diff --git a/common/config/rush/pnpm-lock.yaml b/common/config/rush/pnpm-lock.yaml index 420edc61fb2e..574dc275ff96 100644 --- a/common/config/rush/pnpm-lock.yaml +++ b/common/config/rush/pnpm-lock.yaml @@ -4887,7 +4887,7 @@ packages: dependencies: semver: 7.5.4 shelljs: 0.8.5 - typescript: 5.2.0-dev.20230725 + typescript: 5.2.0-dev.20230726 dev: false /duplexer3/0.1.5: @@ -10400,8 +10400,8 @@ packages: hasBin: true dev: false - /typescript/5.2.0-dev.20230725: - resolution: {integrity: sha512-ckVbPpSTdPA/Fxnrq1/mzO+LgzA64VPjm6YvV/axwZKgxviVHiUy0VvKS5EGBOpgFBwCNuN+ir24KIBGYWQCgQ==} + /typescript/5.2.0-dev.20230726: + resolution: {integrity: sha512-WXVjQVYHgcJwZh0r5TzBl42dzg6ap9VS0+8dm76/i0T/BhLnmC3CIBsLHZ5WQ3l1CqO/W5kSuywX94xVg98otA==} engines: {node: '>=14.17'} hasBin: true dev: false @@ -16538,7 +16538,7 @@ packages: dev: false file:projects/arm-securityinsight.tgz: - resolution: {integrity: sha512-Aud3W52dRSgpgYe3rZRXrbxW8Tvfwu8+Wm4Efi3qUS4W9kgsPaKMU9sEgRRcu6v2KfZ4wnx8b6Sr5XpZIVIS7A==, tarball: file:projects/arm-securityinsight.tgz} + resolution: {integrity: sha512-ud2UDdXiPGga6tCj8RiUqc2Fdn6rALNFk+Vs6Ni2P/PL2a2HZX/x6i5ZHTiTMwrh77ViMEawkV0iRlGwWvhObA==, tarball: file:projects/arm-securityinsight.tgz} name: '@rush-temp/arm-securityinsight' version: 0.0.0 dependencies: @@ -16552,8 +16552,8 @@ packages: '@types/node': 14.18.54 chai: 4.3.7 cross-env: 7.0.3 - dotenv: 8.6.0 - mkdirp: 1.0.4 + dotenv: 16.3.1 + mkdirp: 2.1.6 mocha: 7.2.0 rimraf: 3.0.2 rollup: 2.79.1 diff --git a/sdk/securityinsight/arm-securityinsight/CHANGELOG.md b/sdk/securityinsight/arm-securityinsight/CHANGELOG.md index 7e10d8fce8ba..b6296258361c 100644 --- a/sdk/securityinsight/arm-securityinsight/CHANGELOG.md +++ b/sdk/securityinsight/arm-securityinsight/CHANGELOG.md @@ -1,15 +1,494 @@ # Release History + +## 1.0.0-beta.7 (2023-07-26) + +**Features** -## 1.0.0-beta.7 (Unreleased) - -### Features Added - -### Breaking Changes - -### Bugs Fixed + - Added operation group AlertRuleOperations + - Added operation group BillingStatistics + - Added operation group ContentPackage + - Added operation group ContentPackages + - Added operation group ContentTemplate + - Added operation group ContentTemplates + - Added operation group DataConnectorDefinitions + - Added operation group Get + - Added operation group GetRecommendations + - Added operation group GetTriggeredAnalyticsRuleRuns + - Added operation group HuntComments + - Added operation group HuntRelations + - Added operation group Hunts + - Added operation group IncidentTasks + - Added operation group ProductPackage + - Added operation group ProductPackages + - Added operation group ProductTemplate + - Added operation group ProductTemplates + - Added operation group TriggeredAnalyticsRuleRunOperations + - Added operation group Update + - Added operation group WorkspaceManagerAssignmentJobs + - Added operation group WorkspaceManagerAssignments + - Added operation group WorkspaceManagerConfigurations + - Added operation group WorkspaceManagerGroups + - Added operation group WorkspaceManagerMembers + - Added operation Entities.runPlaybook + - Added Interface AddIncidentTaskActionProperties + - Added Interface AlertPropertyMapping + - Added Interface AlertRuleTriggerRuleRunHeaders + - Added Interface AlertRuleTriggerRuleRunOptionalParams + - Added Interface AnalyticsRuleRunTrigger + - Added Interface AssignmentItem + - Added Interface AutomationRuleAddIncidentTaskAction + - Added Interface AzureEntityResource + - Added Interface BillingStatistic + - Added Interface BillingStatisticList + - Added Interface BillingStatisticsGetOptionalParams + - Added Interface BillingStatisticsListNextOptionalParams + - Added Interface BillingStatisticsListOptionalParams + - Added Interface ConnectivityCriterion + - Added Interface ConnectorDataType + - Added Interface ConnectorDefinitionsAvailability + - Added Interface ConnectorDefinitionsPermissions + - Added Interface ConnectorDefinitionsResourceProvider + - Added Interface Content + - Added Interface ContentPackageInstallOptionalParams + - Added Interface ContentPackagesGetOptionalParams + - Added Interface ContentPackagesListNextOptionalParams + - Added Interface ContentPackagesListOptionalParams + - Added Interface ContentPackageUninstallOptionalParams + - Added Interface ContentTemplateDeleteOptionalParams + - Added Interface ContentTemplateGetOptionalParams + - Added Interface ContentTemplateInstallOptionalParams + - Added Interface ContentTemplatesListNextOptionalParams + - Added Interface ContentTemplatesListOptionalParams + - Added Interface CustomizableConnectionsConfig + - Added Interface CustomizableConnectorDefinition + - Added Interface CustomizableConnectorUiConfig + - Added Interface CustomPermissionDetails + - Added Interface DataConnectorDefinition + - Added Interface DataConnectorDefinitionArmCollectionWrapper + - Added Interface DataConnectorDefinitionsCreateOrUpdateOptionalParams + - Added Interface DataConnectorDefinitionsDeleteOptionalParams + - Added Interface DataConnectorDefinitionsGetOptionalParams + - Added Interface DataConnectorDefinitionsListNextOptionalParams + - Added Interface DataConnectorDefinitionsListOptionalParams + - Added Interface DCRConfiguration + - Added Interface EntitiesRunPlaybookOptionalParams + - Added Interface EntityManualTriggerRequestBody + - Added Interface ErrorAdditionalInfo + - Added Interface ErrorDetail + - Added Interface ErrorModel + - Added Interface ErrorResponse + - Added Interface GCPAuthProperties + - Added Interface GCPDataConnector + - Added Interface GCPRequestProperties + - Added Interface GetRecommendationsListOptionalParams + - Added Interface GetSingleRecommendationOptionalParams + - Added Interface GetTriggeredAnalyticsRuleRunsListNextOptionalParams + - Added Interface GetTriggeredAnalyticsRuleRunsListOptionalParams + - Added Interface GraphQuery + - Added Interface Hunt + - Added Interface HuntComment + - Added Interface HuntCommentList + - Added Interface HuntCommentsCreateOrUpdateOptionalParams + - Added Interface HuntCommentsDeleteOptionalParams + - Added Interface HuntCommentsGetOptionalParams + - Added Interface HuntCommentsListNextOptionalParams + - Added Interface HuntCommentsListOptionalParams + - Added Interface HuntList + - Added Interface HuntOwner + - Added Interface HuntRelation + - Added Interface HuntRelationList + - Added Interface HuntRelationsCreateOrUpdateOptionalParams + - Added Interface HuntRelationsDeleteOptionalParams + - Added Interface HuntRelationsGetOptionalParams + - Added Interface HuntRelationsListNextOptionalParams + - Added Interface HuntRelationsListOptionalParams + - Added Interface HuntsCreateOrUpdateOptionalParams + - Added Interface HuntsDeleteOptionalParams + - Added Interface HuntsGetOptionalParams + - Added Interface HuntsListNextOptionalParams + - Added Interface HuntsListOptionalParams + - Added Interface IncidentTask + - Added Interface IncidentTaskList + - Added Interface IncidentTasksCreateOrUpdateOptionalParams + - Added Interface IncidentTasksDeleteOptionalParams + - Added Interface IncidentTasksGetOptionalParams + - Added Interface IncidentTasksListNextOptionalParams + - Added Interface IncidentTasksListOptionalParams + - Added Interface Instructions + - Added Interface InstructionStep + - Added Interface InstructionStepDetails + - Added Interface Job + - Added Interface JobItem + - Added Interface JobList + - Added Interface MicrosoftPurviewInformationProtectionCheckRequirements + - Added Interface MicrosoftPurviewInformationProtectionCheckRequirementsProperties + - Added Interface MicrosoftPurviewInformationProtectionConnectorDataTypes + - Added Interface MicrosoftPurviewInformationProtectionConnectorDataTypesLogs + - Added Interface MicrosoftPurviewInformationProtectionDataConnector + - Added Interface MicrosoftPurviewInformationProtectionDataConnectorProperties + - Added Interface MTPDataConnectorDataTypesAlerts + - Added Interface MtpFilteredProviders + - Added Interface PackageBaseProperties + - Added Interface PackageList + - Added Interface PackageModel + - Added Interface PackageProperties + - Added Interface Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema + - Added Interface ProductPackageAdditionalProperties + - Added Interface ProductPackageGetOptionalParams + - Added Interface ProductPackageList + - Added Interface ProductPackageModel + - Added Interface ProductPackageProperties + - Added Interface ProductPackagesListNextOptionalParams + - Added Interface ProductPackagesListOptionalParams + - Added Interface ProductTemplateAdditionalProperties + - Added Interface ProductTemplateGetOptionalParams + - Added Interface ProductTemplateList + - Added Interface ProductTemplateModel + - Added Interface ProductTemplateProperties + - Added Interface ProductTemplatesListNextOptionalParams + - Added Interface ProductTemplatesListOptionalParams + - Added Interface PullRequest + - Added Interface Recommendation + - Added Interface RecommendationList + - Added Interface RecommendationPatch + - Added Interface RecommendedAction + - Added Interface RepositoryAccess + - Added Interface ResourceProviderRequiredPermissions + - Added Interface SampleQuery + - Added Interface SapSolutionUsageStatistic + - Added Interface SentinelEntityMapping + - Added Interface ServicePrincipal + - Added Interface TemplateAdditionalProperties + - Added Interface TemplateBaseProperties + - Added Interface TemplateList + - Added Interface TemplateModel + - Added Interface TemplateProperties + - Added Interface TriggeredAnalyticsRuleRun + - Added Interface TriggeredAnalyticsRuleRunGetOptionalParams + - Added Interface TriggeredAnalyticsRuleRuns + - Added Interface UpdateRecommendationOptionalParams + - Added Interface Warning + - Added Interface WarningBody + - Added Interface WorkspaceManagerAssignment + - Added Interface WorkspaceManagerAssignmentJobsCreateOptionalParams + - Added Interface WorkspaceManagerAssignmentJobsDeleteOptionalParams + - Added Interface WorkspaceManagerAssignmentJobsGetOptionalParams + - Added Interface WorkspaceManagerAssignmentJobsListNextOptionalParams + - Added Interface WorkspaceManagerAssignmentJobsListOptionalParams + - Added Interface WorkspaceManagerAssignmentList + - Added Interface WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams + - Added Interface WorkspaceManagerAssignmentsDeleteOptionalParams + - Added Interface WorkspaceManagerAssignmentsGetOptionalParams + - Added Interface WorkspaceManagerAssignmentsListNextOptionalParams + - Added Interface WorkspaceManagerAssignmentsListOptionalParams + - Added Interface WorkspaceManagerConfiguration + - Added Interface WorkspaceManagerConfigurationList + - Added Interface WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams + - Added Interface WorkspaceManagerConfigurationsDeleteOptionalParams + - Added Interface WorkspaceManagerConfigurationsGetOptionalParams + - Added Interface WorkspaceManagerConfigurationsListNextOptionalParams + - Added Interface WorkspaceManagerConfigurationsListOptionalParams + - Added Interface WorkspaceManagerGroup + - Added Interface WorkspaceManagerGroupList + - Added Interface WorkspaceManagerGroupsCreateOrUpdateOptionalParams + - Added Interface WorkspaceManagerGroupsDeleteOptionalParams + - Added Interface WorkspaceManagerGroupsGetOptionalParams + - Added Interface WorkspaceManagerGroupsListNextOptionalParams + - Added Interface WorkspaceManagerGroupsListOptionalParams + - Added Interface WorkspaceManagerMember + - Added Interface WorkspaceManagerMembersCreateOrUpdateOptionalParams + - Added Interface WorkspaceManagerMembersDeleteOptionalParams + - Added Interface WorkspaceManagerMembersGetOptionalParams + - Added Interface WorkspaceManagerMembersList + - Added Interface WorkspaceManagerMembersListNextOptionalParams + - Added Interface WorkspaceManagerMembersListOptionalParams + - Added Type Alias AlertProperty + - Added Type Alias AlertRuleTriggerRuleRunResponse + - Added Type Alias BillingStatisticKind + - Added Type Alias BillingStatisticsGetResponse + - Added Type Alias BillingStatisticsListNextResponse + - Added Type Alias BillingStatisticsListResponse + - Added Type Alias BillingStatisticUnion + - Added Type Alias Category + - Added Type Alias ContentPackageInstallResponse + - Added Type Alias ContentPackagesGetResponse + - Added Type Alias ContentPackagesListNextResponse + - Added Type Alias ContentPackagesListResponse + - Added Type Alias ContentTemplateGetResponse + - Added Type Alias ContentTemplateInstallResponse + - Added Type Alias ContentTemplatesListNextResponse + - Added Type Alias ContentTemplatesListResponse + - Added Type Alias Context + - Added Type Alias DataConnectorDefinitionKind + - Added Type Alias DataConnectorDefinitionsCreateOrUpdateResponse + - Added Type Alias DataConnectorDefinitionsGetResponse + - Added Type Alias DataConnectorDefinitionsListNextResponse + - Added Type Alias DataConnectorDefinitionsListResponse + - Added Type Alias DataConnectorDefinitionUnion + - Added Type Alias EntityKindEnum + - Added Type Alias Enum20 + - Added Type Alias Flag + - Added Type Alias GetRecommendationsListResponse + - Added Type Alias GetSingleRecommendationResponse + - Added Type Alias GetTriggeredAnalyticsRuleRunsListNextResponse + - Added Type Alias GetTriggeredAnalyticsRuleRunsListResponse + - Added Type Alias HuntCommentsCreateOrUpdateResponse + - Added Type Alias HuntCommentsGetResponse + - Added Type Alias HuntCommentsListNextResponse + - Added Type Alias HuntCommentsListResponse + - Added Type Alias HuntRelationsCreateOrUpdateResponse + - Added Type Alias HuntRelationsGetResponse + - Added Type Alias HuntRelationsListNextResponse + - Added Type Alias HuntRelationsListResponse + - Added Type Alias HuntsCreateOrUpdateResponse + - Added Type Alias HuntsGetResponse + - Added Type Alias HuntsListNextResponse + - Added Type Alias HuntsListResponse + - Added Type Alias HypothesisStatus + - Added Type Alias IncidentTasksCreateOrUpdateResponse + - Added Type Alias IncidentTasksGetResponse + - Added Type Alias IncidentTasksListNextResponse + - Added Type Alias IncidentTasksListResponse + - Added Type Alias IncidentTaskStatus + - Added Type Alias Mode + - Added Type Alias MtpProvider + - Added Type Alias PackageKind + - Added Type Alias Priority + - Added Type Alias ProductPackageGetResponse + - Added Type Alias ProductPackagesListNextResponse + - Added Type Alias ProductPackagesListResponse + - Added Type Alias ProductTemplateGetResponse + - Added Type Alias ProductTemplatesListNextResponse + - Added Type Alias ProductTemplatesListResponse + - Added Type Alias ProviderPermissionsScope + - Added Type Alias ProvisioningState + - Added Type Alias RepositoryAccessKind + - Added Type Alias SourceControlsDeleteResponse + - Added Type Alias State + - Added Type Alias Status + - Added Type Alias ThreatIntelligenceResourceInnerKind + - Added Type Alias ThreatIntelligenceSortingOrder + - Added Type Alias TriggeredAnalyticsRuleRunGetResponse + - Added Type Alias UpdateRecommendationResponse + - Added Type Alias WarningCode + - Added Type Alias WorkspaceManagerAssignmentJobsCreateResponse + - Added Type Alias WorkspaceManagerAssignmentJobsGetResponse + - Added Type Alias WorkspaceManagerAssignmentJobsListNextResponse + - Added Type Alias WorkspaceManagerAssignmentJobsListResponse + - Added Type Alias WorkspaceManagerAssignmentsCreateOrUpdateResponse + - Added Type Alias WorkspaceManagerAssignmentsGetResponse + - Added Type Alias WorkspaceManagerAssignmentsListNextResponse + - Added Type Alias WorkspaceManagerAssignmentsListResponse + - Added Type Alias WorkspaceManagerConfigurationsCreateOrUpdateResponse + - Added Type Alias WorkspaceManagerConfigurationsGetResponse + - Added Type Alias WorkspaceManagerConfigurationsListNextResponse + - Added Type Alias WorkspaceManagerConfigurationsListResponse + - Added Type Alias WorkspaceManagerGroupsCreateOrUpdateResponse + - Added Type Alias WorkspaceManagerGroupsGetResponse + - Added Type Alias WorkspaceManagerGroupsListNextResponse + - Added Type Alias WorkspaceManagerGroupsListResponse + - Added Type Alias WorkspaceManagerMembersCreateOrUpdateResponse + - Added Type Alias WorkspaceManagerMembersGetResponse + - Added Type Alias WorkspaceManagerMembersListNextResponse + - Added Type Alias WorkspaceManagerMembersListResponse + - Interface AlertDetailsOverride has a new optional parameter alertDynamicProperties + - Interface MTPDataConnector has a new optional parameter filteredProviders + - Interface MTPDataConnectorDataTypes has a new optional parameter alerts + - Interface MTPDataConnectorProperties has a new optional parameter filteredProviders + - Interface NrtAlertRule has a new optional parameter sentinelEntitiesMappings + - Interface NrtAlertRuleTemplate has a new optional parameter sentinelEntitiesMappings + - Interface QueryBasedAlertRuleTemplateProperties has a new optional parameter sentinelEntitiesMappings + - Interface ScheduledAlertRule has a new optional parameter sentinelEntitiesMappings + - Interface ScheduledAlertRuleCommonProperties has a new optional parameter sentinelEntitiesMappings + - Interface ScheduledAlertRuleTemplate has a new optional parameter sentinelEntitiesMappings + - Interface SecurityAlertTimelineItem has a new optional parameter intent + - Interface SecurityAlertTimelineItem has a new optional parameter techniques + - Interface SourceControl has a new optional parameter pullRequest + - Interface SourceControl has a new optional parameter repositoryAccess + - Interface SourceControl has a new optional parameter servicePrincipal + - Type of parameter actionType of interface AutomationRuleAction is changed from "ModifyProperties" | "RunPlaybook" to "AddIncidentTask" | "ModifyProperties" | "RunPlaybook" + - Type of parameter kind of interface DataConnectorsCheckRequirements is changed from "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" | "ThreatIntelligenceTaxii" | "IOT" to "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "MicrosoftPurviewInformationProtection" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" | "ThreatIntelligenceTaxii" | "IOT" + - Added Enum KnownAlertProperty + - Added Enum KnownBillingStatisticKind + - Added Enum KnownCategory + - Added Enum KnownContext + - Added Enum KnownDataConnectorDefinitionKind + - Added Enum KnownEntityKindEnum + - Added Enum KnownEnum20 + - Added Enum KnownFlag + - Added Enum KnownHypothesisStatus + - Added Enum KnownIncidentTaskStatus + - Added Enum KnownMode + - Added Enum KnownMtpProvider + - Added Enum KnownPackageKind + - Added Enum KnownPriority + - Added Enum KnownProviderPermissionsScope + - Added Enum KnownProvisioningState + - Added Enum KnownRepositoryAccessKind + - Added Enum KnownState + - Added Enum KnownStatus + - Added Enum KnownThreatIntelligenceResourceInnerKind + - Added Enum KnownThreatIntelligenceSortingOrder + - Added Enum KnownWarningCode + - Enum KnownActionType has a new value AddIncidentTask + - Enum KnownContentType has a new value AutomationRule + - Enum KnownContentType has a new value HuntingQuery + - Enum KnownContentType has a new value Parser + - Enum KnownContentType has a new value Playbook + - Enum KnownDataConnectorKind has a new value GCP + - Enum KnownDataConnectorKind has a new value MicrosoftPurviewInformationProtection + - Enum KnownRepoType has a new value AzureDevOps -### Other Changes +**Breaking Changes** + - Operation Incidents.createTeam has a new signature + - Operation SourceControls.delete has a new signature + - Interface MstiDataConnectorDataTypes no longer has parameter bingSafetyPhishingURL + - Interface Repository no longer has parameter pathMapping + - Parameter logicAppResourceId of interface PlaybookActionProperties is now required + - Parameter branch of interface Repository is now required + - Parameter url of interface Repository is now required + - Type of parameter additionalData of interface AccountEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface AzureResourceEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface CloudApplicationEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface DnsEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter kind of interface Entity is changed from EntityKind to EntityKindEnum + - Type of parameter additionalData of interface EntityCommonProperties is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface EntityEdges is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter kind of interface EntityQueriesListOptionalParams is changed from Enum13 to Enum20 + - Type of parameter entityKind of interface ExpansionResultAggregation is changed from EntityKind to EntityKindEnum + - Type of parameter additionalData of interface FileEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface FileHashEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface HostEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface HuntingBookmark is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter entityKind of interface IncidentEntitiesResultsMetadata is changed from EntityKind to EntityKindEnum + - Type of parameter additionalData of interface IoTDeviceEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface IpEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface MailboxEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface MailClusterEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface MailMessageEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface MalwareEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter kind of interface MetadataModel is changed from Kind to string + - Type of parameter kind of interface MetadataPatch is changed from Kind to string + - Type of parameter additionalData of interface NicEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface ProcessEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface RegistryKeyEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface RegistryValueEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface SecurityAlert is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface SecurityGroupEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface SubmissionMailEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter additionalData of interface ThreatIntelligenceIndicatorModel is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter kind of interface ThreatIntelligenceInformation is changed from ThreatIntelligenceResourceKindEnum to ThreatIntelligenceResourceInnerKind + - Type of parameter sortOrder of interface ThreatIntelligenceSortingCriteria is changed from ThreatIntelligenceSortingCriteriaEnum to ThreatIntelligenceSortingOrder + - Type of parameter additionalData of interface UrlEntity is changed from { + [propertyName: string]: Record; + } to { + [propertyName: string]: any; + } + - Type of parameter webhookSecretUpdateTime of interface Webhook is changed from string to Date + - Removed Enum KnownEntityKind + - Removed Enum KnownEnum13 + - Removed Enum KnownThreatIntelligenceResourceKindEnum + - Removed Enum KnownThreatIntelligenceSortingCriteriaEnum + - Enum KnownRepoType no longer has value DevOps + + ## 1.0.0-beta.6 (2023-02-03) **Features** diff --git a/sdk/securityinsight/arm-securityinsight/_meta.json b/sdk/securityinsight/arm-securityinsight/_meta.json index 46308dd072f2..1e352f660846 100644 --- a/sdk/securityinsight/arm-securityinsight/_meta.json +++ b/sdk/securityinsight/arm-securityinsight/_meta.json @@ -1,8 +1,8 @@ { - "commit": "b41f929626289b59e31be8a1091c99994864b096", - "readme": "specification\\securityinsights\\resource-manager\\readme.md", - "autorest_command": "autorest --version=3.9.3 --typescript --modelerfour.lenient-model-deduplication --azure-arm --head-as-boolean=true --license-header=MICROSOFT_MIT_NO_VERSION --generate-test --typescript-sdks-folder=F:\\azure-sdk-for-js ..\\azure-rest-api-specs\\specification\\securityinsights\\resource-manager\\readme.md --use=@autorest/typescript@6.0.0-rc.7 --generate-sample=true", + "commit": "74b617b4a02224060906de600805811414395825", + "readme": "specification/securityinsights/resource-manager/readme.md", + "autorest_command": "autorest --version=3.9.3 --typescript --modelerfour.lenient-model-deduplication --azure-arm --head-as-boolean=true --license-header=MICROSOFT_MIT_NO_VERSION --generate-test --typescript-sdks-folder=/mnt/vss/_work/1/s/azure-sdk-for-js ../azure-rest-api-specs/specification/securityinsights/resource-manager/readme.md --use=@autorest/typescript@^6.0.4", "repository_url": "https://github.com/Azure/azure-rest-api-specs.git", - "release_tool": "@azure-tools/js-sdk-release-tools@2.6.0", - "use": "@autorest/typescript@6.0.0-rc.7" + "release_tool": "@azure-tools/js-sdk-release-tools@2.7.1", + "use": "@autorest/typescript@^6.0.4" } \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/package.json b/sdk/securityinsight/arm-securityinsight/package.json index 2e1bc561a3e0..bbe2eced763f 100644 --- a/sdk/securityinsight/arm-securityinsight/package.json +++ b/sdk/securityinsight/arm-securityinsight/package.json @@ -8,10 +8,10 @@ "node": ">=14.0.0" }, "dependencies": { - "@azure/core-lro": "^2.2.0", + "@azure/core-lro": "^2.5.4", "@azure/abort-controller": "^1.0.0", "@azure/core-paging": "^1.2.0", - "@azure/core-client": "^1.6.1", + "@azure/core-client": "^1.7.0", "@azure/core-auth": "^1.3.0", "@azure/core-rest-pipeline": "^1.8.0", "tslib": "^2.2.0" @@ -33,13 +33,13 @@ "@rollup/plugin-json": "^6.0.0", "@rollup/plugin-multi-entry": "^6.0.0", "@rollup/plugin-node-resolve": "^13.1.3", - "mkdirp": "^1.0.4", + "mkdirp": "^2.1.2", "rollup": "^2.66.1", "rollup-plugin-sourcemaps": "^0.6.3", "typescript": "~5.0.0", "uglify-js": "^3.4.9", "rimraf": "^3.0.0", - "dotenv": "^8.2.0", + "dotenv": "^16.0.0", "@azure/identity": "^2.0.1", "@azure-tools/test-recorder": "^3.0.0", "@azure-tools/test-credential": "^1.0.0", @@ -111,13 +111,5 @@ ] }, "autoPublish": true, - "homepage": "https://github.com/Azure/azure-sdk-for-js/tree/main/sdk/securityinsight/arm-securityinsight", - "//sampleConfiguration": { - "productName": "", - "productSlugs": [ - "azure" - ], - "disableDocsMs": true, - "apiRefLink": "https://docs.microsoft.com/javascript/api/@azure/arm-securityinsight?view=azure-node-preview" - } -} + "homepage": "https://github.com/Azure/azure-sdk-for-js/tree/main/sdk/securityinsight/arm-securityinsight" +} \ No newline at end of file diff --git a/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md b/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md index 96c4b0c5595f..708717672a72 100644 --- a/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md +++ b/sdk/securityinsight/arm-securityinsight/review/arm-securityinsight.api.md @@ -6,9 +6,9 @@ import * as coreAuth from '@azure/core-auth'; import * as coreClient from '@azure/core-client'; +import { OperationState } from '@azure/core-lro'; import { PagedAsyncIterableIterator } from '@azure/core-paging'; -import { PollerLike } from '@azure/core-lro'; -import { PollOperationState } from '@azure/core-lro'; +import { SimplePollerLike } from '@azure/core-lro'; // @public export interface AADCheckRequirements extends DataConnectorsCheckRequirements { @@ -58,7 +58,7 @@ export interface AccountEntity extends Entity { readonly aadUserId?: string; readonly accountName?: string; readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly displayName?: string; readonly dnsDomain?: string; @@ -239,6 +239,12 @@ export interface ActivityTimelineItem extends EntityTimelineItem { title: string; } +// @public (undocumented) +export interface AddIncidentTaskActionProperties { + description?: string; + title: string; +} + // @public export type AlertDetail = string; @@ -246,10 +252,20 @@ export type AlertDetail = string; export interface AlertDetailsOverride { alertDescriptionFormat?: string; alertDisplayNameFormat?: string; + alertDynamicProperties?: AlertPropertyMapping[]; alertSeverityColumnName?: string; alertTacticsColumnName?: string; } +// @public +export type AlertProperty = string; + +// @public +export interface AlertPropertyMapping { + alertProperty?: AlertProperty; + value?: string; +} + // @public export interface AlertRule extends ResourceWithEtag { kind: AlertRuleKind; @@ -258,6 +274,12 @@ export interface AlertRule extends ResourceWithEtag { // @public export type AlertRuleKind = string; +// @public +export interface AlertRuleOperations { + beginTriggerRuleRun(resourceGroupName: string, workspaceName: string, ruleId: string, analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, options?: AlertRuleTriggerRuleRunOptionalParams): Promise, AlertRuleTriggerRuleRunResponse>>; + beginTriggerRuleRunAndWait(resourceGroupName: string, workspaceName: string, ruleId: string, analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, options?: AlertRuleTriggerRuleRunOptionalParams): Promise; +} + // @public export interface AlertRules { createOrUpdate(resourceGroupName: string, workspaceName: string, ruleId: string, alertRule: AlertRuleUnion, options?: AlertRulesCreateOrUpdateOptionalParams): Promise; @@ -368,6 +390,21 @@ export interface AlertRuleTemplateWithMitreProperties extends AlertRuleTemplateP techniques?: string[]; } +// @public +export interface AlertRuleTriggerRuleRunHeaders { + // (undocumented) + location?: string; +} + +// @public +export interface AlertRuleTriggerRuleRunOptionalParams extends coreClient.OperationOptions { + resumeFrom?: string; + updateIntervalInMs?: number; +} + +// @public +export type AlertRuleTriggerRuleRunResponse = AlertRuleTriggerRuleRunHeaders; + // @public (undocumented) export type AlertRuleUnion = AlertRule | MLBehaviorAnalyticsAlertRule | FusionAlertRule | ThreatIntelligenceAlertRule | MicrosoftSecurityIncidentCreationAlertRule | ScheduledAlertRule | NrtAlertRule; @@ -382,6 +419,12 @@ export type AlertSeverity = string; // @public export type AlertStatus = string; +// @public +export interface AnalyticsRuleRunTrigger { + // (undocumented) + executionTimeUtc: Date; +} + // @public export interface Anomalies extends Settings { readonly isEnabled?: boolean; @@ -444,6 +487,11 @@ export interface ASCDataConnectorProperties extends DataConnectorWithAlertsPrope subscriptionId?: string; } +// @public +export interface AssignmentItem { + resourceId?: string; +} + // @public export type AttackTactic = string; @@ -461,13 +509,20 @@ export interface AutomationRule extends ResourceWithEtag { // @public export interface AutomationRuleAction { - actionType: "ModifyProperties" | "RunPlaybook"; + actionType: "AddIncidentTask" | "ModifyProperties" | "RunPlaybook"; // (undocumented) order: number; } // @public (undocumented) -export type AutomationRuleActionUnion = AutomationRuleAction | AutomationRuleModifyPropertiesAction | AutomationRuleRunPlaybookAction; +export type AutomationRuleActionUnion = AutomationRuleAction | AutomationRuleAddIncidentTaskAction | AutomationRuleModifyPropertiesAction | AutomationRuleRunPlaybookAction; + +// @public +export interface AutomationRuleAddIncidentTaskAction extends AutomationRuleAction { + // (undocumented) + actionConfiguration?: AddIncidentTaskActionProperties; + actionType: "AddIncidentTask"; +} // @public (undocumented) export interface AutomationRuleBooleanCondition { @@ -684,10 +739,15 @@ export interface AzureDevOpsResourceInfo { serviceConnectionId?: string; } +// @public +export interface AzureEntityResource extends Resource { + readonly etag?: string; +} + // @public export interface AzureResourceEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; kind: "AzureResource"; @@ -701,6 +761,50 @@ export interface AzureResourceEntityProperties extends EntityCommonProperties { readonly subscriptionId?: string; } +// @public +export interface BillingStatistic extends AzureEntityResource { + kind: BillingStatisticKind; +} + +// @public +export type BillingStatisticKind = string; + +// @public +export interface BillingStatisticList { + readonly nextLink?: string; + value: BillingStatisticUnion[]; +} + +// @public +export interface BillingStatistics { + get(resourceGroupName: string, workspaceName: string, billingStatisticName: string, options?: BillingStatisticsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: BillingStatisticsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface BillingStatisticsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type BillingStatisticsGetResponse = BillingStatisticUnion; + +// @public +export interface BillingStatisticsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type BillingStatisticsListNextResponse = BillingStatisticList; + +// @public +export interface BillingStatisticsListOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type BillingStatisticsListResponse = BillingStatisticList; + +// @public (undocumented) +export type BillingStatisticUnion = BillingStatistic | SapSolutionUsageStatistic; + // @public export interface Bookmark extends ResourceWithEtag { created?: Date; @@ -868,6 +972,9 @@ export interface BooleanConditionProperties extends AutomationRuleCondition { conditionType: "Boolean"; } +// @public +export type Category = string; + // @public export interface ClientInfo { email?: string; @@ -879,7 +986,7 @@ export interface ClientInfo { // @public export interface CloudApplicationEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly appId?: number; readonly appName?: string; @@ -1042,9 +1149,44 @@ export interface ConnectivityCriteria { value?: string[]; } +// @public +export interface ConnectivityCriterion { + type: string; + value?: string[]; +} + // @public export type ConnectivityType = string; +// @public +export interface ConnectorDataType { + lastDataReceivedQuery: string; + name: string; +} + +// @public +export interface ConnectorDefinitionsAvailability { + isPreview?: boolean; + status?: number; +} + +// @public +export interface ConnectorDefinitionsPermissions { + customs?: CustomPermissionDetails[]; + licenses?: string[]; + resourceProvider?: ConnectorDefinitionsResourceProvider[]; + tenant?: string[]; +} + +// @public +export interface ConnectorDefinitionsResourceProvider { + permissionsDisplayText: string; + provider: string; + providerDisplayName: string; + requiredPermissions: ResourceProviderRequiredPermissions; + scope: ProviderPermissionsScope; +} + // @public export interface ConnectorInstructionModelBase { parameters?: Record; @@ -1052,14 +1194,113 @@ export interface ConnectorInstructionModelBase { } // @public -export interface ContentPathMap { - contentType?: ContentType; - path?: string; +export interface Content { + description: string; + title: string; +} + +// @public +export interface ContentPackage { + install(resourceGroupName: string, workspaceName: string, packageId: string, packageInstallationProperties: PackageModel, options?: ContentPackageInstallOptionalParams): Promise; + uninstall(resourceGroupName: string, workspaceName: string, packageId: string, options?: ContentPackageUninstallOptionalParams): Promise; +} + +// @public +export interface ContentPackageInstallOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentPackageInstallResponse = PackageModel; + +// @public +export interface ContentPackages { + get(resourceGroupName: string, workspaceName: string, packageId: string, options?: ContentPackagesGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: ContentPackagesListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface ContentPackagesGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentPackagesGetResponse = PackageModel; + +// @public +export interface ContentPackagesListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentPackagesListNextResponse = PackageList; + +// @public +export interface ContentPackagesListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type ContentPackagesListResponse = PackageList; + +// @public +export interface ContentPackageUninstallOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface ContentTemplate { + delete(resourceGroupName: string, workspaceName: string, templateId: string, options?: ContentTemplateDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, templateId: string, options?: ContentTemplateGetOptionalParams): Promise; + install(resourceGroupName: string, workspaceName: string, templateId: string, templateInstallationProperties: TemplateModel, options?: ContentTemplateInstallOptionalParams): Promise; +} + +// @public +export interface ContentTemplateDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface ContentTemplateGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentTemplateGetResponse = TemplateModel; + +// @public +export interface ContentTemplateInstallOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentTemplateInstallResponse = TemplateModel; + +// @public +export interface ContentTemplates { + list(resourceGroupName: string, workspaceName: string, options?: ContentTemplatesListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface ContentTemplatesListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ContentTemplatesListNextResponse = TemplateList; + +// @public +export interface ContentTemplatesListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; } +// @public +export type ContentTemplatesListResponse = TemplateList; + // @public export type ContentType = string; +// @public +export type Context = string; + // @public export type CreatedByType = string; @@ -1074,6 +1315,45 @@ export type CustomEntityQueryKind = string; // @public (undocumented) export type CustomEntityQueryUnion = CustomEntityQuery | ActivityCustomEntityQuery; +// @public +export interface CustomizableConnectionsConfig { + templateSpecName: string; + templateSpecVersion: string; +} + +// @public +export interface CustomizableConnectorDefinition extends DataConnectorDefinition { + connectionsConfig?: CustomizableConnectionsConfig; + connectorUiConfig?: CustomizableConnectorUiConfig; + createdTimeUtc?: Date; + kind: "Customizable"; + lastModifiedUtc?: Date; +} + +// @public +export interface CustomizableConnectorUiConfig { + availability?: ConnectorDefinitionsAvailability; + connectivityCriteria: ConnectivityCriterion[]; + dataTypes: ConnectorDataType[]; + descriptionMarkdown: string; + graphQueries: GraphQuery[]; + graphQueriesTableName?: string; + id?: string; + instructionSteps: InstructionStep[]; + isConnectivityCriteriasMatchSome?: boolean; + logo?: string; + permissions: ConnectorDefinitionsPermissions; + publisher: string; + sampleQueries: SampleQuery[]; + title: string; +} + +// @public +export interface CustomPermissionDetails { + description: string; + name: string; +} + // @public export interface Customs extends CustomsPermission { } @@ -1113,6 +1393,65 @@ export interface DataConnectorDataTypeCommon { state: DataTypeState; } +// @public +export interface DataConnectorDefinition extends ResourceWithEtag { + kind: DataConnectorDefinitionKind; +} + +// @public +export interface DataConnectorDefinitionArmCollectionWrapper { + // (undocumented) + nextLink?: string; + // (undocumented) + value?: DataConnectorDefinitionUnion[]; +} + +// @public +export type DataConnectorDefinitionKind = string; + +// @public +export interface DataConnectorDefinitions { + createOrUpdate(resourceGroupName: string, workspaceName: string, dataConnectorDefinitionName: string, connectorDefinitionInput: DataConnectorDefinitionUnion, options?: DataConnectorDefinitionsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, dataConnectorDefinitionName: string, options?: DataConnectorDefinitionsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, dataConnectorDefinitionName: string, options?: DataConnectorDefinitionsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: DataConnectorDefinitionsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface DataConnectorDefinitionsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type DataConnectorDefinitionsCreateOrUpdateResponse = DataConnectorDefinitionUnion; + +// @public +export interface DataConnectorDefinitionsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface DataConnectorDefinitionsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type DataConnectorDefinitionsGetResponse = DataConnectorDefinitionUnion; + +// @public +export interface DataConnectorDefinitionsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type DataConnectorDefinitionsListNextResponse = DataConnectorDefinitionArmCollectionWrapper; + +// @public +export interface DataConnectorDefinitionsListOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type DataConnectorDefinitionsListResponse = DataConnectorDefinitionArmCollectionWrapper; + +// @public (undocumented) +export type DataConnectorDefinitionUnion = DataConnectorDefinition | CustomizableConnectorDefinition; + // @public export type DataConnectorKind = string; @@ -1143,7 +1482,7 @@ export interface DataConnectors { // @public export interface DataConnectorsCheckRequirements { - kind: "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" | "ThreatIntelligenceTaxii" | "IOT"; + kind: "AzureActiveDirectory" | "AzureAdvancedThreatProtection" | "AzureSecurityCenter" | "AmazonWebServicesCloudTrail" | "AmazonWebServicesS3" | "Dynamics365" | "MicrosoftCloudAppSecurity" | "MicrosoftDefenderAdvancedThreatProtection" | "MicrosoftThreatIntelligence" | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" | "MicrosoftPurviewInformationProtection" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" | "ThreatIntelligenceTaxii" | "IOT"; } // @public @@ -1159,7 +1498,7 @@ export interface DataConnectorsCheckRequirementsPostOptionalParams extends coreC export type DataConnectorsCheckRequirementsPostResponse = DataConnectorRequirementsState; // @public (undocumented) -export type DataConnectorsCheckRequirementsUnion = DataConnectorsCheckRequirements | AADCheckRequirements | AatpCheckRequirements | ASCCheckRequirements | AwsCloudTrailCheckRequirements | AwsS3CheckRequirements | Dynamics365CheckRequirements | McasCheckRequirements | MdatpCheckRequirements | MstiCheckRequirements | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements | Office365ProjectCheckRequirements | OfficePowerBICheckRequirements | TICheckRequirements | TiTaxiiCheckRequirements | IoTCheckRequirements; +export type DataConnectorsCheckRequirementsUnion = DataConnectorsCheckRequirements | AADCheckRequirements | AatpCheckRequirements | ASCCheckRequirements | AwsCloudTrailCheckRequirements | AwsS3CheckRequirements | Dynamics365CheckRequirements | McasCheckRequirements | MdatpCheckRequirements | MstiCheckRequirements | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements | MicrosoftPurviewInformationProtectionCheckRequirements | Office365ProjectCheckRequirements | OfficePowerBICheckRequirements | TICheckRequirements | TiTaxiiCheckRequirements | IoTCheckRequirements; // @public export interface DataConnectorsConnectOptionalParams extends coreClient.OperationOptions { @@ -1207,7 +1546,7 @@ export interface DataConnectorTenantId { } // @public (undocumented) -export type DataConnectorUnion = DataConnector | AADDataConnector | MstiDataConnector | MTPDataConnector | AatpDataConnector | ASCDataConnector | AwsCloudTrailDataConnector | AwsS3DataConnector | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector | Office365ProjectDataConnector | OfficePowerBIDataConnector | OfficeIRMDataConnector | MdatpDataConnector | OfficeDataConnector | TIDataConnector | TiTaxiiDataConnector | IoTDataConnector | CodelessUiDataConnector | CodelessApiPollingDataConnector; +export type DataConnectorUnion = DataConnector | AADDataConnector | MstiDataConnector | MTPDataConnector | AatpDataConnector | ASCDataConnector | AwsCloudTrailDataConnector | AwsS3DataConnector | GCPDataConnector | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector | MicrosoftPurviewInformationProtectionDataConnector | Office365ProjectDataConnector | OfficePowerBIDataConnector | OfficeIRMDataConnector | MdatpDataConnector | OfficeDataConnector | TIDataConnector | TiTaxiiDataConnector | IoTDataConnector | CodelessUiDataConnector | CodelessApiPollingDataConnector; // @public export interface DataConnectorWithAlertsProperties { @@ -1222,6 +1561,13 @@ export interface DataTypeDefinitions { // @public export type DataTypeState = string; +// @public +export interface DCRConfiguration { + dataCollectionEndpoint: string; + dataCollectionRuleImmutableId: string; + streamName: string; +} + // @public export type DeleteStatus = string; @@ -1262,7 +1608,7 @@ export type DeviceImportance = string; // @public export interface DnsEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly dnsServerIpEntityId?: string; readonly domainName?: string; @@ -1404,6 +1750,7 @@ export interface Entities { getInsights(resourceGroupName: string, workspaceName: string, entityId: string, parameters: EntityGetInsightsParameters, options?: EntitiesGetInsightsOptionalParams): Promise; list(resourceGroupName: string, workspaceName: string, options?: EntitiesListOptionalParams): PagedAsyncIterableIterator; queries(resourceGroupName: string, workspaceName: string, entityId: string, kind: EntityItemQueryKind, options?: EntitiesQueriesOptionalParams): Promise; + runPlaybook(resourceGroupName: string, workspaceName: string, entityIdentifier: string, options?: EntitiesRunPlaybookOptionalParams): Promise; } // @public @@ -1483,9 +1830,14 @@ export interface EntitiesRelationsListOptionalParams extends coreClient.Operatio // @public export type EntitiesRelationsListResponse = RelationList; +// @public +export interface EntitiesRunPlaybookOptionalParams extends coreClient.OperationOptions { + requestBody?: EntityManualTriggerRequestBody; +} + // @public export interface Entity extends Resource { - kind: EntityKind; + kind: EntityKindEnum; } // @public @@ -1497,7 +1849,7 @@ export interface EntityAnalytics extends Settings { // @public export interface EntityCommonProperties { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; } @@ -1505,7 +1857,7 @@ export interface EntityCommonProperties { // @public export interface EntityEdges { additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; targetEntityId?: string; } @@ -1567,7 +1919,7 @@ export interface EntityInsightItemQueryTimeInterval { export type EntityItemQueryKind = string; // @public -export type EntityKind = string; +export type EntityKindEnum = string; // @public export interface EntityList { @@ -1575,6 +1927,13 @@ export interface EntityList { value: EntityUnion[]; } +// @public +export interface EntityManualTriggerRequestBody { + incidentArmId?: string; + logicAppsResourceId: string; + tenantId?: string; +} + // @public export interface EntityMapping { entityType?: EntityMappingType; @@ -1622,7 +1981,7 @@ export type EntityQueriesListNextResponse = EntityQueryList; // @public export interface EntityQueriesListOptionalParams extends coreClient.OperationOptions { - kind?: Enum13; + kind?: Enum20; } // @public @@ -1757,7 +2116,33 @@ export type EntityType = string; export type EntityUnion = Entity | SecurityAlert | HuntingBookmark | AccountEntity | AzureResourceEntity | CloudApplicationEntity | DnsEntity | FileEntity | FileHashEntity | HostEntity | IoTDeviceEntity | IpEntity | MailboxEntity | MailClusterEntity | MailMessageEntity | MalwareEntity | ProcessEntity | RegistryKeyEntity | RegistryValueEntity | SecurityGroupEntity | SubmissionMailEntity | UrlEntity | NicEntity; // @public -export type Enum13 = string; +export type Enum20 = string; + +// @public +export interface ErrorAdditionalInfo { + readonly info?: Record; + readonly type?: string; +} + +// @public +export interface ErrorDetail { + readonly additionalInfo?: ErrorAdditionalInfo[]; + readonly code?: string; + readonly details?: ErrorDetail[]; + readonly message?: string; + readonly target?: string; +} + +// @public +export interface ErrorModel { + errorMessage: string; + memberResourceName: string; +} + +// @public +export interface ErrorResponse { + error?: ErrorDetail; +} // @public export type EventGroupingAggregationKind = string; @@ -1783,7 +2168,7 @@ export interface ExpansionResultAggregation { aggregationType?: string; count: number; displayName?: string; - entityKind: EntityKind; + entityKind: EntityKindEnum; } // @public @@ -1806,7 +2191,7 @@ export interface FieldMapping { // @public export interface FileEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly directory?: string; readonly fileHashEntityIds?: string[]; @@ -1833,7 +2218,7 @@ export type FileHashAlgorithm = string; // @public export interface FileHashEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly algorithm?: FileHashAlgorithm; readonly friendlyName?: string; @@ -1875,7 +2260,7 @@ export interface FileImportList { // @public export interface FileImports { - beginDelete(resourceGroupName: string, workspaceName: string, fileImportId: string, options?: FileImportsDeleteOptionalParams): Promise, FileImportsDeleteResponse>>; + beginDelete(resourceGroupName: string, workspaceName: string, fileImportId: string, options?: FileImportsDeleteOptionalParams): Promise, FileImportsDeleteResponse>>; beginDeleteAndWait(resourceGroupName: string, workspaceName: string, fileImportId: string, options?: FileImportsDeleteOptionalParams): Promise; create(resourceGroupName: string, workspaceName: string, fileImportId: string, fileImport: FileImport, options?: FileImportsCreateOptionalParams): Promise; get(resourceGroupName: string, workspaceName: string, fileImportId: string, options?: FileImportsGetOptionalParams): Promise; @@ -1935,6 +2320,9 @@ export interface FileMetadata { fileSize?: number; } +// @public +export type Flag = string; + // @public export interface FusionAlertRule extends AlertRule { alertRuleTemplateName?: string; @@ -2018,6 +2406,28 @@ export interface FusionTemplateSubTypeSeverityFilter { severityFilters?: AlertSeverity[]; } +// @public +export interface GCPAuthProperties { + projectNumber: string; + serviceAccountEmail: string; + workloadIdentityProviderId: string; +} + +// @public +export interface GCPDataConnector extends DataConnector { + auth?: GCPAuthProperties; + connectorDefinitionName?: string; + dcrConfig?: DCRConfiguration; + kind: "GCP"; + request?: GCPRequestProperties; +} + +// @public +export interface GCPRequestProperties { + projectId: string; + subscriptionNames: string[]; +} + // @public export interface GeoLocation { readonly asn?: number; @@ -2029,6 +2439,11 @@ export interface GeoLocation { readonly state?: string; } +// @public +export interface Get { + singleRecommendation(resourceGroupName: string, workspaceName: string, recommendationId: string, options?: GetSingleRecommendationOptionalParams): Promise; +} + // @public export function getContinuationToken(page: unknown): string | undefined; @@ -2053,6 +2468,44 @@ export interface GetQueriesResponse { value?: EntityQueryItemUnion[]; } +// @public +export interface GetRecommendations { + list(resourceGroupName: string, workspaceName: string, options?: GetRecommendationsListOptionalParams): Promise; +} + +// @public +export interface GetRecommendationsListOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type GetRecommendationsListResponse = RecommendationList; + +// @public +export interface GetSingleRecommendationOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type GetSingleRecommendationResponse = Recommendation; + +// @public +export interface GetTriggeredAnalyticsRuleRuns { + list(resourceGroupName: string, workspaceName: string, options?: GetTriggeredAnalyticsRuleRunsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface GetTriggeredAnalyticsRuleRunsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type GetTriggeredAnalyticsRuleRunsListNextResponse = TriggeredAnalyticsRuleRuns; + +// @public +export interface GetTriggeredAnalyticsRuleRunsListOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type GetTriggeredAnalyticsRuleRunsListResponse = TriggeredAnalyticsRuleRuns; + // @public export interface GitHubResourceInfo { appInstallationId?: string; @@ -2065,6 +2518,13 @@ export interface GraphQueries { metricName?: string; } +// @public +export interface GraphQuery { + baseQuery: string; + legend: string; + metricName: string; +} + // @public export interface GroupingConfiguration { enabled: boolean; @@ -2079,7 +2539,7 @@ export interface GroupingConfiguration { // @public export interface HostEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly azureID?: string; readonly dnsDomain?: string; @@ -2107,10 +2567,77 @@ export interface HostEntityProperties extends EntityCommonProperties { readonly osVersion?: string; } +// @public +export interface Hunt extends ResourceWithEtag { + attackTactics?: AttackTactic[]; + attackTechniques?: string[]; + description?: string; + displayName?: string; + hypothesisStatus?: HypothesisStatus; + labels?: string[]; + owner?: HuntOwner; + status?: Status; +} + +// @public +export interface HuntComment extends ResourceWithEtag { + message?: string; +} + +// @public +export interface HuntCommentList { + readonly nextLink?: string; + value: HuntComment[]; +} + +// @public +export interface HuntComments { + createOrUpdate(resourceGroupName: string, workspaceName: string, huntId: string, huntCommentId: string, huntComment: HuntComment, options?: HuntCommentsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, huntId: string, huntCommentId: string, options?: HuntCommentsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, huntId: string, huntCommentId: string, options?: HuntCommentsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, huntId: string, options?: HuntCommentsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface HuntCommentsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntCommentsCreateOrUpdateResponse = HuntComment; + +// @public +export interface HuntCommentsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface HuntCommentsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntCommentsGetResponse = HuntComment; + +// @public +export interface HuntCommentsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntCommentsListNextResponse = HuntCommentList; + +// @public +export interface HuntCommentsListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type HuntCommentsListResponse = HuntCommentList; + // @public export interface HuntingBookmark extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; created?: Date; createdBy?: UserInfo; @@ -2143,6 +2670,127 @@ export interface HuntingBookmarkProperties extends EntityCommonProperties { } // @public +export interface HuntList { + readonly nextLink?: string; + value: Hunt[]; +} + +// @public +export interface HuntOwner { + assignedTo?: string; + email?: string; + objectId?: string; + ownerType?: OwnerType; + userPrincipalName?: string; +} + +// @public +export interface HuntRelation extends ResourceWithEtag { + labels?: string[]; + relatedResourceId?: string; + readonly relatedResourceKind?: string; + readonly relatedResourceName?: string; + readonly relationType?: string; +} + +// @public +export interface HuntRelationList { + readonly nextLink?: string; + value: HuntRelation[]; +} + +// @public +export interface HuntRelations { + createOrUpdate(resourceGroupName: string, workspaceName: string, huntId: string, huntRelationId: string, huntRelation: HuntRelation, options?: HuntRelationsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, huntId: string, huntRelationId: string, options?: HuntRelationsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, huntId: string, huntRelationId: string, options?: HuntRelationsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, huntId: string, options?: HuntRelationsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface HuntRelationsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntRelationsCreateOrUpdateResponse = HuntRelation; + +// @public +export interface HuntRelationsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface HuntRelationsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntRelationsGetResponse = HuntRelation; + +// @public +export interface HuntRelationsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntRelationsListNextResponse = HuntRelationList; + +// @public +export interface HuntRelationsListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type HuntRelationsListResponse = HuntRelationList; + +// @public +export interface Hunts { + createOrUpdate(resourceGroupName: string, workspaceName: string, huntId: string, hunt: Hunt, options?: HuntsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, huntId: string, options?: HuntsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, huntId: string, options?: HuntsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: HuntsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface HuntsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntsCreateOrUpdateResponse = Hunt; + +// @public +export interface HuntsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface HuntsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntsGetResponse = Hunt; + +// @public +export interface HuntsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type HuntsListNextResponse = HuntList; + +// @public +export interface HuntsListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type HuntsListResponse = HuntList; + +// @public +export type HypothesisStatus = string; + +// @public (undocumented) export interface Incident extends ResourceWithEtag { readonly additionalData?: IncidentAdditionalData; classification?: IncidentClassification; @@ -2157,8 +2805,8 @@ export interface Incident extends ResourceWithEtag { lastActivityTimeUtc?: Date; readonly lastModifiedTimeUtc?: Date; owner?: IncidentOwnerInfo; - providerIncidentId?: string; - providerName?: string; + readonly providerIncidentId?: string; + readonly providerName?: string; readonly relatedAnalyticRuleIds?: string[]; severity?: IncidentSeverity; status?: IncidentStatus; @@ -2201,9 +2849,10 @@ export interface IncidentComment extends ResourceWithEtag { message?: string; } -// @public +// @public (undocumented) export interface IncidentCommentList { readonly nextLink?: string; + // (undocumented) value: IncidentComment[]; } @@ -2266,7 +2915,7 @@ export interface IncidentEntitiesResponse { // @public export interface IncidentEntitiesResultsMetadata { count: number; - entityKind: EntityKind; + entityKind: EntityKindEnum; } // @public @@ -2289,6 +2938,7 @@ export type IncidentLabelType = string; // @public export interface IncidentList { readonly nextLink?: string; + // (undocumented) value: Incident[]; } @@ -2359,7 +3009,7 @@ export type IncidentRelationsListResponse = RelationList; // @public export interface Incidents { createOrUpdate(resourceGroupName: string, workspaceName: string, incidentId: string, incident: Incident, options?: IncidentsCreateOrUpdateOptionalParams): Promise; - createTeam(resourceGroupName: string, workspaceName: string, incidentId: string, teamProperties: TeamProperties, options?: IncidentsCreateTeamOptionalParams): Promise; + createTeam(resourceGroupName: string, workspaceName: string, incidentId: string, teamProperties: TeamInformation, options?: IncidentsCreateTeamOptionalParams): Promise; delete(resourceGroupName: string, workspaceName: string, incidentId: string, options?: IncidentsDeleteOptionalParams): Promise; get(resourceGroupName: string, workspaceName: string, incidentId: string, options?: IncidentsGetOptionalParams): Promise; list(resourceGroupName: string, workspaceName: string, options?: IncidentsListOptionalParams): PagedAsyncIterableIterator; @@ -2448,6 +3098,69 @@ export type IncidentsRunPlaybookResponse = Record; // @public export type IncidentStatus = string; +// @public (undocumented) +export interface IncidentTask extends ResourceWithEtag { + createdBy?: ClientInfo; + readonly createdTimeUtc?: Date; + description?: string; + lastModifiedBy?: ClientInfo; + readonly lastModifiedTimeUtc?: Date; + // (undocumented) + status: IncidentTaskStatus; + title: string; +} + +// @public (undocumented) +export interface IncidentTaskList { + // (undocumented) + nextLink?: string; + // (undocumented) + value?: IncidentTask[]; +} + +// @public +export interface IncidentTasks { + createOrUpdate(resourceGroupName: string, workspaceName: string, incidentId: string, incidentTaskId: string, incidentTask: IncidentTask, options?: IncidentTasksCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, incidentId: string, incidentTaskId: string, options?: IncidentTasksDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, incidentId: string, incidentTaskId: string, options?: IncidentTasksGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, incidentId: string, options?: IncidentTasksListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface IncidentTasksCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type IncidentTasksCreateOrUpdateResponse = IncidentTask; + +// @public +export interface IncidentTasksDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface IncidentTasksGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type IncidentTasksGetResponse = IncidentTask; + +// @public +export interface IncidentTasksListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type IncidentTasksListNextResponse = IncidentTaskList; + +// @public +export interface IncidentTasksListOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type IncidentTasksListResponse = IncidentTaskList; + +// @public +export type IncidentTaskStatus = string; + // @public export type IngestionMode = string; @@ -2525,6 +3238,27 @@ export interface InsightsTableResultColumnsItem { type?: string; } +// @public +export interface Instructions { + actionsToBePerformed: string; + howToPerformActionDetails?: string; + recommendationImportance: string; +} + +// @public +export interface InstructionStep { + description?: string; + innerSteps?: InstructionStep[]; + instructions?: InstructionStepDetails[]; + title?: string; +} + +// @public +export interface InstructionStepDetails { + parameters: Record; + type: string; +} + // @public export interface InstructionSteps { description?: string; @@ -2557,7 +3291,7 @@ export interface IoTDataConnectorProperties extends DataConnectorWithAlertsPrope // @public export interface IoTDeviceEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly deviceId?: string; readonly deviceName?: string; @@ -2626,7 +3360,7 @@ export interface IoTDeviceEntityProperties extends EntityCommonProperties { // @public export interface IpEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly address?: string; readonly friendlyName?: string; @@ -2654,6 +3388,29 @@ export interface IPGeodataGetOptionalParams extends coreClient.OperationOptions // @public export type IPGeodataGetResponse = EnrichmentIpGeodata; +// @public +export interface Job extends ResourceWithEtag { + readonly endTime?: Date; + readonly errorMessage?: string; + items?: JobItem[]; + readonly provisioningState?: ProvisioningState; + readonly startTime?: Date; +} + +// @public +export interface JobItem { + errors?: ErrorModel[]; + readonly executionTime?: Date; + resourceId?: string; + readonly status?: Status; +} + +// @public +export interface JobList { + readonly nextLink?: string; + value: Job[]; +} + // @public export type KillChainIntent = string; @@ -2662,6 +3419,7 @@ export type Kind = string; // @public export enum KnownActionType { + AddIncidentTask = "AddIncidentTask", ModifyProperties = "ModifyProperties", RunPlaybook = "RunPlaybook" } @@ -2672,6 +3430,19 @@ export enum KnownAlertDetail { Severity = "Severity" } +// @public +export enum KnownAlertProperty { + AlertLink = "AlertLink", + ConfidenceLevel = "ConfidenceLevel", + ConfidenceScore = "ConfidenceScore", + ExtendedLinks = "ExtendedLinks", + ProductComponentName = "ProductComponentName", + ProductName = "ProductName", + ProviderName = "ProviderName", + RemediationSteps = "RemediationSteps", + Techniques = "Techniques" +} + // @public export enum KnownAlertRuleKind { Fusion = "Fusion", @@ -2845,6 +3616,20 @@ export enum KnownAutomationRulePropertyConditionSupportedProperty { Url = "Url" } +// @public +export enum KnownBillingStatisticKind { + SapSolutionUsage = "SapSolutionUsage" +} + +// @public +export enum KnownCategory { + CostOptimization = "CostOptimization", + Demo = "Demo", + NewFeature = "NewFeature", + Onboarding = "Onboarding", + SocEfficiency = "SocEfficiency" +} + // @public export enum KnownConditionType { Boolean = "Boolean", @@ -2884,9 +3669,21 @@ export enum KnownConnectivityType { // @public export enum KnownContentType { AnalyticRule = "AnalyticRule", + AutomationRule = "AutomationRule", + HuntingQuery = "HuntingQuery", + Parser = "Parser", + Playbook = "Playbook", Workbook = "Workbook" } +// @public +export enum KnownContext { + Analytics = "Analytics", + Incidents = "Incidents", + None = "None", + Overview = "Overview" +} + // @public export enum KnownCreatedByType { Application = "Application", @@ -2906,6 +3703,11 @@ export enum KnownDataConnectorAuthorizationState { Valid = "Valid" } +// @public +export enum KnownDataConnectorDefinitionKind { + Customizable = "Customizable" +} + // @public export enum KnownDataConnectorKind { AmazonWebServicesCloudTrail = "AmazonWebServicesCloudTrail", @@ -2915,10 +3717,12 @@ export enum KnownDataConnectorKind { AzureAdvancedThreatProtection = "AzureAdvancedThreatProtection", AzureSecurityCenter = "AzureSecurityCenter", Dynamics365 = "Dynamics365", + GCP = "GCP", GenericUI = "GenericUI", IOT = "IOT", MicrosoftCloudAppSecurity = "MicrosoftCloudAppSecurity", MicrosoftDefenderAdvancedThreatProtection = "MicrosoftDefenderAdvancedThreatProtection", + MicrosoftPurviewInformationProtection = "MicrosoftPurviewInformationProtection", MicrosoftThreatIntelligence = "MicrosoftThreatIntelligence", MicrosoftThreatProtection = "MicrosoftThreatProtection", Office365 = "Office365", @@ -2986,7 +3790,7 @@ export enum KnownEntityItemQueryKind { } // @public -export enum KnownEntityKind { +export enum KnownEntityKindEnum { Account = "Account", AzureResource = "AzureResource", Bookmark = "Bookmark", @@ -3086,7 +3890,7 @@ export enum KnownEntityType { } // @public -export enum KnownEnum13 { +export enum KnownEnum20 { Activity = "Activity", Expansion = "Expansion" } @@ -3131,11 +3935,24 @@ export enum KnownFileImportState { WaitingForUpload = "WaitingForUpload" } +// @public +export enum KnownFlag { + False = "false", + True = "true" +} + // @public export enum KnownGetInsightsError { Insight = "Insight" } +// @public +export enum KnownHypothesisStatus { + Invalidated = "Invalidated", + Unknown = "Unknown", + Validated = "Validated" +} + // @public export enum KnownIncidentClassification { BenignPositive = "BenignPositive", @@ -3173,6 +3990,12 @@ export enum KnownIncidentStatus { New = "New" } +// @public +export enum KnownIncidentTaskStatus { + Completed = "Completed", + New = "New" +} + // @public export enum KnownIngestionMode { IngestAnyValidRecords = "IngestAnyValidRecords", @@ -3237,6 +4060,18 @@ export enum KnownMicrosoftSecurityProductName { Office365AdvancedThreatProtection = "Office 365 Advanced Threat Protection" } +// @public +export enum KnownMode { + Disabled = "Disabled", + Enabled = "Enabled" +} + +// @public +export enum KnownMtpProvider { + MicrosoftDefenderForCloudApps = "microsoftDefenderForCloudApps", + MicrosoftDefenderForIdentity = "microsoftDefenderForIdentity" +} + // @public export enum KnownOperator { AND = "AND", @@ -3258,6 +4093,12 @@ export enum KnownOwnerType { User = "User" } +// @public +export enum KnownPackageKind { + Solution = "Solution", + Standalone = "Standalone" +} + // @public export enum KnownPermissionProviderScope { ResourceGroup = "ResourceGroup", @@ -3272,6 +4113,13 @@ export enum KnownPollingFrequency { OnceAnHour = "OnceAnHour" } +// @public +export enum KnownPriority { + High = "High", + Low = "Low", + Medium = "Medium" +} + // @public export enum KnownProviderName { MicrosoftAadiamDiagnosticSettings = "microsoft.aadiam/diagnosticSettings", @@ -3282,6 +4130,22 @@ export enum KnownProviderName { MicrosoftOperationalInsightsWorkspacesSharedKeys = "Microsoft.OperationalInsights/workspaces/sharedKeys" } +// @public +export enum KnownProviderPermissionsScope { + ResourceGroup = "ResourceGroup", + Subscription = "Subscription", + Workspace = "Workspace" +} + +// @public +export enum KnownProvisioningState { + Accepted = "Accepted", + Canceled = "Canceled", + Failed = "Failed", + InProgress = "InProgress", + Succeeded = "Succeeded" +} + // @public export enum KnownRegistryHive { HkeyA = "HKEY_A", @@ -3308,9 +4172,16 @@ export enum KnownRegistryValueKind { Unknown = "Unknown" } +// @public +export enum KnownRepositoryAccessKind { + App = "App", + OAuth = "OAuth", + PAT = "PAT" +} + // @public export enum KnownRepoType { - DevOps = "DevOps", + AzureDevOps = "AzureDevOps", Github = "Github" } @@ -3354,6 +4225,27 @@ export enum KnownSourceType { RemoteStorage = "Remote storage" } +// @public +export enum KnownState { + Active = "Active", + CompletedByAction = "CompletedByAction", + CompletedByUser = "CompletedByUser", + Disabled = "Disabled", + Hidden = "Hidden" +} + +// @public +export enum KnownStatus { + Active = "Active", + Approved = "Approved", + Backlog = "Backlog", + Closed = "Closed", + Failed = "Failed", + InProgress = "InProgress", + New = "New", + Succeeded = "Succeeded" +} + // @public export enum KnownSupportTier { Community = "Community", @@ -3369,12 +4261,12 @@ export enum KnownTemplateStatus { } // @public -export enum KnownThreatIntelligenceResourceKindEnum { +export enum KnownThreatIntelligenceResourceInnerKind { Indicator = "indicator" } // @public -export enum KnownThreatIntelligenceSortingCriteriaEnum { +export enum KnownThreatIntelligenceSortingOrder { Ascending = "ascending", Descending = "descending", Unsorted = "unsorted" @@ -3406,6 +4298,15 @@ export enum KnownVersion { V2 = "V2" } +// @public +export enum KnownWarningCode { + SourceControlDeletedWithWarnings = "SourceControl_DeletedWithWarnings", + SourceControlWarningDeletePipelineFromAzureDevOps = "SourceControlWarning_DeletePipelineFromAzureDevOps", + SourceControlWarningDeleteRoleAssignment = "SourceControlWarning_DeleteRoleAssignment", + SourceControlWarningDeleteServicePrincipal = "SourceControlWarning_DeleteServicePrincipal", + SourceControlWarningDeleteWorkflowAndSecretFromGitHub = "SourceControlWarning_DeleteWorkflowAndSecretFromGitHub" +} + // @public export interface LastDataReceivedDataType { lastDataReceivedQuery?: string; @@ -3415,7 +4316,7 @@ export interface LastDataReceivedDataType { // @public export interface MailboxEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly displayName?: string; readonly externalDirectoryObjectId?: string; @@ -3436,7 +4337,7 @@ export interface MailboxEntityProperties extends EntityCommonProperties { // @public export interface MailClusterEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly clusterGroup?: string; readonly clusterQueryEndTime?: Date; @@ -3479,7 +4380,7 @@ export interface MailClusterEntityProperties extends EntityCommonProperties { // @public export interface MailMessageEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; antispamDirection?: AntispamMailDirection; bodyFingerprintBin1?: number; @@ -3542,7 +4443,7 @@ export interface MailMessageEntityProperties extends EntityCommonProperties { // @public export interface MalwareEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly category?: string; readonly fileEntityIds?: string[]; @@ -3703,7 +4604,7 @@ export interface MetadataModel extends ResourceWithEtag { dependencies?: MetadataDependencies; firstPublishDate?: Date; icon?: string; - kind?: Kind; + kind?: string; lastPublishDate?: Date; parentId?: string; previewImages?: string[]; @@ -3726,7 +4627,7 @@ export interface MetadataPatch extends ResourceWithEtag { dependencies?: MetadataDependencies; firstPublishDate?: Date; icon?: string; - kind?: Kind; + kind?: string; lastPublishDate?: Date; parentId?: string; previewImages?: string[]; @@ -3761,6 +4662,37 @@ export interface MetadataUpdateOptionalParams extends coreClient.OperationOption // @public export type MetadataUpdateResponse = MetadataModel; +// @public +export interface MicrosoftPurviewInformationProtectionCheckRequirements extends DataConnectorsCheckRequirements { + kind: "MicrosoftPurviewInformationProtection"; + tenantId?: string; +} + +// @public +export interface MicrosoftPurviewInformationProtectionCheckRequirementsProperties extends DataConnectorTenantId { +} + +// @public +export interface MicrosoftPurviewInformationProtectionConnectorDataTypes { + logs: MicrosoftPurviewInformationProtectionConnectorDataTypesLogs; +} + +// @public +export interface MicrosoftPurviewInformationProtectionConnectorDataTypesLogs extends DataConnectorDataTypeCommon { +} + +// @public +export interface MicrosoftPurviewInformationProtectionDataConnector extends DataConnector { + dataTypes?: MicrosoftPurviewInformationProtectionConnectorDataTypes; + kind: "MicrosoftPurviewInformationProtection"; + tenantId?: string; +} + +// @public +export interface MicrosoftPurviewInformationProtectionDataConnectorProperties extends DataConnectorTenantId { + dataTypes: MicrosoftPurviewInformationProtectionConnectorDataTypes; +} + // @public export interface MicrosoftSecurityIncidentCreationAlertRule extends AlertRule { alertRuleTemplateName?: string; @@ -3852,6 +4784,9 @@ export interface MLBehaviorAnalyticsAlertRuleTemplateProperties extends AlertRul severity: AlertSeverity; } +// @public +export type Mode = string; + // @public export interface MstiCheckRequirements extends DataConnectorsCheckRequirements { kind: "MicrosoftThreatIntelligence"; @@ -3871,15 +4806,9 @@ export interface MstiDataConnector extends DataConnector { // @public export interface MstiDataConnectorDataTypes { - bingSafetyPhishingURL: MstiDataConnectorDataTypesBingSafetyPhishingURL; microsoftEmergingThreatFeed: MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed; } -// @public -export interface MstiDataConnectorDataTypesBingSafetyPhishingURL extends DataConnectorDataTypeCommon { - lookbackPeriod: string; -} - // @public export interface MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed extends DataConnectorDataTypeCommon { lookbackPeriod: string; @@ -3903,15 +4832,21 @@ export interface MTPCheckRequirementsProperties extends DataConnectorTenantId { // @public export interface MTPDataConnector extends DataConnector { dataTypes?: MTPDataConnectorDataTypes; + filteredProviders?: MtpFilteredProviders; kind: "MicrosoftThreatProtection"; tenantId?: string; } // @public export interface MTPDataConnectorDataTypes { + alerts?: MTPDataConnectorDataTypesAlerts; incidents: MTPDataConnectorDataTypesIncidents; } +// @public +export interface MTPDataConnectorDataTypesAlerts extends DataConnectorDataTypeCommon { +} + // @public export interface MTPDataConnectorDataTypesIncidents extends DataConnectorDataTypeCommon { } @@ -3919,12 +4854,21 @@ export interface MTPDataConnectorDataTypesIncidents extends DataConnectorDataTyp // @public export interface MTPDataConnectorProperties extends DataConnectorTenantId { dataTypes: MTPDataConnectorDataTypes; + filteredProviders?: MtpFilteredProviders; +} + +// @public +export interface MtpFilteredProviders { + alerts: MtpProvider[]; } +// @public +export type MtpProvider = string; + // @public export interface NicEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; readonly ipAddressEntityId?: string; @@ -3956,6 +4900,7 @@ export interface NrtAlertRule extends AlertRule { kind: "NRT"; readonly lastModifiedUtc?: Date; query?: string; + sentinelEntitiesMappings?: SentinelEntityMapping[]; severity?: AlertSeverity; suppressionDuration?: string; suppressionEnabled?: boolean; @@ -3980,6 +4925,7 @@ export interface NrtAlertRuleTemplate extends AlertRuleTemplate { readonly lastUpdatedDateUTC?: Date; query?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; + sentinelEntitiesMappings?: SentinelEntityMapping[]; severity?: AlertSeverity; status?: TemplateStatus; tactics?: AttackTactic[]; @@ -4223,6 +5169,76 @@ export type OutputType = string; // @public export type OwnerType = string; +// @public +export interface PackageBaseProperties { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: PackageKind; + contentProductId?: string; + contentSchemaVersion?: string; + dependencies?: MetadataDependencies; + description?: string; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + isFeatured?: Flag; + isNew?: Flag; + isPreview?: Flag; + lastPublishDate?: Date; + providers?: string[]; + publisherDisplayName?: string; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; + version?: string; +} + +// @public +export type PackageKind = string; + +// @public +export interface PackageList { + readonly nextLink?: string; + value: PackageModel[]; +} + +// @public +export interface PackageModel extends ResourceWithEtag { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: PackageKind; + contentProductId?: string; + contentSchemaVersion?: string; + dependencies?: MetadataDependencies; + description?: string; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + isFeatured?: Flag; + isNew?: Flag; + isPreview?: Flag; + lastPublishDate?: Date; + providers?: string[]; + publisherDisplayName?: string; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; + version?: string; +} + +// @public +export interface PackageProperties extends PackageBaseProperties { +} + +// @public (undocumented) +export interface Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema { + repositoryAccess: RepositoryAccess; +} + // @public export type PermissionProviderScope = string; @@ -4243,18 +5259,21 @@ export interface PermissionsResourceProviderItem extends ResourceProvider { // @public (undocumented) export interface PlaybookActionProperties { - logicAppResourceId?: string; + logicAppResourceId: string; tenantId?: string; } // @public export type PollingFrequency = string; +// @public +export type Priority = string; + // @public export interface ProcessEntity extends Entity { readonly accountEntityId?: string; readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly commandLine?: string; readonly creationTimeUtc?: Date; @@ -4281,6 +5300,87 @@ export interface ProcessEntityProperties extends EntityCommonProperties { readonly processId?: string; } +// @public +export interface ProductPackage { + get(resourceGroupName: string, workspaceName: string, packageId: string, options?: ProductPackageGetOptionalParams): Promise; +} + +// @public +export interface ProductPackageAdditionalProperties { + installedVersion?: string; + packagedContent?: Record; + resourceId?: string; +} + +// @public +export interface ProductPackageGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ProductPackageGetResponse = ProductPackageModel; + +// @public +export interface ProductPackageList { + readonly nextLink?: string; + value: ProductPackageModel[]; +} + +// @public +export interface ProductPackageModel extends ResourceWithEtag { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: PackageKind; + contentProductId?: string; + contentSchemaVersion?: string; + dependencies?: MetadataDependencies; + description?: string; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + installedVersion?: string; + isFeatured?: Flag; + isNew?: Flag; + isPreview?: Flag; + lastPublishDate?: Date; + packagedContent?: Record; + providers?: string[]; + publisherDisplayName?: string; + resourceId?: string; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; + version?: string; +} + +// @public +export interface ProductPackageProperties extends PackageBaseProperties, ProductPackageAdditionalProperties { +} + +// @public +export interface ProductPackages { + list(resourceGroupName: string, workspaceName: string, options?: ProductPackagesListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface ProductPackagesListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ProductPackagesListNextResponse = ProductPackageList; + +// @public +export interface ProductPackagesListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type ProductPackagesListResponse = ProductPackageList; + // @public export interface ProductSettings { delete(resourceGroupName: string, workspaceName: string, settingsName: string, options?: ProductSettingsDeleteOptionalParams): Promise; @@ -4315,56 +5415,191 @@ export interface ProductSettingsUpdateOptionalParams extends coreClient.Operatio export type ProductSettingsUpdateResponse = SettingsUnion; // @public -export interface PropertyArrayChangedConditionProperties extends AutomationRuleCondition { - // (undocumented) - conditionProperties?: AutomationRulePropertyArrayChangedValuesCondition; - conditionType: "PropertyArrayChanged"; +export interface ProductTemplate { + get(resourceGroupName: string, workspaceName: string, templateId: string, options?: ProductTemplateGetOptionalParams): Promise; } // @public -export interface PropertyArrayConditionProperties extends AutomationRuleCondition { - // (undocumented) - conditionProperties?: AutomationRulePropertyArrayValuesCondition; - conditionType: "PropertyArray"; +export interface ProductTemplateAdditionalProperties { + packagedContent?: Record; } // @public -export interface PropertyChangedConditionProperties extends AutomationRuleCondition { - // (undocumented) - conditionProperties?: AutomationRulePropertyValuesChangedCondition; - conditionType: "PropertyChanged"; +export interface ProductTemplateGetOptionalParams extends coreClient.OperationOptions { } // @public -export interface PropertyConditionProperties extends AutomationRuleCondition { - // (undocumented) - conditionProperties?: AutomationRulePropertyValuesCondition; - conditionType: "Property"; -} +export type ProductTemplateGetResponse = ProductTemplateModel; // @public -export type ProviderName = string; +export interface ProductTemplateList { + readonly nextLink?: string; + value: ProductTemplateModel[]; +} // @public -export interface QueryBasedAlertRuleTemplateProperties { - alertDetailsOverride?: AlertDetailsOverride; - customDetails?: { - [propertyName: string]: string; - }; - entityMappings?: EntityMapping[]; - eventGroupingSettings?: EventGroupingSettings; - query?: string; - severity?: AlertSeverity; +export interface ProductTemplateModel extends ResourceWithEtag { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: Kind; + contentProductId?: string; + contentSchemaVersion?: string; + customVersion?: string; + dependencies?: MetadataDependencies; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + lastPublishDate?: Date; + packagedContent?: Record; + packageId?: string; + packageKind?: PackageKind; + packageName?: string; + packageVersion?: string; + previewImages?: string[]; + previewImagesDark?: string[]; + providers?: string[]; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; version?: string; } // @public -export type RegistryHive = string; +export interface ProductTemplateProperties extends TemplateBaseProperties, ProductTemplateAdditionalProperties { +} + +// @public +export interface ProductTemplates { + list(resourceGroupName: string, workspaceName: string, options?: ProductTemplatesListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface ProductTemplatesListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type ProductTemplatesListNextResponse = ProductTemplateList; + +// @public +export interface ProductTemplatesListOptionalParams extends coreClient.OperationOptions { + filter?: string; + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type ProductTemplatesListResponse = ProductTemplateList; + +// @public +export interface PropertyArrayChangedConditionProperties extends AutomationRuleCondition { + // (undocumented) + conditionProperties?: AutomationRulePropertyArrayChangedValuesCondition; + conditionType: "PropertyArrayChanged"; +} + +// @public +export interface PropertyArrayConditionProperties extends AutomationRuleCondition { + // (undocumented) + conditionProperties?: AutomationRulePropertyArrayValuesCondition; + conditionType: "PropertyArray"; +} + +// @public +export interface PropertyChangedConditionProperties extends AutomationRuleCondition { + // (undocumented) + conditionProperties?: AutomationRulePropertyValuesChangedCondition; + conditionType: "PropertyChanged"; +} + +// @public +export interface PropertyConditionProperties extends AutomationRuleCondition { + // (undocumented) + conditionProperties?: AutomationRulePropertyValuesCondition; + conditionType: "Property"; +} + +// @public +export type ProviderName = string; + +// @public +export type ProviderPermissionsScope = string; + +// @public +export type ProvisioningState = string; + +// @public +export interface PullRequest { + readonly state?: State; + readonly url?: string; +} + +// @public +export interface QueryBasedAlertRuleTemplateProperties { + alertDetailsOverride?: AlertDetailsOverride; + customDetails?: { + [propertyName: string]: string; + }; + entityMappings?: EntityMapping[]; + eventGroupingSettings?: EventGroupingSettings; + query?: string; + sentinelEntitiesMappings?: SentinelEntityMapping[]; + severity?: AlertSeverity; + version?: string; +} + +// @public +export interface Recommendation { + actions: RecommendedAction[]; + additionalProperties?: { + [propertyName: string]: string; + }; + category: Category; + content?: Content; + context: Context; + description: string; + displayUntilTimeUtc?: Date; + hideUntilTimeUtc?: Date; + id: string; + instructions: Instructions; + lastEvaluatedTimeUtc: Date; + priority: Priority; + recommendationTypeId: string; + recommendationTypeTitle: string; + resourceId?: string; + state: State; + title: string; + visible?: boolean; + workspaceId: string; +} + +// @public +export interface RecommendationList { + value?: Recommendation[]; +} + +// @public +export interface RecommendationPatch { + hideUntilTimeUtc?: Date; + state?: State; +} + +// @public +export interface RecommendedAction { + linkText: string; + linkUrl: string; + state?: Priority; +} + +// @public +export type RegistryHive = string; // @public export interface RegistryKeyEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; readonly hive?: RegistryHive; @@ -4381,7 +5616,7 @@ export interface RegistryKeyEntityProperties extends EntityCommonProperties { // @public export interface RegistryValueEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; readonly keyEntityId?: string; @@ -4431,17 +5666,29 @@ export interface RepoList { // @public export interface Repository { - branch?: string; - deploymentLogsUrl?: string; + branch: string; + readonly deploymentLogsUrl?: string; displayUrl?: string; - pathMapping?: ContentPathMap[]; - url?: string; + url: string; +} + +// @public +export interface RepositoryAccess { + clientId?: string; + code?: string; + installationId?: string; + kind: RepositoryAccessKind; + state?: string; + token?: string; } +// @public +export type RepositoryAccessKind = string; + // @public export interface RepositoryResourceInfo { - azureDevOpsResourceInfo?: AzureDevOpsResourceInfo; - gitHubResourceInfo?: GitHubResourceInfo; + readonly azureDevOpsResourceInfo?: AzureDevOpsResourceInfo; + readonly gitHubResourceInfo?: GitHubResourceInfo; webhook?: Webhook; } @@ -4473,6 +5720,14 @@ export interface ResourceProvider { scope?: PermissionProviderScope; } +// @public +export interface ResourceProviderRequiredPermissions { + action?: boolean; + delete?: boolean; + read?: boolean; + write?: boolean; +} + // @public export interface ResourceWithEtag extends Resource { etag?: string; @@ -4484,6 +5739,18 @@ export interface SampleQueries { query?: string; } +// @public +export interface SampleQuery { + description: string; + query: string; +} + +// @public +export interface SapSolutionUsageStatistic extends BillingStatistic { + readonly activeSystemIdCount?: number; + kind: "SapSolutionUsage"; +} + // @public export interface ScheduledAlertRule extends AlertRule { alertDetailsOverride?: AlertDetailsOverride; @@ -4502,6 +5769,7 @@ export interface ScheduledAlertRule extends AlertRule { query?: string; queryFrequency?: string; queryPeriod?: string; + sentinelEntitiesMappings?: SentinelEntityMapping[]; severity?: AlertSeverity; suppressionDuration?: string; suppressionEnabled?: boolean; @@ -4523,6 +5791,7 @@ export interface ScheduledAlertRuleCommonProperties { query?: string; queryFrequency?: string; queryPeriod?: string; + sentinelEntitiesMappings?: SentinelEntityMapping[]; severity?: AlertSeverity; triggerOperator?: TriggerOperator; triggerThreshold?: number; @@ -4561,6 +5830,7 @@ export interface ScheduledAlertRuleTemplate extends AlertRuleTemplate { queryFrequency?: string; queryPeriod?: string; requiredDataConnectors?: AlertRuleTemplateDataSource[]; + sentinelEntitiesMappings?: SentinelEntityMapping[]; severity?: AlertSeverity; status?: TemplateStatus; tactics?: AttackTactic[]; @@ -4573,7 +5843,7 @@ export interface ScheduledAlertRuleTemplate extends AlertRuleTemplate { // @public export interface SecurityAlert extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly alertDisplayName?: string; readonly alertLink?: string; @@ -4646,17 +5916,19 @@ export interface SecurityAlertTimelineItem extends EntityTimelineItem { description?: string; displayName: string; endTimeUtc: Date; + readonly intent?: KillChainIntent; kind: "SecurityAlert"; productName?: string; severity: AlertSeverity; startTimeUtc: Date; + techniques?: string[]; timeGenerated: Date; } // @public export interface SecurityGroupEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly distinguishedName?: string; readonly friendlyName?: string; @@ -4680,6 +5952,8 @@ export class SecurityInsights extends coreClient.ServiceClient { // (undocumented) actions: Actions; // (undocumented) + alertRuleOperations: AlertRuleOperations; + // (undocumented) alertRules: AlertRules; // (undocumented) alertRuleTemplates: AlertRuleTemplates; @@ -4688,12 +5962,24 @@ export class SecurityInsights extends coreClient.ServiceClient { // (undocumented) automationRules: AutomationRules; // (undocumented) + billingStatistics: BillingStatistics; + // (undocumented) bookmarkOperations: BookmarkOperations; // (undocumented) bookmarkRelations: BookmarkRelations; // (undocumented) bookmarks: Bookmarks; // (undocumented) + contentPackage: ContentPackage; + // (undocumented) + contentPackages: ContentPackages; + // (undocumented) + contentTemplate: ContentTemplate; + // (undocumented) + contentTemplates: ContentTemplates; + // (undocumented) + dataConnectorDefinitions: DataConnectorDefinitions; + // (undocumented) dataConnectors: DataConnectors; // (undocumented) dataConnectorsCheckRequirementsOperations: DataConnectorsCheckRequirementsOperations; @@ -4714,12 +6000,26 @@ export class SecurityInsights extends coreClient.ServiceClient { // (undocumented) fileImports: FileImports; // (undocumented) + get: Get; + // (undocumented) + getRecommendations: GetRecommendations; + // (undocumented) + getTriggeredAnalyticsRuleRuns: GetTriggeredAnalyticsRuleRuns; + // (undocumented) + huntComments: HuntComments; + // (undocumented) + huntRelations: HuntRelations; + // (undocumented) + hunts: Hunts; + // (undocumented) incidentComments: IncidentComments; // (undocumented) incidentRelations: IncidentRelations; // (undocumented) incidents: Incidents; // (undocumented) + incidentTasks: IncidentTasks; + // (undocumented) iPGeodata: IPGeodata; // (undocumented) metadata: Metadata; @@ -4728,8 +6028,16 @@ export class SecurityInsights extends coreClient.ServiceClient { // (undocumented) operations: Operations; // (undocumented) + productPackage: ProductPackage; + // (undocumented) + productPackages: ProductPackages; + // (undocumented) productSettings: ProductSettings; // (undocumented) + productTemplate: ProductTemplate; + // (undocumented) + productTemplates: ProductTemplates; + // (undocumented) securityMLAnalyticsSettings: SecurityMLAnalyticsSettings; // (undocumented) sentinelOnboardingStates: SentinelOnboardingStates; @@ -4746,9 +6054,23 @@ export class SecurityInsights extends coreClient.ServiceClient { // (undocumented) threatIntelligenceIndicators: ThreatIntelligenceIndicators; // (undocumented) + triggeredAnalyticsRuleRunOperations: TriggeredAnalyticsRuleRunOperations; + // (undocumented) + update: Update; + // (undocumented) watchlistItems: WatchlistItems; // (undocumented) watchlists: Watchlists; + // (undocumented) + workspaceManagerAssignmentJobs: WorkspaceManagerAssignmentJobs; + // (undocumented) + workspaceManagerAssignments: WorkspaceManagerAssignments; + // (undocumented) + workspaceManagerConfigurations: WorkspaceManagerConfigurations; + // (undocumented) + workspaceManagerGroups: WorkspaceManagerGroups; + // (undocumented) + workspaceManagerMembers: WorkspaceManagerMembers; } // @public @@ -4821,6 +6143,11 @@ export type SecurityMLAnalyticsSettingsListResponse = SecurityMLAnalyticsSetting // @public (undocumented) export type SecurityMLAnalyticsSettingUnion = SecurityMLAnalyticsSetting | AnomalySecurityMLAnalyticsSettings; +// @public +export interface SentinelEntityMapping { + columnName?: string; +} + // @public export interface SentinelOnboardingState extends ResourceWithEtag { customerManagedKey?: boolean; @@ -4865,6 +6192,13 @@ export interface SentinelOnboardingStatesListOptionalParams extends coreClient.O // @public export type SentinelOnboardingStatesListResponse = SentinelOnboardingStatesList; +// @public +export interface ServicePrincipal { + readonly appId?: string; + readonly id?: string; + readonly tenantId?: string; +} + // @public export type SettingKind = string; @@ -4892,12 +6226,15 @@ export interface SourceControl extends ResourceWithEtag { contentTypes?: ContentType[]; description?: string; displayName?: string; - idPropertiesId?: string; - lastDeploymentInfo?: DeploymentInfo; + readonly idPropertiesId?: string; + readonly lastDeploymentInfo?: DeploymentInfo; + readonly pullRequest?: PullRequest; repository?: Repository; + repositoryAccess?: RepositoryAccess; repositoryResourceInfo?: RepositoryResourceInfo; repoType?: RepoType; - version?: Version; + readonly servicePrincipal?: ServicePrincipal; + readonly version?: Version; } // @public @@ -4928,7 +6265,7 @@ export interface SourceControlOperations { // @public export interface SourceControls { create(resourceGroupName: string, workspaceName: string, sourceControlId: string, sourceControl: SourceControl, options?: SourceControlsCreateOptionalParams): Promise; - delete(resourceGroupName: string, workspaceName: string, sourceControlId: string, options?: SourceControlsDeleteOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, sourceControlId: string, repositoryAccess: Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema, options?: SourceControlsDeleteOptionalParams): Promise; get(resourceGroupName: string, workspaceName: string, sourceControlId: string, options?: SourceControlsGetOptionalParams): Promise; list(resourceGroupName: string, workspaceName: string, options?: SourceControlsListOptionalParams): PagedAsyncIterableIterator; } @@ -4944,6 +6281,9 @@ export type SourceControlsCreateResponse = SourceControl; export interface SourceControlsDeleteOptionalParams extends coreClient.OperationOptions { } +// @public +export type SourceControlsDeleteResponse = Warning; + // @public export interface SourceControlsGetOptionalParams extends coreClient.OperationOptions { } @@ -4971,10 +6311,16 @@ export type SourceKind = string; // @public export type SourceType = string; +// @public +export type State = string; + +// @public +export type Status = string; + // @public export interface SubmissionMailEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; kind: "SubmissionMail"; @@ -5034,6 +6380,78 @@ export interface TeamProperties { teamName: string; } +// @public +export interface TemplateAdditionalProperties { + mainTemplate?: Record; +} + +// @public +export interface TemplateBaseProperties { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: Kind; + contentProductId?: string; + contentSchemaVersion?: string; + customVersion?: string; + dependencies?: MetadataDependencies; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + lastPublishDate?: Date; + packageId?: string; + packageKind?: PackageKind; + packageName?: string; + packageVersion?: string; + previewImages?: string[]; + previewImagesDark?: string[]; + providers?: string[]; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; + version?: string; +} + +// @public +export interface TemplateList { + readonly nextLink?: string; + value: TemplateModel[]; +} + +// @public +export interface TemplateModel extends ResourceWithEtag { + author?: MetadataAuthor; + categories?: MetadataCategories; + contentId?: string; + contentKind?: Kind; + contentProductId?: string; + contentSchemaVersion?: string; + customVersion?: string; + dependencies?: MetadataDependencies; + displayName?: string; + firstPublishDate?: Date; + icon?: string; + lastPublishDate?: Date; + mainTemplate?: Record; + packageId?: string; + packageKind?: PackageKind; + packageName?: string; + packageVersion?: string; + previewImages?: string[]; + previewImagesDark?: string[]; + providers?: string[]; + source?: MetadataSource; + support?: MetadataSupport; + threatAnalysisTactics?: string[]; + threatAnalysisTechniques?: string[]; + version?: string; +} + +// @public +export interface TemplateProperties extends TemplateBaseProperties, TemplateAdditionalProperties { +} + // @public export type TemplateStatus = string; @@ -5175,7 +6593,7 @@ export type ThreatIntelligenceIndicatorMetricsListResponse = ThreatIntelligenceM // @public export interface ThreatIntelligenceIndicatorModel extends ThreatIntelligenceInformation { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; confidence?: number; created?: string; @@ -5291,7 +6709,7 @@ export type ThreatIntelligenceIndicatorsListResponse = ThreatIntelligenceInforma // @public export interface ThreatIntelligenceInformation extends ResourceWithEtag { - kind: ThreatIntelligenceResourceKindEnum; + kind: ThreatIntelligenceResourceInnerKind; } // @public @@ -5346,16 +6764,16 @@ export interface ThreatIntelligenceParsedPatternTypeValue { } // @public -export type ThreatIntelligenceResourceKindEnum = string; +export type ThreatIntelligenceResourceInnerKind = string; // @public export interface ThreatIntelligenceSortingCriteria { itemKey?: string; - sortOrder?: ThreatIntelligenceSortingCriteriaEnum; + sortOrder?: ThreatIntelligenceSortingOrder; } // @public -export type ThreatIntelligenceSortingCriteriaEnum = string; +export type ThreatIntelligenceSortingOrder = string; // @public export interface TICheckRequirements extends DataConnectorsCheckRequirements { @@ -5457,6 +6875,39 @@ export interface TiTaxiiDataConnectorProperties extends DataConnectorTenantId { workspaceId?: string; } +// @public +export interface TriggeredAnalyticsRuleRun extends ResourceWithEtag { + // (undocumented) + executionTimeUtc: Date; + provisioningState: ProvisioningState; + // (undocumented) + ruleId: string; + ruleRunAdditionalData?: { + [propertyName: string]: any; + }; + // (undocumented) + triggeredAnalyticsRuleRunId: string; +} + +// @public +export interface TriggeredAnalyticsRuleRunGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type TriggeredAnalyticsRuleRunGetResponse = TriggeredAnalyticsRuleRun; + +// @public +export interface TriggeredAnalyticsRuleRunOperations { + get(resourceGroupName: string, workspaceName: string, ruleRunId: string, options?: TriggeredAnalyticsRuleRunGetOptionalParams): Promise; +} + +// @public +export interface TriggeredAnalyticsRuleRuns { + readonly nextLink?: string; + // (undocumented) + value: TriggeredAnalyticsRuleRun[]; +} + // @public export type TriggerOperator = "GreaterThan" | "LessThan" | "Equal" | "NotEqual"; @@ -5475,10 +6926,25 @@ export interface Ueba extends Settings { // @public export type UebaDataSources = string; +// @public +export interface Update { + beginRecommendation(resourceGroupName: string, workspaceName: string, recommendationId: string, recommendationPatch: RecommendationPatch[], options?: UpdateRecommendationOptionalParams): Promise, UpdateRecommendationResponse>>; + beginRecommendationAndWait(resourceGroupName: string, workspaceName: string, recommendationId: string, recommendationPatch: RecommendationPatch[], options?: UpdateRecommendationOptionalParams): Promise; +} + +// @public +export interface UpdateRecommendationOptionalParams extends coreClient.OperationOptions { + resumeFrom?: string; + updateIntervalInMs?: number; +} + +// @public +export type UpdateRecommendationResponse = Recommendation; + // @public export interface UrlEntity extends Entity { readonly additionalData?: { - [propertyName: string]: Record; + [propertyName: string]: any; }; readonly friendlyName?: string; kind: "Url"; @@ -5506,6 +6972,21 @@ export interface ValidationError { // @public export type Version = string; +// @public +export interface Warning { + readonly warning?: WarningBody; +} + +// @public +export interface WarningBody { + readonly code?: WarningCode; + readonly details?: WarningBody[]; + readonly message?: string; +} + +// @public +export type WarningCode = string; + // @public export interface Watchlist extends ResourceWithEtag { contentType?: string; @@ -5659,11 +7140,276 @@ export type WatchlistsListResponse = WatchlistList; // @public export interface Webhook { rotateWebhookSecret?: boolean; - webhookId?: string; - webhookSecretUpdateTime?: string; - webhookUrl?: string; + readonly webhookId?: string; + readonly webhookSecretUpdateTime?: Date; + readonly webhookUrl?: string; +} + +// @public +export interface WorkspaceManagerAssignment extends AzureEntityResource { + items?: AssignmentItem[]; + readonly lastJobEndTime?: Date; + readonly lastJobProvisioningState?: ProvisioningState; + targetResourceName?: string; +} + +// @public +export interface WorkspaceManagerAssignmentJobs { + create(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, options?: WorkspaceManagerAssignmentJobsCreateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, jobName: string, options?: WorkspaceManagerAssignmentJobsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, jobName: string, options?: WorkspaceManagerAssignmentJobsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, options?: WorkspaceManagerAssignmentJobsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface WorkspaceManagerAssignmentJobsCreateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentJobsCreateResponse = Job; + +// @public +export interface WorkspaceManagerAssignmentJobsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface WorkspaceManagerAssignmentJobsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentJobsGetResponse = Job; + +// @public +export interface WorkspaceManagerAssignmentJobsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentJobsListNextResponse = JobList; + +// @public +export interface WorkspaceManagerAssignmentJobsListOptionalParams extends coreClient.OperationOptions { + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type WorkspaceManagerAssignmentJobsListResponse = JobList; + +// @public +export interface WorkspaceManagerAssignmentList { + readonly nextLink?: string; + value: WorkspaceManagerAssignment[]; +} + +// @public +export interface WorkspaceManagerAssignments { + createOrUpdate(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, workspaceManagerAssignment: WorkspaceManagerAssignment, options?: WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, options?: WorkspaceManagerAssignmentsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, workspaceManagerAssignmentName: string, options?: WorkspaceManagerAssignmentsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: WorkspaceManagerAssignmentsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentsCreateOrUpdateResponse = WorkspaceManagerAssignment; + +// @public +export interface WorkspaceManagerAssignmentsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface WorkspaceManagerAssignmentsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentsGetResponse = WorkspaceManagerAssignment; + +// @public +export interface WorkspaceManagerAssignmentsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerAssignmentsListNextResponse = WorkspaceManagerAssignmentList; + +// @public +export interface WorkspaceManagerAssignmentsListOptionalParams extends coreClient.OperationOptions { + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type WorkspaceManagerAssignmentsListResponse = WorkspaceManagerAssignmentList; + +// @public +export interface WorkspaceManagerConfiguration extends AzureEntityResource { + mode?: Mode; +} + +// @public +export interface WorkspaceManagerConfigurationList { + readonly nextLink?: string; + value: WorkspaceManagerConfiguration[]; +} + +// @public +export interface WorkspaceManagerConfigurations { + createOrUpdate(resourceGroupName: string, workspaceName: string, workspaceManagerConfigurationName: string, workspaceManagerConfiguration: WorkspaceManagerConfiguration, options?: WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, workspaceManagerConfigurationName: string, options?: WorkspaceManagerConfigurationsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, workspaceManagerConfigurationName: string, options?: WorkspaceManagerConfigurationsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: WorkspaceManagerConfigurationsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerConfigurationsCreateOrUpdateResponse = WorkspaceManagerConfiguration; + +// @public +export interface WorkspaceManagerConfigurationsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface WorkspaceManagerConfigurationsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerConfigurationsGetResponse = WorkspaceManagerConfiguration; + +// @public +export interface WorkspaceManagerConfigurationsListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerConfigurationsListNextResponse = WorkspaceManagerConfigurationList; + +// @public +export interface WorkspaceManagerConfigurationsListOptionalParams extends coreClient.OperationOptions { + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type WorkspaceManagerConfigurationsListResponse = WorkspaceManagerConfigurationList; + +// @public +export interface WorkspaceManagerGroup extends AzureEntityResource { + description?: string; + displayName?: string; + memberResourceNames?: string[]; +} + +// @public +export interface WorkspaceManagerGroupList { + readonly nextLink?: string; + value: WorkspaceManagerGroup[]; +} + +// @public +export interface WorkspaceManagerGroups { + createOrUpdate(resourceGroupName: string, workspaceName: string, workspaceManagerGroupName: string, workspaceManagerGroup: WorkspaceManagerGroup, options?: WorkspaceManagerGroupsCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, workspaceManagerGroupName: string, options?: WorkspaceManagerGroupsDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, workspaceManagerGroupName: string, options?: WorkspaceManagerGroupsGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: WorkspaceManagerGroupsListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface WorkspaceManagerGroupsCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerGroupsCreateOrUpdateResponse = WorkspaceManagerGroup; + +// @public +export interface WorkspaceManagerGroupsDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface WorkspaceManagerGroupsGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerGroupsGetResponse = WorkspaceManagerGroup; + +// @public +export interface WorkspaceManagerGroupsListNextOptionalParams extends coreClient.OperationOptions { } +// @public +export type WorkspaceManagerGroupsListNextResponse = WorkspaceManagerGroupList; + +// @public +export interface WorkspaceManagerGroupsListOptionalParams extends coreClient.OperationOptions { + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type WorkspaceManagerGroupsListResponse = WorkspaceManagerGroupList; + +// @public +export interface WorkspaceManagerMember extends AzureEntityResource { + targetWorkspaceId?: string; + targetWorkspaceTenantId?: string; +} + +// @public +export interface WorkspaceManagerMembers { + createOrUpdate(resourceGroupName: string, workspaceName: string, workspaceManagerMemberName: string, workspaceManagerMember: WorkspaceManagerMember, options?: WorkspaceManagerMembersCreateOrUpdateOptionalParams): Promise; + delete(resourceGroupName: string, workspaceName: string, workspaceManagerMemberName: string, options?: WorkspaceManagerMembersDeleteOptionalParams): Promise; + get(resourceGroupName: string, workspaceName: string, workspaceManagerMemberName: string, options?: WorkspaceManagerMembersGetOptionalParams): Promise; + list(resourceGroupName: string, workspaceName: string, options?: WorkspaceManagerMembersListOptionalParams): PagedAsyncIterableIterator; +} + +// @public +export interface WorkspaceManagerMembersCreateOrUpdateOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerMembersCreateOrUpdateResponse = WorkspaceManagerMember; + +// @public +export interface WorkspaceManagerMembersDeleteOptionalParams extends coreClient.OperationOptions { +} + +// @public +export interface WorkspaceManagerMembersGetOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerMembersGetResponse = WorkspaceManagerMember; + +// @public +export interface WorkspaceManagerMembersList { + readonly nextLink?: string; + value: WorkspaceManagerMember[]; +} + +// @public +export interface WorkspaceManagerMembersListNextOptionalParams extends coreClient.OperationOptions { +} + +// @public +export type WorkspaceManagerMembersListNextResponse = WorkspaceManagerMembersList; + +// @public +export interface WorkspaceManagerMembersListOptionalParams extends coreClient.OperationOptions { + orderby?: string; + skipToken?: string; + top?: number; +} + +// @public +export type WorkspaceManagerMembersListResponse = WorkspaceManagerMembersList; + // (No @packageDocumentation comment for this package) ``` diff --git a/sdk/securityinsight/arm-securityinsight/src/lroImpl.ts b/sdk/securityinsight/arm-securityinsight/src/lroImpl.ts index 518d5f053b4e..dd803cd5e28c 100644 --- a/sdk/securityinsight/arm-securityinsight/src/lroImpl.ts +++ b/sdk/securityinsight/arm-securityinsight/src/lroImpl.ts @@ -6,29 +6,37 @@ * Changes may cause incorrect behavior and will be lost if the code is regenerated. */ +// Copyright (c) Microsoft Corporation. +// Licensed under the MIT license. + +import { AbortSignalLike } from "@azure/abort-controller"; import { LongRunningOperation, LroResponse } from "@azure/core-lro"; -export class LroImpl implements LongRunningOperation { - constructor( - private sendOperationFn: (args: any, spec: any) => Promise>, - private args: Record, - private spec: { - readonly requestBody?: unknown; - readonly path?: string; - readonly httpMethod: string; - } & Record, - public requestPath: string = spec.path!, - public requestMethod: string = spec.httpMethod - ) {} - public async sendInitialRequest(): Promise> { - return this.sendOperationFn(this.args, this.spec); - } - public async sendPollRequest(path: string): Promise> { - const { requestBody, ...restSpec } = this.spec; - return this.sendOperationFn(this.args, { - ...restSpec, - path, - httpMethod: "GET" - }); - } +export function createLroSpec(inputs: { + sendOperationFn: (args: any, spec: any) => Promise>; + args: Record; + spec: { + readonly requestBody?: unknown; + readonly path?: string; + readonly httpMethod: string; + } & Record; +}): LongRunningOperation { + const { args, spec, sendOperationFn } = inputs; + return { + requestMethod: spec.httpMethod, + requestPath: spec.path!, + sendInitialRequest: () => sendOperationFn(args, spec), + sendPollRequest: ( + path: string, + options?: { abortSignal?: AbortSignalLike } + ) => { + const { requestBody, ...restSpec } = spec; + return sendOperationFn(args, { + ...restSpec, + httpMethod: "GET", + path, + abortSignal: options?.abortSignal + }); + } + }; } diff --git a/sdk/securityinsight/arm-securityinsight/src/models/index.ts b/sdk/securityinsight/arm-securityinsight/src/models/index.ts index ce2c0ea1f1ab..e9d69dff06f6 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/index.ts @@ -17,6 +17,7 @@ export type AutomationRuleConditionUnion = | PropertyConditionProperties; export type AutomationRuleActionUnion = | AutomationRuleAction + | AutomationRuleAddIncidentTaskAction | AutomationRuleModifyPropertiesAction | AutomationRuleRunPlaybookAction; export type EntityTimelineItemUnion = @@ -40,6 +41,7 @@ export type DataConnectorsCheckRequirementsUnion = | MtpCheckRequirements | OfficeATPCheckRequirements | OfficeIRMCheckRequirements + | MicrosoftPurviewInformationProtectionCheckRequirements | Office365ProjectCheckRequirements | OfficePowerBICheckRequirements | TICheckRequirements @@ -116,9 +118,11 @@ export type DataConnectorUnion = | ASCDataConnector | AwsCloudTrailDataConnector | AwsS3DataConnector + | GCPDataConnector | McasDataConnector | Dynamics365DataConnector | OfficeATPDataConnector + | MicrosoftPurviewInformationProtectionDataConnector | Office365ProjectDataConnector | OfficePowerBIDataConnector | OfficeIRMDataConnector @@ -129,6 +133,12 @@ export type DataConnectorUnion = | IoTDataConnector | CodelessUiDataConnector | CodelessApiPollingDataConnector; +export type DataConnectorDefinitionUnion = + | DataConnectorDefinition + | CustomizableConnectorDefinition; +export type BillingStatisticUnion = + | BillingStatistic + | SapSolutionUsageStatistic; /** List all the alert rules. */ export interface AlertRulesList { @@ -255,7 +265,7 @@ export interface AutomationRuleCondition { /** Describes an automation rule action. */ export interface AutomationRuleAction { /** Polymorphic discriminator, which specifies the different types this object can be */ - actionType: "ModifyProperties" | "RunPlaybook"; + actionType: "AddIncidentTask" | "ModifyProperties" | "RunPlaybook"; order: number; } @@ -276,11 +286,81 @@ export interface AutomationRulesList { nextLink?: string; } +/** Describes the request body for triggering a playbook on an entity. */ +export interface EntityManualTriggerRequestBody { + /** Incident ARM id. */ + incidentArmId?: string; + /** The tenant id of the playbook resource. */ + tenantId?: string; + /** The resource id of the playbook resource. */ + logicAppsResourceId: string; +} + export interface ManualTriggerRequestBody { tenantId?: string; logicAppsResourceId: string; } +/** List of all Microsoft Sentinel billing statistics. */ +export interface BillingStatisticList { + /** + * URL to fetch the next set of billing statistics. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of billing statistics. */ + value: BillingStatisticUnion[]; +} + +/** Common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.). */ +export interface ErrorResponse { + /** The error object. */ + error?: ErrorDetail; +} + +/** The error detail. */ +export interface ErrorDetail { + /** + * The error code. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly code?: string; + /** + * The error message. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly message?: string; + /** + * The error target. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly target?: string; + /** + * The error details. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly details?: ErrorDetail[]; + /** + * The error additional info. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly additionalInfo?: ErrorAdditionalInfo[]; +} + +/** The resource management error additional info. */ +export interface ErrorAdditionalInfo { + /** + * The additional info type. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly type?: string; + /** + * The additional info. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly info?: Record; +} + /** List all the bookmarks. */ export interface BookmarkList { /** @@ -380,7 +460,7 @@ export interface ExpansionResultAggregation { /** The display name of the aggregation by type. */ displayName?: string; /** The kind of the aggregated entity. */ - entityKind: EntityKind; + entityKind: EntityKindEnum; } /** The expansion result values. */ @@ -399,6 +479,228 @@ export interface ConnectedEntity { additionalData?: Record; } +/** List available packages. */ +export interface PackageList { + /** + * URL to fetch the next set of packages. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of packages. */ + value: PackageModel[]; +} + +/** Describes package properties */ +export interface PackageBaseProperties { + /** The content id of the package */ + contentId?: string; + /** Unique ID for the content. It should be generated based on the contentId, contentKind and the contentVersion of the package */ + contentProductId?: string; + /** The package kind */ + contentKind?: PackageKind; + /** The version of the content schema. */ + contentSchemaVersion?: string; + /** Flag indicates if this is a newly published package. */ + isNew?: Flag; + /** Flag indicates if this package is in preview. */ + isPreview?: Flag; + /** Flag indicates if this package is among the featured list. */ + isFeatured?: Flag; + /** the latest version number of the package */ + version?: string; + /** The display name of the package */ + displayName?: string; + /** The description of the package */ + description?: string; + /** The publisher display name of the package */ + publisherDisplayName?: string; + /** The source of the package */ + source?: MetadataSource; + /** The author of the package */ + author?: MetadataAuthor; + /** The support tier of the package */ + support?: MetadataSupport; + /** The support tier of the package */ + dependencies?: MetadataDependencies; + /** Providers for the package item */ + providers?: string[]; + /** first publish date package item */ + firstPublishDate?: Date; + /** last publish date for the package item */ + lastPublishDate?: Date; + /** The categories of the package */ + categories?: MetadataCategories; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** the icon identifier. this id can later be fetched from the content metadata */ + icon?: string; +} + +/** The original source of the content item, where it comes from. */ +export interface MetadataSource { + /** Source type of the content */ + kind: SourceKind; + /** Name of the content source. The repo name, solution name, LA workspace name etc. */ + name?: string; + /** ID of the content source. The solution ID, workspace ID, etc */ + sourceId?: string; +} + +/** Publisher or creator of the content item. */ +export interface MetadataAuthor { + /** Name of the author. Company or person. */ + name?: string; + /** Email of author contact */ + email?: string; + /** Link for author/vendor page */ + link?: string; +} + +/** Support information for the content item. */ +export interface MetadataSupport { + /** Type of support for content item */ + tier: SupportTier; + /** Name of the support contact. Company or person. */ + name?: string; + /** Email of support contact */ + email?: string; + /** Link for support help, like to support page to open a ticket etc. */ + link?: string; +} + +/** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex dependencies. */ +export interface MetadataDependencies { + /** Id of the content item we depend on */ + contentId?: string; + /** Type of the content item we depend on */ + kind?: Kind; + /** Version of the the content item we depend on. Can be blank, * or missing to indicate any version fulfills the dependency. If version does not match our defined numeric format then an exact match is required. */ + version?: string; + /** Name of the content item */ + name?: string; + /** Operator used for list of dependencies in criteria array. */ + operator?: Operator; + /** This is the list of dependencies we must fulfill, according to the AND/OR operator */ + criteria?: MetadataDependencies[]; +} + +/** ies for the solution content item */ +export interface MetadataCategories { + /** domain for the solution content item */ + domains?: string[]; + /** Industry verticals for the solution content item */ + verticals?: string[]; +} + +/** List available packages. */ +export interface ProductPackageList { + /** + * URL to fetch the next set of packages. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of packages. */ + value: ProductPackageModel[]; +} + +/** product package additional properties */ +export interface ProductPackageAdditionalProperties { + /** The version of the installed package, null or absent means not installed. */ + installedVersion?: string; + /** The metadata resource id. */ + resourceId?: string; + /** the json to deploy */ + packagedContent?: Record; +} + +/** List of all the template. */ +export interface ProductTemplateList { + /** Array of templates. */ + value: ProductTemplateModel[]; + /** + * URL to fetch the next page of template. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; +} + +/** Template property bag. */ +export interface TemplateBaseProperties { + /** Static ID for the content. Used to identify dependencies and content from solutions or community. Hard-coded/static for out of the box content and solutions. Dynamic for user-created. This is the resource name */ + contentId?: string; + /** Unique ID for the content. It should be generated based on the contentId of the package, contentId of the template, contentKind of the template and the contentVersion of the template */ + contentProductId?: string; + /** Version of the package. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ + packageVersion?: string; + /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ + version?: string; + /** The display name of the template */ + displayName?: string; + /** The kind of content the template is for. */ + contentKind?: Kind; + /** Source of the content. This is where/how it was created. */ + source?: MetadataSource; + /** The creator of the content item. */ + author?: MetadataAuthor; + /** Support information for the template - type, name, contact information */ + support?: MetadataSupport; + /** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex formats. */ + dependencies?: MetadataDependencies; + /** Categories for the item */ + categories?: MetadataCategories; + /** Providers for the content item */ + providers?: string[]; + /** first publish date content item */ + firstPublishDate?: Date; + /** last publish date for the content item */ + lastPublishDate?: Date; + /** The custom version of the content. A optional free text */ + customVersion?: string; + /** Schema version of the content. Can be used to distinguish between different flow based on the schema version */ + contentSchemaVersion?: string; + /** the icon identifier. this id can later be fetched from the content metadata */ + icon?: string; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** preview image file names. These will be taken from the solution artifacts */ + previewImages?: string[]; + /** preview image file names. These will be taken from the solution artifacts. used for dark theme support */ + previewImagesDark?: string[]; + /** the package Id contains this template */ + packageId?: string; + /** the packageKind of the package contains this template */ + packageKind?: PackageKind; + /** the name of the package contains this template */ + packageName?: string; +} + +/** additional properties of product template. */ +export interface ProductTemplateAdditionalProperties { + /** the json to deploy */ + packagedContent?: Record; +} + +/** List of all the template. */ +export interface TemplateList { + /** Array of templates. */ + value: TemplateModel[]; + /** + * URL to fetch the next page of template. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; +} + +/** additional properties of product template. */ +export interface TemplateAdditionalProperties { + /** The JSON of the ARM template to deploy active content */ + mainTemplate?: Record; +} + /** Geodata information for a given IP address */ export interface EnrichmentIpGeodata { /** The autonomous system number associated with this IP address */ @@ -559,7 +861,7 @@ export interface EntityEdges { /** The target entity Id. */ targetEntityId?: string; /** A bag of custom fields that should be part of the entity and will be presented to the user. */ - additionalData?: { [propertyName: string]: Record }; + additionalData?: { [propertyName: string]: any }; } /** The parameters required to execute s timeline operation on the given entity. */ @@ -774,15 +1076,86 @@ export interface ValidationError { readonly errorMessages?: string[]; } +/** List all the hunts. */ +export interface HuntList { + /** + * URL to fetch the next set of hunts. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of hunts. */ + value: Hunt[]; +} + +/** Describes a user that the hunt is assigned to */ +export interface HuntOwner { + /** The email of the user the hunt is assigned to. */ + email?: string; + /** The name of the user the hunt is assigned to. */ + assignedTo?: string; + /** The object id of the user the hunt is assigned to. */ + objectId?: string; + /** The user principal name of the user the hunt is assigned to. */ + userPrincipalName?: string; + /** The type of the owner the hunt is assigned to. */ + ownerType?: OwnerType; +} + +/** List of all the hunt relations */ +export interface HuntRelationList { + /** + * URL to fetch the next set of hunt relations. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of hunt relations */ + value: HuntRelation[]; +} + +/** List of all hunt comments */ +export interface HuntCommentList { + /** + * URL to fetch the next set of hunt comments. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of hunt comments */ + value: HuntComment[]; +} + /** List all the incidents. */ export interface IncidentList { + value: Incident[]; /** * URL to fetch the next set of incidents. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly nextLink?: string; - /** Array of incidents. */ - value: Incident[]; +} + +/** Information on the user an incident is assigned to */ +export interface IncidentOwnerInfo { + /** The email of the user the incident is assigned to. */ + email?: string; + /** The name of the user the incident is assigned to. */ + assignedTo?: string; + /** The object id of the user the incident is assigned to. */ + objectId?: string; + /** The user principal name of the user the incident is assigned to. */ + userPrincipalName?: string; + /** The type of the owner the incident is assigned to. */ + ownerType?: OwnerType; +} + +/** Represents an incident label */ +export interface IncidentLabel { + /** The name of the label */ + labelName: string; + /** + * The type of the label + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly labelType?: IncidentLabelType; } /** Incident additional data property bag. */ @@ -807,46 +1180,21 @@ export interface IncidentAdditionalData { * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly alertProductNames?: string[]; - /** - * The provider incident url to the incident in Microsoft 365 Defender portal - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly providerIncidentUrl?: string; /** * The tactics associated with incident * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly tactics?: AttackTactic[]; /** - * The techniques associated with incident's tactics' + * The techniques associated with incident's tactics * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly techniques?: string[]; -} - -/** Represents an incident label */ -export interface IncidentLabel { - /** The name of the label */ - labelName: string; /** - * The type of the label + * The provider incident url to the incident in Microsoft 365 Defender portal * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly labelType?: IncidentLabelType; -} - -/** Information on the user an incident is assigned to */ -export interface IncidentOwnerInfo { - /** The email of the user the incident is assigned to. */ - email?: string; - /** The name of the user the incident is assigned to. */ - assignedTo?: string; - /** The object id of the user the incident is assigned to. */ - objectId?: string; - /** The user principal name of the user the incident is assigned to. */ - userPrincipalName?: string; - /** The type of the owner the incident is assigned to. */ - ownerType?: OwnerType; + readonly providerIncidentUrl?: string; } /** Describes team information */ @@ -878,18 +1226,6 @@ export interface TeamInformation { readonly description?: string; } -/** Describes team properties */ -export interface TeamProperties { - /** The name of the team */ - teamName: string; - /** The description of the team */ - teamDescription?: string; - /** List of member IDs to add to the team */ - memberIds?: string[]; - /** List of group IDs to add their members to the team */ - groupIds?: string[]; -} - /** List of incident alerts. */ export interface IncidentAlertList { /** Array of incident alerts. */ @@ -916,7 +1252,7 @@ export interface EntityCommonProperties { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -930,15 +1266,10 @@ export interface IncidentBookmarkList { value: HuntingBookmark[]; } -/** List of incident comments. */ export interface IncidentCommentList { - /** - * URL to fetch the next set of comments. - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly nextLink?: string; - /** Array of comments. */ value: IncidentComment[]; + /** NOTE: This property will not be serialized. It can only be populated by the server. */ + readonly nextLink?: string; } /** The incident related entities response. */ @@ -951,10 +1282,15 @@ export interface IncidentEntitiesResponse { /** Information of a specific aggregation in the incident related entities result. */ export interface IncidentEntitiesResultsMetadata { + /** The kind of the aggregated entity. */ + entityKind: EntityKindEnum; /** Total number of aggregations of the given kind in the incident related entities result. */ count: number; - /** The kind of the aggregated entity. */ - entityKind: EntityKind; +} + +export interface IncidentTaskList { + value?: IncidentTask[]; + nextLink?: string; } /** List of all the metadata. */ @@ -968,62 +1304,6 @@ export interface MetadataList { readonly nextLink?: string; } -/** The original source of the content item, where it comes from. */ -export interface MetadataSource { - /** Source type of the content */ - kind: SourceKind; - /** Name of the content source. The repo name, solution name, LA workspace name etc. */ - name?: string; - /** ID of the content source. The solution ID, workspace ID, etc */ - sourceId?: string; -} - -/** Publisher or creator of the content item. */ -export interface MetadataAuthor { - /** Name of the author. Company or person. */ - name?: string; - /** Email of author contact */ - email?: string; - /** Link for author/vendor page */ - link?: string; -} - -/** Support information for the content item. */ -export interface MetadataSupport { - /** Type of support for content item */ - tier: SupportTier; - /** Name of the support contact. Company or person. */ - name?: string; - /** Email of support contact */ - email?: string; - /** Link for support help, like to support page to open a ticket etc. */ - link?: string; -} - -/** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex dependencies. */ -export interface MetadataDependencies { - /** Id of the content item we depend on */ - contentId?: string; - /** Type of the content item we depend on */ - kind?: Kind; - /** Version of the the content item we depend on. Can be blank, * or missing to indicate any version fulfills the dependency. If version does not match our defined numeric format then an exact match is required. */ - version?: string; - /** Name of the content item */ - name?: string; - /** Operator used for list of dependencies in criteria array. */ - operator?: Operator; - /** This is the list of dependencies we must fulfill, according to the AND/OR operator */ - criteria?: MetadataDependencies[]; -} - -/** ies for the solution content item */ -export interface MetadataCategories { - /** domain for the solution content item */ - domains?: string[]; - /** Industry verticals for the solution content item */ - verticals?: string[]; -} - /** List of all the office365 consents. */ export interface OfficeConsentList { /** @@ -1041,6 +1321,90 @@ export interface SentinelOnboardingStatesList { value: SentinelOnboardingState[]; } +/** A list of recommendations */ +export interface RecommendationList { + /** An list of recommendations */ + value?: Recommendation[]; +} + +/** Recommendation object. */ +export interface Recommendation { + /** id of recommendation. */ + id: string; + /** Instructions of the recommendation. */ + instructions: Instructions; + /** Content of the recommendation. */ + content?: Content; + /** Id of the resource this recommendation refers to. */ + resourceId?: string; + /** Collection of additional properties for the recommendation. */ + additionalProperties?: { [propertyName: string]: string }; + /** Title of the recommendation. */ + title: string; + /** Description of the recommendation. */ + description: string; + /** Title of the recommendation type. */ + recommendationTypeTitle: string; + /** Id of the recommendation type. */ + recommendationTypeId: string; + /** Category of the recommendation. */ + category: Category; + /** Context of the recommendation. */ + context: Context; + /** Id of the workspace this recommendation refers to. */ + workspaceId: string; + /** List of actions to take for this recommendation. */ + actions: RecommendedAction[]; + /** State of the recommendation. */ + state: State; + /** Priority of the recommendation. */ + priority: Priority; + /** The time stamp (UTC) when the recommendation was last evaluated. */ + lastEvaluatedTimeUtc: Date; + /** The time stamp (UTC) when the recommendation should be displayed again. */ + hideUntilTimeUtc?: Date; + /** The timestamp (UTC) after which the recommendation should not be displayed anymore. */ + displayUntilTimeUtc?: Date; + /** Value indicating if the recommendation should be displayed or not. */ + visible?: boolean; +} + +/** Instructions section of a recommendation. */ +export interface Instructions { + /** What actions should be taken to complete the recommendation. */ + actionsToBePerformed: string; + /** Explains why the recommendation is important. */ + recommendationImportance: string; + /** How should the user complete the recommendation. */ + howToPerformActionDetails?: string; +} + +/** Content section of the recommendation. */ +export interface Content { + /** Title of the content. */ + title: string; + /** Description of the content. */ + description: string; +} + +/** What actions should be taken to complete the recommendation. */ +export interface RecommendedAction { + /** Text of the link to complete the action. */ + linkText: string; + /** The Link to complete the action. */ + linkUrl: string; + /** The state of the action. */ + state?: Priority; +} + +/** Recommendation Fields to update. */ +export interface RecommendationPatch { + /** State of the recommendation. */ + state?: State; + /** The time stamp (UTC) when the recommendation should be displayed again. */ + hideUntilTimeUtc?: Date; +} + /** List all the SecurityMLAnalyticsSettings */ export interface SecurityMLAnalyticsSettingsList { /** @@ -1093,43 +1457,86 @@ export interface SourceControlList { /** metadata of a repository. */ export interface Repository { /** Url of repository. */ - url?: string; + url: string; /** Branch name of repository. */ - branch?: string; + branch: string; /** Display url of repository. */ displayUrl?: string; - /** Url to access repository action logs. */ - deploymentLogsUrl?: string; - /** Dictionary of source control content type and path mapping. */ - pathMapping?: ContentPathMap[]; + /** + * Url to access repository action logs. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly deploymentLogsUrl?: string; +} + +/** Service principal metadata. */ +export interface ServicePrincipal { + /** + * Id of service principal. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly id?: string; + /** + * Tenant id of service principal. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly tenantId?: string; + /** + * App id of service principal. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly appId?: string; } -/** The mapping of content type to a repo path. */ -export interface ContentPathMap { - /** Content type. */ - contentType?: ContentType; - /** The path to the content. */ - path?: string; +/** Credentials to access repository. */ +export interface RepositoryAccess { + /** The kind of repository access credentials */ + kind: RepositoryAccessKind; + /** OAuth Code. Required when `kind` is `OAuth` */ + code?: string; + /** OAuth State. Required when `kind` is `OAuth` */ + state?: string; + /** OAuth ClientId. Required when `kind` is `OAuth` */ + clientId?: string; + /** Personal Access Token. Required when `kind` is `PAT` */ + token?: string; + /** Application installation ID. Required when `kind` is `App`. Supported by `GitHub` only. */ + installationId?: string; } /** Resources created in user's repository for the source-control. */ export interface RepositoryResourceInfo { /** The webhook object created for the source-control. */ webhook?: Webhook; - /** Resources created in GitHub for this source-control. */ - gitHubResourceInfo?: GitHubResourceInfo; - /** Resources created in Azure DevOps for this source-control. */ - azureDevOpsResourceInfo?: AzureDevOpsResourceInfo; + /** + * Resources created in GitHub for this source-control. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly gitHubResourceInfo?: GitHubResourceInfo; + /** + * Resources created in Azure DevOps for this source-control. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly azureDevOpsResourceInfo?: AzureDevOpsResourceInfo; } /** Detail about the webhook object. */ export interface Webhook { - /** Unique identifier for the webhook. */ - webhookId?: string; - /** URL that gets invoked by the webhook. */ - webhookUrl?: string; - /** Time when the webhook secret was updated. */ - webhookSecretUpdateTime?: string; + /** + * Unique identifier for the webhook. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly webhookId?: string; + /** + * URL that gets invoked by the webhook. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly webhookUrl?: string; + /** + * Time when the webhook secret was updated. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly webhookSecretUpdateTime?: Date; /** A flag to instruct the backend service to rotate webhook secret. */ rotateWebhookSecret?: boolean; } @@ -1172,6 +1579,50 @@ export interface Deployment { deploymentLogsUrl?: string; } +/** Information regarding pull request for protected branches. */ +export interface PullRequest { + /** + * URL of pull request + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly url?: string; + /** + * State of the pull request + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly state?: State; +} + +export interface Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema { + /** Credentials to access repository. */ + repositoryAccess: RepositoryAccess; +} + +/** Warning response structure. */ +export interface Warning { + /** + * Warning data. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly warning?: WarningBody; +} + +/** Warning details. */ +export interface WarningBody { + /** + * An identifier for the warning. Codes are invariant and are intended to be consumed programmatically. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly code?: WarningCode; + /** + * A message describing the warning, intended to be suitable for display in a user interface. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly message?: string; + /** NOTE: This property will not be serialized. It can only be populated by the server. */ + readonly details?: WarningBody[]; +} + /** Describes threat kill chain phase entity */ export interface ThreatIntelligenceKillChainPhase { /** Kill chainName name */ @@ -1266,7 +1717,7 @@ export interface ThreatIntelligenceSortingCriteria { /** Column name */ itemKey?: string; /** Sorting order (ascending/descending/unsorted). */ - sortOrder?: ThreatIntelligenceSortingCriteriaEnum; + sortOrder?: ThreatIntelligenceSortingOrder; } /** List of all the threat intelligence metric fields (type/threat type/source). */ @@ -1307,6 +1758,18 @@ export interface ThreatIntelligenceAppendTags { threatIntelligenceTags?: string[]; } +/** The triggered analytics rule run array */ +export interface TriggeredAnalyticsRuleRuns { + value: TriggeredAnalyticsRuleRun[]; + /** NOTE: This property will not be serialized. It can only be populated by the server. */ + readonly nextLink?: string; +} + +/** Analytics Rule Run Trigger request */ +export interface AnalyticsRuleRunTrigger { + executionTimeUtc: Date; +} + /** List all the watchlists. */ export interface WatchlistList { /** @@ -1329,6 +1792,93 @@ export interface WatchlistItemList { value: WatchlistItem[]; } +/** List of all the workspace manager assignments. */ +export interface WorkspaceManagerAssignmentList { + /** + * URL to fetch the next set of workspace manager assignments. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of workspace manager assignments. */ + value: WorkspaceManagerAssignment[]; +} + +/** An entity describing a content item. */ +export interface AssignmentItem { + /** The resource id of the content item */ + resourceId?: string; +} + +/** List of all the jobs */ +export interface JobList { + /** + * URL to fetch the next set of jobs. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of jobs. */ + value: Job[]; +} + +/** An entity describing the publish status of a content item. */ +export interface JobItem { + /** The resource id of the content item */ + resourceId?: string; + /** + * Status of the item publication + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly status?: Status; + /** + * The time the item publishing was completed + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly executionTime?: Date; + /** The list of error descriptions if the item publication fails. */ + errors?: ErrorModel[]; +} + +/** The error description for why a publication failed */ +export interface ErrorModel { + /** The member resource name for which the publication error occured */ + memberResourceName: string; + /** The error message */ + errorMessage: string; +} + +/** List all the workspace manager configurations for the workspace. */ +export interface WorkspaceManagerConfigurationList { + /** + * URL to fetch the next set of workspace manager configurations. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of workspace manager configurations. */ + value: WorkspaceManagerConfiguration[]; +} + +/** List of all the workspace manager groups. */ +export interface WorkspaceManagerGroupList { + /** + * URL to fetch the next set of workspace manager groups. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of workspace manager groups. */ + value: WorkspaceManagerGroup[]; +} + +/** List of workspace manager members */ +export interface WorkspaceManagerMembersList { + /** + * URL to fetch the next set of workspace manager members + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly nextLink?: string; + /** Array of workspace manager members */ + value: WorkspaceManagerMember[]; +} + /** List all the data connectors. */ export interface DataConnectorList { /** @@ -1381,6 +1931,7 @@ export interface DataConnectorsCheckRequirements { | "MicrosoftThreatProtection" | "OfficeATP" | "OfficeIRM" + | "MicrosoftPurviewInformationProtection" | "Office365Project" | "OfficePowerBI" | "ThreatIntelligence" @@ -1396,6 +1947,12 @@ export interface DataConnectorRequirementsState { licenseState?: DataConnectorLicenseState; } +/** Encapsulate the data connector definition object */ +export interface DataConnectorDefinitionArmCollectionWrapper { + value?: DataConnectorDefinitionUnion[]; + nextLink?: string; +} + /** Lists the operations available in the SecurityInsights RP. */ export interface OperationsList { /** @@ -1479,6 +2036,8 @@ export interface QueryBasedAlertRuleTemplateProperties { alertDetailsOverride?: AlertDetailsOverride; /** The event grouping settings. */ eventGroupingSettings?: EventGroupingSettings; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; } /** Single entity mapping for the alert rule */ @@ -1507,6 +2066,16 @@ export interface AlertDetailsOverride { alertTacticsColumnName?: string; /** the column name to take the alert severity from */ alertSeverityColumnName?: string; + /** List of additional dynamic properties to override */ + alertDynamicProperties?: AlertPropertyMapping[]; +} + +/** A single alert property mapping to override */ +export interface AlertPropertyMapping { + /** The V3 alert property */ + alertProperty?: AlertProperty; + /** the column name to use to override this property */ + value?: string; } /** Event grouping settings property bag. */ @@ -1515,6 +2084,12 @@ export interface EventGroupingSettings { aggregationKind?: EventGroupingAggregationKind; } +/** A single sentinel entity mapping */ +export interface SentinelEntityMapping { + /** the column name to be mapped to the SentinelEntities */ + columnName?: string; +} + /** Represents a supported source signal configuration in Fusion detection. */ export interface FusionSourceSettings { /** Determines whether this source signal is enabled or disabled in Fusion detection. */ @@ -1656,6 +2231,15 @@ export interface ScheduledAlertRuleCommonProperties { entityMappings?: EntityMapping[]; /** The alert details override settings */ alertDetailsOverride?: AlertDetailsOverride; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; +} + +export interface AddIncidentTaskActionProperties { + /** The title of the task. */ + title: string; + /** The description of the task. */ + description?: string; } export interface AutomationRuleBooleanCondition { @@ -1707,7 +2291,7 @@ export interface AutomationRulePropertyValuesCondition { export interface PlaybookActionProperties { /** The resource id of the playbook resource. */ - logicAppResourceId?: string; + logicAppResourceId: string; /** The tenant id of the playbook resource. */ tenantId?: string; } @@ -1806,6 +2390,18 @@ export interface DataTypeDefinitions { dataType?: string; } +/** Describes team properties */ +export interface TeamProperties { + /** The name of the team */ + teamName: string; + /** The description of the team */ + teamDescription?: string; + /** List of group IDs to add their members to the team */ + groupIds?: string[]; + /** List of member IDs to add to the team */ + memberIds?: string[]; +} + /** security ml analytics settings data sources */ export interface SecurityMLAnalyticsSettingsDataSource { /** The connector id that provides the following data types */ @@ -1840,16 +2436,22 @@ export interface DataConnectorDataTypeCommon { /** The available data types for Microsoft Threat Intelligence Platforms data connector. */ export interface MstiDataConnectorDataTypes { - /** Data type for Microsoft Threat Intelligence Platforms data connector. */ - bingSafetyPhishingURL: MstiDataConnectorDataTypesBingSafetyPhishingURL; /** Data type for Microsoft Threat Intelligence Platforms data connector. */ microsoftEmergingThreatFeed: MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed; } /** The available data types for Microsoft Threat Protection Platforms data connector. */ export interface MTPDataConnectorDataTypes { - /** Data type for Microsoft Threat Protection Platforms data connector. */ + /** Incidents data type for Microsoft Threat Protection Platforms data connector. */ incidents: MTPDataConnectorDataTypesIncidents; + /** Alerts data type for Microsoft Threat Protection Platforms data connector. */ + alerts?: MTPDataConnectorDataTypesAlerts; +} + +/** Represents the connector's Filtered providers */ +export interface MtpFilteredProviders { + /** Alerts filtered providers. When filters are not applied, all alerts will stream through the MTP pipeline, still in private preview for all products EXCEPT MDA and MDI, which are in GA state. */ + alerts: MtpProvider[]; } /** The available data types for Amazon Web Services CloudTrail data connector. */ @@ -1864,12 +2466,46 @@ export interface AwsS3DataConnectorDataTypes { logs: AwsS3DataConnectorDataTypesLogs; } +/** Google Cloud Platform auth section properties. */ +export interface GCPAuthProperties { + /** The service account that is used to access the GCP project. */ + serviceAccountEmail: string; + /** The GCP project number. */ + projectNumber: string; + /** The workload identity provider id that is used to gain access to the GCP project. */ + workloadIdentityProviderId: string; +} + +/** Google Cloud Platform request section properties. */ +export interface GCPRequestProperties { + /** The GCP project id. */ + projectId: string; + /** The GCP pub/sub subscription names. */ + subscriptionNames: string[]; +} + +/** The configuration of the destination of the data. */ +export interface DCRConfiguration { + /** Represents the data collection ingestion endpoint in log analytics. */ + dataCollectionEndpoint: string; + /** The data collection rule immutable id, the rule defines the transformation and data destination. */ + dataCollectionRuleImmutableId: string; + /** The stream we are sending the data to. */ + streamName: string; +} + /** The available data types for Dynamics365 data connector. */ export interface Dynamics365DataConnectorDataTypes { /** Common Data Service data type connection. */ dynamics365CdsActivities: Dynamics365DataConnectorDataTypesDynamics365CdsActivities; } +/** The available data types for Microsoft Purview Information Protection data connector. */ +export interface MicrosoftPurviewInformationProtectionConnectorDataTypes { + /** Logs data type. */ + logs: MicrosoftPurviewInformationProtectionConnectorDataTypesLogs; +} + /** The available data types for Office Microsoft Project data connector. */ export interface Office365ProjectConnectorDataTypes { /** Logs data type. */ @@ -2140,13 +2776,189 @@ export interface CodelessConnectorPollingResponseProperties { isGzipCompressed?: boolean; } -/** ThreatIntelligence property bag. */ -export interface ThreatIntelligence { - /** - * Confidence (must be between 0 and 1) - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly confidence?: number; +/** The exposure status of the connector to the customers. */ +export interface ConnectorDefinitionsAvailability { + /** The exposure status of the connector to the customers. Available values are 0-4 (0=None, 1=Available, 2=FeatureFlag, 3=Internal). */ + status?: number; + /** Gets or sets a value indicating whether the connector is preview. */ + isPreview?: boolean; +} + +/** + * The criteria by which we determine whether the connector is connected or not. + * For Example, use a KQL query to check if the expected data type is flowing). + */ +export interface ConnectivityCriterion { + /** Gets or sets the type of connectivity. */ + type: string; + /** Gets or sets the queries for checking connectivity. */ + value?: string[]; +} + +/** + * The data type which is created by the connector, + * including a query indicated when was the last time that data type was received in the workspace. + */ +export interface ConnectorDataType { + /** Gets or sets the name of the data type to show in the graph. */ + name: string; + /** Gets or sets the query to indicate when relevant data was last received in the workspace. */ + lastDataReceivedQuery: string; +} + +/** The UiConfig for 'Customizable' connector definition kind. */ +export interface CustomizableConnectorUiConfig { + /** Gets or sets custom connector id. optional field. */ + id?: string; + /** Gets or sets the connector blade title. */ + title: string; + /** Gets or sets the connector publisher name. */ + publisher: string; + /** Gets or sets the connector description in markdown format. */ + descriptionMarkdown: string; + /** + * Gets or sets the name of the table the connector will insert the data to. + * This name can be used in other queries by specifying {{graphQueriesTableName}} placeholder + * in Query and LastDataReceivedQuery values. + */ + graphQueriesTableName?: string; + /** Gets or sets the graph queries to show the current data volume over time. */ + graphQueries: GraphQuery[]; + /** Gets or sets the sample queries for the connector. */ + sampleQueries: SampleQuery[]; + /** Gets or sets the data types to check for last data received. */ + dataTypes: ConnectorDataType[]; + /** Gets or sets the way the connector checks whether the connector is connected. */ + connectivityCriteria: ConnectivityCriterion[]; + /** The exposure status of the connector to the customers. */ + availability?: ConnectorDefinitionsAvailability; + /** The required Permissions for the connector. */ + permissions: ConnectorDefinitionsPermissions; + /** Gets or sets the instruction steps to enable the connector. */ + instructionSteps: InstructionStep[]; + /** + * Gets or sets the connector logo to be used when displaying the connector within Azure Sentinel's connector's gallery. + * The logo value should be in SVG format. + */ + logo?: string; + /** Gets or sets a value indicating whether to use 'OR'(SOME) or 'AND' between ConnectivityCriteria items. */ + isConnectivityCriteriasMatchSome?: boolean; +} + +/** The graph query to show the volume of data arriving into the workspace over time. */ +export interface GraphQuery { + /** Gets or sets the metric name that the query is checking. For example: 'Total data receive'. */ + metricName: string; + /** Gets or sets the legend for the graph. */ + legend: string; + /** + * Gets or sets the base query for the graph. + * The base query is wrapped by Sentinel UI infra with a KQL query, that measures the volume over time. + */ + baseQuery: string; +} + +/** The sample queries for the connector. */ +export interface SampleQuery { + /** Gets or sets the sample query description. */ + description: string; + /** Gets or sets the KQL sample query. */ + query: string; +} + +/** The required Permissions for the connector. */ +export interface ConnectorDefinitionsPermissions { + /** Gets or sets the required tenant permissions for the connector. */ + tenant?: string[]; + /** Gets or sets the required licenses for the user to create connections. */ + licenses?: string[]; + /** Gets or sets the resource provider permissions required for the user to create connections. */ + resourceProvider?: ConnectorDefinitionsResourceProvider[]; + /** Gets or sets the customs permissions required for the user to create connections. */ + customs?: CustomPermissionDetails[]; +} + +/** + * The resource provider details include the required permissions for the user to create connections. + * The user should have the required permissions(Read\Write, ..) in the specified scope ProviderPermissionsScope against the specified resource provider. + */ +export interface ConnectorDefinitionsResourceProvider { + /** Gets or sets the provider name. */ + provider: string; + /** Gets or sets the permissions description text. */ + permissionsDisplayText: string; + /** Gets or sets the permissions provider display name. */ + providerDisplayName: string; + /** The scope on which the user should have permissions, in order to be able to create connections. */ + scope: ProviderPermissionsScope; + /** + * Required permissions for the connector resource provider that define in ResourceProviders. + * For more information about the permissions see here. + */ + requiredPermissions: ResourceProviderRequiredPermissions; +} + +/** + * Required permissions for the connector resource provider that define in ResourceProviders. + * For more information about the permissions see here. + */ +export interface ResourceProviderRequiredPermissions { + /** Gets or sets a value indicating whether the permission is read action (GET). */ + read?: boolean; + /** Gets or sets a value indicating whether the permission is write action (PUT or PATCH). */ + write?: boolean; + /** Gets or sets a value indicating whether the permission is delete action (DELETE). */ + delete?: boolean; + /** Gets or sets a value indicating whether the permission is custom actions (POST). */ + action?: boolean; +} + +/** The Custom permissions required for the connector. */ +export interface CustomPermissionDetails { + /** Gets or sets the custom permissions name. */ + name: string; + /** Gets or sets the custom permissions description. */ + description: string; +} + +/** Instruction steps to enable the connector. */ +export interface InstructionStep { + /** Gets or sets the instruction step title. */ + title?: string; + /** Gets or sets the instruction step description. */ + description?: string; + /** Gets or sets the instruction step details. */ + instructions?: InstructionStepDetails[]; + /** + * Gets or sets the inner instruction steps details. + * Foe Example: instruction step 1 might contain inner instruction steps: [instruction step 1.1, instruction step 1.2]. + */ + innerSteps?: InstructionStep[]; +} + +/** Instruction step details, to be displayed in the Instructions steps section in the connector's page in Sentinel Portal. */ +export interface InstructionStepDetails { + /** Gets or sets the instruction type parameters settings. */ + parameters: Record; + /** Gets or sets the instruction type name. */ + type: string; +} + +/** The UiConfig for 'Customizable' connector definition kind. */ +export interface CustomizableConnectionsConfig { + /** Gets or sets the template name. The template includes ARM templates that can be created by the connector, usually it will be the dataConnectors ARM templates. */ + templateSpecName: string; + /** Gets or sets the template version. */ + templateSpecVersion: string; +} + +/** ThreatIntelligence property bag. */ +export interface ThreatIntelligence { + /** + * Confidence (must be between 0 and 1) + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly confidence?: number; /** * Name of the provider from whom this Threat Intelligence information was received * NOTE: This property will not be serialized. It can only be populated by the server. @@ -2197,12 +3009,12 @@ export interface GeoLocation { */ readonly countryName?: string; /** - * The longitude of the identified location, expressed as a floating point number with range of -180 to 180, with positive numbers representing East and negative numbers representing West. Latitude and longitude are derived from the city or postal code. + * The latitude of the identified location, expressed as a floating point number with range of - 90 to 90. Latitude and longitude are derived from the city or postal code. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly latitude?: number; /** - * The latitude of the identified location, expressed as a floating point number with range of - 90 to 90, with positive numbers representing North and negative numbers representing South. Latitude and longitude are derived from the city or postal code. + * The longitude of the identified location, expressed as a floating point number with range of -180 to 180. Latitude and longitude are derived from the city or postal code. * NOTE: This property will not be serialized. It can only be populated by the server. */ readonly longitude?: number; @@ -2225,10 +3037,19 @@ export interface AlertRuleTemplate extends Resource { kind: AlertRuleKind; } +/** The resource model definition for an Azure Resource Manager resource with an etag. */ +export interface AzureEntityResource extends Resource { + /** + * Resource Etag. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly etag?: string; +} + /** Specific entity. */ export interface Entity extends Resource { /** The kind of the entity. */ - kind: EntityKind; + kind: EntityKindEnum; } /** Specific entity query template. */ @@ -2352,6 +3173,14 @@ export interface PropertyConditionProperties extends AutomationRuleCondition { conditionProperties?: AutomationRulePropertyValuesCondition; } +/** Describes an automation rule action to add a task to an incident */ +export interface AutomationRuleAddIncidentTaskAction + extends AutomationRuleAction { + /** Polymorphic discriminator, which specifies the different types this object can be */ + actionType: "AddIncidentTask"; + actionConfiguration?: AddIncidentTaskActionProperties; +} + /** Describes an automation rule action to modify an object's properties */ export interface AutomationRuleModifyPropertiesAction extends AutomationRuleAction { @@ -2367,6 +3196,24 @@ export interface AutomationRuleRunPlaybookAction extends AutomationRuleAction { actionConfiguration?: PlaybookActionProperties; } +/** Describes package properties */ +export interface PackageProperties extends PackageBaseProperties {} + +/** Describes package properties */ +export interface ProductPackageProperties + extends PackageBaseProperties, + ProductPackageAdditionalProperties {} + +/** Template property bag. */ +export interface ProductTemplateProperties + extends TemplateBaseProperties, + ProductTemplateAdditionalProperties {} + +/** Template property bag. */ +export interface TemplateProperties + extends TemplateBaseProperties, + TemplateAdditionalProperties {} + /** Represents Activity timeline item. */ export interface ActivityTimelineItem extends EntityTimelineItem { /** Polymorphic discriminator, which specifies the different types this object can be */ @@ -2459,6 +3306,13 @@ export interface SecurityAlertTimelineItem extends EntityTimelineItem { timeGenerated: Date; /** The name of the alert type. */ alertType: string; + /** + * The intent of the alert. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly intent?: KillChainIntent; + /** The techniques of the alert. */ + techniques?: string[]; } /** Represents Insight Query. */ @@ -3465,7 +4319,7 @@ export interface NicEntityProperties extends EntityCommonProperties { readonly vlans?: string[]; } -/** Represents AAD (Azure Active Directory) requirements check request. */ +/** Represents AADIP (Azure Active Directory Identity Protection) requirements check request. */ export interface AADCheckRequirements extends DataConnectorsCheckRequirements { /** Polymorphic discriminator, which specifies the different types this object can be */ kind: "AzureActiveDirectory"; @@ -3563,6 +4417,15 @@ export interface OfficeIRMCheckRequirements tenantId?: string; } +/** Represents MicrosoftPurviewInformationProtection requirements check request. */ +export interface MicrosoftPurviewInformationProtectionCheckRequirements + extends DataConnectorsCheckRequirements { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftPurviewInformationProtection"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; +} + /** Represents Office365 Project requirements check request. */ export interface Office365ProjectCheckRequirements extends DataConnectorsCheckRequirements { @@ -3701,7 +4564,7 @@ export interface InsightQueryItemProperties extends EntityQueryItemProperties { referenceTimeRange?: InsightQueryItemPropertiesReferenceTimeRange; } -/** AAD (Azure Active Directory) requirements check properties. */ +/** AADIP (Azure Active Directory Identity Protection) requirements check properties. */ export interface AADCheckRequirementsProperties extends DataConnectorTenantId {} /** AATP (Azure Advanced Threat Protection) requirements check properties. */ @@ -3735,6 +4598,10 @@ export interface OfficeATPCheckRequirementsProperties export interface OfficeIRMCheckRequirementsProperties extends DataConnectorTenantId {} +/** MicrosoftPurviewInformationProtection requirements check properties. */ +export interface MicrosoftPurviewInformationProtectionCheckRequirementsProperties + extends DataConnectorTenantId {} + /** Office365 Project requirements check properties. */ export interface Office365ProjectCheckRequirementsProperties extends DataConnectorTenantId {} @@ -3750,7 +4617,7 @@ export interface TICheckRequirementsProperties extends DataConnectorTenantId {} export interface TiTaxiiCheckRequirementsProperties extends DataConnectorTenantId {} -/** AAD (Azure Active Directory) data connector properties. */ +/** AADIP (Azure Active Directory Identity Protection) data connector properties. */ export interface AADDataConnectorProperties extends DataConnectorTenantId, DataConnectorWithAlertsProperties {} @@ -3765,6 +4632,8 @@ export interface MstiDataConnectorProperties extends DataConnectorTenantId { export interface MTPDataConnectorProperties extends DataConnectorTenantId { /** The available data types for the connector. */ dataTypes: MTPDataConnectorDataTypes; + /** The available filtered providers for the connector. */ + filteredProviders?: MtpFilteredProviders; } /** AATP (Azure Advanced Threat Protection) data connector properties. */ @@ -3790,6 +4659,13 @@ export interface OfficeATPDataConnectorProperties extends DataConnectorTenantId, DataConnectorWithAlertsProperties {} +/** Microsoft Purview Information Protection data connector properties. */ +export interface MicrosoftPurviewInformationProtectionDataConnectorProperties + extends DataConnectorTenantId { + /** The available data types for the connector. */ + dataTypes: MicrosoftPurviewInformationProtectionConnectorDataTypes; +} + /** Office Microsoft Project data connector properties. */ export interface Office365ProjectDataConnectorProperties extends DataConnectorTenantId { @@ -3871,24 +4747,21 @@ export interface McasDataConnectorDataTypes discoveryLogs?: DataConnectorDataTypeCommon; } -/** Data type for Microsoft Threat Intelligence Platforms data connector. */ -export interface MstiDataConnectorDataTypesBingSafetyPhishingURL - extends DataConnectorDataTypeCommon { - /** lookback period */ - lookbackPeriod: string; -} - /** Data type for Microsoft Threat Intelligence Platforms data connector. */ export interface MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed extends DataConnectorDataTypeCommon { - /** lookback period */ + /** The lookback period for the feed to be imported. */ lookbackPeriod: string; } -/** Data type for Microsoft Threat Protection Platforms data connector. */ +/** Incidents data type for Microsoft Threat Protection Platforms data connector. */ export interface MTPDataConnectorDataTypesIncidents extends DataConnectorDataTypeCommon {} +/** Alerts data type for Microsoft Threat Protection Platforms data connector. */ +export interface MTPDataConnectorDataTypesAlerts + extends DataConnectorDataTypeCommon {} + /** Logs data type. */ export interface AwsCloudTrailDataConnectorDataTypesLogs extends DataConnectorDataTypeCommon {} @@ -3901,6 +4774,10 @@ export interface AwsS3DataConnectorDataTypesLogs export interface Dynamics365DataConnectorDataTypesDynamics365CdsActivities extends DataConnectorDataTypeCommon {} +/** Logs data type. */ +export interface MicrosoftPurviewInformationProtectionConnectorDataTypesLogs + extends DataConnectorDataTypeCommon {} + /** Logs data type. */ export interface Office365ProjectConnectorDataTypesLogs extends DataConnectorDataTypeCommon {} @@ -4062,132 +4939,143 @@ export interface Relation extends ResourceWithEtag { readonly relatedResourceKind?: string; } -/** Specific entity query. */ -export interface EntityQuery extends ResourceWithEtag { - /** the entity query kind */ - kind: EntityQueryKind; -} - -/** Specific entity query that supports put requests. */ -export interface CustomEntityQuery extends ResourceWithEtag { - /** the entity query kind */ - kind: CustomEntityQueryKind; -} - -/** Represents an incident in Azure Security Insights. */ -export interface Incident extends ResourceWithEtag { - /** - * Additional data on the incident - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly additionalData?: IncidentAdditionalData; - /** The reason the incident was closed */ - classification?: IncidentClassification; - /** Describes the reason the incident was closed */ - classificationComment?: string; - /** The classification reason the incident was closed with */ - classificationReason?: IncidentClassificationReason; - /** - * The time the incident was created - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly createdTimeUtc?: Date; - /** The description of the incident */ +/** Represents a Package in Azure Security Insights. */ +export interface PackageModel extends ResourceWithEtag { + /** The content id of the package */ + contentId?: string; + /** Unique ID for the content. It should be generated based on the contentId, contentKind and the contentVersion of the package */ + contentProductId?: string; + /** The package kind */ + contentKind?: PackageKind; + /** The version of the content schema. */ + contentSchemaVersion?: string; + /** Flag indicates if this is a newly published package. */ + isNew?: Flag; + /** Flag indicates if this package is in preview. */ + isPreview?: Flag; + /** Flag indicates if this package is among the featured list. */ + isFeatured?: Flag; + /** the latest version number of the package */ + version?: string; + /** The display name of the package */ + displayName?: string; + /** The description of the package */ description?: string; - /** The time of the first activity in the incident */ - firstActivityTimeUtc?: Date; - /** - * The deep-link url to the incident in Azure portal - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly incidentUrl?: string; - /** - * A sequential number - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly incidentNumber?: number; - /** List of labels relevant to this incident */ - labels?: IncidentLabel[]; - /** The name of the source provider that generated the incident */ - providerName?: string; - /** The incident ID assigned by the incident provider */ - providerIncidentId?: string; - /** The time of the last activity in the incident */ - lastActivityTimeUtc?: Date; - /** - * The last time the incident was updated - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly lastModifiedTimeUtc?: Date; - /** Describes a user that the incident is assigned to */ - owner?: IncidentOwnerInfo; - /** - * List of resource ids of Analytic rules related to the incident - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly relatedAnalyticRuleIds?: string[]; - /** The severity of the incident */ - severity?: IncidentSeverity; - /** The status of the incident */ - status?: IncidentStatus; - /** Describes a team for the incident */ - teamInformation?: TeamInformation; - /** The title of the incident */ - title?: string; + /** The publisher display name of the package */ + publisherDisplayName?: string; + /** The source of the package */ + source?: MetadataSource; + /** The author of the package */ + author?: MetadataAuthor; + /** The support tier of the package */ + support?: MetadataSupport; + /** The support tier of the package */ + dependencies?: MetadataDependencies; + /** Providers for the package item */ + providers?: string[]; + /** first publish date package item */ + firstPublishDate?: Date; + /** last publish date for the package item */ + lastPublishDate?: Date; + /** The categories of the package */ + categories?: MetadataCategories; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** the icon identifier. this id can later be fetched from the content metadata */ + icon?: string; } -/** Represents an incident comment */ -export interface IncidentComment extends ResourceWithEtag { - /** - * The time the comment was created - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly createdTimeUtc?: Date; - /** - * The time the comment was updated - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly lastModifiedTimeUtc?: Date; - /** The comment message */ - message?: string; - /** - * Describes the client that created the comment - * NOTE: This property will not be serialized. It can only be populated by the server. - */ - readonly author?: ClientInfo; +/** Represents a Package in Azure Security Insights. */ +export interface ProductPackageModel extends ResourceWithEtag { + /** The content id of the package */ + contentId?: string; + /** Unique ID for the content. It should be generated based on the contentId, contentKind and the contentVersion of the package */ + contentProductId?: string; + /** The package kind */ + contentKind?: PackageKind; + /** The version of the content schema. */ + contentSchemaVersion?: string; + /** Flag indicates if this is a newly published package. */ + isNew?: Flag; + /** Flag indicates if this package is in preview. */ + isPreview?: Flag; + /** Flag indicates if this package is among the featured list. */ + isFeatured?: Flag; + /** the latest version number of the package */ + version?: string; + /** The display name of the package */ + displayName?: string; + /** The description of the package */ + description?: string; + /** The publisher display name of the package */ + publisherDisplayName?: string; + /** The source of the package */ + source?: MetadataSource; + /** The author of the package */ + author?: MetadataAuthor; + /** The support tier of the package */ + support?: MetadataSupport; + /** The support tier of the package */ + dependencies?: MetadataDependencies; + /** Providers for the package item */ + providers?: string[]; + /** first publish date package item */ + firstPublishDate?: Date; + /** last publish date for the package item */ + lastPublishDate?: Date; + /** The categories of the package */ + categories?: MetadataCategories; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** the icon identifier. this id can later be fetched from the content metadata */ + icon?: string; + /** The version of the installed package, null or absent means not installed. */ + installedVersion?: string; + /** The metadata resource id. */ + resourceId?: string; + /** the json to deploy */ + packagedContent?: Record; } -/** Metadata resource definition. */ -export interface MetadataModel extends ResourceWithEtag { +/** Template resource definition. */ +export interface ProductTemplateModel extends ResourceWithEtag { /** Static ID for the content. Used to identify dependencies and content from solutions or community. Hard-coded/static for out of the box content and solutions. Dynamic for user-created. This is the resource name */ contentId?: string; - /** Full parent resource ID of the content item the metadata is for. This is the full resource ID including the scope (subscription and resource group) */ - parentId?: string; - /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM template best practices. Can also be any string, but then we cannot guarantee any version checks */ + /** Unique ID for the content. It should be generated based on the contentId of the package, contentId of the template, contentKind of the template and the contentVersion of the template */ + contentProductId?: string; + /** Version of the package. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ + packageVersion?: string; + /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ version?: string; - /** The kind of content the metadata is for. */ - kind?: Kind; + /** The display name of the template */ + displayName?: string; + /** The kind of content the template is for. */ + contentKind?: Kind; /** Source of the content. This is where/how it was created. */ source?: MetadataSource; /** The creator of the content item. */ author?: MetadataAuthor; - /** Support information for the metadata - type, name, contact information */ + /** Support information for the template - type, name, contact information */ support?: MetadataSupport; /** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex formats. */ dependencies?: MetadataDependencies; - /** Categories for the solution content item */ + /** Categories for the item */ categories?: MetadataCategories; - /** Providers for the solution content item */ + /** Providers for the content item */ providers?: string[]; - /** first publish date solution content item */ + /** first publish date content item */ firstPublishDate?: Date; - /** last publish date for the solution content item */ + /** last publish date for the content item */ lastPublishDate?: Date; /** The custom version of the content. A optional free text */ customVersion?: string; /** Schema version of the content. Can be used to distinguish between different flow based on the schema version */ contentSchemaVersion?: string; - /** the icon identifier. this id can later be fetched from the solution template */ + /** the icon identifier. this id can later be fetched from the content metadata */ icon?: string; /** the tactics the resource covers */ threatAnalysisTactics?: string[]; @@ -4197,39 +5085,51 @@ export interface MetadataModel extends ResourceWithEtag { previewImages?: string[]; /** preview image file names. These will be taken from the solution artifacts. used for dark theme support */ previewImagesDark?: string[]; -} - -/** Metadata patch request body. */ -export interface MetadataPatch extends ResourceWithEtag { + /** the package Id contains this template */ + packageId?: string; + /** the packageKind of the package contains this template */ + packageKind?: PackageKind; + /** the name of the package contains this template */ + packageName?: string; + /** the json to deploy */ + packagedContent?: Record; +} + +/** Template resource definition. */ +export interface TemplateModel extends ResourceWithEtag { /** Static ID for the content. Used to identify dependencies and content from solutions or community. Hard-coded/static for out of the box content and solutions. Dynamic for user-created. This is the resource name */ contentId?: string; - /** Full parent resource ID of the content item the metadata is for. This is the full resource ID including the scope (subscription and resource group) */ - parentId?: string; - /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM template best practices. Can also be any string, but then we cannot guarantee any version checks */ + /** Unique ID for the content. It should be generated based on the contentId of the package, contentId of the template, contentKind of the template and the contentVersion of the template */ + contentProductId?: string; + /** Version of the package. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ + packageVersion?: string; + /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM metadata best practices. Can also be any string, but then we cannot guarantee any version checks */ version?: string; - /** The kind of content the metadata is for. */ - kind?: Kind; + /** The display name of the template */ + displayName?: string; + /** The kind of content the template is for. */ + contentKind?: Kind; /** Source of the content. This is where/how it was created. */ source?: MetadataSource; /** The creator of the content item. */ author?: MetadataAuthor; - /** Support information for the metadata - type, name, contact information */ + /** Support information for the template - type, name, contact information */ support?: MetadataSupport; /** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex formats. */ dependencies?: MetadataDependencies; - /** Categories for the solution content item */ + /** Categories for the item */ categories?: MetadataCategories; - /** Providers for the solution content item */ + /** Providers for the content item */ providers?: string[]; - /** first publish date solution content item */ + /** first publish date content item */ firstPublishDate?: Date; - /** last publish date for the solution content item */ + /** last publish date for the content item */ lastPublishDate?: Date; /** The custom version of the content. A optional free text */ customVersion?: string; /** Schema version of the content. Can be used to distinguish between different flow based on the schema version */ contentSchemaVersion?: string; - /** the icon identifier. this id can later be fetched from the solution template */ + /** the icon identifier. this id can later be fetched from the content metadata */ icon?: string; /** the tactics the resource covers */ threatAnalysisTactics?: string[]; @@ -4239,35 +5139,304 @@ export interface MetadataPatch extends ResourceWithEtag { previewImages?: string[]; /** preview image file names. These will be taken from the solution artifacts. used for dark theme support */ previewImagesDark?: string[]; + /** the package Id contains this template */ + packageId?: string; + /** the packageKind of the package contains this template */ + packageKind?: PackageKind; + /** the name of the package contains this template */ + packageName?: string; + /** The JSON of the ARM template to deploy active content */ + mainTemplate?: Record; } -/** Sentinel onboarding state */ -export interface SentinelOnboardingState extends ResourceWithEtag { - /** Flag that indicates the status of the CMK setting */ - customerManagedKey?: boolean; -} - -/** Security ML Analytics Setting */ -export interface SecurityMLAnalyticsSetting extends ResourceWithEtag { - /** The kind of security ML Analytics Settings */ - kind: SecurityMLAnalyticsSettingsKind; +/** Specific entity query. */ +export interface EntityQuery extends ResourceWithEtag { + /** the entity query kind */ + kind: EntityQueryKind; } -/** The Setting. */ -export interface Settings extends ResourceWithEtag { - /** The kind of the setting */ - kind: SettingKind; +/** Specific entity query that supports put requests. */ +export interface CustomEntityQuery extends ResourceWithEtag { + /** the entity query kind */ + kind: CustomEntityQueryKind; } -/** Represents a SourceControl in Azure Security Insights. */ -export interface SourceControl extends ResourceWithEtag { - /** The id (a Guid) of the source control */ - idPropertiesId?: string; - /** The version number associated with the source control */ - version?: Version; - /** The display name of the source control */ +/** Represents a Hunt in Azure Security Insights. */ +export interface Hunt extends ResourceWithEtag { + /** The display name of the hunt */ displayName?: string; - /** A description of the source control */ + /** The description of the hunt */ + description?: string; + /** The status of the hunt. */ + status?: Status; + /** The hypothesis status of the hunt. */ + hypothesisStatus?: HypothesisStatus; + /** A list of mitre attack tactics the hunt is associated with */ + attackTactics?: AttackTactic[]; + /** A list of a mitre attack techniques the hunt is associated with */ + attackTechniques?: string[]; + /** List of labels relevant to this hunt */ + labels?: string[]; + /** Describes a user that the hunt is assigned to */ + owner?: HuntOwner; +} + +/** Represents a Hunt Relation in Azure Security Insights. */ +export interface HuntRelation extends ResourceWithEtag { + /** The id of the related resource */ + relatedResourceId?: string; + /** + * The name of the related resource + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly relatedResourceName?: string; + /** + * The type of the hunt relation + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly relationType?: string; + /** + * The resource that the relation is related to + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly relatedResourceKind?: string; + /** List of labels relevant to this hunt */ + labels?: string[]; +} + +/** Represents a Hunt Comment in Azure Security Insights */ +export interface HuntComment extends ResourceWithEtag { + /** The message for the comment */ + message?: string; +} + +export interface Incident extends ResourceWithEtag { + /** The title of the incident */ + title?: string; + /** The description of the incident */ + description?: string; + /** The severity of the incident */ + severity?: IncidentSeverity; + /** The status of the incident */ + status?: IncidentStatus; + /** The reason the incident was closed */ + classification?: IncidentClassification; + /** The classification reason the incident was closed with */ + classificationReason?: IncidentClassificationReason; + /** Describes the reason the incident was closed */ + classificationComment?: string; + /** Describes a user that the incident is assigned to */ + owner?: IncidentOwnerInfo; + /** List of labels relevant to this incident */ + labels?: IncidentLabel[]; + /** The time of the first activity in the incident */ + firstActivityTimeUtc?: Date; + /** The time of the last activity in the incident */ + lastActivityTimeUtc?: Date; + /** + * The last time the incident was updated + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastModifiedTimeUtc?: Date; + /** + * The time the incident was created + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly createdTimeUtc?: Date; + /** + * A sequential number + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly incidentNumber?: number; + /** + * Additional data on the incident + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly additionalData?: IncidentAdditionalData; + /** + * List of resource ids of Analytic rules related to the incident + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly relatedAnalyticRuleIds?: string[]; + /** + * The deep-link url to the incident in Azure portal + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly incidentUrl?: string; + /** + * The name of the source provider that generated the incident + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly providerName?: string; + /** + * The incident ID assigned by the incident provider + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly providerIncidentId?: string; + /** Describes a team for the incident */ + teamInformation?: TeamInformation; +} + +/** Represents an incident comment */ +export interface IncidentComment extends ResourceWithEtag { + /** The comment message */ + message?: string; + /** + * The time the comment was created + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly createdTimeUtc?: Date; + /** + * The time the comment was updated + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastModifiedTimeUtc?: Date; + /** + * Describes the client that created the comment + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly author?: ClientInfo; +} + +export interface IncidentTask extends ResourceWithEtag { + /** The title of the task */ + title: string; + /** The description of the task */ + description?: string; + status: IncidentTaskStatus; + /** + * The time the task was created + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly createdTimeUtc?: Date; + /** + * The last time the task was updated + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastModifiedTimeUtc?: Date; + /** Information on the client (user or application) that made some action */ + createdBy?: ClientInfo; + /** Information on the client (user or application) that made some action */ + lastModifiedBy?: ClientInfo; +} + +/** Metadata resource definition. */ +export interface MetadataModel extends ResourceWithEtag { + /** Static ID for the content. Used to identify dependencies and content from solutions or community. Hard-coded/static for out of the box content and solutions. Dynamic for user-created. This is the resource name */ + contentId?: string; + /** Full parent resource ID of the content item the metadata is for. This is the full resource ID including the scope (subscription and resource group) */ + parentId?: string; + /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM template best practices. Can also be any string, but then we cannot guarantee any version checks */ + version?: string; + /** The kind of content the metadata is for. */ + kind?: string; + /** Source of the content. This is where/how it was created. */ + source?: MetadataSource; + /** The creator of the content item. */ + author?: MetadataAuthor; + /** Support information for the metadata - type, name, contact information */ + support?: MetadataSupport; + /** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex formats. */ + dependencies?: MetadataDependencies; + /** Categories for the solution content item */ + categories?: MetadataCategories; + /** Providers for the solution content item */ + providers?: string[]; + /** first publish date solution content item */ + firstPublishDate?: Date; + /** last publish date for the solution content item */ + lastPublishDate?: Date; + /** The custom version of the content. A optional free text */ + customVersion?: string; + /** Schema version of the content. Can be used to distinguish between different flow based on the schema version */ + contentSchemaVersion?: string; + /** the icon identifier. this id can later be fetched from the solution template */ + icon?: string; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** preview image file names. These will be taken from the solution artifacts */ + previewImages?: string[]; + /** preview image file names. These will be taken from the solution artifacts. used for dark theme support */ + previewImagesDark?: string[]; +} + +/** Metadata patch request body. */ +export interface MetadataPatch extends ResourceWithEtag { + /** Static ID for the content. Used to identify dependencies and content from solutions or community. Hard-coded/static for out of the box content and solutions. Dynamic for user-created. This is the resource name */ + contentId?: string; + /** Full parent resource ID of the content item the metadata is for. This is the full resource ID including the scope (subscription and resource group) */ + parentId?: string; + /** Version of the content. Default and recommended format is numeric (e.g. 1, 1.0, 1.0.0, 1.0.0.0), following ARM template best practices. Can also be any string, but then we cannot guarantee any version checks */ + version?: string; + /** The kind of content the metadata is for. */ + kind?: string; + /** Source of the content. This is where/how it was created. */ + source?: MetadataSource; + /** The creator of the content item. */ + author?: MetadataAuthor; + /** Support information for the metadata - type, name, contact information */ + support?: MetadataSupport; + /** Dependencies for the content item, what other content items it requires to work. Can describe more complex dependencies using a recursive/nested structure. For a single dependency an id/kind/version can be supplied or operator/criteria for complex formats. */ + dependencies?: MetadataDependencies; + /** Categories for the solution content item */ + categories?: MetadataCategories; + /** Providers for the solution content item */ + providers?: string[]; + /** first publish date solution content item */ + firstPublishDate?: Date; + /** last publish date for the solution content item */ + lastPublishDate?: Date; + /** The custom version of the content. A optional free text */ + customVersion?: string; + /** Schema version of the content. Can be used to distinguish between different flow based on the schema version */ + contentSchemaVersion?: string; + /** the icon identifier. this id can later be fetched from the solution template */ + icon?: string; + /** the tactics the resource covers */ + threatAnalysisTactics?: string[]; + /** the techniques the resource covers, these have to be aligned with the tactics being used */ + threatAnalysisTechniques?: string[]; + /** preview image file names. These will be taken from the solution artifacts */ + previewImages?: string[]; + /** preview image file names. These will be taken from the solution artifacts. used for dark theme support */ + previewImagesDark?: string[]; +} + +/** Sentinel onboarding state */ +export interface SentinelOnboardingState extends ResourceWithEtag { + /** Flag that indicates the status of the CMK setting */ + customerManagedKey?: boolean; +} + +/** Security ML Analytics Setting */ +export interface SecurityMLAnalyticsSetting extends ResourceWithEtag { + /** The kind of security ML Analytics Settings */ + kind: SecurityMLAnalyticsSettingsKind; +} + +/** The Setting. */ +export interface Settings extends ResourceWithEtag { + /** The kind of the setting */ + kind: SettingKind; +} + +/** Represents a SourceControl in Azure Security Insights. */ +export interface SourceControl extends ResourceWithEtag { + /** + * The id (a Guid) of the source control + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly idPropertiesId?: string; + /** + * The version number associated with the source control + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly version?: Version; + /** The display name of the source control */ + displayName?: string; + /** A description of the source control */ description?: string; /** The repository type of the source control */ repoType?: RepoType; @@ -4275,16 +5444,42 @@ export interface SourceControl extends ResourceWithEtag { contentTypes?: ContentType[]; /** Repository metadata. */ repository?: Repository; + /** + * Service principal metadata. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly servicePrincipal?: ServicePrincipal; + /** Repository access credentials. This is write-only object and it never returns back to a user. */ + repositoryAccess?: RepositoryAccess; /** Information regarding the resources created in user's repository. */ repositoryResourceInfo?: RepositoryResourceInfo; - /** Information regarding the latest deployment for the source control. */ - lastDeploymentInfo?: DeploymentInfo; + /** + * Information regarding the latest deployment for the source control. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastDeploymentInfo?: DeploymentInfo; + /** + * Information regarding the pull request of the source control. + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly pullRequest?: PullRequest; } /** Threat intelligence information object. */ export interface ThreatIntelligenceInformation extends ResourceWithEtag { /** The kind of the entity. */ - kind: ThreatIntelligenceResourceKindEnum; + kind: ThreatIntelligenceResourceInnerKind; +} + +/** The triggered analytics rule run */ +export interface TriggeredAnalyticsRuleRun extends ResourceWithEtag { + executionTimeUtc: Date; + ruleId: string; + triggeredAnalyticsRuleRunId: string; + /** The triggered analytics rule run provisioning state */ + provisioningState: ProvisioningState; + /** Dictionary of */ + ruleRunAdditionalData?: { [propertyName: string]: any }; } /** Represents a Watchlist in Azure Security Insights. */ @@ -4357,12 +5552,47 @@ export interface WatchlistItem extends ResourceWithEtag { entityMapping?: { [propertyName: string]: any }; } +/** The assignment job */ +export interface Job extends ResourceWithEtag { + /** + * The time the job completed + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly endTime?: Date; + /** List of items published by the job */ + items?: JobItem[]; + /** + * State of the job + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly provisioningState?: ProvisioningState; + /** + * The time the job started + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly startTime?: Date; + /** + * Message to describe error, if an error exists + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly errorMessage?: string; +} + /** Data connector */ export interface DataConnector extends ResourceWithEtag { /** The data connector kind */ kind: DataConnectorKind; } +/** + * An Azure resource, which encapsulate the entire info requires to display a data connector page in Azure portal, + * and the info required to define data connections. + */ +export interface DataConnectorDefinition extends ResourceWithEtag { + /** The data connector kind */ + kind: DataConnectorDefinitionKind; +} + /** Represents MLBehaviorAnalytics alert rule template. */ export interface MLBehaviorAnalyticsAlertRuleTemplate extends AlertRuleTemplate { @@ -4547,6 +5777,8 @@ export interface ScheduledAlertRuleTemplate extends AlertRuleTemplate { entityMappings?: EntityMapping[]; /** The alert details override settings */ alertDetailsOverride?: AlertDetailsOverride; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; } /** Represents NRT alert rule template. */ @@ -4591,6 +5823,56 @@ export interface NrtAlertRuleTemplate extends AlertRuleTemplate { alertDetailsOverride?: AlertDetailsOverride; /** The event grouping settings. */ eventGroupingSettings?: EventGroupingSettings; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; +} + +/** Billing statistic */ +export interface BillingStatistic extends AzureEntityResource { + /** The kind of the billing statistic */ + kind: BillingStatisticKind; +} + +/** The workspace manager assignment */ +export interface WorkspaceManagerAssignment extends AzureEntityResource { + /** The resource name of the workspace manager group targeted by the workspace manager assignment */ + targetResourceName?: string; + /** + * The time the last job associated to this assignment ended at + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastJobEndTime?: Date; + /** + * State of the last job associated to this assignment + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly lastJobProvisioningState?: ProvisioningState; + /** List of resources included in this workspace manager assignment */ + items?: AssignmentItem[]; +} + +/** The workspace manager configuration */ +export interface WorkspaceManagerConfiguration extends AzureEntityResource { + /** The current mode of the workspace manager configuration */ + mode?: Mode; +} + +/** The workspace manager group */ +export interface WorkspaceManagerGroup extends AzureEntityResource { + /** The description of the workspace manager group */ + description?: string; + /** The display name of the workspace manager group */ + displayName?: string; + /** The names of the workspace manager members participating in this group. */ + memberResourceNames?: string[]; +} + +/** The workspace manager member */ +export interface WorkspaceManagerMember extends AzureEntityResource { + /** Fully qualified resource ID of the target Sentinel workspace joining the given Sentinel workspace manager */ + targetWorkspaceId?: string; + /** Tenant id of the target Sentinel workspace joining the given Sentinel workspace manager */ + targetWorkspaceTenantId?: string; } /** Represents a security alert entity. */ @@ -4601,7 +5883,7 @@ export interface SecurityAlert extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4739,7 +6021,7 @@ export interface HuntingBookmark extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4777,7 +6059,7 @@ export interface AccountEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4853,7 +6135,7 @@ export interface AzureResourceEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4879,7 +6161,7 @@ export interface CloudApplicationEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4910,7 +6192,7 @@ export interface DnsEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4946,7 +6228,7 @@ export interface FileEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -4982,7 +6264,7 @@ export interface FileHashEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5008,7 +6290,7 @@ export interface HostEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5066,7 +6348,7 @@ export interface IoTDeviceEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5219,7 +6501,7 @@ export interface IpEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5250,7 +6532,7 @@ export interface MailboxEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5286,7 +6568,7 @@ export interface MailClusterEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5377,7 +6659,7 @@ export interface MailMessageEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5494,7 +6776,7 @@ export interface MalwareEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5530,7 +6812,7 @@ export interface ProcessEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5588,7 +6870,7 @@ export interface RegistryKeyEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5614,7 +6896,7 @@ export interface RegistryValueEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5650,7 +6932,7 @@ export interface SecurityGroupEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5681,7 +6963,7 @@ export interface SubmissionMailEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5747,7 +7029,7 @@ export interface UrlEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -5768,7 +7050,7 @@ export interface NicEntity extends Entity { * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -6004,6 +7286,8 @@ export interface ScheduledAlertRule extends AlertRule { entityMappings?: EntityMapping[]; /** The alert details override settings */ alertDetailsOverride?: AlertDetailsOverride; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; /** The Name of the alert rule template used to create this rule. */ alertRuleTemplateName?: string; /** The version of the alert rule template used to create this rule - in format , where all are numbers, for example 0 <1.0.2> */ @@ -6072,6 +7356,8 @@ export interface NrtAlertRule extends AlertRule { alertDetailsOverride?: AlertDetailsOverride; /** The event grouping settings. */ eventGroupingSettings?: EventGroupingSettings; + /** Array of the sentinel entity mappings of the alert rule */ + sentinelEntitiesMappings?: SentinelEntityMapping[]; } /** Represents Expansion entity query. */ @@ -6245,7 +7531,7 @@ export interface ThreatIntelligenceIndicatorModel * A bag of custom fields that should be part of the entity and will be presented to the user. * NOTE: This property will not be serialized. It can only be populated by the server. */ - readonly additionalData?: { [propertyName: string]: Record }; + readonly additionalData?: { [propertyName: string]: any }; /** * The graph item display name which is a short humanly readable description of the graph item instance. This property is optional and might be system generated. * NOTE: This property will not be serialized. It can only be populated by the server. @@ -6309,7 +7595,7 @@ export interface ThreatIntelligenceIndicatorModel extensions?: { [propertyName: string]: any }; } -/** Represents AAD (Azure Active Directory) data connector. */ +/** Represents AADIP (Azure Active Directory Identity Protection) data connector. */ export interface AADDataConnector extends DataConnector { /** Polymorphic discriminator, which specifies the different types this object can be */ kind: "AzureActiveDirectory"; @@ -6337,6 +7623,8 @@ export interface MTPDataConnector extends DataConnector { tenantId?: string; /** The available data types for the connector. */ dataTypes?: MTPDataConnectorDataTypes; + /** The available filtered providers for the connector. */ + filteredProviders?: MtpFilteredProviders; } /** Represents AATP (Azure Advanced Threat Protection) data connector. */ @@ -6383,6 +7671,20 @@ export interface AwsS3DataConnector extends DataConnector { dataTypes?: AwsS3DataConnectorDataTypes; } +/** Represents Google Cloud Platform data connector. */ +export interface GCPDataConnector extends DataConnector { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "GCP"; + /** The name of the connector definition that represents the UI config. */ + connectorDefinitionName?: string; + /** The auth section of the connector. */ + auth?: GCPAuthProperties; + /** The request section of the connector. */ + request?: GCPRequestProperties; + /** The configuration of the destination of the data. */ + dcrConfig?: DCRConfiguration; +} + /** Represents MCAS (Microsoft Cloud App Security) data connector. */ export interface McasDataConnector extends DataConnector { /** Polymorphic discriminator, which specifies the different types this object can be */ @@ -6413,6 +7715,17 @@ export interface OfficeATPDataConnector extends DataConnector { dataTypes?: AlertsDataTypeOfDataConnector; } +/** Represents Microsoft Purview Information Protection data connector. */ +export interface MicrosoftPurviewInformationProtectionDataConnector + extends DataConnector { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "MicrosoftPurviewInformationProtection"; + /** The tenant id to connect to, and get the data from. */ + tenantId?: string; + /** The available data types for the connector. */ + dataTypes?: MicrosoftPurviewInformationProtectionConnectorDataTypes; +} + /** Represents Office Microsoft Project data connector. */ export interface Office365ProjectDataConnector extends DataConnector { /** Polymorphic discriminator, which specifies the different types this object can be */ @@ -6529,6 +7842,37 @@ export interface CodelessApiPollingDataConnector extends DataConnector { pollingConfig?: CodelessConnectorPollingConfigProperties; } +/** Connector definition for kind 'Customizable'. */ +export interface CustomizableConnectorDefinition + extends DataConnectorDefinition { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "Customizable"; + /** Gets or sets the connector definition created date in UTC format. */ + createdTimeUtc?: Date; + /** Gets or sets the connector definition last modified date in UTC format. */ + lastModifiedUtc?: Date; + /** The UiConfig for 'Customizable' connector definition kind. */ + connectorUiConfig?: CustomizableConnectorUiConfig; + /** The UiConfig for 'Customizable' connector definition kind. */ + connectionsConfig?: CustomizableConnectionsConfig; +} + +/** Billing statistic about the Microsoft Sentinel solution for SAP Usage */ +export interface SapSolutionUsageStatistic extends BillingStatistic { + /** Polymorphic discriminator, which specifies the different types this object can be */ + kind: "SapSolutionUsage"; + /** + * The latest count of active SAP system IDs under the Microsoft Sentinel solution for SAP Usage + * NOTE: This property will not be serialized. It can only be populated by the server. + */ + readonly activeSystemIdCount?: number; +} + +/** Defines headers for AlertRule_triggerRuleRun operation. */ +export interface AlertRuleTriggerRuleRunHeaders { + location?: string; +} + /** Defines headers for Watchlists_delete operation. */ export interface WatchlistsDeleteHeaders { /** Contains the status URL on which clients are expected to poll the status of the delete operation. */ @@ -6663,7 +8007,9 @@ export enum KnownActionType { /** Modify an object's properties */ ModifyProperties = "ModifyProperties", /** Run a playbook on an object */ - RunPlaybook = "RunPlaybook" + RunPlaybook = "RunPlaybook", + /** Add a task to an incident object */ + AddIncidentTask = "AddIncidentTask" } /** @@ -6672,10 +8018,26 @@ export enum KnownActionType { * this enum contains the known values that the service supports. * ### Known values supported by the service * **ModifyProperties**: Modify an object's properties \ - * **RunPlaybook**: Run a playbook on an object + * **RunPlaybook**: Run a playbook on an object \ + * **AddIncidentTask**: Add a task to an incident object */ export type ActionType = string; +/** Known values of {@link BillingStatisticKind} that the service accepts. */ +export enum KnownBillingStatisticKind { + /** SapSolutionUsage */ + SapSolutionUsage = "SapSolutionUsage" +} + +/** + * Defines values for BillingStatisticKind. \ + * {@link KnownBillingStatisticKind} can be used interchangeably with BillingStatisticKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **SapSolutionUsage** + */ +export type BillingStatisticKind = string; + /** Known values of {@link IncidentSeverity} that the service accepts. */ export enum KnownIncidentSeverity { /** High severity */ @@ -6763,8 +8125,8 @@ export enum KnownAttackTactic { */ export type AttackTactic = string; -/** Known values of {@link EntityKind} that the service accepts. */ -export enum KnownEntityKind { +/** Known values of {@link EntityKindEnum} that the service accepts. */ +export enum KnownEntityKindEnum { /** Entity represents account in the system. */ Account = "Account", /** Entity represents host in the system. */ @@ -6812,8 +8174,8 @@ export enum KnownEntityKind { } /** - * Defines values for EntityKind. \ - * {@link KnownEntityKind} can be used interchangeably with EntityKind, + * Defines values for EntityKindEnum. \ + * {@link KnownEntityKindEnum} can be used interchangeably with EntityKindEnum, * this enum contains the known values that the service supports. * ### Known values supported by the service * **Account**: Entity represents account in the system. \ @@ -6839,7 +8201,169 @@ export enum KnownEntityKind { * **SubmissionMail**: Entity represents submission mail in the system. \ * **Nic**: Entity represents network interface in the system. */ -export type EntityKind = string; +export type EntityKindEnum = string; + +/** Known values of {@link PackageKind} that the service accepts. */ +export enum KnownPackageKind { + /** Solution */ + Solution = "Solution", + /** Standalone */ + Standalone = "Standalone" +} + +/** + * Defines values for PackageKind. \ + * {@link KnownPackageKind} can be used interchangeably with PackageKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Solution** \ + * **Standalone** + */ +export type PackageKind = string; + +/** Known values of {@link Flag} that the service accepts. */ +export enum KnownFlag { + /** True */ + True = "true", + /** False */ + False = "false" +} + +/** + * Defines values for Flag. \ + * {@link KnownFlag} can be used interchangeably with Flag, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **true** \ + * **false** + */ +export type Flag = string; + +/** Known values of {@link SourceKind} that the service accepts. */ +export enum KnownSourceKind { + /** LocalWorkspace */ + LocalWorkspace = "LocalWorkspace", + /** Community */ + Community = "Community", + /** Solution */ + Solution = "Solution", + /** SourceRepository */ + SourceRepository = "SourceRepository" +} + +/** + * Defines values for SourceKind. \ + * {@link KnownSourceKind} can be used interchangeably with SourceKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **LocalWorkspace** \ + * **Community** \ + * **Solution** \ + * **SourceRepository** + */ +export type SourceKind = string; + +/** Known values of {@link SupportTier} that the service accepts. */ +export enum KnownSupportTier { + /** Microsoft */ + Microsoft = "Microsoft", + /** Partner */ + Partner = "Partner", + /** Community */ + Community = "Community" +} + +/** + * Defines values for SupportTier. \ + * {@link KnownSupportTier} can be used interchangeably with SupportTier, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Microsoft** \ + * **Partner** \ + * **Community** + */ +export type SupportTier = string; + +/** Known values of {@link Kind} that the service accepts. */ +export enum KnownKind { + /** DataConnector */ + DataConnector = "DataConnector", + /** DataType */ + DataType = "DataType", + /** Workbook */ + Workbook = "Workbook", + /** WorkbookTemplate */ + WorkbookTemplate = "WorkbookTemplate", + /** Playbook */ + Playbook = "Playbook", + /** PlaybookTemplate */ + PlaybookTemplate = "PlaybookTemplate", + /** AnalyticsRuleTemplate */ + AnalyticsRuleTemplate = "AnalyticsRuleTemplate", + /** AnalyticsRule */ + AnalyticsRule = "AnalyticsRule", + /** HuntingQuery */ + HuntingQuery = "HuntingQuery", + /** InvestigationQuery */ + InvestigationQuery = "InvestigationQuery", + /** Parser */ + Parser = "Parser", + /** Watchlist */ + Watchlist = "Watchlist", + /** WatchlistTemplate */ + WatchlistTemplate = "WatchlistTemplate", + /** Solution */ + Solution = "Solution", + /** AzureFunction */ + AzureFunction = "AzureFunction", + /** LogicAppsCustomConnector */ + LogicAppsCustomConnector = "LogicAppsCustomConnector", + /** AutomationRule */ + AutomationRule = "AutomationRule" +} + +/** + * Defines values for Kind. \ + * {@link KnownKind} can be used interchangeably with Kind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **DataConnector** \ + * **DataType** \ + * **Workbook** \ + * **WorkbookTemplate** \ + * **Playbook** \ + * **PlaybookTemplate** \ + * **AnalyticsRuleTemplate** \ + * **AnalyticsRule** \ + * **HuntingQuery** \ + * **InvestigationQuery** \ + * **Parser** \ + * **Watchlist** \ + * **WatchlistTemplate** \ + * **Solution** \ + * **AzureFunction** \ + * **LogicAppsCustomConnector** \ + * **AutomationRule** + */ +export type Kind = string; + +/** Known values of {@link Operator} that the service accepts. */ +export enum KnownOperator { + /** AND */ + AND = "AND", + /** OR */ + OR = "OR" +} + +/** + * Defines values for Operator. \ + * {@link KnownOperator} can be used interchangeably with Operator, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **AND** \ + * **OR** + */ +export type Operator = string; /** Known values of {@link EntityTimelineKind} that the service accepts. */ export enum KnownEntityTimelineKind { @@ -6916,8 +8440,8 @@ export enum KnownGetInsightsError { */ export type GetInsightsError = string; -/** Known values of {@link Enum13} that the service accepts. */ -export enum KnownEnum13 { +/** Known values of {@link Enum20} that the service accepts. */ +export enum KnownEnum20 { /** Expansion */ Expansion = "Expansion", /** Activity */ @@ -6925,14 +8449,14 @@ export enum KnownEnum13 { } /** - * Defines values for Enum13. \ - * {@link KnownEnum13} can be used interchangeably with Enum13, + * Defines values for Enum20. \ + * {@link KnownEnum20} can be used interchangeably with Enum20, * this enum contains the known values that the service supports. * ### Known values supported by the service * **Expansion** \ * **Activity** */ -export type Enum13 = string; +export type Enum20 = string; /** Known values of {@link CustomEntityQueryKind} that the service accepts. */ export enum KnownCustomEntityQueryKind { @@ -7081,6 +8605,105 @@ export enum KnownFileImportState { */ export type FileImportState = string; +/** Known values of {@link Status} that the service accepts. */ +export enum KnownStatus { + /** New */ + New = "New", + /** Active */ + Active = "Active", + /** Closed */ + Closed = "Closed", + /** Backlog */ + Backlog = "Backlog", + /** Approved */ + Approved = "Approved", + /** Succeeded */ + Succeeded = "Succeeded", + /** Failed */ + Failed = "Failed", + /** InProgress */ + InProgress = "InProgress" +} + +/** + * Defines values for Status. \ + * {@link KnownStatus} can be used interchangeably with Status, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **New** \ + * **Active** \ + * **Closed** \ + * **Backlog** \ + * **Approved** \ + * **Succeeded** \ + * **Failed** \ + * **InProgress** + */ +export type Status = string; + +/** Known values of {@link HypothesisStatus} that the service accepts. */ +export enum KnownHypothesisStatus { + /** Unknown */ + Unknown = "Unknown", + /** Invalidated */ + Invalidated = "Invalidated", + /** Validated */ + Validated = "Validated" +} + +/** + * Defines values for HypothesisStatus. \ + * {@link KnownHypothesisStatus} can be used interchangeably with HypothesisStatus, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Unknown** \ + * **Invalidated** \ + * **Validated** + */ +export type HypothesisStatus = string; + +/** Known values of {@link OwnerType} that the service accepts. */ +export enum KnownOwnerType { + /** The hunt owner type is unknown */ + Unknown = "Unknown", + /** The hunt owner type is an AAD user */ + User = "User", + /** The hunt owner type is an AAD group */ + Group = "Group" +} + +/** + * Defines values for OwnerType. \ + * {@link KnownOwnerType} can be used interchangeably with OwnerType, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Unknown**: The hunt owner type is unknown \ + * **User**: The hunt owner type is an AAD user \ + * **Group**: The hunt owner type is an AAD group + */ +export type OwnerType = string; + +/** Known values of {@link IncidentStatus} that the service accepts. */ +export enum KnownIncidentStatus { + /** An active incident which isn't being handled currently */ + New = "New", + /** An active incident which is being handled */ + Active = "Active", + /** A non-active incident */ + Closed = "Closed" +} + +/** + * Defines values for IncidentStatus. \ + * {@link KnownIncidentStatus} can be used interchangeably with IncidentStatus, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **New**: An active incident which isn't being handled currently \ + * **Active**: An active incident which is being handled \ + * **Closed**: A non-active incident + */ +export type IncidentStatus = string; + /** Known values of {@link IncidentClassification} that the service accepts. */ export enum KnownIncidentClassification { /** Incident classification was undetermined */ @@ -7130,64 +8753,22 @@ export enum KnownIncidentClassificationReason { export type IncidentClassificationReason = string; /** Known values of {@link IncidentLabelType} that the service accepts. */ -export enum KnownIncidentLabelType { - /** Label manually created by a user */ - User = "User", - /** Label automatically created by the system */ - AutoAssigned = "AutoAssigned" -} - -/** - * Defines values for IncidentLabelType. \ - * {@link KnownIncidentLabelType} can be used interchangeably with IncidentLabelType, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **User**: Label manually created by a user \ - * **AutoAssigned**: Label automatically created by the system - */ -export type IncidentLabelType = string; - -/** Known values of {@link OwnerType} that the service accepts. */ -export enum KnownOwnerType { - /** The incident owner type is unknown */ - Unknown = "Unknown", - /** The incident owner type is an AAD user */ - User = "User", - /** The incident owner type is an AAD group */ - Group = "Group" -} - -/** - * Defines values for OwnerType. \ - * {@link KnownOwnerType} can be used interchangeably with OwnerType, - * this enum contains the known values that the service supports. - * ### Known values supported by the service - * **Unknown**: The incident owner type is unknown \ - * **User**: The incident owner type is an AAD user \ - * **Group**: The incident owner type is an AAD group - */ -export type OwnerType = string; - -/** Known values of {@link IncidentStatus} that the service accepts. */ -export enum KnownIncidentStatus { - /** An active incident which isn't being handled currently */ - New = "New", - /** An active incident which is being handled */ - Active = "Active", - /** A non-active incident */ - Closed = "Closed" +export enum KnownIncidentLabelType { + /** Label manually created by a user */ + User = "User", + /** Label automatically created by the system */ + AutoAssigned = "AutoAssigned" } /** - * Defines values for IncidentStatus. \ - * {@link KnownIncidentStatus} can be used interchangeably with IncidentStatus, + * Defines values for IncidentLabelType. \ + * {@link KnownIncidentLabelType} can be used interchangeably with IncidentLabelType, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **New**: An active incident which isn't being handled currently \ - * **Active**: An active incident which is being handled \ - * **Closed**: A non-active incident + * **User**: Label manually created by a user \ + * **AutoAssigned**: Label automatically created by the system */ -export type IncidentStatus = string; +export type IncidentLabelType = string; /** Known values of {@link ConfidenceLevel} that the service accepts. */ export enum KnownConfidenceLevel { @@ -7250,7 +8831,7 @@ export enum KnownKillChainIntent { DefenseEvasion = "DefenseEvasion", /** Credential access represents techniques resulting in access to or control over system, domain, or service credentials that are used within an enterprise environment. Adversaries will likely attempt to obtain legitimate credentials from users or administrator accounts (local system administrator or domain users with administrator access) to use within the network. With sufficient access within a network, an adversary can create accounts for later use within the environment. */ CredentialAccess = "CredentialAccess", - /** Discovery consists of techniques that allow the adversary to gain knowledge about the system and internal network. When adversaries gain access to a new system, they must orient themselves to what they now have control of and what benefits operating from that system give to their current objective or overall goals during the intrusion. The operating system provides many native tools that aid in this post-compromise information-gathering phase. */ + /** Discovery consists of techniques that allow the adversary to gain knowledge about the system and internal network. When adversaries gain access to a new system, they must navigate themselves to what they now have control of and what benefits operating from that system give to their current objective or overall goals during the intrusion. The operating system provides many native tools that aid in this post-compromise information-gathering phase. */ Discovery = "Discovery", /** Lateral movement consists of techniques that enable an adversary to access and control remote systems on a network and could, but does not necessarily, include execution of tools on remote systems. The lateral movement techniques could allow an adversary to gather information from a system without needing additional tools, such as a remote access tool. An adversary can use lateral movement for many purposes, including remote Execution of tools, pivoting to additional systems, access to specific information or files, access to additional credentials, or to cause an effect. */ LateralMovement = "LateralMovement", @@ -7278,7 +8859,7 @@ export enum KnownKillChainIntent { * **PrivilegeEscalation**: Privilege escalation is the result of actions that allow an adversary to obtain a higher level of permissions on a system or network. Certain tools or actions require a higher level of privilege to work and are likely necessary at many points throughout an operation. User accounts with permissions to access specific systems or perform specific functions necessary for adversaries to achieve their objective may also be considered an escalation of privilege. \ * **DefenseEvasion**: Defense evasion consists of techniques an adversary may use to evade detection or avoid other defenses. Sometimes these actions are the same as or variations of techniques in other categories that have the added benefit of subverting a particular defense or mitigation. \ * **CredentialAccess**: Credential access represents techniques resulting in access to or control over system, domain, or service credentials that are used within an enterprise environment. Adversaries will likely attempt to obtain legitimate credentials from users or administrator accounts (local system administrator or domain users with administrator access) to use within the network. With sufficient access within a network, an adversary can create accounts for later use within the environment. \ - * **Discovery**: Discovery consists of techniques that allow the adversary to gain knowledge about the system and internal network. When adversaries gain access to a new system, they must orient themselves to what they now have control of and what benefits operating from that system give to their current objective or overall goals during the intrusion. The operating system provides many native tools that aid in this post-compromise information-gathering phase. \ + * **Discovery**: Discovery consists of techniques that allow the adversary to gain knowledge about the system and internal network. When adversaries gain access to a new system, they must navigate themselves to what they now have control of and what benefits operating from that system give to their current objective or overall goals during the intrusion. The operating system provides many native tools that aid in this post-compromise information-gathering phase. \ * **LateralMovement**: Lateral movement consists of techniques that enable an adversary to access and control remote systems on a network and could, but does not necessarily, include execution of tools on remote systems. The lateral movement techniques could allow an adversary to gather information from a system without needing additional tools, such as a remote access tool. An adversary can use lateral movement for many purposes, including remote Execution of tools, pivoting to additional systems, access to specific information or files, access to additional credentials, or to cause an effect. \ * **Execution**: The execution tactic represents techniques that result in execution of adversary-controlled code on a local or remote system. This tactic is often used in conjunction with lateral movement to expand access to remote systems on a network. \ * **Collection**: Collection consists of techniques used to identify and gather information, such as sensitive files, from a target network prior to exfiltration. This category also covers locations on a system or network where the adversary may look for information to exfiltrate. \ @@ -7339,131 +8920,122 @@ export enum KnownAlertStatus { */ export type AlertStatus = string; -/** Known values of {@link Kind} that the service accepts. */ -export enum KnownKind { - /** DataConnector */ - DataConnector = "DataConnector", - /** DataType */ - DataType = "DataType", - /** Workbook */ - Workbook = "Workbook", - /** WorkbookTemplate */ - WorkbookTemplate = "WorkbookTemplate", - /** Playbook */ - Playbook = "Playbook", - /** PlaybookTemplate */ - PlaybookTemplate = "PlaybookTemplate", - /** AnalyticsRuleTemplate */ - AnalyticsRuleTemplate = "AnalyticsRuleTemplate", - /** AnalyticsRule */ - AnalyticsRule = "AnalyticsRule", - /** HuntingQuery */ - HuntingQuery = "HuntingQuery", - /** InvestigationQuery */ - InvestigationQuery = "InvestigationQuery", - /** Parser */ - Parser = "Parser", - /** Watchlist */ - Watchlist = "Watchlist", - /** WatchlistTemplate */ - WatchlistTemplate = "WatchlistTemplate", - /** Solution */ - Solution = "Solution", - /** AzureFunction */ - AzureFunction = "AzureFunction", - /** LogicAppsCustomConnector */ - LogicAppsCustomConnector = "LogicAppsCustomConnector", - /** AutomationRule */ - AutomationRule = "AutomationRule" +/** Known values of {@link IncidentTaskStatus} that the service accepts. */ +export enum KnownIncidentTaskStatus { + /** A new task */ + New = "New", + /** A completed task */ + Completed = "Completed" } /** - * Defines values for Kind. \ - * {@link KnownKind} can be used interchangeably with Kind, + * Defines values for IncidentTaskStatus. \ + * {@link KnownIncidentTaskStatus} can be used interchangeably with IncidentTaskStatus, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **DataConnector** \ - * **DataType** \ - * **Workbook** \ - * **WorkbookTemplate** \ - * **Playbook** \ - * **PlaybookTemplate** \ - * **AnalyticsRuleTemplate** \ - * **AnalyticsRule** \ - * **HuntingQuery** \ - * **InvestigationQuery** \ - * **Parser** \ - * **Watchlist** \ - * **WatchlistTemplate** \ - * **Solution** \ - * **AzureFunction** \ - * **LogicAppsCustomConnector** \ - * **AutomationRule** + * **New**: A new task \ + * **Completed**: A completed task */ -export type Kind = string; +export type IncidentTaskStatus = string; + +/** Known values of {@link Category} that the service accepts. */ +export enum KnownCategory { + /** Onboarding recommendation. */ + Onboarding = "Onboarding", + /** New feature recommendation. */ + NewFeature = "NewFeature", + /** Soc Efficiency recommendation. */ + SocEfficiency = "SocEfficiency", + /** Cost optimization recommendation. */ + CostOptimization = "CostOptimization", + /** Demo recommendation. */ + Demo = "Demo" +} -/** Known values of {@link SourceKind} that the service accepts. */ -export enum KnownSourceKind { - /** LocalWorkspace */ - LocalWorkspace = "LocalWorkspace", - /** Community */ - Community = "Community", - /** Solution */ - Solution = "Solution", - /** SourceRepository */ - SourceRepository = "SourceRepository" +/** + * Defines values for Category. \ + * {@link KnownCategory} can be used interchangeably with Category, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Onboarding**: Onboarding recommendation. \ + * **NewFeature**: New feature recommendation. \ + * **SocEfficiency**: Soc Efficiency recommendation. \ + * **CostOptimization**: Cost optimization recommendation. \ + * **Demo**: Demo recommendation. + */ +export type Category = string; + +/** Known values of {@link Context} that the service accepts. */ +export enum KnownContext { + /** Analytics context. */ + Analytics = "Analytics", + /** Incidents context. */ + Incidents = "Incidents", + /** Overview context. */ + Overview = "Overview", + /** No context. */ + None = "None" } /** - * Defines values for SourceKind. \ - * {@link KnownSourceKind} can be used interchangeably with SourceKind, + * Defines values for Context. \ + * {@link KnownContext} can be used interchangeably with Context, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **LocalWorkspace** \ - * **Community** \ - * **Solution** \ - * **SourceRepository** + * **Analytics**: Analytics context. \ + * **Incidents**: Incidents context. \ + * **Overview**: Overview context. \ + * **None**: No context. */ -export type SourceKind = string; +export type Context = string; -/** Known values of {@link SupportTier} that the service accepts. */ -export enum KnownSupportTier { - /** Microsoft */ - Microsoft = "Microsoft", - /** Partner */ - Partner = "Partner", - /** Community */ - Community = "Community" +/** Known values of {@link Priority} that the service accepts. */ +export enum KnownPriority { + /** Low priority for recommendation. */ + Low = "Low", + /** Medium priority for recommendation. */ + Medium = "Medium", + /** High priority for recommendation. */ + High = "High" } /** - * Defines values for SupportTier. \ - * {@link KnownSupportTier} can be used interchangeably with SupportTier, + * Defines values for Priority. \ + * {@link KnownPriority} can be used interchangeably with Priority, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **Microsoft** \ - * **Partner** \ - * **Community** + * **Low**: Low priority for recommendation. \ + * **Medium**: Medium priority for recommendation. \ + * **High**: High priority for recommendation. */ -export type SupportTier = string; +export type Priority = string; -/** Known values of {@link Operator} that the service accepts. */ -export enum KnownOperator { - /** AND */ - AND = "AND", - /** OR */ - OR = "OR" +/** Known values of {@link State} that the service accepts. */ +export enum KnownState { + /** Recommendation is active. */ + Active = "Active", + /** Recommendation is disabled. */ + Disabled = "Disabled", + /** Recommendation has been completed by user. */ + CompletedByUser = "CompletedByUser", + /** Recommendation has been completed by action. */ + CompletedByAction = "CompletedByAction", + /** Recommendation is hidden. */ + Hidden = "Hidden" } /** - * Defines values for Operator. \ - * {@link KnownOperator} can be used interchangeably with Operator, + * Defines values for State. \ + * {@link KnownState} can be used interchangeably with State, * this enum contains the known values that the service supports. * ### Known values supported by the service - * **AND** \ - * **OR** + * **Active**: Recommendation is active. \ + * **Disabled**: Recommendation is disabled. \ + * **CompletedByUser**: Recommendation has been completed by user. \ + * **CompletedByAction**: Recommendation has been completed by action. \ + * **Hidden**: Recommendation is hidden. */ -export type Operator = string; +export type State = string; /** Known values of {@link SecurityMLAnalyticsSettingsKind} that the service accepts. */ export enum KnownSecurityMLAnalyticsSettingsKind { @@ -7508,8 +9080,8 @@ export type SettingKind = string; export enum KnownRepoType { /** Github */ Github = "Github", - /** DevOps */ - DevOps = "DevOps" + /** AzureDevOps */ + AzureDevOps = "AzureDevOps" } /** @@ -7518,7 +9090,7 @@ export enum KnownRepoType { * this enum contains the known values that the service supports. * ### Known values supported by the service * **Github** \ - * **DevOps** + * **AzureDevOps** */ export type RepoType = string; @@ -7544,6 +9116,14 @@ export type Version = string; export enum KnownContentType { /** AnalyticRule */ AnalyticRule = "AnalyticRule", + /** AutomationRule */ + AutomationRule = "AutomationRule", + /** HuntingQuery */ + HuntingQuery = "HuntingQuery", + /** Parser */ + Parser = "Parser", + /** Playbook */ + Playbook = "Playbook", /** Workbook */ Workbook = "Workbook" } @@ -7554,10 +9134,35 @@ export enum KnownContentType { * this enum contains the known values that the service supports. * ### Known values supported by the service * **AnalyticRule** \ + * **AutomationRule** \ + * **HuntingQuery** \ + * **Parser** \ + * **Playbook** \ * **Workbook** */ export type ContentType = string; +/** Known values of {@link RepositoryAccessKind} that the service accepts. */ +export enum KnownRepositoryAccessKind { + /** OAuth */ + OAuth = "OAuth", + /** PAT */ + PAT = "PAT", + /** App */ + App = "App" +} + +/** + * Defines values for RepositoryAccessKind. \ + * {@link KnownRepositoryAccessKind} can be used interchangeably with RepositoryAccessKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **OAuth** \ + * **PAT** \ + * **App** + */ +export type RepositoryAccessKind = string; + /** Known values of {@link DeploymentFetchStatus} that the service accepts. */ export enum KnownDeploymentFetchStatus { /** Success */ @@ -7624,23 +9229,50 @@ export enum KnownDeploymentResult { */ export type DeploymentResult = string; -/** Known values of {@link ThreatIntelligenceResourceKindEnum} that the service accepts. */ -export enum KnownThreatIntelligenceResourceKindEnum { +/** Known values of {@link WarningCode} that the service accepts. */ +export enum KnownWarningCode { + /** SourceControlWarningDeleteServicePrincipal */ + SourceControlWarningDeleteServicePrincipal = "SourceControlWarning_DeleteServicePrincipal", + /** SourceControlWarningDeletePipelineFromAzureDevOps */ + SourceControlWarningDeletePipelineFromAzureDevOps = "SourceControlWarning_DeletePipelineFromAzureDevOps", + /** SourceControlWarningDeleteWorkflowAndSecretFromGitHub */ + SourceControlWarningDeleteWorkflowAndSecretFromGitHub = "SourceControlWarning_DeleteWorkflowAndSecretFromGitHub", + /** SourceControlWarningDeleteRoleAssignment */ + SourceControlWarningDeleteRoleAssignment = "SourceControlWarning_DeleteRoleAssignment", + /** SourceControlDeletedWithWarnings */ + SourceControlDeletedWithWarnings = "SourceControl_DeletedWithWarnings" +} + +/** + * Defines values for WarningCode. \ + * {@link KnownWarningCode} can be used interchangeably with WarningCode, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **SourceControlWarning_DeleteServicePrincipal** \ + * **SourceControlWarning_DeletePipelineFromAzureDevOps** \ + * **SourceControlWarning_DeleteWorkflowAndSecretFromGitHub** \ + * **SourceControlWarning_DeleteRoleAssignment** \ + * **SourceControl_DeletedWithWarnings** + */ +export type WarningCode = string; + +/** Known values of {@link ThreatIntelligenceResourceInnerKind} that the service accepts. */ +export enum KnownThreatIntelligenceResourceInnerKind { /** Entity represents threat intelligence indicator in the system. */ Indicator = "indicator" } /** - * Defines values for ThreatIntelligenceResourceKindEnum. \ - * {@link KnownThreatIntelligenceResourceKindEnum} can be used interchangeably with ThreatIntelligenceResourceKindEnum, + * Defines values for ThreatIntelligenceResourceInnerKind. \ + * {@link KnownThreatIntelligenceResourceInnerKind} can be used interchangeably with ThreatIntelligenceResourceInnerKind, * this enum contains the known values that the service supports. * ### Known values supported by the service * **indicator**: Entity represents threat intelligence indicator in the system. */ -export type ThreatIntelligenceResourceKindEnum = string; +export type ThreatIntelligenceResourceInnerKind = string; -/** Known values of {@link ThreatIntelligenceSortingCriteriaEnum} that the service accepts. */ -export enum KnownThreatIntelligenceSortingCriteriaEnum { +/** Known values of {@link ThreatIntelligenceSortingOrder} that the service accepts. */ +export enum KnownThreatIntelligenceSortingOrder { /** Unsorted */ Unsorted = "unsorted", /** Ascending */ @@ -7650,15 +9282,42 @@ export enum KnownThreatIntelligenceSortingCriteriaEnum { } /** - * Defines values for ThreatIntelligenceSortingCriteriaEnum. \ - * {@link KnownThreatIntelligenceSortingCriteriaEnum} can be used interchangeably with ThreatIntelligenceSortingCriteriaEnum, + * Defines values for ThreatIntelligenceSortingOrder. \ + * {@link KnownThreatIntelligenceSortingOrder} can be used interchangeably with ThreatIntelligenceSortingOrder, * this enum contains the known values that the service supports. * ### Known values supported by the service * **unsorted** \ * **ascending** \ * **descending** */ -export type ThreatIntelligenceSortingCriteriaEnum = string; +export type ThreatIntelligenceSortingOrder = string; + +/** Known values of {@link ProvisioningState} that the service accepts. */ +export enum KnownProvisioningState { + /** Accepted */ + Accepted = "Accepted", + /** InProgress */ + InProgress = "InProgress", + /** Succeeded */ + Succeeded = "Succeeded", + /** Failed */ + Failed = "Failed", + /** Canceled */ + Canceled = "Canceled" +} + +/** + * Defines values for ProvisioningState. \ + * {@link KnownProvisioningState} can be used interchangeably with ProvisioningState, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Accepted** \ + * **InProgress** \ + * **Succeeded** \ + * **Failed** \ + * **Canceled** + */ +export type ProvisioningState = string; /** Known values of {@link SourceType} that the service accepts. */ export enum KnownSourceType { @@ -7678,6 +9337,24 @@ export enum KnownSourceType { */ export type SourceType = string; +/** Known values of {@link Mode} that the service accepts. */ +export enum KnownMode { + /** The workspace manager configuration is enabled */ + Enabled = "Enabled", + /** The workspace manager configuration is disabled */ + Disabled = "Disabled" +} + +/** + * Defines values for Mode. \ + * {@link KnownMode} can be used interchangeably with Mode, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Enabled**: The workspace manager configuration is enabled \ + * **Disabled**: The workspace manager configuration is disabled + */ +export type Mode = string; + /** Known values of {@link DataConnectorKind} that the service accepts. */ export enum KnownDataConnectorKind { /** AzureActiveDirectory */ @@ -7698,6 +9375,8 @@ export enum KnownDataConnectorKind { OfficeIRM = "OfficeIRM", /** Office365Project */ Office365Project = "Office365Project", + /** MicrosoftPurviewInformationProtection */ + MicrosoftPurviewInformationProtection = "MicrosoftPurviewInformationProtection", /** OfficePowerBI */ OfficePowerBI = "OfficePowerBI", /** AmazonWebServicesCloudTrail */ @@ -7719,7 +9398,9 @@ export enum KnownDataConnectorKind { /** APIPolling */ APIPolling = "APIPolling", /** IOT */ - IOT = "IOT" + IOT = "IOT", + /** GCP */ + GCP = "GCP" } /** @@ -7736,6 +9417,7 @@ export enum KnownDataConnectorKind { * **OfficeATP** \ * **OfficeIRM** \ * **Office365Project** \ + * **MicrosoftPurviewInformationProtection** \ * **OfficePowerBI** \ * **AmazonWebServicesCloudTrail** \ * **AmazonWebServicesS3** \ @@ -7746,7 +9428,8 @@ export enum KnownDataConnectorKind { * **MicrosoftThreatIntelligence** \ * **GenericUI** \ * **APIPolling** \ - * **IOT** + * **IOT** \ + * **GCP** */ export type DataConnectorKind = string; @@ -7810,6 +9493,21 @@ export enum KnownDataConnectorLicenseState { */ export type DataConnectorLicenseState = string; +/** Known values of {@link DataConnectorDefinitionKind} that the service accepts. */ +export enum KnownDataConnectorDefinitionKind { + /** Customizable */ + Customizable = "Customizable" +} + +/** + * Defines values for DataConnectorDefinitionKind. \ + * {@link KnownDataConnectorDefinitionKind} can be used interchangeably with DataConnectorDefinitionKind, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Customizable** + */ +export type DataConnectorDefinitionKind = string; + /** Known values of {@link TemplateStatus} that the service accepts. */ export enum KnownTemplateStatus { /** Alert rule template installed. and can not use more then once */ @@ -7897,6 +9595,45 @@ export enum KnownEntityMappingType { */ export type EntityMappingType = string; +/** Known values of {@link AlertProperty} that the service accepts. */ +export enum KnownAlertProperty { + /** Alert's link */ + AlertLink = "AlertLink", + /** Confidence level property */ + ConfidenceLevel = "ConfidenceLevel", + /** Confidence score */ + ConfidenceScore = "ConfidenceScore", + /** Extended links to the alert */ + ExtendedLinks = "ExtendedLinks", + /** Product name alert property */ + ProductName = "ProductName", + /** Provider name alert property */ + ProviderName = "ProviderName", + /** Product component name alert property */ + ProductComponentName = "ProductComponentName", + /** Remediation steps alert property */ + RemediationSteps = "RemediationSteps", + /** Techniques alert property */ + Techniques = "Techniques" +} + +/** + * Defines values for AlertProperty. \ + * {@link KnownAlertProperty} can be used interchangeably with AlertProperty, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **AlertLink**: Alert's link \ + * **ConfidenceLevel**: Confidence level property \ + * **ConfidenceScore**: Confidence score \ + * **ExtendedLinks**: Extended links to the alert \ + * **ProductName**: Product name alert property \ + * **ProviderName**: Provider name alert property \ + * **ProductComponentName**: Product component name alert property \ + * **RemediationSteps**: Remediation steps alert property \ + * **Techniques**: Techniques alert property + */ +export type AlertProperty = string; + /** Known values of {@link EventGroupingAggregationKind} that the service accepts. */ export enum KnownEventGroupingAggregationKind { /** SingleAlert */ @@ -8518,6 +10255,24 @@ export enum KnownDataTypeState { */ export type DataTypeState = string; +/** Known values of {@link MtpProvider} that the service accepts. */ +export enum KnownMtpProvider { + /** MicrosoftDefenderForCloudApps */ + MicrosoftDefenderForCloudApps = "microsoftDefenderForCloudApps", + /** MicrosoftDefenderForIdentity */ + MicrosoftDefenderForIdentity = "microsoftDefenderForIdentity" +} + +/** + * Defines values for MtpProvider. \ + * {@link KnownMtpProvider} can be used interchangeably with MtpProvider, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **microsoftDefenderForCloudApps** \ + * **microsoftDefenderForIdentity** + */ +export type MtpProvider = string; + /** Known values of {@link PollingFrequency} that the service accepts. */ export enum KnownPollingFrequency { /** Once a minute */ @@ -8626,6 +10381,27 @@ export enum KnownSettingType { */ export type SettingType = string; +/** Known values of {@link ProviderPermissionsScope} that the service accepts. */ +export enum KnownProviderPermissionsScope { + /** Subscription */ + Subscription = "Subscription", + /** ResourceGroup */ + ResourceGroup = "ResourceGroup", + /** Workspace */ + Workspace = "Workspace" +} + +/** + * Defines values for ProviderPermissionsScope. \ + * {@link KnownProviderPermissionsScope} can be used interchangeably with ProviderPermissionsScope, + * this enum contains the known values that the service supports. + * ### Known values supported by the service + * **Subscription** \ + * **ResourceGroup** \ + * **Workspace** + */ +export type ProviderPermissionsScope = string; + /** Known values of {@link FileHashAlgorithm} that the service accepts. */ export enum KnownFileHashAlgorithm { /** Unknown hash algorithm */ @@ -8881,49 +10657,98 @@ export interface AlertRuleTemplatesGetOptionalParams export type AlertRuleTemplatesGetResponse = AlertRuleTemplateUnion; /** Optional parameters. */ -export interface AlertRuleTemplatesListNextOptionalParams +export interface AlertRuleTemplatesListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type AlertRuleTemplatesListNextResponse = AlertRuleTemplatesList; + +/** Optional parameters. */ +export interface AutomationRulesGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type AutomationRulesGetResponse = AutomationRule; + +/** Optional parameters. */ +export interface AutomationRulesCreateOrUpdateOptionalParams + extends coreClient.OperationOptions { + /** The automation rule */ + automationRuleToUpsert?: AutomationRule; +} + +/** Contains response data for the createOrUpdate operation. */ +export type AutomationRulesCreateOrUpdateResponse = AutomationRule; + +/** Optional parameters. */ +export interface AutomationRulesDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the delete operation. */ +export type AutomationRulesDeleteResponse = Record; + +/** Optional parameters. */ +export interface AutomationRulesListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type AutomationRulesListResponse = AutomationRulesList; + +/** Optional parameters. */ +export interface AutomationRulesListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type AutomationRulesListNextResponse = AutomationRulesList; + +/** Optional parameters. */ +export interface EntitiesRunPlaybookOptionalParams + extends coreClient.OperationOptions { + /** Describes the request body for triggering a playbook on an entity. */ + requestBody?: EntityManualTriggerRequestBody; +} + +/** Optional parameters. */ +export interface EntitiesListOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the listNext operation. */ -export type AlertRuleTemplatesListNextResponse = AlertRuleTemplatesList; +/** Contains response data for the list operation. */ +export type EntitiesListResponse = EntityList; /** Optional parameters. */ -export interface AutomationRulesGetOptionalParams +export interface EntitiesGetOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the get operation. */ -export type AutomationRulesGetResponse = AutomationRule; +export type EntitiesGetResponse = EntityUnion; /** Optional parameters. */ -export interface AutomationRulesCreateOrUpdateOptionalParams - extends coreClient.OperationOptions { - /** The automation rule */ - automationRuleToUpsert?: AutomationRule; -} +export interface EntitiesExpandOptionalParams + extends coreClient.OperationOptions {} -/** Contains response data for the createOrUpdate operation. */ -export type AutomationRulesCreateOrUpdateResponse = AutomationRule; +/** Contains response data for the expand operation. */ +export type EntitiesExpandResponse = EntityExpandResponse; /** Optional parameters. */ -export interface AutomationRulesDeleteOptionalParams +export interface EntitiesQueriesOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the delete operation. */ -export type AutomationRulesDeleteResponse = Record; +/** Contains response data for the queries operation. */ +export type EntitiesQueriesResponse = GetQueriesResponse; /** Optional parameters. */ -export interface AutomationRulesListOptionalParams +export interface EntitiesGetInsightsOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the list operation. */ -export type AutomationRulesListResponse = AutomationRulesList; +/** Contains response data for the getInsights operation. */ +export type EntitiesGetInsightsResponse = EntityGetInsightsResponse; /** Optional parameters. */ -export interface AutomationRulesListNextOptionalParams +export interface EntitiesListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type AutomationRulesListNextResponse = AutomationRulesList; +export type EntitiesListNextResponse = EntityList; /** Optional parameters. */ export interface IncidentsRunPlaybookOptionalParams @@ -9003,6 +10828,27 @@ export interface IncidentsListNextOptionalParams /** Contains response data for the listNext operation. */ export type IncidentsListNextResponse = IncidentList; +/** Optional parameters. */ +export interface BillingStatisticsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type BillingStatisticsListResponse = BillingStatisticList; + +/** Optional parameters. */ +export interface BillingStatisticsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type BillingStatisticsGetResponse = BillingStatisticUnion; + +/** Optional parameters. */ +export interface BillingStatisticsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type BillingStatisticsListNextResponse = BillingStatisticList; + /** Optional parameters. */ export interface BookmarksListOptionalParams extends coreClient.OperationOptions {} @@ -9084,60 +10930,160 @@ export interface BookmarkExpandOptionalParams export type BookmarkExpandOperationResponse = BookmarkExpandResponse; /** Optional parameters. */ -export interface IPGeodataGetOptionalParams +export interface ContentPackagesListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type ContentPackagesListResponse = PackageList; + +/** Optional parameters. */ +export interface ContentPackagesGetOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the get operation. */ -export type IPGeodataGetResponse = EnrichmentIpGeodata; +export type ContentPackagesGetResponse = PackageModel; /** Optional parameters. */ -export interface DomainWhoisGetOptionalParams +export interface ContentPackagesListNextOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the get operation. */ -export type DomainWhoisGetResponse = EnrichmentDomainWhois; +/** Contains response data for the listNext operation. */ +export type ContentPackagesListNextResponse = PackageList; /** Optional parameters. */ -export interface EntitiesListOptionalParams +export interface ContentPackageInstallOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the install operation. */ +export type ContentPackageInstallResponse = PackageModel; + +/** Optional parameters. */ +export interface ContentPackageUninstallOptionalParams extends coreClient.OperationOptions {} +/** Optional parameters. */ +export interface ProductPackagesListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + /** Contains response data for the list operation. */ -export type EntitiesListResponse = EntityList; +export type ProductPackagesListResponse = ProductPackageList; /** Optional parameters. */ -export interface EntitiesGetOptionalParams +export interface ProductPackagesListNextOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the get operation. */ -export type EntitiesGetResponse = EntityUnion; +/** Contains response data for the listNext operation. */ +export type ProductPackagesListNextResponse = ProductPackageList; /** Optional parameters. */ -export interface EntitiesExpandOptionalParams +export interface ProductPackageGetOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the expand operation. */ -export type EntitiesExpandResponse = EntityExpandResponse; +/** Contains response data for the get operation. */ +export type ProductPackageGetResponse = ProductPackageModel; /** Optional parameters. */ -export interface EntitiesQueriesOptionalParams +export interface ProductTemplatesListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type ProductTemplatesListResponse = ProductTemplateList; + +/** Optional parameters. */ +export interface ProductTemplatesListNextOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the queries operation. */ -export type EntitiesQueriesResponse = GetQueriesResponse; +/** Contains response data for the listNext operation. */ +export type ProductTemplatesListNextResponse = ProductTemplateList; /** Optional parameters. */ -export interface EntitiesGetInsightsOptionalParams +export interface ProductTemplateGetOptionalParams extends coreClient.OperationOptions {} -/** Contains response data for the getInsights operation. */ -export type EntitiesGetInsightsResponse = EntityGetInsightsResponse; +/** Contains response data for the get operation. */ +export type ProductTemplateGetResponse = ProductTemplateModel; /** Optional parameters. */ -export interface EntitiesListNextOptionalParams +export interface ContentTemplatesListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type ContentTemplatesListResponse = TemplateList; + +/** Optional parameters. */ +export interface ContentTemplatesListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type EntitiesListNextResponse = EntityList; +export type ContentTemplatesListNextResponse = TemplateList; + +/** Optional parameters. */ +export interface ContentTemplateInstallOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the install operation. */ +export type ContentTemplateInstallResponse = TemplateModel; + +/** Optional parameters. */ +export interface ContentTemplateGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type ContentTemplateGetResponse = TemplateModel; + +/** Optional parameters. */ +export interface ContentTemplateDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface IPGeodataGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type IPGeodataGetResponse = EnrichmentIpGeodata; + +/** Optional parameters. */ +export interface DomainWhoisGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type DomainWhoisGetResponse = EnrichmentDomainWhois; /** Optional parameters. */ export interface EntitiesGetTimelineListOptionalParams @@ -9180,7 +11126,7 @@ export type EntityRelationsGetRelationResponse = Relation; export interface EntityQueriesListOptionalParams extends coreClient.OperationOptions { /** The entity query kind we want to fetch */ - kind?: Enum13; + kind?: Enum20; } /** Contains response data for the list operation. */ @@ -9271,15 +11217,136 @@ export interface FileImportsDeleteOptionalParams resumeFrom?: string; } -/** Contains response data for the delete operation. */ -export type FileImportsDeleteResponse = FileImport; +/** Contains response data for the delete operation. */ +export type FileImportsDeleteResponse = FileImport; + +/** Optional parameters. */ +export interface FileImportsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type FileImportsListNextResponse = FileImportList; + +/** Optional parameters. */ +export interface HuntsListOptionalParams extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type HuntsListResponse = HuntList; + +/** Optional parameters. */ +export interface HuntsGetOptionalParams extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type HuntsGetResponse = Hunt; + +/** Optional parameters. */ +export interface HuntsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface HuntsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type HuntsCreateOrUpdateResponse = Hunt; + +/** Optional parameters. */ +export interface HuntsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type HuntsListNextResponse = HuntList; + +/** Optional parameters. */ +export interface HuntRelationsListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type HuntRelationsListResponse = HuntRelationList; + +/** Optional parameters. */ +export interface HuntRelationsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type HuntRelationsGetResponse = HuntRelation; + +/** Optional parameters. */ +export interface HuntRelationsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface HuntRelationsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type HuntRelationsCreateOrUpdateResponse = HuntRelation; + +/** Optional parameters. */ +export interface HuntRelationsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type HuntRelationsListNextResponse = HuntRelationList; + +/** Optional parameters. */ +export interface HuntCommentsListOptionalParams + extends coreClient.OperationOptions { + /** Filters the results, based on a Boolean condition. Optional. */ + filter?: string; + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type HuntCommentsListResponse = HuntCommentList; + +/** Optional parameters. */ +export interface HuntCommentsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type HuntCommentsGetResponse = HuntComment; + +/** Optional parameters. */ +export interface HuntCommentsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface HuntCommentsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type HuntCommentsCreateOrUpdateResponse = HuntComment; /** Optional parameters. */ -export interface FileImportsListNextOptionalParams +export interface HuntCommentsListNextOptionalParams extends coreClient.OperationOptions {} /** Contains response data for the listNext operation. */ -export type FileImportsListNextResponse = FileImportList; +export type HuntCommentsListNextResponse = HuntCommentList; /** Optional parameters. */ export interface IncidentCommentsListOptionalParams @@ -9363,6 +11430,38 @@ export interface IncidentRelationsListNextOptionalParams /** Contains response data for the listNext operation. */ export type IncidentRelationsListNextResponse = RelationList; +/** Optional parameters. */ +export interface IncidentTasksListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type IncidentTasksListResponse = IncidentTaskList; + +/** Optional parameters. */ +export interface IncidentTasksGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type IncidentTasksGetResponse = IncidentTask; + +/** Optional parameters. */ +export interface IncidentTasksCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type IncidentTasksCreateOrUpdateResponse = IncidentTask; + +/** Optional parameters. */ +export interface IncidentTasksDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface IncidentTasksListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type IncidentTasksListNextResponse = IncidentTaskList; + /** Optional parameters. */ export interface MetadataListOptionalParams extends coreClient.OperationOptions { @@ -9464,6 +11563,32 @@ export interface SentinelOnboardingStatesListOptionalParams /** Contains response data for the list operation. */ export type SentinelOnboardingStatesListResponse = SentinelOnboardingStatesList; +/** Optional parameters. */ +export interface GetRecommendationsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type GetRecommendationsListResponse = RecommendationList; + +/** Optional parameters. */ +export interface GetSingleRecommendationOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the singleRecommendation operation. */ +export type GetSingleRecommendationResponse = Recommendation; + +/** Optional parameters. */ +export interface UpdateRecommendationOptionalParams + extends coreClient.OperationOptions { + /** Delay to wait until next poll, in milliseconds. */ + updateIntervalInMs?: number; + /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */ + resumeFrom?: string; +} + +/** Contains response data for the recommendation operation. */ +export type UpdateRecommendationResponse = Recommendation; + /** Optional parameters. */ export interface SecurityMLAnalyticsSettingsListOptionalParams extends coreClient.OperationOptions {} @@ -9549,10 +11674,6 @@ export interface SourceControlsGetOptionalParams /** Contains response data for the get operation. */ export type SourceControlsGetResponse = SourceControl; -/** Optional parameters. */ -export interface SourceControlsDeleteOptionalParams - extends coreClient.OperationOptions {} - /** Optional parameters. */ export interface SourceControlsCreateOptionalParams extends coreClient.OperationOptions {} @@ -9560,6 +11681,13 @@ export interface SourceControlsCreateOptionalParams /** Contains response data for the create operation. */ export type SourceControlsCreateResponse = SourceControl; +/** Optional parameters. */ +export interface SourceControlsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the delete operation. */ +export type SourceControlsDeleteResponse = Warning; + /** Optional parameters. */ export interface SourceControlsListNextOptionalParams extends coreClient.OperationOptions {} @@ -9647,6 +11775,39 @@ export interface ThreatIntelligenceIndicatorMetricsListOptionalParams /** Contains response data for the list operation. */ export type ThreatIntelligenceIndicatorMetricsListResponse = ThreatIntelligenceMetricsList; +/** Optional parameters. */ +export interface TriggeredAnalyticsRuleRunGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type TriggeredAnalyticsRuleRunGetResponse = TriggeredAnalyticsRuleRun; + +/** Optional parameters. */ +export interface GetTriggeredAnalyticsRuleRunsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type GetTriggeredAnalyticsRuleRunsListResponse = TriggeredAnalyticsRuleRuns; + +/** Optional parameters. */ +export interface GetTriggeredAnalyticsRuleRunsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type GetTriggeredAnalyticsRuleRunsListNextResponse = TriggeredAnalyticsRuleRuns; + +/** Optional parameters. */ +export interface AlertRuleTriggerRuleRunOptionalParams + extends coreClient.OperationOptions { + /** Delay to wait until next poll, in milliseconds. */ + updateIntervalInMs?: number; + /** A serialized poller which can be used to resume an existing paused Long-Running-Operation. */ + resumeFrom?: string; +} + +/** Contains response data for the triggerRuleRun operation. */ +export type AlertRuleTriggerRuleRunResponse = AlertRuleTriggerRuleRunHeaders; + /** Optional parameters. */ export interface WatchlistsListOptionalParams extends coreClient.OperationOptions { @@ -9720,6 +11881,201 @@ export interface WatchlistItemsListNextOptionalParams /** Contains response data for the listNext operation. */ export type WatchlistItemsListNextResponse = WatchlistItemList; +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentsListOptionalParams + extends coreClient.OperationOptions { + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type WorkspaceManagerAssignmentsListResponse = WorkspaceManagerAssignmentList; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WorkspaceManagerAssignmentsGetResponse = WorkspaceManagerAssignment; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WorkspaceManagerAssignmentsCreateOrUpdateResponse = WorkspaceManagerAssignment; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type WorkspaceManagerAssignmentsListNextResponse = WorkspaceManagerAssignmentList; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentJobsListOptionalParams + extends coreClient.OperationOptions { + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type WorkspaceManagerAssignmentJobsListResponse = JobList; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentJobsCreateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the create operation. */ +export type WorkspaceManagerAssignmentJobsCreateResponse = Job; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentJobsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WorkspaceManagerAssignmentJobsGetResponse = Job; + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentJobsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WorkspaceManagerAssignmentJobsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type WorkspaceManagerAssignmentJobsListNextResponse = JobList; + +/** Optional parameters. */ +export interface WorkspaceManagerConfigurationsListOptionalParams + extends coreClient.OperationOptions { + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type WorkspaceManagerConfigurationsListResponse = WorkspaceManagerConfigurationList; + +/** Optional parameters. */ +export interface WorkspaceManagerConfigurationsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WorkspaceManagerConfigurationsGetResponse = WorkspaceManagerConfiguration; + +/** Optional parameters. */ +export interface WorkspaceManagerConfigurationsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WorkspaceManagerConfigurationsCreateOrUpdateResponse = WorkspaceManagerConfiguration; + +/** Optional parameters. */ +export interface WorkspaceManagerConfigurationsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type WorkspaceManagerConfigurationsListNextResponse = WorkspaceManagerConfigurationList; + +/** Optional parameters. */ +export interface WorkspaceManagerGroupsListOptionalParams + extends coreClient.OperationOptions { + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type WorkspaceManagerGroupsListResponse = WorkspaceManagerGroupList; + +/** Optional parameters. */ +export interface WorkspaceManagerGroupsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WorkspaceManagerGroupsGetResponse = WorkspaceManagerGroup; + +/** Optional parameters. */ +export interface WorkspaceManagerGroupsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WorkspaceManagerGroupsCreateOrUpdateResponse = WorkspaceManagerGroup; + +/** Optional parameters. */ +export interface WorkspaceManagerGroupsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WorkspaceManagerGroupsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type WorkspaceManagerGroupsListNextResponse = WorkspaceManagerGroupList; + +/** Optional parameters. */ +export interface WorkspaceManagerMembersListOptionalParams + extends coreClient.OperationOptions { + /** Sorts the results. Optional. */ + orderby?: string; + /** Returns only the first n results. Optional. */ + top?: number; + /** Skiptoken is only used if a previous operation returned a partial result. If a previous response contains a nextLink element, the value of the nextLink element will include a skiptoken parameter that specifies a starting point to use for subsequent calls. Optional. */ + skipToken?: string; +} + +/** Contains response data for the list operation. */ +export type WorkspaceManagerMembersListResponse = WorkspaceManagerMembersList; + +/** Optional parameters. */ +export interface WorkspaceManagerMembersGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type WorkspaceManagerMembersGetResponse = WorkspaceManagerMember; + +/** Optional parameters. */ +export interface WorkspaceManagerMembersCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type WorkspaceManagerMembersCreateOrUpdateResponse = WorkspaceManagerMember; + +/** Optional parameters. */ +export interface WorkspaceManagerMembersDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface WorkspaceManagerMembersListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type WorkspaceManagerMembersListNextResponse = WorkspaceManagerMembersList; + /** Optional parameters. */ export interface DataConnectorsListOptionalParams extends coreClient.OperationOptions {} @@ -9767,6 +12123,38 @@ export interface DataConnectorsCheckRequirementsPostOptionalParams /** Contains response data for the post operation. */ export type DataConnectorsCheckRequirementsPostResponse = DataConnectorRequirementsState; +/** Optional parameters. */ +export interface DataConnectorDefinitionsListOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the list operation. */ +export type DataConnectorDefinitionsListResponse = DataConnectorDefinitionArmCollectionWrapper; + +/** Optional parameters. */ +export interface DataConnectorDefinitionsGetOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the get operation. */ +export type DataConnectorDefinitionsGetResponse = DataConnectorDefinitionUnion; + +/** Optional parameters. */ +export interface DataConnectorDefinitionsCreateOrUpdateOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the createOrUpdate operation. */ +export type DataConnectorDefinitionsCreateOrUpdateResponse = DataConnectorDefinitionUnion; + +/** Optional parameters. */ +export interface DataConnectorDefinitionsDeleteOptionalParams + extends coreClient.OperationOptions {} + +/** Optional parameters. */ +export interface DataConnectorDefinitionsListNextOptionalParams + extends coreClient.OperationOptions {} + +/** Contains response data for the listNext operation. */ +export type DataConnectorDefinitionsListNextResponse = DataConnectorDefinitionArmCollectionWrapper; + /** Optional parameters. */ export interface OperationsListOptionalParams extends coreClient.OperationOptions {} diff --git a/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts b/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts index 6f5b1105eada..4168dd8c3aa9 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/mappers.ts @@ -392,6 +392,34 @@ export const AutomationRulesList: coreClient.CompositeMapper = { } }; +export const EntityManualTriggerRequestBody: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityManualTriggerRequestBody", + modelProperties: { + incidentArmId: { + serializedName: "incidentArmId", + type: { + name: "String" + } + }, + tenantId: { + serializedName: "tenantId", + type: { + name: "Uuid" + } + }, + logicAppsResourceId: { + serializedName: "logicAppsResourceId", + required: true, + type: { + name: "String" + } + } + } + } +}; + export const ManualTriggerRequestBody: coreClient.CompositeMapper = { type: { name: "Composite", @@ -414,6 +442,131 @@ export const ManualTriggerRequestBody: coreClient.CompositeMapper = { } }; +export const BillingStatisticList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "BillingStatisticList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "BillingStatistic" + } + } + } + } + } + } +}; + +export const ErrorResponse: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ErrorResponse", + modelProperties: { + error: { + serializedName: "error", + type: { + name: "Composite", + className: "ErrorDetail" + } + } + } + } +}; + +export const ErrorDetail: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ErrorDetail", + modelProperties: { + code: { + serializedName: "code", + readOnly: true, + type: { + name: "String" + } + }, + message: { + serializedName: "message", + readOnly: true, + type: { + name: "String" + } + }, + target: { + serializedName: "target", + readOnly: true, + type: { + name: "String" + } + }, + details: { + serializedName: "details", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ErrorDetail" + } + } + } + }, + additionalInfo: { + serializedName: "additionalInfo", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ErrorAdditionalInfo" + } + } + } + } + } + } +}; + +export const ErrorAdditionalInfo: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ErrorAdditionalInfo", + modelProperties: { + type: { + serializedName: "type", + readOnly: true, + type: { + name: "String" + } + }, + info: { + serializedName: "info", + readOnly: true, + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + } + } + } +}; + export const BookmarkList: coreClient.CompositeMapper = { type: { name: "Composite", @@ -744,184 +897,166 @@ export const ConnectedEntity: coreClient.CompositeMapper = { } }; -export const EnrichmentIpGeodata: coreClient.CompositeMapper = { +export const PackageList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EnrichmentIpGeodata", + className: "PackageList", modelProperties: { - asn: { - serializedName: "asn", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - carrier: { - serializedName: "carrier", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "PackageModel" + } + } } - }, - city: { - serializedName: "city", + } + } + } +}; + +export const PackageBaseProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "PackageBaseProperties", + modelProperties: { + contentId: { + serializedName: "contentId", type: { name: "String" } }, - cityCf: { - serializedName: "cityCf", + contentProductId: { + serializedName: "contentProductId", type: { - name: "Number" + name: "String" } }, - continent: { - serializedName: "continent", + contentKind: { + serializedName: "contentKind", type: { name: "String" } }, - country: { - serializedName: "country", + contentSchemaVersion: { + serializedName: "contentSchemaVersion", type: { name: "String" } }, - countryCf: { - serializedName: "countryCf", + isNew: { + serializedName: "isNew", type: { - name: "Number" + name: "String" } }, - ipAddr: { - serializedName: "ipAddr", + isPreview: { + serializedName: "isPreview", type: { name: "String" } }, - ipRoutingType: { - serializedName: "ipRoutingType", + isFeatured: { + serializedName: "isFeatured", type: { name: "String" } }, - latitude: { - serializedName: "latitude", + version: { + serializedName: "version", type: { name: "String" } }, - longitude: { - serializedName: "longitude", + displayName: { + serializedName: "displayName", type: { name: "String" } }, - organization: { - serializedName: "organization", + description: { + serializedName: "description", type: { name: "String" } }, - organizationType: { - serializedName: "organizationType", + publisherDisplayName: { + serializedName: "publisherDisplayName", type: { name: "String" } }, - region: { - serializedName: "region", + source: { + serializedName: "source", type: { - name: "String" + name: "Composite", + className: "MetadataSource" } }, - state: { - serializedName: "state", + author: { + serializedName: "author", type: { - name: "String" + name: "Composite", + className: "MetadataAuthor" } }, - stateCf: { - serializedName: "stateCf", + support: { + serializedName: "support", type: { - name: "Number" + name: "Composite", + className: "MetadataSupport" } }, - stateCode: { - serializedName: "stateCode", + dependencies: { + serializedName: "dependencies", type: { - name: "String" + name: "Composite", + className: "MetadataDependencies" } - } - } - } -}; - -export const EnrichmentDomainWhois: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EnrichmentDomainWhois", - modelProperties: { - domain: { - serializedName: "domain", + }, + providers: { + serializedName: "providers", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - server: { - serializedName: "server", + firstPublishDate: { + serializedName: "firstPublishDate", type: { - name: "String" + name: "Date" } }, - created: { - serializedName: "created", + lastPublishDate: { + serializedName: "lastPublishDate", type: { - name: "DateTime" + name: "Date" } }, - updated: { - serializedName: "updated", + categories: { + serializedName: "categories", type: { - name: "DateTime" + name: "Composite", + className: "MetadataCategories" } }, - expires: { - serializedName: "expires", - type: { - name: "DateTime" - } - }, - parsedWhois: { - serializedName: "parsedWhois", - type: { - name: "Composite", - className: "EnrichmentDomainWhoisDetails" - } - } - } - } -}; - -export const EnrichmentDomainWhoisDetails: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EnrichmentDomainWhoisDetails", - modelProperties: { - registrar: { - serializedName: "registrar", - type: { - name: "Composite", - className: "EnrichmentDomainWhoisRegistrarDetails" - } - }, - contacts: { - serializedName: "contacts", - type: { - name: "Composite", - className: "EnrichmentDomainWhoisContacts" - } - }, - nameServers: { - serializedName: "nameServers", + threatAnalysisTactics: { + serializedName: "threatAnalysisTactics", type: { name: "Sequence", element: { @@ -931,8 +1066,8 @@ export const EnrichmentDomainWhoisDetails: coreClient.CompositeMapper = { } } }, - statuses: { - serializedName: "statuses", + threatAnalysisTechniques: { + serializedName: "threatAnalysisTechniques", type: { name: "Sequence", element: { @@ -941,48 +1076,64 @@ export const EnrichmentDomainWhoisDetails: coreClient.CompositeMapper = { } } } + }, + icon: { + serializedName: "icon", + type: { + name: "String" + } } } } }; -export const EnrichmentDomainWhoisRegistrarDetails: coreClient.CompositeMapper = { +export const MetadataSource: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EnrichmentDomainWhoisRegistrarDetails", + className: "MetadataSource", modelProperties: { - name: { - serializedName: "name", + kind: { + serializedName: "kind", + required: true, type: { name: "String" } }, - abuseContactEmail: { - serializedName: "abuseContactEmail", + name: { + serializedName: "name", type: { name: "String" } }, - abuseContactPhone: { - serializedName: "abuseContactPhone", + sourceId: { + serializedName: "sourceId", type: { name: "String" } - }, - ianaId: { - serializedName: "ianaId", + } + } + } +}; + +export const MetadataAuthor: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MetadataAuthor", + modelProperties: { + name: { + serializedName: "name", type: { name: "String" } }, - url: { - serializedName: "url", + email: { + serializedName: "email", type: { name: "String" } }, - whoisServer: { - serializedName: "whoisServer", + link: { + serializedName: "link", type: { name: "String" } @@ -991,121 +1142,126 @@ export const EnrichmentDomainWhoisRegistrarDetails: coreClient.CompositeMapper = } }; -export const EnrichmentDomainWhoisContacts: coreClient.CompositeMapper = { +export const MetadataSupport: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EnrichmentDomainWhoisContacts", + className: "MetadataSupport", modelProperties: { - admin: { - serializedName: "admin", + tier: { + serializedName: "tier", + required: true, type: { - name: "Composite", - className: "EnrichmentDomainWhoisContact" + name: "String" } }, - billing: { - serializedName: "billing", + name: { + serializedName: "name", type: { - name: "Composite", - className: "EnrichmentDomainWhoisContact" + name: "String" } }, - registrant: { - serializedName: "registrant", + email: { + serializedName: "email", type: { - name: "Composite", - className: "EnrichmentDomainWhoisContact" + name: "String" } }, - tech: { - serializedName: "tech", + link: { + serializedName: "link", type: { - name: "Composite", - className: "EnrichmentDomainWhoisContact" + name: "String" } } } } }; -export const EnrichmentDomainWhoisContact: coreClient.CompositeMapper = { +export const MetadataDependencies: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EnrichmentDomainWhoisContact", + className: "MetadataDependencies", modelProperties: { - name: { - serializedName: "name", - type: { - name: "String" - } - }, - org: { - serializedName: "org", + contentId: { + serializedName: "contentId", type: { name: "String" } }, - street: { - serializedName: "street", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - city: { - serializedName: "city", + kind: { + serializedName: "kind", type: { name: "String" } }, - state: { - serializedName: "state", + version: { + serializedName: "version", type: { name: "String" } }, - postal: { - serializedName: "postal", + name: { + serializedName: "name", type: { name: "String" } }, - country: { - serializedName: "country", + operator: { + serializedName: "operator", type: { name: "String" } }, - phone: { - serializedName: "phone", + criteria: { + serializedName: "criteria", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "MetadataDependencies" + } + } } - }, - fax: { - serializedName: "fax", + } + } + } +}; + +export const MetadataCategories: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MetadataCategories", + modelProperties: { + domains: { + serializedName: "domains", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - email: { - serializedName: "email", + verticals: { + serializedName: "verticals", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const EntityList: coreClient.CompositeMapper = { +export const ProductPackageList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityList", + className: "ProductPackageList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -1122,7 +1278,7 @@ export const EntityList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "Entity" + className: "ProductPackageModel" } } } @@ -1131,120 +1287,141 @@ export const EntityList: coreClient.CompositeMapper = { } }; -export const EntityExpandParameters: coreClient.CompositeMapper = { +export const ProductPackageAdditionalProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityExpandParameters", + className: "ProductPackageAdditionalProperties", modelProperties: { - endTime: { - serializedName: "endTime", + installedVersion: { + serializedName: "installedVersion", type: { - name: "DateTime" + name: "String" } }, - expansionId: { - serializedName: "expansionId", + resourceId: { + serializedName: "resourceId", type: { - name: "Uuid" + name: "String" } }, - startTime: { - serializedName: "startTime", + packagedContent: { + serializedName: "packagedContent", type: { - name: "DateTime" + name: "Dictionary", + value: { type: { name: "any" } } } } } } }; -export const EntityExpandResponse: coreClient.CompositeMapper = { +export const ProductTemplateList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityExpandResponse", + className: "ProductTemplateList", modelProperties: { - metaData: { - serializedName: "metaData", + value: { + serializedName: "value", + required: true, type: { - name: "Composite", - className: "ExpansionResultsMetadata" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ProductTemplateModel" + } + } } }, - value: { - serializedName: "value", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { - name: "Composite", - className: "EntityExpandResponseValue" + name: "String" } } } } }; -export const EntityExpandResponseValue: coreClient.CompositeMapper = { +export const TemplateBaseProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityExpandResponseValue", + className: "TemplateBaseProperties", modelProperties: { - entities: { - serializedName: "entities", + contentId: { + serializedName: "contentId", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "Entity" - } - } + name: "String" } }, - edges: { - serializedName: "edges", + contentProductId: { + serializedName: "contentProductId", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityEdges" - } - } + name: "String" } - } - } - } -}; - -export const EntityEdges: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityEdges", - modelProperties: { - targetEntityId: { - serializedName: "targetEntityId", + }, + packageVersion: { + serializedName: "packageVersion", type: { name: "String" } }, - additionalData: { - serializedName: "additionalData", + version: { + serializedName: "version", type: { - name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + name: "String" } - } - } - } -}; - -export const EntityTimelineParameters: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityTimelineParameters", - modelProperties: { - kinds: { - serializedName: "kinds", + }, + displayName: { + serializedName: "displayName", + type: { + name: "String" + } + }, + contentKind: { + serializedName: "contentKind", + type: { + name: "String" + } + }, + source: { + serializedName: "source", + type: { + name: "Composite", + className: "MetadataSource" + } + }, + author: { + serializedName: "author", + type: { + name: "Composite", + className: "MetadataAuthor" + } + }, + support: { + serializedName: "support", + type: { + name: "Composite", + className: "MetadataSupport" + } + }, + dependencies: { + serializedName: "dependencies", + type: { + name: "Composite", + className: "MetadataDependencies" + } + }, + categories: { + serializedName: "categories", + type: { + name: "Composite", + className: "MetadataCategories" + } + }, + providers: { + serializedName: "providers", type: { name: "Sequence", element: { @@ -1254,143 +1431,94 @@ export const EntityTimelineParameters: coreClient.CompositeMapper = { } } }, - startTime: { - serializedName: "startTime", - required: true, + firstPublishDate: { + serializedName: "firstPublishDate", type: { - name: "DateTime" + name: "Date" } }, - endTime: { - serializedName: "endTime", - required: true, + lastPublishDate: { + serializedName: "lastPublishDate", type: { - name: "DateTime" + name: "Date" } }, - numberOfBucket: { - serializedName: "numberOfBucket", + customVersion: { + serializedName: "customVersion", type: { - name: "Number" + name: "String" } - } - } - } -}; - -export const EntityTimelineResponse: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityTimelineResponse", - modelProperties: { - metaData: { - serializedName: "metaData", + }, + contentSchemaVersion: { + serializedName: "contentSchemaVersion", type: { - name: "Composite", - className: "TimelineResultsMetadata" + name: "String" } }, - value: { - serializedName: "value", + icon: { + serializedName: "icon", + type: { + name: "String" + } + }, + threatAnalysisTactics: { + serializedName: "threatAnalysisTactics", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "EntityTimelineItem" + name: "String" } } } - } - } - } -}; - -export const TimelineResultsMetadata: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TimelineResultsMetadata", - modelProperties: { - totalCount: { - serializedName: "totalCount", - required: true, - type: { - name: "Number" - } }, - aggregations: { - serializedName: "aggregations", - required: true, + threatAnalysisTechniques: { + serializedName: "threatAnalysisTechniques", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "TimelineAggregation" + name: "String" } } } }, - errors: { - serializedName: "errors", + previewImages: { + serializedName: "previewImages", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "TimelineError" + name: "String" } } } - } - } - } -}; - -export const TimelineAggregation: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TimelineAggregation", - modelProperties: { - count: { - serializedName: "count", - required: true, - type: { - name: "Number" - } }, - kind: { - serializedName: "kind", - required: true, + previewImagesDark: { + serializedName: "previewImagesDark", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } - } - } - } -}; - -export const TimelineError: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TimelineError", - modelProperties: { - kind: { - serializedName: "kind", - required: true, + }, + packageId: { + serializedName: "packageId", type: { name: "String" } }, - queryId: { - serializedName: "queryId", + packageKind: { + serializedName: "packageKind", type: { name: "String" } }, - errorMessage: { - serializedName: "errorMessage", - required: true, + packageName: { + serializedName: "packageName", type: { name: "String" } @@ -1399,80 +1527,170 @@ export const TimelineError: coreClient.CompositeMapper = { } }; -export const EntityTimelineItem: coreClient.CompositeMapper = { +export const ProductTemplateAdditionalProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityTimelineItem", - uberParent: "EntityTimelineItem", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "ProductTemplateAdditionalProperties", modelProperties: { - kind: { - serializedName: "kind", - required: true, + packagedContent: { + serializedName: "packagedContent", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } } } } } }; -export const GetQueriesResponse: coreClient.CompositeMapper = { +export const TemplateList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GetQueriesResponse", + className: "TemplateList", modelProperties: { value: { serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "EntityQueryItem" + className: "TemplateModel" } } } + }, + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } } } } }; -export const EntityQueryItem: coreClient.CompositeMapper = { +export const TemplateAdditionalProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityQueryItem", - uberParent: "EntityQueryItem", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "TemplateAdditionalProperties", modelProperties: { - id: { - serializedName: "id", - readOnly: true, - type: { - name: "String" - } - }, - name: { - serializedName: "name", + mainTemplate: { + serializedName: "mainTemplate", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } + } + } + } + } +}; + +export const EnrichmentIpGeodata: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EnrichmentIpGeodata", + modelProperties: { + asn: { + serializedName: "asn", + type: { + name: "String" } }, - type: { - serializedName: "type", + carrier: { + serializedName: "carrier", type: { name: "String" } }, - kind: { - serializedName: "kind", - required: true, + city: { + serializedName: "city", + type: { + name: "String" + } + }, + cityCf: { + serializedName: "cityCf", + type: { + name: "Number" + } + }, + continent: { + serializedName: "continent", + type: { + name: "String" + } + }, + country: { + serializedName: "country", + type: { + name: "String" + } + }, + countryCf: { + serializedName: "countryCf", + type: { + name: "Number" + } + }, + ipAddr: { + serializedName: "ipAddr", + type: { + name: "String" + } + }, + ipRoutingType: { + serializedName: "ipRoutingType", + type: { + name: "String" + } + }, + latitude: { + serializedName: "latitude", + type: { + name: "String" + } + }, + longitude: { + serializedName: "longitude", + type: { + name: "String" + } + }, + organization: { + serializedName: "organization", + type: { + name: "String" + } + }, + organizationType: { + serializedName: "organizationType", + type: { + name: "String" + } + }, + region: { + serializedName: "region", + type: { + name: "String" + } + }, + state: { + serializedName: "state", + type: { + name: "String" + } + }, + stateCf: { + serializedName: "stateCf", + type: { + name: "Number" + } + }, + stateCode: { + serializedName: "stateCode", type: { name: "String" } @@ -1481,94 +1699,89 @@ export const EntityQueryItem: coreClient.CompositeMapper = { } }; -export const EntityGetInsightsParameters: coreClient.CompositeMapper = { +export const EnrichmentDomainWhois: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityGetInsightsParameters", + className: "EnrichmentDomainWhois", modelProperties: { - startTime: { - serializedName: "startTime", - required: true, + domain: { + serializedName: "domain", + type: { + name: "String" + } + }, + server: { + serializedName: "server", + type: { + name: "String" + } + }, + created: { + serializedName: "created", type: { name: "DateTime" } }, - endTime: { - serializedName: "endTime", - required: true, + updated: { + serializedName: "updated", type: { name: "DateTime" } }, - addDefaultExtendedTimeRange: { - serializedName: "addDefaultExtendedTimeRange", + expires: { + serializedName: "expires", type: { - name: "Boolean" + name: "DateTime" } }, - insightQueryIds: { - serializedName: "insightQueryIds", + parsedWhois: { + serializedName: "parsedWhois", type: { - name: "Sequence", - element: { - type: { - name: "Uuid" - } - } + name: "Composite", + className: "EnrichmentDomainWhoisDetails" } } } } }; -export const EntityGetInsightsResponse: coreClient.CompositeMapper = { +export const EnrichmentDomainWhoisDetails: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityGetInsightsResponse", + className: "EnrichmentDomainWhoisDetails", modelProperties: { - metaData: { - serializedName: "metaData", + registrar: { + serializedName: "registrar", type: { name: "Composite", - className: "GetInsightsResultsMetadata" + className: "EnrichmentDomainWhoisRegistrarDetails" } }, - value: { - serializedName: "value", + contacts: { + serializedName: "contacts", + type: { + name: "Composite", + className: "EnrichmentDomainWhoisContacts" + } + }, + nameServers: { + serializedName: "nameServers", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "EntityInsightItem" + name: "String" } } } - } - } - } -}; - -export const GetInsightsResultsMetadata: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "GetInsightsResultsMetadata", - modelProperties: { - totalCount: { - serializedName: "totalCount", - required: true, - type: { - name: "Number" - } }, - errors: { - serializedName: "errors", + statuses: { + serializedName: "statuses", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "GetInsightsErrorKind" + name: "String" } } } @@ -1577,27 +1790,43 @@ export const GetInsightsResultsMetadata: coreClient.CompositeMapper = { } }; -export const GetInsightsErrorKind: coreClient.CompositeMapper = { +export const EnrichmentDomainWhoisRegistrarDetails: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GetInsightsErrorKind", + className: "EnrichmentDomainWhoisRegistrarDetails", modelProperties: { - kind: { - serializedName: "kind", - required: true, + name: { + serializedName: "name", type: { name: "String" } }, - queryId: { - serializedName: "queryId", + abuseContactEmail: { + serializedName: "abuseContactEmail", type: { name: "String" } }, - errorMessage: { - serializedName: "errorMessage", - required: true, + abuseContactPhone: { + serializedName: "abuseContactPhone", + type: { + name: "String" + } + }, + ianaId: { + serializedName: "ianaId", + type: { + name: "String" + } + }, + url: { + serializedName: "url", + type: { + name: "String" + } + }, + whoisServer: { + serializedName: "whoisServer", type: { name: "String" } @@ -1606,188 +1835,121 @@ export const GetInsightsErrorKind: coreClient.CompositeMapper = { } }; -export const EntityInsightItem: coreClient.CompositeMapper = { +export const EnrichmentDomainWhoisContacts: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityInsightItem", + className: "EnrichmentDomainWhoisContacts", modelProperties: { - queryId: { - serializedName: "queryId", + admin: { + serializedName: "admin", type: { - name: "String" + name: "Composite", + className: "EnrichmentDomainWhoisContact" } }, - queryTimeInterval: { - serializedName: "queryTimeInterval", + billing: { + serializedName: "billing", type: { name: "Composite", - className: "EntityInsightItemQueryTimeInterval" + className: "EnrichmentDomainWhoisContact" } }, - tableQueryResults: { - serializedName: "tableQueryResults", + registrant: { + serializedName: "registrant", type: { name: "Composite", - className: "InsightsTableResult" + className: "EnrichmentDomainWhoisContact" } }, - chartQueryResults: { - serializedName: "chartQueryResults", + tech: { + serializedName: "tech", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "InsightsTableResult" - } - } + name: "Composite", + className: "EnrichmentDomainWhoisContact" } } } } }; -export const EntityInsightItemQueryTimeInterval: coreClient.CompositeMapper = { +export const EnrichmentDomainWhoisContact: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityInsightItemQueryTimeInterval", + className: "EnrichmentDomainWhoisContact", modelProperties: { - startTime: { - serializedName: "startTime", + name: { + serializedName: "name", type: { - name: "DateTime" + name: "String" } }, - endTime: { - serializedName: "endTime", + org: { + serializedName: "org", type: { - name: "DateTime" + name: "String" } - } - } - } -}; - -export const InsightsTableResult: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "InsightsTableResult", - modelProperties: { - columns: { - serializedName: "columns", + }, + street: { + serializedName: "street", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "InsightsTableResultColumnsItem" + name: "String" } } } }, - rows: { - serializedName: "rows", + city: { + serializedName: "city", type: { - name: "Sequence", - element: { - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - } + name: "String" } - } - } - } -}; - -export const InsightsTableResultColumnsItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "InsightsTableResultColumnsItem", - modelProperties: { - type: { - serializedName: "type", + }, + state: { + serializedName: "state", type: { name: "String" } }, - name: { - serializedName: "name", + postal: { + serializedName: "postal", type: { name: "String" } - } - } - } -}; - -export const EntityQueryList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityQueryList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + }, + country: { + serializedName: "country", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + phone: { + serializedName: "phone", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQuery" - } - } + name: "String" } - } - } - } -}; - -export const EntityQueryTemplateList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "EntityQueryTemplateList", - modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + }, + fax: { + serializedName: "fax", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + email: { + serializedName: "email", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQueryTemplate" - } - } + name: "String" } } } } }; -export const FileImportList: coreClient.CompositeMapper = { +export const EntityList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FileImportList", + className: "EntityList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -1804,7 +1966,7 @@ export const FileImportList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "FileImport" + className: "Entity" } } } @@ -1813,66 +1975,81 @@ export const FileImportList: coreClient.CompositeMapper = { } }; -export const FileMetadata: coreClient.CompositeMapper = { +export const EntityExpandParameters: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FileMetadata", + className: "EntityExpandParameters", modelProperties: { - fileFormat: { - serializedName: "fileFormat", + endTime: { + serializedName: "endTime", type: { - name: "String" + name: "DateTime" } }, - fileName: { - serializedName: "fileName", + expansionId: { + serializedName: "expansionId", type: { - name: "String" + name: "Uuid" } }, - fileSize: { - serializedName: "fileSize", + startTime: { + serializedName: "startTime", type: { - name: "Number" + name: "DateTime" } - }, - fileContentUri: { - serializedName: "fileContentUri", - readOnly: true, + } + } + } +}; + +export const EntityExpandResponse: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityExpandResponse", + modelProperties: { + metaData: { + serializedName: "metaData", type: { - name: "String" + name: "Composite", + className: "ExpansionResultsMetadata" } }, - deleteStatus: { - serializedName: "deleteStatus", - readOnly: true, + value: { + serializedName: "value", type: { - name: "String" + name: "Composite", + className: "EntityExpandResponseValue" } } } } }; -export const ValidationError: coreClient.CompositeMapper = { +export const EntityExpandResponseValue: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ValidationError", + className: "EntityExpandResponseValue", modelProperties: { - recordIndex: { - serializedName: "recordIndex", + entities: { + serializedName: "entities", type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "Entity" + } + } } }, - errorMessages: { - serializedName: "errorMessages", - readOnly: true, + edges: { + serializedName: "edges", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "EntityEdges" } } } @@ -1881,100 +2058,129 @@ export const ValidationError: coreClient.CompositeMapper = { } }; -export const IncidentList: coreClient.CompositeMapper = { +export const EntityEdges: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentList", + className: "EntityEdges", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + targetEntityId: { + serializedName: "targetEntityId", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + additionalData: { + serializedName: "additionalData", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "Incident" - } - } + name: "Dictionary", + value: { type: { name: "any" } } } } } } }; -export const IncidentAdditionalData: coreClient.CompositeMapper = { +export const EntityTimelineParameters: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentAdditionalData", + className: "EntityTimelineParameters", modelProperties: { - alertsCount: { - serializedName: "alertsCount", - readOnly: true, + kinds: { + serializedName: "kinds", type: { - name: "Number" - } - }, - bookmarksCount: { - serializedName: "bookmarksCount", - readOnly: true, + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + startTime: { + serializedName: "startTime", + required: true, type: { - name: "Number" + name: "DateTime" } }, - commentsCount: { - serializedName: "commentsCount", - readOnly: true, + endTime: { + serializedName: "endTime", + required: true, + type: { + name: "DateTime" + } + }, + numberOfBucket: { + serializedName: "numberOfBucket", type: { name: "Number" } + } + } + } +}; + +export const EntityTimelineResponse: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityTimelineResponse", + modelProperties: { + metaData: { + serializedName: "metaData", + type: { + name: "Composite", + className: "TimelineResultsMetadata" + } }, - alertProductNames: { - serializedName: "alertProductNames", - readOnly: true, + value: { + serializedName: "value", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "EntityTimelineItem" } } } - }, - providerIncidentUrl: { - serializedName: "providerIncidentUrl", - readOnly: true, + } + } + } +}; + +export const TimelineResultsMetadata: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TimelineResultsMetadata", + modelProperties: { + totalCount: { + serializedName: "totalCount", + required: true, type: { - name: "String" + name: "Number" } }, - tactics: { - serializedName: "tactics", - readOnly: true, + aggregations: { + serializedName: "aggregations", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "TimelineAggregation" } } } }, - techniques: { - serializedName: "techniques", - readOnly: true, + errors: { + serializedName: "errors", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "TimelineError" } } } @@ -1983,21 +2189,21 @@ export const IncidentAdditionalData: coreClient.CompositeMapper = { } }; -export const IncidentLabel: coreClient.CompositeMapper = { +export const TimelineAggregation: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentLabel", + className: "TimelineAggregation", modelProperties: { - labelName: { - serializedName: "labelName", + count: { + serializedName: "count", required: true, type: { - name: "String" + name: "Number" } }, - labelType: { - serializedName: "labelType", - readOnly: true, + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -2006,37 +2212,48 @@ export const IncidentLabel: coreClient.CompositeMapper = { } }; -export const IncidentOwnerInfo: coreClient.CompositeMapper = { +export const TimelineError: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentOwnerInfo", + className: "TimelineError", modelProperties: { - email: { - serializedName: "email", + kind: { + serializedName: "kind", + required: true, type: { name: "String" } }, - assignedTo: { - serializedName: "assignedTo", + queryId: { + serializedName: "queryId", type: { name: "String" } }, - objectId: { - serializedName: "objectId", - type: { - name: "Uuid" - } - }, - userPrincipalName: { - serializedName: "userPrincipalName", + errorMessage: { + serializedName: "errorMessage", + required: true, type: { name: "String" } - }, - ownerType: { - serializedName: "ownerType", + } + } + } +}; + +export const EntityTimelineItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityTimelineItem", + uberParent: "EntityTimelineItem", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -2045,42 +2262,59 @@ export const IncidentOwnerInfo: coreClient.CompositeMapper = { } }; -export const TeamInformation: coreClient.CompositeMapper = { +export const GetQueriesResponse: coreClient.CompositeMapper = { type: { name: "Composite", - className: "TeamInformation", + className: "GetQueriesResponse", modelProperties: { - teamId: { - serializedName: "teamId", - readOnly: true, + value: { + serializedName: "value", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQueryItem" + } + } } - }, - primaryChannelUrl: { - serializedName: "primaryChannelUrl", + } + } + } +}; + +export const EntityQueryItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityQueryItem", + uberParent: "EntityQueryItem", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + id: { + serializedName: "id", readOnly: true, type: { name: "String" } }, - teamCreationTimeUtc: { - serializedName: "teamCreationTimeUtc", - readOnly: true, + name: { + serializedName: "name", type: { - name: "DateTime" + name: "String" } }, - name: { - serializedName: "name", - readOnly: true, + type: { + serializedName: "type", type: { name: "String" } }, - description: { - serializedName: "description", - readOnly: true, + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -2089,37 +2323,33 @@ export const TeamInformation: coreClient.CompositeMapper = { } }; -export const TeamProperties: coreClient.CompositeMapper = { +export const EntityGetInsightsParameters: coreClient.CompositeMapper = { type: { name: "Composite", - className: "TeamProperties", + className: "EntityGetInsightsParameters", modelProperties: { - teamName: { - serializedName: "teamName", + startTime: { + serializedName: "startTime", required: true, type: { - name: "String" + name: "DateTime" } }, - teamDescription: { - serializedName: "teamDescription", + endTime: { + serializedName: "endTime", + required: true, type: { - name: "String" + name: "DateTime" } }, - memberIds: { - serializedName: "memberIds", + addDefaultExtendedTimeRange: { + serializedName: "addDefaultExtendedTimeRange", type: { - name: "Sequence", - element: { - type: { - name: "Uuid" - } - } + name: "Boolean" } }, - groupIds: { - serializedName: "groupIds", + insightQueryIds: { + serializedName: "insightQueryIds", type: { name: "Sequence", element: { @@ -2133,20 +2363,26 @@ export const TeamProperties: coreClient.CompositeMapper = { } }; -export const IncidentAlertList: coreClient.CompositeMapper = { +export const EntityGetInsightsResponse: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentAlertList", + className: "EntityGetInsightsResponse", modelProperties: { + metaData: { + serializedName: "metaData", + type: { + name: "Composite", + className: "GetInsightsResultsMetadata" + } + }, value: { serializedName: "value", - required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "SecurityAlert" + className: "EntityInsightItem" } } } @@ -2155,47 +2391,55 @@ export const IncidentAlertList: coreClient.CompositeMapper = { } }; -export const SecurityAlertPropertiesConfidenceReasonsItem: coreClient.CompositeMapper = { +export const GetInsightsResultsMetadata: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SecurityAlertPropertiesConfidenceReasonsItem", + className: "GetInsightsResultsMetadata", modelProperties: { - reason: { - serializedName: "reason", - readOnly: true, + totalCount: { + serializedName: "totalCount", + required: true, type: { - name: "String" + name: "Number" } }, - reasonType: { - serializedName: "reasonType", - readOnly: true, + errors: { + serializedName: "errors", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "GetInsightsErrorKind" + } + } } } } } }; -export const EntityCommonProperties: coreClient.CompositeMapper = { +export const GetInsightsErrorKind: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityCommonProperties", + className: "GetInsightsErrorKind", modelProperties: { - additionalData: { - serializedName: "additionalData", - readOnly: true, + kind: { + serializedName: "kind", + required: true, type: { - name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + name: "String" } }, - friendlyName: { - serializedName: "friendlyName", - readOnly: true, + queryId: { + serializedName: "queryId", + type: { + name: "String" + } + }, + errorMessage: { + serializedName: "errorMessage", + required: true, type: { name: "String" } @@ -2204,20 +2448,39 @@ export const EntityCommonProperties: coreClient.CompositeMapper = { } }; -export const IncidentBookmarkList: coreClient.CompositeMapper = { +export const EntityInsightItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentBookmarkList", + className: "EntityInsightItem", modelProperties: { - value: { - serializedName: "value", - required: true, + queryId: { + serializedName: "queryId", + type: { + name: "String" + } + }, + queryTimeInterval: { + serializedName: "queryTimeInterval", + type: { + name: "Composite", + className: "EntityInsightItemQueryTimeInterval" + } + }, + tableQueryResults: { + serializedName: "tableQueryResults", + type: { + name: "Composite", + className: "InsightsTableResult" + } + }, + chartQueryResults: { + serializedName: "chartQueryResults", type: { name: "Sequence", element: { type: { name: "Composite", - className: "HuntingBookmark" + className: "InsightsTableResult" } } } @@ -2226,60 +2489,56 @@ export const IncidentBookmarkList: coreClient.CompositeMapper = { } }; -export const IncidentCommentList: coreClient.CompositeMapper = { +export const EntityInsightItemQueryTimeInterval: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentCommentList", + className: "EntityInsightItemQueryTimeInterval", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + startTime: { + serializedName: "startTime", type: { - name: "String" + name: "DateTime" } }, - value: { - serializedName: "value", - required: true, + endTime: { + serializedName: "endTime", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "IncidentComment" - } - } + name: "DateTime" } } } } }; -export const IncidentEntitiesResponse: coreClient.CompositeMapper = { +export const InsightsTableResult: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentEntitiesResponse", + className: "InsightsTableResult", modelProperties: { - entities: { - serializedName: "entities", + columns: { + serializedName: "columns", type: { name: "Sequence", element: { type: { name: "Composite", - className: "Entity" + className: "InsightsTableResultColumnsItem" } } } }, - metaData: { - serializedName: "metaData", + rows: { + serializedName: "rows", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "IncidentEntitiesResultsMetadata" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } @@ -2288,21 +2547,19 @@ export const IncidentEntitiesResponse: coreClient.CompositeMapper = { } }; -export const IncidentEntitiesResultsMetadata: coreClient.CompositeMapper = { +export const InsightsTableResultColumnsItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentEntitiesResultsMetadata", + className: "InsightsTableResultColumnsItem", modelProperties: { - count: { - serializedName: "count", - required: true, + type: { + serializedName: "type", type: { - name: "Number" + name: "String" } }, - entityKind: { - serializedName: "entityKind", - required: true, + name: { + serializedName: "name", type: { name: "String" } @@ -2311,11 +2568,18 @@ export const IncidentEntitiesResultsMetadata: coreClient.CompositeMapper = { } }; -export const MetadataList: coreClient.CompositeMapper = { +export const EntityQueryList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataList", + className: "EntityQueryList", modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, value: { serializedName: "value", required: true, @@ -2324,103 +2588,106 @@ export const MetadataList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "MetadataModel" + className: "EntityQuery" } } } - }, - nextLink: { - serializedName: "nextLink", - readOnly: true, - type: { - name: "String" - } } } } }; -export const MetadataSource: coreClient.CompositeMapper = { +export const EntityQueryTemplateList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataSource", + className: "EntityQueryTemplateList", modelProperties: { - kind: { - serializedName: "kind", - required: true, - type: { - name: "String" - } - }, - name: { - serializedName: "name", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - sourceId: { - serializedName: "sourceId", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQueryTemplate" + } + } } } } } }; -export const MetadataAuthor: coreClient.CompositeMapper = { +export const FileImportList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataAuthor", + className: "FileImportList", modelProperties: { - name: { - serializedName: "name", - type: { - name: "String" - } - }, - email: { - serializedName: "email", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - link: { - serializedName: "link", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FileImport" + } + } } } } } }; -export const MetadataSupport: coreClient.CompositeMapper = { +export const FileMetadata: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataSupport", + className: "FileMetadata", modelProperties: { - tier: { - serializedName: "tier", - required: true, + fileFormat: { + serializedName: "fileFormat", type: { name: "String" } }, - name: { - serializedName: "name", + fileName: { + serializedName: "fileName", type: { name: "String" } }, - email: { - serializedName: "email", + fileSize: { + serializedName: "fileSize", + type: { + name: "Number" + } + }, + fileContentUri: { + serializedName: "fileContentUri", + readOnly: true, type: { name: "String" } }, - link: { - serializedName: "link", + deleteStatus: { + serializedName: "deleteStatus", + readOnly: true, type: { name: "String" } @@ -2429,49 +2696,25 @@ export const MetadataSupport: coreClient.CompositeMapper = { } }; -export const MetadataDependencies: coreClient.CompositeMapper = { +export const ValidationError: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataDependencies", + className: "ValidationError", modelProperties: { - contentId: { - serializedName: "contentId", + recordIndex: { + serializedName: "recordIndex", type: { - name: "String" + name: "Number" } }, - kind: { - serializedName: "kind", - type: { - name: "String" - } - }, - version: { - serializedName: "version", - type: { - name: "String" - } - }, - name: { - serializedName: "name", - type: { - name: "String" - } - }, - operator: { - serializedName: "operator", - type: { - name: "String" - } - }, - criteria: { - serializedName: "criteria", + errorMessages: { + serializedName: "errorMessages", + readOnly: true, type: { name: "Sequence", element: { type: { - name: "Composite", - className: "MetadataDependencies" + name: "String" } } } @@ -2480,29 +2723,27 @@ export const MetadataDependencies: coreClient.CompositeMapper = { } }; -export const MetadataCategories: coreClient.CompositeMapper = { +export const HuntList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MetadataCategories", + className: "HuntList", modelProperties: { - domains: { - serializedName: "domains", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - verticals: { - serializedName: "verticals", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "Hunt" } } } @@ -2511,40 +2752,58 @@ export const MetadataCategories: coreClient.CompositeMapper = { } }; -export const OfficeConsentList: coreClient.CompositeMapper = { +export const HuntOwner: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OfficeConsentList", + className: "HuntOwner", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + email: { + serializedName: "email", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + assignedTo: { + serializedName: "assignedTo", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "OfficeConsent" - } - } + name: "String" + } + }, + objectId: { + serializedName: "objectId", + nullable: true, + type: { + name: "Uuid" + } + }, + userPrincipalName: { + serializedName: "userPrincipalName", + type: { + name: "String" + } + }, + ownerType: { + serializedName: "ownerType", + type: { + name: "String" } } } } }; -export const SentinelOnboardingStatesList: coreClient.CompositeMapper = { +export const HuntRelationList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SentinelOnboardingStatesList", + className: "HuntRelationList", modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } + }, value: { serializedName: "value", required: true, @@ -2553,7 +2812,7 @@ export const SentinelOnboardingStatesList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "SentinelOnboardingState" + className: "HuntRelation" } } } @@ -2562,10 +2821,10 @@ export const SentinelOnboardingStatesList: coreClient.CompositeMapper = { } }; -export const SecurityMLAnalyticsSettingsList: coreClient.CompositeMapper = { +export const HuntCommentList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SecurityMLAnalyticsSettingsList", + className: "HuntCommentList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -2582,7 +2841,7 @@ export const SecurityMLAnalyticsSettingsList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "SecurityMLAnalyticsSetting" + className: "HuntComment" } } } @@ -2591,10 +2850,10 @@ export const SecurityMLAnalyticsSettingsList: coreClient.CompositeMapper = { } }; -export const SettingList: coreClient.CompositeMapper = { +export const IncidentList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SettingList", + className: "IncidentList", modelProperties: { value: { serializedName: "value", @@ -2604,262 +2863,238 @@ export const SettingList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "Settings" + className: "Incident" } } } - } - } - } -}; - -export const RepoList: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "RepoList", - modelProperties: { + }, nextLink: { serializedName: "nextLink", readOnly: true, type: { name: "String" } - }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "Repo" - } - } - } } } } }; -export const Repo: coreClient.CompositeMapper = { +export const IncidentOwnerInfo: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Repo", + className: "IncidentOwnerInfo", modelProperties: { - url: { - serializedName: "url", + email: { + serializedName: "email", type: { name: "String" } }, - fullName: { - serializedName: "fullName", + assignedTo: { + serializedName: "assignedTo", type: { name: "String" } }, - branches: { - serializedName: "branches", + objectId: { + serializedName: "objectId", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Uuid" + } + }, + userPrincipalName: { + serializedName: "userPrincipalName", + type: { + name: "String" + } + }, + ownerType: { + serializedName: "ownerType", + type: { + name: "String" } } } } }; -export const SourceControlList: coreClient.CompositeMapper = { +export const IncidentLabel: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SourceControlList", + className: "IncidentLabel", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + labelName: { + serializedName: "labelName", + required: true, type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + labelType: { + serializedName: "labelType", + readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "SourceControl" - } - } + name: "String" } } } } }; -export const Repository: coreClient.CompositeMapper = { +export const IncidentAdditionalData: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Repository", + className: "IncidentAdditionalData", modelProperties: { - url: { - serializedName: "url", + alertsCount: { + serializedName: "alertsCount", + readOnly: true, type: { - name: "String" + name: "Number" } }, - branch: { - serializedName: "branch", + bookmarksCount: { + serializedName: "bookmarksCount", + readOnly: true, type: { - name: "String" + name: "Number" } }, - displayUrl: { - serializedName: "displayUrl", + commentsCount: { + serializedName: "commentsCount", + readOnly: true, type: { - name: "String" + name: "Number" } }, - deploymentLogsUrl: { - serializedName: "deploymentLogsUrl", + alertProductNames: { + serializedName: "alertProductNames", + readOnly: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - pathMapping: { - serializedName: "pathMapping", + tactics: { + serializedName: "tactics", + readOnly: true, type: { name: "Sequence", element: { type: { - name: "Composite", - className: "ContentPathMap" + name: "String" + } + } + } + }, + techniques: { + serializedName: "techniques", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" } } } + }, + providerIncidentUrl: { + serializedName: "providerIncidentUrl", + readOnly: true, + type: { + name: "String" + } } } } }; -export const ContentPathMap: coreClient.CompositeMapper = { +export const TeamInformation: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ContentPathMap", + className: "TeamInformation", modelProperties: { - contentType: { - serializedName: "contentType", + teamId: { + serializedName: "teamId", + readOnly: true, type: { name: "String" } }, - path: { - serializedName: "path", + primaryChannelUrl: { + serializedName: "primaryChannelUrl", + readOnly: true, type: { name: "String" } - } - } - } -}; - -export const RepositoryResourceInfo: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "RepositoryResourceInfo", - modelProperties: { - webhook: { - serializedName: "webhook", - type: { - name: "Composite", - className: "Webhook" - } - }, - gitHubResourceInfo: { - serializedName: "gitHubResourceInfo", - type: { - name: "Composite", - className: "GitHubResourceInfo" - } }, - azureDevOpsResourceInfo: { - serializedName: "azureDevOpsResourceInfo", - type: { - name: "Composite", - className: "AzureDevOpsResourceInfo" - } - } - } - } -}; - -export const Webhook: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Webhook", - modelProperties: { - webhookId: { - serializedName: "webhookId", + teamCreationTimeUtc: { + serializedName: "teamCreationTimeUtc", + readOnly: true, type: { - name: "String" + name: "DateTime" } }, - webhookUrl: { - serializedName: "webhookUrl", + name: { + serializedName: "name", + readOnly: true, type: { name: "String" } }, - webhookSecretUpdateTime: { - serializedName: "webhookSecretUpdateTime", + description: { + serializedName: "description", + readOnly: true, type: { name: "String" } - }, - rotateWebhookSecret: { - serializedName: "rotateWebhookSecret", - type: { - name: "Boolean" - } } } } }; -export const GitHubResourceInfo: coreClient.CompositeMapper = { +export const IncidentAlertList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GitHubResourceInfo", + className: "IncidentAlertList", modelProperties: { - appInstallationId: { - serializedName: "appInstallationId", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SecurityAlert" + } + } } } } } }; -export const AzureDevOpsResourceInfo: coreClient.CompositeMapper = { +export const SecurityAlertPropertiesConfidenceReasonsItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AzureDevOpsResourceInfo", + className: "SecurityAlertPropertiesConfidenceReasonsItem", modelProperties: { - pipelineId: { - serializedName: "pipelineId", + reason: { + serializedName: "reason", + readOnly: true, type: { name: "String" } }, - serviceConnectionId: { - serializedName: "serviceConnectionId", + reasonType: { + serializedName: "reasonType", + readOnly: true, type: { name: "String" } @@ -2868,26 +3103,22 @@ export const AzureDevOpsResourceInfo: coreClient.CompositeMapper = { } }; -export const DeploymentInfo: coreClient.CompositeMapper = { +export const EntityCommonProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DeploymentInfo", + className: "EntityCommonProperties", modelProperties: { - deploymentFetchStatus: { - serializedName: "deploymentFetchStatus", - type: { - name: "String" - } - }, - deployment: { - serializedName: "deployment", + additionalData: { + serializedName: "additionalData", + readOnly: true, type: { - name: "Composite", - className: "Deployment" + name: "Dictionary", + value: { type: { name: "any" } } } }, - message: { - serializedName: "message", + friendlyName: { + serializedName: "friendlyName", + readOnly: true, type: { name: "String" } @@ -2896,58 +3127,49 @@ export const DeploymentInfo: coreClient.CompositeMapper = { } }; -export const Deployment: coreClient.CompositeMapper = { +export const IncidentBookmarkList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Deployment", + className: "IncidentBookmarkList", modelProperties: { - deploymentId: { - serializedName: "deploymentId", - type: { - name: "String" - } - }, - deploymentState: { - serializedName: "deploymentState", - type: { - name: "String" - } - }, - deploymentResult: { - serializedName: "deploymentResult", - type: { - name: "String" - } - }, - deploymentTime: { - serializedName: "deploymentTime", - type: { - name: "DateTime" - } - }, - deploymentLogsUrl: { - serializedName: "deploymentLogsUrl", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "HuntingBookmark" + } + } } } } } }; -export const ThreatIntelligenceKillChainPhase: coreClient.CompositeMapper = { +export const IncidentCommentList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceKillChainPhase", + className: "IncidentCommentList", modelProperties: { - killChainName: { - serializedName: "killChainName", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "IncidentComment" + } + } } }, - phaseName: { - serializedName: "phaseName", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } @@ -2956,25 +3178,31 @@ export const ThreatIntelligenceKillChainPhase: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { +export const IncidentEntitiesResponse: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceParsedPattern", + className: "IncidentEntitiesResponse", modelProperties: { - patternTypeKey: { - serializedName: "patternTypeKey", + entities: { + serializedName: "entities", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "Entity" + } + } } }, - patternTypeValues: { - serializedName: "patternTypeValues", + metaData: { + serializedName: "metaData", type: { name: "Sequence", element: { type: { name: "Composite", - className: "ThreatIntelligenceParsedPatternTypeValue" + className: "IncidentEntitiesResultsMetadata" } } } @@ -2983,103 +3211,89 @@ export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceParsedPatternTypeValue: coreClient.CompositeMapper = { +export const IncidentEntitiesResultsMetadata: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceParsedPatternTypeValue", + className: "IncidentEntitiesResultsMetadata", modelProperties: { - valueType: { - serializedName: "valueType", + entityKind: { + serializedName: "entityKind", + required: true, type: { name: "String" } }, - value: { - serializedName: "value", + count: { + serializedName: "count", + required: true, type: { - name: "String" + name: "Number" } } } } }; -export const ThreatIntelligenceExternalReference: coreClient.CompositeMapper = { +export const IncidentTaskList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceExternalReference", + className: "IncidentTaskList", modelProperties: { - description: { - serializedName: "description", - type: { - name: "String" - } - }, - externalId: { - serializedName: "externalId", - type: { - name: "String" - } - }, - sourceName: { - serializedName: "sourceName", + value: { + serializedName: "value", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "IncidentTask" + } + } } }, - url: { - serializedName: "url", + nextLink: { + serializedName: "nextLink", type: { name: "String" } - }, - hashes: { - serializedName: "hashes", - type: { - name: "Dictionary", - value: { type: { name: "String" } } - } } } } }; -export const ThreatIntelligenceGranularMarkingModel: coreClient.CompositeMapper = { +export const MetadataList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceGranularMarkingModel", + className: "MetadataList", modelProperties: { - language: { - serializedName: "language", - type: { - name: "String" - } - }, - markingRef: { - serializedName: "markingRef", - type: { - name: "Number" - } - }, - selectors: { - serializedName: "selectors", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "MetadataModel" } } } + }, + nextLink: { + serializedName: "nextLink", + readOnly: true, + type: { + name: "String" + } } } } }; -export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { +export const OfficeConsentList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceInformationList", + className: "OfficeConsentList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -3096,7 +3310,7 @@ export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "ThreatIntelligenceInformation" + className: "OfficeConsent" } } } @@ -3105,137 +3319,219 @@ export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceFilteringCriteria: coreClient.CompositeMapper = { +export const SentinelOnboardingStatesList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceFilteringCriteria", + className: "SentinelOnboardingStatesList", modelProperties: { - pageSize: { - serializedName: "pageSize", + value: { + serializedName: "value", + required: true, type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelOnboardingState" + } + } + } + } + } + } +}; + +export const RecommendationList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "RecommendationList", + modelProperties: { + value: { + serializedName: "value", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "Recommendation" + } + } + } + } + } + } +}; + +export const Recommendation: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Recommendation", + modelProperties: { + id: { + serializedName: "id", + required: true, + type: { + name: "Uuid" } }, - minConfidence: { - serializedName: "minConfidence", + instructions: { + serializedName: "instructions", type: { - name: "Number" + name: "Composite", + className: "Instructions" } }, - maxConfidence: { - serializedName: "maxConfidence", + content: { + serializedName: "content", type: { - name: "Number" + name: "Composite", + className: "Content" } }, - minValidUntil: { - serializedName: "minValidUntil", + resourceId: { + serializedName: "resourceId", + nullable: true, type: { name: "String" } }, - maxValidUntil: { - serializedName: "maxValidUntil", + additionalProperties: { + serializedName: "additionalProperties", + nullable: true, + type: { + name: "Dictionary", + value: { type: { name: "String" } } + } + }, + title: { + serializedName: "title", + required: true, type: { name: "String" } }, - includeDisabled: { - serializedName: "includeDisabled", + description: { + serializedName: "description", + required: true, type: { - name: "Boolean" + name: "String" } }, - sortBy: { - serializedName: "sortBy", + recommendationTypeTitle: { + serializedName: "recommendationTypeTitle", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceSortingCriteria" - } - } + name: "String" } }, - sources: { - serializedName: "sources", + recommendationTypeId: { + serializedName: "recommendationTypeId", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - patternTypes: { - serializedName: "patternTypes", + category: { + serializedName: "category", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - threatTypes: { - serializedName: "threatTypes", + context: { + serializedName: "context", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - ids: { - serializedName: "ids", + workspaceId: { + serializedName: "workspaceId", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Uuid" } }, - keywords: { - serializedName: "keywords", + actions: { + serializedName: "actions", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "RecommendedAction" } } } }, - skipToken: { - serializedName: "skipToken", + state: { + serializedName: "state", + required: true, + type: { + name: "String" + } + }, + priority: { + serializedName: "priority", + required: true, type: { name: "String" } + }, + lastEvaluatedTimeUtc: { + serializedName: "lastEvaluatedTimeUtc", + required: true, + type: { + name: "DateTime" + } + }, + hideUntilTimeUtc: { + serializedName: "hideUntilTimeUtc", + nullable: true, + type: { + name: "DateTime" + } + }, + displayUntilTimeUtc: { + serializedName: "displayUntilTimeUtc", + nullable: true, + type: { + name: "DateTime" + } + }, + visible: { + serializedName: "visible", + type: { + name: "Boolean" + } } } } }; -export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { +export const Instructions: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceSortingCriteria", + className: "Instructions", modelProperties: { - itemKey: { - serializedName: "itemKey", + actionsToBePerformed: { + serializedName: "actionsToBePerformed", + required: true, type: { name: "String" } }, - sortOrder: { - serializedName: "sortOrder", + recommendationImportance: { + serializedName: "recommendationImportance", + required: true, + type: { + name: "String" + } + }, + howToPerformActionDetails: { + serializedName: "howToPerformActionDetails", + nullable: true, type: { name: "String" } @@ -3244,128 +3540,122 @@ export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { } }; -export const ThreatIntelligenceMetricsList: coreClient.CompositeMapper = { +export const Content: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceMetricsList", + className: "Content", modelProperties: { - value: { - serializedName: "value", + title: { + serializedName: "title", required: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetrics" - } - } + name: "String" + } + }, + description: { + serializedName: "description", + required: true, + type: { + name: "String" } } } } }; -export const ThreatIntelligenceMetrics: coreClient.CompositeMapper = { +export const RecommendedAction: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceMetrics", + className: "RecommendedAction", modelProperties: { - properties: { - serializedName: "properties", + linkText: { + serializedName: "linkText", + required: true, type: { - name: "Composite", - className: "ThreatIntelligenceMetric" + name: "String" + } + }, + linkUrl: { + serializedName: "linkUrl", + required: true, + type: { + name: "String" + } + }, + state: { + serializedName: "state", + type: { + name: "String" } } } } }; -export const ThreatIntelligenceMetric: coreClient.CompositeMapper = { +export const RecommendationPatch: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceMetric", + className: "RecommendationPatch", modelProperties: { - lastUpdatedTimeUtc: { - serializedName: "lastUpdatedTimeUtc", + state: { + serializedName: "state", type: { name: "String" } }, - threatTypeMetrics: { - serializedName: "threatTypeMetrics", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } - } - }, - patternTypeMetrics: { - serializedName: "patternTypeMetrics", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } - } - }, - sourceMetrics: { - serializedName: "sourceMetrics", + hideUntilTimeUtc: { + serializedName: "hideUntilTimeUtc", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceMetricEntity" - } - } + name: "DateTime" } } } } }; -export const ThreatIntelligenceMetricEntity: coreClient.CompositeMapper = { +export const SecurityMLAnalyticsSettingsList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceMetricEntity", + className: "SecurityMLAnalyticsSettingsList", modelProperties: { - metricName: { - serializedName: "metricName", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - metricValue: { - serializedName: "metricValue", + value: { + serializedName: "value", + required: true, type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SecurityMLAnalyticsSetting" + } + } } } } } }; -export const ThreatIntelligenceAppendTags: coreClient.CompositeMapper = { +export const SettingList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceAppendTags", + className: "SettingList", modelProperties: { - threatIntelligenceTags: { - serializedName: "threatIntelligenceTags", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "Settings" } } } @@ -3374,10 +3664,10 @@ export const ThreatIntelligenceAppendTags: coreClient.CompositeMapper = { } }; -export const WatchlistList: coreClient.CompositeMapper = { +export const RepoList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "WatchlistList", + className: "RepoList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -3394,7 +3684,7 @@ export const WatchlistList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "Watchlist" + className: "Repo" } } } @@ -3403,27 +3693,30 @@ export const WatchlistList: coreClient.CompositeMapper = { } }; -export const WatchlistItemList: coreClient.CompositeMapper = { +export const Repo: coreClient.CompositeMapper = { type: { name: "Composite", - className: "WatchlistItemList", + className: "Repo", modelProperties: { - nextLink: { - serializedName: "nextLink", - readOnly: true, + url: { + serializedName: "url", type: { name: "String" } }, - value: { - serializedName: "value", - required: true, + fullName: { + serializedName: "fullName", + type: { + name: "String" + } + }, + branches: { + serializedName: "branches", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "WatchlistItem" + name: "String" } } } @@ -3432,10 +3725,10 @@ export const WatchlistItemList: coreClient.CompositeMapper = { } }; -export const DataConnectorList: coreClient.CompositeMapper = { +export const SourceControlList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorList", + className: "SourceControlList", modelProperties: { nextLink: { serializedName: "nextLink", @@ -3452,7 +3745,7 @@ export const DataConnectorList: coreClient.CompositeMapper = { element: { type: { name: "Composite", - className: "DataConnector" + className: "SourceControl" } } } @@ -3461,100 +3754,110 @@ export const DataConnectorList: coreClient.CompositeMapper = { } }; -export const DataConnectorConnectBody: coreClient.CompositeMapper = { +export const Repository: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorConnectBody", + className: "Repository", modelProperties: { - kind: { - serializedName: "kind", + url: { + serializedName: "url", + required: true, type: { name: "String" } }, - apiKey: { - serializedName: "apiKey", + branch: { + serializedName: "branch", + required: true, type: { name: "String" } }, - dataCollectionEndpoint: { - serializedName: "dataCollectionEndpoint", + displayUrl: { + serializedName: "displayUrl", type: { name: "String" } }, - dataCollectionRuleImmutableId: { - serializedName: "dataCollectionRuleImmutableId", + deploymentLogsUrl: { + serializedName: "deploymentLogsUrl", + readOnly: true, type: { name: "String" } - }, - outputStream: { - serializedName: "outputStream", + } + } + } +}; + +export const ServicePrincipal: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ServicePrincipal", + modelProperties: { + id: { + serializedName: "id", + readOnly: true, type: { name: "String" } }, - clientSecret: { - serializedName: "clientSecret", + tenantId: { + serializedName: "tenantId", + readOnly: true, type: { name: "String" } }, - clientId: { - serializedName: "clientId", + appId: { + serializedName: "appId", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const RepositoryAccess: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "RepositoryAccess", + modelProperties: { + kind: { + serializedName: "kind", + required: true, type: { name: "String" } }, - authorizationCode: { - serializedName: "authorizationCode", + code: { + serializedName: "code", type: { name: "String" } }, - userName: { - serializedName: "userName", + state: { + serializedName: "state", type: { name: "String" } }, - password: { - serializedName: "password", + clientId: { + serializedName: "clientId", type: { name: "String" } }, - requestConfigUserInputValues: { - serializedName: "requestConfigUserInputValues", + token: { + serializedName: "token", type: { - name: "Sequence", - element: { - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - } + name: "String" } - } - } - } -}; - -export const DataConnectorsCheckRequirements: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "DataConnectorsCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, - modelProperties: { - kind: { - serializedName: "kind", - required: true, + }, + installationId: { + serializedName: "installationId", type: { name: "String" } @@ -3563,82 +3866,64 @@ export const DataConnectorsCheckRequirements: coreClient.CompositeMapper = { } }; -export const DataConnectorRequirementsState: coreClient.CompositeMapper = { +export const RepositoryResourceInfo: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorRequirementsState", + className: "RepositoryResourceInfo", modelProperties: { - authorizationState: { - serializedName: "authorizationState", + webhook: { + serializedName: "webhook", type: { - name: "String" + name: "Composite", + className: "Webhook" } }, - licenseState: { - serializedName: "licenseState", + gitHubResourceInfo: { + serializedName: "gitHubResourceInfo", type: { - name: "String" + name: "Composite", + className: "GitHubResourceInfo" + } + }, + azureDevOpsResourceInfo: { + serializedName: "azureDevOpsResourceInfo", + type: { + name: "Composite", + className: "AzureDevOpsResourceInfo" } } } } }; -export const OperationsList: coreClient.CompositeMapper = { +export const Webhook: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OperationsList", + className: "Webhook", modelProperties: { - nextLink: { - serializedName: "nextLink", + webhookId: { + serializedName: "webhookId", readOnly: true, type: { name: "String" } }, - value: { - serializedName: "value", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "Operation" - } - } - } - } - } - } -}; - -export const Operation: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Operation", - modelProperties: { - display: { - serializedName: "display", - type: { - name: "Composite", - className: "OperationDisplay" - } - }, - name: { - serializedName: "name", + webhookUrl: { + serializedName: "webhookUrl", + readOnly: true, type: { name: "String" } }, - origin: { - serializedName: "origin", + webhookSecretUpdateTime: { + serializedName: "webhookSecretUpdateTime", + readOnly: true, type: { - name: "String" + name: "DateTime" } }, - isDataAction: { - serializedName: "isDataAction", + rotateWebhookSecret: { + serializedName: "rotateWebhookSecret", type: { name: "Boolean" } @@ -3647,31 +3932,34 @@ export const Operation: coreClient.CompositeMapper = { } }; -export const OperationDisplay: coreClient.CompositeMapper = { +export const GitHubResourceInfo: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OperationDisplay", + className: "GitHubResourceInfo", modelProperties: { - description: { - serializedName: "description", - type: { - name: "String" - } - }, - operation: { - serializedName: "operation", + appInstallationId: { + serializedName: "appInstallationId", type: { name: "String" } - }, - provider: { - serializedName: "provider", + } + } + } +}; + +export const AzureDevOpsResourceInfo: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AzureDevOpsResourceInfo", + modelProperties: { + pipelineId: { + serializedName: "pipelineId", type: { name: "String" } }, - resource: { - serializedName: "resource", + serviceConnectionId: { + serializedName: "serviceConnectionId", type: { name: "String" } @@ -3680,83 +3968,65 @@ export const OperationDisplay: coreClient.CompositeMapper = { } }; -export const AlertRuleTemplateDataSource: coreClient.CompositeMapper = { +export const DeploymentInfo: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AlertRuleTemplateDataSource", + className: "DeploymentInfo", modelProperties: { - connectorId: { - serializedName: "connectorId", + deploymentFetchStatus: { + serializedName: "deploymentFetchStatus", type: { name: "String" } }, - dataTypes: { - serializedName: "dataTypes", + deployment: { + serializedName: "deployment", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Composite", + className: "Deployment" + } + }, + message: { + serializedName: "message", + type: { + name: "String" } } } } }; -export const AlertRuleTemplatePropertiesBase: coreClient.CompositeMapper = { +export const Deployment: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AlertRuleTemplatePropertiesBase", + className: "Deployment", modelProperties: { - alertRulesCreatedByTemplateCount: { - serializedName: "alertRulesCreatedByTemplateCount", - type: { - name: "Number" - } - }, - lastUpdatedDateUTC: { - serializedName: "lastUpdatedDateUTC", - readOnly: true, - type: { - name: "DateTime" - } - }, - createdDateUTC: { - serializedName: "createdDateUTC", - readOnly: true, + deploymentId: { + serializedName: "deploymentId", type: { - name: "DateTime" + name: "String" } }, - description: { - serializedName: "description", + deploymentState: { + serializedName: "deploymentState", type: { name: "String" } }, - displayName: { - serializedName: "displayName", + deploymentResult: { + serializedName: "deploymentResult", type: { name: "String" } }, - requiredDataConnectors: { - serializedName: "requiredDataConnectors", + deploymentTime: { + serializedName: "deploymentTime", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "AlertRuleTemplateDataSource" - } - } + name: "DateTime" } }, - status: { - serializedName: "status", + deploymentLogsUrl: { + serializedName: "deploymentLogsUrl", type: { name: "String" } @@ -3765,85 +4035,90 @@ export const AlertRuleTemplatePropertiesBase: coreClient.CompositeMapper = { } }; -export const QueryBasedAlertRuleTemplateProperties: coreClient.CompositeMapper = { +export const PullRequest: coreClient.CompositeMapper = { type: { name: "Composite", - className: "QueryBasedAlertRuleTemplateProperties", + className: "PullRequest", modelProperties: { - query: { - serializedName: "query", - type: { - name: "String" - } - }, - severity: { - serializedName: "severity", + url: { + serializedName: "url", + readOnly: true, type: { name: "String" } }, - version: { - serializedName: "version", + state: { + serializedName: "state", + readOnly: true, type: { name: "String" } - }, - customDetails: { - serializedName: "customDetails", - type: { - name: "Dictionary", - value: { type: { name: "String" } } - } - }, - entityMappings: { - serializedName: "entityMappings", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityMapping" - } - } - } - }, - alertDetailsOverride: { - serializedName: "alertDetailsOverride", + } + } + } +}; + +export const Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: + "Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema", + modelProperties: { + repositoryAccess: { + serializedName: "repositoryAccess", type: { name: "Composite", - className: "AlertDetailsOverride" + className: "RepositoryAccess" } - }, - eventGroupingSettings: { - serializedName: "eventGroupingSettings", + } + } + } +}; + +export const Warning: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Warning", + modelProperties: { + warning: { + serializedName: "warning", type: { name: "Composite", - className: "EventGroupingSettings" + className: "WarningBody" } } } } }; -export const EntityMapping: coreClient.CompositeMapper = { +export const WarningBody: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityMapping", + className: "WarningBody", modelProperties: { - entityType: { - serializedName: "entityType", + code: { + serializedName: "code", + readOnly: true, type: { name: "String" } }, - fieldMappings: { - serializedName: "fieldMappings", + message: { + serializedName: "message", + readOnly: true, + type: { + name: "String" + } + }, + details: { + serializedName: "details", + readOnly: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "FieldMapping" + className: "WarningBody" } } } @@ -3852,19 +4127,19 @@ export const EntityMapping: coreClient.CompositeMapper = { } }; -export const FieldMapping: coreClient.CompositeMapper = { +export const ThreatIntelligenceKillChainPhase: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FieldMapping", + className: "ThreatIntelligenceKillChainPhase", modelProperties: { - identifier: { - serializedName: "identifier", + killChainName: { + serializedName: "killChainName", type: { name: "String" } }, - columnName: { - serializedName: "columnName", + phaseName: { + serializedName: "phaseName", type: { name: "String" } @@ -3873,220 +4148,147 @@ export const FieldMapping: coreClient.CompositeMapper = { } }; -export const AlertDetailsOverride: coreClient.CompositeMapper = { +export const ThreatIntelligenceParsedPattern: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AlertDetailsOverride", + className: "ThreatIntelligenceParsedPattern", modelProperties: { - alertDisplayNameFormat: { - serializedName: "alertDisplayNameFormat", + patternTypeKey: { + serializedName: "patternTypeKey", type: { name: "String" } }, - alertDescriptionFormat: { - serializedName: "alertDescriptionFormat", + patternTypeValues: { + serializedName: "patternTypeValues", type: { - name: "String" - } - }, - alertTacticsColumnName: { - serializedName: "alertTacticsColumnName", - type: { - name: "String" - } - }, - alertSeverityColumnName: { - serializedName: "alertSeverityColumnName", - type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceParsedPatternTypeValue" + } + } } } } } }; -export const EventGroupingSettings: coreClient.CompositeMapper = { +export const ThreatIntelligenceParsedPatternTypeValue: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EventGroupingSettings", + className: "ThreatIntelligenceParsedPatternTypeValue", modelProperties: { - aggregationKind: { - serializedName: "aggregationKind", + valueType: { + serializedName: "valueType", type: { name: "String" } - } - } - } -}; - -export const FusionSourceSettings: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "FusionSourceSettings", - modelProperties: { - enabled: { - serializedName: "enabled", - required: true, - type: { - name: "Boolean" - } }, - sourceName: { - serializedName: "sourceName", - required: true, + value: { + serializedName: "value", type: { name: "String" } - }, - sourceSubTypes: { - serializedName: "sourceSubTypes", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "FusionSourceSubTypeSetting" - } - } - } } } } }; -export const FusionSourceSubTypeSetting: coreClient.CompositeMapper = { +export const ThreatIntelligenceExternalReference: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FusionSourceSubTypeSetting", + className: "ThreatIntelligenceExternalReference", modelProperties: { - enabled: { - serializedName: "enabled", - required: true, + description: { + serializedName: "description", type: { - name: "Boolean" + name: "String" } }, - sourceSubTypeName: { - serializedName: "sourceSubTypeName", - required: true, + externalId: { + serializedName: "externalId", type: { name: "String" } }, - sourceSubTypeDisplayName: { - serializedName: "sourceSubTypeDisplayName", - readOnly: true, + sourceName: { + serializedName: "sourceName", type: { name: "String" } }, - severityFilters: { - serializedName: "severityFilters", - type: { - name: "Composite", - className: "FusionSubTypeSeverityFilter" - } - } - } - } -}; - -export const FusionSubTypeSeverityFilter: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "FusionSubTypeSeverityFilter", - modelProperties: { - isSupported: { - serializedName: "isSupported", - readOnly: true, + url: { + serializedName: "url", type: { - name: "Boolean" + name: "String" } }, - filters: { - serializedName: "filters", + hashes: { + serializedName: "hashes", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "FusionSubTypeSeverityFiltersItem" - } - } + name: "Dictionary", + value: { type: { name: "String" } } } } } } }; -export const FusionSubTypeSeverityFiltersItem: coreClient.CompositeMapper = { +export const ThreatIntelligenceGranularMarkingModel: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FusionSubTypeSeverityFiltersItem", + className: "ThreatIntelligenceGranularMarkingModel", modelProperties: { - severity: { - serializedName: "severity", - required: true, + language: { + serializedName: "language", type: { name: "String" } }, - enabled: { - serializedName: "enabled", - required: true, - type: { - name: "Boolean" - } - } - } - } -}; - -export const FusionScenarioExclusionPattern: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "FusionScenarioExclusionPattern", - modelProperties: { - exclusionPattern: { - serializedName: "exclusionPattern", - required: true, + markingRef: { + serializedName: "markingRef", type: { - name: "String" + name: "Number" } }, - dateAddedInUTC: { - serializedName: "dateAddedInUTC", - required: true, + selectors: { + serializedName: "selectors", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const FusionTemplateSourceSetting: coreClient.CompositeMapper = { +export const ThreatIntelligenceInformationList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FusionTemplateSourceSetting", + className: "ThreatIntelligenceInformationList", modelProperties: { - sourceName: { - serializedName: "sourceName", - required: true, + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - sourceSubTypes: { - serializedName: "sourceSubTypes", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "FusionTemplateSourceSubType" + className: "ThreatIntelligenceInformation" } } } @@ -4095,70 +4297,61 @@ export const FusionTemplateSourceSetting: coreClient.CompositeMapper = { } }; -export const FusionTemplateSourceSubType: coreClient.CompositeMapper = { +export const ThreatIntelligenceFilteringCriteria: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FusionTemplateSourceSubType", + className: "ThreatIntelligenceFilteringCriteria", modelProperties: { - sourceSubTypeName: { - serializedName: "sourceSubTypeName", - required: true, + pageSize: { + serializedName: "pageSize", type: { - name: "String" + name: "Number" } }, - sourceSubTypeDisplayName: { - serializedName: "sourceSubTypeDisplayName", - readOnly: true, + minConfidence: { + serializedName: "minConfidence", + type: { + name: "Number" + } + }, + maxConfidence: { + serializedName: "maxConfidence", + type: { + name: "Number" + } + }, + minValidUntil: { + serializedName: "minValidUntil", type: { name: "String" } }, - severityFilter: { - serializedName: "severityFilter", + maxValidUntil: { + serializedName: "maxValidUntil", type: { - name: "Composite", - className: "FusionTemplateSubTypeSeverityFilter" + name: "String" } - } - } - } -}; - -export const FusionTemplateSubTypeSeverityFilter: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "FusionTemplateSubTypeSeverityFilter", - modelProperties: { - isSupported: { - serializedName: "isSupported", - required: true, + }, + includeDisabled: { + serializedName: "includeDisabled", type: { name: "Boolean" } }, - severityFilters: { - serializedName: "severityFilters", + sortBy: { + serializedName: "sortBy", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ThreatIntelligenceSortingCriteria" } } } - } - } - } -}; - -export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MicrosoftSecurityIncidentCreationAlertRuleCommonProperties", - modelProperties: { - displayNamesFilter: { - serializedName: "displayNamesFilter", + }, + sources: { + serializedName: "sources", type: { name: "Sequence", element: { @@ -4168,8 +4361,8 @@ export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreCli } } }, - displayNamesExcludeFilter: { - serializedName: "displayNamesExcludeFilter", + patternTypes: { + serializedName: "patternTypes", type: { name: "Sequence", element: { @@ -4179,15 +4372,19 @@ export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreCli } } }, - productFilter: { - serializedName: "productFilter", - required: true, + threatTypes: { + serializedName: "threatTypes", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - severitiesFilter: { - serializedName: "severitiesFilter", + ids: { + serializedName: "ids", type: { name: "Sequence", element: { @@ -4196,96 +4393,130 @@ export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreCli } } } + }, + keywords: { + serializedName: "keywords", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + skipToken: { + serializedName: "skipToken", + type: { + name: "String" + } } } } }; -export const IncidentConfiguration: coreClient.CompositeMapper = { +export const ThreatIntelligenceSortingCriteria: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentConfiguration", + className: "ThreatIntelligenceSortingCriteria", modelProperties: { - createIncident: { - serializedName: "createIncident", - required: true, + itemKey: { + serializedName: "itemKey", type: { - name: "Boolean" + name: "String" } }, - groupingConfiguration: { - serializedName: "groupingConfiguration", + sortOrder: { + serializedName: "sortOrder", type: { - name: "Composite", - className: "GroupingConfiguration" + name: "String" } } } } }; -export const GroupingConfiguration: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetricsList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GroupingConfiguration", + className: "ThreatIntelligenceMetricsList", modelProperties: { - enabled: { - serializedName: "enabled", - required: true, - type: { - name: "Boolean" - } - }, - reopenClosedIncident: { - serializedName: "reopenClosedIncident", + value: { + serializedName: "value", required: true, type: { - name: "Boolean" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceMetrics" + } + } } - }, - lookbackDuration: { - serializedName: "lookbackDuration", - required: true, + } + } + } +}; + +export const ThreatIntelligenceMetrics: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceMetrics", + modelProperties: { + properties: { + serializedName: "properties", type: { - name: "TimeSpan" + name: "Composite", + className: "ThreatIntelligenceMetric" } - }, - matchingMethod: { - serializedName: "matchingMethod", - required: true, + } + } + } +}; + +export const ThreatIntelligenceMetric: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceMetric", + modelProperties: { + lastUpdatedTimeUtc: { + serializedName: "lastUpdatedTimeUtc", type: { name: "String" } }, - groupByEntities: { - serializedName: "groupByEntities", + threatTypeMetrics: { + serializedName: "threatTypeMetrics", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ThreatIntelligenceMetricEntity" } } } }, - groupByAlertDetails: { - serializedName: "groupByAlertDetails", + patternTypeMetrics: { + serializedName: "patternTypeMetrics", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ThreatIntelligenceMetricEntity" } } } }, - groupByCustomDetails: { - serializedName: "groupByCustomDetails", + sourceMetrics: { + serializedName: "sourceMetrics", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ThreatIntelligenceMetricEntity" } } } @@ -4294,108 +4525,113 @@ export const GroupingConfiguration: coreClient.CompositeMapper = { } }; -export const ScheduledAlertRuleCommonProperties: coreClient.CompositeMapper = { +export const ThreatIntelligenceMetricEntity: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ScheduledAlertRuleCommonProperties", + className: "ThreatIntelligenceMetricEntity", modelProperties: { - query: { - serializedName: "query", - type: { - name: "String" - } - }, - queryFrequency: { - serializedName: "queryFrequency", - type: { - name: "TimeSpan" - } - }, - queryPeriod: { - serializedName: "queryPeriod", - type: { - name: "TimeSpan" - } - }, - severity: { - serializedName: "severity", + metricName: { + serializedName: "metricName", type: { name: "String" } }, - triggerOperator: { - serializedName: "triggerOperator", - type: { - name: "Enum", - allowedValues: ["GreaterThan", "LessThan", "Equal", "NotEqual"] - } - }, - triggerThreshold: { - serializedName: "triggerThreshold", + metricValue: { + serializedName: "metricValue", type: { name: "Number" } - }, - eventGroupingSettings: { - serializedName: "eventGroupingSettings", - type: { - name: "Composite", - className: "EventGroupingSettings" - } - }, - customDetails: { - serializedName: "customDetails", + } + } + } +}; + +export const ThreatIntelligenceAppendTags: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligenceAppendTags", + modelProperties: { + threatIntelligenceTags: { + serializedName: "threatIntelligenceTags", type: { - name: "Dictionary", - value: { type: { name: "String" } } + name: "Sequence", + element: { + type: { + name: "String" + } + } } - }, - entityMappings: { - serializedName: "entityMappings", + } + } + } +}; + +export const TriggeredAnalyticsRuleRuns: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TriggeredAnalyticsRuleRuns", + modelProperties: { + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "EntityMapping" + className: "TriggeredAnalyticsRuleRun" } } } }, - alertDetailsOverride: { - serializedName: "alertDetailsOverride", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { - name: "Composite", - className: "AlertDetailsOverride" + name: "String" } } } } }; -export const AutomationRuleBooleanCondition: coreClient.CompositeMapper = { +export const AnalyticsRuleRunTrigger: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRuleBooleanCondition", + className: "AnalyticsRuleRunTrigger", modelProperties: { - operator: { - serializedName: "operator", + executionTimeUtc: { + serializedName: "properties.executionTimeUtc", + required: true, + type: { + name: "DateTime" + } + } + } + } +}; + +export const WatchlistList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "WatchlistList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - innerConditions: { - constraints: { - MinItems: 2, - MaxItems: 10 - }, - serializedName: "innerConditions", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "AutomationRuleCondition" + className: "Watchlist" } } } @@ -4404,56 +4640,27 @@ export const AutomationRuleBooleanCondition: coreClient.CompositeMapper = { } }; -export const IncidentPropertiesAction: coreClient.CompositeMapper = { +export const WatchlistItemList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentPropertiesAction", + className: "WatchlistItemList", modelProperties: { - severity: { - serializedName: "severity", - type: { - name: "String" - } - }, - status: { - serializedName: "status", - type: { - name: "String" - } - }, - classification: { - serializedName: "classification", - type: { - name: "String" - } - }, - classificationReason: { - serializedName: "classificationReason", - type: { - name: "String" - } - }, - classificationComment: { - serializedName: "classificationComment", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - owner: { - serializedName: "owner", - type: { - name: "Composite", - className: "IncidentOwnerInfo" - } - }, - labels: { - serializedName: "labels", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "IncidentLabel" + className: "WatchlistItem" } } } @@ -4462,55 +4669,71 @@ export const IncidentPropertiesAction: coreClient.CompositeMapper = { } }; -export const AutomationRulePropertyArrayChangedValuesCondition: coreClient.CompositeMapper = { +export const WorkspaceManagerAssignmentList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRulePropertyArrayChangedValuesCondition", + className: "WorkspaceManagerAssignmentList", modelProperties: { - arrayType: { - serializedName: "arrayType", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - changeType: { - serializedName: "changeType", + value: { + serializedName: "value", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "WorkspaceManagerAssignment" + } + } } } } } }; -export const AutomationRulePropertyArrayValuesCondition: coreClient.CompositeMapper = { +export const AssignmentItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRulePropertyArrayValuesCondition", + className: "AssignmentItem", modelProperties: { - arrayType: { - serializedName: "arrayType", + resourceId: { + serializedName: "resourceId", type: { name: "String" } - }, - arrayConditionType: { - serializedName: "arrayConditionType", + } + } + } +}; + +export const JobList: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "JobList", + modelProperties: { + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - itemConditions: { - constraints: { - MaxItems: 10 - }, - serializedName: "itemConditions", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: "AutomationRuleCondition" + className: "Job" } } } @@ -4519,36 +4742,39 @@ export const AutomationRulePropertyArrayValuesCondition: coreClient.CompositeMap } }; -export const AutomationRulePropertyValuesChangedCondition: coreClient.CompositeMapper = { +export const JobItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRulePropertyValuesChangedCondition", + className: "JobItem", modelProperties: { - propertyName: { - serializedName: "propertyName", + resourceId: { + serializedName: "resourceId", type: { name: "String" } }, - changeType: { - serializedName: "changeType", + status: { + serializedName: "status", + readOnly: true, type: { name: "String" } }, - operator: { - serializedName: "operator", + executionTime: { + serializedName: "executionTime", + readOnly: true, type: { - name: "String" + name: "DateTime" } }, - propertyValues: { - serializedName: "propertyValues", + errors: { + serializedName: "errors", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ErrorModel" } } } @@ -4557,151 +4783,137 @@ export const AutomationRulePropertyValuesChangedCondition: coreClient.CompositeM } }; -export const AutomationRulePropertyValuesCondition: coreClient.CompositeMapper = { +export const ErrorModel: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRulePropertyValuesCondition", + className: "ErrorModel", modelProperties: { - propertyName: { - serializedName: "propertyName", + memberResourceName: { + serializedName: "memberResourceName", + required: true, type: { name: "String" } }, - operator: { - serializedName: "operator", + errorMessage: { + serializedName: "errorMessage", + required: true, type: { name: "String" } - }, - propertyValues: { - serializedName: "propertyValues", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } } } } }; -export const PlaybookActionProperties: coreClient.CompositeMapper = { +export const WorkspaceManagerConfigurationList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PlaybookActionProperties", + className: "WorkspaceManagerConfigurationList", modelProperties: { - logicAppResourceId: { - serializedName: "logicAppResourceId", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - tenantId: { - serializedName: "tenantId", + value: { + serializedName: "value", + required: true, type: { - name: "Uuid" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "WorkspaceManagerConfiguration" + } + } } } } } }; -export const EntityQueryItemProperties: coreClient.CompositeMapper = { +export const WorkspaceManagerGroupList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityQueryItemProperties", + className: "WorkspaceManagerGroupList", modelProperties: { - dataTypes: { - serializedName: "dataTypes", - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "EntityQueryItemPropertiesDataTypesItem" - } - } - } - }, - inputEntityType: { - serializedName: "inputEntityType", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } }, - requiredInputFieldsSets: { - serializedName: "requiredInputFieldsSets", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Composite", + className: "WorkspaceManagerGroup" } } } - }, - entitiesFilter: { - serializedName: "entitiesFilter", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } } } } }; -export const EntityQueryItemPropertiesDataTypesItem: coreClient.CompositeMapper = { +export const WorkspaceManagerMembersList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityQueryItemPropertiesDataTypesItem", + className: "WorkspaceManagerMembersList", modelProperties: { - dataType: { - serializedName: "dataType", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "WorkspaceManagerMember" + } + } + } } } } }; -export const InsightQueryItemPropertiesTableQuery: coreClient.CompositeMapper = { +export const DataConnectorList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItemPropertiesTableQuery", + className: "DataConnectorList", modelProperties: { - columnsDefinitions: { - serializedName: "columnsDefinitions", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: - "InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem" - } - } + name: "String" } }, - queriesDefinitions: { - serializedName: "queriesDefinitions", + value: { + serializedName: "value", + required: true, type: { name: "Sequence", element: { type: { name: "Composite", - className: - "InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem" + className: "DataConnector" } } } @@ -4710,65 +4922,79 @@ export const InsightQueryItemPropertiesTableQuery: coreClient.CompositeMapper = } }; -export const InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem: coreClient.CompositeMapper = { +export const DataConnectorConnectBody: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem", + className: "DataConnectorConnectBody", modelProperties: { - header: { - serializedName: "header", + kind: { + serializedName: "kind", type: { name: "String" } }, - outputType: { - serializedName: "outputType", + apiKey: { + serializedName: "apiKey", type: { name: "String" } }, - supportDeepLink: { - serializedName: "supportDeepLink", + dataCollectionEndpoint: { + serializedName: "dataCollectionEndpoint", type: { - name: "Boolean" + name: "String" } - } - } - } -}; - -export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem", - modelProperties: { - filter: { - serializedName: "filter", + }, + dataCollectionRuleImmutableId: { + serializedName: "dataCollectionRuleImmutableId", type: { name: "String" } }, - summarize: { - serializedName: "summarize", + outputStream: { + serializedName: "outputStream", type: { name: "String" } }, - project: { - serializedName: "project", + clientSecret: { + serializedName: "clientSecret", type: { name: "String" } }, - linkColumnsDefinitions: { - serializedName: "linkColumnsDefinitions", + clientId: { + serializedName: "clientId", + type: { + name: "String" + } + }, + authorizationCode: { + serializedName: "authorizationCode", + type: { + name: "String" + } + }, + userName: { + serializedName: "userName", + type: { + name: "String" + } + }, + password: { + serializedName: "password", + type: { + name: "String" + } + }, + requestConfigUserInputValues: { + serializedName: "requestConfigUserInputValues", type: { name: "Sequence", element: { type: { - name: "Composite", - className: - "InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem" + name: "Dictionary", + value: { type: { name: "any" } } } } } @@ -4777,20 +5003,19 @@ export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem: coreCli } }; -export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem: coreClient.CompositeMapper = { +export const DataConnectorsCheckRequirements: coreClient.CompositeMapper = { type: { name: "Composite", - className: - "InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem", + className: "DataConnectorsCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, modelProperties: { - projectedName: { - serializedName: "projectedName", - type: { - name: "String" - } - }, - query: { - serializedName: "Query", + kind: { + serializedName: "kind", + required: true, type: { name: "String" } @@ -4799,19 +5024,19 @@ export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesIte } }; -export const InsightQueryItemPropertiesAdditionalQuery: coreClient.CompositeMapper = { +export const DataConnectorRequirementsState: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItemPropertiesAdditionalQuery", + className: "DataConnectorRequirementsState", modelProperties: { - query: { - serializedName: "query", + authorizationState: { + serializedName: "authorizationState", type: { name: "String" } }, - text: { - serializedName: "text", + licenseState: { + serializedName: "licenseState", type: { name: "String" } @@ -4820,19 +5045,25 @@ export const InsightQueryItemPropertiesAdditionalQuery: coreClient.CompositeMapp } }; -export const InsightQueryItemPropertiesDefaultTimeRange: coreClient.CompositeMapper = { +export const DataConnectorDefinitionArmCollectionWrapper: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItemPropertiesDefaultTimeRange", + className: "DataConnectorDefinitionArmCollectionWrapper", modelProperties: { - beforeRange: { - serializedName: "beforeRange", + value: { + serializedName: "value", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "DataConnectorDefinition" + } + } } }, - afterRange: { - serializedName: "afterRange", + nextLink: { + serializedName: "nextLink", type: { name: "String" } @@ -4841,64 +5072,94 @@ export const InsightQueryItemPropertiesDefaultTimeRange: coreClient.CompositeMap } }; -export const InsightQueryItemPropertiesReferenceTimeRange: coreClient.CompositeMapper = { +export const OperationsList: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItemPropertiesReferenceTimeRange", + className: "OperationsList", modelProperties: { - beforeRange: { - serializedName: "beforeRange", + nextLink: { + serializedName: "nextLink", + readOnly: true, type: { name: "String" } + }, + value: { + serializedName: "value", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "Operation" + } + } + } } } } }; -export const ActivityEntityQueriesPropertiesQueryDefinitions: coreClient.CompositeMapper = { +export const Operation: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActivityEntityQueriesPropertiesQueryDefinitions", + className: "Operation", modelProperties: { - query: { - serializedName: "query", + display: { + serializedName: "display", + type: { + name: "Composite", + className: "OperationDisplay" + } + }, + name: { + serializedName: "name", + type: { + name: "String" + } + }, + origin: { + serializedName: "origin", type: { name: "String" } + }, + isDataAction: { + serializedName: "isDataAction", + type: { + name: "Boolean" + } } } } }; -export const ActivityEntityQueryTemplatePropertiesQueryDefinitions: coreClient.CompositeMapper = { +export const OperationDisplay: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActivityEntityQueryTemplatePropertiesQueryDefinitions", + className: "OperationDisplay", modelProperties: { - query: { - serializedName: "query", + description: { + serializedName: "description", type: { name: "String" } }, - summarizeBy: { - serializedName: "summarizeBy", + operation: { + serializedName: "operation", type: { name: "String" } - } - } - } -}; - -export const DataTypeDefinitions: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "DataTypeDefinitions", - modelProperties: { - dataType: { - serializedName: "dataType", + }, + provider: { + serializedName: "provider", + type: { + name: "String" + } + }, + resource: { + serializedName: "resource", type: { name: "String" } @@ -4907,10 +5168,10 @@ export const DataTypeDefinitions: coreClient.CompositeMapper = { } }; -export const SecurityMLAnalyticsSettingsDataSource: coreClient.CompositeMapper = { +export const AlertRuleTemplateDataSource: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SecurityMLAnalyticsSettingsDataSource", + className: "AlertRuleTemplateDataSource", modelProperties: { connectorId: { serializedName: "connectorId", @@ -4933,14 +5194,57 @@ export const SecurityMLAnalyticsSettingsDataSource: coreClient.CompositeMapper = } }; -export const DataConnectorTenantId: coreClient.CompositeMapper = { +export const AlertRuleTemplatePropertiesBase: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorTenantId", + className: "AlertRuleTemplatePropertiesBase", modelProperties: { - tenantId: { - serializedName: "tenantId", - required: true, + alertRulesCreatedByTemplateCount: { + serializedName: "alertRulesCreatedByTemplateCount", + type: { + name: "Number" + } + }, + lastUpdatedDateUTC: { + serializedName: "lastUpdatedDateUTC", + readOnly: true, + type: { + name: "DateTime" + } + }, + createdDateUTC: { + serializedName: "createdDateUTC", + readOnly: true, + type: { + name: "DateTime" + } + }, + description: { + serializedName: "description", + type: { + name: "String" + } + }, + displayName: { + serializedName: "displayName", + type: { + name: "String" + } + }, + requiredDataConnectors: { + serializedName: "requiredDataConnectors", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AlertRuleTemplateDataSource" + } + } + } + }, + status: { + serializedName: "status", type: { name: "String" } @@ -4949,351 +5253,388 @@ export const DataConnectorTenantId: coreClient.CompositeMapper = { } }; -export const DataConnectorWithAlertsProperties: coreClient.CompositeMapper = { +export const QueryBasedAlertRuleTemplateProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorWithAlertsProperties", + className: "QueryBasedAlertRuleTemplateProperties", modelProperties: { - dataTypes: { - serializedName: "dataTypes", + query: { + serializedName: "query", type: { - name: "Composite", - className: "AlertsDataTypeOfDataConnector" + name: "String" } - } - } - } -}; - -export const AlertsDataTypeOfDataConnector: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AlertsDataTypeOfDataConnector", - modelProperties: { - alerts: { - serializedName: "alerts", + }, + severity: { + serializedName: "severity", + type: { + name: "String" + } + }, + version: { + serializedName: "version", + type: { + name: "String" + } + }, + customDetails: { + serializedName: "customDetails", + type: { + name: "Dictionary", + value: { type: { name: "String" } } + } + }, + entityMappings: { + serializedName: "entityMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityMapping" + } + } + } + }, + alertDetailsOverride: { + serializedName: "alertDetailsOverride", type: { name: "Composite", - className: "DataConnectorDataTypeCommon" + className: "AlertDetailsOverride" + } + }, + eventGroupingSettings: { + serializedName: "eventGroupingSettings", + type: { + name: "Composite", + className: "EventGroupingSettings" + } + }, + sentinelEntitiesMappings: { + serializedName: "sentinelEntitiesMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } } } } } }; -export const DataConnectorDataTypeCommon: coreClient.CompositeMapper = { +export const EntityMapping: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DataConnectorDataTypeCommon", + className: "EntityMapping", modelProperties: { - state: { - serializedName: "state", - required: true, + entityType: { + serializedName: "entityType", type: { name: "String" } + }, + fieldMappings: { + serializedName: "fieldMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FieldMapping" + } + } + } } } } }; -export const MstiDataConnectorDataTypes: coreClient.CompositeMapper = { +export const FieldMapping: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MstiDataConnectorDataTypes", + className: "FieldMapping", modelProperties: { - bingSafetyPhishingURL: { - serializedName: "bingSafetyPhishingURL", + identifier: { + serializedName: "identifier", type: { - name: "Composite", - className: "MstiDataConnectorDataTypesBingSafetyPhishingURL" + name: "String" } }, - microsoftEmergingThreatFeed: { - serializedName: "microsoftEmergingThreatFeed", + columnName: { + serializedName: "columnName", type: { - name: "Composite", - className: "MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed" + name: "String" } } } } }; -export const MTPDataConnectorDataTypes: coreClient.CompositeMapper = { +export const AlertDetailsOverride: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MTPDataConnectorDataTypes", + className: "AlertDetailsOverride", modelProperties: { - incidents: { - serializedName: "incidents", + alertDisplayNameFormat: { + serializedName: "alertDisplayNameFormat", type: { - name: "Composite", - className: "MTPDataConnectorDataTypesIncidents" + name: "String" } - } - } - } -}; - -export const AwsCloudTrailDataConnectorDataTypes: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AwsCloudTrailDataConnectorDataTypes", - modelProperties: { - logs: { - serializedName: "logs", + }, + alertDescriptionFormat: { + serializedName: "alertDescriptionFormat", type: { - name: "Composite", - className: "AwsCloudTrailDataConnectorDataTypesLogs" + name: "String" + } + }, + alertTacticsColumnName: { + serializedName: "alertTacticsColumnName", + type: { + name: "String" + } + }, + alertSeverityColumnName: { + serializedName: "alertSeverityColumnName", + type: { + name: "String" + } + }, + alertDynamicProperties: { + serializedName: "alertDynamicProperties", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AlertPropertyMapping" + } + } } } } } }; -export const AwsS3DataConnectorDataTypes: coreClient.CompositeMapper = { +export const AlertPropertyMapping: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AwsS3DataConnectorDataTypes", + className: "AlertPropertyMapping", modelProperties: { - logs: { - serializedName: "logs", + alertProperty: { + serializedName: "alertProperty", type: { - name: "Composite", - className: "AwsS3DataConnectorDataTypesLogs" + name: "String" + } + }, + value: { + serializedName: "value", + type: { + name: "String" } } } } }; -export const Dynamics365DataConnectorDataTypes: coreClient.CompositeMapper = { +export const EventGroupingSettings: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Dynamics365DataConnectorDataTypes", + className: "EventGroupingSettings", modelProperties: { - dynamics365CdsActivities: { - serializedName: "dynamics365CdsActivities", + aggregationKind: { + serializedName: "aggregationKind", type: { - name: "Composite", - className: "Dynamics365DataConnectorDataTypesDynamics365CdsActivities" + name: "String" } } } } }; -export const Office365ProjectConnectorDataTypes: coreClient.CompositeMapper = { +export const SentinelEntityMapping: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Office365ProjectConnectorDataTypes", + className: "SentinelEntityMapping", modelProperties: { - logs: { - serializedName: "logs", + columnName: { + serializedName: "columnName", type: { - name: "Composite", - className: "Office365ProjectConnectorDataTypesLogs" + name: "String" } } } } }; -export const OfficePowerBIConnectorDataTypes: coreClient.CompositeMapper = { +export const FusionSourceSettings: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OfficePowerBIConnectorDataTypes", + className: "FusionSourceSettings", modelProperties: { - logs: { - serializedName: "logs", + enabled: { + serializedName: "enabled", + required: true, type: { - name: "Composite", - className: "OfficePowerBIConnectorDataTypesLogs" + name: "Boolean" + } + }, + sourceName: { + serializedName: "sourceName", + required: true, + type: { + name: "String" + } + }, + sourceSubTypes: { + serializedName: "sourceSubTypes", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionSourceSubTypeSetting" + } + } } } } } }; -export const OfficeDataConnectorDataTypes: coreClient.CompositeMapper = { +export const FusionSourceSubTypeSetting: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OfficeDataConnectorDataTypes", + className: "FusionSourceSubTypeSetting", modelProperties: { - exchange: { - serializedName: "exchange", + enabled: { + serializedName: "enabled", + required: true, type: { - name: "Composite", - className: "OfficeDataConnectorDataTypesExchange" + name: "Boolean" } }, - sharePoint: { - serializedName: "sharePoint", + sourceSubTypeName: { + serializedName: "sourceSubTypeName", + required: true, type: { - name: "Composite", - className: "OfficeDataConnectorDataTypesSharePoint" + name: "String" } }, - teams: { - serializedName: "teams", + sourceSubTypeDisplayName: { + serializedName: "sourceSubTypeDisplayName", + readOnly: true, + type: { + name: "String" + } + }, + severityFilters: { + serializedName: "severityFilters", type: { name: "Composite", - className: "OfficeDataConnectorDataTypesTeams" + className: "FusionSubTypeSeverityFilter" } } } } }; -export const TIDataConnectorDataTypes: coreClient.CompositeMapper = { +export const FusionSubTypeSeverityFilter: coreClient.CompositeMapper = { type: { name: "Composite", - className: "TIDataConnectorDataTypes", + className: "FusionSubTypeSeverityFilter", modelProperties: { - indicators: { - serializedName: "indicators", + isSupported: { + serializedName: "isSupported", + readOnly: true, type: { - name: "Composite", - className: "TIDataConnectorDataTypesIndicators" + name: "Boolean" + } + }, + filters: { + serializedName: "filters", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "FusionSubTypeSeverityFiltersItem" + } + } } } } } }; -export const TiTaxiiDataConnectorDataTypes: coreClient.CompositeMapper = { +export const FusionSubTypeSeverityFiltersItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "TiTaxiiDataConnectorDataTypes", + className: "FusionSubTypeSeverityFiltersItem", modelProperties: { - taxiiClient: { - serializedName: "taxiiClient", + severity: { + serializedName: "severity", + required: true, type: { - name: "Composite", - className: "TiTaxiiDataConnectorDataTypesTaxiiClient" + name: "String" + } + }, + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" } } } } }; -export const CodelessUiConnectorConfigProperties: coreClient.CompositeMapper = { +export const FusionScenarioExclusionPattern: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessUiConnectorConfigProperties", + className: "FusionScenarioExclusionPattern", modelProperties: { - title: { - serializedName: "title", - required: true, - type: { - name: "String" - } - }, - publisher: { - serializedName: "publisher", + exclusionPattern: { + serializedName: "exclusionPattern", required: true, type: { name: "String" } }, - descriptionMarkdown: { - serializedName: "descriptionMarkdown", + dateAddedInUTC: { + serializedName: "dateAddedInUTC", required: true, type: { name: "String" } - }, - customImage: { - serializedName: "customImage", - type: { - name: "String" - } - }, - graphQueriesTableName: { - serializedName: "graphQueriesTableName", + } + } + } +}; + +export const FusionTemplateSourceSetting: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FusionTemplateSourceSetting", + modelProperties: { + sourceName: { + serializedName: "sourceName", required: true, type: { name: "String" } }, - graphQueries: { - serializedName: "graphQueries", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesGraphQueriesItem" - } - } - } - }, - sampleQueries: { - serializedName: "sampleQueries", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesSampleQueriesItem" - } - } - } - }, - dataTypes: { - serializedName: "dataTypes", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesDataTypesItem" - } - } - } - }, - connectivityCriteria: { - serializedName: "connectivityCriteria", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: - "CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem" - } - } - } - }, - availability: { - serializedName: "availability", - type: { - name: "Composite", - className: "Availability" - } - }, - permissions: { - serializedName: "permissions", - type: { - name: "Composite", - className: "Permissions" - } - }, - instructionSteps: { - serializedName: "instructionSteps", - required: true, + sourceSubTypes: { + serializedName: "sourceSubTypes", type: { name: "Sequence", element: { type: { name: "Composite", - className: - "CodelessUiConnectorConfigPropertiesInstructionStepsItem" + className: "FusionTemplateSourceSubType" } } } @@ -5302,88 +5643,99 @@ export const CodelessUiConnectorConfigProperties: coreClient.CompositeMapper = { } }; -export const GraphQueries: coreClient.CompositeMapper = { +export const FusionTemplateSourceSubType: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GraphQueries", + className: "FusionTemplateSourceSubType", modelProperties: { - metricName: { - serializedName: "metricName", + sourceSubTypeName: { + serializedName: "sourceSubTypeName", + required: true, type: { name: "String" } }, - legend: { - serializedName: "legend", + sourceSubTypeDisplayName: { + serializedName: "sourceSubTypeDisplayName", + readOnly: true, type: { name: "String" } }, - baseQuery: { - serializedName: "baseQuery", + severityFilter: { + serializedName: "severityFilter", type: { - name: "String" + name: "Composite", + className: "FusionTemplateSubTypeSeverityFilter" } } } } }; -export const SampleQueries: coreClient.CompositeMapper = { +export const FusionTemplateSubTypeSeverityFilter: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SampleQueries", + className: "FusionTemplateSubTypeSeverityFilter", modelProperties: { - description: { - serializedName: "description", + isSupported: { + serializedName: "isSupported", + required: true, type: { - name: "String" + name: "Boolean" } }, - query: { - serializedName: "query", + severityFilters: { + serializedName: "severityFilters", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const LastDataReceivedDataType: coreClient.CompositeMapper = { +export const MicrosoftSecurityIncidentCreationAlertRuleCommonProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "LastDataReceivedDataType", + className: "MicrosoftSecurityIncidentCreationAlertRuleCommonProperties", modelProperties: { - name: { - serializedName: "name", + displayNamesFilter: { + serializedName: "displayNamesFilter", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - lastDataReceivedQuery: { - serializedName: "lastDataReceivedQuery", + displayNamesExcludeFilter: { + serializedName: "displayNamesExcludeFilter", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } - } - } - } -}; - -export const ConnectivityCriteria: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ConnectivityCriteria", - modelProperties: { - type: { - serializedName: "type", + }, + productFilter: { + serializedName: "productFilter", + required: true, type: { name: "String" } }, - value: { - serializedName: "value", + severitiesFilter: { + serializedName: "severitiesFilter", type: { name: "Sequence", element: { @@ -5397,54 +5749,91 @@ export const ConnectivityCriteria: coreClient.CompositeMapper = { } }; -export const Availability: coreClient.CompositeMapper = { +export const IncidentConfiguration: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Availability", + className: "IncidentConfiguration", modelProperties: { - status: { - defaultValue: 1, - isConstant: true, - serializedName: "status", + createIncident: { + serializedName: "createIncident", + required: true, type: { - name: "Number" + name: "Boolean" } }, - isPreview: { - serializedName: "isPreview", + groupingConfiguration: { + serializedName: "groupingConfiguration", type: { - name: "Boolean" + name: "Composite", + className: "GroupingConfiguration" } } } } }; -export const Permissions: coreClient.CompositeMapper = { +export const GroupingConfiguration: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Permissions", + className: "GroupingConfiguration", modelProperties: { - resourceProvider: { - serializedName: "resourceProvider", + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + }, + reopenClosedIncident: { + serializedName: "reopenClosedIncident", + required: true, + type: { + name: "Boolean" + } + }, + lookbackDuration: { + serializedName: "lookbackDuration", + required: true, + type: { + name: "TimeSpan" + } + }, + matchingMethod: { + serializedName: "matchingMethod", + required: true, + type: { + name: "String" + } + }, + groupByEntities: { + serializedName: "groupByEntities", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "PermissionsResourceProviderItem" + name: "String" } } } }, - customs: { - serializedName: "customs", + groupByAlertDetails: { + serializedName: "groupByAlertDetails", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "PermissionsCustomsItem" + name: "String" + } + } + } + }, + groupByCustomDetails: { + serializedName: "groupByCustomDetails", + type: { + name: "Sequence", + element: { + type: { + name: "String" } } } @@ -5453,86 +5842,105 @@ export const Permissions: coreClient.CompositeMapper = { } }; -export const ResourceProvider: coreClient.CompositeMapper = { +export const ScheduledAlertRuleCommonProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ResourceProvider", + className: "ScheduledAlertRuleCommonProperties", modelProperties: { - provider: { - serializedName: "provider", + query: { + serializedName: "query", type: { name: "String" } }, - permissionsDisplayText: { - serializedName: "permissionsDisplayText", + queryFrequency: { + serializedName: "queryFrequency", type: { - name: "String" + name: "TimeSpan" } }, - providerDisplayName: { - serializedName: "providerDisplayName", + queryPeriod: { + serializedName: "queryPeriod", type: { - name: "String" + name: "TimeSpan" } }, - scope: { - serializedName: "scope", + severity: { + serializedName: "severity", type: { name: "String" } }, - requiredPermissions: { - serializedName: "requiredPermissions", + triggerOperator: { + serializedName: "triggerOperator", + type: { + name: "Enum", + allowedValues: ["GreaterThan", "LessThan", "Equal", "NotEqual"] + } + }, + triggerThreshold: { + serializedName: "triggerThreshold", + type: { + name: "Number" + } + }, + eventGroupingSettings: { + serializedName: "eventGroupingSettings", type: { name: "Composite", - className: "RequiredPermissions" + className: "EventGroupingSettings" } - } - } - } -}; - -export const RequiredPermissions: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "RequiredPermissions", - modelProperties: { - action: { - serializedName: "action", + }, + customDetails: { + serializedName: "customDetails", type: { - name: "Boolean" + name: "Dictionary", + value: { type: { name: "String" } } } }, - write: { - serializedName: "write", + entityMappings: { + serializedName: "entityMappings", type: { - name: "Boolean" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityMapping" + } + } } }, - read: { - serializedName: "read", + alertDetailsOverride: { + serializedName: "alertDetailsOverride", type: { - name: "Boolean" + name: "Composite", + className: "AlertDetailsOverride" } }, - delete: { - serializedName: "delete", + sentinelEntitiesMappings: { + serializedName: "sentinelEntitiesMappings", type: { - name: "Boolean" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } } } } } }; -export const CustomsPermission: coreClient.CompositeMapper = { +export const AddIncidentTaskActionProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CustomsPermission", + className: "AddIncidentTaskActionProperties", modelProperties: { - name: { - serializedName: "name", + title: { + serializedName: "title", + required: true, type: { name: "String" } @@ -5547,31 +5955,29 @@ export const CustomsPermission: coreClient.CompositeMapper = { } }; -export const InstructionSteps: coreClient.CompositeMapper = { +export const AutomationRuleBooleanCondition: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InstructionSteps", + className: "AutomationRuleBooleanCondition", modelProperties: { - title: { - serializedName: "title", - type: { - name: "String" - } - }, - description: { - serializedName: "description", + operator: { + serializedName: "operator", type: { name: "String" } }, - instructions: { - serializedName: "instructions", + innerConditions: { + constraints: { + MinItems: 2, + MaxItems: 10 + }, + serializedName: "innerConditions", type: { name: "Sequence", element: { type: { name: "Composite", - className: "InstructionStepsInstructionsItem" + className: "AutomationRuleCondition" } } } @@ -5580,396 +5986,415 @@ export const InstructionSteps: coreClient.CompositeMapper = { } }; -export const ConnectorInstructionModelBase: coreClient.CompositeMapper = { +export const IncidentPropertiesAction: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ConnectorInstructionModelBase", + className: "IncidentPropertiesAction", modelProperties: { - parameters: { - serializedName: "parameters", + severity: { + serializedName: "severity", type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "String" } }, - type: { - serializedName: "type", - required: true, + status: { + serializedName: "status", type: { name: "String" } - } - } - } -}; - -export const CodelessConnectorPollingConfigProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "CodelessConnectorPollingConfigProperties", - modelProperties: { - isActive: { - serializedName: "isActive", + }, + classification: { + serializedName: "classification", type: { - name: "Boolean" + name: "String" } }, - auth: { - serializedName: "auth", + classificationReason: { + serializedName: "classificationReason", type: { - name: "Composite", - className: "CodelessConnectorPollingAuthProperties" + name: "String" } }, - request: { - serializedName: "request", + classificationComment: { + serializedName: "classificationComment", type: { - name: "Composite", - className: "CodelessConnectorPollingRequestProperties" + name: "String" } }, - paging: { - serializedName: "paging", + owner: { + serializedName: "owner", type: { name: "Composite", - className: "CodelessConnectorPollingPagingProperties" + className: "IncidentOwnerInfo" } }, - response: { - serializedName: "response", + labels: { + serializedName: "labels", type: { - name: "Composite", - className: "CodelessConnectorPollingResponseProperties" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "IncidentLabel" + } + } } } } } }; -export const CodelessConnectorPollingAuthProperties: coreClient.CompositeMapper = { +export const AutomationRulePropertyArrayChangedValuesCondition: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessConnectorPollingAuthProperties", + className: "AutomationRulePropertyArrayChangedValuesCondition", modelProperties: { - authType: { - serializedName: "authType", - required: true, + arrayType: { + serializedName: "arrayType", type: { name: "String" } }, - apiKeyName: { - serializedName: "apiKeyName", + changeType: { + serializedName: "changeType", type: { name: "String" } - }, - apiKeyIdentifier: { - serializedName: "apiKeyIdentifier", + } + } + } +}; + +export const AutomationRulePropertyArrayValuesCondition: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AutomationRulePropertyArrayValuesCondition", + modelProperties: { + arrayType: { + serializedName: "arrayType", type: { name: "String" } }, - isApiKeyInPostPayload: { - serializedName: "isApiKeyInPostPayload", + arrayConditionType: { + serializedName: "arrayConditionType", type: { name: "String" } }, - flowName: { - serializedName: "flowName", + itemConditions: { + constraints: { + MaxItems: 10 + }, + serializedName: "itemConditions", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AutomationRuleCondition" + } + } } - }, - tokenEndpoint: { - serializedName: "tokenEndpoint", + } + } + } +}; + +export const AutomationRulePropertyValuesChangedCondition: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AutomationRulePropertyValuesChangedCondition", + modelProperties: { + propertyName: { + serializedName: "propertyName", type: { name: "String" } }, - authorizationEndpoint: { - serializedName: "authorizationEndpoint", + changeType: { + serializedName: "changeType", type: { name: "String" } }, - authorizationEndpointQueryParameters: { - serializedName: "authorizationEndpointQueryParameters", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - }, - redirectionEndpoint: { - serializedName: "redirectionEndpoint", + operator: { + serializedName: "operator", type: { name: "String" } }, - tokenEndpointHeaders: { - serializedName: "tokenEndpointHeaders", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - }, - tokenEndpointQueryParameters: { - serializedName: "tokenEndpointQueryParameters", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - }, - isClientSecretInHeader: { - serializedName: "isClientSecretInHeader", - type: { - name: "Boolean" - } - }, - scope: { - serializedName: "scope", + propertyValues: { + serializedName: "propertyValues", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const CodelessConnectorPollingRequestProperties: coreClient.CompositeMapper = { +export const AutomationRulePropertyValuesCondition: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessConnectorPollingRequestProperties", + className: "AutomationRulePropertyValuesCondition", modelProperties: { - apiEndpoint: { - serializedName: "apiEndpoint", - required: true, + propertyName: { + serializedName: "propertyName", type: { name: "String" } }, - rateLimitQps: { - serializedName: "rateLimitQps", + operator: { + serializedName: "operator", type: { - name: "Number" + name: "String" } }, - queryWindowInMin: { - serializedName: "queryWindowInMin", - required: true, + propertyValues: { + serializedName: "propertyValues", type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "String" + } + } } - }, - httpMethod: { - serializedName: "httpMethod", + } + } + } +}; + +export const PlaybookActionProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "PlaybookActionProperties", + modelProperties: { + logicAppResourceId: { + serializedName: "logicAppResourceId", required: true, type: { name: "String" } }, - queryTimeFormat: { - serializedName: "queryTimeFormat", - required: true, + tenantId: { + serializedName: "tenantId", type: { - name: "String" + name: "Uuid" } - }, - retryCount: { - serializedName: "retryCount", + } + } + } +}; + +export const EntityQueryItemProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityQueryItemProperties", + modelProperties: { + dataTypes: { + serializedName: "dataTypes", type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityQueryItemPropertiesDataTypesItem" + } + } } }, - timeoutInSeconds: { - serializedName: "timeoutInSeconds", + inputEntityType: { + serializedName: "inputEntityType", type: { - name: "Number" + name: "String" } }, - headers: { - serializedName: "headers", + requiredInputFieldsSets: { + serializedName: "requiredInputFieldsSets", type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "Sequence", + element: { + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } } }, - queryParameters: { - serializedName: "queryParameters", + entitiesFilter: { + serializedName: "entitiesFilter", type: { name: "Dictionary", value: { type: { name: "any" } } } - }, - queryParametersTemplate: { - serializedName: "queryParametersTemplate", + } + } + } +}; + +export const EntityQueryItemPropertiesDataTypesItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "EntityQueryItemPropertiesDataTypesItem", + modelProperties: { + dataType: { + serializedName: "dataType", type: { name: "String" } - }, - startTimeAttributeName: { - serializedName: "startTimeAttributeName", + } + } + } +}; + +export const InsightQueryItemPropertiesTableQuery: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "InsightQueryItemPropertiesTableQuery", + modelProperties: { + columnsDefinitions: { + serializedName: "columnsDefinitions", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: + "InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem" + } + } } }, - endTimeAttributeName: { - serializedName: "endTimeAttributeName", + queriesDefinitions: { + serializedName: "queriesDefinitions", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: + "InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem" + } + } } } } } }; -export const CodelessConnectorPollingPagingProperties: coreClient.CompositeMapper = { +export const InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessConnectorPollingPagingProperties", + className: "InsightQueryItemPropertiesTableQueryColumnsDefinitionsItem", modelProperties: { - pagingType: { - serializedName: "pagingType", - required: true, + header: { + serializedName: "header", type: { name: "String" } }, - nextPageParaName: { - serializedName: "nextPageParaName", - type: { - name: "String" - } - }, - nextPageTokenJsonPath: { - serializedName: "nextPageTokenJsonPath", - type: { - name: "String" - } - }, - pageCountAttributePath: { - serializedName: "pageCountAttributePath", + outputType: { + serializedName: "outputType", type: { name: "String" } }, - pageTotalCountAttributePath: { - serializedName: "pageTotalCountAttributePath", + supportDeepLink: { + serializedName: "supportDeepLink", type: { - name: "String" + name: "Boolean" } - }, - pageTimeStampAttributePath: { - serializedName: "pageTimeStampAttributePath", + } + } + } +}; + +export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "InsightQueryItemPropertiesTableQueryQueriesDefinitionsItem", + modelProperties: { + filter: { + serializedName: "filter", type: { name: "String" } }, - searchTheLatestTimeStampFromEventsList: { - serializedName: "searchTheLatestTimeStampFromEventsList", + summarize: { + serializedName: "summarize", type: { name: "String" } }, - pageSizeParaName: { - serializedName: "pageSizeParaName", + project: { + serializedName: "project", type: { name: "String" } }, - pageSize: { - serializedName: "pageSize", + linkColumnsDefinitions: { + serializedName: "linkColumnsDefinitions", type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: + "InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem" + } + } } } } } }; -export const CodelessConnectorPollingResponseProperties: coreClient.CompositeMapper = { +export const InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessConnectorPollingResponseProperties", + className: + "InsightQueryItemPropertiesTableQueryQueriesDefinitionsPropertiesItemsItem", modelProperties: { - eventsJsonPaths: { - serializedName: "eventsJsonPaths", - required: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - successStatusJsonPath: { - serializedName: "successStatusJsonPath", + projectedName: { + serializedName: "projectedName", type: { name: "String" } }, - successStatusValue: { - serializedName: "successStatusValue", + query: { + serializedName: "Query", type: { name: "String" } - }, - isGzipCompressed: { - serializedName: "isGzipCompressed", - type: { - name: "Boolean" - } } } } }; -export const ThreatIntelligence: coreClient.CompositeMapper = { +export const InsightQueryItemPropertiesAdditionalQuery: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligence", + className: "InsightQueryItemPropertiesAdditionalQuery", modelProperties: { - confidence: { - serializedName: "confidence", - readOnly: true, - type: { - name: "Number" - } - }, - providerName: { - serializedName: "providerName", - readOnly: true, - type: { - name: "String" - } - }, - reportLink: { - serializedName: "reportLink", - readOnly: true, - type: { - name: "String" - } - }, - threatDescription: { - serializedName: "threatDescription", - readOnly: true, - type: { - name: "String" - } - }, - threatName: { - serializedName: "threatName", - readOnly: true, + query: { + serializedName: "query", type: { name: "String" } }, - threatType: { - serializedName: "threatType", - readOnly: true, + text: { + serializedName: "text", type: { name: "String" } @@ -5978,56 +6403,19 @@ export const ThreatIntelligence: coreClient.CompositeMapper = { } }; -export const GeoLocation: coreClient.CompositeMapper = { +export const InsightQueryItemPropertiesDefaultTimeRange: coreClient.CompositeMapper = { type: { name: "Composite", - className: "GeoLocation", + className: "InsightQueryItemPropertiesDefaultTimeRange", modelProperties: { - asn: { - serializedName: "asn", - readOnly: true, - type: { - name: "Number" - } - }, - city: { - serializedName: "city", - readOnly: true, - type: { - name: "String" - } - }, - countryCode: { - serializedName: "countryCode", - readOnly: true, - type: { - name: "String" - } - }, - countryName: { - serializedName: "countryName", - readOnly: true, + beforeRange: { + serializedName: "beforeRange", type: { name: "String" } }, - latitude: { - serializedName: "latitude", - readOnly: true, - type: { - name: "Number" - } - }, - longitude: { - serializedName: "longitude", - readOnly: true, - type: { - name: "Number" - } - }, - state: { - serializedName: "state", - readOnly: true, + afterRange: { + serializedName: "afterRange", type: { name: "String" } @@ -6036,14 +6424,13 @@ export const GeoLocation: coreClient.CompositeMapper = { } }; -export const ResourceWithEtag: coreClient.CompositeMapper = { +export const InsightQueryItemPropertiesReferenceTimeRange: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ResourceWithEtag", + className: "InsightQueryItemPropertiesReferenceTimeRange", modelProperties: { - ...Resource.type.modelProperties, - etag: { - serializedName: "etag", + beforeRange: { + serializedName: "beforeRange", type: { name: "String" } @@ -6052,21 +6439,13 @@ export const ResourceWithEtag: coreClient.CompositeMapper = { } }; -export const AlertRuleTemplate: coreClient.CompositeMapper = { - serializedName: "AlertRuleTemplate", +export const ActivityEntityQueriesPropertiesQueryDefinitions: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AlertRuleTemplate", - uberParent: "Resource", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "ActivityEntityQueriesPropertiesQueryDefinitions", modelProperties: { - ...Resource.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + query: { + serializedName: "query", type: { name: "String" } @@ -6075,21 +6454,19 @@ export const AlertRuleTemplate: coreClient.CompositeMapper = { } }; -export const Entity: coreClient.CompositeMapper = { - serializedName: "Entity", +export const ActivityEntityQueryTemplatePropertiesQueryDefinitions: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Entity", - uberParent: "Resource", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "ActivityEntityQueryTemplatePropertiesQueryDefinitions", modelProperties: { - ...Resource.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + query: { + serializedName: "query", + type: { + name: "String" + } + }, + summarizeBy: { + serializedName: "summarizeBy", type: { name: "String" } @@ -6098,21 +6475,13 @@ export const Entity: coreClient.CompositeMapper = { } }; -export const EntityQueryTemplate: coreClient.CompositeMapper = { - serializedName: "EntityQueryTemplate", +export const DataTypeDefinitions: coreClient.CompositeMapper = { type: { name: "Composite", - className: "EntityQueryTemplate", - uberParent: "Resource", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "DataTypeDefinitions", modelProperties: { - ...Resource.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + dataType: { + serializedName: "dataType", type: { name: "String" } @@ -6121,140 +6490,84 @@ export const EntityQueryTemplate: coreClient.CompositeMapper = { } }; -export const FileImport: coreClient.CompositeMapper = { +export const TeamProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FileImport", + className: "TeamProperties", modelProperties: { - ...Resource.type.modelProperties, - ingestionMode: { - serializedName: "properties.ingestionMode", + teamName: { + serializedName: "teamName", + required: true, type: { name: "String" } }, - contentType: { - serializedName: "properties.contentType", + teamDescription: { + serializedName: "teamDescription", type: { name: "String" } }, - createdTimeUTC: { - serializedName: "properties.createdTimeUTC", - readOnly: true, - type: { - name: "DateTime" - } - }, - errorFile: { - serializedName: "properties.errorFile", - type: { - name: "Composite", - className: "FileMetadata" - } - }, - errorsPreview: { - serializedName: "properties.errorsPreview", - readOnly: true, + groupIds: { + serializedName: "groupIds", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "ValidationError" + name: "Uuid" } } } }, - importFile: { - serializedName: "properties.importFile", - type: { - name: "Composite", - className: "FileMetadata" - } - }, - ingestedRecordCount: { - serializedName: "properties.ingestedRecordCount", - readOnly: true, - type: { - name: "Number" - } - }, - source: { - serializedName: "properties.source", - type: { - name: "String" - } - }, - state: { - serializedName: "properties.state", - readOnly: true, - type: { - name: "String" - } - }, - totalRecordCount: { - serializedName: "properties.totalRecordCount", - readOnly: true, - type: { - name: "Number" - } - }, - validRecordCount: { - serializedName: "properties.validRecordCount", - readOnly: true, - type: { - name: "Number" - } - }, - filesValidUntilTimeUTC: { - serializedName: "properties.filesValidUntilTimeUTC", - readOnly: true, - type: { - name: "DateTime" - } - }, - importValidUntilTimeUTC: { - serializedName: "properties.importValidUntilTimeUTC", - readOnly: true, + memberIds: { + serializedName: "memberIds", type: { - name: "DateTime" + name: "Sequence", + element: { + type: { + name: "Uuid" + } + } } } } } }; -export const OfficeConsent: coreClient.CompositeMapper = { +export const SecurityMLAnalyticsSettingsDataSource: coreClient.CompositeMapper = { type: { name: "Composite", - className: "OfficeConsent", + className: "SecurityMLAnalyticsSettingsDataSource", modelProperties: { - ...Resource.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + connectorId: { + serializedName: "connectorId", type: { name: "String" } }, - consentId: { - serializedName: "properties.consentId", + dataTypes: { + serializedName: "dataTypes", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const ActionResponseProperties: coreClient.CompositeMapper = { +export const DataConnectorTenantId: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActionResponseProperties", + className: "DataConnectorTenantId", modelProperties: { - ...ActionPropertiesBase.type.modelProperties, - workflowId: { - serializedName: "workflowId", + tenantId: { + serializedName: "tenantId", + required: true, type: { name: "String" } @@ -6263,460 +6576,525 @@ export const ActionResponseProperties: coreClient.CompositeMapper = { } }; -export const ActionRequestProperties: coreClient.CompositeMapper = { +export const DataConnectorWithAlertsProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActionRequestProperties", + className: "DataConnectorWithAlertsProperties", modelProperties: { - ...ActionPropertiesBase.type.modelProperties, - triggerUri: { - serializedName: "triggerUri", - required: true, + dataTypes: { + serializedName: "dataTypes", type: { - name: "String" + name: "Composite", + className: "AlertsDataTypeOfDataConnector" } } } } }; -export const BooleanConditionProperties: coreClient.CompositeMapper = { - serializedName: "Boolean", +export const AlertsDataTypeOfDataConnector: coreClient.CompositeMapper = { type: { name: "Composite", - className: "BooleanConditionProperties", - uberParent: "AutomationRuleCondition", - polymorphicDiscriminator: - AutomationRuleCondition.type.polymorphicDiscriminator, + className: "AlertsDataTypeOfDataConnector", modelProperties: { - ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + alerts: { + serializedName: "alerts", type: { name: "Composite", - className: "AutomationRuleBooleanCondition" + className: "DataConnectorDataTypeCommon" } } } } }; -export const PropertyArrayChangedConditionProperties: coreClient.CompositeMapper = { - serializedName: "PropertyArrayChanged", +export const DataConnectorDataTypeCommon: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PropertyArrayChangedConditionProperties", - uberParent: "AutomationRuleCondition", - polymorphicDiscriminator: - AutomationRuleCondition.type.polymorphicDiscriminator, + className: "DataConnectorDataTypeCommon", modelProperties: { - ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + state: { + serializedName: "state", + required: true, type: { - name: "Composite", - className: "AutomationRulePropertyArrayChangedValuesCondition" + name: "String" } } } } }; -export const PropertyArrayConditionProperties: coreClient.CompositeMapper = { - serializedName: "PropertyArray", +export const MstiDataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PropertyArrayConditionProperties", - uberParent: "AutomationRuleCondition", - polymorphicDiscriminator: - AutomationRuleCondition.type.polymorphicDiscriminator, + className: "MstiDataConnectorDataTypes", modelProperties: { - ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + microsoftEmergingThreatFeed: { + serializedName: "microsoftEmergingThreatFeed", type: { name: "Composite", - className: "AutomationRulePropertyArrayValuesCondition" + className: "MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed" } } } } }; -export const PropertyChangedConditionProperties: coreClient.CompositeMapper = { - serializedName: "PropertyChanged", +export const MTPDataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PropertyChangedConditionProperties", - uberParent: "AutomationRuleCondition", - polymorphicDiscriminator: - AutomationRuleCondition.type.polymorphicDiscriminator, + className: "MTPDataConnectorDataTypes", modelProperties: { - ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + incidents: { + serializedName: "incidents", type: { name: "Composite", - className: "AutomationRulePropertyValuesChangedCondition" + className: "MTPDataConnectorDataTypesIncidents" + } + }, + alerts: { + serializedName: "alerts", + type: { + name: "Composite", + className: "MTPDataConnectorDataTypesAlerts" } } } } }; -export const PropertyConditionProperties: coreClient.CompositeMapper = { - serializedName: "Property", +export const MtpFilteredProviders: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PropertyConditionProperties", - uberParent: "AutomationRuleCondition", - polymorphicDiscriminator: - AutomationRuleCondition.type.polymorphicDiscriminator, + className: "MtpFilteredProviders", modelProperties: { - ...AutomationRuleCondition.type.modelProperties, - conditionProperties: { - serializedName: "conditionProperties", + alerts: { + serializedName: "alerts", + required: true, type: { - name: "Composite", - className: "AutomationRulePropertyValuesCondition" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const AutomationRuleModifyPropertiesAction: coreClient.CompositeMapper = { - serializedName: "ModifyProperties", +export const AwsCloudTrailDataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRuleModifyPropertiesAction", - uberParent: "AutomationRuleAction", - polymorphicDiscriminator: - AutomationRuleAction.type.polymorphicDiscriminator, + className: "AwsCloudTrailDataConnectorDataTypes", modelProperties: { - ...AutomationRuleAction.type.modelProperties, - actionConfiguration: { - serializedName: "actionConfiguration", + logs: { + serializedName: "logs", type: { name: "Composite", - className: "IncidentPropertiesAction" + className: "AwsCloudTrailDataConnectorDataTypesLogs" } } } } }; -export const AutomationRuleRunPlaybookAction: coreClient.CompositeMapper = { - serializedName: "RunPlaybook", +export const AwsS3DataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AutomationRuleRunPlaybookAction", - uberParent: "AutomationRuleAction", - polymorphicDiscriminator: - AutomationRuleAction.type.polymorphicDiscriminator, + className: "AwsS3DataConnectorDataTypes", modelProperties: { - ...AutomationRuleAction.type.modelProperties, - actionConfiguration: { - serializedName: "actionConfiguration", + logs: { + serializedName: "logs", type: { name: "Composite", - className: "PlaybookActionProperties" + className: "AwsS3DataConnectorDataTypesLogs" } } } } }; -export const ActivityTimelineItem: coreClient.CompositeMapper = { - serializedName: "Activity", +export const GCPAuthProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActivityTimelineItem", - uberParent: "EntityTimelineItem", - polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, + className: "GCPAuthProperties", modelProperties: { - ...EntityTimelineItem.type.modelProperties, - queryId: { - serializedName: "queryId", + serviceAccountEmail: { + serializedName: "serviceAccountEmail", required: true, type: { name: "String" } }, - bucketStartTimeUTC: { - serializedName: "bucketStartTimeUTC", + projectNumber: { + serializedName: "projectNumber", required: true, type: { - name: "DateTime" + name: "String" } }, - bucketEndTimeUTC: { - serializedName: "bucketEndTimeUTC", - required: true, - type: { - name: "DateTime" - } - }, - firstActivityTimeUTC: { - serializedName: "firstActivityTimeUTC", + workloadIdentityProviderId: { + serializedName: "workloadIdentityProviderId", required: true, type: { - name: "DateTime" - } - }, - lastActivityTimeUTC: { - serializedName: "lastActivityTimeUTC", - required: true, - type: { - name: "DateTime" + name: "String" } - }, - content: { - serializedName: "content", + } + } + } +}; + +export const GCPRequestProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "GCPRequestProperties", + modelProperties: { + projectId: { + serializedName: "projectId", required: true, type: { name: "String" } }, - title: { - serializedName: "title", + subscriptionNames: { + serializedName: "subscriptionNames", required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const BookmarkTimelineItem: coreClient.CompositeMapper = { - serializedName: "Bookmark", +export const DCRConfiguration: coreClient.CompositeMapper = { type: { name: "Composite", - className: "BookmarkTimelineItem", - uberParent: "EntityTimelineItem", - polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, + className: "DCRConfiguration", modelProperties: { - ...EntityTimelineItem.type.modelProperties, - azureResourceId: { - serializedName: "azureResourceId", + dataCollectionEndpoint: { + serializedName: "dataCollectionEndpoint", required: true, type: { name: "String" } }, - displayName: { - serializedName: "displayName", + dataCollectionRuleImmutableId: { + serializedName: "dataCollectionRuleImmutableId", + required: true, type: { name: "String" } }, - notes: { - serializedName: "notes", + streamName: { + serializedName: "streamName", + required: true, type: { name: "String" } - }, - endTimeUtc: { - serializedName: "endTimeUtc", - type: { - name: "DateTime" - } - }, - startTimeUtc: { - serializedName: "startTimeUtc", + } + } + } +}; + +export const Dynamics365DataConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Dynamics365DataConnectorDataTypes", + modelProperties: { + dynamics365CdsActivities: { + serializedName: "dynamics365CdsActivities", type: { - name: "DateTime" + name: "Composite", + className: "Dynamics365DataConnectorDataTypesDynamics365CdsActivities" } - }, - eventTime: { - serializedName: "eventTime", + } + } + } +}; + +export const MicrosoftPurviewInformationProtectionConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionConnectorDataTypes", + modelProperties: { + logs: { + serializedName: "logs", type: { - name: "DateTime" + name: "Composite", + className: + "MicrosoftPurviewInformationProtectionConnectorDataTypesLogs" } - }, - createdBy: { - serializedName: "createdBy", + } + } + } +}; + +export const Office365ProjectConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypes", + modelProperties: { + logs: { + serializedName: "logs", type: { name: "Composite", - className: "UserInfo" + className: "Office365ProjectConnectorDataTypesLogs" } - }, - labels: { - serializedName: "labels", + } + } + } +}; + +export const OfficePowerBIConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypes", + modelProperties: { + logs: { + serializedName: "logs", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Composite", + className: "OfficePowerBIConnectorDataTypesLogs" } } } } }; -export const AnomalyTimelineItem: coreClient.CompositeMapper = { - serializedName: "Anomaly", +export const OfficeDataConnectorDataTypes: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AnomalyTimelineItem", - uberParent: "EntityTimelineItem", - polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, + className: "OfficeDataConnectorDataTypes", modelProperties: { - ...EntityTimelineItem.type.modelProperties, - azureResourceId: { - serializedName: "azureResourceId", - required: true, + exchange: { + serializedName: "exchange", type: { - name: "String" + name: "Composite", + className: "OfficeDataConnectorDataTypesExchange" } }, - productName: { - serializedName: "productName", + sharePoint: { + serializedName: "sharePoint", type: { - name: "String" + name: "Composite", + className: "OfficeDataConnectorDataTypesSharePoint" } }, - description: { - serializedName: "description", + teams: { + serializedName: "teams", type: { - name: "String" + name: "Composite", + className: "OfficeDataConnectorDataTypesTeams" } - }, - displayName: { - serializedName: "displayName", - required: true, + } + } + } +}; + +export const TIDataConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TIDataConnectorDataTypes", + modelProperties: { + indicators: { + serializedName: "indicators", type: { - name: "String" + name: "Composite", + className: "TIDataConnectorDataTypesIndicators" } - }, - endTimeUtc: { - serializedName: "endTimeUtc", + } + } + } +}; + +export const TiTaxiiDataConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TiTaxiiDataConnectorDataTypes", + modelProperties: { + taxiiClient: { + serializedName: "taxiiClient", + type: { + name: "Composite", + className: "TiTaxiiDataConnectorDataTypesTaxiiClient" + } + } + } + } +}; + +export const CodelessUiConnectorConfigProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigProperties", + modelProperties: { + title: { + serializedName: "title", required: true, type: { - name: "DateTime" + name: "String" } }, - startTimeUtc: { - serializedName: "startTimeUtc", + publisher: { + serializedName: "publisher", required: true, type: { - name: "DateTime" + name: "String" } }, - timeGenerated: { - serializedName: "timeGenerated", + descriptionMarkdown: { + serializedName: "descriptionMarkdown", required: true, type: { - name: "DateTime" + name: "String" } }, - vendor: { - serializedName: "vendor", + customImage: { + serializedName: "customImage", type: { name: "String" } }, - intent: { - serializedName: "intent", + graphQueriesTableName: { + serializedName: "graphQueriesTableName", + required: true, type: { name: "String" } }, - techniques: { - serializedName: "techniques", + graphQueries: { + serializedName: "graphQueries", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesGraphQueriesItem" } } } }, - reasons: { - serializedName: "reasons", + sampleQueries: { + serializedName: "sampleQueries", + required: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesSampleQueriesItem" } } } - } - } - } -}; - -export const SecurityAlertTimelineItem: coreClient.CompositeMapper = { - serializedName: "SecurityAlert", - type: { - name: "Composite", - className: "SecurityAlertTimelineItem", - uberParent: "EntityTimelineItem", - polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, - modelProperties: { - ...EntityTimelineItem.type.modelProperties, - azureResourceId: { - serializedName: "azureResourceId", + }, + dataTypes: { + serializedName: "dataTypes", required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesDataTypesItem" + } + } } }, - productName: { - serializedName: "productName", + connectivityCriteria: { + serializedName: "connectivityCriteria", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: + "CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem" + } + } } }, - description: { - serializedName: "description", + availability: { + serializedName: "availability", type: { - name: "String" + name: "Composite", + className: "Availability" } }, - displayName: { - serializedName: "displayName", - required: true, + permissions: { + serializedName: "permissions", type: { - name: "String" + name: "Composite", + className: "Permissions" } }, - severity: { - serializedName: "severity", + instructionSteps: { + serializedName: "instructionSteps", required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: + "CodelessUiConnectorConfigPropertiesInstructionStepsItem" + } + } + } + } + } + } +}; + +export const GraphQueries: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "GraphQueries", + modelProperties: { + metricName: { + serializedName: "metricName", type: { name: "String" } }, - endTimeUtc: { - serializedName: "endTimeUtc", - required: true, + legend: { + serializedName: "legend", type: { - name: "DateTime" + name: "String" } }, - startTimeUtc: { - serializedName: "startTimeUtc", - required: true, + baseQuery: { + serializedName: "baseQuery", type: { - name: "DateTime" + name: "String" } - }, - timeGenerated: { - serializedName: "timeGenerated", - required: true, + } + } + } +}; + +export const SampleQueries: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "SampleQueries", + modelProperties: { + description: { + serializedName: "description", type: { - name: "DateTime" + name: "String" } }, - alertType: { - serializedName: "alertType", - required: true, + query: { + serializedName: "query", type: { name: "String" } @@ -6725,224 +7103,228 @@ export const SecurityAlertTimelineItem: coreClient.CompositeMapper = { } }; -export const InsightQueryItem: coreClient.CompositeMapper = { - serializedName: "Insight", +export const LastDataReceivedDataType: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InsightQueryItem", - uberParent: "EntityQueryItem", - polymorphicDiscriminator: EntityQueryItem.type.polymorphicDiscriminator, + className: "LastDataReceivedDataType", modelProperties: { - ...EntityQueryItem.type.modelProperties, - properties: { - serializedName: "properties", + name: { + serializedName: "name", type: { - name: "Composite", - className: "InsightQueryItemProperties" + name: "String" + } + }, + lastDataReceivedQuery: { + serializedName: "lastDataReceivedQuery", + type: { + name: "String" } } } } }; -export const SecurityAlertProperties: coreClient.CompositeMapper = { +export const ConnectivityCriteria: coreClient.CompositeMapper = { type: { name: "Composite", - className: "SecurityAlertProperties", + className: "ConnectivityCriteria", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - alertDisplayName: { - serializedName: "alertDisplayName", - readOnly: true, + type: { + serializedName: "type", type: { name: "String" } }, - alertType: { - serializedName: "alertType", - readOnly: true, + value: { + serializedName: "value", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } - }, - compromisedEntity: { - serializedName: "compromisedEntity", - readOnly: true, + } + } + } +}; + +export const Availability: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Availability", + modelProperties: { + status: { + defaultValue: 1, + isConstant: true, + serializedName: "status", type: { - name: "String" + name: "Number" } }, - confidenceLevel: { - serializedName: "confidenceLevel", - readOnly: true, + isPreview: { + serializedName: "isPreview", type: { - name: "String" + name: "Boolean" } - }, - confidenceReasons: { - serializedName: "confidenceReasons", - readOnly: true, + } + } + } +}; + +export const Permissions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Permissions", + modelProperties: { + resourceProvider: { + serializedName: "resourceProvider", type: { name: "Sequence", element: { type: { name: "Composite", - className: "SecurityAlertPropertiesConfidenceReasonsItem" + className: "PermissionsResourceProviderItem" } } } }, - confidenceScore: { - serializedName: "confidenceScore", - readOnly: true, + customs: { + serializedName: "customs", type: { - name: "Number" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "PermissionsCustomsItem" + } + } } - }, - confidenceScoreStatus: { - serializedName: "confidenceScoreStatus", - readOnly: true, + } + } + } +}; + +export const ResourceProvider: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ResourceProvider", + modelProperties: { + provider: { + serializedName: "provider", type: { name: "String" } }, - description: { - serializedName: "description", - readOnly: true, + permissionsDisplayText: { + serializedName: "permissionsDisplayText", type: { name: "String" } }, - endTimeUtc: { - serializedName: "endTimeUtc", - readOnly: true, - type: { - name: "DateTime" - } - }, - intent: { - serializedName: "intent", - readOnly: true, + providerDisplayName: { + serializedName: "providerDisplayName", type: { name: "String" } }, - providerAlertId: { - serializedName: "providerAlertId", - readOnly: true, + scope: { + serializedName: "scope", type: { name: "String" } }, - processingEndTime: { - serializedName: "processingEndTime", - readOnly: true, - type: { - name: "DateTime" - } - }, - productComponentName: { - serializedName: "productComponentName", - readOnly: true, - type: { - name: "String" - } - }, - productName: { - serializedName: "productName", - readOnly: true, + requiredPermissions: { + serializedName: "requiredPermissions", type: { - name: "String" + name: "Composite", + className: "RequiredPermissions" } - }, - productVersion: { - serializedName: "productVersion", - readOnly: true, + } + } + } +}; + +export const RequiredPermissions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "RequiredPermissions", + modelProperties: { + action: { + serializedName: "action", type: { - name: "String" + name: "Boolean" } }, - remediationSteps: { - serializedName: "remediationSteps", - readOnly: true, + write: { + serializedName: "write", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Boolean" } }, - severity: { - serializedName: "severity", + read: { + serializedName: "read", type: { - name: "String" + name: "Boolean" } }, - startTimeUtc: { - serializedName: "startTimeUtc", - readOnly: true, + delete: { + serializedName: "delete", type: { - name: "DateTime" + name: "Boolean" } - }, - status: { - serializedName: "status", - readOnly: true, + } + } + } +}; + +export const CustomsPermission: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CustomsPermission", + modelProperties: { + name: { + serializedName: "name", type: { name: "String" } }, - systemAlertId: { - serializedName: "systemAlertId", - readOnly: true, + description: { + serializedName: "description", type: { name: "String" } - }, - tactics: { - serializedName: "tactics", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - timeGenerated: { - serializedName: "timeGenerated", - readOnly: true, - type: { - name: "DateTime" - } - }, - vendorName: { - serializedName: "vendorName", - readOnly: true, + } + } + } +}; + +export const InstructionSteps: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "InstructionSteps", + modelProperties: { + title: { + serializedName: "title", type: { name: "String" } }, - alertLink: { - serializedName: "alertLink", - readOnly: true, + description: { + serializedName: "description", type: { name: "String" } }, - resourceIdentifiers: { - serializedName: "resourceIdentifiers", - readOnly: true, + instructions: { + serializedName: "instructions", type: { name: "Sequence", element: { type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "Composite", + className: "InstructionStepsInstructionsItem" } } } @@ -6951,499 +7333,388 @@ export const SecurityAlertProperties: coreClient.CompositeMapper = { } }; -export const HuntingBookmarkProperties: coreClient.CompositeMapper = { +export const ConnectorInstructionModelBase: coreClient.CompositeMapper = { type: { name: "Composite", - className: "HuntingBookmarkProperties", + className: "ConnectorInstructionModelBase", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - created: { - serializedName: "created", - type: { - name: "DateTime" - } - }, - createdBy: { - serializedName: "createdBy", + parameters: { + serializedName: "parameters", type: { - name: "Composite", - className: "UserInfo" + name: "Dictionary", + value: { type: { name: "any" } } } }, - displayName: { - serializedName: "displayName", + type: { + serializedName: "type", required: true, type: { name: "String" } - }, - eventTime: { - serializedName: "eventTime", - type: { - name: "DateTime" - } - }, - labels: { - serializedName: "labels", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - notes: { - serializedName: "notes", - type: { - name: "String" - } - }, - query: { - serializedName: "query", - required: true, + } + } + } +}; + +export const CodelessConnectorPollingConfigProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessConnectorPollingConfigProperties", + modelProperties: { + isActive: { + serializedName: "isActive", type: { - name: "String" + name: "Boolean" } }, - queryResult: { - serializedName: "queryResult", + auth: { + serializedName: "auth", type: { - name: "String" + name: "Composite", + className: "CodelessConnectorPollingAuthProperties" } }, - updated: { - serializedName: "updated", + request: { + serializedName: "request", type: { - name: "DateTime" + name: "Composite", + className: "CodelessConnectorPollingRequestProperties" } }, - updatedBy: { - serializedName: "updatedBy", + paging: { + serializedName: "paging", type: { name: "Composite", - className: "UserInfo" + className: "CodelessConnectorPollingPagingProperties" } }, - incidentInfo: { - serializedName: "incidentInfo", + response: { + serializedName: "response", type: { name: "Composite", - className: "IncidentInfo" + className: "CodelessConnectorPollingResponseProperties" } } } } }; -export const ThreatIntelligenceIndicatorProperties: coreClient.CompositeMapper = { +export const CodelessConnectorPollingAuthProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ThreatIntelligenceIndicatorProperties", + className: "CodelessConnectorPollingAuthProperties", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - threatIntelligenceTags: { - serializedName: "threatIntelligenceTags", + authType: { + serializedName: "authType", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - lastUpdatedTimeUtc: { - serializedName: "lastUpdatedTimeUtc", + apiKeyName: { + serializedName: "apiKeyName", type: { name: "String" } }, - source: { - serializedName: "source", + apiKeyIdentifier: { + serializedName: "apiKeyIdentifier", type: { name: "String" } }, - displayName: { - serializedName: "displayName", + isApiKeyInPostPayload: { + serializedName: "isApiKeyInPostPayload", type: { name: "String" } }, - description: { - serializedName: "description", - type: { - name: "String" - } - }, - indicatorTypes: { - serializedName: "indicatorTypes", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - pattern: { - serializedName: "pattern", + flowName: { + serializedName: "flowName", type: { name: "String" } }, - patternType: { - serializedName: "patternType", + tokenEndpoint: { + serializedName: "tokenEndpoint", type: { name: "String" } }, - patternVersion: { - serializedName: "patternVersion", + authorizationEndpoint: { + serializedName: "authorizationEndpoint", type: { name: "String" } }, - killChainPhases: { - serializedName: "killChainPhases", + authorizationEndpointQueryParameters: { + serializedName: "authorizationEndpointQueryParameters", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceKillChainPhase" - } - } + name: "Dictionary", + value: { type: { name: "any" } } } }, - parsedPattern: { - serializedName: "parsedPattern", + redirectionEndpoint: { + serializedName: "redirectionEndpoint", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceParsedPattern" - } - } + name: "String" } }, - externalId: { - serializedName: "externalId", + tokenEndpointHeaders: { + serializedName: "tokenEndpointHeaders", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } } }, - createdByRef: { - serializedName: "createdByRef", + tokenEndpointQueryParameters: { + serializedName: "tokenEndpointQueryParameters", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } } }, - defanged: { - serializedName: "defanged", + isClientSecretInHeader: { + serializedName: "isClientSecretInHeader", type: { name: "Boolean" } }, - externalLastUpdatedTimeUtc: { - serializedName: "externalLastUpdatedTimeUtc", + scope: { + serializedName: "scope", type: { name: "String" } - }, - externalReferences: { - serializedName: "externalReferences", + } + } + } +}; + +export const CodelessConnectorPollingRequestProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessConnectorPollingRequestProperties", + modelProperties: { + apiEndpoint: { + serializedName: "apiEndpoint", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceExternalReference" - } - } + name: "String" } }, - granularMarkings: { - serializedName: "granularMarkings", + rateLimitQps: { + serializedName: "rateLimitQps", type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligenceGranularMarkingModel" - } - } + name: "Number" } }, - labels: { - serializedName: "labels", + queryWindowInMin: { + serializedName: "queryWindowInMin", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Number" } }, - revoked: { - serializedName: "revoked", + httpMethod: { + serializedName: "httpMethod", + required: true, type: { - name: "Boolean" + name: "String" } }, - confidence: { - serializedName: "confidence", + queryTimeFormat: { + serializedName: "queryTimeFormat", + required: true, type: { - name: "Number" + name: "String" } }, - objectMarkingRefs: { - serializedName: "objectMarkingRefs", + retryCount: { + serializedName: "retryCount", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Number" } }, - language: { - serializedName: "language", + timeoutInSeconds: { + serializedName: "timeoutInSeconds", type: { - name: "String" + name: "Number" } }, - threatTypes: { - serializedName: "threatTypes", + headers: { + serializedName: "headers", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Dictionary", + value: { type: { name: "any" } } } }, - validFrom: { - serializedName: "validFrom", + queryParameters: { + serializedName: "queryParameters", type: { - name: "String" + name: "Dictionary", + value: { type: { name: "any" } } } }, - validUntil: { - serializedName: "validUntil", + queryParametersTemplate: { + serializedName: "queryParametersTemplate", type: { name: "String" } }, - created: { - serializedName: "created", + startTimeAttributeName: { + serializedName: "startTimeAttributeName", type: { name: "String" } }, - modified: { - serializedName: "modified", + endTimeAttributeName: { + serializedName: "endTimeAttributeName", type: { name: "String" } - }, - extensions: { - serializedName: "extensions", - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } } } } }; -export const AccountEntityProperties: coreClient.CompositeMapper = { +export const CodelessConnectorPollingPagingProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AccountEntityProperties", + className: "CodelessConnectorPollingPagingProperties", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - aadTenantId: { - serializedName: "aadTenantId", - readOnly: true, + pagingType: { + serializedName: "pagingType", + required: true, type: { name: "String" } }, - aadUserId: { - serializedName: "aadUserId", - readOnly: true, + nextPageParaName: { + serializedName: "nextPageParaName", type: { name: "String" } }, - accountName: { - serializedName: "accountName", - readOnly: true, + nextPageTokenJsonPath: { + serializedName: "nextPageTokenJsonPath", type: { name: "String" } }, - displayName: { - serializedName: "displayName", - readOnly: true, + pageCountAttributePath: { + serializedName: "pageCountAttributePath", type: { name: "String" } }, - hostEntityId: { - serializedName: "hostEntityId", - readOnly: true, + pageTotalCountAttributePath: { + serializedName: "pageTotalCountAttributePath", type: { name: "String" } }, - isDomainJoined: { - serializedName: "isDomainJoined", - readOnly: true, - type: { - name: "Boolean" - } - }, - ntDomain: { - serializedName: "ntDomain", - readOnly: true, + pageTimeStampAttributePath: { + serializedName: "pageTimeStampAttributePath", type: { name: "String" } }, - objectGuid: { - serializedName: "objectGuid", - readOnly: true, - type: { - name: "Uuid" - } - }, - puid: { - serializedName: "puid", - readOnly: true, + searchTheLatestTimeStampFromEventsList: { + serializedName: "searchTheLatestTimeStampFromEventsList", type: { name: "String" } }, - sid: { - serializedName: "sid", - readOnly: true, + pageSizeParaName: { + serializedName: "pageSizeParaName", type: { name: "String" } }, - upnSuffix: { - serializedName: "upnSuffix", - readOnly: true, + pageSize: { + serializedName: "pageSize", type: { - name: "String" - } - }, - dnsDomain: { - serializedName: "dnsDomain", - readOnly: true, - type: { - name: "String" + name: "Number" } } } } }; -export const AzureResourceEntityProperties: coreClient.CompositeMapper = { +export const CodelessConnectorPollingResponseProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AzureResourceEntityProperties", + className: "CodelessConnectorPollingResponseProperties", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - resourceId: { - serializedName: "resourceId", - readOnly: true, + eventsJsonPaths: { + serializedName: "eventsJsonPaths", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + successStatusJsonPath: { + serializedName: "successStatusJsonPath", type: { name: "String" } }, - subscriptionId: { - serializedName: "subscriptionId", - readOnly: true, + successStatusValue: { + serializedName: "successStatusValue", type: { name: "String" } + }, + isGzipCompressed: { + serializedName: "isGzipCompressed", + type: { + name: "Boolean" + } } } } }; -export const CloudApplicationEntityProperties: coreClient.CompositeMapper = { +export const ConnectorDefinitionsAvailability: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CloudApplicationEntityProperties", + className: "ConnectorDefinitionsAvailability", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - appId: { - serializedName: "appId", - readOnly: true, + status: { + serializedName: "status", type: { name: "Number" } }, - appName: { - serializedName: "appName", - readOnly: true, - type: { - name: "String" - } - }, - instanceName: { - serializedName: "instanceName", - readOnly: true, + isPreview: { + serializedName: "isPreview", type: { - name: "String" + name: "Boolean" } } } } }; -export const DnsEntityProperties: coreClient.CompositeMapper = { +export const ConnectivityCriterion: coreClient.CompositeMapper = { type: { name: "Composite", - className: "DnsEntityProperties", + className: "ConnectivityCriterion", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - dnsServerIpEntityId: { - serializedName: "dnsServerIpEntityId", - readOnly: true, - type: { - name: "String" - } - }, - domainName: { - serializedName: "domainName", - readOnly: true, - type: { - name: "String" - } - }, - hostIpAddressEntityId: { - serializedName: "hostIpAddressEntityId", - readOnly: true, + type: { + serializedName: "type", + required: true, type: { name: "String" } }, - ipAddressEntityIds: { - serializedName: "ipAddressEntityIds", - readOnly: true, + value: { + serializedName: "value", type: { name: "Sequence", element: { @@ -7457,41 +7728,21 @@ export const DnsEntityProperties: coreClient.CompositeMapper = { } }; -export const FileEntityProperties: coreClient.CompositeMapper = { +export const ConnectorDataType: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FileEntityProperties", + className: "ConnectorDataType", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - directory: { - serializedName: "directory", - readOnly: true, - type: { - name: "String" - } - }, - fileHashEntityIds: { - serializedName: "fileHashEntityIds", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - fileName: { - serializedName: "fileName", - readOnly: true, + name: { + serializedName: "name", + required: true, type: { name: "String" } }, - hostEntityId: { - serializedName: "hostEntityId", - readOnly: true, + lastDataReceivedQuery: { + serializedName: "lastDataReceivedQuery", + required: true, type: { name: "String" } @@ -7500,230 +7751,210 @@ export const FileEntityProperties: coreClient.CompositeMapper = { } }; -export const FileHashEntityProperties: coreClient.CompositeMapper = { +export const CustomizableConnectorUiConfig: coreClient.CompositeMapper = { type: { name: "Composite", - className: "FileHashEntityProperties", + className: "CustomizableConnectorUiConfig", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - algorithm: { - serializedName: "algorithm", - readOnly: true, + id: { + serializedName: "id", type: { name: "String" } }, - hashValue: { - serializedName: "hashValue", - readOnly: true, + title: { + serializedName: "title", + required: true, type: { name: "String" } - } - } - } -}; - -export const HostEntityProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "HostEntityProperties", - modelProperties: { - ...EntityCommonProperties.type.modelProperties, - azureID: { - serializedName: "azureID", - readOnly: true, + }, + publisher: { + serializedName: "publisher", + required: true, type: { name: "String" } }, - dnsDomain: { - serializedName: "dnsDomain", - readOnly: true, + descriptionMarkdown: { + serializedName: "descriptionMarkdown", + required: true, type: { name: "String" } }, - hostName: { - serializedName: "hostName", - readOnly: true, + graphQueriesTableName: { + serializedName: "graphQueriesTableName", type: { name: "String" } }, - isDomainJoined: { - serializedName: "isDomainJoined", - readOnly: true, + graphQueries: { + serializedName: "graphQueries", + required: true, type: { - name: "Boolean" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "GraphQuery" + } + } } }, - netBiosName: { - serializedName: "netBiosName", - readOnly: true, + sampleQueries: { + serializedName: "sampleQueries", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SampleQuery" + } + } } }, - ntDomain: { - serializedName: "ntDomain", - readOnly: true, + dataTypes: { + serializedName: "dataTypes", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ConnectorDataType" + } + } } }, - omsAgentID: { - serializedName: "omsAgentID", - readOnly: true, + connectivityCriteria: { + serializedName: "connectivityCriteria", + required: true, type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ConnectivityCriterion" + } + } } }, - osFamily: { - serializedName: "osFamily", + availability: { + serializedName: "availability", type: { - name: "Enum", - allowedValues: ["Linux", "Windows", "Android", "IOS", "Unknown"] + name: "Composite", + className: "ConnectorDefinitionsAvailability" } }, - osVersion: { - serializedName: "osVersion", - readOnly: true, + permissions: { + serializedName: "permissions", + type: { + name: "Composite", + className: "ConnectorDefinitionsPermissions" + } + }, + instructionSteps: { + serializedName: "instructionSteps", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "InstructionStep" + } + } + } + }, + logo: { + serializedName: "logo", type: { name: "String" } + }, + isConnectivityCriteriasMatchSome: { + serializedName: "isConnectivityCriteriasMatchSome", + type: { + name: "Boolean" + } } } } }; -export const IoTDeviceEntityProperties: coreClient.CompositeMapper = { +export const GraphQuery: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IoTDeviceEntityProperties", + className: "GraphQuery", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - deviceId: { - serializedName: "deviceId", - readOnly: true, - type: { - name: "String" - } - }, - deviceName: { - serializedName: "deviceName", - readOnly: true, - type: { - name: "String" - } - }, - source: { - serializedName: "source", - readOnly: true, - type: { - name: "String" - } - }, - iotSecurityAgentId: { - serializedName: "iotSecurityAgentId", - readOnly: true, - type: { - name: "Uuid" - } - }, - deviceType: { - serializedName: "deviceType", - readOnly: true, - type: { - name: "String" - } - }, - vendor: { - serializedName: "vendor", - readOnly: true, - type: { - name: "String" - } - }, - edgeId: { - serializedName: "edgeId", - readOnly: true, - type: { - name: "String" - } - }, - macAddress: { - serializedName: "macAddress", - readOnly: true, - type: { - name: "String" - } - }, - model: { - serializedName: "model", - readOnly: true, - type: { - name: "String" - } - }, - serialNumber: { - serializedName: "serialNumber", - readOnly: true, - type: { - name: "String" - } - }, - firmwareVersion: { - serializedName: "firmwareVersion", - readOnly: true, + metricName: { + serializedName: "metricName", + required: true, type: { name: "String" } }, - operatingSystem: { - serializedName: "operatingSystem", - readOnly: true, + legend: { + serializedName: "legend", + required: true, type: { name: "String" } }, - iotHubEntityId: { - serializedName: "iotHubEntityId", - readOnly: true, + baseQuery: { + serializedName: "baseQuery", + required: true, type: { name: "String" } - }, - hostEntityId: { - serializedName: "hostEntityId", - readOnly: true, + } + } + } +}; + +export const SampleQuery: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "SampleQuery", + modelProperties: { + description: { + serializedName: "description", + required: true, type: { name: "String" } }, - ipAddressEntityId: { - serializedName: "ipAddressEntityId", - readOnly: true, + query: { + serializedName: "query", + required: true, type: { name: "String" } - }, - threatIntelligence: { - serializedName: "threatIntelligence", - readOnly: true, + } + } + } +}; + +export const ConnectorDefinitionsPermissions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ConnectorDefinitionsPermissions", + modelProperties: { + tenant: { + serializedName: "tenant", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "ThreatIntelligence" + name: "String" } } } }, - protocols: { - serializedName: "protocols", - readOnly: true, + licenses: { + serializedName: "licenses", type: { name: "Sequence", element: { @@ -7733,88 +7964,103 @@ export const IoTDeviceEntityProperties: coreClient.CompositeMapper = { } } }, - owners: { - serializedName: "owners", - readOnly: true, + resourceProvider: { + serializedName: "resourceProvider", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ConnectorDefinitionsResourceProvider" } } } }, - nicEntityIds: { - serializedName: "nicEntityIds", - readOnly: true, + customs: { + serializedName: "customs", type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "CustomPermissionDetails" } } } - }, - site: { - serializedName: "site", - readOnly: true, + } + } + } +}; + +export const ConnectorDefinitionsResourceProvider: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ConnectorDefinitionsResourceProvider", + modelProperties: { + provider: { + serializedName: "provider", + required: true, type: { name: "String" } }, - zone: { - serializedName: "zone", - readOnly: true, + permissionsDisplayText: { + serializedName: "permissionsDisplayText", + required: true, type: { name: "String" } }, - sensor: { - serializedName: "sensor", - readOnly: true, + providerDisplayName: { + serializedName: "providerDisplayName", + required: true, type: { name: "String" } }, - deviceSubType: { - serializedName: "deviceSubType", - readOnly: true, + scope: { + serializedName: "scope", + required: true, type: { name: "String" } }, - importance: { - serializedName: "importance", + requiredPermissions: { + serializedName: "requiredPermissions", type: { - name: "String" + name: "Composite", + className: "ResourceProviderRequiredPermissions" } - }, - purdueLayer: { - serializedName: "purdueLayer", - readOnly: true, + } + } + } +}; + +export const ResourceProviderRequiredPermissions: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ResourceProviderRequiredPermissions", + modelProperties: { + read: { + serializedName: "read", type: { - name: "String" + name: "Boolean" } }, - isAuthorized: { - serializedName: "isAuthorized", - readOnly: true, + write: { + serializedName: "write", type: { name: "Boolean" } }, - isProgramming: { - serializedName: "isProgramming", - readOnly: true, + delete: { + serializedName: "delete", type: { name: "Boolean" } }, - isScanner: { - serializedName: "isScanner", - readOnly: true, + action: { + serializedName: "action", type: { name: "Boolean" } @@ -7823,200 +8069,163 @@ export const IoTDeviceEntityProperties: coreClient.CompositeMapper = { } }; -export const IpEntityProperties: coreClient.CompositeMapper = { +export const CustomPermissionDetails: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IpEntityProperties", + className: "CustomPermissionDetails", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - address: { - serializedName: "address", - readOnly: true, + name: { + serializedName: "name", + required: true, type: { name: "String" } }, - location: { - serializedName: "location", - type: { - name: "Composite", - className: "GeoLocation" - } - }, - threatIntelligence: { - serializedName: "threatIntelligence", - readOnly: true, + description: { + serializedName: "description", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "Composite", - className: "ThreatIntelligence" - } - } + name: "String" } } } } }; -export const MailboxEntityProperties: coreClient.CompositeMapper = { +export const InstructionStep: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MailboxEntityProperties", + className: "InstructionStep", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - mailboxPrimaryAddress: { - serializedName: "mailboxPrimaryAddress", - readOnly: true, + title: { + serializedName: "title", type: { name: "String" } }, - displayName: { - serializedName: "displayName", - readOnly: true, + description: { + serializedName: "description", type: { name: "String" } }, - upn: { - serializedName: "upn", - readOnly: true, + instructions: { + serializedName: "instructions", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "InstructionStepDetails" + } + } } }, - externalDirectoryObjectId: { - serializedName: "externalDirectoryObjectId", - readOnly: true, + innerSteps: { + serializedName: "innerSteps", type: { - name: "Uuid" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "InstructionStep" + } + } } } } } }; -export const MailClusterEntityProperties: coreClient.CompositeMapper = { +export const InstructionStepDetails: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MailClusterEntityProperties", + className: "InstructionStepDetails", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - networkMessageIds: { - serializedName: "networkMessageIds", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - countByDeliveryStatus: { - serializedName: "countByDeliveryStatus", - readOnly: true, - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - }, - countByThreatType: { - serializedName: "countByThreatType", - readOnly: true, - type: { - name: "Dictionary", - value: { type: { name: "any" } } - } - }, - countByProtectionStatus: { - serializedName: "countByProtectionStatus", - readOnly: true, + parameters: { + serializedName: "parameters", + required: true, type: { name: "Dictionary", value: { type: { name: "any" } } } }, - threats: { - serializedName: "threats", - readOnly: true, + type: { + serializedName: "type", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } - }, - query: { - serializedName: "query", - readOnly: true, + } + } + } +}; + +export const CustomizableConnectionsConfig: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CustomizableConnectionsConfig", + modelProperties: { + templateSpecName: { + serializedName: "templateSpecName", + required: true, type: { name: "String" } }, - queryTime: { - serializedName: "queryTime", - readOnly: true, + templateSpecVersion: { + serializedName: "templateSpecVersion", + required: true, type: { - name: "DateTime" + name: "String" } - }, - mailCount: { - serializedName: "mailCount", + } + } + } +}; + +export const ThreatIntelligence: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ThreatIntelligence", + modelProperties: { + confidence: { + serializedName: "confidence", readOnly: true, type: { name: "Number" } }, - isVolumeAnomaly: { - serializedName: "isVolumeAnomaly", - readOnly: true, - type: { - name: "Boolean" - } - }, - source: { - serializedName: "source", + providerName: { + serializedName: "providerName", readOnly: true, type: { name: "String" } }, - clusterSourceIdentifier: { - serializedName: "clusterSourceIdentifier", + reportLink: { + serializedName: "reportLink", readOnly: true, type: { name: "String" } }, - clusterSourceType: { - serializedName: "clusterSourceType", + threatDescription: { + serializedName: "threatDescription", readOnly: true, type: { name: "String" } }, - clusterQueryStartTime: { - serializedName: "clusterQueryStartTime", - readOnly: true, - type: { - name: "DateTime" - } - }, - clusterQueryEndTime: { - serializedName: "clusterQueryEndTime", + threatName: { + serializedName: "threatName", readOnly: true, type: { - name: "DateTime" + name: "String" } }, - clusterGroup: { - serializedName: "clusterGroup", + threatType: { + serializedName: "threatType", readOnly: true, type: { name: "String" @@ -8026,708 +8235,590 @@ export const MailClusterEntityProperties: coreClient.CompositeMapper = { } }; -export const MailMessageEntityProperties: coreClient.CompositeMapper = { +export const GeoLocation: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MailMessageEntityProperties", + className: "GeoLocation", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - fileEntityIds: { - serializedName: "fileEntityIds", + asn: { + serializedName: "asn", readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Number" } }, - recipient: { - serializedName: "recipient", + city: { + serializedName: "city", readOnly: true, type: { name: "String" } }, - urls: { - serializedName: "urls", + countryCode: { + serializedName: "countryCode", readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - threats: { - serializedName: "threats", + countryName: { + serializedName: "countryName", readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - p1Sender: { - serializedName: "p1Sender", + latitude: { + serializedName: "latitude", readOnly: true, type: { - name: "String" + name: "Number" } }, - p1SenderDisplayName: { - serializedName: "p1SenderDisplayName", + longitude: { + serializedName: "longitude", readOnly: true, type: { - name: "String" + name: "Number" } }, - p1SenderDomain: { - serializedName: "p1SenderDomain", + state: { + serializedName: "state", readOnly: true, type: { name: "String" } - }, - senderIP: { - serializedName: "senderIP", - readOnly: true, + } + } + } +}; + +export const ResourceWithEtag: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ResourceWithEtag", + modelProperties: { + ...Resource.type.modelProperties, + etag: { + serializedName: "etag", type: { name: "String" } - }, - p2Sender: { - serializedName: "p2Sender", - readOnly: true, + } + } + } +}; + +export const AlertRuleTemplate: coreClient.CompositeMapper = { + serializedName: "AlertRuleTemplate", + type: { + name: "Composite", + className: "AlertRuleTemplate", + uberParent: "Resource", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...Resource.type.modelProperties, + kind: { + serializedName: "kind", + required: true, type: { name: "String" } - }, - p2SenderDisplayName: { - serializedName: "p2SenderDisplayName", + } + } + } +}; + +export const AzureEntityResource: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AzureEntityResource", + modelProperties: { + ...Resource.type.modelProperties, + etag: { + serializedName: "etag", readOnly: true, type: { name: "String" } - }, - p2SenderDomain: { - serializedName: "p2SenderDomain", - readOnly: true, + } + } + } +}; + +export const Entity: coreClient.CompositeMapper = { + serializedName: "Entity", + type: { + name: "Composite", + className: "Entity", + uberParent: "Resource", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...Resource.type.modelProperties, + kind: { + serializedName: "kind", + required: true, type: { name: "String" } - }, - receiveDate: { - serializedName: "receiveDate", - readOnly: true, + } + } + } +}; + +export const EntityQueryTemplate: coreClient.CompositeMapper = { + serializedName: "EntityQueryTemplate", + type: { + name: "Composite", + className: "EntityQueryTemplate", + uberParent: "Resource", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...Resource.type.modelProperties, + kind: { + serializedName: "kind", + required: true, type: { - name: "DateTime" + name: "String" } - }, - networkMessageId: { - serializedName: "networkMessageId", - readOnly: true, + } + } + } +}; + +export const FileImport: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "FileImport", + modelProperties: { + ...Resource.type.modelProperties, + ingestionMode: { + serializedName: "properties.ingestionMode", type: { - name: "Uuid" + name: "String" } }, - internetMessageId: { - serializedName: "internetMessageId", - readOnly: true, + contentType: { + serializedName: "properties.contentType", type: { name: "String" } }, - subject: { - serializedName: "subject", + createdTimeUTC: { + serializedName: "properties.createdTimeUTC", readOnly: true, type: { - name: "String" + name: "DateTime" } }, - language: { - serializedName: "language", - readOnly: true, + errorFile: { + serializedName: "properties.errorFile", type: { - name: "String" + name: "Composite", + className: "FileMetadata" } }, - threatDetectionMethods: { - serializedName: "threatDetectionMethods", + errorsPreview: { + serializedName: "properties.errorsPreview", readOnly: true, type: { name: "Sequence", element: { type: { - name: "String" + name: "Composite", + className: "ValidationError" } } } }, - bodyFingerprintBin1: { - serializedName: "bodyFingerprintBin1", + importFile: { + serializedName: "properties.importFile", type: { - name: "Number" + name: "Composite", + className: "FileMetadata" } }, - bodyFingerprintBin2: { - serializedName: "bodyFingerprintBin2", + ingestedRecordCount: { + serializedName: "properties.ingestedRecordCount", + readOnly: true, type: { name: "Number" } }, - bodyFingerprintBin3: { - serializedName: "bodyFingerprintBin3", + source: { + serializedName: "properties.source", type: { - name: "Number" + name: "String" } }, - bodyFingerprintBin4: { - serializedName: "bodyFingerprintBin4", + state: { + serializedName: "properties.state", + readOnly: true, type: { - name: "Number" + name: "String" } }, - bodyFingerprintBin5: { - serializedName: "bodyFingerprintBin5", + totalRecordCount: { + serializedName: "properties.totalRecordCount", + readOnly: true, type: { name: "Number" } }, - antispamDirection: { - serializedName: "antispamDirection", + validRecordCount: { + serializedName: "properties.validRecordCount", + readOnly: true, type: { - name: "String" + name: "Number" } }, - deliveryAction: { - serializedName: "deliveryAction", + filesValidUntilTimeUTC: { + serializedName: "properties.filesValidUntilTimeUTC", + readOnly: true, type: { - name: "Enum", - allowedValues: [ - "Unknown", - "DeliveredAsSpam", - "Delivered", - "Blocked", - "Replaced" - ] + name: "DateTime" } }, - deliveryLocation: { - serializedName: "deliveryLocation", + importValidUntilTimeUTC: { + serializedName: "properties.importValidUntilTimeUTC", + readOnly: true, type: { - name: "Enum", - allowedValues: [ - "Unknown", - "Inbox", - "JunkFolder", - "DeletedFolder", - "Quarantine", - "External", - "Failed", - "Dropped", - "Forwarded" - ] + name: "DateTime" } } } } }; -export const MalwareEntityProperties: coreClient.CompositeMapper = { +export const OfficeConsent: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MalwareEntityProperties", + className: "OfficeConsent", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - category: { - serializedName: "category", - readOnly: true, + ...Resource.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", type: { name: "String" } }, - fileEntityIds: { - serializedName: "fileEntityIds", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - }, - malwareName: { - serializedName: "malwareName", - readOnly: true, + consentId: { + serializedName: "properties.consentId", type: { name: "String" } - }, - processEntityIds: { - serializedName: "processEntityIds", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } } } } }; -export const ProcessEntityProperties: coreClient.CompositeMapper = { +export const ActionResponseProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ProcessEntityProperties", + className: "ActionResponseProperties", modelProperties: { - ...EntityCommonProperties.type.modelProperties, - accountEntityId: { - serializedName: "accountEntityId", - readOnly: true, + ...ActionPropertiesBase.type.modelProperties, + workflowId: { + serializedName: "workflowId", type: { name: "String" } - }, - commandLine: { - serializedName: "commandLine", - readOnly: true, + } + } + } +}; + +export const ActionRequestProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ActionRequestProperties", + modelProperties: { + ...ActionPropertiesBase.type.modelProperties, + triggerUri: { + serializedName: "triggerUri", + required: true, type: { name: "String" } - }, - creationTimeUtc: { - serializedName: "creationTimeUtc", - readOnly: true, + } + } + } +}; + +export const BooleanConditionProperties: coreClient.CompositeMapper = { + serializedName: "Boolean", + type: { + name: "Composite", + className: "BooleanConditionProperties", + uberParent: "AutomationRuleCondition", + polymorphicDiscriminator: + AutomationRuleCondition.type.polymorphicDiscriminator, + modelProperties: { + ...AutomationRuleCondition.type.modelProperties, + conditionProperties: { + serializedName: "conditionProperties", type: { - name: "DateTime" - } - }, - elevationToken: { - serializedName: "elevationToken", - type: { - name: "Enum", - allowedValues: ["Default", "Full", "Limited"] - } - }, - hostEntityId: { - serializedName: "hostEntityId", - readOnly: true, - type: { - name: "String" - } - }, - hostLogonSessionEntityId: { - serializedName: "hostLogonSessionEntityId", - readOnly: true, - type: { - name: "String" - } - }, - imageFileEntityId: { - serializedName: "imageFileEntityId", - readOnly: true, - type: { - name: "String" - } - }, - parentProcessEntityId: { - serializedName: "parentProcessEntityId", - readOnly: true, - type: { - name: "String" - } - }, - processId: { - serializedName: "processId", - readOnly: true, - type: { - name: "String" + name: "Composite", + className: "AutomationRuleBooleanCondition" } } } } }; -export const RegistryKeyEntityProperties: coreClient.CompositeMapper = { +export const PropertyArrayChangedConditionProperties: coreClient.CompositeMapper = { + serializedName: "PropertyArrayChanged", type: { name: "Composite", - className: "RegistryKeyEntityProperties", + className: "PropertyArrayChangedConditionProperties", + uberParent: "AutomationRuleCondition", + polymorphicDiscriminator: + AutomationRuleCondition.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - hive: { - serializedName: "hive", - readOnly: true, - type: { - name: "String" - } - }, - key: { - serializedName: "key", - readOnly: true, + ...AutomationRuleCondition.type.modelProperties, + conditionProperties: { + serializedName: "conditionProperties", type: { - name: "String" + name: "Composite", + className: "AutomationRulePropertyArrayChangedValuesCondition" } } } } }; -export const RegistryValueEntityProperties: coreClient.CompositeMapper = { +export const PropertyArrayConditionProperties: coreClient.CompositeMapper = { + serializedName: "PropertyArray", type: { name: "Composite", - className: "RegistryValueEntityProperties", + className: "PropertyArrayConditionProperties", + uberParent: "AutomationRuleCondition", + polymorphicDiscriminator: + AutomationRuleCondition.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - keyEntityId: { - serializedName: "keyEntityId", - readOnly: true, - type: { - name: "String" - } - }, - valueData: { - serializedName: "valueData", - readOnly: true, - type: { - name: "String" - } - }, - valueName: { - serializedName: "valueName", - readOnly: true, - type: { - name: "String" - } - }, - valueType: { - serializedName: "valueType", - readOnly: true, + ...AutomationRuleCondition.type.modelProperties, + conditionProperties: { + serializedName: "conditionProperties", type: { - name: "String" + name: "Composite", + className: "AutomationRulePropertyArrayValuesCondition" } } } } }; -export const SecurityGroupEntityProperties: coreClient.CompositeMapper = { +export const PropertyChangedConditionProperties: coreClient.CompositeMapper = { + serializedName: "PropertyChanged", type: { name: "Composite", - className: "SecurityGroupEntityProperties", + className: "PropertyChangedConditionProperties", + uberParent: "AutomationRuleCondition", + polymorphicDiscriminator: + AutomationRuleCondition.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - distinguishedName: { - serializedName: "distinguishedName", - readOnly: true, - type: { - name: "String" - } - }, - objectGuid: { - serializedName: "objectGuid", - readOnly: true, - type: { - name: "Uuid" - } - }, - sid: { - serializedName: "sid", - readOnly: true, + ...AutomationRuleCondition.type.modelProperties, + conditionProperties: { + serializedName: "conditionProperties", type: { - name: "String" + name: "Composite", + className: "AutomationRulePropertyValuesChangedCondition" } } } } }; -export const SubmissionMailEntityProperties: coreClient.CompositeMapper = { +export const PropertyConditionProperties: coreClient.CompositeMapper = { + serializedName: "Property", type: { name: "Composite", - className: "SubmissionMailEntityProperties", + className: "PropertyConditionProperties", + uberParent: "AutomationRuleCondition", + polymorphicDiscriminator: + AutomationRuleCondition.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - networkMessageId: { - serializedName: "networkMessageId", - readOnly: true, - type: { - name: "Uuid" - } - }, - submissionId: { - serializedName: "submissionId", - readOnly: true, - type: { - name: "Uuid" - } - }, - submitter: { - serializedName: "submitter", - readOnly: true, - type: { - name: "String" - } - }, - submissionDate: { - serializedName: "submissionDate", - readOnly: true, - type: { - name: "DateTime" - } - }, - timestamp: { - serializedName: "timestamp", - readOnly: true, - type: { - name: "DateTime" - } - }, - recipient: { - serializedName: "recipient", - readOnly: true, - type: { - name: "String" - } - }, - sender: { - serializedName: "sender", - readOnly: true, - type: { - name: "String" - } - }, - senderIp: { - serializedName: "senderIp", - readOnly: true, - type: { - name: "String" - } - }, - subject: { - serializedName: "subject", - readOnly: true, - type: { - name: "String" - } - }, - reportType: { - serializedName: "reportType", - readOnly: true, + ...AutomationRuleCondition.type.modelProperties, + conditionProperties: { + serializedName: "conditionProperties", type: { - name: "String" + name: "Composite", + className: "AutomationRulePropertyValuesCondition" } } } } }; -export const UrlEntityProperties: coreClient.CompositeMapper = { +export const AutomationRuleAddIncidentTaskAction: coreClient.CompositeMapper = { + serializedName: "AddIncidentTask", type: { name: "Composite", - className: "UrlEntityProperties", + className: "AutomationRuleAddIncidentTaskAction", + uberParent: "AutomationRuleAction", + polymorphicDiscriminator: + AutomationRuleAction.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - url: { - serializedName: "url", - readOnly: true, + ...AutomationRuleAction.type.modelProperties, + actionConfiguration: { + serializedName: "actionConfiguration", type: { - name: "String" + name: "Composite", + className: "AddIncidentTaskActionProperties" } } } } }; -export const NicEntityProperties: coreClient.CompositeMapper = { +export const AutomationRuleModifyPropertiesAction: coreClient.CompositeMapper = { + serializedName: "ModifyProperties", type: { name: "Composite", - className: "NicEntityProperties", + className: "AutomationRuleModifyPropertiesAction", + uberParent: "AutomationRuleAction", + polymorphicDiscriminator: + AutomationRuleAction.type.polymorphicDiscriminator, modelProperties: { - ...EntityCommonProperties.type.modelProperties, - macAddress: { - serializedName: "macAddress", - readOnly: true, - type: { - name: "String" - } - }, - ipAddressEntityId: { - serializedName: "ipAddressEntityId", - readOnly: true, + ...AutomationRuleAction.type.modelProperties, + actionConfiguration: { + serializedName: "actionConfiguration", type: { - name: "String" - } - }, - vlans: { - serializedName: "vlans", - readOnly: true, - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "Composite", + className: "IncidentPropertiesAction" } } } } }; -export const AADCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureActiveDirectory", +export const AutomationRuleRunPlaybookAction: coreClient.CompositeMapper = { + serializedName: "RunPlaybook", type: { name: "Composite", - className: "AADCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", + className: "AutomationRuleRunPlaybookAction", + uberParent: "AutomationRuleAction", polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + AutomationRuleAction.type.polymorphicDiscriminator, modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + ...AutomationRuleAction.type.modelProperties, + actionConfiguration: { + serializedName: "actionConfiguration", type: { - name: "String" + name: "Composite", + className: "PlaybookActionProperties" } } } } }; -export const AatpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureAdvancedThreatProtection", +export const PackageProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AatpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "PackageProperties", modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", - type: { - name: "String" - } - } + ...PackageBaseProperties.type.modelProperties } } }; -export const ASCCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AzureSecurityCenter", +export const ProductPackageProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ASCCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "ProductPackageProperties", modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - subscriptionId: { - serializedName: "properties.subscriptionId", - type: { - name: "String" - } - } + ...PackageBaseProperties.type.modelProperties, + ...ProductPackageAdditionalProperties.type.modelProperties } } }; -export const AwsCloudTrailCheckRequirements: coreClient.CompositeMapper = { - serializedName: "AmazonWebServicesCloudTrail", +export const ProductTemplateProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AwsCloudTrailCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "ProductTemplateProperties", modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties + ...TemplateBaseProperties.type.modelProperties, + ...ProductTemplateAdditionalProperties.type.modelProperties } } }; -export const AwsS3CheckRequirements: coreClient.CompositeMapper = { - serializedName: "AmazonWebServicesS3", +export const TemplateProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AwsS3CheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "TemplateProperties", modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties + ...TemplateBaseProperties.type.modelProperties, + ...TemplateAdditionalProperties.type.modelProperties } } }; -export const Dynamics365CheckRequirements: coreClient.CompositeMapper = { - serializedName: "Dynamics365", +export const ActivityTimelineItem: coreClient.CompositeMapper = { + serializedName: "Activity", type: { name: "Composite", - className: "Dynamics365CheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "ActivityTimelineItem", + uberParent: "EntityTimelineItem", + polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + ...EntityTimelineItem.type.modelProperties, + queryId: { + serializedName: "queryId", + required: true, type: { name: "String" } - } - } - } -}; - -export const McasCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftCloudAppSecurity", - type: { - name: "Composite", - className: "McasCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + bucketStartTimeUTC: { + serializedName: "bucketStartTimeUTC", + required: true, + type: { + name: "DateTime" + } + }, + bucketEndTimeUTC: { + serializedName: "bucketEndTimeUTC", + required: true, + type: { + name: "DateTime" + } + }, + firstActivityTimeUTC: { + serializedName: "firstActivityTimeUTC", + required: true, + type: { + name: "DateTime" + } + }, + lastActivityTimeUTC: { + serializedName: "lastActivityTimeUTC", + required: true, + type: { + name: "DateTime" + } + }, + content: { + serializedName: "content", + required: true, type: { name: "String" } - } - } - } -}; - -export const MdatpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftDefenderAdvancedThreatProtection", - type: { - name: "Composite", - className: "MdatpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + title: { + serializedName: "title", + required: true, type: { name: "String" } @@ -8736,194 +8827,144 @@ export const MdatpCheckRequirements: coreClient.CompositeMapper = { } }; -export const MstiCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftThreatIntelligence", +export const BookmarkTimelineItem: coreClient.CompositeMapper = { + serializedName: "Bookmark", type: { name: "Composite", - className: "MstiCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "BookmarkTimelineItem", + uberParent: "EntityTimelineItem", + polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + ...EntityTimelineItem.type.modelProperties, + azureResourceId: { + serializedName: "azureResourceId", + required: true, type: { name: "String" } - } - } - } -}; - -export const MtpCheckRequirements: coreClient.CompositeMapper = { - serializedName: "MicrosoftThreatProtection", - type: { - name: "Composite", - className: "MtpCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + displayName: { + serializedName: "displayName", + type: { + name: "String" + } + }, + notes: { + serializedName: "notes", type: { name: "String" } + }, + endTimeUtc: { + serializedName: "endTimeUtc", + type: { + name: "DateTime" + } + }, + startTimeUtc: { + serializedName: "startTimeUtc", + type: { + name: "DateTime" + } + }, + eventTime: { + serializedName: "eventTime", + type: { + name: "DateTime" + } + }, + createdBy: { + serializedName: "createdBy", + type: { + name: "Composite", + className: "UserInfo" + } + }, + labels: { + serializedName: "labels", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } } } } }; -export const OfficeATPCheckRequirements: coreClient.CompositeMapper = { - serializedName: "OfficeATP", +export const AnomalyTimelineItem: coreClient.CompositeMapper = { + serializedName: "Anomaly", type: { name: "Composite", - className: "OfficeATPCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + className: "AnomalyTimelineItem", + uberParent: "EntityTimelineItem", + polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + ...EntityTimelineItem.type.modelProperties, + azureResourceId: { + serializedName: "azureResourceId", + required: true, type: { name: "String" } - } - } - } -}; - -export const OfficeIRMCheckRequirements: coreClient.CompositeMapper = { - serializedName: "OfficeIRM", - type: { - name: "Composite", - className: "OfficeIRMCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + productName: { + serializedName: "productName", type: { name: "String" } - } - } - } -}; - -export const Office365ProjectCheckRequirements: coreClient.CompositeMapper = { - serializedName: "Office365Project", - type: { - name: "Composite", - className: "Office365ProjectCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + description: { + serializedName: "description", type: { name: "String" } - } - } - } -}; - -export const OfficePowerBICheckRequirements: coreClient.CompositeMapper = { - serializedName: "OfficePowerBI", - type: { - name: "Composite", - className: "OfficePowerBICheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + displayName: { + serializedName: "displayName", + required: true, type: { name: "String" } - } - } - } -}; - -export const TICheckRequirements: coreClient.CompositeMapper = { - serializedName: "ThreatIntelligence", - type: { - name: "Composite", - className: "TICheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + endTimeUtc: { + serializedName: "endTimeUtc", + required: true, type: { - name: "String" + name: "DateTime" } - } - } - } -}; - -export const TiTaxiiCheckRequirements: coreClient.CompositeMapper = { - serializedName: "ThreatIntelligenceTaxii", - type: { - name: "Composite", - className: "TiTaxiiCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - tenantId: { - serializedName: "properties.tenantId", + }, + startTimeUtc: { + serializedName: "startTimeUtc", + required: true, + type: { + name: "DateTime" + } + }, + timeGenerated: { + serializedName: "timeGenerated", + required: true, + type: { + name: "DateTime" + } + }, + vendor: { + serializedName: "vendor", type: { name: "String" } - } - } - } -}; - -export const IoTCheckRequirements: coreClient.CompositeMapper = { - serializedName: "IOT", - type: { - name: "Composite", - className: "IoTCheckRequirements", - uberParent: "DataConnectorsCheckRequirements", - polymorphicDiscriminator: - DataConnectorsCheckRequirements.type.polymorphicDiscriminator, - modelProperties: { - ...DataConnectorsCheckRequirements.type.modelProperties, - subscriptionId: { - serializedName: "properties.subscriptionId", + }, + intent: { + serializedName: "intent", type: { name: "String" } - } - } - } -}; - -export const AlertRuleTemplateWithMitreProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AlertRuleTemplateWithMitreProperties", - modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, - tactics: { - serializedName: "tactics", + }, + techniques: { + serializedName: "techniques", type: { name: "Sequence", element: { @@ -8933,8 +8974,8 @@ export const AlertRuleTemplateWithMitreProperties: coreClient.CompositeMapper = } } }, - techniques: { - serializedName: "techniques", + reasons: { + serializedName: "reasons", type: { name: "Sequence", element: { @@ -8948,182 +8989,238 @@ export const AlertRuleTemplateWithMitreProperties: coreClient.CompositeMapper = } }; -export const MicrosoftSecurityIncidentCreationAlertRuleTemplateProperties: coreClient.CompositeMapper = { +export const SecurityAlertTimelineItem: coreClient.CompositeMapper = { + serializedName: "SecurityAlert", type: { name: "Composite", - className: "MicrosoftSecurityIncidentCreationAlertRuleTemplateProperties", + className: "SecurityAlertTimelineItem", + uberParent: "EntityTimelineItem", + polymorphicDiscriminator: EntityTimelineItem.type.polymorphicDiscriminator, modelProperties: { - ...AlertRuleTemplatePropertiesBase.type.modelProperties, - displayNamesFilter: { - serializedName: "displayNamesFilter", + ...EntityTimelineItem.type.modelProperties, + azureResourceId: { + serializedName: "azureResourceId", + required: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - displayNamesExcludeFilter: { - serializedName: "displayNamesExcludeFilter", + productName: { + serializedName: "productName", type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - productFilter: { - serializedName: "productFilter", + description: { + serializedName: "description", type: { name: "String" } }, - severitiesFilter: { - serializedName: "severitiesFilter", - type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } - } - } - } - } -}; - -export const NrtAlertRuleTemplateProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "NrtAlertRuleTemplateProperties", - modelProperties: { - ...AlertRuleTemplateWithMitreProperties.type.modelProperties, - ...QueryBasedAlertRuleTemplateProperties.type.modelProperties - } - } -}; - -export const MicrosoftSecurityIncidentCreationAlertRuleProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MicrosoftSecurityIncidentCreationAlertRuleProperties", - modelProperties: { - ...MicrosoftSecurityIncidentCreationAlertRuleCommonProperties.type - .modelProperties, - alertRuleTemplateName: { - serializedName: "alertRuleTemplateName", + displayName: { + serializedName: "displayName", + required: true, type: { name: "String" } }, - description: { - serializedName: "description", + severity: { + serializedName: "severity", + required: true, type: { name: "String" } }, - displayName: { - serializedName: "displayName", + endTimeUtc: { + serializedName: "endTimeUtc", required: true, type: { - name: "String" + name: "DateTime" } }, - enabled: { - serializedName: "enabled", + startTimeUtc: { + serializedName: "startTimeUtc", required: true, type: { - name: "Boolean" + name: "DateTime" } }, - lastModifiedUtc: { - serializedName: "lastModifiedUtc", - readOnly: true, + timeGenerated: { + serializedName: "timeGenerated", + required: true, type: { name: "DateTime" } - } + }, + alertType: { + serializedName: "alertType", + required: true, + type: { + name: "String" + } + }, + intent: { + serializedName: "intent", + readOnly: true, + type: { + name: "String" + } + }, + techniques: { + serializedName: "techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } } } }; -export const ScheduledAlertRuleProperties: coreClient.CompositeMapper = { +export const InsightQueryItem: coreClient.CompositeMapper = { + serializedName: "Insight", type: { name: "Composite", - className: "ScheduledAlertRuleProperties", + className: "InsightQueryItem", + uberParent: "EntityQueryItem", + polymorphicDiscriminator: EntityQueryItem.type.polymorphicDiscriminator, modelProperties: { - ...ScheduledAlertRuleCommonProperties.type.modelProperties, - alertRuleTemplateName: { - serializedName: "alertRuleTemplateName", + ...EntityQueryItem.type.modelProperties, + properties: { + serializedName: "properties", + type: { + name: "Composite", + className: "InsightQueryItemProperties" + } + } + } + } +}; + +export const SecurityAlertProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "SecurityAlertProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + alertDisplayName: { + serializedName: "alertDisplayName", + readOnly: true, type: { name: "String" } }, - templateVersion: { - serializedName: "templateVersion", + alertType: { + serializedName: "alertType", + readOnly: true, + type: { + name: "String" + } + }, + compromisedEntity: { + serializedName: "compromisedEntity", + readOnly: true, + type: { + name: "String" + } + }, + confidenceLevel: { + serializedName: "confidenceLevel", + readOnly: true, + type: { + name: "String" + } + }, + confidenceReasons: { + serializedName: "confidenceReasons", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SecurityAlertPropertiesConfidenceReasonsItem" + } + } + } + }, + confidenceScore: { + serializedName: "confidenceScore", + readOnly: true, + type: { + name: "Number" + } + }, + confidenceScoreStatus: { + serializedName: "confidenceScoreStatus", + readOnly: true, type: { name: "String" } }, description: { serializedName: "description", + readOnly: true, type: { name: "String" } }, - displayName: { - serializedName: "displayName", - required: true, + endTimeUtc: { + serializedName: "endTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + intent: { + serializedName: "intent", + readOnly: true, type: { name: "String" } }, - enabled: { - serializedName: "enabled", - required: true, + providerAlertId: { + serializedName: "providerAlertId", + readOnly: true, type: { - name: "Boolean" + name: "String" } }, - lastModifiedUtc: { - serializedName: "lastModifiedUtc", + processingEndTime: { + serializedName: "processingEndTime", readOnly: true, type: { name: "DateTime" } }, - suppressionDuration: { - serializedName: "suppressionDuration", - required: true, + productComponentName: { + serializedName: "productComponentName", + readOnly: true, type: { - name: "TimeSpan" + name: "String" } }, - suppressionEnabled: { - serializedName: "suppressionEnabled", - required: true, + productName: { + serializedName: "productName", + readOnly: true, type: { - name: "Boolean" + name: "String" } }, - tactics: { - serializedName: "tactics", + productVersion: { + serializedName: "productVersion", + readOnly: true, type: { - name: "Sequence", - element: { - type: { - name: "String" - } - } + name: "String" } }, - techniques: { - serializedName: "techniques", + remediationSteps: { + serializedName: "remediationSteps", + readOnly: true, type: { name: "Sequence", element: { @@ -9133,534 +9230,507 @@ export const ScheduledAlertRuleProperties: coreClient.CompositeMapper = { } } }, - incidentConfiguration: { - serializedName: "incidentConfiguration", + severity: { + serializedName: "severity", type: { - name: "Composite", - className: "IncidentConfiguration" + name: "String" } - } - } - } -}; - -export const InsightQueryItemProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "InsightQueryItemProperties", - modelProperties: { - ...EntityQueryItemProperties.type.modelProperties, - displayName: { - serializedName: "displayName", + }, + startTimeUtc: { + serializedName: "startTimeUtc", + readOnly: true, type: { - name: "String" + name: "DateTime" } }, - description: { - serializedName: "description", + status: { + serializedName: "status", + readOnly: true, type: { name: "String" } }, - baseQuery: { - serializedName: "baseQuery", + systemAlertId: { + serializedName: "systemAlertId", + readOnly: true, type: { name: "String" } }, - tableQuery: { - serializedName: "tableQuery", + tactics: { + serializedName: "tactics", + readOnly: true, type: { - name: "Composite", - className: "InsightQueryItemPropertiesTableQuery" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - chartQuery: { - serializedName: "chartQuery", + timeGenerated: { + serializedName: "timeGenerated", + readOnly: true, type: { - name: "Dictionary", - value: { type: { name: "any" } } + name: "DateTime" } }, - additionalQuery: { - serializedName: "additionalQuery", + vendorName: { + serializedName: "vendorName", + readOnly: true, type: { - name: "Composite", - className: "InsightQueryItemPropertiesAdditionalQuery" + name: "String" } }, - defaultTimeRange: { - serializedName: "defaultTimeRange", + alertLink: { + serializedName: "alertLink", + readOnly: true, type: { - name: "Composite", - className: "InsightQueryItemPropertiesDefaultTimeRange" + name: "String" } }, - referenceTimeRange: { - serializedName: "referenceTimeRange", + resourceIdentifiers: { + serializedName: "resourceIdentifiers", + readOnly: true, type: { - name: "Composite", - className: "InsightQueryItemPropertiesReferenceTimeRange" + name: "Sequence", + element: { + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + } } } } } }; -export const AADCheckRequirementsProperties: coreClient.CompositeMapper = { +export const HuntingBookmarkProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AADCheckRequirementsProperties", + className: "HuntingBookmarkProperties", modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const AatpCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AatpCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const Dynamics365CheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Dynamics365CheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const McasCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "McasCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const MdatpCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MdatpCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const MstiCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MstiCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const MTPCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MTPCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const OfficeATPCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeATPCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const OfficeIRMCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeIRMCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const Office365ProjectCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Office365ProjectCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const OfficePowerBICheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficePowerBICheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const TICheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TICheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const TiTaxiiCheckRequirementsProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TiTaxiiCheckRequirementsProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties - } - } -}; - -export const AADDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AADDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - ...DataConnectorWithAlertsProperties.type.modelProperties - } - } -}; - -export const MstiDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MstiDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + ...EntityCommonProperties.type.modelProperties, + created: { + serializedName: "created", + type: { + name: "DateTime" + } + }, + createdBy: { + serializedName: "createdBy", type: { name: "Composite", - className: "MstiDataConnectorDataTypes" + className: "UserInfo" } - } - } - } -}; - -export const MTPDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MTPDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + }, + displayName: { + serializedName: "displayName", + required: true, + type: { + name: "String" + } + }, + eventTime: { + serializedName: "eventTime", + type: { + name: "DateTime" + } + }, + labels: { + serializedName: "labels", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + notes: { + serializedName: "notes", + type: { + name: "String" + } + }, + query: { + serializedName: "query", + required: true, + type: { + name: "String" + } + }, + queryResult: { + serializedName: "queryResult", + type: { + name: "String" + } + }, + updated: { + serializedName: "updated", + type: { + name: "DateTime" + } + }, + updatedBy: { + serializedName: "updatedBy", type: { name: "Composite", - className: "MTPDataConnectorDataTypes" + className: "UserInfo" } - } - } - } -}; - -export const AatpDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AatpDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - ...DataConnectorWithAlertsProperties.type.modelProperties - } - } -}; - -export const McasDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "McasDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + }, + incidentInfo: { + serializedName: "incidentInfo", type: { name: "Composite", - className: "McasDataConnectorDataTypes" + className: "IncidentInfo" } } } } }; -export const Dynamics365DataConnectorProperties: coreClient.CompositeMapper = { +export const ThreatIntelligenceIndicatorProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Dynamics365DataConnectorProperties", + className: "ThreatIntelligenceIndicatorProperties", modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", - type: { - name: "Composite", - className: "Dynamics365DataConnectorDataTypes" + ...EntityCommonProperties.type.modelProperties, + threatIntelligenceTags: { + serializedName: "threatIntelligenceTags", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } } - } - } - } -}; - -export const OfficeATPDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeATPDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - ...DataConnectorWithAlertsProperties.type.modelProperties - } - } -}; - -export const Office365ProjectDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Office365ProjectDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + }, + lastUpdatedTimeUtc: { + serializedName: "lastUpdatedTimeUtc", type: { - name: "Composite", - className: "Office365ProjectConnectorDataTypes" + name: "String" } - } - } - } -}; - -export const OfficePowerBIDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficePowerBIDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + }, + source: { + serializedName: "source", type: { - name: "Composite", - className: "OfficePowerBIConnectorDataTypes" + name: "String" } - } - } - } -}; - -export const OfficeIRMDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeIRMDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - ...DataConnectorWithAlertsProperties.type.modelProperties - } - } -}; - -export const MdatpDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "MdatpDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - ...DataConnectorWithAlertsProperties.type.modelProperties - } - } -}; - -export const OfficeDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - dataTypes: { - serializedName: "dataTypes", + }, + displayName: { + serializedName: "displayName", type: { - name: "Composite", - className: "OfficeDataConnectorDataTypes" + name: "String" } - } - } - } -}; - -export const TIDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TIDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - tipLookbackPeriod: { - serializedName: "tipLookbackPeriod", - nullable: true, + }, + description: { + serializedName: "description", type: { - name: "DateTime" + name: "String" } }, - dataTypes: { - serializedName: "dataTypes", + indicatorTypes: { + serializedName: "indicatorTypes", type: { - name: "Composite", - className: "TIDataConnectorDataTypes" + name: "Sequence", + element: { + type: { + name: "String" + } + } } - } - } - } -}; - -export const TiTaxiiDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TiTaxiiDataConnectorProperties", - modelProperties: { - ...DataConnectorTenantId.type.modelProperties, - workspaceId: { - serializedName: "workspaceId", + }, + pattern: { + serializedName: "pattern", type: { name: "String" } }, - friendlyName: { - serializedName: "friendlyName", + patternType: { + serializedName: "patternType", type: { name: "String" } }, - taxiiServer: { - serializedName: "taxiiServer", + patternVersion: { + serializedName: "patternVersion", type: { name: "String" } }, - collectionId: { - serializedName: "collectionId", + killChainPhases: { + serializedName: "killChainPhases", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceKillChainPhase" + } + } } }, - userName: { - serializedName: "userName", + parsedPattern: { + serializedName: "parsedPattern", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceParsedPattern" + } + } + } + }, + externalId: { + serializedName: "externalId", type: { name: "String" } }, - password: { - serializedName: "password", + createdByRef: { + serializedName: "createdByRef", type: { name: "String" } }, - taxiiLookbackPeriod: { - serializedName: "taxiiLookbackPeriod", - nullable: true, + defanged: { + serializedName: "defanged", type: { - name: "DateTime" + name: "Boolean" } }, - pollingFrequency: { - serializedName: "pollingFrequency", - required: true, - nullable: true, + externalLastUpdatedTimeUtc: { + serializedName: "externalLastUpdatedTimeUtc", type: { name: "String" } }, - dataTypes: { - serializedName: "dataTypes", + externalReferences: { + serializedName: "externalReferences", type: { - name: "Composite", - className: "TiTaxiiDataConnectorDataTypes" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceExternalReference" + } + } } - } - } - } -}; - -export const ASCDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ASCDataConnectorProperties", - modelProperties: { - ...DataConnectorWithAlertsProperties.type.modelProperties, - subscriptionId: { - serializedName: "subscriptionId", + }, + granularMarkings: { + serializedName: "granularMarkings", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligenceGranularMarkingModel" + } + } } - } - } - } -}; - -export const IoTDataConnectorProperties: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "IoTDataConnectorProperties", - modelProperties: { - ...DataConnectorWithAlertsProperties.type.modelProperties, - subscriptionId: { - serializedName: "subscriptionId", + }, + labels: { + serializedName: "labels", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + revoked: { + serializedName: "revoked", + type: { + name: "Boolean" + } + }, + confidence: { + serializedName: "confidence", + type: { + name: "Number" + } + }, + objectMarkingRefs: { + serializedName: "objectMarkingRefs", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + language: { + serializedName: "language", + type: { + name: "String" + } + }, + threatTypes: { + serializedName: "threatTypes", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + validFrom: { + serializedName: "validFrom", + type: { + name: "String" + } + }, + validUntil: { + serializedName: "validUntil", + type: { + name: "String" + } + }, + created: { + serializedName: "created", + type: { + name: "String" + } + }, + modified: { + serializedName: "modified", + type: { + name: "String" + } + }, + extensions: { + serializedName: "extensions", + type: { + name: "Dictionary", + value: { type: { name: "any" } } } } } } }; -export const McasDataConnectorDataTypes: coreClient.CompositeMapper = { +export const AccountEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "McasDataConnectorDataTypes", + className: "AccountEntityProperties", modelProperties: { - ...AlertsDataTypeOfDataConnector.type.modelProperties, - discoveryLogs: { - serializedName: "discoveryLogs", + ...EntityCommonProperties.type.modelProperties, + aadTenantId: { + serializedName: "aadTenantId", + readOnly: true, type: { - name: "Composite", - className: "DataConnectorDataTypeCommon" + name: "String" + } + }, + aadUserId: { + serializedName: "aadUserId", + readOnly: true, + type: { + name: "String" + } + }, + accountName: { + serializedName: "accountName", + readOnly: true, + type: { + name: "String" + } + }, + displayName: { + serializedName: "displayName", + readOnly: true, + type: { + name: "String" + } + }, + hostEntityId: { + serializedName: "hostEntityId", + readOnly: true, + type: { + name: "String" + } + }, + isDomainJoined: { + serializedName: "isDomainJoined", + readOnly: true, + type: { + name: "Boolean" + } + }, + ntDomain: { + serializedName: "ntDomain", + readOnly: true, + type: { + name: "String" + } + }, + objectGuid: { + serializedName: "objectGuid", + readOnly: true, + type: { + name: "Uuid" + } + }, + puid: { + serializedName: "puid", + readOnly: true, + type: { + name: "String" + } + }, + sid: { + serializedName: "sid", + readOnly: true, + type: { + name: "String" + } + }, + upnSuffix: { + serializedName: "upnSuffix", + readOnly: true, + type: { + name: "String" + } + }, + dnsDomain: { + serializedName: "dnsDomain", + readOnly: true, + type: { + name: "String" } } } } }; -export const MstiDataConnectorDataTypesBingSafetyPhishingURL: coreClient.CompositeMapper = { +export const AzureResourceEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MstiDataConnectorDataTypesBingSafetyPhishingURL", + className: "AzureResourceEntityProperties", modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties, - lookbackPeriod: { - serializedName: "lookbackPeriod", - required: true, + ...EntityCommonProperties.type.modelProperties, + resourceId: { + serializedName: "resourceId", + readOnly: true, + type: { + name: "String" + } + }, + subscriptionId: { + serializedName: "subscriptionId", + readOnly: true, type: { name: "String" } @@ -9669,15 +9739,29 @@ export const MstiDataConnectorDataTypesBingSafetyPhishingURL: coreClient.Composi } }; -export const MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed: coreClient.CompositeMapper = { +export const CloudApplicationEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed", + className: "CloudApplicationEntityProperties", modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties, - lookbackPeriod: { - serializedName: "lookbackPeriod", - required: true, + ...EntityCommonProperties.type.modelProperties, + appId: { + serializedName: "appId", + readOnly: true, + type: { + name: "Number" + } + }, + appName: { + serializedName: "appName", + readOnly: true, + type: { + name: "String" + } + }, + instanceName: { + serializedName: "instanceName", + readOnly: true, type: { name: "String" } @@ -9686,372 +9770,3518 @@ export const MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed: coreClient.C } }; -export const MTPDataConnectorDataTypesIncidents: coreClient.CompositeMapper = { +export const DnsEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "MTPDataConnectorDataTypesIncidents", + className: "DnsEntityProperties", modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + dnsServerIpEntityId: { + serializedName: "dnsServerIpEntityId", + readOnly: true, + type: { + name: "String" + } + }, + domainName: { + serializedName: "domainName", + readOnly: true, + type: { + name: "String" + } + }, + hostIpAddressEntityId: { + serializedName: "hostIpAddressEntityId", + readOnly: true, + type: { + name: "String" + } + }, + ipAddressEntityIds: { + serializedName: "ipAddressEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } } } }; -export const AwsCloudTrailDataConnectorDataTypesLogs: coreClient.CompositeMapper = { +export const FileEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AwsCloudTrailDataConnectorDataTypesLogs", + className: "FileEntityProperties", modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const AwsS3DataConnectorDataTypesLogs: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AwsS3DataConnectorDataTypesLogs", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const Dynamics365DataConnectorDataTypesDynamics365CdsActivities: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Dynamics365DataConnectorDataTypesDynamics365CdsActivities", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const Office365ProjectConnectorDataTypesLogs: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Office365ProjectConnectorDataTypesLogs", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const OfficePowerBIConnectorDataTypesLogs: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficePowerBIConnectorDataTypesLogs", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const OfficeDataConnectorDataTypesExchange: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeDataConnectorDataTypesExchange", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const OfficeDataConnectorDataTypesSharePoint: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeDataConnectorDataTypesSharePoint", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const OfficeDataConnectorDataTypesTeams: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "OfficeDataConnectorDataTypesTeams", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const TIDataConnectorDataTypesIndicators: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TIDataConnectorDataTypesIndicators", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const TiTaxiiDataConnectorDataTypesTaxiiClient: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "TiTaxiiDataConnectorDataTypesTaxiiClient", - modelProperties: { - ...DataConnectorDataTypeCommon.type.modelProperties - } - } -}; - -export const CodelessUiConnectorConfigPropertiesGraphQueriesItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesGraphQueriesItem", - modelProperties: { - ...GraphQueries.type.modelProperties - } - } -}; - -export const CodelessUiConnectorConfigPropertiesSampleQueriesItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesSampleQueriesItem", - modelProperties: { - ...SampleQueries.type.modelProperties - } - } -}; - -export const CodelessUiConnectorConfigPropertiesDataTypesItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesDataTypesItem", - modelProperties: { - ...LastDataReceivedDataType.type.modelProperties - } - } -}; - -export const CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem", - modelProperties: { - ...ConnectivityCriteria.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + directory: { + serializedName: "directory", + readOnly: true, + type: { + name: "String" + } + }, + fileHashEntityIds: { + serializedName: "fileHashEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + fileName: { + serializedName: "fileName", + readOnly: true, + type: { + name: "String" + } + }, + hostEntityId: { + serializedName: "hostEntityId", + readOnly: true, + type: { + name: "String" + } + } } } }; -export const PermissionsResourceProviderItem: coreClient.CompositeMapper = { +export const FileHashEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "PermissionsResourceProviderItem", + className: "FileHashEntityProperties", modelProperties: { - ...ResourceProvider.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + algorithm: { + serializedName: "algorithm", + readOnly: true, + type: { + name: "String" + } + }, + hashValue: { + serializedName: "hashValue", + readOnly: true, + type: { + name: "String" + } + } } } }; -export const Customs: coreClient.CompositeMapper = { +export const HostEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Customs", + className: "HostEntityProperties", modelProperties: { - ...CustomsPermission.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + azureID: { + serializedName: "azureID", + readOnly: true, + type: { + name: "String" + } + }, + dnsDomain: { + serializedName: "dnsDomain", + readOnly: true, + type: { + name: "String" + } + }, + hostName: { + serializedName: "hostName", + readOnly: true, + type: { + name: "String" + } + }, + isDomainJoined: { + serializedName: "isDomainJoined", + readOnly: true, + type: { + name: "Boolean" + } + }, + netBiosName: { + serializedName: "netBiosName", + readOnly: true, + type: { + name: "String" + } + }, + ntDomain: { + serializedName: "ntDomain", + readOnly: true, + type: { + name: "String" + } + }, + omsAgentID: { + serializedName: "omsAgentID", + readOnly: true, + type: { + name: "String" + } + }, + osFamily: { + serializedName: "osFamily", + type: { + name: "Enum", + allowedValues: ["Linux", "Windows", "Android", "IOS", "Unknown"] + } + }, + osVersion: { + serializedName: "osVersion", + readOnly: true, + type: { + name: "String" + } + } } } }; -export const CodelessUiConnectorConfigPropertiesInstructionStepsItem: coreClient.CompositeMapper = { +export const IoTDeviceEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CodelessUiConnectorConfigPropertiesInstructionStepsItem", + className: "IoTDeviceEntityProperties", modelProperties: { - ...InstructionSteps.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + deviceId: { + serializedName: "deviceId", + readOnly: true, + type: { + name: "String" + } + }, + deviceName: { + serializedName: "deviceName", + readOnly: true, + type: { + name: "String" + } + }, + source: { + serializedName: "source", + readOnly: true, + type: { + name: "String" + } + }, + iotSecurityAgentId: { + serializedName: "iotSecurityAgentId", + readOnly: true, + type: { + name: "Uuid" + } + }, + deviceType: { + serializedName: "deviceType", + readOnly: true, + type: { + name: "String" + } + }, + vendor: { + serializedName: "vendor", + readOnly: true, + type: { + name: "String" + } + }, + edgeId: { + serializedName: "edgeId", + readOnly: true, + type: { + name: "String" + } + }, + macAddress: { + serializedName: "macAddress", + readOnly: true, + type: { + name: "String" + } + }, + model: { + serializedName: "model", + readOnly: true, + type: { + name: "String" + } + }, + serialNumber: { + serializedName: "serialNumber", + readOnly: true, + type: { + name: "String" + } + }, + firmwareVersion: { + serializedName: "firmwareVersion", + readOnly: true, + type: { + name: "String" + } + }, + operatingSystem: { + serializedName: "operatingSystem", + readOnly: true, + type: { + name: "String" + } + }, + iotHubEntityId: { + serializedName: "iotHubEntityId", + readOnly: true, + type: { + name: "String" + } + }, + hostEntityId: { + serializedName: "hostEntityId", + readOnly: true, + type: { + name: "String" + } + }, + ipAddressEntityId: { + serializedName: "ipAddressEntityId", + readOnly: true, + type: { + name: "String" + } + }, + threatIntelligence: { + serializedName: "threatIntelligence", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligence" + } + } + } + }, + protocols: { + serializedName: "protocols", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + owners: { + serializedName: "owners", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + nicEntityIds: { + serializedName: "nicEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + site: { + serializedName: "site", + readOnly: true, + type: { + name: "String" + } + }, + zone: { + serializedName: "zone", + readOnly: true, + type: { + name: "String" + } + }, + sensor: { + serializedName: "sensor", + readOnly: true, + type: { + name: "String" + } + }, + deviceSubType: { + serializedName: "deviceSubType", + readOnly: true, + type: { + name: "String" + } + }, + importance: { + serializedName: "importance", + type: { + name: "String" + } + }, + purdueLayer: { + serializedName: "purdueLayer", + readOnly: true, + type: { + name: "String" + } + }, + isAuthorized: { + serializedName: "isAuthorized", + readOnly: true, + type: { + name: "Boolean" + } + }, + isProgramming: { + serializedName: "isProgramming", + readOnly: true, + type: { + name: "Boolean" + } + }, + isScanner: { + serializedName: "isScanner", + readOnly: true, + type: { + name: "Boolean" + } + } } } }; -export const InstructionStepsInstructionsItem: coreClient.CompositeMapper = { +export const IpEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "InstructionStepsInstructionsItem", + className: "IpEntityProperties", modelProperties: { - ...ConnectorInstructionModelBase.type.modelProperties + ...EntityCommonProperties.type.modelProperties, + address: { + serializedName: "address", + readOnly: true, + type: { + name: "String" + } + }, + location: { + serializedName: "location", + type: { + name: "Composite", + className: "GeoLocation" + } + }, + threatIntelligence: { + serializedName: "threatIntelligence", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "ThreatIntelligence" + } + } + } + } } } }; -export const AlertRule: coreClient.CompositeMapper = { - serializedName: "AlertRule", +export const MailboxEntityProperties: coreClient.CompositeMapper = { type: { name: "Composite", - className: "AlertRule", - uberParent: "ResourceWithEtag", + className: "MailboxEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + mailboxPrimaryAddress: { + serializedName: "mailboxPrimaryAddress", + readOnly: true, + type: { + name: "String" + } + }, + displayName: { + serializedName: "displayName", + readOnly: true, + type: { + name: "String" + } + }, + upn: { + serializedName: "upn", + readOnly: true, + type: { + name: "String" + } + }, + externalDirectoryObjectId: { + serializedName: "externalDirectoryObjectId", + readOnly: true, + type: { + name: "Uuid" + } + } + } + } +}; + +export const MailClusterEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MailClusterEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + networkMessageIds: { + serializedName: "networkMessageIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + countByDeliveryStatus: { + serializedName: "countByDeliveryStatus", + readOnly: true, + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + }, + countByThreatType: { + serializedName: "countByThreatType", + readOnly: true, + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + }, + countByProtectionStatus: { + serializedName: "countByProtectionStatus", + readOnly: true, + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + }, + threats: { + serializedName: "threats", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + query: { + serializedName: "query", + readOnly: true, + type: { + name: "String" + } + }, + queryTime: { + serializedName: "queryTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + mailCount: { + serializedName: "mailCount", + readOnly: true, + type: { + name: "Number" + } + }, + isVolumeAnomaly: { + serializedName: "isVolumeAnomaly", + readOnly: true, + type: { + name: "Boolean" + } + }, + source: { + serializedName: "source", + readOnly: true, + type: { + name: "String" + } + }, + clusterSourceIdentifier: { + serializedName: "clusterSourceIdentifier", + readOnly: true, + type: { + name: "String" + } + }, + clusterSourceType: { + serializedName: "clusterSourceType", + readOnly: true, + type: { + name: "String" + } + }, + clusterQueryStartTime: { + serializedName: "clusterQueryStartTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + clusterQueryEndTime: { + serializedName: "clusterQueryEndTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + clusterGroup: { + serializedName: "clusterGroup", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const MailMessageEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MailMessageEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + fileEntityIds: { + serializedName: "fileEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + recipient: { + serializedName: "recipient", + readOnly: true, + type: { + name: "String" + } + }, + urls: { + serializedName: "urls", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + threats: { + serializedName: "threats", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + p1Sender: { + serializedName: "p1Sender", + readOnly: true, + type: { + name: "String" + } + }, + p1SenderDisplayName: { + serializedName: "p1SenderDisplayName", + readOnly: true, + type: { + name: "String" + } + }, + p1SenderDomain: { + serializedName: "p1SenderDomain", + readOnly: true, + type: { + name: "String" + } + }, + senderIP: { + serializedName: "senderIP", + readOnly: true, + type: { + name: "String" + } + }, + p2Sender: { + serializedName: "p2Sender", + readOnly: true, + type: { + name: "String" + } + }, + p2SenderDisplayName: { + serializedName: "p2SenderDisplayName", + readOnly: true, + type: { + name: "String" + } + }, + p2SenderDomain: { + serializedName: "p2SenderDomain", + readOnly: true, + type: { + name: "String" + } + }, + receiveDate: { + serializedName: "receiveDate", + readOnly: true, + type: { + name: "DateTime" + } + }, + networkMessageId: { + serializedName: "networkMessageId", + readOnly: true, + type: { + name: "Uuid" + } + }, + internetMessageId: { + serializedName: "internetMessageId", + readOnly: true, + type: { + name: "String" + } + }, + subject: { + serializedName: "subject", + readOnly: true, + type: { + name: "String" + } + }, + language: { + serializedName: "language", + readOnly: true, + type: { + name: "String" + } + }, + threatDetectionMethods: { + serializedName: "threatDetectionMethods", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + bodyFingerprintBin1: { + serializedName: "bodyFingerprintBin1", + type: { + name: "Number" + } + }, + bodyFingerprintBin2: { + serializedName: "bodyFingerprintBin2", + type: { + name: "Number" + } + }, + bodyFingerprintBin3: { + serializedName: "bodyFingerprintBin3", + type: { + name: "Number" + } + }, + bodyFingerprintBin4: { + serializedName: "bodyFingerprintBin4", + type: { + name: "Number" + } + }, + bodyFingerprintBin5: { + serializedName: "bodyFingerprintBin5", + type: { + name: "Number" + } + }, + antispamDirection: { + serializedName: "antispamDirection", + type: { + name: "String" + } + }, + deliveryAction: { + serializedName: "deliveryAction", + type: { + name: "Enum", + allowedValues: [ + "Unknown", + "DeliveredAsSpam", + "Delivered", + "Blocked", + "Replaced" + ] + } + }, + deliveryLocation: { + serializedName: "deliveryLocation", + type: { + name: "Enum", + allowedValues: [ + "Unknown", + "Inbox", + "JunkFolder", + "DeletedFolder", + "Quarantine", + "External", + "Failed", + "Dropped", + "Forwarded" + ] + } + } + } + } +}; + +export const MalwareEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MalwareEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + category: { + serializedName: "category", + readOnly: true, + type: { + name: "String" + } + }, + fileEntityIds: { + serializedName: "fileEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + malwareName: { + serializedName: "malwareName", + readOnly: true, + type: { + name: "String" + } + }, + processEntityIds: { + serializedName: "processEntityIds", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const ProcessEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ProcessEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + accountEntityId: { + serializedName: "accountEntityId", + readOnly: true, + type: { + name: "String" + } + }, + commandLine: { + serializedName: "commandLine", + readOnly: true, + type: { + name: "String" + } + }, + creationTimeUtc: { + serializedName: "creationTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + elevationToken: { + serializedName: "elevationToken", + type: { + name: "Enum", + allowedValues: ["Default", "Full", "Limited"] + } + }, + hostEntityId: { + serializedName: "hostEntityId", + readOnly: true, + type: { + name: "String" + } + }, + hostLogonSessionEntityId: { + serializedName: "hostLogonSessionEntityId", + readOnly: true, + type: { + name: "String" + } + }, + imageFileEntityId: { + serializedName: "imageFileEntityId", + readOnly: true, + type: { + name: "String" + } + }, + parentProcessEntityId: { + serializedName: "parentProcessEntityId", + readOnly: true, + type: { + name: "String" + } + }, + processId: { + serializedName: "processId", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const RegistryKeyEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "RegistryKeyEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + hive: { + serializedName: "hive", + readOnly: true, + type: { + name: "String" + } + }, + key: { + serializedName: "key", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const RegistryValueEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "RegistryValueEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + keyEntityId: { + serializedName: "keyEntityId", + readOnly: true, + type: { + name: "String" + } + }, + valueData: { + serializedName: "valueData", + readOnly: true, + type: { + name: "String" + } + }, + valueName: { + serializedName: "valueName", + readOnly: true, + type: { + name: "String" + } + }, + valueType: { + serializedName: "valueType", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const SecurityGroupEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "SecurityGroupEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + distinguishedName: { + serializedName: "distinguishedName", + readOnly: true, + type: { + name: "String" + } + }, + objectGuid: { + serializedName: "objectGuid", + readOnly: true, + type: { + name: "Uuid" + } + }, + sid: { + serializedName: "sid", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const SubmissionMailEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "SubmissionMailEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + networkMessageId: { + serializedName: "networkMessageId", + readOnly: true, + type: { + name: "Uuid" + } + }, + submissionId: { + serializedName: "submissionId", + readOnly: true, + type: { + name: "Uuid" + } + }, + submitter: { + serializedName: "submitter", + readOnly: true, + type: { + name: "String" + } + }, + submissionDate: { + serializedName: "submissionDate", + readOnly: true, + type: { + name: "DateTime" + } + }, + timestamp: { + serializedName: "timestamp", + readOnly: true, + type: { + name: "DateTime" + } + }, + recipient: { + serializedName: "recipient", + readOnly: true, + type: { + name: "String" + } + }, + sender: { + serializedName: "sender", + readOnly: true, + type: { + name: "String" + } + }, + senderIp: { + serializedName: "senderIp", + readOnly: true, + type: { + name: "String" + } + }, + subject: { + serializedName: "subject", + readOnly: true, + type: { + name: "String" + } + }, + reportType: { + serializedName: "reportType", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const UrlEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "UrlEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + url: { + serializedName: "url", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const NicEntityProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "NicEntityProperties", + modelProperties: { + ...EntityCommonProperties.type.modelProperties, + macAddress: { + serializedName: "macAddress", + readOnly: true, + type: { + name: "String" + } + }, + ipAddressEntityId: { + serializedName: "ipAddressEntityId", + readOnly: true, + type: { + name: "String" + } + }, + vlans: { + serializedName: "vlans", + readOnly: true, + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const AADCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureActiveDirectory", + type: { + name: "Composite", + className: "AADCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const AatpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureAdvancedThreatProtection", + type: { + name: "Composite", + className: "AatpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const ASCCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AzureSecurityCenter", + type: { + name: "Composite", + className: "ASCCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + subscriptionId: { + serializedName: "properties.subscriptionId", + type: { + name: "String" + } + } + } + } +}; + +export const AwsCloudTrailCheckRequirements: coreClient.CompositeMapper = { + serializedName: "AmazonWebServicesCloudTrail", + type: { + name: "Composite", + className: "AwsCloudTrailCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties + } + } +}; + +export const AwsS3CheckRequirements: coreClient.CompositeMapper = { + serializedName: "AmazonWebServicesS3", + type: { + name: "Composite", + className: "AwsS3CheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties + } + } +}; + +export const Dynamics365CheckRequirements: coreClient.CompositeMapper = { + serializedName: "Dynamics365", + type: { + name: "Composite", + className: "Dynamics365CheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const McasCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftCloudAppSecurity", + type: { + name: "Composite", + className: "McasCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MdatpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftDefenderAdvancedThreatProtection", + type: { + name: "Composite", + className: "MdatpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MstiCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftThreatIntelligence", + type: { + name: "Composite", + className: "MstiCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MtpCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftThreatProtection", + type: { + name: "Composite", + className: "MtpCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficeATPCheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficeATP", + type: { + name: "Composite", + className: "OfficeATPCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficeIRMCheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficeIRM", + type: { + name: "Composite", + className: "OfficeIRMCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const MicrosoftPurviewInformationProtectionCheckRequirements: coreClient.CompositeMapper = { + serializedName: "MicrosoftPurviewInformationProtection", + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const Office365ProjectCheckRequirements: coreClient.CompositeMapper = { + serializedName: "Office365Project", + type: { + name: "Composite", + className: "Office365ProjectCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const OfficePowerBICheckRequirements: coreClient.CompositeMapper = { + serializedName: "OfficePowerBI", + type: { + name: "Composite", + className: "OfficePowerBICheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const TICheckRequirements: coreClient.CompositeMapper = { + serializedName: "ThreatIntelligence", + type: { + name: "Composite", + className: "TICheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const TiTaxiiCheckRequirements: coreClient.CompositeMapper = { + serializedName: "ThreatIntelligenceTaxii", + type: { + name: "Composite", + className: "TiTaxiiCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + } + } + } +}; + +export const IoTCheckRequirements: coreClient.CompositeMapper = { + serializedName: "IOT", + type: { + name: "Composite", + className: "IoTCheckRequirements", + uberParent: "DataConnectorsCheckRequirements", + polymorphicDiscriminator: + DataConnectorsCheckRequirements.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorsCheckRequirements.type.modelProperties, + subscriptionId: { + serializedName: "properties.subscriptionId", + type: { + name: "String" + } + } + } + } +}; + +export const AlertRuleTemplateWithMitreProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AlertRuleTemplateWithMitreProperties", + modelProperties: { + ...AlertRuleTemplatePropertiesBase.type.modelProperties, + tactics: { + serializedName: "tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const MicrosoftSecurityIncidentCreationAlertRuleTemplateProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MicrosoftSecurityIncidentCreationAlertRuleTemplateProperties", + modelProperties: { + ...AlertRuleTemplatePropertiesBase.type.modelProperties, + displayNamesFilter: { + serializedName: "displayNamesFilter", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + displayNamesExcludeFilter: { + serializedName: "displayNamesExcludeFilter", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + productFilter: { + serializedName: "productFilter", + type: { + name: "String" + } + }, + severitiesFilter: { + serializedName: "severitiesFilter", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const NrtAlertRuleTemplateProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "NrtAlertRuleTemplateProperties", + modelProperties: { + ...AlertRuleTemplateWithMitreProperties.type.modelProperties, + ...QueryBasedAlertRuleTemplateProperties.type.modelProperties + } + } +}; + +export const MicrosoftSecurityIncidentCreationAlertRuleProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MicrosoftSecurityIncidentCreationAlertRuleProperties", + modelProperties: { + ...MicrosoftSecurityIncidentCreationAlertRuleCommonProperties.type + .modelProperties, + alertRuleTemplateName: { + serializedName: "alertRuleTemplateName", + type: { + name: "String" + } + }, + description: { + serializedName: "description", + type: { + name: "String" + } + }, + displayName: { + serializedName: "displayName", + required: true, + type: { + name: "String" + } + }, + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + }, + lastModifiedUtc: { + serializedName: "lastModifiedUtc", + readOnly: true, + type: { + name: "DateTime" + } + } + } + } +}; + +export const ScheduledAlertRuleProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ScheduledAlertRuleProperties", + modelProperties: { + ...ScheduledAlertRuleCommonProperties.type.modelProperties, + alertRuleTemplateName: { + serializedName: "alertRuleTemplateName", + type: { + name: "String" + } + }, + templateVersion: { + serializedName: "templateVersion", + type: { + name: "String" + } + }, + description: { + serializedName: "description", + type: { + name: "String" + } + }, + displayName: { + serializedName: "displayName", + required: true, + type: { + name: "String" + } + }, + enabled: { + serializedName: "enabled", + required: true, + type: { + name: "Boolean" + } + }, + lastModifiedUtc: { + serializedName: "lastModifiedUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + suppressionDuration: { + serializedName: "suppressionDuration", + required: true, + type: { + name: "TimeSpan" + } + }, + suppressionEnabled: { + serializedName: "suppressionEnabled", + required: true, + type: { + name: "Boolean" + } + }, + tactics: { + serializedName: "tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + incidentConfiguration: { + serializedName: "incidentConfiguration", + type: { + name: "Composite", + className: "IncidentConfiguration" + } + } + } + } +}; + +export const InsightQueryItemProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "InsightQueryItemProperties", + modelProperties: { + ...EntityQueryItemProperties.type.modelProperties, + displayName: { + serializedName: "displayName", + type: { + name: "String" + } + }, + description: { + serializedName: "description", + type: { + name: "String" + } + }, + baseQuery: { + serializedName: "baseQuery", + type: { + name: "String" + } + }, + tableQuery: { + serializedName: "tableQuery", + type: { + name: "Composite", + className: "InsightQueryItemPropertiesTableQuery" + } + }, + chartQuery: { + serializedName: "chartQuery", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + }, + additionalQuery: { + serializedName: "additionalQuery", + type: { + name: "Composite", + className: "InsightQueryItemPropertiesAdditionalQuery" + } + }, + defaultTimeRange: { + serializedName: "defaultTimeRange", + type: { + name: "Composite", + className: "InsightQueryItemPropertiesDefaultTimeRange" + } + }, + referenceTimeRange: { + serializedName: "referenceTimeRange", + type: { + name: "Composite", + className: "InsightQueryItemPropertiesReferenceTimeRange" + } + } + } + } +}; + +export const AADCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AADCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const AatpCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AatpCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const Dynamics365CheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Dynamics365CheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const McasCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "McasCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const MdatpCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MdatpCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const MstiCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MstiCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const MTPCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MTPCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const OfficeATPCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeATPCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const OfficeIRMCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeIRMCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const MicrosoftPurviewInformationProtectionCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: + "MicrosoftPurviewInformationProtectionCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const Office365ProjectCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const OfficePowerBICheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBICheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const TICheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TICheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const TiTaxiiCheckRequirementsProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TiTaxiiCheckRequirementsProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties + } + } +}; + +export const AADDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AADDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + ...DataConnectorWithAlertsProperties.type.modelProperties + } + } +}; + +export const MstiDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MstiDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "MstiDataConnectorDataTypes" + } + } + } + } +}; + +export const MTPDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MTPDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "MTPDataConnectorDataTypes" + } + }, + filteredProviders: { + serializedName: "filteredProviders", + type: { + name: "Composite", + className: "MtpFilteredProviders" + } + } + } + } +}; + +export const AatpDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AatpDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + ...DataConnectorWithAlertsProperties.type.modelProperties + } + } +}; + +export const McasDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "McasDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "McasDataConnectorDataTypes" + } + } + } + } +}; + +export const Dynamics365DataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Dynamics365DataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "Dynamics365DataConnectorDataTypes" + } + } + } + } +}; + +export const OfficeATPDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeATPDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + ...DataConnectorWithAlertsProperties.type.modelProperties + } + } +}; + +export const MicrosoftPurviewInformationProtectionDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionConnectorDataTypes" + } + } + } + } +}; + +export const Office365ProjectDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypes" + } + } + } + } +}; + +export const OfficePowerBIDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypes" + } + } + } + } +}; + +export const OfficeIRMDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeIRMDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + ...DataConnectorWithAlertsProperties.type.modelProperties + } + } +}; + +export const MdatpDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MdatpDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + ...DataConnectorWithAlertsProperties.type.modelProperties + } + } +}; + +export const OfficeDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "OfficeDataConnectorDataTypes" + } + } + } + } +}; + +export const TIDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TIDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + tipLookbackPeriod: { + serializedName: "tipLookbackPeriod", + nullable: true, + type: { + name: "DateTime" + } + }, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "TIDataConnectorDataTypes" + } + } + } + } +}; + +export const TiTaxiiDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TiTaxiiDataConnectorProperties", + modelProperties: { + ...DataConnectorTenantId.type.modelProperties, + workspaceId: { + serializedName: "workspaceId", + type: { + name: "String" + } + }, + friendlyName: { + serializedName: "friendlyName", + type: { + name: "String" + } + }, + taxiiServer: { + serializedName: "taxiiServer", + type: { + name: "String" + } + }, + collectionId: { + serializedName: "collectionId", + type: { + name: "String" + } + }, + userName: { + serializedName: "userName", + type: { + name: "String" + } + }, + password: { + serializedName: "password", + type: { + name: "String" + } + }, + taxiiLookbackPeriod: { + serializedName: "taxiiLookbackPeriod", + nullable: true, + type: { + name: "DateTime" + } + }, + pollingFrequency: { + serializedName: "pollingFrequency", + required: true, + nullable: true, + type: { + name: "String" + } + }, + dataTypes: { + serializedName: "dataTypes", + type: { + name: "Composite", + className: "TiTaxiiDataConnectorDataTypes" + } + } + } + } +}; + +export const ASCDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ASCDataConnectorProperties", + modelProperties: { + ...DataConnectorWithAlertsProperties.type.modelProperties, + subscriptionId: { + serializedName: "subscriptionId", + type: { + name: "String" + } + } + } + } +}; + +export const IoTDataConnectorProperties: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "IoTDataConnectorProperties", + modelProperties: { + ...DataConnectorWithAlertsProperties.type.modelProperties, + subscriptionId: { + serializedName: "subscriptionId", + type: { + name: "String" + } + } + } + } +}; + +export const McasDataConnectorDataTypes: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "McasDataConnectorDataTypes", + modelProperties: { + ...AlertsDataTypeOfDataConnector.type.modelProperties, + discoveryLogs: { + serializedName: "discoveryLogs", + type: { + name: "Composite", + className: "DataConnectorDataTypeCommon" + } + } + } + } +}; + +export const MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MstiDataConnectorDataTypesMicrosoftEmergingThreatFeed", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties, + lookbackPeriod: { + serializedName: "lookbackPeriod", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const MTPDataConnectorDataTypesIncidents: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MTPDataConnectorDataTypesIncidents", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const MTPDataConnectorDataTypesAlerts: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MTPDataConnectorDataTypesAlerts", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const AwsCloudTrailDataConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AwsCloudTrailDataConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const AwsS3DataConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AwsS3DataConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const Dynamics365DataConnectorDataTypesDynamics365CdsActivities: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Dynamics365DataConnectorDataTypesDynamics365CdsActivities", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const MicrosoftPurviewInformationProtectionConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const Office365ProjectConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Office365ProjectConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const OfficePowerBIConnectorDataTypesLogs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficePowerBIConnectorDataTypesLogs", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const OfficeDataConnectorDataTypesExchange: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeDataConnectorDataTypesExchange", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const OfficeDataConnectorDataTypesSharePoint: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeDataConnectorDataTypesSharePoint", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const OfficeDataConnectorDataTypesTeams: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "OfficeDataConnectorDataTypesTeams", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const TIDataConnectorDataTypesIndicators: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TIDataConnectorDataTypesIndicators", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const TiTaxiiDataConnectorDataTypesTaxiiClient: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TiTaxiiDataConnectorDataTypesTaxiiClient", + modelProperties: { + ...DataConnectorDataTypeCommon.type.modelProperties + } + } +}; + +export const CodelessUiConnectorConfigPropertiesGraphQueriesItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesGraphQueriesItem", + modelProperties: { + ...GraphQueries.type.modelProperties + } + } +}; + +export const CodelessUiConnectorConfigPropertiesSampleQueriesItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesSampleQueriesItem", + modelProperties: { + ...SampleQueries.type.modelProperties + } + } +}; + +export const CodelessUiConnectorConfigPropertiesDataTypesItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesDataTypesItem", + modelProperties: { + ...LastDataReceivedDataType.type.modelProperties + } + } +}; + +export const CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesConnectivityCriteriaItem", + modelProperties: { + ...ConnectivityCriteria.type.modelProperties + } + } +}; + +export const PermissionsResourceProviderItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "PermissionsResourceProviderItem", + modelProperties: { + ...ResourceProvider.type.modelProperties + } + } +}; + +export const Customs: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Customs", + modelProperties: { + ...CustomsPermission.type.modelProperties + } + } +}; + +export const CodelessUiConnectorConfigPropertiesInstructionStepsItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "CodelessUiConnectorConfigPropertiesInstructionStepsItem", + modelProperties: { + ...InstructionSteps.type.modelProperties + } + } +}; + +export const InstructionStepsInstructionsItem: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "InstructionStepsInstructionsItem", + modelProperties: { + ...ConnectorInstructionModelBase.type.modelProperties + } + } +}; + +export const AlertRule: coreClient.CompositeMapper = { + serializedName: "AlertRule", + type: { + name: "Composite", + className: "AlertRule", + uberParent: "ResourceWithEtag", polymorphicDiscriminator: { serializedName: "kind", clientName: "kind" }, modelProperties: { ...ResourceWithEtag.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + kind: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const ActionResponse: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ActionResponse", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + logicAppResourceId: { + serializedName: "properties.logicAppResourceId", + type: { + name: "String" + } + }, + workflowId: { + serializedName: "properties.workflowId", + type: { + name: "String" + } + } + } + } +}; + +export const ActionRequest: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ActionRequest", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + logicAppResourceId: { + serializedName: "properties.logicAppResourceId", + type: { + name: "String" + } + }, + triggerUri: { + serializedName: "properties.triggerUri", + type: { + name: "String" + } + } + } + } +}; + +export const AutomationRule: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AutomationRule", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + displayName: { + constraints: { + MaxLength: 500 + }, + serializedName: "properties.displayName", + required: true, + type: { + name: "String" + } + }, + order: { + constraints: { + InclusiveMaximum: 1000, + InclusiveMinimum: 1 + }, + serializedName: "properties.order", + required: true, + type: { + name: "Number" + } + }, + triggeringLogic: { + serializedName: "properties.triggeringLogic", + type: { + name: "Composite", + className: "AutomationRuleTriggeringLogic" + } + }, + actions: { + constraints: { + MaxItems: 20 + }, + serializedName: "properties.actions", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AutomationRuleAction" + } + } + } + }, + lastModifiedTimeUtc: { + serializedName: "properties.lastModifiedTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + createdTimeUtc: { + serializedName: "properties.createdTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + lastModifiedBy: { + serializedName: "properties.lastModifiedBy", + type: { + name: "Composite", + className: "ClientInfo" + } + }, + createdBy: { + serializedName: "properties.createdBy", + type: { + name: "Composite", + className: "ClientInfo" + } + } + } + } +}; + +export const Bookmark: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Bookmark", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + created: { + serializedName: "properties.created", + type: { + name: "DateTime" + } + }, + createdBy: { + serializedName: "properties.createdBy", + type: { + name: "Composite", + className: "UserInfo" + } + }, + displayName: { + serializedName: "properties.displayName", + type: { + name: "String" + } + }, + labels: { + serializedName: "properties.labels", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + notes: { + serializedName: "properties.notes", + type: { + name: "String" + } + }, + query: { + serializedName: "properties.query", + type: { + name: "String" + } + }, + queryResult: { + serializedName: "properties.queryResult", + type: { + name: "String" + } + }, + updated: { + serializedName: "properties.updated", + type: { + name: "DateTime" + } + }, + updatedBy: { + serializedName: "properties.updatedBy", + type: { + name: "Composite", + className: "UserInfo" + } + }, + eventTime: { + serializedName: "properties.eventTime", + type: { + name: "DateTime" + } + }, + queryStartTime: { + serializedName: "properties.queryStartTime", + type: { + name: "DateTime" + } + }, + queryEndTime: { + serializedName: "properties.queryEndTime", + type: { + name: "DateTime" + } + }, + incidentInfo: { + serializedName: "properties.incidentInfo", + type: { + name: "Composite", + className: "IncidentInfo" + } + }, + entityMappings: { + serializedName: "properties.entityMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "BookmarkEntityMappings" + } + } + } + }, + tactics: { + serializedName: "properties.tactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + techniques: { + serializedName: "properties.techniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + } + } + } +}; + +export const Relation: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Relation", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + relatedResourceId: { + serializedName: "properties.relatedResourceId", + type: { + name: "String" + } + }, + relatedResourceName: { + serializedName: "properties.relatedResourceName", + readOnly: true, + type: { + name: "String" + } + }, + relatedResourceType: { + serializedName: "properties.relatedResourceType", + readOnly: true, + type: { + name: "String" + } + }, + relatedResourceKind: { + serializedName: "properties.relatedResourceKind", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + +export const PackageModel: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "PackageModel", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + contentId: { + serializedName: "properties.contentId", + type: { + name: "String" + } + }, + contentProductId: { + serializedName: "properties.contentProductId", + type: { + name: "String" + } + }, + contentKind: { + serializedName: "properties.contentKind", + type: { + name: "String" + } + }, + contentSchemaVersion: { + serializedName: "properties.contentSchemaVersion", + type: { + name: "String" + } + }, + isNew: { + serializedName: "properties.isNew", + type: { + name: "String" + } + }, + isPreview: { + serializedName: "properties.isPreview", + type: { + name: "String" + } + }, + isFeatured: { + serializedName: "properties.isFeatured", + type: { + name: "String" + } + }, + version: { + serializedName: "properties.version", + type: { + name: "String" + } + }, + displayName: { + serializedName: "properties.displayName", + type: { + name: "String" + } + }, + description: { + serializedName: "properties.description", + type: { + name: "String" + } + }, + publisherDisplayName: { + serializedName: "properties.publisherDisplayName", + type: { + name: "String" + } + }, + source: { + serializedName: "properties.source", + type: { + name: "Composite", + className: "MetadataSource" + } + }, + author: { + serializedName: "properties.author", + type: { + name: "Composite", + className: "MetadataAuthor" + } + }, + support: { + serializedName: "properties.support", + type: { + name: "Composite", + className: "MetadataSupport" + } + }, + dependencies: { + serializedName: "properties.dependencies", + type: { + name: "Composite", + className: "MetadataDependencies" + } + }, + providers: { + serializedName: "properties.providers", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + firstPublishDate: { + serializedName: "properties.firstPublishDate", + type: { + name: "Date" + } + }, + lastPublishDate: { + serializedName: "properties.lastPublishDate", + type: { + name: "Date" + } + }, + categories: { + serializedName: "properties.categories", + type: { + name: "Composite", + className: "MetadataCategories" + } + }, + threatAnalysisTactics: { + serializedName: "properties.threatAnalysisTactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + threatAnalysisTechniques: { + serializedName: "properties.threatAnalysisTechniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + icon: { + serializedName: "properties.icon", + type: { + name: "String" + } + } + } + } +}; + +export const ProductPackageModel: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ProductPackageModel", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + contentId: { + serializedName: "properties.contentId", + type: { + name: "String" + } + }, + contentProductId: { + serializedName: "properties.contentProductId", + type: { + name: "String" + } + }, + contentKind: { + serializedName: "properties.contentKind", + type: { + name: "String" + } + }, + contentSchemaVersion: { + serializedName: "properties.contentSchemaVersion", + type: { + name: "String" + } + }, + isNew: { + serializedName: "properties.isNew", + type: { + name: "String" + } + }, + isPreview: { + serializedName: "properties.isPreview", + type: { + name: "String" + } + }, + isFeatured: { + serializedName: "properties.isFeatured", + type: { + name: "String" + } + }, + version: { + serializedName: "properties.version", + type: { + name: "String" + } + }, + displayName: { + serializedName: "properties.displayName", + type: { + name: "String" + } + }, + description: { + serializedName: "properties.description", + type: { + name: "String" + } + }, + publisherDisplayName: { + serializedName: "properties.publisherDisplayName", + type: { + name: "String" + } + }, + source: { + serializedName: "properties.source", + type: { + name: "Composite", + className: "MetadataSource" + } + }, + author: { + serializedName: "properties.author", + type: { + name: "Composite", + className: "MetadataAuthor" + } + }, + support: { + serializedName: "properties.support", + type: { + name: "Composite", + className: "MetadataSupport" + } + }, + dependencies: { + serializedName: "properties.dependencies", + type: { + name: "Composite", + className: "MetadataDependencies" + } + }, + providers: { + serializedName: "properties.providers", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + firstPublishDate: { + serializedName: "properties.firstPublishDate", + type: { + name: "Date" + } + }, + lastPublishDate: { + serializedName: "properties.lastPublishDate", + type: { + name: "Date" + } + }, + categories: { + serializedName: "properties.categories", + type: { + name: "Composite", + className: "MetadataCategories" + } + }, + threatAnalysisTactics: { + serializedName: "properties.threatAnalysisTactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + threatAnalysisTechniques: { + serializedName: "properties.threatAnalysisTechniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + icon: { + serializedName: "properties.icon", + type: { + name: "String" + } + }, + installedVersion: { + serializedName: "properties.installedVersion", + type: { + name: "String" + } + }, + resourceId: { + serializedName: "properties.resourceId", + type: { + name: "String" + } + }, + packagedContent: { + serializedName: "properties.packagedContent", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + } + } + } +}; + +export const ProductTemplateModel: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "ProductTemplateModel", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + contentId: { + serializedName: "properties.contentId", + type: { + name: "String" + } + }, + contentProductId: { + serializedName: "properties.contentProductId", + type: { + name: "String" + } + }, + packageVersion: { + serializedName: "properties.packageVersion", + type: { + name: "String" + } + }, + version: { + serializedName: "properties.version", + type: { + name: "String" + } + }, + displayName: { + serializedName: "properties.displayName", + type: { + name: "String" + } + }, + contentKind: { + serializedName: "properties.contentKind", + type: { + name: "String" + } + }, + source: { + serializedName: "properties.source", + type: { + name: "Composite", + className: "MetadataSource" + } + }, + author: { + serializedName: "properties.author", + type: { + name: "Composite", + className: "MetadataAuthor" + } + }, + support: { + serializedName: "properties.support", + type: { + name: "Composite", + className: "MetadataSupport" + } + }, + dependencies: { + serializedName: "properties.dependencies", + type: { + name: "Composite", + className: "MetadataDependencies" + } + }, + categories: { + serializedName: "properties.categories", + type: { + name: "Composite", + className: "MetadataCategories" + } + }, + providers: { + serializedName: "properties.providers", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + firstPublishDate: { + serializedName: "properties.firstPublishDate", + type: { + name: "Date" + } + }, + lastPublishDate: { + serializedName: "properties.lastPublishDate", + type: { + name: "Date" + } + }, + customVersion: { + serializedName: "properties.customVersion", + type: { + name: "String" + } + }, + contentSchemaVersion: { + serializedName: "properties.contentSchemaVersion", + type: { + name: "String" + } + }, + icon: { + serializedName: "properties.icon", + type: { + name: "String" + } + }, + threatAnalysisTactics: { + serializedName: "properties.threatAnalysisTactics", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + threatAnalysisTechniques: { + serializedName: "properties.threatAnalysisTechniques", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + previewImages: { + serializedName: "properties.previewImages", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + previewImagesDark: { + serializedName: "properties.previewImagesDark", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + packageId: { + serializedName: "properties.packageId", type: { name: "String" } - } - } - } -}; - -export const ActionResponse: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "ActionResponse", - modelProperties: { - ...ResourceWithEtag.type.modelProperties, - logicAppResourceId: { - serializedName: "properties.logicAppResourceId", + }, + packageKind: { + serializedName: "properties.packageKind", type: { name: "String" } }, - workflowId: { - serializedName: "properties.workflowId", + packageName: { + serializedName: "properties.packageName", type: { name: "String" } + }, + packagedContent: { + serializedName: "properties.packagedContent", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } } } } }; -export const ActionRequest: coreClient.CompositeMapper = { +export const TemplateModel: coreClient.CompositeMapper = { type: { name: "Composite", - className: "ActionRequest", + className: "TemplateModel", modelProperties: { ...ResourceWithEtag.type.modelProperties, - logicAppResourceId: { - serializedName: "properties.logicAppResourceId", + contentId: { + serializedName: "properties.contentId", type: { name: "String" } }, - triggerUri: { - serializedName: "properties.triggerUri", + contentProductId: { + serializedName: "properties.contentProductId", type: { name: "String" } - } - } - } -}; - -export const AutomationRule: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "AutomationRule", - modelProperties: { - ...ResourceWithEtag.type.modelProperties, + }, + packageVersion: { + serializedName: "properties.packageVersion", + type: { + name: "String" + } + }, + version: { + serializedName: "properties.version", + type: { + name: "String" + } + }, displayName: { - constraints: { - MaxLength: 500 - }, serializedName: "properties.displayName", - required: true, type: { name: "String" } }, - order: { - constraints: { - InclusiveMaximum: 1000, - InclusiveMinimum: 1 - }, - serializedName: "properties.order", - required: true, + contentKind: { + serializedName: "properties.contentKind", type: { - name: "Number" + name: "String" } }, - triggeringLogic: { - serializedName: "properties.triggeringLogic", + source: { + serializedName: "properties.source", type: { name: "Composite", - className: "AutomationRuleTriggeringLogic" + className: "MetadataSource" } }, - actions: { - constraints: { - MaxItems: 20 - }, - serializedName: "properties.actions", - required: true, + author: { + serializedName: "properties.author", + type: { + name: "Composite", + className: "MetadataAuthor" + } + }, + support: { + serializedName: "properties.support", + type: { + name: "Composite", + className: "MetadataSupport" + } + }, + dependencies: { + serializedName: "properties.dependencies", + type: { + name: "Composite", + className: "MetadataDependencies" + } + }, + categories: { + serializedName: "properties.categories", + type: { + name: "Composite", + className: "MetadataCategories" + } + }, + providers: { + serializedName: "properties.providers", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "AutomationRuleAction" + name: "String" } } } }, - lastModifiedTimeUtc: { - serializedName: "properties.lastModifiedTimeUtc", - readOnly: true, + firstPublishDate: { + serializedName: "properties.firstPublishDate", type: { - name: "DateTime" + name: "Date" } }, - createdTimeUtc: { - serializedName: "properties.createdTimeUtc", - readOnly: true, + lastPublishDate: { + serializedName: "properties.lastPublishDate", type: { - name: "DateTime" + name: "Date" } }, - lastModifiedBy: { - serializedName: "properties.lastModifiedBy", + customVersion: { + serializedName: "properties.customVersion", type: { - name: "Composite", - className: "ClientInfo" + name: "String" } }, - createdBy: { - serializedName: "properties.createdBy", + contentSchemaVersion: { + serializedName: "properties.contentSchemaVersion", type: { - name: "Composite", - className: "ClientInfo" + name: "String" } - } - } - } -}; - -export const Bookmark: coreClient.CompositeMapper = { - type: { - name: "Composite", - className: "Bookmark", - modelProperties: { - ...ResourceWithEtag.type.modelProperties, - created: { - serializedName: "properties.created", + }, + icon: { + serializedName: "properties.icon", type: { - name: "DateTime" + name: "String" } }, - createdBy: { - serializedName: "properties.createdBy", + threatAnalysisTactics: { + serializedName: "properties.threatAnalysisTactics", type: { - name: "Composite", - className: "UserInfo" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - displayName: { - serializedName: "properties.displayName", + threatAnalysisTechniques: { + serializedName: "properties.threatAnalysisTechniques", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } }, - labels: { - serializedName: "properties.labels", + previewImages: { + serializedName: "properties.previewImages", type: { name: "Sequence", element: { @@ -10061,76 +13291,136 @@ export const Bookmark: coreClient.CompositeMapper = { } } }, - notes: { - serializedName: "properties.notes", + previewImagesDark: { + serializedName: "properties.previewImagesDark", + type: { + name: "Sequence", + element: { + type: { + name: "String" + } + } + } + }, + packageId: { + serializedName: "properties.packageId", + type: { + name: "String" + } + }, + packageKind: { + serializedName: "properties.packageKind", + type: { + name: "String" + } + }, + packageName: { + serializedName: "properties.packageName", + type: { + name: "String" + } + }, + mainTemplate: { + serializedName: "properties.mainTemplate", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + } + } + } +}; + +export const EntityQuery: coreClient.CompositeMapper = { + serializedName: "EntityQuery", + type: { + name: "Composite", + className: "EntityQuery", + uberParent: "ResourceWithEtag", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + kind: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const CustomEntityQuery: coreClient.CompositeMapper = { + serializedName: "CustomEntityQuery", + type: { + name: "Composite", + className: "CustomEntityQuery", + uberParent: "ResourceWithEtag", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + kind: { + serializedName: "kind", + required: true, type: { name: "String" } - }, - query: { - serializedName: "properties.query", + } + } + } +}; + +export const Hunt: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Hunt", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + displayName: { + serializedName: "properties.displayName", type: { name: "String" } }, - queryResult: { - serializedName: "properties.queryResult", + description: { + serializedName: "properties.description", type: { name: "String" } }, - updated: { - serializedName: "properties.updated", - type: { - name: "DateTime" - } - }, - updatedBy: { - serializedName: "properties.updatedBy", - type: { - name: "Composite", - className: "UserInfo" - } - }, - eventTime: { - serializedName: "properties.eventTime", - type: { - name: "DateTime" - } - }, - queryStartTime: { - serializedName: "properties.queryStartTime", - type: { - name: "DateTime" - } - }, - queryEndTime: { - serializedName: "properties.queryEndTime", + status: { + serializedName: "properties.status", type: { - name: "DateTime" + name: "String" } }, - incidentInfo: { - serializedName: "properties.incidentInfo", + hypothesisStatus: { + defaultValue: "Unknown", + serializedName: "properties.hypothesisStatus", type: { - name: "Composite", - className: "IncidentInfo" + name: "String" } }, - entityMappings: { - serializedName: "properties.entityMappings", + attackTactics: { + serializedName: "properties.attackTactics", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "BookmarkEntityMappings" + name: "String" } } } }, - tactics: { - serializedName: "properties.tactics", + attackTechniques: { + serializedName: "properties.attackTechniques", type: { name: "Sequence", element: { @@ -10140,8 +13430,8 @@ export const Bookmark: coreClient.CompositeMapper = { } } }, - techniques: { - serializedName: "properties.techniques", + labels: { + serializedName: "properties.labels", type: { name: "Sequence", element: { @@ -10150,15 +13440,22 @@ export const Bookmark: coreClient.CompositeMapper = { } } } + }, + owner: { + serializedName: "properties.owner", + type: { + name: "Composite", + className: "HuntOwner" + } } } } }; -export const Relation: coreClient.CompositeMapper = { +export const HuntRelation: coreClient.CompositeMapper = { type: { name: "Composite", - className: "Relation", + className: "HuntRelation", modelProperties: { ...ResourceWithEtag.type.modelProperties, relatedResourceId: { @@ -10174,8 +13471,8 @@ export const Relation: coreClient.CompositeMapper = { name: "String" } }, - relatedResourceType: { - serializedName: "properties.relatedResourceType", + relationType: { + serializedName: "properties.relationType", readOnly: true, type: { name: "String" @@ -10187,49 +13484,30 @@ export const Relation: coreClient.CompositeMapper = { type: { name: "String" } - } - } - } -}; - -export const EntityQuery: coreClient.CompositeMapper = { - serializedName: "EntityQuery", - type: { - name: "Composite", - className: "EntityQuery", - uberParent: "ResourceWithEtag", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, - modelProperties: { - ...ResourceWithEtag.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + }, + labels: { + serializedName: "properties.labels", type: { - name: "String" + name: "Sequence", + element: { + type: { + name: "String" + } + } } } } } }; -export const CustomEntityQuery: coreClient.CompositeMapper = { - serializedName: "CustomEntityQuery", +export const HuntComment: coreClient.CompositeMapper = { type: { name: "Composite", - className: "CustomEntityQuery", - uberParent: "ResourceWithEtag", - polymorphicDiscriminator: { - serializedName: "kind", - clientName: "kind" - }, + className: "HuntComment", modelProperties: { ...ResourceWithEtag.type.modelProperties, - kind: { - serializedName: "kind", - required: true, + message: { + serializedName: "properties.message", type: { name: "String" } @@ -10244,62 +13522,53 @@ export const Incident: coreClient.CompositeMapper = { className: "Incident", modelProperties: { ...ResourceWithEtag.type.modelProperties, - additionalData: { - serializedName: "properties.additionalData", - type: { - name: "Composite", - className: "IncidentAdditionalData" - } - }, - classification: { - serializedName: "properties.classification", + title: { + serializedName: "properties.title", type: { name: "String" } }, - classificationComment: { - serializedName: "properties.classificationComment", + description: { + serializedName: "properties.description", type: { name: "String" } }, - classificationReason: { - serializedName: "properties.classificationReason", + severity: { + serializedName: "properties.severity", type: { name: "String" } }, - createdTimeUtc: { - serializedName: "properties.createdTimeUtc", - readOnly: true, + status: { + serializedName: "properties.status", type: { - name: "DateTime" + name: "String" } }, - description: { - serializedName: "properties.description", + classification: { + serializedName: "properties.classification", type: { name: "String" } }, - firstActivityTimeUtc: { - serializedName: "properties.firstActivityTimeUtc", + classificationReason: { + serializedName: "properties.classificationReason", type: { - name: "DateTime" + name: "String" } }, - incidentUrl: { - serializedName: "properties.incidentUrl", - readOnly: true, + classificationComment: { + serializedName: "properties.classificationComment", type: { name: "String" } }, - incidentNumber: { - serializedName: "properties.incidentNumber", - readOnly: true, + owner: { + serializedName: "properties.owner", type: { - name: "Number" + name: "Composite", + className: "IncidentOwnerInfo" } }, labels: { @@ -10314,16 +13583,10 @@ export const Incident: coreClient.CompositeMapper = { } } }, - providerName: { - serializedName: "properties.providerName", - type: { - name: "String" - } - }, - providerIncidentId: { - serializedName: "properties.providerIncidentId", + firstActivityTimeUtc: { + serializedName: "properties.firstActivityTimeUtc", type: { - name: "String" + name: "DateTime" } }, lastActivityTimeUtc: { @@ -10339,11 +13602,25 @@ export const Incident: coreClient.CompositeMapper = { name: "DateTime" } }, - owner: { - serializedName: "properties.owner", + createdTimeUtc: { + serializedName: "properties.createdTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + incidentNumber: { + serializedName: "properties.incidentNumber", + readOnly: true, + type: { + name: "Number" + } + }, + additionalData: { + serializedName: "properties.additionalData", type: { name: "Composite", - className: "IncidentOwnerInfo" + className: "IncidentAdditionalData" } }, relatedAnalyticRuleIds: { @@ -10358,14 +13635,23 @@ export const Incident: coreClient.CompositeMapper = { } } }, - severity: { - serializedName: "properties.severity", + incidentUrl: { + serializedName: "properties.incidentUrl", + readOnly: true, type: { name: "String" } }, - status: { - serializedName: "properties.status", + providerName: { + serializedName: "properties.providerName", + readOnly: true, + type: { + name: "String" + } + }, + providerIncidentId: { + serializedName: "properties.providerIncidentId", + readOnly: true, type: { name: "String" } @@ -10376,23 +13662,74 @@ export const Incident: coreClient.CompositeMapper = { name: "Composite", className: "TeamInformation" } - }, - title: { - serializedName: "properties.title", + } + } + } +}; + +export const IncidentComment: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "IncidentComment", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + message: { + serializedName: "properties.message", type: { name: "String" } + }, + createdTimeUtc: { + serializedName: "properties.createdTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + lastModifiedTimeUtc: { + serializedName: "properties.lastModifiedTimeUtc", + readOnly: true, + type: { + name: "DateTime" + } + }, + author: { + serializedName: "properties.author", + type: { + name: "Composite", + className: "ClientInfo" + } } } } }; -export const IncidentComment: coreClient.CompositeMapper = { +export const IncidentTask: coreClient.CompositeMapper = { type: { name: "Composite", - className: "IncidentComment", + className: "IncidentTask", modelProperties: { ...ResourceWithEtag.type.modelProperties, + title: { + serializedName: "properties.title", + required: true, + type: { + name: "String" + } + }, + description: { + serializedName: "properties.description", + type: { + name: "String" + } + }, + status: { + serializedName: "properties.status", + required: true, + type: { + name: "String" + } + }, createdTimeUtc: { serializedName: "properties.createdTimeUtc", readOnly: true, @@ -10407,14 +13744,15 @@ export const IncidentComment: coreClient.CompositeMapper = { name: "DateTime" } }, - message: { - serializedName: "properties.message", + createdBy: { + serializedName: "properties.createdBy", type: { - name: "String" + name: "Composite", + className: "ClientInfo" } }, - author: { - serializedName: "properties.author", + lastModifiedBy: { + serializedName: "properties.lastModifiedBy", type: { name: "Composite", className: "ClientInfo" @@ -10802,12 +14140,14 @@ export const SourceControl: coreClient.CompositeMapper = { ...ResourceWithEtag.type.modelProperties, idPropertiesId: { serializedName: "properties.id", + readOnly: true, type: { name: "String" } }, version: { serializedName: "properties.version", + readOnly: true, type: { name: "String" } @@ -10848,6 +14188,20 @@ export const SourceControl: coreClient.CompositeMapper = { className: "Repository" } }, + servicePrincipal: { + serializedName: "properties.servicePrincipal", + type: { + name: "Composite", + className: "ServicePrincipal" + } + }, + repositoryAccess: { + serializedName: "properties.repositoryAccess", + type: { + name: "Composite", + className: "RepositoryAccess" + } + }, repositoryResourceInfo: { serializedName: "properties.repositoryResourceInfo", type: { @@ -10861,6 +14215,13 @@ export const SourceControl: coreClient.CompositeMapper = { name: "Composite", className: "DeploymentInfo" } + }, + pullRequest: { + serializedName: "properties.pullRequest", + type: { + name: "Composite", + className: "PullRequest" + } } } } @@ -10889,6 +14250,51 @@ export const ThreatIntelligenceInformation: coreClient.CompositeMapper = { } }; +export const TriggeredAnalyticsRuleRun: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "TriggeredAnalyticsRuleRun", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + executionTimeUtc: { + serializedName: "properties.executionTimeUtc", + required: true, + type: { + name: "DateTime" + } + }, + ruleId: { + serializedName: "properties.ruleId", + required: true, + type: { + name: "String" + } + }, + triggeredAnalyticsRuleRunId: { + serializedName: "properties.triggeredAnalyticsRuleRunId", + required: true, + type: { + name: "String" + } + }, + provisioningState: { + serializedName: "properties.provisioningState", + required: true, + type: { + name: "String" + } + }, + ruleRunAdditionalData: { + serializedName: "properties.ruleRunAdditionalData", + type: { + name: "Dictionary", + value: { type: { name: "any" } } + } + } + } + } +}; + export const Watchlist: coreClient.CompositeMapper = { type: { name: "Composite", @@ -11106,6 +14512,56 @@ export const WatchlistItem: coreClient.CompositeMapper = { } }; +export const Job: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "Job", + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + endTime: { + serializedName: "properties.endTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + items: { + serializedName: "properties.items", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "JobItem" + } + } + } + }, + provisioningState: { + serializedName: "properties.provisioningState", + readOnly: true, + type: { + name: "String" + } + }, + startTime: { + serializedName: "properties.startTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + errorMessage: { + serializedName: "properties.errorMessage", + readOnly: true, + type: { + name: "String" + } + } + } + } +}; + export const DataConnector: coreClient.CompositeMapper = { serializedName: "DataConnector", type: { @@ -11129,6 +14585,29 @@ export const DataConnector: coreClient.CompositeMapper = { } }; +export const DataConnectorDefinition: coreClient.CompositeMapper = { + serializedName: "DataConnectorDefinition", + type: { + name: "Composite", + className: "DataConnectorDefinition", + uberParent: "ResourceWithEtag", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...ResourceWithEtag.type.modelProperties, + kind: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } + } + } +}; + export const MLBehaviorAnalyticsAlertRuleTemplate: coreClient.CompositeMapper = { serializedName: "MLBehaviorAnalytics", type: { @@ -11672,6 +15151,18 @@ export const ScheduledAlertRuleTemplate: coreClient.CompositeMapper = { name: "Composite", className: "AlertDetailsOverride" } + }, + sentinelEntitiesMappings: { + serializedName: "properties.sentinelEntitiesMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } + } } } } @@ -11757,56 +15248,204 @@ export const NrtAlertRuleTemplate: coreClient.CompositeMapper = { } } } - }, - query: { - serializedName: "properties.query", + }, + query: { + serializedName: "properties.query", + type: { + name: "String" + } + }, + severity: { + serializedName: "properties.severity", + type: { + name: "String" + } + }, + version: { + serializedName: "properties.version", + type: { + name: "String" + } + }, + customDetails: { + serializedName: "properties.customDetails", + type: { + name: "Dictionary", + value: { type: { name: "String" } } + } + }, + entityMappings: { + serializedName: "properties.entityMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "EntityMapping" + } + } + } + }, + alertDetailsOverride: { + serializedName: "properties.alertDetailsOverride", + type: { + name: "Composite", + className: "AlertDetailsOverride" + } + }, + eventGroupingSettings: { + serializedName: "properties.eventGroupingSettings", + type: { + name: "Composite", + className: "EventGroupingSettings" + } + }, + sentinelEntitiesMappings: { + serializedName: "properties.sentinelEntitiesMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } + } + } + } + } +}; + +export const BillingStatistic: coreClient.CompositeMapper = { + serializedName: "BillingStatistic", + type: { + name: "Composite", + className: "BillingStatistic", + uberParent: "AzureEntityResource", + polymorphicDiscriminator: { + serializedName: "kind", + clientName: "kind" + }, + modelProperties: { + ...AzureEntityResource.type.modelProperties, + kind: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } + } + } +}; + +export const WorkspaceManagerAssignment: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "WorkspaceManagerAssignment", + modelProperties: { + ...AzureEntityResource.type.modelProperties, + targetResourceName: { + serializedName: "properties.targetResourceName", + type: { + name: "String" + } + }, + lastJobEndTime: { + serializedName: "properties.lastJobEndTime", + readOnly: true, + type: { + name: "DateTime" + } + }, + lastJobProvisioningState: { + serializedName: "properties.lastJobProvisioningState", + readOnly: true, + type: { + name: "String" + } + }, + items: { + serializedName: "properties.items", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "AssignmentItem" + } + } + } + } + } + } +}; + +export const WorkspaceManagerConfiguration: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "WorkspaceManagerConfiguration", + modelProperties: { + ...AzureEntityResource.type.modelProperties, + mode: { + serializedName: "properties.mode", type: { name: "String" } - }, - severity: { - serializedName: "properties.severity", + } + } + } +}; + +export const WorkspaceManagerGroup: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "WorkspaceManagerGroup", + modelProperties: { + ...AzureEntityResource.type.modelProperties, + description: { + serializedName: "properties.description", type: { name: "String" } }, - version: { - serializedName: "properties.version", + displayName: { + serializedName: "properties.displayName", type: { name: "String" } }, - customDetails: { - serializedName: "properties.customDetails", - type: { - name: "Dictionary", - value: { type: { name: "String" } } - } - }, - entityMappings: { - serializedName: "properties.entityMappings", + memberResourceNames: { + serializedName: "properties.memberResourceNames", type: { name: "Sequence", element: { type: { - name: "Composite", - className: "EntityMapping" + name: "String" } } } - }, - alertDetailsOverride: { - serializedName: "properties.alertDetailsOverride", + } + } + } +}; + +export const WorkspaceManagerMember: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "WorkspaceManagerMember", + modelProperties: { + ...AzureEntityResource.type.modelProperties, + targetWorkspaceId: { + serializedName: "properties.targetWorkspaceId", type: { - name: "Composite", - className: "AlertDetailsOverride" + name: "String" } }, - eventGroupingSettings: { - serializedName: "properties.eventGroupingSettings", + targetWorkspaceTenantId: { + serializedName: "properties.targetWorkspaceTenantId", type: { - name: "Composite", - className: "EventGroupingSettings" + name: "String" } } } @@ -11827,9 +15466,7 @@ export const SecurityAlert: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12053,9 +15690,7 @@ export const HuntingBookmark: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12157,9 +15792,7 @@ export const AccountEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12271,9 +15904,7 @@ export const AzureResourceEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12315,9 +15946,7 @@ export const CloudApplicationEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12366,9 +15995,7 @@ export const DnsEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12429,9 +16056,7 @@ export const FileEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12492,9 +16117,7 @@ export const FileHashEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12536,9 +16159,7 @@ export const HostEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12629,9 +16250,7 @@ export const IoTDeviceEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12875,9 +16494,7 @@ export const IpEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12932,9 +16549,7 @@ export const MailboxEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -12990,9 +16605,7 @@ export const MailClusterEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13138,9 +16751,7 @@ export const MailMessageEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13373,9 +16984,7 @@ export const MalwareEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13441,9 +17050,7 @@ export const ProcessEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13534,9 +17141,7 @@ export const RegistryKeyEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13578,9 +17183,7 @@ export const RegistryValueEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13636,9 +17239,7 @@ export const SecurityGroupEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13687,9 +17288,7 @@ export const SubmissionMailEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13787,9 +17386,7 @@ export const UrlEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -13824,9 +17421,7 @@ export const NicEntity: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -14408,6 +18003,18 @@ export const ScheduledAlertRule: coreClient.CompositeMapper = { className: "AlertDetailsOverride" } }, + sentinelEntitiesMappings: { + serializedName: "properties.sentinelEntitiesMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } + } + }, alertRuleTemplateName: { serializedName: "properties.alertRuleTemplateName", type: { @@ -14621,6 +18228,18 @@ export const NrtAlertRule: coreClient.CompositeMapper = { name: "Composite", className: "EventGroupingSettings" } + }, + sentinelEntitiesMappings: { + serializedName: "properties.sentinelEntitiesMappings", + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "SentinelEntityMapping" + } + } + } } } } @@ -15099,9 +18718,7 @@ export const ThreatIntelligenceIndicatorModel: coreClient.CompositeMapper = { readOnly: true, type: { name: "Dictionary", - value: { - type: { name: "Dictionary", value: { type: { name: "any" } } } - } + value: { type: { name: "any" } } } }, friendlyName: { @@ -15406,6 +19023,13 @@ export const MTPDataConnector: coreClient.CompositeMapper = { name: "Composite", className: "MTPDataConnectorDataTypes" } + }, + filteredProviders: { + serializedName: "properties.filteredProviders", + type: { + name: "Composite", + className: "MtpFilteredProviders" + } } } } @@ -15532,6 +19156,46 @@ export const AwsS3DataConnector: coreClient.CompositeMapper = { } }; +export const GCPDataConnector: coreClient.CompositeMapper = { + serializedName: "GCP", + type: { + name: "Composite", + className: "GCPDataConnector", + uberParent: "DataConnector", + polymorphicDiscriminator: DataConnector.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnector.type.modelProperties, + connectorDefinitionName: { + serializedName: "properties.connectorDefinitionName", + type: { + name: "String" + } + }, + auth: { + serializedName: "properties.auth", + type: { + name: "Composite", + className: "GCPAuthProperties" + } + }, + request: { + serializedName: "properties.request", + type: { + name: "Composite", + className: "GCPRequestProperties" + } + }, + dcrConfig: { + serializedName: "properties.dcrConfig", + type: { + name: "Composite", + className: "DCRConfiguration" + } + } + } + } +}; + export const McasDataConnector: coreClient.CompositeMapper = { serializedName: "MicrosoftCloudAppSecurity", type: { @@ -15610,6 +19274,32 @@ export const OfficeATPDataConnector: coreClient.CompositeMapper = { } }; +export const MicrosoftPurviewInformationProtectionDataConnector: coreClient.CompositeMapper = { + serializedName: "MicrosoftPurviewInformationProtection", + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionDataConnector", + uberParent: "DataConnector", + polymorphicDiscriminator: DataConnector.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnector.type.modelProperties, + tenantId: { + serializedName: "properties.tenantId", + type: { + name: "String" + } + }, + dataTypes: { + serializedName: "properties.dataTypes", + type: { + name: "Composite", + className: "MicrosoftPurviewInformationProtectionConnectorDataTypes" + } + } + } + } +}; + export const Office365ProjectDataConnector: coreClient.CompositeMapper = { serializedName: "Office365Project", type: { @@ -15922,6 +19612,81 @@ export const CodelessApiPollingDataConnector: coreClient.CompositeMapper = { } }; +export const CustomizableConnectorDefinition: coreClient.CompositeMapper = { + serializedName: "Customizable", + type: { + name: "Composite", + className: "CustomizableConnectorDefinition", + uberParent: "DataConnectorDefinition", + polymorphicDiscriminator: + DataConnectorDefinition.type.polymorphicDiscriminator, + modelProperties: { + ...DataConnectorDefinition.type.modelProperties, + createdTimeUtc: { + serializedName: "properties.createdTimeUtc", + type: { + name: "DateTime" + } + }, + lastModifiedUtc: { + serializedName: "properties.lastModifiedUtc", + type: { + name: "DateTime" + } + }, + connectorUiConfig: { + serializedName: "properties.connectorUiConfig", + type: { + name: "Composite", + className: "CustomizableConnectorUiConfig" + } + }, + connectionsConfig: { + serializedName: "properties.connectionsConfig", + type: { + name: "Composite", + className: "CustomizableConnectionsConfig" + } + } + } + } +}; + +export const SapSolutionUsageStatistic: coreClient.CompositeMapper = { + serializedName: "SapSolutionUsage", + type: { + name: "Composite", + className: "SapSolutionUsageStatistic", + uberParent: "BillingStatistic", + polymorphicDiscriminator: BillingStatistic.type.polymorphicDiscriminator, + modelProperties: { + ...BillingStatistic.type.modelProperties, + activeSystemIdCount: { + serializedName: "properties.activeSystemIdCount", + readOnly: true, + type: { + name: "Number" + } + } + } + } +}; + +export const AlertRuleTriggerRuleRunHeaders: coreClient.CompositeMapper = { + type: { + name: "Composite", + className: "AlertRuleTriggerRuleRunHeaders", + modelProperties: { + location: { + serializedName: "location", + type: { + name: "String" + } + } + } + } +}; + export const WatchlistsDeleteHeaders: coreClient.CompositeMapper = { type: { name: "Composite", @@ -15966,6 +19731,7 @@ export let discriminators = { "AutomationRuleCondition.PropertyArray": PropertyArrayConditionProperties, "AutomationRuleCondition.PropertyChanged": PropertyChangedConditionProperties, "AutomationRuleCondition.Property": PropertyConditionProperties, + "AutomationRuleAction.AddIncidentTask": AutomationRuleAddIncidentTaskAction, "AutomationRuleAction.ModifyProperties": AutomationRuleModifyPropertiesAction, "AutomationRuleAction.RunPlaybook": AutomationRuleRunPlaybookAction, "EntityTimelineItem.Activity": ActivityTimelineItem, @@ -15985,6 +19751,7 @@ export let discriminators = { "DataConnectorsCheckRequirements.MicrosoftThreatProtection": MtpCheckRequirements, "DataConnectorsCheckRequirements.OfficeATP": OfficeATPCheckRequirements, "DataConnectorsCheckRequirements.OfficeIRM": OfficeIRMCheckRequirements, + "DataConnectorsCheckRequirements.MicrosoftPurviewInformationProtection": MicrosoftPurviewInformationProtectionCheckRequirements, "DataConnectorsCheckRequirements.Office365Project": Office365ProjectCheckRequirements, "DataConnectorsCheckRequirements.OfficePowerBI": OfficePowerBICheckRequirements, "DataConnectorsCheckRequirements.ThreatIntelligence": TICheckRequirements, @@ -15997,12 +19764,14 @@ export let discriminators = { "ResourceWithEtag.Settings": Settings, "ResourceWithEtag.ThreatIntelligenceInformation": ThreatIntelligenceInformation, "ResourceWithEtag.DataConnector": DataConnector, + "ResourceWithEtag.DataConnectorDefinition": DataConnectorDefinition, "AlertRuleTemplate.MLBehaviorAnalytics": MLBehaviorAnalyticsAlertRuleTemplate, "AlertRuleTemplate.Fusion": FusionAlertRuleTemplate, "AlertRuleTemplate.ThreatIntelligence": ThreatIntelligenceAlertRuleTemplate, "AlertRuleTemplate.MicrosoftSecurityIncidentCreation": MicrosoftSecurityIncidentCreationAlertRuleTemplate, "AlertRuleTemplate.Scheduled": ScheduledAlertRuleTemplate, "AlertRuleTemplate.NRT": NrtAlertRuleTemplate, + "AzureEntityResource.BillingStatistic": BillingStatistic, "Entity.SecurityAlert": SecurityAlert, "Entity.Bookmark": HuntingBookmark, "Entity.Account": AccountEntity, @@ -16048,9 +19817,11 @@ export let discriminators = { "DataConnector.AzureSecurityCenter": ASCDataConnector, "DataConnector.AmazonWebServicesCloudTrail": AwsCloudTrailDataConnector, "DataConnector.AmazonWebServicesS3": AwsS3DataConnector, + "DataConnector.GCP": GCPDataConnector, "DataConnector.MicrosoftCloudAppSecurity": McasDataConnector, "DataConnector.Dynamics365": Dynamics365DataConnector, "DataConnector.OfficeATP": OfficeATPDataConnector, + "DataConnector.MicrosoftPurviewInformationProtection": MicrosoftPurviewInformationProtectionDataConnector, "DataConnector.Office365Project": Office365ProjectDataConnector, "DataConnector.OfficePowerBI": OfficePowerBIDataConnector, "DataConnector.OfficeIRM": OfficeIRMDataConnector, @@ -16060,5 +19831,7 @@ export let discriminators = { "DataConnector.ThreatIntelligenceTaxii": TiTaxiiDataConnector, "DataConnector.IOT": IoTDataConnector, "DataConnector.GenericUI": CodelessUiDataConnector, - "DataConnector.APIPolling": CodelessApiPollingDataConnector + "DataConnector.APIPolling": CodelessApiPollingDataConnector, + "DataConnectorDefinition.Customizable": CustomizableConnectorDefinition, + "BillingStatistic.SapSolutionUsage": SapSolutionUsageStatistic }; diff --git a/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts b/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts index dd3bcead9d0b..d56f552a16af 100644 --- a/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts +++ b/sdk/securityinsight/arm-securityinsight/src/models/parameters.ts @@ -15,32 +15,46 @@ import { AlertRule as AlertRuleMapper, ActionRequest as ActionRequestMapper, AutomationRule as AutomationRuleMapper, + EntityManualTriggerRequestBody as EntityManualTriggerRequestBodyMapper, + EntityExpandParameters as EntityExpandParametersMapper, + EntityGetInsightsParameters as EntityGetInsightsParametersMapper, ManualTriggerRequestBody as ManualTriggerRequestBodyMapper, Incident as IncidentMapper, - TeamProperties as TeamPropertiesMapper, + TeamInformation as TeamInformationMapper, Bookmark as BookmarkMapper, Relation as RelationMapper, BookmarkExpandParameters as BookmarkExpandParametersMapper, - EntityExpandParameters as EntityExpandParametersMapper, - EntityGetInsightsParameters as EntityGetInsightsParametersMapper, + PackageModel as PackageModelMapper, + TemplateModel as TemplateModelMapper, EntityTimelineParameters as EntityTimelineParametersMapper, CustomEntityQuery as CustomEntityQueryMapper, FileImport as FileImportMapper, + Hunt as HuntMapper, + HuntRelation as HuntRelationMapper, + HuntComment as HuntCommentMapper, IncidentComment as IncidentCommentMapper, + IncidentTask as IncidentTaskMapper, MetadataModel as MetadataModelMapper, MetadataPatch as MetadataPatchMapper, SentinelOnboardingState as SentinelOnboardingStateMapper, SecurityMLAnalyticsSetting as SecurityMLAnalyticsSettingMapper, Settings as SettingsMapper, SourceControl as SourceControlMapper, + Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema as Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchemaMapper, ThreatIntelligenceIndicatorModel as ThreatIntelligenceIndicatorModelMapper, ThreatIntelligenceFilteringCriteria as ThreatIntelligenceFilteringCriteriaMapper, ThreatIntelligenceAppendTags as ThreatIntelligenceAppendTagsMapper, + AnalyticsRuleRunTrigger as AnalyticsRuleRunTriggerMapper, Watchlist as WatchlistMapper, WatchlistItem as WatchlistItemMapper, + WorkspaceManagerAssignment as WorkspaceManagerAssignmentMapper, + WorkspaceManagerConfiguration as WorkspaceManagerConfigurationMapper, + WorkspaceManagerGroup as WorkspaceManagerGroupMapper, + WorkspaceManagerMember as WorkspaceManagerMemberMapper, DataConnector as DataConnectorMapper, DataConnectorConnectBody as DataConnectorConnectBodyMapper, - DataConnectorsCheckRequirements as DataConnectorsCheckRequirementsMapper + DataConnectorsCheckRequirements as DataConnectorsCheckRequirementsMapper, + DataConnectorDefinition as DataConnectorDefinitionMapper } from "../models/mappers"; export const accept: OperationParameter = { @@ -70,7 +84,7 @@ export const $host: OperationURLParameter = { export const apiVersion: OperationQueryParameter = { parameterPath: "apiVersion", mapper: { - defaultValue: "2022-09-01-preview", + defaultValue: "2023-07-01-preview", isConstant: true, serializedName: "api-version", type: { @@ -112,6 +126,7 @@ export const workspaceName: OperationURLParameter = { parameterPath: "workspaceName", mapper: { constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$"), MaxLength: 90, MinLength: 1 }, @@ -207,6 +222,54 @@ export const automationRuleToUpsert: OperationParameter = { }; export const requestBody: OperationParameter = { + parameterPath: ["options", "requestBody"], + mapper: EntityManualTriggerRequestBodyMapper +}; + +export const entityIdentifier: OperationURLParameter = { + parameterPath: "entityIdentifier", + mapper: { + serializedName: "entityIdentifier", + required: true, + type: { + name: "String" + } + } +}; + +export const entityId: OperationURLParameter = { + parameterPath: "entityId", + mapper: { + serializedName: "entityId", + required: true, + type: { + name: "String" + } + } +}; + +export const parameters: OperationParameter = { + parameterPath: "parameters", + mapper: EntityExpandParametersMapper +}; + +export const kind: OperationQueryParameter = { + parameterPath: "kind", + mapper: { + serializedName: "kind", + required: true, + type: { + name: "String" + } + } +}; + +export const parameters1: OperationParameter = { + parameterPath: "parameters", + mapper: EntityGetInsightsParametersMapper +}; + +export const requestBody1: OperationParameter = { parameterPath: ["options", "requestBody"], mapper: ManualTriggerRequestBodyMapper }; @@ -280,7 +343,21 @@ export const incident: OperationParameter = { export const teamProperties: OperationParameter = { parameterPath: "teamProperties", - mapper: TeamPropertiesMapper + mapper: TeamInformationMapper +}; + +export const billingStatisticName: OperationURLParameter = { + parameterPath: "billingStatisticName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "billingStatisticName", + required: true, + type: { + name: "String" + } + } }; export const bookmarkId: OperationURLParameter = { @@ -315,15 +392,15 @@ export const relation: OperationParameter = { mapper: RelationMapper }; -export const parameters: OperationParameter = { +export const parameters2: OperationParameter = { parameterPath: "parameters", mapper: BookmarkExpandParametersMapper }; -export const ipAddress: OperationQueryParameter = { - parameterPath: "ipAddress", +export const packageId: OperationURLParameter = { + parameterPath: "packageId", mapper: { - serializedName: "ipAddress", + serializedName: "packageId", required: true, type: { name: "String" @@ -331,10 +408,15 @@ export const ipAddress: OperationQueryParameter = { } }; -export const domain: OperationQueryParameter = { - parameterPath: "domain", +export const packageInstallationProperties: OperationParameter = { + parameterPath: "packageInstallationProperties", + mapper: PackageModelMapper +}; + +export const templateId: OperationURLParameter = { + parameterPath: "templateId", mapper: { - serializedName: "domain", + serializedName: "templateId", required: true, type: { name: "String" @@ -342,10 +424,15 @@ export const domain: OperationQueryParameter = { } }; -export const entityId: OperationURLParameter = { - parameterPath: "entityId", +export const templateInstallationProperties: OperationParameter = { + parameterPath: "templateInstallationProperties", + mapper: TemplateModelMapper +}; + +export const ipAddress: OperationQueryParameter = { + parameterPath: "ipAddress", mapper: { - serializedName: "entityId", + serializedName: "ipAddress", required: true, type: { name: "String" @@ -353,15 +440,10 @@ export const entityId: OperationURLParameter = { } }; -export const parameters1: OperationParameter = { - parameterPath: "parameters", - mapper: EntityExpandParametersMapper -}; - -export const kind: OperationQueryParameter = { - parameterPath: "kind", +export const domain: OperationQueryParameter = { + parameterPath: "domain", mapper: { - serializedName: "kind", + serializedName: "domain", required: true, type: { name: "String" @@ -369,11 +451,6 @@ export const kind: OperationQueryParameter = { } }; -export const parameters2: OperationParameter = { - parameterPath: "parameters", - mapper: EntityGetInsightsParametersMapper -}; - export const parameters3: OperationParameter = { parameterPath: "parameters", mapper: EntityTimelineParametersMapper @@ -444,6 +521,54 @@ export const fileImport: OperationParameter = { mapper: FileImportMapper }; +export const huntId: OperationURLParameter = { + parameterPath: "huntId", + mapper: { + serializedName: "huntId", + required: true, + type: { + name: "String" + } + } +}; + +export const hunt: OperationParameter = { + parameterPath: "hunt", + mapper: HuntMapper +}; + +export const huntRelationId: OperationURLParameter = { + parameterPath: "huntRelationId", + mapper: { + serializedName: "huntRelationId", + required: true, + type: { + name: "String" + } + } +}; + +export const huntRelation: OperationParameter = { + parameterPath: "huntRelation", + mapper: HuntRelationMapper +}; + +export const huntCommentId: OperationURLParameter = { + parameterPath: "huntCommentId", + mapper: { + serializedName: "huntCommentId", + required: true, + type: { + name: "String" + } + } +}; + +export const huntComment: OperationParameter = { + parameterPath: "huntComment", + mapper: HuntCommentMapper +}; + export const incidentCommentId: OperationURLParameter = { parameterPath: "incidentCommentId", mapper: { @@ -460,6 +585,22 @@ export const incidentComment: OperationParameter = { mapper: IncidentCommentMapper }; +export const incidentTaskId: OperationURLParameter = { + parameterPath: "incidentTaskId", + mapper: { + serializedName: "incidentTaskId", + required: true, + type: { + name: "String" + } + } +}; + +export const incidentTask: OperationParameter = { + parameterPath: "incidentTask", + mapper: IncidentTaskMapper +}; + export const skip: OperationQueryParameter = { parameterPath: ["options", "skip"], mapper: { @@ -473,6 +614,9 @@ export const skip: OperationQueryParameter = { export const metadataName: OperationURLParameter = { parameterPath: "metadataName", mapper: { + constraints: { + Pattern: new RegExp("^\\S+$") + }, serializedName: "metadataName", required: true, type: { @@ -518,6 +662,34 @@ export const sentinelOnboardingStateParameter: OperationParameter = { mapper: SentinelOnboardingStateMapper }; +export const recommendationId: OperationURLParameter = { + parameterPath: "recommendationId", + mapper: { + serializedName: "recommendationId", + required: true, + type: { + name: "Uuid" + } + } +}; + +export const recommendationPatch: OperationParameter = { + parameterPath: "recommendationPatch", + mapper: { + serializedName: "recommendationPatch", + required: true, + type: { + name: "Sequence", + element: { + type: { + name: "Composite", + className: "RecommendationPatch" + } + } + } + } +}; + export const settingsResourceName: OperationURLParameter = { parameterPath: "settingsResourceName", mapper: { @@ -577,6 +749,11 @@ export const sourceControl: OperationParameter = { mapper: SourceControlMapper }; +export const repositoryAccess: OperationParameter = { + parameterPath: "repositoryAccess", + mapper: Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchemaMapper +}; + export const threatIntelligenceProperties: OperationParameter = { parameterPath: "threatIntelligenceProperties", mapper: ThreatIntelligenceIndicatorModelMapper @@ -608,6 +785,22 @@ export const threatIntelligenceReplaceTags: OperationParameter = { mapper: ThreatIntelligenceIndicatorModelMapper }; +export const ruleRunId: OperationURLParameter = { + parameterPath: "ruleRunId", + mapper: { + serializedName: "ruleRunId", + required: true, + type: { + name: "String" + } + } +}; + +export const analyticsRuleRunTriggerParameter: OperationParameter = { + parameterPath: "analyticsRuleRunTriggerParameter", + mapper: AnalyticsRuleRunTriggerMapper +}; + export const watchlistAlias: OperationURLParameter = { parameterPath: "watchlistAlias", mapper: { @@ -640,6 +833,96 @@ export const watchlistItem: OperationParameter = { mapper: WatchlistItemMapper }; +export const workspaceManagerAssignmentName: OperationURLParameter = { + parameterPath: "workspaceManagerAssignmentName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "workspaceManagerAssignmentName", + required: true, + type: { + name: "String" + } + } +}; + +export const workspaceManagerAssignment: OperationParameter = { + parameterPath: "workspaceManagerAssignment", + mapper: WorkspaceManagerAssignmentMapper +}; + +export const jobName: OperationURLParameter = { + parameterPath: "jobName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "jobName", + required: true, + type: { + name: "String" + } + } +}; + +export const workspaceManagerConfigurationName: OperationURLParameter = { + parameterPath: "workspaceManagerConfigurationName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "workspaceManagerConfigurationName", + required: true, + type: { + name: "String" + } + } +}; + +export const workspaceManagerConfiguration: OperationParameter = { + parameterPath: "workspaceManagerConfiguration", + mapper: WorkspaceManagerConfigurationMapper +}; + +export const workspaceManagerGroupName: OperationURLParameter = { + parameterPath: "workspaceManagerGroupName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "workspaceManagerGroupName", + required: true, + type: { + name: "String" + } + } +}; + +export const workspaceManagerGroup: OperationParameter = { + parameterPath: "workspaceManagerGroup", + mapper: WorkspaceManagerGroupMapper +}; + +export const workspaceManagerMemberName: OperationURLParameter = { + parameterPath: "workspaceManagerMemberName", + mapper: { + constraints: { + Pattern: new RegExp("^[A-Za-z0-9][A-Za-z0-9-]+[A-Za-z0-9]$") + }, + serializedName: "workspaceManagerMemberName", + required: true, + type: { + name: "String" + } + } +}; + +export const workspaceManagerMember: OperationParameter = { + parameterPath: "workspaceManagerMember", + mapper: WorkspaceManagerMemberMapper +}; + export const dataConnectorId: OperationURLParameter = { parameterPath: "dataConnectorId", mapper: { @@ -665,3 +948,22 @@ export const dataConnectorsCheckRequirements: OperationParameter = { parameterPath: "dataConnectorsCheckRequirements", mapper: DataConnectorsCheckRequirementsMapper }; + +export const dataConnectorDefinitionName: OperationURLParameter = { + parameterPath: "dataConnectorDefinitionName", + mapper: { + constraints: { + Pattern: new RegExp("^[a-z0-9A-Z-_]*$") + }, + serializedName: "dataConnectorDefinitionName", + required: true, + type: { + name: "String" + } + } +}; + +export const connectorDefinitionInput: OperationParameter = { + parameterPath: "connectorDefinitionInput", + mapper: DataConnectorDefinitionMapper +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/alertRuleOperations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/alertRuleOperations.ts new file mode 100644 index 000000000000..d296c8917879 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/alertRuleOperations.ts @@ -0,0 +1,181 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { AlertRuleOperations } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + SimplePollerLike, + OperationState, + createHttpPoller +} from "@azure/core-lro"; +import { createLroSpec } from "../lroImpl"; +import { + AnalyticsRuleRunTrigger, + AlertRuleTriggerRuleRunOptionalParams, + AlertRuleTriggerRuleRunResponse +} from "../models"; + +/** Class containing AlertRuleOperations operations. */ +export class AlertRuleOperationsImpl implements AlertRuleOperations { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class AlertRuleOperations class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * triggers analytics rule run + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleId Alert rule ID + * @param analyticsRuleRunTriggerParameter The Analytics Rule Run Trigger parameter + * @param options The options parameters. + */ + async beginTriggerRuleRun( + resourceGroupName: string, + workspaceName: string, + ruleId: string, + analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, + options?: AlertRuleTriggerRuleRunOptionalParams + ): Promise< + SimplePollerLike< + OperationState, + AlertRuleTriggerRuleRunResponse + > + > { + const directSendOperation = async ( + args: coreClient.OperationArguments, + spec: coreClient.OperationSpec + ): Promise => { + return this.client.sendOperationRequest(args, spec); + }; + const sendOperationFn = async ( + args: coreClient.OperationArguments, + spec: coreClient.OperationSpec + ) => { + let currentRawResponse: + | coreClient.FullOperationResponse + | undefined = undefined; + const providedCallback = args.options?.onResponse; + const callback: coreClient.RawResponseCallback = ( + rawResponse: coreClient.FullOperationResponse, + flatResponse: unknown + ) => { + currentRawResponse = rawResponse; + providedCallback?.(rawResponse, flatResponse); + }; + const updatedArgs = { + ...args, + options: { + ...args.options, + onResponse: callback + } + }; + const flatResponse = await directSendOperation(updatedArgs, spec); + return { + flatResponse, + rawResponse: { + statusCode: currentRawResponse!.status, + body: currentRawResponse!.parsedBody, + headers: currentRawResponse!.headers.toJSON() + } + }; + }; + + const lro = createLroSpec({ + sendOperationFn, + args: { + resourceGroupName, + workspaceName, + ruleId, + analyticsRuleRunTriggerParameter, + options + }, + spec: triggerRuleRunOperationSpec + }); + const poller = await createHttpPoller< + AlertRuleTriggerRuleRunResponse, + OperationState + >(lro, { + restoreFrom: options?.resumeFrom, + intervalInMs: options?.updateIntervalInMs, + resourceLocationConfig: "location" + }); + await poller.poll(); + return poller; + } + + /** + * triggers analytics rule run + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleId Alert rule ID + * @param analyticsRuleRunTriggerParameter The Analytics Rule Run Trigger parameter + * @param options The options parameters. + */ + async beginTriggerRuleRunAndWait( + resourceGroupName: string, + workspaceName: string, + ruleId: string, + analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, + options?: AlertRuleTriggerRuleRunOptionalParams + ): Promise { + const poller = await this.beginTriggerRuleRun( + resourceGroupName, + workspaceName, + ruleId, + analyticsRuleRunTriggerParameter, + options + ); + return poller.pollUntilDone(); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const triggerRuleRunOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules/{ruleId}/triggerRuleRun", + httpMethod: "POST", + responses: { + 200: { + headersMapper: Mappers.AlertRuleTriggerRuleRunHeaders + }, + 201: { + headersMapper: Mappers.AlertRuleTriggerRuleRunHeaders + }, + 202: { + headersMapper: Mappers.AlertRuleTriggerRuleRunHeaders + }, + 204: { + headersMapper: Mappers.AlertRuleTriggerRuleRunHeaders + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.analyticsRuleRunTriggerParameter, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.ruleId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/billingStatistics.ts b/sdk/securityinsight/arm-securityinsight/src/operations/billingStatistics.ts new file mode 100644 index 000000000000..5e710a2ad42f --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/billingStatistics.ts @@ -0,0 +1,238 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { BillingStatistics } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + BillingStatisticUnion, + BillingStatisticsListNextOptionalParams, + BillingStatisticsListOptionalParams, + BillingStatisticsListResponse, + BillingStatisticsGetOptionalParams, + BillingStatisticsGetResponse, + BillingStatisticsListNextResponse +} from "../models"; + +/// +/** Class containing BillingStatistics operations. */ +export class BillingStatisticsImpl implements BillingStatistics { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class BillingStatistics class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all Microsoft Sentinel billing statistics. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: BillingStatisticsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: BillingStatisticsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: BillingStatisticsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: BillingStatisticsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all Microsoft Sentinel billing statistics. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: BillingStatisticsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a billing statistic + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param billingStatisticName The name of the billing statistic + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + billingStatisticName: string, + options?: BillingStatisticsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, billingStatisticName, options }, + getOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: BillingStatisticsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/billingStatistics", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.BillingStatisticList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/billingStatistics/{billingStatisticName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.BillingStatistic + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.billingStatisticName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.BillingStatisticList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/bookmarkOperations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/bookmarkOperations.ts index cd0a944ecdca..846da8040277 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/bookmarkOperations.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/bookmarkOperations.ts @@ -65,7 +65,7 @@ const expandOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.parameters, + requestBody: Parameters.parameters2, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/contentPackage.ts b/sdk/securityinsight/arm-securityinsight/src/operations/contentPackage.ts new file mode 100644 index 000000000000..3731abbbd299 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/contentPackage.ts @@ -0,0 +1,131 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { ContentPackage } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + PackageModel, + ContentPackageInstallOptionalParams, + ContentPackageInstallResponse, + ContentPackageUninstallOptionalParams +} from "../models"; + +/** Class containing ContentPackage operations. */ +export class ContentPackageImpl implements ContentPackage { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ContentPackage class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Install a package to the workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param packageInstallationProperties Package installation properties + * @param options The options parameters. + */ + install( + resourceGroupName: string, + workspaceName: string, + packageId: string, + packageInstallationProperties: PackageModel, + options?: ContentPackageInstallOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + packageId, + packageInstallationProperties, + options + }, + installOperationSpec + ); + } + + /** + * Uninstall a package from the workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + uninstall( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ContentPackageUninstallOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, packageId, options }, + uninstallOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const installOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentPackages/{packageId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.PackageModel + }, + 201: { + bodyMapper: Mappers.PackageModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.packageInstallationProperties, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.packageId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const uninstallOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentPackages/{packageId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.packageId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/contentPackages.ts b/sdk/securityinsight/arm-securityinsight/src/operations/contentPackages.ts new file mode 100644 index 000000000000..e65e8657b309 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/contentPackages.ts @@ -0,0 +1,244 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { ContentPackages } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + PackageModel, + ContentPackagesListNextOptionalParams, + ContentPackagesListOptionalParams, + ContentPackagesListResponse, + ContentPackagesGetOptionalParams, + ContentPackagesGetResponse, + ContentPackagesListNextResponse +} from "../models"; + +/// +/** Class containing ContentPackages operations. */ +export class ContentPackagesImpl implements ContentPackages { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ContentPackages class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all installed packages. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: ContentPackagesListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: ContentPackagesListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: ContentPackagesListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: ContentPackagesListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all installed packages. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: ContentPackagesListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets an installed packages by its id. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ContentPackagesGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, packageId, options }, + getOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: ContentPackagesListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentPackages", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.PackageList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentPackages/{packageId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.PackageModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.packageId + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.PackageList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplate.ts b/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplate.ts new file mode 100644 index 000000000000..b64c36e4be2d --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplate.ts @@ -0,0 +1,175 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { ContentTemplate } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + TemplateModel, + ContentTemplateInstallOptionalParams, + ContentTemplateInstallResponse, + ContentTemplateGetOptionalParams, + ContentTemplateGetResponse, + ContentTemplateDeleteOptionalParams +} from "../models"; + +/** Class containing ContentTemplate operations. */ +export class ContentTemplateImpl implements ContentTemplate { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ContentTemplate class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Install a template. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param templateInstallationProperties Template installation properties + * @param options The options parameters. + */ + install( + resourceGroupName: string, + workspaceName: string, + templateId: string, + templateInstallationProperties: TemplateModel, + options?: ContentTemplateInstallOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + templateId, + templateInstallationProperties, + options + }, + installOperationSpec + ); + } + + /** + * Gets a template byt its identifier. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ContentTemplateGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, templateId, options }, + getOperationSpec + ); + } + + /** + * Delete an installed template. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ContentTemplateDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, templateId, options }, + deleteOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const installOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentTemplates/{templateId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.TemplateModel + }, + 201: { + bodyMapper: Mappers.TemplateModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.templateInstallationProperties, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.templateId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentTemplates/{templateId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TemplateModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.templateId + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentTemplates/{templateId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.templateId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplates.ts b/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplates.ts new file mode 100644 index 000000000000..db69c749078c --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/contentTemplates.ts @@ -0,0 +1,200 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { ContentTemplates } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + TemplateModel, + ContentTemplatesListNextOptionalParams, + ContentTemplatesListOptionalParams, + ContentTemplatesListResponse, + ContentTemplatesListNextResponse +} from "../models"; + +/// +/** Class containing ContentTemplates operations. */ +export class ContentTemplatesImpl implements ContentTemplates { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ContentTemplates class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all installed templates. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: ContentTemplatesListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: ContentTemplatesListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: ContentTemplatesListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: ContentTemplatesListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all installed templates. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: ContentTemplatesListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: ContentTemplatesListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentTemplates", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TemplateList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TemplateList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectorDefinitions.ts b/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectorDefinitions.ts new file mode 100644 index 000000000000..6180d637b205 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/dataConnectorDefinitions.ts @@ -0,0 +1,347 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { DataConnectorDefinitions } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + DataConnectorDefinitionUnion, + DataConnectorDefinitionsListNextOptionalParams, + DataConnectorDefinitionsListOptionalParams, + DataConnectorDefinitionsListResponse, + DataConnectorDefinitionsGetOptionalParams, + DataConnectorDefinitionsGetResponse, + DataConnectorDefinitionsCreateOrUpdateOptionalParams, + DataConnectorDefinitionsCreateOrUpdateResponse, + DataConnectorDefinitionsDeleteOptionalParams, + DataConnectorDefinitionsListNextResponse +} from "../models"; + +/// +/** Class containing DataConnectorDefinitions operations. */ +export class DataConnectorDefinitionsImpl implements DataConnectorDefinitions { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class DataConnectorDefinitions class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all data connector definitions. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: DataConnectorDefinitionsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: DataConnectorDefinitionsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: DataConnectorDefinitionsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: DataConnectorDefinitionsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all data connector definitions. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: DataConnectorDefinitionsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + options?: DataConnectorDefinitionsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + dataConnectorDefinitionName, + options + }, + getOperationSpec + ); + } + + /** + * Creates or updates the data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param connectorDefinitionInput The data connector definition + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + connectorDefinitionInput: DataConnectorDefinitionUnion, + options?: DataConnectorDefinitionsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + dataConnectorDefinitionName, + connectorDefinitionInput, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * Delete the data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + options?: DataConnectorDefinitionsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + dataConnectorDefinitionName, + options + }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: DataConnectorDefinitionsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/dataConnectorDefinitions", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.DataConnectorDefinitionArmCollectionWrapper + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/dataConnectorDefinitions/{dataConnectorDefinitionName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.DataConnectorDefinition + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.dataConnectorDefinitionName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/dataConnectorDefinitions/{dataConnectorDefinitionName}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.DataConnectorDefinition + }, + 201: { + bodyMapper: Mappers.DataConnectorDefinition + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.connectorDefinitionInput, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.dataConnectorDefinitionName + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/dataConnectorDefinitions/{dataConnectorDefinitionName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.dataConnectorDefinitionName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.DataConnectorDefinitionArmCollectionWrapper + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts b/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts index bb7626cae02f..04f800510bd5 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/entities.ts @@ -18,6 +18,7 @@ import { EntitiesListNextOptionalParams, EntitiesListOptionalParams, EntitiesListResponse, + EntitiesRunPlaybookOptionalParams, EntitiesGetOptionalParams, EntitiesGetResponse, EntityExpandParameters, @@ -121,6 +122,25 @@ export class EntitiesImpl implements Entities { } } + /** + * Triggers playbook on a specific entity. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param entityIdentifier Entity identifier. + * @param options The options parameters. + */ + runPlaybook( + resourceGroupName: string, + workspaceName: string, + entityIdentifier: string, + options?: EntitiesRunPlaybookOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, entityIdentifier, options }, + runPlaybookOperationSpec + ); + } + /** * Gets all entities. * @param resourceGroupName The name of the resource group. The name is case insensitive. @@ -242,6 +262,29 @@ export class EntitiesImpl implements Entities { // Operation Specifications const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); +const runPlaybookOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/entities/{entityIdentifier}/runPlaybook", + httpMethod: "POST", + responses: { + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.requestBody, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.entityIdentifier + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; const listOperationSpec: coreClient.OperationSpec = { path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/entities", @@ -299,7 +342,7 @@ const expandOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.parameters1, + requestBody: Parameters.parameters, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, @@ -347,7 +390,7 @@ const getInsightsOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.parameters2, + requestBody: Parameters.parameters1, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/entityRelations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/entityRelations.ts index e76d8ca12d13..68100fb6d6cf 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/entityRelations.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/entityRelations.ts @@ -70,8 +70,8 @@ const getRelationOperationSpec: coreClient.OperationSpec = { Parameters.subscriptionId, Parameters.resourceGroupName, Parameters.workspaceName, - Parameters.relationName, - Parameters.entityId + Parameters.entityId, + Parameters.relationName ], headerParameters: [Parameters.accept], serializer diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/fileImports.ts b/sdk/securityinsight/arm-securityinsight/src/operations/fileImports.ts index 2c61c29c476c..54c08b6e6cb3 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/fileImports.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/fileImports.ts @@ -13,8 +13,12 @@ import * as coreClient from "@azure/core-client"; import * as Mappers from "../models/mappers"; import * as Parameters from "../models/parameters"; import { SecurityInsights } from "../securityInsights"; -import { PollerLike, PollOperationState, LroEngine } from "@azure/core-lro"; -import { LroImpl } from "../lroImpl"; +import { + SimplePollerLike, + OperationState, + createHttpPoller +} from "@azure/core-lro"; +import { createLroSpec } from "../lroImpl"; import { FileImport, FileImportsListNextOptionalParams, @@ -188,8 +192,8 @@ export class FileImportsImpl implements FileImports { fileImportId: string, options?: FileImportsDeleteOptionalParams ): Promise< - PollerLike< - PollOperationState, + SimplePollerLike< + OperationState, FileImportsDeleteResponse > > { @@ -199,7 +203,7 @@ export class FileImportsImpl implements FileImports { ): Promise => { return this.client.sendOperationRequest(args, spec); }; - const sendOperation = async ( + const sendOperationFn = async ( args: coreClient.OperationArguments, spec: coreClient.OperationSpec ) => { @@ -232,15 +236,18 @@ export class FileImportsImpl implements FileImports { }; }; - const lro = new LroImpl( - sendOperation, - { resourceGroupName, workspaceName, fileImportId, options }, - deleteOperationSpec - ); - const poller = new LroEngine(lro, { - resumeFrom: options?.resumeFrom, + const lro = createLroSpec({ + sendOperationFn, + args: { resourceGroupName, workspaceName, fileImportId, options }, + spec: deleteOperationSpec + }); + const poller = await createHttpPoller< + FileImportsDeleteResponse, + OperationState + >(lro, { + restoreFrom: options?.resumeFrom, intervalInMs: options?.updateIntervalInMs, - lroResourceLocationConfig: "location" + resourceLocationConfig: "location" }); await poller.poll(); return poller; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/get.ts b/sdk/securityinsight/arm-securityinsight/src/operations/get.ts new file mode 100644 index 000000000000..3b420b7b9785 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/get.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { Get } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + GetSingleRecommendationOptionalParams, + GetSingleRecommendationResponse +} from "../models"; + +/** Class containing Get operations. */ +export class GetImpl implements Get { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class Get class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets a recommendation by its id. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param options The options parameters. + */ + singleRecommendation( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + options?: GetSingleRecommendationOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, recommendationId, options }, + singleRecommendationOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const singleRecommendationOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/recommendations/{recommendationId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.Recommendation + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.recommendationId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/getRecommendations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/getRecommendations.ts new file mode 100644 index 000000000000..b354ff342f93 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/getRecommendations.ts @@ -0,0 +1,72 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { GetRecommendations } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + GetRecommendationsListOptionalParams, + GetRecommendationsListResponse +} from "../models"; + +/** Class containing GetRecommendations operations. */ +export class GetRecommendationsImpl implements GetRecommendations { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class GetRecommendations class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets a list of all recommendations. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: GetRecommendationsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/recommendations", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.RecommendationList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/getTriggeredAnalyticsRuleRuns.ts b/sdk/securityinsight/arm-securityinsight/src/operations/getTriggeredAnalyticsRuleRuns.ts new file mode 100644 index 000000000000..c6813493406d --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/getTriggeredAnalyticsRuleRuns.ts @@ -0,0 +1,195 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { GetTriggeredAnalyticsRuleRuns } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + TriggeredAnalyticsRuleRun, + GetTriggeredAnalyticsRuleRunsListNextOptionalParams, + GetTriggeredAnalyticsRuleRunsListOptionalParams, + GetTriggeredAnalyticsRuleRunsListResponse, + GetTriggeredAnalyticsRuleRunsListNextResponse +} from "../models"; + +/// +/** Class containing GetTriggeredAnalyticsRuleRuns operations. */ +export class GetTriggeredAnalyticsRuleRunsImpl + implements GetTriggeredAnalyticsRuleRuns { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class GetTriggeredAnalyticsRuleRuns class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets the triggered analytics rule runs. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: GetTriggeredAnalyticsRuleRunsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: GetTriggeredAnalyticsRuleRunsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: GetTriggeredAnalyticsRuleRunsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: GetTriggeredAnalyticsRuleRunsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets the triggered analytics rule runs. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: GetTriggeredAnalyticsRuleRunsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: GetTriggeredAnalyticsRuleRunsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/triggeredAnalyticsRuleRuns", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TriggeredAnalyticsRuleRuns + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TriggeredAnalyticsRuleRuns + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/huntComments.ts b/sdk/securityinsight/arm-securityinsight/src/operations/huntComments.ts new file mode 100644 index 000000000000..696429328d4d --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/huntComments.ts @@ -0,0 +1,376 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { HuntComments } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + HuntComment, + HuntCommentsListNextOptionalParams, + HuntCommentsListOptionalParams, + HuntCommentsListResponse, + HuntCommentsGetOptionalParams, + HuntCommentsGetResponse, + HuntCommentsDeleteOptionalParams, + HuntCommentsCreateOrUpdateOptionalParams, + HuntCommentsCreateOrUpdateResponse, + HuntCommentsListNextResponse +} from "../models"; + +/// +/** Class containing HuntComments operations. */ +export class HuntCommentsImpl implements HuntComments { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class HuntComments class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all hunt comments + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntCommentsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll( + resourceGroupName, + workspaceName, + huntId, + options + ); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + huntId, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntCommentsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: HuntCommentsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list( + resourceGroupName, + workspaceName, + huntId, + options + ); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + huntId, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntCommentsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + huntId, + options + )) { + yield* page; + } + } + + /** + * Gets all hunt comments + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntCommentsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, options }, + listOperationSpec + ); + } + + /** + * Gets a hunt comment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + options?: HuntCommentsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, huntCommentId, options }, + getOperationSpec + ); + } + + /** + * Delete a hunt comment. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + options?: HuntCommentsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, huntCommentId, options }, + deleteOperationSpec + ); + } + + /** + * Creates or updates a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param huntComment The hunt comment + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + huntComment: HuntComment, + options?: HuntCommentsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + huntId, + huntCommentId, + huntComment, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + huntId: string, + nextLink: string, + options?: HuntCommentsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/comments", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntCommentList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/comments/{huntCommentId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntComment + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntCommentId + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/comments/{huntCommentId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntCommentId + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/comments/{huntCommentId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.HuntComment + }, + 201: { + bodyMapper: Mappers.HuntComment + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.huntComment, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntCommentId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntCommentList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/huntRelations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/huntRelations.ts new file mode 100644 index 000000000000..3988d013b4b4 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/huntRelations.ts @@ -0,0 +1,376 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { HuntRelations } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + HuntRelation, + HuntRelationsListNextOptionalParams, + HuntRelationsListOptionalParams, + HuntRelationsListResponse, + HuntRelationsGetOptionalParams, + HuntRelationsGetResponse, + HuntRelationsDeleteOptionalParams, + HuntRelationsCreateOrUpdateOptionalParams, + HuntRelationsCreateOrUpdateResponse, + HuntRelationsListNextResponse +} from "../models"; + +/// +/** Class containing HuntRelations operations. */ +export class HuntRelationsImpl implements HuntRelations { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class HuntRelations class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all hunt relations + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntRelationsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll( + resourceGroupName, + workspaceName, + huntId, + options + ); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + huntId, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntRelationsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: HuntRelationsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list( + resourceGroupName, + workspaceName, + huntId, + options + ); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + huntId, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntRelationsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + huntId, + options + )) { + yield* page; + } + } + + /** + * Gets all hunt relations + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntRelationsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, options }, + listOperationSpec + ); + } + + /** + * Gets a hunt relation + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + options?: HuntRelationsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, huntRelationId, options }, + getOperationSpec + ); + } + + /** + * Delete a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + options?: HuntRelationsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, huntRelationId, options }, + deleteOperationSpec + ); + } + + /** + * Creates or updates a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param huntRelation The hunt relation + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + huntRelation: HuntRelation, + options?: HuntRelationsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + huntId, + huntRelationId, + huntRelation, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + huntId: string, + nextLink: string, + options?: HuntRelationsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/relations", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntRelationList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/relations/{huntRelationId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntRelation + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntRelationId + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/relations/{huntRelationId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntRelationId + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}/relations/{huntRelationId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.HuntRelation + }, + 201: { + bodyMapper: Mappers.HuntRelation + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.huntRelation, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId, + Parameters.huntRelationId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntRelationList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/hunts.ts b/sdk/securityinsight/arm-securityinsight/src/operations/hunts.ts new file mode 100644 index 000000000000..0570089177ed --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/hunts.ts @@ -0,0 +1,337 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { Hunts } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + Hunt, + HuntsListNextOptionalParams, + HuntsListOptionalParams, + HuntsListResponse, + HuntsGetOptionalParams, + HuntsGetResponse, + HuntsDeleteOptionalParams, + HuntsCreateOrUpdateOptionalParams, + HuntsCreateOrUpdateResponse, + HuntsListNextResponse +} from "../models"; + +/// +/** Class containing Hunts operations. */ +export class HuntsImpl implements Hunts { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class Hunts class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all hunts, without relations and comments. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: HuntsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: HuntsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: HuntsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: HuntsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all hunts, without relations and comments. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: HuntsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a hunt, without relations and comments. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, options }, + getOperationSpec + ); + } + + /** + * Delete a hunt. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, options }, + deleteOperationSpec + ); + } + + /** + * Create or update a hunt + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param hunt The hunt + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + hunt: Hunt, + options?: HuntsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, huntId, hunt, options }, + createOrUpdateOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: HuntsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.Hunt + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/hunts/{huntId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.Hunt + }, + 201: { + bodyMapper: Mappers.Hunt + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.hunt, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.huntId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.HuntList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/incidentTasks.ts b/sdk/securityinsight/arm-securityinsight/src/operations/incidentTasks.ts new file mode 100644 index 000000000000..fa1f14f92b19 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/incidentTasks.ts @@ -0,0 +1,370 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { IncidentTasks } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + IncidentTask, + IncidentTasksListNextOptionalParams, + IncidentTasksListOptionalParams, + IncidentTasksListResponse, + IncidentTasksGetOptionalParams, + IncidentTasksGetResponse, + IncidentTasksCreateOrUpdateOptionalParams, + IncidentTasksCreateOrUpdateResponse, + IncidentTasksDeleteOptionalParams, + IncidentTasksListNextResponse +} from "../models"; + +/// +/** Class containing IncidentTasks operations. */ +export class IncidentTasksImpl implements IncidentTasks { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class IncidentTasks class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all incident tasks. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + options?: IncidentTasksListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll( + resourceGroupName, + workspaceName, + incidentId, + options + ); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + incidentId, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + options?: IncidentTasksListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: IncidentTasksListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list( + resourceGroupName, + workspaceName, + incidentId, + options + ); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + incidentId, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + options?: IncidentTasksListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + incidentId, + options + )) { + yield* page; + } + } + + /** + * Gets all incident tasks. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + options?: IncidentTasksListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, incidentId, options }, + listOperationSpec + ); + } + + /** + * Gets an incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + options?: IncidentTasksGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, incidentId, incidentTaskId, options }, + getOperationSpec + ); + } + + /** + * Creates or updates the incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param incidentTask The incident task + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + incidentTask: IncidentTask, + options?: IncidentTasksCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + incidentId, + incidentTaskId, + incidentTask, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * Delete the incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + options?: IncidentTasksDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, incidentId, incidentTaskId, options }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + nextLink: string, + options?: IncidentTasksListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, incidentId, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentId}/tasks", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.IncidentTaskList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.incidentId + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentId}/tasks/{incidentTaskId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.IncidentTask + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.incidentId, + Parameters.incidentTaskId + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentId}/tasks/{incidentTaskId}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.IncidentTask + }, + 201: { + bodyMapper: Mappers.IncidentTask + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.incidentTask, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.incidentId, + Parameters.incidentTaskId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentId}/tasks/{incidentTaskId}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.incidentId, + Parameters.incidentTaskId + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.IncidentTaskList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink, + Parameters.incidentId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/incidents.ts b/sdk/securityinsight/arm-securityinsight/src/operations/incidents.ts index f4ed7f0e348b..3eda00aced3d 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/incidents.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/incidents.ts @@ -25,7 +25,7 @@ import { IncidentsCreateOrUpdateOptionalParams, IncidentsCreateOrUpdateResponse, IncidentsDeleteOptionalParams, - TeamProperties, + TeamInformation, IncidentsCreateTeamOptionalParams, IncidentsCreateTeamResponse, IncidentsListAlertsOptionalParams, @@ -234,7 +234,7 @@ export class IncidentsImpl implements Incidents { resourceGroupName: string, workspaceName: string, incidentId: string, - teamProperties: TeamProperties, + teamProperties: TeamInformation, options?: IncidentsCreateTeamOptionalParams ): Promise { return this.client.sendOperationRequest( @@ -336,7 +336,7 @@ const runPlaybookOperationSpec: coreClient.OperationSpec = { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.requestBody, + requestBody: Parameters.requestBody1, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/index.ts b/sdk/securityinsight/arm-securityinsight/src/operations/index.ts index 6f66d834535e..3bc6b6537fb6 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/index.ts @@ -10,24 +10,40 @@ export * from "./alertRules"; export * from "./actions"; export * from "./alertRuleTemplates"; export * from "./automationRules"; +export * from "./entities"; export * from "./incidents"; +export * from "./billingStatistics"; export * from "./bookmarks"; export * from "./bookmarkRelations"; export * from "./bookmarkOperations"; +export * from "./contentPackages"; +export * from "./contentPackage"; +export * from "./productPackages"; +export * from "./productPackage"; +export * from "./productTemplates"; +export * from "./productTemplate"; +export * from "./contentTemplates"; +export * from "./contentTemplate"; export * from "./iPGeodata"; export * from "./domainWhois"; -export * from "./entities"; export * from "./entitiesGetTimeline"; export * from "./entitiesRelations"; export * from "./entityRelations"; export * from "./entityQueries"; export * from "./entityQueryTemplates"; export * from "./fileImports"; +export * from "./hunts"; +export * from "./huntRelations"; +export * from "./huntComments"; export * from "./incidentComments"; export * from "./incidentRelations"; +export * from "./incidentTasks"; export * from "./metadata"; export * from "./officeConsents"; export * from "./sentinelOnboardingStates"; +export * from "./getRecommendations"; +export * from "./get"; +export * from "./update"; export * from "./securityMLAnalyticsSettings"; export * from "./productSettings"; export * from "./sourceControlOperations"; @@ -35,8 +51,17 @@ export * from "./sourceControls"; export * from "./threatIntelligenceIndicator"; export * from "./threatIntelligenceIndicators"; export * from "./threatIntelligenceIndicatorMetrics"; +export * from "./triggeredAnalyticsRuleRunOperations"; +export * from "./getTriggeredAnalyticsRuleRuns"; +export * from "./alertRuleOperations"; export * from "./watchlists"; export * from "./watchlistItems"; +export * from "./workspaceManagerAssignments"; +export * from "./workspaceManagerAssignmentJobs"; +export * from "./workspaceManagerConfigurations"; +export * from "./workspaceManagerGroups"; +export * from "./workspaceManagerMembers"; export * from "./dataConnectors"; export * from "./dataConnectorsCheckRequirementsOperations"; +export * from "./dataConnectorDefinitions"; export * from "./operations"; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/productPackage.ts b/sdk/securityinsight/arm-securityinsight/src/operations/productPackage.ts new file mode 100644 index 000000000000..acf9d57737ca --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/productPackage.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { ProductPackage } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + ProductPackageGetOptionalParams, + ProductPackageGetResponse +} from "../models"; + +/** Class containing ProductPackage operations. */ +export class ProductPackageImpl implements ProductPackage { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ProductPackage class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets a package by its identifier from the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ProductPackageGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, packageId, options }, + getOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentProductPackages/{packageId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductPackageModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.packageId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/productPackages.ts b/sdk/securityinsight/arm-securityinsight/src/operations/productPackages.ts new file mode 100644 index 000000000000..28d86369fd85 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/productPackages.ts @@ -0,0 +1,200 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { ProductPackages } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + ProductPackageModel, + ProductPackagesListNextOptionalParams, + ProductPackagesListOptionalParams, + ProductPackagesListResponse, + ProductPackagesListNextResponse +} from "../models"; + +/// +/** Class containing ProductPackages operations. */ +export class ProductPackagesImpl implements ProductPackages { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ProductPackages class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all packages from the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: ProductPackagesListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: ProductPackagesListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: ProductPackagesListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: ProductPackagesListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all packages from the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: ProductPackagesListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: ProductPackagesListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentProductPackages", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductPackageList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductPackageList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/productTemplate.ts b/sdk/securityinsight/arm-securityinsight/src/operations/productTemplate.ts new file mode 100644 index 000000000000..fc2e45fe9c5c --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/productTemplate.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { ProductTemplate } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + ProductTemplateGetOptionalParams, + ProductTemplateGetResponse +} from "../models"; + +/** Class containing ProductTemplate operations. */ +export class ProductTemplateImpl implements ProductTemplate { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ProductTemplate class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets a template by its identifier. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ProductTemplateGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, templateId, options }, + getOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentproducttemplates/{templateId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductTemplateModel + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.templateId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/productTemplates.ts b/sdk/securityinsight/arm-securityinsight/src/operations/productTemplates.ts new file mode 100644 index 000000000000..2399be7fcd15 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/productTemplates.ts @@ -0,0 +1,200 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { ProductTemplates } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + ProductTemplateModel, + ProductTemplatesListNextOptionalParams, + ProductTemplatesListOptionalParams, + ProductTemplatesListResponse, + ProductTemplatesListNextResponse +} from "../models"; + +/// +/** Class containing ProductTemplates operations. */ +export class ProductTemplatesImpl implements ProductTemplates { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class ProductTemplates class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all templates in the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: ProductTemplatesListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: ProductTemplatesListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: ProductTemplatesListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: ProductTemplatesListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all templates in the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: ProductTemplatesListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: ProductTemplatesListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/contentProductTemplates", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductTemplateList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.filter, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.ProductTemplateList + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/sourceControls.ts b/sdk/securityinsight/arm-securityinsight/src/operations/sourceControls.ts index ca0870585015..0e5a3199dbe7 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operations/sourceControls.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operations/sourceControls.ts @@ -20,9 +20,11 @@ import { SourceControlsListResponse, SourceControlsGetOptionalParams, SourceControlsGetResponse, - SourceControlsDeleteOptionalParams, SourceControlsCreateOptionalParams, SourceControlsCreateResponse, + Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema, + SourceControlsDeleteOptionalParams, + SourceControlsDeleteResponse, SourceControlsListNextResponse } from "../models"; @@ -152,48 +154,56 @@ export class SourceControlsImpl implements SourceControls { } /** - * Delete a source control. + * Creates a source control. * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param sourceControlId Source control Id + * @param sourceControl The SourceControl * @param options The options parameters. */ - delete( + create( resourceGroupName: string, workspaceName: string, sourceControlId: string, - options?: SourceControlsDeleteOptionalParams - ): Promise { + sourceControl: SourceControl, + options?: SourceControlsCreateOptionalParams + ): Promise { return this.client.sendOperationRequest( - { resourceGroupName, workspaceName, sourceControlId, options }, - deleteOperationSpec + { + resourceGroupName, + workspaceName, + sourceControlId, + sourceControl, + options + }, + createOperationSpec ); } /** - * Creates a source control. + * Delete a source control. * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param sourceControlId Source control Id - * @param sourceControl The SourceControl + * @param repositoryAccess The repository access credentials. * @param options The options parameters. */ - create( + delete( resourceGroupName: string, workspaceName: string, sourceControlId: string, - sourceControl: SourceControl, - options?: SourceControlsCreateOptionalParams - ): Promise { + repositoryAccess: Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema, + options?: SourceControlsDeleteOptionalParams + ): Promise { return this.client.sendOperationRequest( { resourceGroupName, workspaceName, sourceControlId, - sourceControl, + repositoryAccess, options }, - createOperationSpec + deleteOperationSpec ); } @@ -264,17 +274,22 @@ const getOperationSpec: coreClient.OperationSpec = { headerParameters: [Parameters.accept], serializer }; -const deleteOperationSpec: coreClient.OperationSpec = { +const createOperationSpec: coreClient.OperationSpec = { path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/sourcecontrols/{sourceControlId}", - httpMethod: "DELETE", + httpMethod: "PUT", responses: { - 200: {}, - 204: {}, + 200: { + bodyMapper: Mappers.SourceControl + }, + 201: { + bodyMapper: Mappers.SourceControl + }, default: { bodyMapper: Mappers.CloudError } }, + requestBody: Parameters.sourceControl, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, @@ -283,25 +298,23 @@ const deleteOperationSpec: coreClient.OperationSpec = { Parameters.workspaceName, Parameters.sourceControlId ], - headerParameters: [Parameters.accept], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", serializer }; -const createOperationSpec: coreClient.OperationSpec = { +const deleteOperationSpec: coreClient.OperationSpec = { path: - "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/sourcecontrols/{sourceControlId}", - httpMethod: "PUT", + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/sourcecontrols/{sourceControlId}/delete", + httpMethod: "POST", responses: { 200: { - bodyMapper: Mappers.SourceControl - }, - 201: { - bodyMapper: Mappers.SourceControl + bodyMapper: Mappers.Warning }, default: { bodyMapper: Mappers.CloudError } }, - requestBody: Parameters.sourceControl, + requestBody: Parameters.repositoryAccess, queryParameters: [Parameters.apiVersion], urlParameters: [ Parameters.$host, diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/triggeredAnalyticsRuleRunOperations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/triggeredAnalyticsRuleRunOperations.ts new file mode 100644 index 000000000000..2c3565718cc0 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/triggeredAnalyticsRuleRunOperations.ts @@ -0,0 +1,76 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { TriggeredAnalyticsRuleRunOperations } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + TriggeredAnalyticsRuleRunGetOptionalParams, + TriggeredAnalyticsRuleRunGetResponse +} from "../models"; + +/** Class containing TriggeredAnalyticsRuleRunOperations operations. */ +export class TriggeredAnalyticsRuleRunOperationsImpl + implements TriggeredAnalyticsRuleRunOperations { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class TriggeredAnalyticsRuleRunOperations class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets the triggered analytics rule run. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleRunId the triggered rule id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + ruleRunId: string, + options?: TriggeredAnalyticsRuleRunGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, ruleRunId, options }, + getOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/triggeredAnalyticsRuleRuns/{ruleRunId}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.TriggeredAnalyticsRuleRun + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.ruleRunId + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/update.ts b/sdk/securityinsight/arm-securityinsight/src/operations/update.ts new file mode 100644 index 000000000000..d6ff55439104 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/update.ts @@ -0,0 +1,180 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { Update } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + SimplePollerLike, + OperationState, + createHttpPoller +} from "@azure/core-lro"; +import { createLroSpec } from "../lroImpl"; +import { + RecommendationPatch, + UpdateRecommendationOptionalParams, + UpdateRecommendationResponse +} from "../models"; + +/** Class containing Update operations. */ +export class UpdateImpl implements Update { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class Update class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Patch a recommendation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param recommendationPatch Recommendation Fields to Update. + * @param options The options parameters. + */ + async beginRecommendation( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + recommendationPatch: RecommendationPatch[], + options?: UpdateRecommendationOptionalParams + ): Promise< + SimplePollerLike< + OperationState, + UpdateRecommendationResponse + > + > { + const directSendOperation = async ( + args: coreClient.OperationArguments, + spec: coreClient.OperationSpec + ): Promise => { + return this.client.sendOperationRequest(args, spec); + }; + const sendOperationFn = async ( + args: coreClient.OperationArguments, + spec: coreClient.OperationSpec + ) => { + let currentRawResponse: + | coreClient.FullOperationResponse + | undefined = undefined; + const providedCallback = args.options?.onResponse; + const callback: coreClient.RawResponseCallback = ( + rawResponse: coreClient.FullOperationResponse, + flatResponse: unknown + ) => { + currentRawResponse = rawResponse; + providedCallback?.(rawResponse, flatResponse); + }; + const updatedArgs = { + ...args, + options: { + ...args.options, + onResponse: callback + } + }; + const flatResponse = await directSendOperation(updatedArgs, spec); + return { + flatResponse, + rawResponse: { + statusCode: currentRawResponse!.status, + body: currentRawResponse!.parsedBody, + headers: currentRawResponse!.headers.toJSON() + } + }; + }; + + const lro = createLroSpec({ + sendOperationFn, + args: { + resourceGroupName, + workspaceName, + recommendationId, + recommendationPatch, + options + }, + spec: recommendationOperationSpec + }); + const poller = await createHttpPoller< + UpdateRecommendationResponse, + OperationState + >(lro, { + restoreFrom: options?.resumeFrom, + intervalInMs: options?.updateIntervalInMs + }); + await poller.poll(); + return poller; + } + + /** + * Patch a recommendation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param recommendationPatch Recommendation Fields to Update. + * @param options The options parameters. + */ + async beginRecommendationAndWait( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + recommendationPatch: RecommendationPatch[], + options?: UpdateRecommendationOptionalParams + ): Promise { + const poller = await this.beginRecommendation( + resourceGroupName, + workspaceName, + recommendationId, + recommendationPatch, + options + ); + return poller.pollUntilDone(); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const recommendationOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/recommendations/{recommendationId}", + httpMethod: "PATCH", + responses: { + 200: { + bodyMapper: Mappers.Recommendation + }, + 201: { + bodyMapper: Mappers.Recommendation + }, + 202: { + bodyMapper: Mappers.Recommendation + }, + 204: { + bodyMapper: Mappers.Recommendation + }, + default: { + bodyMapper: Mappers.CloudError + } + }, + requestBody: Parameters.recommendationPatch, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.recommendationId + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignmentJobs.ts b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignmentJobs.ts new file mode 100644 index 000000000000..1f933d3ffb19 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignmentJobs.ts @@ -0,0 +1,387 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { WorkspaceManagerAssignmentJobs } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + Job, + WorkspaceManagerAssignmentJobsListNextOptionalParams, + WorkspaceManagerAssignmentJobsListOptionalParams, + WorkspaceManagerAssignmentJobsListResponse, + WorkspaceManagerAssignmentJobsCreateOptionalParams, + WorkspaceManagerAssignmentJobsCreateResponse, + WorkspaceManagerAssignmentJobsGetOptionalParams, + WorkspaceManagerAssignmentJobsGetResponse, + WorkspaceManagerAssignmentJobsDeleteOptionalParams, + WorkspaceManagerAssignmentJobsListNextResponse +} from "../models"; + +/// +/** Class containing WorkspaceManagerAssignmentJobs operations. */ +export class WorkspaceManagerAssignmentJobsImpl + implements WorkspaceManagerAssignmentJobs { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class WorkspaceManagerAssignmentJobs class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Get all jobs for the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll( + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + ); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: WorkspaceManagerAssignmentJobsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list( + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + ); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + )) { + yield* page; + } + } + + /** + * Get all jobs for the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + }, + listOperationSpec + ); + } + + /** + * Create a job for the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + create( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsCreateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + }, + createOperationSpec + ); + } + + /** + * Gets a job + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param jobName The job name + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + jobName: string, + options?: WorkspaceManagerAssignmentJobsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + jobName, + options + }, + getOperationSpec + ); + } + + /** + * Deletes the specified job from the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param jobName The job name + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + jobName: string, + options?: WorkspaceManagerAssignmentJobsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + jobName, + options + }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + nextLink: string, + options?: WorkspaceManagerAssignmentJobsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + nextLink, + options + }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}/jobs", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.JobList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}/jobs", + httpMethod: "POST", + responses: { + 200: { + bodyMapper: Mappers.Job + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}/jobs/{jobName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.Job + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName, + Parameters.jobName + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}/jobs/{jobName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName, + Parameters.jobName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.JobList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignments.ts b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignments.ts new file mode 100644 index 000000000000..2e3b3be3faca --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerAssignments.ts @@ -0,0 +1,353 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { WorkspaceManagerAssignments } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + WorkspaceManagerAssignment, + WorkspaceManagerAssignmentsListNextOptionalParams, + WorkspaceManagerAssignmentsListOptionalParams, + WorkspaceManagerAssignmentsListResponse, + WorkspaceManagerAssignmentsGetOptionalParams, + WorkspaceManagerAssignmentsGetResponse, + WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams, + WorkspaceManagerAssignmentsCreateOrUpdateResponse, + WorkspaceManagerAssignmentsDeleteOptionalParams, + WorkspaceManagerAssignmentsListNextResponse +} from "../models"; + +/// +/** Class containing WorkspaceManagerAssignments operations. */ +export class WorkspaceManagerAssignmentsImpl + implements WorkspaceManagerAssignments { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class WorkspaceManagerAssignments class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Get all workspace manager assignments for the Sentinel workspace manager. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerAssignmentsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerAssignmentsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: WorkspaceManagerAssignmentsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerAssignmentsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Get all workspace manager assignments for the Sentinel workspace manager. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerAssignmentsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + }, + getOperationSpec + ); + } + + /** + * Creates or updates a workspace manager assignment. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param workspaceManagerAssignment The workspace manager assignment + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + workspaceManagerAssignment: WorkspaceManagerAssignment, + options?: WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + workspaceManagerAssignment, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * Deletes a workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerAssignmentName, + options + }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: WorkspaceManagerAssignmentsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerAssignmentList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerAssignment + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerAssignment + }, + 201: { + bodyMapper: Mappers.WorkspaceManagerAssignment + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + requestBody: Parameters.workspaceManagerAssignment, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerAssignments/{workspaceManagerAssignmentName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerAssignmentName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerAssignmentList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerConfigurations.ts b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerConfigurations.ts new file mode 100644 index 000000000000..a36af1270b4d --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerConfigurations.ts @@ -0,0 +1,353 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { WorkspaceManagerConfigurations } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + WorkspaceManagerConfiguration, + WorkspaceManagerConfigurationsListNextOptionalParams, + WorkspaceManagerConfigurationsListOptionalParams, + WorkspaceManagerConfigurationsListResponse, + WorkspaceManagerConfigurationsGetOptionalParams, + WorkspaceManagerConfigurationsGetResponse, + WorkspaceManagerConfigurationsDeleteOptionalParams, + WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams, + WorkspaceManagerConfigurationsCreateOrUpdateResponse, + WorkspaceManagerConfigurationsListNextResponse +} from "../models"; + +/// +/** Class containing WorkspaceManagerConfigurations operations. */ +export class WorkspaceManagerConfigurationsImpl + implements WorkspaceManagerConfigurations { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class WorkspaceManagerConfigurations class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all workspace manager configurations for a Sentinel workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerConfigurationsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerConfigurationsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: WorkspaceManagerConfigurationsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerConfigurationsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all workspace manager configurations for a Sentinel workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerConfigurationsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a workspace manager configuration + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + options?: WorkspaceManagerConfigurationsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerConfigurationName, + options + }, + getOperationSpec + ); + } + + /** + * Deletes a workspace manager configuration + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + options?: WorkspaceManagerConfigurationsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerConfigurationName, + options + }, + deleteOperationSpec + ); + } + + /** + * Creates or updates a workspace manager configuration. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param workspaceManagerConfiguration The workspace manager configuration + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + workspaceManagerConfiguration: WorkspaceManagerConfiguration, + options?: WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerConfigurationName, + workspaceManagerConfiguration, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: WorkspaceManagerConfigurationsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerConfigurations", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerConfigurationList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerConfigurations/{workspaceManagerConfigurationName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerConfiguration + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerConfigurationName + ], + headerParameters: [Parameters.accept], + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerConfigurations/{workspaceManagerConfigurationName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerConfigurationName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerConfigurations/{workspaceManagerConfigurationName}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerConfiguration + }, + 201: { + bodyMapper: Mappers.WorkspaceManagerConfiguration + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + requestBody: Parameters.workspaceManagerConfiguration, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerConfigurationName + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerConfigurationList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerGroups.ts b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerGroups.ts new file mode 100644 index 000000000000..c5783093b8dc --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerGroups.ts @@ -0,0 +1,342 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { WorkspaceManagerGroups } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + WorkspaceManagerGroup, + WorkspaceManagerGroupsListNextOptionalParams, + WorkspaceManagerGroupsListOptionalParams, + WorkspaceManagerGroupsListResponse, + WorkspaceManagerGroupsGetOptionalParams, + WorkspaceManagerGroupsGetResponse, + WorkspaceManagerGroupsCreateOrUpdateOptionalParams, + WorkspaceManagerGroupsCreateOrUpdateResponse, + WorkspaceManagerGroupsDeleteOptionalParams, + WorkspaceManagerGroupsListNextResponse +} from "../models"; + +/// +/** Class containing WorkspaceManagerGroups operations. */ +export class WorkspaceManagerGroupsImpl implements WorkspaceManagerGroups { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class WorkspaceManagerGroups class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all workspace manager groups in the Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerGroupsListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerGroupsListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: WorkspaceManagerGroupsListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerGroupsListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all workspace manager groups in the Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerGroupsListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a workspace manager group + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + options?: WorkspaceManagerGroupsGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, workspaceManagerGroupName, options }, + getOperationSpec + ); + } + + /** + * Creates or updates a workspace manager group. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param workspaceManagerGroup The workspace manager group object + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + workspaceManagerGroup: WorkspaceManagerGroup, + options?: WorkspaceManagerGroupsCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerGroupName, + workspaceManagerGroup, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * Deletes a workspace manager group + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + options?: WorkspaceManagerGroupsDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, workspaceManagerGroupName, options }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: WorkspaceManagerGroupsListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerGroups", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerGroupList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerGroups/{workspaceManagerGroupName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerGroup + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerGroupName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerGroups/{workspaceManagerGroupName}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerGroup + }, + 201: { + bodyMapper: Mappers.WorkspaceManagerGroup + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + requestBody: Parameters.workspaceManagerGroup, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerGroupName + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerGroups/{workspaceManagerGroupName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerGroupName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerGroupList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerMembers.ts b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerMembers.ts new file mode 100644 index 000000000000..225d3d113c87 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operations/workspaceManagerMembers.ts @@ -0,0 +1,342 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator, PageSettings } from "@azure/core-paging"; +import { setContinuationToken } from "../pagingHelper"; +import { WorkspaceManagerMembers } from "../operationsInterfaces"; +import * as coreClient from "@azure/core-client"; +import * as Mappers from "../models/mappers"; +import * as Parameters from "../models/parameters"; +import { SecurityInsights } from "../securityInsights"; +import { + WorkspaceManagerMember, + WorkspaceManagerMembersListNextOptionalParams, + WorkspaceManagerMembersListOptionalParams, + WorkspaceManagerMembersListResponse, + WorkspaceManagerMembersGetOptionalParams, + WorkspaceManagerMembersGetResponse, + WorkspaceManagerMembersCreateOrUpdateOptionalParams, + WorkspaceManagerMembersCreateOrUpdateResponse, + WorkspaceManagerMembersDeleteOptionalParams, + WorkspaceManagerMembersListNextResponse +} from "../models"; + +/// +/** Class containing WorkspaceManagerMembers operations. */ +export class WorkspaceManagerMembersImpl implements WorkspaceManagerMembers { + private readonly client: SecurityInsights; + + /** + * Initialize a new instance of the class WorkspaceManagerMembers class. + * @param client Reference to the service client + */ + constructor(client: SecurityInsights) { + this.client = client; + } + + /** + * Gets all workspace manager members that exist for the given Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + public list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerMembersListOptionalParams + ): PagedAsyncIterableIterator { + const iter = this.listPagingAll(resourceGroupName, workspaceName, options); + return { + next() { + return iter.next(); + }, + [Symbol.asyncIterator]() { + return this; + }, + byPage: (settings?: PageSettings) => { + if (settings?.maxPageSize) { + throw new Error("maxPageSize is not supported by this operation."); + } + return this.listPagingPage( + resourceGroupName, + workspaceName, + options, + settings + ); + } + }; + } + + private async *listPagingPage( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerMembersListOptionalParams, + settings?: PageSettings + ): AsyncIterableIterator { + let result: WorkspaceManagerMembersListResponse; + let continuationToken = settings?.continuationToken; + if (!continuationToken) { + result = await this._list(resourceGroupName, workspaceName, options); + let page = result.value || []; + continuationToken = result.nextLink; + setContinuationToken(page, continuationToken); + yield page; + } + while (continuationToken) { + result = await this._listNext( + resourceGroupName, + workspaceName, + continuationToken, + options + ); + continuationToken = result.nextLink; + let page = result.value || []; + setContinuationToken(page, continuationToken); + yield page; + } + } + + private async *listPagingAll( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerMembersListOptionalParams + ): AsyncIterableIterator { + for await (const page of this.listPagingPage( + resourceGroupName, + workspaceName, + options + )) { + yield* page; + } + } + + /** + * Gets all workspace manager members that exist for the given Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + private _list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerMembersListOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, options }, + listOperationSpec + ); + } + + /** + * Gets a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + options?: WorkspaceManagerMembersGetOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, workspaceManagerMemberName, options }, + getOperationSpec + ); + } + + /** + * Creates or updates a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param workspaceManagerMember The workspace manager member object + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + workspaceManagerMember: WorkspaceManagerMember, + options?: WorkspaceManagerMembersCreateOrUpdateOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { + resourceGroupName, + workspaceName, + workspaceManagerMemberName, + workspaceManagerMember, + options + }, + createOrUpdateOperationSpec + ); + } + + /** + * Deletes a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + options?: WorkspaceManagerMembersDeleteOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, workspaceManagerMemberName, options }, + deleteOperationSpec + ); + } + + /** + * ListNext + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param nextLink The nextLink from the previous successful call to the List method. + * @param options The options parameters. + */ + private _listNext( + resourceGroupName: string, + workspaceName: string, + nextLink: string, + options?: WorkspaceManagerMembersListNextOptionalParams + ): Promise { + return this.client.sendOperationRequest( + { resourceGroupName, workspaceName, nextLink, options }, + listNextOperationSpec + ); + } +} +// Operation Specifications +const serializer = coreClient.createSerializer(Mappers, /* isXml */ false); + +const listOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerMembers/", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerMembersList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [ + Parameters.apiVersion, + Parameters.orderby, + Parameters.top, + Parameters.skipToken + ], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName + ], + headerParameters: [Parameters.accept], + serializer +}; +const getOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerMembers/{workspaceManagerMemberName}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerMember + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerMemberName + ], + headerParameters: [Parameters.accept], + serializer +}; +const createOrUpdateOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerMembers/{workspaceManagerMemberName}", + httpMethod: "PUT", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerMember + }, + 201: { + bodyMapper: Mappers.WorkspaceManagerMember + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + requestBody: Parameters.workspaceManagerMember, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerMemberName + ], + headerParameters: [Parameters.accept, Parameters.contentType], + mediaType: "json", + serializer +}; +const deleteOperationSpec: coreClient.OperationSpec = { + path: + "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/workspaceManagerMembers/{workspaceManagerMemberName}", + httpMethod: "DELETE", + responses: { + 200: {}, + 204: {}, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + queryParameters: [Parameters.apiVersion], + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.workspaceManagerMemberName + ], + headerParameters: [Parameters.accept], + serializer +}; +const listNextOperationSpec: coreClient.OperationSpec = { + path: "{nextLink}", + httpMethod: "GET", + responses: { + 200: { + bodyMapper: Mappers.WorkspaceManagerMembersList + }, + default: { + bodyMapper: Mappers.ErrorResponse + } + }, + urlParameters: [ + Parameters.$host, + Parameters.subscriptionId, + Parameters.resourceGroupName, + Parameters.workspaceName, + Parameters.nextLink + ], + headerParameters: [Parameters.accept], + serializer +}; diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/alertRuleOperations.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/alertRuleOperations.ts new file mode 100644 index 000000000000..65409feac5fa --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/alertRuleOperations.ts @@ -0,0 +1,53 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { SimplePollerLike, OperationState } from "@azure/core-lro"; +import { + AnalyticsRuleRunTrigger, + AlertRuleTriggerRuleRunOptionalParams, + AlertRuleTriggerRuleRunResponse +} from "../models"; + +/** Interface representing a AlertRuleOperations. */ +export interface AlertRuleOperations { + /** + * triggers analytics rule run + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleId Alert rule ID + * @param analyticsRuleRunTriggerParameter The Analytics Rule Run Trigger parameter + * @param options The options parameters. + */ + beginTriggerRuleRun( + resourceGroupName: string, + workspaceName: string, + ruleId: string, + analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, + options?: AlertRuleTriggerRuleRunOptionalParams + ): Promise< + SimplePollerLike< + OperationState, + AlertRuleTriggerRuleRunResponse + > + >; + /** + * triggers analytics rule run + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleId Alert rule ID + * @param analyticsRuleRunTriggerParameter The Analytics Rule Run Trigger parameter + * @param options The options parameters. + */ + beginTriggerRuleRunAndWait( + resourceGroupName: string, + workspaceName: string, + ruleId: string, + analyticsRuleRunTriggerParameter: AnalyticsRuleRunTrigger, + options?: AlertRuleTriggerRuleRunOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/billingStatistics.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/billingStatistics.ts new file mode 100644 index 000000000000..830a21e2c156 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/billingStatistics.ts @@ -0,0 +1,44 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + BillingStatisticUnion, + BillingStatisticsListOptionalParams, + BillingStatisticsGetOptionalParams, + BillingStatisticsGetResponse +} from "../models"; + +/// +/** Interface representing a BillingStatistics. */ +export interface BillingStatistics { + /** + * Gets all Microsoft Sentinel billing statistics. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: BillingStatisticsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a billing statistic + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param billingStatisticName The name of the billing statistic + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + billingStatisticName: string, + options?: BillingStatisticsGetOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackage.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackage.ts new file mode 100644 index 000000000000..164dee4d9d59 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackage.ts @@ -0,0 +1,46 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + PackageModel, + ContentPackageInstallOptionalParams, + ContentPackageInstallResponse, + ContentPackageUninstallOptionalParams +} from "../models"; + +/** Interface representing a ContentPackage. */ +export interface ContentPackage { + /** + * Install a package to the workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param packageInstallationProperties Package installation properties + * @param options The options parameters. + */ + install( + resourceGroupName: string, + workspaceName: string, + packageId: string, + packageInstallationProperties: PackageModel, + options?: ContentPackageInstallOptionalParams + ): Promise; + /** + * Uninstall a package from the workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + uninstall( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ContentPackageUninstallOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackages.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackages.ts new file mode 100644 index 000000000000..7eb1124132b5 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentPackages.ts @@ -0,0 +1,44 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + PackageModel, + ContentPackagesListOptionalParams, + ContentPackagesGetOptionalParams, + ContentPackagesGetResponse +} from "../models"; + +/// +/** Interface representing a ContentPackages. */ +export interface ContentPackages { + /** + * Gets all installed packages. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: ContentPackagesListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets an installed packages by its id. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ContentPackagesGetOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplate.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplate.ts new file mode 100644 index 000000000000..45d4798d8872 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplate.ts @@ -0,0 +1,61 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + TemplateModel, + ContentTemplateInstallOptionalParams, + ContentTemplateInstallResponse, + ContentTemplateGetOptionalParams, + ContentTemplateGetResponse, + ContentTemplateDeleteOptionalParams +} from "../models"; + +/** Interface representing a ContentTemplate. */ +export interface ContentTemplate { + /** + * Install a template. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param templateInstallationProperties Template installation properties + * @param options The options parameters. + */ + install( + resourceGroupName: string, + workspaceName: string, + templateId: string, + templateInstallationProperties: TemplateModel, + options?: ContentTemplateInstallOptionalParams + ): Promise; + /** + * Gets a template byt its identifier. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ContentTemplateGetOptionalParams + ): Promise; + /** + * Delete an installed template. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ContentTemplateDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplates.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplates.ts new file mode 100644 index 000000000000..242e84f2defc --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/contentTemplates.ts @@ -0,0 +1,26 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { TemplateModel, ContentTemplatesListOptionalParams } from "../models"; + +/// +/** Interface representing a ContentTemplates. */ +export interface ContentTemplates { + /** + * Gets all installed templates. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: ContentTemplatesListOptionalParams + ): PagedAsyncIterableIterator; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/dataConnectorDefinitions.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/dataConnectorDefinitions.ts new file mode 100644 index 000000000000..11b0b408fd23 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/dataConnectorDefinitions.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + DataConnectorDefinitionUnion, + DataConnectorDefinitionsListOptionalParams, + DataConnectorDefinitionsGetOptionalParams, + DataConnectorDefinitionsGetResponse, + DataConnectorDefinitionsCreateOrUpdateOptionalParams, + DataConnectorDefinitionsCreateOrUpdateResponse, + DataConnectorDefinitionsDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a DataConnectorDefinitions. */ +export interface DataConnectorDefinitions { + /** + * Gets all data connector definitions. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: DataConnectorDefinitionsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + options?: DataConnectorDefinitionsGetOptionalParams + ): Promise; + /** + * Creates or updates the data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param connectorDefinitionInput The data connector definition + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + connectorDefinitionInput: DataConnectorDefinitionUnion, + options?: DataConnectorDefinitionsCreateOrUpdateOptionalParams + ): Promise; + /** + * Delete the data connector definition. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param dataConnectorDefinitionName The data connector definition name. + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + dataConnectorDefinitionName: string, + options?: DataConnectorDefinitionsDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/entities.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/entities.ts index ac24d1939afa..4a8ae16ec998 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/entities.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/entities.ts @@ -10,6 +10,7 @@ import { PagedAsyncIterableIterator } from "@azure/core-paging"; import { EntityUnion, EntitiesListOptionalParams, + EntitiesRunPlaybookOptionalParams, EntitiesGetOptionalParams, EntitiesGetResponse, EntityExpandParameters, @@ -37,6 +38,19 @@ export interface Entities { workspaceName: string, options?: EntitiesListOptionalParams ): PagedAsyncIterableIterator; + /** + * Triggers playbook on a specific entity. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param entityIdentifier Entity identifier. + * @param options The options parameters. + */ + runPlaybook( + resourceGroupName: string, + workspaceName: string, + entityIdentifier: string, + options?: EntitiesRunPlaybookOptionalParams + ): Promise; /** * Gets an entity. * @param resourceGroupName The name of the resource group. The name is case insensitive. diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/fileImports.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/fileImports.ts index 4cd0209b551b..c25bcdcbf704 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/fileImports.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/fileImports.ts @@ -7,7 +7,7 @@ */ import { PagedAsyncIterableIterator } from "@azure/core-paging"; -import { PollerLike, PollOperationState } from "@azure/core-lro"; +import { SimplePollerLike, OperationState } from "@azure/core-lro"; import { FileImport, FileImportsListOptionalParams, @@ -74,8 +74,8 @@ export interface FileImports { fileImportId: string, options?: FileImportsDeleteOptionalParams ): Promise< - PollerLike< - PollOperationState, + SimplePollerLike< + OperationState, FileImportsDeleteResponse > >; diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/get.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/get.ts new file mode 100644 index 000000000000..8384596c454c --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/get.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + GetSingleRecommendationOptionalParams, + GetSingleRecommendationResponse +} from "../models"; + +/** Interface representing a Get. */ +export interface Get { + /** + * Gets a recommendation by its id. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param options The options parameters. + */ + singleRecommendation( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + options?: GetSingleRecommendationOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getRecommendations.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getRecommendations.ts new file mode 100644 index 000000000000..3c68d7feb9c2 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getRecommendations.ts @@ -0,0 +1,27 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + GetRecommendationsListOptionalParams, + GetRecommendationsListResponse +} from "../models"; + +/** Interface representing a GetRecommendations. */ +export interface GetRecommendations { + /** + * Gets a list of all recommendations. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: GetRecommendationsListOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getTriggeredAnalyticsRuleRuns.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getTriggeredAnalyticsRuleRuns.ts new file mode 100644 index 000000000000..f1c077beeeaa --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/getTriggeredAnalyticsRuleRuns.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + TriggeredAnalyticsRuleRun, + GetTriggeredAnalyticsRuleRunsListOptionalParams +} from "../models"; + +/// +/** Interface representing a GetTriggeredAnalyticsRuleRuns. */ +export interface GetTriggeredAnalyticsRuleRuns { + /** + * Gets the triggered analytics rule runs. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: GetTriggeredAnalyticsRuleRunsListOptionalParams + ): PagedAsyncIterableIterator; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntComments.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntComments.ts new file mode 100644 index 000000000000..97f77b87fa15 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntComments.ts @@ -0,0 +1,83 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + HuntComment, + HuntCommentsListOptionalParams, + HuntCommentsGetOptionalParams, + HuntCommentsGetResponse, + HuntCommentsDeleteOptionalParams, + HuntCommentsCreateOrUpdateOptionalParams, + HuntCommentsCreateOrUpdateResponse +} from "../models"; + +/// +/** Interface representing a HuntComments. */ +export interface HuntComments { + /** + * Gets all hunt comments + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntCommentsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a hunt comment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + options?: HuntCommentsGetOptionalParams + ): Promise; + /** + * Delete a hunt comment. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + options?: HuntCommentsDeleteOptionalParams + ): Promise; + /** + * Creates or updates a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntCommentId The hunt comment id (GUID) + * @param huntComment The hunt comment + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntCommentId: string, + huntComment: HuntComment, + options?: HuntCommentsCreateOrUpdateOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntRelations.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntRelations.ts new file mode 100644 index 000000000000..212769ec0194 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/huntRelations.ts @@ -0,0 +1,83 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + HuntRelation, + HuntRelationsListOptionalParams, + HuntRelationsGetOptionalParams, + HuntRelationsGetResponse, + HuntRelationsDeleteOptionalParams, + HuntRelationsCreateOrUpdateOptionalParams, + HuntRelationsCreateOrUpdateResponse +} from "../models"; + +/// +/** Interface representing a HuntRelations. */ +export interface HuntRelations { + /** + * Gets all hunt relations + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntRelationsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a hunt relation + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + options?: HuntRelationsGetOptionalParams + ): Promise; + /** + * Delete a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + options?: HuntRelationsDeleteOptionalParams + ): Promise; + /** + * Creates or updates a hunt relation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param huntRelationId The hunt relation id (GUID) + * @param huntRelation The hunt relation + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + huntRelationId: string, + huntRelation: HuntRelation, + options?: HuntRelationsCreateOrUpdateOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/hunts.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/hunts.ts new file mode 100644 index 000000000000..687cb244f5c4 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/hunts.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + Hunt, + HuntsListOptionalParams, + HuntsGetOptionalParams, + HuntsGetResponse, + HuntsDeleteOptionalParams, + HuntsCreateOrUpdateOptionalParams, + HuntsCreateOrUpdateResponse +} from "../models"; + +/// +/** Interface representing a Hunts. */ +export interface Hunts { + /** + * Gets all hunts, without relations and comments. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: HuntsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a hunt, without relations and comments. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntsGetOptionalParams + ): Promise; + /** + * Delete a hunt. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + huntId: string, + options?: HuntsDeleteOptionalParams + ): Promise; + /** + * Create or update a hunt + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param huntId The hunt id (GUID) + * @param hunt The hunt + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + huntId: string, + hunt: Hunt, + options?: HuntsCreateOrUpdateOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidentTasks.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidentTasks.ts new file mode 100644 index 000000000000..68e3fc281f99 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidentTasks.ts @@ -0,0 +1,83 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + IncidentTask, + IncidentTasksListOptionalParams, + IncidentTasksGetOptionalParams, + IncidentTasksGetResponse, + IncidentTasksCreateOrUpdateOptionalParams, + IncidentTasksCreateOrUpdateResponse, + IncidentTasksDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a IncidentTasks. */ +export interface IncidentTasks { + /** + * Gets all incident tasks. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + options?: IncidentTasksListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets an incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + options?: IncidentTasksGetOptionalParams + ): Promise; + /** + * Creates or updates the incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param incidentTask The incident task + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + incidentTask: IncidentTask, + options?: IncidentTasksCreateOrUpdateOptionalParams + ): Promise; + /** + * Delete the incident task. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param incidentId Incident ID + * @param incidentTaskId Incident task ID + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + incidentId: string, + incidentTaskId: string, + options?: IncidentTasksDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidents.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidents.ts index 18695a4f8cc7..300c8af1bbdc 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidents.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/incidents.ts @@ -17,7 +17,7 @@ import { IncidentsCreateOrUpdateOptionalParams, IncidentsCreateOrUpdateResponse, IncidentsDeleteOptionalParams, - TeamProperties, + TeamInformation, IncidentsCreateTeamOptionalParams, IncidentsCreateTeamResponse, IncidentsListAlertsOptionalParams, @@ -109,7 +109,7 @@ export interface Incidents { resourceGroupName: string, workspaceName: string, incidentId: string, - teamProperties: TeamProperties, + teamProperties: TeamInformation, options?: IncidentsCreateTeamOptionalParams ): Promise; /** diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts index 6f66d834535e..3bc6b6537fb6 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/index.ts @@ -10,24 +10,40 @@ export * from "./alertRules"; export * from "./actions"; export * from "./alertRuleTemplates"; export * from "./automationRules"; +export * from "./entities"; export * from "./incidents"; +export * from "./billingStatistics"; export * from "./bookmarks"; export * from "./bookmarkRelations"; export * from "./bookmarkOperations"; +export * from "./contentPackages"; +export * from "./contentPackage"; +export * from "./productPackages"; +export * from "./productPackage"; +export * from "./productTemplates"; +export * from "./productTemplate"; +export * from "./contentTemplates"; +export * from "./contentTemplate"; export * from "./iPGeodata"; export * from "./domainWhois"; -export * from "./entities"; export * from "./entitiesGetTimeline"; export * from "./entitiesRelations"; export * from "./entityRelations"; export * from "./entityQueries"; export * from "./entityQueryTemplates"; export * from "./fileImports"; +export * from "./hunts"; +export * from "./huntRelations"; +export * from "./huntComments"; export * from "./incidentComments"; export * from "./incidentRelations"; +export * from "./incidentTasks"; export * from "./metadata"; export * from "./officeConsents"; export * from "./sentinelOnboardingStates"; +export * from "./getRecommendations"; +export * from "./get"; +export * from "./update"; export * from "./securityMLAnalyticsSettings"; export * from "./productSettings"; export * from "./sourceControlOperations"; @@ -35,8 +51,17 @@ export * from "./sourceControls"; export * from "./threatIntelligenceIndicator"; export * from "./threatIntelligenceIndicators"; export * from "./threatIntelligenceIndicatorMetrics"; +export * from "./triggeredAnalyticsRuleRunOperations"; +export * from "./getTriggeredAnalyticsRuleRuns"; +export * from "./alertRuleOperations"; export * from "./watchlists"; export * from "./watchlistItems"; +export * from "./workspaceManagerAssignments"; +export * from "./workspaceManagerAssignmentJobs"; +export * from "./workspaceManagerConfigurations"; +export * from "./workspaceManagerGroups"; +export * from "./workspaceManagerMembers"; export * from "./dataConnectors"; export * from "./dataConnectorsCheckRequirementsOperations"; +export * from "./dataConnectorDefinitions"; export * from "./operations"; diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackage.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackage.ts new file mode 100644 index 000000000000..7d61a26b65f9 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackage.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + ProductPackageGetOptionalParams, + ProductPackageGetResponse +} from "../models"; + +/** Interface representing a ProductPackage. */ +export interface ProductPackage { + /** + * Gets a package by its identifier from the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param packageId package Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + packageId: string, + options?: ProductPackageGetOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackages.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackages.ts new file mode 100644 index 000000000000..77833d49974b --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productPackages.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + ProductPackageModel, + ProductPackagesListOptionalParams +} from "../models"; + +/// +/** Interface representing a ProductPackages. */ +export interface ProductPackages { + /** + * Gets all packages from the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: ProductPackagesListOptionalParams + ): PagedAsyncIterableIterator; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplate.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplate.ts new file mode 100644 index 000000000000..f7d454fe959f --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplate.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + ProductTemplateGetOptionalParams, + ProductTemplateGetResponse +} from "../models"; + +/** Interface representing a ProductTemplate. */ +export interface ProductTemplate { + /** + * Gets a template by its identifier. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param templateId template Id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + templateId: string, + options?: ProductTemplateGetOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplates.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplates.ts new file mode 100644 index 000000000000..64125fbc0823 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/productTemplates.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + ProductTemplateModel, + ProductTemplatesListOptionalParams +} from "../models"; + +/// +/** Interface representing a ProductTemplates. */ +export interface ProductTemplates { + /** + * Gets all templates in the catalog. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: ProductTemplatesListOptionalParams + ): PagedAsyncIterableIterator; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/sourceControls.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/sourceControls.ts index 2e675d5f49a7..ef8639eed8e0 100644 --- a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/sourceControls.ts +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/sourceControls.ts @@ -12,9 +12,11 @@ import { SourceControlsListOptionalParams, SourceControlsGetOptionalParams, SourceControlsGetResponse, - SourceControlsDeleteOptionalParams, SourceControlsCreateOptionalParams, - SourceControlsCreateResponse + SourceControlsCreateResponse, + Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema, + SourceControlsDeleteOptionalParams, + SourceControlsDeleteResponse } from "../models"; /// @@ -45,31 +47,33 @@ export interface SourceControls { options?: SourceControlsGetOptionalParams ): Promise; /** - * Delete a source control. + * Creates a source control. * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param sourceControlId Source control Id + * @param sourceControl The SourceControl * @param options The options parameters. */ - delete( + create( resourceGroupName: string, workspaceName: string, sourceControlId: string, - options?: SourceControlsDeleteOptionalParams - ): Promise; + sourceControl: SourceControl, + options?: SourceControlsCreateOptionalParams + ): Promise; /** - * Creates a source control. + * Delete a source control. * @param resourceGroupName The name of the resource group. The name is case insensitive. * @param workspaceName The name of the workspace. * @param sourceControlId Source control Id - * @param sourceControl The SourceControl + * @param repositoryAccess The repository access credentials. * @param options The options parameters. */ - create( + delete( resourceGroupName: string, workspaceName: string, sourceControlId: string, - sourceControl: SourceControl, - options?: SourceControlsCreateOptionalParams - ): Promise; + repositoryAccess: Paths1J3Lu7WSubscriptionsSubscriptionidResourcegroupsResourcegroupnameProvidersMicrosoftOperationalinsightsWorkspacesWorkspacenameProvidersMicrosoftSecurityinsightsSourcecontrolsSourcecontrolidDeletePostRequestbodyContentApplicationJsonSchema, + options?: SourceControlsDeleteOptionalParams + ): Promise; } diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/triggeredAnalyticsRuleRunOperations.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/triggeredAnalyticsRuleRunOperations.ts new file mode 100644 index 000000000000..5447cc5462a3 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/triggeredAnalyticsRuleRunOperations.ts @@ -0,0 +1,29 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + TriggeredAnalyticsRuleRunGetOptionalParams, + TriggeredAnalyticsRuleRunGetResponse +} from "../models"; + +/** Interface representing a TriggeredAnalyticsRuleRunOperations. */ +export interface TriggeredAnalyticsRuleRunOperations { + /** + * Gets the triggered analytics rule run. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param ruleRunId the triggered rule id + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + ruleRunId: string, + options?: TriggeredAnalyticsRuleRunGetOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/update.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/update.ts new file mode 100644 index 000000000000..87d313c09a10 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/update.ts @@ -0,0 +1,53 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { SimplePollerLike, OperationState } from "@azure/core-lro"; +import { + RecommendationPatch, + UpdateRecommendationOptionalParams, + UpdateRecommendationResponse +} from "../models"; + +/** Interface representing a Update. */ +export interface Update { + /** + * Patch a recommendation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param recommendationPatch Recommendation Fields to Update. + * @param options The options parameters. + */ + beginRecommendation( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + recommendationPatch: RecommendationPatch[], + options?: UpdateRecommendationOptionalParams + ): Promise< + SimplePollerLike< + OperationState, + UpdateRecommendationResponse + > + >; + /** + * Patch a recommendation. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param recommendationId Recommendation Id. + * @param recommendationPatch Recommendation Fields to Update. + * @param options The options parameters. + */ + beginRecommendationAndWait( + resourceGroupName: string, + workspaceName: string, + recommendationId: string, + recommendationPatch: RecommendationPatch[], + options?: UpdateRecommendationOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignmentJobs.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignmentJobs.ts new file mode 100644 index 000000000000..614caf3b8fa1 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignmentJobs.ts @@ -0,0 +1,79 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + Job, + WorkspaceManagerAssignmentJobsListOptionalParams, + WorkspaceManagerAssignmentJobsCreateOptionalParams, + WorkspaceManagerAssignmentJobsCreateResponse, + WorkspaceManagerAssignmentJobsGetOptionalParams, + WorkspaceManagerAssignmentJobsGetResponse, + WorkspaceManagerAssignmentJobsDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a WorkspaceManagerAssignmentJobs. */ +export interface WorkspaceManagerAssignmentJobs { + /** + * Get all jobs for the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Create a job for the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + create( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentJobsCreateOptionalParams + ): Promise; + /** + * Gets a job + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param jobName The job name + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + jobName: string, + options?: WorkspaceManagerAssignmentJobsGetOptionalParams + ): Promise; + /** + * Deletes the specified job from the specified workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param jobName The job name + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + jobName: string, + options?: WorkspaceManagerAssignmentJobsDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignments.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignments.ts new file mode 100644 index 000000000000..37751de45aa1 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerAssignments.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + WorkspaceManagerAssignment, + WorkspaceManagerAssignmentsListOptionalParams, + WorkspaceManagerAssignmentsGetOptionalParams, + WorkspaceManagerAssignmentsGetResponse, + WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams, + WorkspaceManagerAssignmentsCreateOrUpdateResponse, + WorkspaceManagerAssignmentsDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a WorkspaceManagerAssignments. */ +export interface WorkspaceManagerAssignments { + /** + * Get all workspace manager assignments for the Sentinel workspace manager. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerAssignmentsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentsGetOptionalParams + ): Promise; + /** + * Creates or updates a workspace manager assignment. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param workspaceManagerAssignment The workspace manager assignment + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + workspaceManagerAssignment: WorkspaceManagerAssignment, + options?: WorkspaceManagerAssignmentsCreateOrUpdateOptionalParams + ): Promise; + /** + * Deletes a workspace manager assignment + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerAssignmentName The name of the workspace manager assignment + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerAssignmentName: string, + options?: WorkspaceManagerAssignmentsDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerConfigurations.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerConfigurations.ts new file mode 100644 index 000000000000..ba65395316f1 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerConfigurations.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + WorkspaceManagerConfiguration, + WorkspaceManagerConfigurationsListOptionalParams, + WorkspaceManagerConfigurationsGetOptionalParams, + WorkspaceManagerConfigurationsGetResponse, + WorkspaceManagerConfigurationsDeleteOptionalParams, + WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams, + WorkspaceManagerConfigurationsCreateOrUpdateResponse +} from "../models"; + +/// +/** Interface representing a WorkspaceManagerConfigurations. */ +export interface WorkspaceManagerConfigurations { + /** + * Gets all workspace manager configurations for a Sentinel workspace. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerConfigurationsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a workspace manager configuration + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + options?: WorkspaceManagerConfigurationsGetOptionalParams + ): Promise; + /** + * Deletes a workspace manager configuration + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + options?: WorkspaceManagerConfigurationsDeleteOptionalParams + ): Promise; + /** + * Creates or updates a workspace manager configuration. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerConfigurationName The name of the workspace manager configuration + * @param workspaceManagerConfiguration The workspace manager configuration + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerConfigurationName: string, + workspaceManagerConfiguration: WorkspaceManagerConfiguration, + options?: WorkspaceManagerConfigurationsCreateOrUpdateOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerGroups.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerGroups.ts new file mode 100644 index 000000000000..2e181ac7819a --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerGroups.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + WorkspaceManagerGroup, + WorkspaceManagerGroupsListOptionalParams, + WorkspaceManagerGroupsGetOptionalParams, + WorkspaceManagerGroupsGetResponse, + WorkspaceManagerGroupsCreateOrUpdateOptionalParams, + WorkspaceManagerGroupsCreateOrUpdateResponse, + WorkspaceManagerGroupsDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a WorkspaceManagerGroups. */ +export interface WorkspaceManagerGroups { + /** + * Gets all workspace manager groups in the Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerGroupsListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a workspace manager group + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + options?: WorkspaceManagerGroupsGetOptionalParams + ): Promise; + /** + * Creates or updates a workspace manager group. + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param workspaceManagerGroup The workspace manager group object + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + workspaceManagerGroup: WorkspaceManagerGroup, + options?: WorkspaceManagerGroupsCreateOrUpdateOptionalParams + ): Promise; + /** + * Deletes a workspace manager group + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerGroupName The name of the workspace manager group + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerGroupName: string, + options?: WorkspaceManagerGroupsDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerMembers.ts b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerMembers.ts new file mode 100644 index 000000000000..f3b687caa8ca --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/src/operationsInterfaces/workspaceManagerMembers.ts @@ -0,0 +1,75 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { PagedAsyncIterableIterator } from "@azure/core-paging"; +import { + WorkspaceManagerMember, + WorkspaceManagerMembersListOptionalParams, + WorkspaceManagerMembersGetOptionalParams, + WorkspaceManagerMembersGetResponse, + WorkspaceManagerMembersCreateOrUpdateOptionalParams, + WorkspaceManagerMembersCreateOrUpdateResponse, + WorkspaceManagerMembersDeleteOptionalParams +} from "../models"; + +/// +/** Interface representing a WorkspaceManagerMembers. */ +export interface WorkspaceManagerMembers { + /** + * Gets all workspace manager members that exist for the given Sentinel workspace manager + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param options The options parameters. + */ + list( + resourceGroupName: string, + workspaceName: string, + options?: WorkspaceManagerMembersListOptionalParams + ): PagedAsyncIterableIterator; + /** + * Gets a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param options The options parameters. + */ + get( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + options?: WorkspaceManagerMembersGetOptionalParams + ): Promise; + /** + * Creates or updates a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param workspaceManagerMember The workspace manager member object + * @param options The options parameters. + */ + createOrUpdate( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + workspaceManagerMember: WorkspaceManagerMember, + options?: WorkspaceManagerMembersCreateOrUpdateOptionalParams + ): Promise; + /** + * Deletes a workspace manager member + * @param resourceGroupName The name of the resource group. The name is case insensitive. + * @param workspaceName The name of the workspace. + * @param workspaceManagerMemberName The name of the workspace manager member + * @param options The options parameters. + */ + delete( + resourceGroupName: string, + workspaceName: string, + workspaceManagerMemberName: string, + options?: WorkspaceManagerMembersDeleteOptionalParams + ): Promise; +} diff --git a/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts b/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts index 20a358af6b03..535db8f8dd49 100644 --- a/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts +++ b/sdk/securityinsight/arm-securityinsight/src/securityInsights.ts @@ -19,24 +19,40 @@ import { ActionsImpl, AlertRuleTemplatesImpl, AutomationRulesImpl, + EntitiesImpl, IncidentsImpl, + BillingStatisticsImpl, BookmarksImpl, BookmarkRelationsImpl, BookmarkOperationsImpl, + ContentPackagesImpl, + ContentPackageImpl, + ProductPackagesImpl, + ProductPackageImpl, + ProductTemplatesImpl, + ProductTemplateImpl, + ContentTemplatesImpl, + ContentTemplateImpl, IPGeodataImpl, DomainWhoisImpl, - EntitiesImpl, EntitiesGetTimelineImpl, EntitiesRelationsImpl, EntityRelationsImpl, EntityQueriesImpl, EntityQueryTemplatesImpl, FileImportsImpl, + HuntsImpl, + HuntRelationsImpl, + HuntCommentsImpl, IncidentCommentsImpl, IncidentRelationsImpl, + IncidentTasksImpl, MetadataImpl, OfficeConsentsImpl, SentinelOnboardingStatesImpl, + GetRecommendationsImpl, + GetImpl, + UpdateImpl, SecurityMLAnalyticsSettingsImpl, ProductSettingsImpl, SourceControlOperationsImpl, @@ -44,10 +60,19 @@ import { ThreatIntelligenceIndicatorImpl, ThreatIntelligenceIndicatorsImpl, ThreatIntelligenceIndicatorMetricsImpl, + TriggeredAnalyticsRuleRunOperationsImpl, + GetTriggeredAnalyticsRuleRunsImpl, + AlertRuleOperationsImpl, WatchlistsImpl, WatchlistItemsImpl, + WorkspaceManagerAssignmentsImpl, + WorkspaceManagerAssignmentJobsImpl, + WorkspaceManagerConfigurationsImpl, + WorkspaceManagerGroupsImpl, + WorkspaceManagerMembersImpl, DataConnectorsImpl, DataConnectorsCheckRequirementsOperationsImpl, + DataConnectorDefinitionsImpl, OperationsImpl } from "./operations"; import { @@ -55,24 +80,40 @@ import { Actions, AlertRuleTemplates, AutomationRules, + Entities, Incidents, + BillingStatistics, Bookmarks, BookmarkRelations, BookmarkOperations, + ContentPackages, + ContentPackage, + ProductPackages, + ProductPackage, + ProductTemplates, + ProductTemplate, + ContentTemplates, + ContentTemplate, IPGeodata, DomainWhois, - Entities, EntitiesGetTimeline, EntitiesRelations, EntityRelations, EntityQueries, EntityQueryTemplates, FileImports, + Hunts, + HuntRelations, + HuntComments, IncidentComments, IncidentRelations, + IncidentTasks, Metadata, OfficeConsents, SentinelOnboardingStates, + GetRecommendations, + Get, + Update, SecurityMLAnalyticsSettings, ProductSettings, SourceControlOperations, @@ -80,10 +121,19 @@ import { ThreatIntelligenceIndicator, ThreatIntelligenceIndicators, ThreatIntelligenceIndicatorMetrics, + TriggeredAnalyticsRuleRunOperations, + GetTriggeredAnalyticsRuleRuns, + AlertRuleOperations, Watchlists, WatchlistItems, + WorkspaceManagerAssignments, + WorkspaceManagerAssignmentJobs, + WorkspaceManagerConfigurations, + WorkspaceManagerGroups, + WorkspaceManagerMembers, DataConnectors, DataConnectorsCheckRequirementsOperations, + DataConnectorDefinitions, Operations } from "./operationsInterfaces"; import { SecurityInsightsOptionalParams } from "./models"; @@ -173,29 +223,45 @@ export class SecurityInsights extends coreClient.ServiceClient { // Assigning values to Constant parameters this.$host = options.$host || "https://management.azure.com"; - this.apiVersion = options.apiVersion || "2022-09-01-preview"; + this.apiVersion = options.apiVersion || "2023-07-01-preview"; this.alertRules = new AlertRulesImpl(this); this.actions = new ActionsImpl(this); this.alertRuleTemplates = new AlertRuleTemplatesImpl(this); this.automationRules = new AutomationRulesImpl(this); + this.entities = new EntitiesImpl(this); this.incidents = new IncidentsImpl(this); + this.billingStatistics = new BillingStatisticsImpl(this); this.bookmarks = new BookmarksImpl(this); this.bookmarkRelations = new BookmarkRelationsImpl(this); this.bookmarkOperations = new BookmarkOperationsImpl(this); + this.contentPackages = new ContentPackagesImpl(this); + this.contentPackage = new ContentPackageImpl(this); + this.productPackages = new ProductPackagesImpl(this); + this.productPackage = new ProductPackageImpl(this); + this.productTemplates = new ProductTemplatesImpl(this); + this.productTemplate = new ProductTemplateImpl(this); + this.contentTemplates = new ContentTemplatesImpl(this); + this.contentTemplate = new ContentTemplateImpl(this); this.iPGeodata = new IPGeodataImpl(this); this.domainWhois = new DomainWhoisImpl(this); - this.entities = new EntitiesImpl(this); this.entitiesGetTimeline = new EntitiesGetTimelineImpl(this); this.entitiesRelations = new EntitiesRelationsImpl(this); this.entityRelations = new EntityRelationsImpl(this); this.entityQueries = new EntityQueriesImpl(this); this.entityQueryTemplates = new EntityQueryTemplatesImpl(this); this.fileImports = new FileImportsImpl(this); + this.hunts = new HuntsImpl(this); + this.huntRelations = new HuntRelationsImpl(this); + this.huntComments = new HuntCommentsImpl(this); this.incidentComments = new IncidentCommentsImpl(this); this.incidentRelations = new IncidentRelationsImpl(this); + this.incidentTasks = new IncidentTasksImpl(this); this.metadata = new MetadataImpl(this); this.officeConsents = new OfficeConsentsImpl(this); this.sentinelOnboardingStates = new SentinelOnboardingStatesImpl(this); + this.getRecommendations = new GetRecommendationsImpl(this); + this.get = new GetImpl(this); + this.update = new UpdateImpl(this); this.securityMLAnalyticsSettings = new SecurityMLAnalyticsSettingsImpl( this ); @@ -211,12 +277,31 @@ export class SecurityInsights extends coreClient.ServiceClient { this.threatIntelligenceIndicatorMetrics = new ThreatIntelligenceIndicatorMetricsImpl( this ); + this.triggeredAnalyticsRuleRunOperations = new TriggeredAnalyticsRuleRunOperationsImpl( + this + ); + this.getTriggeredAnalyticsRuleRuns = new GetTriggeredAnalyticsRuleRunsImpl( + this + ); + this.alertRuleOperations = new AlertRuleOperationsImpl(this); this.watchlists = new WatchlistsImpl(this); this.watchlistItems = new WatchlistItemsImpl(this); + this.workspaceManagerAssignments = new WorkspaceManagerAssignmentsImpl( + this + ); + this.workspaceManagerAssignmentJobs = new WorkspaceManagerAssignmentJobsImpl( + this + ); + this.workspaceManagerConfigurations = new WorkspaceManagerConfigurationsImpl( + this + ); + this.workspaceManagerGroups = new WorkspaceManagerGroupsImpl(this); + this.workspaceManagerMembers = new WorkspaceManagerMembersImpl(this); this.dataConnectors = new DataConnectorsImpl(this); this.dataConnectorsCheckRequirementsOperations = new DataConnectorsCheckRequirementsOperationsImpl( this ); + this.dataConnectorDefinitions = new DataConnectorDefinitionsImpl(this); this.operations = new OperationsImpl(this); this.addCustomApiVersionPolicy(options.apiVersion); } @@ -253,24 +338,40 @@ export class SecurityInsights extends coreClient.ServiceClient { actions: Actions; alertRuleTemplates: AlertRuleTemplates; automationRules: AutomationRules; + entities: Entities; incidents: Incidents; + billingStatistics: BillingStatistics; bookmarks: Bookmarks; bookmarkRelations: BookmarkRelations; bookmarkOperations: BookmarkOperations; + contentPackages: ContentPackages; + contentPackage: ContentPackage; + productPackages: ProductPackages; + productPackage: ProductPackage; + productTemplates: ProductTemplates; + productTemplate: ProductTemplate; + contentTemplates: ContentTemplates; + contentTemplate: ContentTemplate; iPGeodata: IPGeodata; domainWhois: DomainWhois; - entities: Entities; entitiesGetTimeline: EntitiesGetTimeline; entitiesRelations: EntitiesRelations; entityRelations: EntityRelations; entityQueries: EntityQueries; entityQueryTemplates: EntityQueryTemplates; fileImports: FileImports; + hunts: Hunts; + huntRelations: HuntRelations; + huntComments: HuntComments; incidentComments: IncidentComments; incidentRelations: IncidentRelations; + incidentTasks: IncidentTasks; metadata: Metadata; officeConsents: OfficeConsents; sentinelOnboardingStates: SentinelOnboardingStates; + getRecommendations: GetRecommendations; + get: Get; + update: Update; securityMLAnalyticsSettings: SecurityMLAnalyticsSettings; productSettings: ProductSettings; sourceControlOperations: SourceControlOperations; @@ -278,9 +379,18 @@ export class SecurityInsights extends coreClient.ServiceClient { threatIntelligenceIndicator: ThreatIntelligenceIndicator; threatIntelligenceIndicators: ThreatIntelligenceIndicators; threatIntelligenceIndicatorMetrics: ThreatIntelligenceIndicatorMetrics; + triggeredAnalyticsRuleRunOperations: TriggeredAnalyticsRuleRunOperations; + getTriggeredAnalyticsRuleRuns: GetTriggeredAnalyticsRuleRuns; + alertRuleOperations: AlertRuleOperations; watchlists: Watchlists; watchlistItems: WatchlistItems; + workspaceManagerAssignments: WorkspaceManagerAssignments; + workspaceManagerAssignmentJobs: WorkspaceManagerAssignmentJobs; + workspaceManagerConfigurations: WorkspaceManagerConfigurations; + workspaceManagerGroups: WorkspaceManagerGroups; + workspaceManagerMembers: WorkspaceManagerMembers; dataConnectors: DataConnectors; dataConnectorsCheckRequirementsOperations: DataConnectorsCheckRequirementsOperations; + dataConnectorDefinitions: DataConnectorDefinitions; operations: Operations; } diff --git a/sdk/securityinsight/arm-securityinsight/test/sampleTest.ts b/sdk/securityinsight/arm-securityinsight/test/sampleTest.ts new file mode 100644 index 000000000000..25aeb3ebcc36 --- /dev/null +++ b/sdk/securityinsight/arm-securityinsight/test/sampleTest.ts @@ -0,0 +1,43 @@ +/* + * Copyright (c) Microsoft Corporation. + * Licensed under the MIT License. + * + * Code generated by Microsoft (R) AutoRest Code Generator. + * Changes may cause incorrect behavior and will be lost if the code is regenerated. + */ + +import { + Recorder, + RecorderStartOptions, + env +} from "@azure-tools/test-recorder"; +import { assert } from "chai"; +import { Context } from "mocha"; + +const replaceableVariables: Record = { + AZURE_CLIENT_ID: "azure_client_id", + AZURE_CLIENT_SECRET: "azure_client_secret", + AZURE_TENANT_ID: "88888888-8888-8888-8888-888888888888", + SUBSCRIPTION_ID: "azure_subscription_id" +}; + +const recorderOptions: RecorderStartOptions = { + envSetupForPlayback: replaceableVariables +}; + +describe("My test", () => { + let recorder: Recorder; + + beforeEach(async function(this: Context) { + recorder = new Recorder(this.currentTest); + await recorder.start(recorderOptions); + }); + + afterEach(async function() { + await recorder.stop(); + }); + + it("sample test", async function() { + console.log("Hi, I'm a test!"); + }); +}); diff --git a/sdk/securityinsight/arm-securityinsight/tsconfig.json b/sdk/securityinsight/arm-securityinsight/tsconfig.json index 6c7875caddba..3e6ae96443f3 100644 --- a/sdk/securityinsight/arm-securityinsight/tsconfig.json +++ b/sdk/securityinsight/arm-securityinsight/tsconfig.json @@ -15,17 +15,11 @@ ], "declaration": true, "outDir": "./dist-esm", - "importHelpers": true, - "paths": { - "@azure/arm-securityinsight": [ - "./src/index" - ] - } + "importHelpers": true }, "include": [ "./src/**/*.ts", - "./test/**/*.ts", - "samples-dev/**/*.ts" + "./test/**/*.ts" ], "exclude": [ "node_modules"