in src/azure-cli/azure/cli/command_modules/security/aaz/latest/security/security_connector/_update.py [0:0]
def _update_instance(self, instance):
_instance_value, _builder = self.new_content_builder(
self.ctx.args,
value=instance,
typ=AAZObjectType
)
_builder.set_prop("location", AAZStrType, ".location")
_builder.set_prop("properties", AAZObjectType, typ_kwargs={"flags": {"client_flatten": True}})
_builder.set_prop("tags", AAZDictType, ".tags")
properties = _builder.get(".properties")
if properties is not None:
properties.set_prop("environmentData", AAZObjectType, ".environment_data")
properties.set_prop("environmentName", AAZStrType, ".environment_name")
properties.set_prop("offerings", AAZListType, ".offerings")
environment_data = _builder.get(".properties.environmentData")
if environment_data is not None:
environment_data.set_const("environmentType", "AwsAccount", AAZStrType, ".aws_account", typ_kwargs={"flags": {"required": True}})
environment_data.set_const("environmentType", "AzureDevOpsScope", AAZStrType, ".azuredevops_scope", typ_kwargs={"flags": {"required": True}})
environment_data.set_const("environmentType", "GcpProject", AAZStrType, ".gcp_project", typ_kwargs={"flags": {"required": True}})
environment_data.set_const("environmentType", "GithubScope", AAZStrType, ".github_scope", typ_kwargs={"flags": {"required": True}})
environment_data.set_const("environmentType", "GitlabScope", AAZStrType, ".gitlab_scope", typ_kwargs={"flags": {"required": True}})
environment_data.discriminate_by("environmentType", "AwsAccount")
environment_data.discriminate_by("environmentType", "AzureDevOpsScope")
environment_data.discriminate_by("environmentType", "GcpProject")
environment_data.discriminate_by("environmentType", "GithubScope")
environment_data.discriminate_by("environmentType", "GitlabScope")
disc_aws_account = _builder.get(".properties.environmentData{environmentType:AwsAccount}")
if disc_aws_account is not None:
disc_aws_account.set_prop("organizationalData", AAZObjectType, ".aws_account.organizational_data")
disc_aws_account.set_prop("regions", AAZListType, ".aws_account.regions")
disc_aws_account.set_prop("scanInterval", AAZIntType, ".aws_account.scan_interval")
organizational_data = _builder.get(".properties.environmentData{environmentType:AwsAccount}.organizationalData")
if organizational_data is not None:
organizational_data.set_const("organizationMembershipType", "Member", AAZStrType, ".member", typ_kwargs={"flags": {"required": True}})
organizational_data.set_const("organizationMembershipType", "Organization", AAZStrType, ".organization", typ_kwargs={"flags": {"required": True}})
organizational_data.discriminate_by("organizationMembershipType", "Member")
organizational_data.discriminate_by("organizationMembershipType", "Organization")
disc_member = _builder.get(".properties.environmentData{environmentType:AwsAccount}.organizationalData{organizationMembershipType:Member}")
if disc_member is not None:
disc_member.set_prop("parentHierarchyId", AAZStrType, ".member.parent_hierarchy_id")
disc_organization = _builder.get(".properties.environmentData{environmentType:AwsAccount}.organizationalData{organizationMembershipType:Organization}")
if disc_organization is not None:
disc_organization.set_prop("excludedAccountIds", AAZListType, ".organization.excluded_account_ids")
disc_organization.set_prop("stacksetName", AAZStrType, ".organization.stackset_name")
excluded_account_ids = _builder.get(".properties.environmentData{environmentType:AwsAccount}.organizationalData{organizationMembershipType:Organization}.excludedAccountIds")
if excluded_account_ids is not None:
excluded_account_ids.set_elements(AAZStrType, ".")
regions = _builder.get(".properties.environmentData{environmentType:AwsAccount}.regions")
if regions is not None:
regions.set_elements(AAZStrType, ".")
disc_gcp_project = _builder.get(".properties.environmentData{environmentType:GcpProject}")
if disc_gcp_project is not None:
disc_gcp_project.set_prop("organizationalData", AAZObjectType, ".gcp_project.organizational_data")
disc_gcp_project.set_prop("projectDetails", AAZObjectType, ".gcp_project.project_details")
disc_gcp_project.set_prop("scanInterval", AAZIntType, ".gcp_project.scan_interval")
organizational_data = _builder.get(".properties.environmentData{environmentType:GcpProject}.organizationalData")
if organizational_data is not None:
organizational_data.set_const("organizationMembershipType", "Member", AAZStrType, ".member", typ_kwargs={"flags": {"required": True}})
organizational_data.set_const("organizationMembershipType", "Organization", AAZStrType, ".organization", typ_kwargs={"flags": {"required": True}})
organizational_data.discriminate_by("organizationMembershipType", "Member")
organizational_data.discriminate_by("organizationMembershipType", "Organization")
disc_member = _builder.get(".properties.environmentData{environmentType:GcpProject}.organizationalData{organizationMembershipType:Member}")
if disc_member is not None:
disc_member.set_prop("managementProjectNumber", AAZStrType, ".member.management_project_number")
disc_member.set_prop("parentHierarchyId", AAZStrType, ".member.parent_hierarchy_id")
disc_organization = _builder.get(".properties.environmentData{environmentType:GcpProject}.organizationalData{organizationMembershipType:Organization}")
if disc_organization is not None:
disc_organization.set_prop("excludedProjectNumbers", AAZListType, ".organization.excluded_project_numbers")
disc_organization.set_prop("serviceAccountEmailAddress", AAZStrType, ".organization.service_account_email_address")
disc_organization.set_prop("workloadIdentityProviderId", AAZStrType, ".organization.workload_identity_provider_id")
excluded_project_numbers = _builder.get(".properties.environmentData{environmentType:GcpProject}.organizationalData{organizationMembershipType:Organization}.excludedProjectNumbers")
if excluded_project_numbers is not None:
excluded_project_numbers.set_elements(AAZStrType, ".")
project_details = _builder.get(".properties.environmentData{environmentType:GcpProject}.projectDetails")
if project_details is not None:
project_details.set_prop("projectId", AAZStrType, ".project_id")
project_details.set_prop("projectNumber", AAZStrType, ".project_number")
offerings = _builder.get(".properties.offerings")
if offerings is not None:
offerings.set_elements(AAZObjectType, ".")
_elements = _builder.get(".properties.offerings[]")
if _elements is not None:
_elements.set_const("offeringType", "CspmMonitorAws", AAZStrType, ".cspm_monitor_aws", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "CspmMonitorAzureDevOps", AAZStrType, ".cspm_monitor_azuredevops", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "CspmMonitorGcp", AAZStrType, ".cspm_monitor_gcp", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "CspmMonitorGitLab", AAZStrType, ".cspm_monitor_gitlab", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "CspmMonitorGithub", AAZStrType, ".cspm_monitor_github", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderCspmAws", AAZStrType, ".defender_cspm_aws", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderCspmGcp", AAZStrType, ".defender_cspm_gcp", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForContainersAws", AAZStrType, ".defender_for_containers_aws", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForContainersGcp", AAZStrType, ".defender_for_containers_gcp", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForDatabasesAws", AAZStrType, ".defender_for_databases_aws", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForDatabasesGcp", AAZStrType, ".defender_for_databases_gcp", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForServersAws", AAZStrType, ".defender_for_servers_aws", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "DefenderForServersGcp", AAZStrType, ".defender_for_servers_gcp", typ_kwargs={"flags": {"required": True}})
_elements.set_const("offeringType", "InformationProtectionAws", AAZStrType, ".information_protection_aws", typ_kwargs={"flags": {"required": True}})
_elements.discriminate_by("offeringType", "CspmMonitorAws")
_elements.discriminate_by("offeringType", "CspmMonitorAzureDevOps")
_elements.discriminate_by("offeringType", "CspmMonitorGcp")
_elements.discriminate_by("offeringType", "CspmMonitorGitLab")
_elements.discriminate_by("offeringType", "CspmMonitorGithub")
_elements.discriminate_by("offeringType", "DefenderCspmAws")
_elements.discriminate_by("offeringType", "DefenderCspmGcp")
_elements.discriminate_by("offeringType", "DefenderForContainersAws")
_elements.discriminate_by("offeringType", "DefenderForContainersGcp")
_elements.discriminate_by("offeringType", "DefenderForDatabasesAws")
_elements.discriminate_by("offeringType", "DefenderForDatabasesGcp")
_elements.discriminate_by("offeringType", "DefenderForDevOpsAzureDevOps")
_elements.discriminate_by("offeringType", "DefenderForDevOpsGitLab")
_elements.discriminate_by("offeringType", "DefenderForDevOpsGithub")
_elements.discriminate_by("offeringType", "DefenderForServersAws")
_elements.discriminate_by("offeringType", "DefenderForServersGcp")
_elements.discriminate_by("offeringType", "InformationProtectionAws")
disc_cspm_monitor_aws = _builder.get(".properties.offerings[]{offeringType:CspmMonitorAws}")
if disc_cspm_monitor_aws is not None:
disc_cspm_monitor_aws.set_prop("nativeCloudConnection", AAZObjectType, ".cspm_monitor_aws.native_cloud_connection")
native_cloud_connection = _builder.get(".properties.offerings[]{offeringType:CspmMonitorAws}.nativeCloudConnection")
if native_cloud_connection is not None:
native_cloud_connection.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
disc_cspm_monitor_gcp = _builder.get(".properties.offerings[]{offeringType:CspmMonitorGcp}")
if disc_cspm_monitor_gcp is not None:
disc_cspm_monitor_gcp.set_prop("nativeCloudConnection", AAZObjectType, ".cspm_monitor_gcp.native_cloud_connection")
native_cloud_connection = _builder.get(".properties.offerings[]{offeringType:CspmMonitorGcp}.nativeCloudConnection")
if native_cloud_connection is not None:
native_cloud_connection.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
native_cloud_connection.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
disc_defender_cspm_aws = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}")
if disc_defender_cspm_aws is not None:
disc_defender_cspm_aws.set_prop("ciem", AAZObjectType, ".defender_cspm_aws.ciem")
disc_defender_cspm_aws.set_prop("dataSensitivityDiscovery", AAZObjectType, ".defender_cspm_aws.data_sensitivity_discovery")
disc_defender_cspm_aws.set_prop("databasesDspm", AAZObjectType, ".defender_cspm_aws.databases_dspm")
disc_defender_cspm_aws.set_prop("mdcContainersAgentlessDiscoveryK8s", AAZObjectType, ".defender_cspm_aws.mdc_containers_agentless_discovery_k8s")
disc_defender_cspm_aws.set_prop("mdcContainersImageAssessment", AAZObjectType, ".defender_cspm_aws.mdc_containers_image_assessment")
disc_defender_cspm_aws.set_prop("vmScanners", AAZObjectType, ".defender_cspm_aws.vm_scanners")
ciem = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.ciem")
if ciem is not None:
ciem.set_prop("ciemDiscovery", AAZObjectType, ".ciem_discovery")
ciem.set_prop("ciemOidc", AAZObjectType, ".ciem_oidc")
ciem_discovery = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.ciem.ciemDiscovery")
if ciem_discovery is not None:
ciem_discovery.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
ciem_oidc = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.ciem.ciemOidc")
if ciem_oidc is not None:
ciem_oidc.set_prop("azureActiveDirectoryAppName", AAZStrType, ".azure_active_directory_app_name")
ciem_oidc.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
data_sensitivity_discovery = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.dataSensitivityDiscovery")
if data_sensitivity_discovery is not None:
data_sensitivity_discovery.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
data_sensitivity_discovery.set_prop("enabled", AAZBoolType, ".enabled")
databases_dspm = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.databasesDspm")
if databases_dspm is not None:
databases_dspm.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
databases_dspm.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_agentless_discovery_k8s = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.mdcContainersAgentlessDiscoveryK8s")
if mdc_containers_agentless_discovery_k8s is not None:
mdc_containers_agentless_discovery_k8s.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mdc_containers_agentless_discovery_k8s.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_image_assessment = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.mdcContainersImageAssessment")
if mdc_containers_image_assessment is not None:
mdc_containers_image_assessment.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mdc_containers_image_assessment.set_prop("enabled", AAZBoolType, ".enabled")
vm_scanners = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.vmScanners")
if vm_scanners is not None:
vm_scanners.set_prop("configuration", AAZObjectType, ".configuration")
vm_scanners.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.vmScanners.configuration")
if configuration is not None:
configuration.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
configuration.set_prop("exclusionTags", AAZDictType, ".exclusion_tags")
configuration.set_prop("scanningMode", AAZStrType, ".scanning_mode")
exclusion_tags = _builder.get(".properties.offerings[]{offeringType:DefenderCspmAws}.vmScanners.configuration.exclusionTags")
if exclusion_tags is not None:
exclusion_tags.set_elements(AAZStrType, ".")
disc_defender_cspm_gcp = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}")
if disc_defender_cspm_gcp is not None:
disc_defender_cspm_gcp.set_prop("ciemDiscovery", AAZObjectType, ".defender_cspm_gcp.ciem_discovery")
disc_defender_cspm_gcp.set_prop("dataSensitivityDiscovery", AAZObjectType, ".defender_cspm_gcp.data_sensitivity_discovery")
disc_defender_cspm_gcp.set_prop("mdcContainersAgentlessDiscoveryK8s", AAZObjectType, ".defender_cspm_gcp.mdc_containers_agentless_discovery_k8s")
disc_defender_cspm_gcp.set_prop("mdcContainersImageAssessment", AAZObjectType, ".defender_cspm_gcp.mdc_containers_image_assessment")
disc_defender_cspm_gcp.set_prop("vmScanners", AAZObjectType, ".defender_cspm_gcp.vm_scanners")
ciem_discovery = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.ciemDiscovery")
if ciem_discovery is not None:
ciem_discovery.set_prop("azureActiveDirectoryAppName", AAZStrType, ".azure_active_directory_app_name")
ciem_discovery.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
ciem_discovery.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
data_sensitivity_discovery = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.dataSensitivityDiscovery")
if data_sensitivity_discovery is not None:
data_sensitivity_discovery.set_prop("enabled", AAZBoolType, ".enabled")
data_sensitivity_discovery.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
data_sensitivity_discovery.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
mdc_containers_agentless_discovery_k8s = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.mdcContainersAgentlessDiscoveryK8s")
if mdc_containers_agentless_discovery_k8s is not None:
mdc_containers_agentless_discovery_k8s.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_agentless_discovery_k8s.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
mdc_containers_agentless_discovery_k8s.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
mdc_containers_image_assessment = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.mdcContainersImageAssessment")
if mdc_containers_image_assessment is not None:
mdc_containers_image_assessment.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_image_assessment.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
mdc_containers_image_assessment.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
vm_scanners = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.vmScanners")
if vm_scanners is not None:
vm_scanners.set_prop("configuration", AAZObjectType, ".configuration")
vm_scanners.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.vmScanners.configuration")
if configuration is not None:
configuration.set_prop("exclusionTags", AAZDictType, ".exclusion_tags")
configuration.set_prop("scanningMode", AAZStrType, ".scanning_mode")
exclusion_tags = _builder.get(".properties.offerings[]{offeringType:DefenderCspmGcp}.vmScanners.configuration.exclusionTags")
if exclusion_tags is not None:
exclusion_tags.set_elements(AAZStrType, ".")
disc_defender_for_containers_aws = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}")
if disc_defender_for_containers_aws is not None:
disc_defender_for_containers_aws.set_prop("autoProvisioning", AAZBoolType, ".defender_for_containers_aws.auto_provisioning")
disc_defender_for_containers_aws.set_prop("cloudWatchToKinesis", AAZObjectType, ".defender_for_containers_aws.cloud_watch_to_kinesis")
disc_defender_for_containers_aws.set_prop("containerVulnerabilityAssessment", AAZObjectType, ".defender_for_containers_aws.container_vulnerability_assessment")
disc_defender_for_containers_aws.set_prop("containerVulnerabilityAssessmentTask", AAZObjectType, ".defender_for_containers_aws.container_vulnerability_assessment_task")
disc_defender_for_containers_aws.set_prop("enableContainerVulnerabilityAssessment", AAZBoolType, ".defender_for_containers_aws.enable_container_vulnerability_assessment")
disc_defender_for_containers_aws.set_prop("kinesisToS3", AAZObjectType, ".defender_for_containers_aws.kinesis_to_s3")
disc_defender_for_containers_aws.set_prop("kubeAuditRetentionTime", AAZIntType, ".defender_for_containers_aws.kube_audit_retention_time")
disc_defender_for_containers_aws.set_prop("kubernetesScubaReader", AAZObjectType, ".defender_for_containers_aws.kubernetes_scuba_reader")
disc_defender_for_containers_aws.set_prop("kubernetesService", AAZObjectType, ".defender_for_containers_aws.kubernetes_service")
disc_defender_for_containers_aws.set_prop("mdcContainersAgentlessDiscoveryK8s", AAZObjectType, ".defender_for_containers_aws.mdc_containers_agentless_discovery_k8s")
disc_defender_for_containers_aws.set_prop("mdcContainersImageAssessment", AAZObjectType, ".defender_for_containers_aws.mdc_containers_image_assessment")
disc_defender_for_containers_aws.set_prop("scubaExternalId", AAZStrType, ".defender_for_containers_aws.scuba_external_id")
cloud_watch_to_kinesis = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.cloudWatchToKinesis")
if cloud_watch_to_kinesis is not None:
cloud_watch_to_kinesis.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
container_vulnerability_assessment = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.containerVulnerabilityAssessment")
if container_vulnerability_assessment is not None:
container_vulnerability_assessment.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
container_vulnerability_assessment_task = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.containerVulnerabilityAssessmentTask")
if container_vulnerability_assessment_task is not None:
container_vulnerability_assessment_task.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
kinesis_to_s3 = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.kinesisToS3")
if kinesis_to_s3 is not None:
kinesis_to_s3.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
kubernetes_scuba_reader = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.kubernetesScubaReader")
if kubernetes_scuba_reader is not None:
kubernetes_scuba_reader.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
kubernetes_service = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.kubernetesService")
if kubernetes_service is not None:
kubernetes_service.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mdc_containers_agentless_discovery_k8s = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.mdcContainersAgentlessDiscoveryK8s")
if mdc_containers_agentless_discovery_k8s is not None:
mdc_containers_agentless_discovery_k8s.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mdc_containers_agentless_discovery_k8s.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_image_assessment = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersAws}.mdcContainersImageAssessment")
if mdc_containers_image_assessment is not None:
mdc_containers_image_assessment.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mdc_containers_image_assessment.set_prop("enabled", AAZBoolType, ".enabled")
disc_defender_for_containers_gcp = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersGcp}")
if disc_defender_for_containers_gcp is not None:
disc_defender_for_containers_gcp.set_prop("auditLogsAutoProvisioningFlag", AAZBoolType, ".defender_for_containers_gcp.audit_logs_auto_provisioning_flag")
disc_defender_for_containers_gcp.set_prop("dataPipelineNativeCloudConnection", AAZObjectType, ".defender_for_containers_gcp.data_pipeline_native_cloud_connection")
disc_defender_for_containers_gcp.set_prop("defenderAgentAutoProvisioningFlag", AAZBoolType, ".defender_for_containers_gcp.defender_agent_auto_provisioning_flag")
disc_defender_for_containers_gcp.set_prop("mdcContainersAgentlessDiscoveryK8s", AAZObjectType, ".defender_for_containers_gcp.mdc_containers_agentless_discovery_k8s")
disc_defender_for_containers_gcp.set_prop("mdcContainersImageAssessment", AAZObjectType, ".defender_for_containers_gcp.mdc_containers_image_assessment")
disc_defender_for_containers_gcp.set_prop("nativeCloudConnection", AAZObjectType, ".defender_for_containers_gcp.native_cloud_connection")
disc_defender_for_containers_gcp.set_prop("policyAgentAutoProvisioningFlag", AAZBoolType, ".defender_for_containers_gcp.policy_agent_auto_provisioning_flag")
data_pipeline_native_cloud_connection = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersGcp}.dataPipelineNativeCloudConnection")
if data_pipeline_native_cloud_connection is not None:
data_pipeline_native_cloud_connection.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
data_pipeline_native_cloud_connection.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
mdc_containers_agentless_discovery_k8s = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersGcp}.mdcContainersAgentlessDiscoveryK8s")
if mdc_containers_agentless_discovery_k8s is not None:
mdc_containers_agentless_discovery_k8s.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_agentless_discovery_k8s.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
mdc_containers_agentless_discovery_k8s.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
mdc_containers_image_assessment = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersGcp}.mdcContainersImageAssessment")
if mdc_containers_image_assessment is not None:
mdc_containers_image_assessment.set_prop("enabled", AAZBoolType, ".enabled")
mdc_containers_image_assessment.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
mdc_containers_image_assessment.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
native_cloud_connection = _builder.get(".properties.offerings[]{offeringType:DefenderForContainersGcp}.nativeCloudConnection")
if native_cloud_connection is not None:
native_cloud_connection.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
native_cloud_connection.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
disc_defender_for_databases_aws = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesAws}")
if disc_defender_for_databases_aws is not None:
disc_defender_for_databases_aws.set_prop("arcAutoProvisioning", AAZObjectType, ".defender_for_databases_aws.arc_auto_provisioning")
disc_defender_for_databases_aws.set_prop("databasesDspm", AAZObjectType, ".defender_for_databases_aws.databases_dspm")
disc_defender_for_databases_aws.set_prop("rds", AAZObjectType, ".defender_for_databases_aws.rds")
arc_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesAws}.arcAutoProvisioning")
if arc_auto_provisioning is not None:
arc_auto_provisioning.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
arc_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
arc_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesAws}.arcAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("privateLinkScope", AAZStrType, ".private_link_scope")
configuration.set_prop("proxy", AAZStrType, ".proxy")
databases_dspm = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesAws}.databasesDspm")
if databases_dspm is not None:
databases_dspm.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
databases_dspm.set_prop("enabled", AAZBoolType, ".enabled")
rds = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesAws}.rds")
if rds is not None:
rds.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
rds.set_prop("enabled", AAZBoolType, ".enabled")
disc_defender_for_databases_gcp = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesGcp}")
if disc_defender_for_databases_gcp is not None:
disc_defender_for_databases_gcp.set_prop("arcAutoProvisioning", AAZObjectType, ".defender_for_databases_gcp.arc_auto_provisioning")
disc_defender_for_databases_gcp.set_prop("defenderForDatabasesArcAutoProvisioning", AAZObjectType, ".defender_for_databases_gcp.defender_for_databases_arc_auto_provisioning")
arc_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesGcp}.arcAutoProvisioning")
if arc_auto_provisioning is not None:
arc_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
arc_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesGcp}.arcAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("privateLinkScope", AAZStrType, ".private_link_scope")
configuration.set_prop("proxy", AAZStrType, ".proxy")
defender_for_databases_arc_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForDatabasesGcp}.defenderForDatabasesArcAutoProvisioning")
if defender_for_databases_arc_auto_provisioning is not None:
defender_for_databases_arc_auto_provisioning.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
defender_for_databases_arc_auto_provisioning.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
disc_defender_for_servers_aws = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}")
if disc_defender_for_servers_aws is not None:
disc_defender_for_servers_aws.set_prop("arcAutoProvisioning", AAZObjectType, ".defender_for_servers_aws.arc_auto_provisioning")
disc_defender_for_servers_aws.set_prop("defenderForServers", AAZObjectType, ".defender_for_servers_aws.defender_for_servers")
disc_defender_for_servers_aws.set_prop("mdeAutoProvisioning", AAZObjectType, ".defender_for_servers_aws.mde_auto_provisioning")
disc_defender_for_servers_aws.set_prop("subPlan", AAZObjectType, ".defender_for_servers_aws.sub_plan")
disc_defender_for_servers_aws.set_prop("vaAutoProvisioning", AAZObjectType, ".defender_for_servers_aws.va_auto_provisioning")
disc_defender_for_servers_aws.set_prop("vmScanners", AAZObjectType, ".defender_for_servers_aws.vm_scanners")
arc_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.arcAutoProvisioning")
if arc_auto_provisioning is not None:
arc_auto_provisioning.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
arc_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
arc_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.arcAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("privateLinkScope", AAZStrType, ".private_link_scope")
configuration.set_prop("proxy", AAZStrType, ".proxy")
defender_for_servers = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.defenderForServers")
if defender_for_servers is not None:
defender_for_servers.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
mde_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.mdeAutoProvisioning")
if mde_auto_provisioning is not None:
mde_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
mde_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
sub_plan = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.subPlan")
if sub_plan is not None:
sub_plan.set_prop("type", AAZStrType, ".type")
va_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.vaAutoProvisioning")
if va_auto_provisioning is not None:
va_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
va_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.vaAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("type", AAZStrType, ".type")
vm_scanners = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.vmScanners")
if vm_scanners is not None:
vm_scanners.set_prop("configuration", AAZObjectType, ".configuration")
vm_scanners.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.vmScanners.configuration")
if configuration is not None:
configuration.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
configuration.set_prop("exclusionTags", AAZDictType, ".exclusion_tags")
configuration.set_prop("scanningMode", AAZStrType, ".scanning_mode")
exclusion_tags = _builder.get(".properties.offerings[]{offeringType:DefenderForServersAws}.vmScanners.configuration.exclusionTags")
if exclusion_tags is not None:
exclusion_tags.set_elements(AAZStrType, ".")
disc_defender_for_servers_gcp = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}")
if disc_defender_for_servers_gcp is not None:
disc_defender_for_servers_gcp.set_prop("arcAutoProvisioning", AAZObjectType, ".defender_for_servers_gcp.arc_auto_provisioning")
disc_defender_for_servers_gcp.set_prop("defenderForServers", AAZObjectType, ".defender_for_servers_gcp.defender_for_servers")
disc_defender_for_servers_gcp.set_prop("mdeAutoProvisioning", AAZObjectType, ".defender_for_servers_gcp.mde_auto_provisioning")
disc_defender_for_servers_gcp.set_prop("subPlan", AAZObjectType, ".defender_for_servers_gcp.sub_plan")
disc_defender_for_servers_gcp.set_prop("vaAutoProvisioning", AAZObjectType, ".defender_for_servers_gcp.va_auto_provisioning")
disc_defender_for_servers_gcp.set_prop("vmScanners", AAZObjectType, ".defender_for_servers_gcp.vm_scanners")
arc_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.arcAutoProvisioning")
if arc_auto_provisioning is not None:
arc_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
arc_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.arcAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("privateLinkScope", AAZStrType, ".private_link_scope")
configuration.set_prop("proxy", AAZStrType, ".proxy")
defender_for_servers = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.defenderForServers")
if defender_for_servers is not None:
defender_for_servers.set_prop("serviceAccountEmailAddress", AAZStrType, ".service_account_email_address")
defender_for_servers.set_prop("workloadIdentityProviderId", AAZStrType, ".workload_identity_provider_id")
mde_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.mdeAutoProvisioning")
if mde_auto_provisioning is not None:
mde_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
mde_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
sub_plan = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.subPlan")
if sub_plan is not None:
sub_plan.set_prop("type", AAZStrType, ".type")
va_auto_provisioning = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.vaAutoProvisioning")
if va_auto_provisioning is not None:
va_auto_provisioning.set_prop("configuration", AAZObjectType, ".configuration")
va_auto_provisioning.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.vaAutoProvisioning.configuration")
if configuration is not None:
configuration.set_prop("type", AAZStrType, ".type")
vm_scanners = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.vmScanners")
if vm_scanners is not None:
vm_scanners.set_prop("configuration", AAZObjectType, ".configuration")
vm_scanners.set_prop("enabled", AAZBoolType, ".enabled")
configuration = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.vmScanners.configuration")
if configuration is not None:
configuration.set_prop("exclusionTags", AAZDictType, ".exclusion_tags")
configuration.set_prop("scanningMode", AAZStrType, ".scanning_mode")
exclusion_tags = _builder.get(".properties.offerings[]{offeringType:DefenderForServersGcp}.vmScanners.configuration.exclusionTags")
if exclusion_tags is not None:
exclusion_tags.set_elements(AAZStrType, ".")
disc_information_protection_aws = _builder.get(".properties.offerings[]{offeringType:InformationProtectionAws}")
if disc_information_protection_aws is not None:
disc_information_protection_aws.set_prop("informationProtection", AAZObjectType, ".information_protection_aws.information_protection")
information_protection = _builder.get(".properties.offerings[]{offeringType:InformationProtectionAws}.informationProtection")
if information_protection is not None:
information_protection.set_prop("cloudRoleArn", AAZStrType, ".cloud_role_arn")
tags = _builder.get(".tags")
if tags is not None:
tags.set_elements(AAZStrType, ".")
return _instance_value