -export const automationRule: OperationParameter = { - parameterPath: "automationRule", +export const automationRuleToUpsert: OperationParameter = { + parameterPath: ["options", "automationRuleToUpsert"], mapper: AutomationRuleMapper }; +export const requestBody: OperationParameter = { + parameterPath: ["options", "requestBody"], + mapper: ManualTriggerRequestBodyMapper +}; + +export const incidentIdentifier: OperationURLParameter = { + parameterPath: "incidentIdentifier", + mapper: { + serializedName: "incidentIdentifier", + required: true, + type: { + name: "String" + } + } +}; + export const bookmarkId: OperationURLParameter = { parameterPath: "bookmarkId", mapper: { @@ -302,7 +319,44 @@ export const domain: OperationQueryParameter = { } }; +export const entityId: OperationURLParameter = { + parameterPath: "entityId", + mapper: { + serializedName: "entityId", + required: true, + type: { + name: "String" + } + } +}; + +export const parameters1: OperationParameter = { + parameterPath: "parameters", + mapper: EntityExpandParametersMapper +}; + export const kind: OperationQueryParameter = { + parameterPath: "kind", + mapper: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } +}; + +export const parameters2: OperationParameter = { + parameterPath: "parameters", + mapper: EntityGetInsightsParametersMapper +}; + +export const parameters3: OperationParameter = { + parameterPath: "parameters", + mapper: EntityTimelineParametersMapper +}; + +export const kind1: OperationQueryParameter = { parameterPath: ["options", "kind"], mapper: { serializedName: "kind", @@ -328,26 +382,22 @@ export const entityQuery: OperationParameter = { mapper: CustomEntityQueryMapper }; -export const entityId: OperationURLParameter = { - parameterPath: "entityId", +export const kind2: OperationQueryParameter = { + parameterPath: ["options", "kind"], mapper: { - serializedName: "entityId", - required: true, + defaultValue: "Activity", + isConstant: true, + serializedName: "kind", type: { name: "String" } } }; -export const parameters1: OperationParameter = { - parameterPath: "parameters", - mapper: EntityExpandParametersMapper -}; - -export const kind1: OperationQueryParameter = { - parameterPath: "kind", +export const entityQueryTemplateId: OperationURLParameter = { + parameterPath: "entityQueryTemplateId", mapper: { - serializedName: "kind", + serializedName: "entityQueryTemplateId", required: true, type: { name: "String" @@ -355,16 +405,6 @@ export const kind1: OperationQueryParameter = { } }; -export const parameters2: OperationParameter = { - parameterPath: "parameters", - mapper: EntityGetInsightsParametersMapper -}; - -export const parameters3: OperationParameter = { - parameterPath: "parameters", - mapper: EntityTimelineParametersMapper -}; - export const incidentId: OperationURLParameter = { parameterPath: "incidentId", mapper: { @@ -433,6 +473,17 @@ export const metadataPatch: OperationParameter = { mapper: MetadataPatchMapper }; +export const consentId: OperationURLParameter = { + parameterPath: "consentId", + mapper: { + serializedName: "consentId", + required: true, + type: { + name: "String" + } + } +}; + export const sentinelOnboardingStateName: OperationURLParameter = { parameterPath: "sentinelOnboardingStateName", mapper: { @@ -492,6 +543,37 @@ export const sourceControl: OperationParameter = { mapper: SourceControlMapper }; +export const threatIntelligenceProperties: OperationParameter = { + parameterPath: "threatIntelligenceProperties", + mapper: ThreatIntelligenceIndicatorModelForRequestBodyMapper +}; + +export const name: OperationURLParameter = { + parameterPath: "name", + mapper: { + serializedName: "name", + required: true, + type: { + name: "String" + } + } +}; + +export const threatIntelligenceFilteringCriteria: OperationParameter = { + parameterPath: "threatIntelligenceFilteringCriteria", + mapper: ThreatIntelligenceFilteringCriteriaMapper +}; + +export const threatIntelligenceAppendTags: OperationParameter = { + parameterPath: "threatIntelligenceAppendTags", + mapper: ThreatIntelligenceAppendTagsMapper +}; + +export const threatIntelligenceReplaceTags: OperationParameter = { + parameterPath: "threatIntelligenceReplaceTags", + mapper: ThreatIntelligenceIndicatorModelForRequestBodyMapper +}; + export const watchlistAlias: OperationURLParameter = { parameterPath: "watchlistAlias", mapper: { @@ -549,68 +631,3 @@ export const dataConnectorsCheckRequirements: OperationParameter = { parameterPath: "dataConnectorsCheckRequirements", mapper: DataConnectorsCheckRequirementsMapper }; - -export const threatIntelligenceProperties: OperationParameter = { - parameterPath: "threatIntelligenceProperties", - mapper: ThreatIntelligenceIndicatorModelForRequestBodyMapper -}; - -export const name: OperationURLParameter = { - parameterPath: "name", - mapper: { - serializedName: "name", - required: true, - type: { - name: "String" - } - } -}; - -export const threatIntelligenceFilteringCriteria: OperationParameter = { - parameterPath: "threatIntelligenceFilteringCriteria", - mapper: ThreatIntelligenceFilteringCriteriaMapper -}; - -export const threatIntelligenceAppendTags: OperationParameter = { - parameterPath: "threatIntelligenceAppendTags", - mapper: ThreatIntelligenceAppendTagsMapper -}; - -export const threatIntelligenceReplaceTags: OperationParameter = { - parameterPath: "threatIntelligenceReplaceTags", - mapper: ThreatIntelligenceIndicatorModelForRequestBodyMapper -}; - -export const consentId: OperationURLParameter = { - parameterPath: "consentId", - mapper: { - serializedName: "consentId", - required: true, - type: { - name: "String" - } - } -}; - -export const kind2: OperationQueryParameter = { - parameterPath: ["options", "kind"], - mapper: { - defaultValue: "Activity", - isConstant: true, - serializedName: "kind", - type: { - name: "String" - } - } -}; - -export const entityQueryTemplateId: OperationURLParameter = { - parameterPath: "entityQueryTemplateId", - mapper: { - serializedName: "entityQueryTemplateId", - required: true, - type: { - name: "String" - } - } -}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/automationRules.ts b/sdk/securityinsight/arm-securityinsight/src/operations/automationRules.ts index 55f54bf28e69..8085591446ce 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/automationRules.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/automationRules.ts @@ -16,12 +16,15 @@ import { AutomationRule, AutomationRulesListNextOptionalParams, AutomationRulesListOptionalParams, - AutomationRulesListResponse, AutomationRulesGetOptionalParams, AutomationRulesGetResponse, AutomationRulesCreateOrUpdateOptionalParams, AutomationRulesCreateOrUpdateResponse, AutomationRulesDeleteOptionalParams, + AutomationRulesDeleteResponse, + AutomationRulesListResponse, + AutomationRulesManualTriggerPlaybookOptionalParams, + AutomationRulesManualTriggerPlaybookResponse, AutomationRulesListNextResponse } from "../models"; @@ -97,23 +100,6 @@ export class AutomationRulesImpl implements AutomationRules { } } - /** - * Gets all automation rules. - * @param resourceGroupName The name of the resource group. The name is case insensitive. - * @param workspaceName The name of the workspace. - * @param options The options parameters. - */ - private _list( - resourceGroupName: string, - workspaceName: string, - options?: AutomationRulesListOptionalParams - ): Promise { - return this.client.sendOperationRequest( - { resourceGroupName, workspaceName, options }, - listOperationSpec - ); - } - /** * Gets the automation rule. * @param resourceGroupName The name of the resource group. The name is case insensitive. @@ -138,24 +124,16 @@ export class AutomationRulesImpl implements AutomationRules { * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param automationRuleId Automation rule ID - * @param automationRule The automation rule * @param options The options parameters. */ createOrUpdate( resourceGroupName: string, workspaceName: string, automationRuleId: string, - automationRule: AutomationRule, options?: AutomationRulesCreateOrUpdateOptionalParams ): Promise { return this.client.sendOperationRequest( - { - resourceGroupName, - workspaceName, - automationRuleId, - automationRule, - options - }, + { resourceGroupName, workspaceName, automationRuleId, options }, createOrUpdateOperationSpec ); } @@ -172,13 +150,49 @@ export class AutomationRulesImpl implements AutomationRules { workspaceName: string, automationRuleId: string, options?: AutomationRulesDeleteOptionalParams - ): Promise { + ): Promise { return this.client.sendOperationRequest( { resourceGroupName, workspaceName, automationRuleId, options }, deleteOperationSpec ); } + /** + * Gets all automation rules. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: AutomationRulesListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Triggers playbook on a specific incident + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentIdentifier + * @param options The options parameters. + */ + manualTriggerPlaybook( + resourceGroupName: string, + workspaceName: string, + incidentIdentifier: string, + options?: AutomationRulesManualTriggerPlaybookOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, incidentIdentifier, options }, + manualTriggerPlaybookOperationSpec + ); + } + /** * ListNext * @param resourceGroupName The name of the resource group. The name is case insensitive. @@ -201,13 +215,13 @@ export class AutomationRulesImpl implements AutomationRules { // Operation Specifications const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); -const listOperationSpec: coreClient.OperationSpec = { +const getOperationSpec: coreClient.OperationSpec = { path: - "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules", + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules/{automationRuleId}", httpMethod: "GET", responses: { 200: { - bodyMapper: Mappers.AutomationRulesList + bodyMapper: Mappers.AutomationRule }, default: { bodyMapper: Mappers.CloudError @@ -218,23 +232,28 @@ const listOperationSpec: coreClient.OperationSpec = { Parameters.$host, Parameters.subscriptionId, Parameters.resourceGroupName, - Parameters.workspaceName + Parameters.workspaceName, + Parameters.automationRuleId ], headerParameters: [Parameters.accept], serializer }; -const getOperationSpec: coreClient.OperationSpec = { +const createOrUpdateOperationSpec: coreClient.OperationSpec = { path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules/{automationRuleId}", - httpMethod: "GET", + httpMethod: "PUT", responses: { 200: { bodyMapper: Mappers.AutomationRule }, + 201: { + bodyMapper: Mappers.AutomationRule + }, default: { bodyMapper: Mappers.CloudError } }, + requestBody: Parameters.automationRuleToUpsert, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, @@ -243,25 +262,29 @@ const getOperationSpec: coreClient.OperationSpec = { Parameters.workspaceName, Parameters.automationRuleId ], - headerParameters: [Parameters.accept], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", serializer }; -const createOrUpdateOperationSpec: coreClient.OperationSpec = { +const deleteOperationSpec: coreClient.OperationSpec = { path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules/{automationRuleId}", - httpMethod: "PUT", + httpMethod: "DELETE", responses: { 200: { - bodyMapper: Mappers.AutomationRule + bodyMapper: { + type: { name: "Dictionary", value: { type: { name: "any" } } } + } }, - 201: { - bodyMapper: Mappers.AutomationRule + 204: { + bodyMapper: { + type: { name: "Dictionary", value: { type: { name: "any" } } } + } }, default: { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.automationRule, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, @@ -270,17 +293,17 @@ const createOrUpdateOperationSpec: coreClient.OperationSpec = { Parameters.workspaceName, Parameters.automationRuleId ], - headerParameters: [Parameters.accept, Parameters.contentType], - mediaType: "json", + headerParameters: [Parameters.accept], serializer }; -const deleteOperationSpec: coreClient.OperationSpec = { +const listOperationSpec: coreClient.OperationSpec = { path: - "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules/{automationRuleId}", - httpMethod: "DELETE", + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/automationRules", + httpMethod: "GET", responses: { - 200: {}, - 204: {}, + 200: { + bodyMapper: Mappers.AutomationRulesList + }, default: { bodyMapper: Mappers.CloudError } @@ -290,12 +313,38 @@ const deleteOperationSpec: coreClient.OperationSpec = { Parameters.$host, Parameters.subscriptionId, Parameters.resourceGroupName, - Parameters.workspaceName, - Parameters.automationRuleId + Parameters.workspaceName ], headerParameters: [Parameters.accept], serializer }; +const manualTriggerPlaybookOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentIdentifier}/runPlaybook", + httpMethod: "POST", + responses: { + 204: { + bodyMapper: { + type: { name: "Dictionary", value: { type: { name: "any" } } } + } + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.requestBody, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.incidentIdentifier + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; const listNextOperationSpec: coreClient.OperationSpec = { path: "{nextLink}", httpMethod: "GET", diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectors.ts b/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectors.ts index 82199b6e0cb2..ff60c1cc995f 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectors.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectors.ts @@ -352,7 +352,7 @@ const connectOperationSpec: coreClient.OperationSpec = { responses: { 200: {}, default: { - bodyMapper: Mappers.ErrorResponse + bodyMapper: Mappers.CloudError } }, requestBody: Parameters.connectBody, @@ -375,7 +375,7 @@ const disconnectOperationSpec: coreClient.OperationSpec = { responses: { 200: {}, default: { - bodyMapper: Mappers.ErrorResponse + bodyMapper: Mappers.CloudError } }, queryParameters: [Parameters.apiVersion], diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts b/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts index c29d5caa98b8..3f01a3174daa 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts @@ -306,7 +306,7 @@ const queriesOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - queryParameters: [Parameters.apiVersion, Parameters.kind1], + queryParameters: [Parameters.apiVersion, Parameters.kind], urlParameters: [ Parameters.$host, Parameters.subscriptionId, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/entityQueries.ts b/sdk/securityinsight/arm-securityinsight/src/operations/entityQueries.ts index 85592e81dda7..21190c27d569 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/entityQueries.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/entityQueries.ts @@ -208,7 +208,7 @@ const listOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - queryParameters: [Parameters.apiVersion, Parameters.kind], + queryParameters: [Parameters.apiVersion, Parameters.kind1], urlParameters: [ Parameters.$host, Parameters.subscriptionId, @@ -302,7 +302,7 @@ const listNextOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - queryParameters: [Parameters.apiVersion, Parameters.kind], + queryParameters: [Parameters.apiVersion, Parameters.kind1], urlParameters: [ Parameters.$host, Parameters.subscriptionId, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/index.ts b/sdk/securityinsight/arm-securityinsight/src/operations/index.ts index 1cf716300f95..68f26bcfc90b 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/index.ts @@ -15,26 +15,26 @@ export * from "./bookmarkRelations"; export * from "./bookmarkOperations"; export * from "./iPGeodata"; export * from "./domainWhois"; -export * from "./entityQueries"; export * from "./entities"; export * from "./entitiesGetTimeline"; export * from "./entitiesRelations"; export * from "./entityRelations"; +export * from "./entityQueries"; +export * from "./entityQueryTemplates"; export * from "./incidents"; export * from "./incidentComments"; export * from "./incidentRelations"; export * from "./metadata"; +export * from "./officeConsents"; export * from "./sentinelOnboardingStates"; export * from "./productSettings"; export * from "./sourceControlOperations"; export * from "./sourceControls"; +export * from "./threatIntelligenceIndicator"; +export * from "./threatIntelligenceIndicators"; +export * from "./threatIntelligenceIndicatorMetrics"; export * from "./watchlists"; export * from "./watchlistItems"; export * from "./dataConnectors"; export * from "./dataConnectorsCheckRequirementsOperations"; -export * from "./threatIntelligenceIndicator"; -export * from "./threatIntelligenceIndicators"; -export * from "./threatIntelligenceIndicatorMetrics"; export * from "./operations"; -export * from "./officeConsents"; -export * from "./entityQueryTemplates"; diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/automationRules.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/automationRules.ts index fc1210e5c84e..9b8aee0e56ff 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/automationRules.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/automationRules.ts @@ -14,7 +14,10 @@ import { AutomationRulesGetResponse, AutomationRulesCreateOrUpdateOptionalParams, AutomationRulesCreateOrUpdateResponse, - AutomationRulesDeleteOptionalParams + AutomationRulesDeleteOptionalParams, + AutomationRulesDeleteResponse, + AutomationRulesManualTriggerPlaybookOptionalParams, + AutomationRulesManualTriggerPlaybookResponse } from "../models"; /// @@ -49,14 +52,12 @@ export interface AutomationRules { * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param automationRuleId Automation rule ID - * @param automationRule The automation rule * @param options The options parameters. */ createOrUpdate( resourceGroupName: string, workspaceName: string, automationRuleId: string, - automationRule: AutomationRule, options?: AutomationRulesCreateOrUpdateOptionalParams ): Promise; /** @@ -71,5 +72,18 @@ export interface AutomationRules { workspaceName: string, automationRuleId: string, options?: AutomationRulesDeleteOptionalParams - ): Promise; + ): Promise; + /** + * Triggers playbook on a specific incident + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentIdentifier + * @param options The options parameters. + */ + manualTriggerPlaybook( + resourceGroupName: string, + workspaceName: string, + incidentIdentifier: string, + options?: AutomationRulesManualTriggerPlaybookOptionalParams + ): Promise; } diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts index 1cf716300f95..68f26bcfc90b 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts @@ -15,26 +15,26 @@ export * from "./bookmarkRelations"; export * from "./bookmarkOperations"; export * from "./iPGeodata"; export * from "./domainWhois"; -export * from "./entityQueries"; export * from "./entities"; export * from "./entitiesGetTimeline"; export * from "./entitiesRelations"; export * from "./entityRelations"; +export * from "./entityQueries"; +export * from "./entityQueryTemplates"; export * from "./incidents"; export * from "./incidentComments"; export * from "./incidentRelations"; export * from "./metadata"; +export * from "./officeConsents"; export * from "./sentinelOnboardingStates"; export * from "./productSettings"; export * from "./sourceControlOperations"; export * from "./sourceControls"; +export * from "./threatIntelligenceIndicator"; +export * from "./threatIntelligenceIndicators"; +export * from "./threatIntelligenceIndicatorMetrics"; export * from "./watchlists"; export * from "./watchlistItems"; export * from "./dataConnectors"; export * from "./dataConnectorsCheckRequirementsOperations"; -export * from "./threatIntelligenceIndicator"; -export * from "./threatIntelligenceIndicators"; -export * from "./threatIntelligenceIndicatorMetrics"; export * from "./operations"; -export * from "./officeConsents"; -export * from "./entityQueryTemplates"; diff --git a/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts b/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts index 957dd1d33970..e604b5bee92b 100644 --- a/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts +++ b/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts @@ -18,29 +18,29 @@ import { BookmarkOperationsImpl, IPGeodataImpl, DomainWhoisImpl, - EntityQueriesImpl, EntitiesImpl, EntitiesGetTimelineImpl, EntitiesRelationsImpl, EntityRelationsImpl, + EntityQueriesImpl, + EntityQueryTemplatesImpl, IncidentsImpl, IncidentCommentsImpl, IncidentRelationsImpl, MetadataImpl, + OfficeConsentsImpl, SentinelOnboardingStatesImpl, ProductSettingsImpl, SourceControlOperationsImpl, SourceControlsImpl, + ThreatIntelligenceIndicatorImpl, + ThreatIntelligenceIndicatorsImpl, + ThreatIntelligenceIndicatorMetricsImpl, WatchlistsImpl, WatchlistItemsImpl, DataConnectorsImpl, DataConnectorsCheckRequirementsOperationsImpl, - ThreatIntelligenceIndicatorImpl, - ThreatIntelligenceIndicatorsImpl, - ThreatIntelligenceIndicatorMetricsImpl, - OperationsImpl, - OfficeConsentsImpl, - EntityQueryTemplatesImpl + OperationsImpl } from "./operations"; import { AlertRules, @@ -52,29 +52,29 @@ import { BookmarkOperations, IPGeodata, DomainWhois, - EntityQueries, Entities, EntitiesGetTimeline, EntitiesRelations, EntityRelations, + EntityQueries, + EntityQueryTemplates, Incidents, IncidentComments, IncidentRelations, Metadata, + OfficeConsents, SentinelOnboardingStates, ProductSettings, SourceControlOperations, SourceControls, + ThreatIntelligenceIndicator, + ThreatIntelligenceIndicators, + ThreatIntelligenceIndicatorMetrics, Watchlists, WatchlistItems, DataConnectors, DataConnectorsCheckRequirementsOperations, - ThreatIntelligenceIndicator, - ThreatIntelligenceIndicators, - ThreatIntelligenceIndicatorMetrics, - Operations, - OfficeConsents, - EntityQueryTemplates + Operations } from "./operationsInterfaces"; import { SecurityInsightsOptionalParams } from "./models"; @@ -110,7 +110,7 @@ export class SecurityInsights extends coreClient.ServiceClient { credential: credentials }; - const packageDetails = `azsdk-js-arm-securityinsight/1.0.0-beta.1`; + const packageDetails = `azsdk-js-arm-securityinsight/1.0.0-beta.2`; const userAgentPrefix = options.userAgentOptions && options.userAgentOptions.userAgentPrefix ? `${options.userAgentOptions.userAgentPrefix} ${packageDetails}` @@ -133,7 +133,7 @@ export class SecurityInsights extends coreClient.ServiceClient { // Assigning values to Constant parameters this.$host = options.$host || "https://management.azure.com"; - this.apiVersion = options.apiVersion || "2021-09-01-preview"; + this.apiVersion = options.apiVersion || "2021-10-01-preview"; this.alertRules = new AlertRulesImpl(this); this.actions = new ActionsImpl(this); this.alertRuleTemplates = new AlertRuleTemplatesImpl(this); @@ -143,25 +143,21 @@ export class SecurityInsights extends coreClient.ServiceClient { this.bookmarkOperations = new BookmarkOperationsImpl(this); this.iPGeodata = new IPGeodataImpl(this); this.domainWhois = new DomainWhoisImpl(this); - this.entityQueries = new EntityQueriesImpl(this); this.entities = new EntitiesImpl(this); this.entitiesGetTimeline = new EntitiesGetTimelineImpl(this); this.entitiesRelations = new EntitiesRelationsImpl(this); this.entityRelations = new EntityRelationsImpl(this); + this.entityQueries = new EntityQueriesImpl(this); + this.entityQueryTemplates = new EntityQueryTemplatesImpl(this); this.incidents = new IncidentsImpl(this); this.incidentComments = new IncidentCommentsImpl(this); this.incidentRelations = new IncidentRelationsImpl(this); this.metadata = new MetadataImpl(this); + this.officeConsents = new OfficeConsentsImpl(this); this.sentinelOnboardingStates = new SentinelOnboardingStatesImpl(this); this.productSettings = new ProductSettingsImpl(this); this.sourceControlOperations = new SourceControlOperationsImpl(this); this.sourceControls = new SourceControlsImpl(this); - this.watchlists = new WatchlistsImpl(this); - this.watchlistItems = new WatchlistItemsImpl(this); - this.dataConnectors = new DataConnectorsImpl(this); - this.dataConnectorsCheckRequirementsOperations = new DataConnectorsCheckRequirementsOperationsImpl( - this - ); this.threatIntelligenceIndicator = new ThreatIntelligenceIndicatorImpl( this ); @@ -171,9 +167,13 @@ export class SecurityInsights extends coreClient.ServiceClient { this.threatIntelligenceIndicatorMetrics = new ThreatIntelligenceIndicatorMetricsImpl( this ); + this.watchlists = new WatchlistsImpl(this); + this.watchlistItems = new WatchlistItemsImpl(this); + this.dataConnectors = new DataConnectorsImpl(this); + this.dataConnectorsCheckRequirementsOperations = new DataConnectorsCheckRequirementsOperationsImpl( + this + ); this.operations = new OperationsImpl(this); - this.officeConsents = new OfficeConsentsImpl(this); - this.entityQueryTemplates = new EntityQueryTemplatesImpl(this); } alertRules: AlertRules; @@ -185,27 +185,27 @@ export class SecurityInsights extends coreClient.ServiceClient { bookmarkOperations: BookmarkOperations; iPGeodata: IPGeodata; domainWhois: DomainWhois; - entityQueries: EntityQueries; entities: Entities; entitiesGetTimeline: EntitiesGetTimeline; entitiesRelations: EntitiesRelations; entityRelations: EntityRelations; + entityQueries: EntityQueries; + entityQueryTemplates: EntityQueryTemplates; incidents: Incidents; incidentComments: IncidentComments; incidentRelations: IncidentRelations; metadata: Metadata; + officeConsents: OfficeConsents; sentinelOnboardingStates: SentinelOnboardingStates; productSettings: ProductSettings; sourceControlOperations: SourceControlOperations; sourceControls: SourceControls; + threatIntelligenceIndicator: ThreatIntelligenceIndicator; + threatIntelligenceIndicators: ThreatIntelligenceIndicators; + threatIntelligenceIndicatorMetrics: ThreatIntelligenceIndicatorMetrics; watchlists: Watchlists; watchlistItems: WatchlistItems; dataConnectors: DataConnectors; dataConnectorsCheckRequirementsOperations: DataConnectorsCheckRequirementsOperations; - threatIntelligenceIndicator: ThreatIntelligenceIndicator; - threatIntelligenceIndicators: ThreatIntelligenceIndicators; - threatIntelligenceIndicatorMetrics: ThreatIntelligenceIndicatorMetrics; operations: Operations; - officeConsents: OfficeConsents; - entityQueryTemplates: EntityQueryTemplates; } diff --git a/sdk/securityinsight/arm-securityinsight/tsconfig.json b/sdk/securityinsight/arm-securityinsight/tsconfig.json index 6e3251194117..3e6ae96443f3 100644 --- a/sdk/securityinsight/arm-securityinsight/tsconfig.json +++ b/sdk/securityinsight/arm-securityinsight/tsconfig.json @@ -9,11 +9,19 @@ "esModuleInterop": true, "allowSyntheticDefaultImports": true, "forceConsistentCasingInFileNames": true, - "lib": ["es6", "dom"], + "lib": [ + "es6", + "dom" + ], "declaration": true, "outDir": "./dist-esm", "importHelpers": true }, - "include": ["./src/**/*.ts", "./test/**/*.ts"], - "exclude": ["node_modules"] -} + "include": [ + "./src/**/*.ts", + "./test/**/*.ts" + ], + "exclude": [ + "node_modules" + ] +} \ No newline at end of file