Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: pattern policy-insights\remediation - avm/ptn/policy-insights/remediation #1632

Merged
Merged
Show file tree
Hide file tree
Changes from 94 commits
Commits
Show all changes
98 commits
Select commit Hold shift + click to select a range
003d746
Scaffold ptn
DonKoning Apr 6, 2024
bcf393b
Add ARM + readme
DonKoning Apr 6, 2024
916b3e2
submodules
DonKoning Apr 6, 2024
53d3635
submodule + codeowners
DonKoning Apr 6, 2024
a56edc9
Fix pester tests
DonKoning Apr 6, 2024
9a2b439
Fix Pester tests
DonKoning Apr 6, 2024
98fef97
Add action workflow
DonKoning Apr 9, 2024
304cf5c
Merge branch 'Azure:main' into users/donk-msft/policyinsights-remedia…
donk-msft Apr 9, 2024
f40a4e2
Update main.json
DonKoning Apr 9, 2024
ed731e2
resourceLocation
DonKoning Apr 10, 2024
e84e508
RoleAssignments GUID
DonKoning Apr 10, 2024
ce05126
Merge branch 'main' into users/donk-msft/policyinsights-remediation
donk-msft Apr 10, 2024
dbfe0b3
Metadata changes
DonKoning Apr 11, 2024
12cb6f8
Merge branch 'users/donk-msft/policyinsights-remediation' of https://…
DonKoning Apr 11, 2024
663a0a5
Merge branch 'main' into users/donk-msft/policyinsights-remediation
donk-msft Apr 11, 2024
ae9062a
Update metadata
DonKoning Apr 11, 2024
9b19295
Merge branch 'main' into users/donk-msft/policyinsights-remediation
ChrisSidebotham Apr 11, 2024
da3d0a3
Update readme
DonKoning Apr 12, 2024
34edf70
Merge branch 'users/donk-msft/policyinsights-remediation' of https://…
DonKoning Apr 12, 2024
dc0cec5
Missing trigger exclusion
DonKoning Apr 12, 2024
c93bb71
Merge branch 'main' into users/donk-msft/policyinsights-remediation
donk-msft Apr 12, 2024
b01b855
Merge branch 'main' into users/donk-msft/policyinsights-remediation
donk-msft Apr 15, 2024
e59b4d7
Merge branch 'main' of https://github.com/donk-msft/bicep-registry-mo…
DonKoning Apr 15, 2024
e3ca12a
Merge branch 'main' into users/donk-msft/policyinsights-remediation
eriqua Apr 24, 2024
97b9069
Restructure folder structure/tests
DonKoning Apr 25, 2024
b2af092
Rename PolicySet assignment
DonKoning Apr 25, 2024
31e6f90
.
DonKoning Apr 25, 2024
d774607
Change remediation task name
DonKoning Apr 25, 2024
61fadd0
.
DonKoning Apr 25, 2024
44b6d14
remove commented code
DonKoning Apr 26, 2024
28d596f
Metadata descriptions
DonKoning Apr 26, 2024
324edd0
Revert name
DonKoning Apr 26, 2024
2e80b79
Fix set-avmmodule.ps1 error
DonKoning Apr 26, 2024
e32f9ab
Merge branch 'main' into users/donk-msft/policyinsights-remediation
eriqua Apr 27, 2024
338dfa6
Update defaults
DonKoning Apr 29, 2024
a3b9be4
Merge branch 'users/donk-msft/policyinsights-remediation' of https://…
DonKoning Apr 29, 2024
959a912
Update readme
DonKoning Apr 29, 2024
474b73b
Scaffold ptn
DonKoning Apr 6, 2024
11ce211
Add ARM + readme
DonKoning Apr 6, 2024
1cf1adb
submodules
DonKoning Apr 6, 2024
210cd37
submodule + codeowners
DonKoning Apr 6, 2024
09d1166
Fix pester tests
DonKoning Apr 6, 2024
c4e1d79
Fix Pester tests
DonKoning Apr 6, 2024
1d29822
Update main.json
DonKoning Apr 9, 2024
f509e3a
resourceLocation
DonKoning Apr 10, 2024
d47f7b5
RoleAssignments GUID
DonKoning Apr 10, 2024
a603bc0
Metadata changes
DonKoning Apr 11, 2024
4ea8d68
Update metadata
DonKoning Apr 11, 2024
3991189
Update readme
DonKoning Apr 12, 2024
be68ddc
Missing trigger exclusion
DonKoning Apr 12, 2024
e695a8b
fix: WAF reliability and static validation in `avm/res/web/site` (#1…
krbar Apr 17, 2024
f63de11
fix: prevent updating the workspace repository configuration whenever…
Kathedra Apr 17, 2024
15278c0
feat: Add the creation of 'Microsoft.CognitiveServices/accounts/deplo…
zedy-wj Apr 17, 2024
92e2eaa
fix: Align container-app to WAF Reliability requirements (#1689)
oZakari Apr 17, 2024
00965ff
feat: Enable cost analysis add-on in managed cluster module (#1682)
PixelRobots Apr 17, 2024
e4a2a49
fix: Unorphaned res\insights\activity-log-alert module as @donk-msft …
donk-msft Apr 17, 2024
2360f98
fix: aks module ARM template (#1695)
ilhaan Apr 18, 2024
1874e92
fix: Failing Pipeline: Nullable types are not allowed (#1698)
fblix Apr 18, 2024
b8996d1
feat: `avm/ptn/authorization/role-assignment` (#1641)
arnoldna Apr 18, 2024
ceb9467
feat: add option for keda addon container-service - `avm/res/containe…
PixelRobots Apr 18, 2024
14cbd52
feat: avm/ptn/authorization/policy assignment2 (#1706)
arnoldna Apr 19, 2024
213e1cd
fix: change secret reference to the correct name (#1707)
rahalan Apr 19, 2024
53f0095
fix: add missing folder reference (#1712)
rahalan Apr 19, 2024
485e982
fix: minor fixes in issue automation (#1717)
rahalan Apr 19, 2024
729334a
feat: `avm/ptn/authorization/policy-assignment` (#1688)
arnoldna Apr 19, 2024
754e04d
fix: 1507 linux asp (#1711)
tsc-buddy Apr 19, 2024
83b7f14
feat: `avm/res/network/application-gateway` (#835)
ilhaan Apr 19, 2024
a4d3db0
feat: `avm/res/sql/managed-instance` (#1618)
arnoldna Apr 19, 2024
ca73c6c
fix: Recovered missing role assignment workflow (#1719)
AlexanderSehr Apr 19, 2024
1ed77f7
feat: added option to set backendpooltype. - `avm/res/container-servi…
PixelRobots Apr 19, 2024
7514112
docs: fixing issue #1064 - `avm/res/container-service/managed-cluster…
PixelRobots Apr 19, 2024
4ecc191
feat: Added custom Azure storage replication rule and updated ps-rule…
sebassem Apr 21, 2024
ef70397
fix: Update instance size options for API Management service - `avm/r…
cvs79 Apr 22, 2024
c13bf7a
fix: AppServicePlan - SKU selection improvements (#1736)
tsc-buddy Apr 23, 2024
9d0b39d
feat: `avm/res/sql/instance-pool` (#1714)
yashints Apr 23, 2024
caa0b3c
fix: 1704 Web Site without Managed Identity (#1738)
cloudchristoph Apr 23, 2024
6193737
Restructure folder structure/tests
DonKoning Apr 25, 2024
0561991
Rename PolicySet assignment
DonKoning Apr 25, 2024
ccb05cf
.
DonKoning Apr 25, 2024
894b0f4
Change remediation task name
DonKoning Apr 25, 2024
38fc95f
.
DonKoning Apr 25, 2024
1e25de6
remove commented code
DonKoning Apr 26, 2024
9d01375
Metadata descriptions
DonKoning Apr 26, 2024
758037f
Revert name
DonKoning Apr 26, 2024
34c4457
Fix set-avmmodule.ps1 error
DonKoning Apr 26, 2024
debcc5c
Update defaults
DonKoning Apr 29, 2024
54cc034
feat: Integrated BRM with AVM workflows (#1411)
AlexanderSehr Apr 25, 2024
1c04591
fix: Align platform workflow file names (#1754)
eriqua Apr 25, 2024
064e41e
fix: SQL Instance Pool - hard coding location of tests to make sure p…
yashints Apr 25, 2024
fc5473b
fix: minor bugs in worflow automation regarding failed pipelines (#1751)
rahalan Apr 26, 2024
68303db
fix: FrontDoor - Updated HealthProbeSettings in test for WAF complian…
rozkurt Apr 26, 2024
1e5ba86
Update readme
DonKoning Apr 29, 2024
da373c3
Merge branch 'users/donk-msft/policyinsights-remediation' of https://…
DonKoning Apr 29, 2024
e9f5ae1
Merge branch 'main' into users/donk-msft/policyinsights-remediation
donk-msft Apr 29, 2024
c2ab87d
Merge branch 'main' into users/donk-msft/policyinsights-remediation
eriqua Apr 29, 2024
7b2bfc8
Remove defaults
DonKoning Apr 30, 2024
3afd11a
Merge branch 'users/donk-msft/policyinsights-remediation' of https://…
DonKoning Apr 30, 2024
c3ce8a7
Merge branch 'main' into users/donk-msft/policyinsights-remediation
eriqua Apr 30, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/CODEOWNERS
Validating CODEOWNERS rules …
Original file line number Diff line number Diff line change
Expand Up @@ -148,6 +148,6 @@
#/avm/ptn/avd-lza/management-plane/ @Azure/avm-ptn-avd-lza-managementplane-module-owners-bicep @Azure/avm-core-team-technical-bicep
#/avm/ptn/avd-lza/networking/ @Azure/avm-ptn-avd-lza-networking-module-owners-bicep @Azure/avm-core-team-technical-bicep
#/avm/ptn/avd-lza/session-hosts/ @Azure/avm-ptn-avd-lza-sessionhosts-module-owners-bicep @Azure/avm-core-team-technical-bicep
/avm/ptn/policy-insights/remediation/ @Azure/avm-ptn-policyinsights-remediation-module-owners-bicep @Azure/avm-core-team-technical-bicep
#/avm/ptn/security/security-center/ @Azure/avm-ptn-securitycenter-module-owners-bicep @Azure/avm-core-team-technical-bicep

*avm.core.team.tests.ps1 @Azure/avm-core-team-technical-bicep
1 change: 1 addition & 0 deletions .github/ISSUE_TEMPLATE/avm_module_issue.yml
Original file line number Diff line number Diff line change
Expand Up @@ -44,6 +44,7 @@ body:
# - "avm/ptn/avd-lza/management-plane"
# - "avm/ptn/avd-lza/networking"
# - "avm/ptn/avd-lza/session-hosts"
- "avm/ptn/policy-insights/remediation"
- "avm/ptn/security/security-center"
- "avm/res/aad/domain-service"
- "avm/res/analysis-services/server"
Expand Down
86 changes: 86 additions & 0 deletions .github/workflows/avm.ptn.policy-insights.remediation.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,86 @@
name: "avm.ptn.policy-insights.remediation"

on:
schedule:
- cron: "0 12 1/15 * *" # Bi-Weekly Test (on 1st & 15th of month)
workflow_dispatch:
inputs:
staticValidation:
type: boolean
description: "Execute static validation"
required: false
default: true
deploymentValidation:
type: boolean
description: "Execute deployment validation"
required: false
default: true
removeDeployment:
type: boolean
description: "Remove deployed module"
required: false
default: true
push:
branches:
- main
paths:
- ".github/actions/templates/avm-**"
- ".github/workflows/avm.template.module.yml"
- ".github/workflows/avm.ptn.policy-insights.remediation.yml"
- "avm.ptn.policy-insights.remediation/**"
- "avm/utilities/pipelines/**"
eriqua marked this conversation as resolved.
Show resolved Hide resolved
- "!avm/utilities/pipelines/platform/**"
- "!*/**/README.md"

env:
modulePath: "avm/ptn/policy-insights/remediation"
workflowPath: ".github/workflows/avm.ptn.policy-insights.remediation.yml"

concurrency:
group: ${{ github.workflow }}

jobs:
###########################
# Initialize pipeline #
###########################
job_initialize_pipeline:
runs-on: ubuntu-latest
name: "Initialize pipeline"
steps:
- name: "Checkout"
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: "Set input parameters to output variables"
id: get-workflow-param
uses: ./.github/actions/templates/avm-getWorkflowInput
with:
workflowPath: "${{ env.workflowPath}}"
- name: "Get module test file paths"
id: get-module-test-file-paths
uses: ./.github/actions/templates/avm-getModuleTestFiles
with:
modulePath: "${{ env.modulePath }}"
outputs:
workflowInput: ${{ steps.get-workflow-param.outputs.workflowInput }}
moduleTestFilePaths: ${{ steps.get-module-test-file-paths.outputs.moduleTestFilePaths }}
psRuleModuleTestFilePaths: ${{ steps.get-module-test-file-paths.outputs.psRuleModuleTestFilePaths }}
modulePath: "${{ env.modulePath }}"

##############################
# Call reusable workflow #
##############################
call-workflow-passing-data:
name: "Run"
permissions:
id-token: write # For OIDC
contents: write # For release tags
needs:
- job_initialize_pipeline
uses: ./.github/workflows/avm.template.module.yml
with:
workflowInput: "${{ needs.job_initialize_pipeline.outputs.workflowInput }}"
moduleTestFilePaths: "${{ needs.job_initialize_pipeline.outputs.moduleTestFilePaths }}"
psRuleModuleTestFilePaths: "${{ needs.job_initialize_pipeline.outputs.psRuleModuleTestFilePaths }}"
modulePath: "${{ needs.job_initialize_pipeline.outputs.modulePath}}"
secrets: inherit
Loading