Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(PSP-1220): add new cloud account type for Azure Agentless integration #1443

Merged
merged 4 commits into from
Nov 8, 2023
Merged

feat(PSP-1220): add new cloud account type for Azure Agentless integration #1443

merged 4 commits into from
Nov 8, 2023

Conversation

badass-aoz
Copy link
Contributor

Summary

This is needed to support Agentless running on Azure.

How did you test this change?

Added a test. make test passed. Also

#go test -v -run "TestCloudAccountsAzureSidekick"

go test -v -run "TestCloudAccountsAzureSidekick"
=== RUN   TestCloudAccountsAzureSidekickCreate
--- PASS: TestCloudAccountsAzureSidekickCreate (0.00s)
=== RUN   TestCloudAccountsAzureSidekickGet
--- PASS: TestCloudAccountsAzureSidekickGet (0.00s)
=== RUN   TestCloudAccountsAzureSidekickUpdate
--- PASS: TestCloudAccountsAzureSidekickUpdate (0.00s)
PASS
ok    github.com/lacework/go-sdk/api  3.136s

Issue

https://lacework.atlassian.net/browse/PSP-1220

@badass-aoz badass-aoz requested a review from a team as a code owner November 7, 2023 23:39
japsingh
japsingh reviewed Nov 8, 2023
View reviewed changes
api/cloud_accounts_azure_sidekick.go Outdated
type AzureSidekickData struct {
Credentials AzureSidekickCredentials `json:"credentials"`
IntegrationType string `json:"integrationType"` // SUBSCRIPTION or TENANT
SubscriptionId string `json:"subscriptionId"`
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be named scanningSubscriptionId, isn't it?
https://github.com/lacework/rainbow/blob/7b6b998bb4b8ec14f11fb0700e1cff12fce2bf7f/iris/src/main/resources/schema/INTEGRATION_SCHEMA.json#L312

japsingh
japsingh reviewed Nov 8, 2023
View reviewed changes
api/cloud_accounts_azure_sidekick.go Outdated

type AzureSidekickData struct {
Credentials AzureSidekickCredentials `json:"credentials"`
IntegrationType string `json:"integrationType"` // SUBSCRIPTION or TENANT
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should be called integrationLevel?
https://github.com/lacework/rainbow/blob/7b6b998bb4b8ec14f11fb0700e1cff12fce2bf7f/iris/src/main/resources/schema/INTEGRATION_SCHEMA.json#L303C20-L303C20

japsingh
japsingh reviewed Nov 8, 2023
View reviewed changes
api/cloud_accounts_azure_sidekick.go Outdated
type AzureSidekickCredentials struct {
ClientID string `json:"clientId"`
ClientSecret string `json:"clientSecret,omitempty"`
CredentialType string `json:"credentialType"` // SharedCredentials or SharedAccess
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Currently AZURE_SIDEKICK integration schema doesn't have credentialType, so adding it would violate the schema. Is this field necessary? If yes, we would have to add it to the schema.

@japsingh
Copy link

japsingh commented Nov 8, 2023

Nice work @qianxuweiren
A few comments related to schema, otherwise LGTM

@badass-aoz
Copy link
Contributor Author

Exactly the feedbacks I wanted. Thanks Japneet. Fix coming up shortly.

@badass-aoz badass-aoz changed the title feat: add new cloud account type for Azure Agentless integration feat(PSP-1220): add new cloud account type for Azure Agentless integration Nov 8, 2023
@badass-aoz badass-aoz merged commit 1bea012 into main Nov 8, 2023
1 check passed
@badass-aoz badass-aoz deleted the azure_agentless_api branch November 8, 2023 22:10
@lacework-releng lacework-releng mentioned this pull request Nov 9, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@japsingh japsingh japsingh approved these changes

@ammarekbote ammarekbote ammarekbote approved these changes

@jacobkilby jacobkilby Awaiting requested review from jacobkilby

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@badass-aoz @japsingh @ammarekbote