Documentation
¶
Index ¶
- Constants
- type AuditConfiLogAnalytics
- type AuditConfig
- type AuditConfigResourceGraph
- type AzureAuditor
- func (auditor *AzureAuditor) GetConfig() AuditConfig
- func (auditor *AzureAuditor) GetReport() map[string]*AzureAuditorReport
- func (auditor *AzureAuditor) Init()
- func (auditor *AzureAuditor) MetricsLock() *sync.RWMutex
- func (auditor *AzureAuditor) ParseConfig(configPaths ...string)
- func (auditor *AzureAuditor) ReportLock() *sync.RWMutex
- func (auditor *AzureAuditor) Run()
- type AzureAuditorReport
- type AzureAuditorReportLine
- type AzureAuditorReportSummary
- type LogAnaltyicsQueryResult
Constants ¶
View Source
const ( ReportKeyvaultAccessPolicies = "KeyvaultAccessPolicy" ReportResourceProviders = "ResourceProvider" ReportResourceProviderFeatures = "ResourceProviderFeature" ReportResourceGroups = "ResourceGroup" ReportRoleAssignments = "RoleAssignment" ReportResourceGraph = "ResourceGraph:%v" ReportLogAnalytics = "LogAnalytics:%v" )
View Source
const (
OperationInsightsWorkspaceUrlSuffix = "/v1"
)
View Source
const (
ResourceGraphQueryOptionsTop = 1000
)
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AuditConfiLogAnalytics ¶
type AuditConfiLogAnalytics struct {
Enabled bool `yaml:"enabled"`
Queries map[string]*validator.AuditConfigValidation `yaml:"queries"`
}
func (*AuditConfiLogAnalytics) IsEnabled ¶
func (config *AuditConfiLogAnalytics) IsEnabled() bool
type AuditConfig ¶
type AuditConfig struct {
RoleAssignments *validator.AuditConfigValidation `yaml:"roleAssignments"`
ResourceGroups *validator.AuditConfigValidation `yaml:"resourceGroups"`
ResourceProviders *validator.AuditConfigValidation `yaml:"resourceProviders"`
ResourceProviderFeatures *validator.AuditConfigValidation `yaml:"resourceProviderFeatures"`
KeyvaultAccessPolicies *validator.AuditConfigValidation `yaml:"keyvaultAccessPolicies"`
ResourceGraph *AuditConfigResourceGraph `yaml:"resourceGraph"`
LogAnalytics *AuditConfiLogAnalytics `yaml:"logAnalytics"`
}
type AuditConfigResourceGraph ¶
type AuditConfigResourceGraph struct {
Enabled bool `yaml:"enabled"`
Queries map[string]*validator.AuditConfigValidation `yaml:"queries"`
}
func (*AuditConfigResourceGraph) IsEnabled ¶
func (config *AuditConfigResourceGraph) IsEnabled() bool
type AzureAuditor ¶
type AzureAuditor struct {
UserAgent string
Opts config.Opts
Logger *zap.SugaredLogger
// contains filtered or unexported fields
}
func NewAzureAuditor ¶
func NewAzureAuditor() *AzureAuditor
func (*AzureAuditor) GetConfig ¶
func (auditor *AzureAuditor) GetConfig() AuditConfig
func (*AzureAuditor) GetReport ¶
func (auditor *AzureAuditor) GetReport() map[string]*AzureAuditorReport
func (*AzureAuditor) Init ¶
func (auditor *AzureAuditor) Init()
func (*AzureAuditor) MetricsLock ¶
func (auditor *AzureAuditor) MetricsLock() *sync.RWMutex
func (*AzureAuditor) ParseConfig ¶
func (auditor *AzureAuditor) ParseConfig(configPaths ...string)
func (*AzureAuditor) ReportLock ¶
func (auditor *AzureAuditor) ReportLock() *sync.RWMutex
func (*AzureAuditor) Run ¶
func (auditor *AzureAuditor) Run()
type AzureAuditorReport ¶
type AzureAuditorReport struct {
Summary *AzureAuditorReportSummary
Lines []*AzureAuditorReportLine
UpdateTime *time.Time
// contains filtered or unexported fields
}
func NewAzureAuditorReport ¶
func NewAzureAuditorReport() *AzureAuditorReport
func (*AzureAuditorReport) Add ¶
func (report *AzureAuditorReport) Add(resource *validator.AzureObject, ruleID string, status types.RuleStatus)
func (*AzureAuditorReport) Clear ¶
func (report *AzureAuditorReport) Clear()
type AzureAuditorReportLine ¶
type AzureAuditorReportLine struct {
Resource map[string]interface{} `json:"resource"`
RuleID string `json:"rule"`
GroupBy interface{} `json:"groupBy"`
Status string `json:"status"`
Count uint64 `json:"count"`
}
func (*AzureAuditorReportLine) Hash ¶
func (reportLine *AzureAuditorReportLine) Hash() [20]byte
func (*AzureAuditorReportLine) MarshalJSON ¶
func (reportLine *AzureAuditorReportLine) MarshalJSON() ([]byte, error)
type LogAnaltyicsQueryResult ¶
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.