// Licensed to Elasticsearch B.V. under one or more contributor // license agreements. See the NOTICE file distributed with // this work for additional information regarding copyright // ownership. Elasticsearch B.V. licenses this file to you under // the Apache License, Version 2.0 (the "License"); you may // not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, // software distributed under the License is distributed on an // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY // KIND, either express or implied. See the License for the // specific language governing permissions and limitations // under the License. package inventory import ( "github.com/elastic/cloudbeat/internal/resources/utils/strings" ) const ( // Resources group ActivityLogAlertAssetType = "microsoft.insights/activitylogalerts" ApplicationInsights = "microsoft.insights/components" BastionAssetType = "microsoft.network/bastionhosts" BlobContainerAssetType = "microsoft.storage/storageaccounts/containers" BlobServiceAssetType = "microsoft.storage/storageaccounts/blobservices" ClassicStorageAccountAssetType = "microsoft.classicstorage/storageaccounts" ContainerRegistryAssetType = "microsoft.containerregistry/registries" CosmosDBForSQLDatabaseAssetType = "microsoft.dbforpostgresql/servergroupsv2" DiagnosticSettingsAssetType = "microsoft.insights/diagnosticSettings" DiskAssetType = "microsoft.compute/disks" DocumentDBDatabaseAccountAssetType = "microsoft.documentdb/databaseaccounts" ElasticPoolAssetType = "microsoft.sql/servers/elasticpools" FlexibleMySQLDBAssetType = "microsoft.dbformysql/flexibleservers" FlexiblePostgreSQLDBAssetType = "microsoft.dbforpostgresql/flexibleservers" MySQLDBAssetType = "microsoft.dbformysql/servers" MySQLDatabaseAssetType = "microsoft.sql/servers/databases" NetworkSecurityGroupAssetType = "microsoft.network/networksecuritygroups" NetworkWatchersAssetType = "microsoft.network/networkwatchers" NetworkWatchersFlowLogAssetType = "microsoft.network/networkwatchers/flowlogs" PostgreSQLDBAssetType = "microsoft.dbforpostgresql/servers" ResouceGroupAssetType = "microsoft.resources/subscriptions/resourcegroups" SQLServersAssetType = "microsoft.sql/servers" SecurityAutoProvisioningSettingsType = "microsoft.security/autoprovisioningsettings" SecurityContactsAssetType = "microsoft.security/securitycontacts" SnapshotAssetType = "microsoft.compute/snapshots" StorageAccountAssetType = "microsoft.storage/storageaccounts" VaultAssetType = "microsoft.keyvault/vaults" VirtualMachineAssetType = "microsoft.compute/virtualmachines" WebsitesAssetType = "microsoft.web/sites" // Resource Types not present in Azure Resource Graph LocationAssetType = "locations" TenantAssetType = "tenant" SubscriptionAssetType = "subscription" // Authorizationresources group RoleDefinitionsType = "microsoft.authorization/roledefinitions" // Azure Resource Graph table groups AssetGroupAuthorizationResources = "authorizationresources" AssetGroupResourceContainers = "resourcecontainers" AssetGroupResources = "resources" // Extension keys ExtensionAppServiceAuthSettings = "authSettings" ExtensionAppServiceSiteConfig = "siteConfig" ExtensionBlobService = "blobService" ExtensionNetwork = "network" ExtensionUsedForActivityLogs = "usedForActivityLogs" ExtensionSQLEncryptionProtectors = "sqlEncryptionProtectors" ExtensionSQLBlobAuditPolicy = "sqlBlobAuditPolicy" ExtensionSQLTransparentDataEncryptions = "sqlTransparentDataEncryptions" ExtensionSQLAdvancedThreatProtectionSettings = "sqlAdvancedThreatProtectionSettings" ExtensionSQLFirewallRules = "sqlFirewallRules" ExtensionMysqlConfigurations = "mysqlConfigurations" ExtensionPostgresqlConfigurations = "psqlConfigurations" ExtensionPostgresqlFirewallRules = "psqlFirewallRules" ExtensionStorageAccount = "storageAccount" ExtensionStorageAccountID = "storageAccountId" ExtensionStorageAccountName = "storageAccountName" ExtensionBlobDiagnosticSettings = "blobDiagnosticSettings" ExtensionTableDiagnosticSettings = "tableDiagnosticSettings" ExtensionQueueDiagnosticSettings = "queueDiagnosticSettings" ExtensionKeyVaultKeys = "vaultKeys" ExtensionKeyVaultSecrets = "vaultSecrets" ExtensionKeyVaultDiagnosticSettings = "vaultDiagnosticSettings" // AssetLocation assetLocationGlobal = "global" ) type AzureAsset struct { Id string `json:"id,omitempty"` Name string `json:"name,omitempty"` DisplayName string `json:"display_name,omitempty"` Location string `json:"location,omitempty"` Properties map[string]any `json:"properties,omitempty"` Extension map[string]any `json:"extension,omitempty"` ResourceGroup string `json:"resource_group,omitempty"` SubscriptionId string `json:"subscription_id,omitempty"` TenantId string `json:"tenant_id,omitempty"` Type string `json:"type,omitempty"` Sku map[string]any `json:"sku,omitempty"` Identity map[string]any `json:"identity,omitempty"` Tags map[string]any `json:"tags,omitempty"` } func (a *AzureAsset) AddExtension(key string, value any) { if a.Extension == nil { a.Extension = map[string]any{} } a.Extension[key] = value } func getAssetFromData(data map[string]any) AzureAsset { subId := strings.FromMap(data, "subscriptionId") properties, _ := data["properties"].(map[string]any) identity, ok := data["identity"].(map[string]any) if !ok { identity = nil } sku, ok := data["sku"].(map[string]any) if !ok { sku = nil } tags, ok := data["tags"].(map[string]any) if !ok { tags = nil } return AzureAsset{ Id: strings.FromMap(data, "id"), Name: strings.FromMap(data, "name"), DisplayName: strings.FromMap(data, "displayName"), Location: strings.FromMap(data, "location"), Properties: properties, ResourceGroup: strings.FromMap(data, "resourceGroup"), SubscriptionId: subId, TenantId: strings.FromMap(data, "tenantId"), Sku: sku, Identity: identity, Type: strings.FromMap(data, "type"), Tags: tags, } }