policy

package
v49.2.1+incompatible Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Dec 31, 2020 License: Apache-2.0 Imports: 9 Imported by: 0

Documentation

Overview

Package policy implements the Azure ARM Policy service API version 2020-09-01.

To manage and control access to your resources, you can define customized policies and assign them at a scope.

Index

Constants

View Source
const (
	// DefaultBaseURI is the default URI used for the service Policy
	DefaultBaseURI = "https://management.azure.com"
)

Variables

This section is empty.

Functions

func UserAgent

func UserAgent() string

UserAgent returns the UserAgent string to use when sending http.Requests.

func Version

func Version() string

Version returns the semantic version (see http://semver.org) of the client.

Types

type Alias

type Alias struct {
	// Name - The alias name.
	Name *string `json:"name,omitempty"`
	// Paths - The paths for an alias.
	Paths *[]AliasPath `json:"paths,omitempty"`
	// Type - The type of the alias. Possible values include: 'AliasTypeNotSpecified', 'AliasTypePlainText', 'AliasTypeMask'
	Type AliasType `json:"type,omitempty"`
	// DefaultPath - The default path for an alias.
	DefaultPath *string `json:"defaultPath,omitempty"`
	// DefaultPattern - The default pattern for an alias.
	DefaultPattern *AliasPattern `json:"defaultPattern,omitempty"`
	// DefaultMetadata - READ-ONLY; The default alias path metadata. Applies to the default path and to any alias path that doesn't have metadata
	DefaultMetadata *AliasPathMetadata `json:"defaultMetadata,omitempty"`
}

Alias the alias type.

func (Alias) MarshalJSON

func (a Alias) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for Alias.

type AliasPath

type AliasPath struct {
	// Path - The path of an alias.
	Path *string `json:"path,omitempty"`
	// APIVersions - The API versions.
	APIVersions *[]string `json:"apiVersions,omitempty"`
	// Pattern - The pattern for an alias path.
	Pattern *AliasPattern `json:"pattern,omitempty"`
	// Metadata - READ-ONLY; The metadata of the alias path. If missing, fall back to the default metadata of the alias.
	Metadata *AliasPathMetadata `json:"metadata,omitempty"`
}

AliasPath the type of the paths for alias.

func (AliasPath) MarshalJSON

func (ap AliasPath) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for AliasPath.

type AliasPathAttributes

type AliasPathAttributes string

AliasPathAttributes enumerates the values for alias path attributes.

const (
	// Modifiable The token that the alias path is referring to is modifiable by policies with 'modify' effect.
	Modifiable AliasPathAttributes = "Modifiable"
	// None The token that the alias path is referring to has no attributes.
	None AliasPathAttributes = "None"
)

func PossibleAliasPathAttributesValues

func PossibleAliasPathAttributesValues() []AliasPathAttributes

PossibleAliasPathAttributesValues returns an array of possible values for the AliasPathAttributes const type.

type AliasPathMetadata

type AliasPathMetadata struct {
	// Type - READ-ONLY; The type of the token that the alias path is referring to. Possible values include: 'NotSpecified', 'Any', 'String', 'Object', 'Array', 'Integer', 'Number', 'Boolean'
	Type AliasPathTokenType `json:"type,omitempty"`
	// Attributes - READ-ONLY; The attributes of the token that the alias path is referring to. Possible values include: 'None', 'Modifiable'
	Attributes AliasPathAttributes `json:"attributes,omitempty"`
}

AliasPathMetadata ...

type AliasPathTokenType

type AliasPathTokenType string

AliasPathTokenType enumerates the values for alias path token type.

const (
	// Any The token type can be anything.
	Any AliasPathTokenType = "Any"
	// Array The token type is array.
	Array AliasPathTokenType = "Array"
	// Boolean The token type is boolean.
	Boolean AliasPathTokenType = "Boolean"
	// Integer The token type is integer.
	Integer AliasPathTokenType = "Integer"
	// NotSpecified The token type is not specified.
	NotSpecified AliasPathTokenType = "NotSpecified"
	// Number The token type is number.
	Number AliasPathTokenType = "Number"
	// Object The token type is object.
	Object AliasPathTokenType = "Object"
	// String The token type is string.
	String AliasPathTokenType = "String"
)

func PossibleAliasPathTokenTypeValues

func PossibleAliasPathTokenTypeValues() []AliasPathTokenType

PossibleAliasPathTokenTypeValues returns an array of possible values for the AliasPathTokenType const type.

type AliasPattern

type AliasPattern struct {
	// Phrase - The alias pattern phrase.
	Phrase *string `json:"phrase,omitempty"`
	// Variable - The alias pattern variable.
	Variable *string `json:"variable,omitempty"`
	// Type - The type of alias pattern. Possible values include: 'AliasPatternTypeNotSpecified', 'AliasPatternTypeExtract'
	Type AliasPatternType `json:"type,omitempty"`
}

AliasPattern the type of the pattern for an alias path.

type AliasPatternType

type AliasPatternType string

AliasPatternType enumerates the values for alias pattern type.

const (
	// AliasPatternTypeExtract Extract is the only allowed value.
	AliasPatternTypeExtract AliasPatternType = "Extract"
	// AliasPatternTypeNotSpecified NotSpecified is not allowed.
	AliasPatternTypeNotSpecified AliasPatternType = "NotSpecified"
)

func PossibleAliasPatternTypeValues

func PossibleAliasPatternTypeValues() []AliasPatternType

PossibleAliasPatternTypeValues returns an array of possible values for the AliasPatternType const type.

type AliasType

type AliasType string

AliasType enumerates the values for alias type.

const (
	// AliasTypeMask Alias value is secret.
	AliasTypeMask AliasType = "Mask"
	// AliasTypeNotSpecified Alias type is unknown (same as not providing alias type).
	AliasTypeNotSpecified AliasType = "NotSpecified"
	// AliasTypePlainText Alias value is not secret.
	AliasTypePlainText AliasType = "PlainText"
)

func PossibleAliasTypeValues

func PossibleAliasTypeValues() []AliasType

PossibleAliasTypeValues returns an array of possible values for the AliasType const type.

type Assignment

type Assignment struct {
	autorest.Response `json:"-"`
	// AssignmentProperties - Properties for the policy assignment.
	*AssignmentProperties `json:"properties,omitempty"`
	// ID - READ-ONLY; The ID of the policy assignment.
	ID *string `json:"id,omitempty"`
	// Type - READ-ONLY; The type of the policy assignment.
	Type *string `json:"type,omitempty"`
	// Name - READ-ONLY; The name of the policy assignment.
	Name *string `json:"name,omitempty"`
	// Location - The location of the policy assignment. Only required when utilizing managed identity.
	Location *string `json:"location,omitempty"`
	// Identity - The managed identity associated with the policy assignment.
	Identity *Identity `json:"identity,omitempty"`
}

Assignment the policy assignment.

func (Assignment) MarshalJSON

func (a Assignment) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for Assignment.

func (*Assignment) UnmarshalJSON

func (a *Assignment) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for Assignment struct.

type AssignmentListResult

type AssignmentListResult struct {
	autorest.Response `json:"-"`
	// Value - An array of policy assignments.
	Value *[]Assignment `json:"value,omitempty"`
	// NextLink - The URL to use for getting the next set of results.
	NextLink *string `json:"nextLink,omitempty"`
}

AssignmentListResult list of policy assignments.

func (AssignmentListResult) IsEmpty

func (alr AssignmentListResult) IsEmpty() bool

IsEmpty returns true if the ListResult contains no values.

type AssignmentListResultIterator

type AssignmentListResultIterator struct {
	// contains filtered or unexported fields
}

AssignmentListResultIterator provides access to a complete listing of Assignment values.

func NewAssignmentListResultIterator

func NewAssignmentListResultIterator(page AssignmentListResultPage) AssignmentListResultIterator

Creates a new instance of the AssignmentListResultIterator type.

func (*AssignmentListResultIterator) Next

func (iter *AssignmentListResultIterator) Next() error

Next advances to the next value. If there was an error making the request the iterator does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*AssignmentListResultIterator) NextWithContext

func (iter *AssignmentListResultIterator) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next value. If there was an error making the request the iterator does not advance and the error is returned.

func (AssignmentListResultIterator) NotDone

func (iter AssignmentListResultIterator) NotDone() bool

NotDone returns true if the enumeration should be started or is not yet complete.

func (AssignmentListResultIterator) Response

Response returns the raw server response from the last page request.

func (AssignmentListResultIterator) Value

Value returns the current value or a zero-initialized value if the iterator has advanced beyond the end of the collection.

type AssignmentListResultPage

type AssignmentListResultPage struct {
	// contains filtered or unexported fields
}

AssignmentListResultPage contains a page of Assignment values.

func NewAssignmentListResultPage

func NewAssignmentListResultPage(cur AssignmentListResult, getNextPage func(context.Context, AssignmentListResult) (AssignmentListResult, error)) AssignmentListResultPage

Creates a new instance of the AssignmentListResultPage type.

func (*AssignmentListResultPage) Next

func (page *AssignmentListResultPage) Next() error

Next advances to the next page of values. If there was an error making the request the page does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*AssignmentListResultPage) NextWithContext

func (page *AssignmentListResultPage) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next page of values. If there was an error making the request the page does not advance and the error is returned.

func (AssignmentListResultPage) NotDone

func (page AssignmentListResultPage) NotDone() bool

NotDone returns true if the page enumeration should be started or is not yet complete.

func (AssignmentListResultPage) Response

Response returns the raw server response from the last page request.

func (AssignmentListResultPage) Values

func (page AssignmentListResultPage) Values() []Assignment

Values returns the slice of values for the current page or nil if there are no values.

type AssignmentProperties

type AssignmentProperties struct {
	// DisplayName - The display name of the policy assignment.
	DisplayName *string `json:"displayName,omitempty"`
	// PolicyDefinitionID - The ID of the policy definition or policy set definition being assigned.
	PolicyDefinitionID *string `json:"policyDefinitionId,omitempty"`
	// Scope - READ-ONLY; The scope for the policy assignment.
	Scope *string `json:"scope,omitempty"`
	// NotScopes - The policy's excluded scopes.
	NotScopes *[]string `json:"notScopes,omitempty"`
	// Parameters - The parameter values for the assigned policy rule. The keys are the parameter names.
	Parameters map[string]*ParameterValuesValue `json:"parameters"`
	// Description - This message will be part of response in case of policy violation.
	Description *string `json:"description,omitempty"`
	// Metadata - The policy assignment metadata. Metadata is an open ended object and is typically a collection of key value pairs.
	Metadata interface{} `json:"metadata,omitempty"`
	// EnforcementMode - The policy assignment enforcement mode. Possible values are Default and DoNotEnforce. Possible values include: 'Default', 'DoNotEnforce'
	EnforcementMode EnforcementMode `json:"enforcementMode,omitempty"`
	// NonComplianceMessages - The messages that describe why a resource is non-compliant with the policy.
	NonComplianceMessages *[]NonComplianceMessage `json:"nonComplianceMessages,omitempty"`
}

AssignmentProperties the policy assignment properties.

func (AssignmentProperties) MarshalJSON

func (ap AssignmentProperties) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for AssignmentProperties.

type AssignmentsClient

type AssignmentsClient struct {
	BaseClient
}

AssignmentsClient is the to manage and control access to your resources, you can define customized policies and assign them at a scope.

func NewAssignmentsClient

func NewAssignmentsClient(subscriptionID string) AssignmentsClient

NewAssignmentsClient creates an instance of the AssignmentsClient client.

func NewAssignmentsClientWithBaseURI

func NewAssignmentsClientWithBaseURI(baseURI string, subscriptionID string) AssignmentsClient

NewAssignmentsClientWithBaseURI creates an instance of the AssignmentsClient client using a custom endpoint. Use this when interacting with an Azure cloud that uses a non-standard base URI (sovereign clouds, Azure stack).

func (AssignmentsClient) Create

func (client AssignmentsClient) Create(ctx context.Context, scope string, policyAssignmentName string, parameters Assignment) (result Assignment, err error)

Create this operation creates or updates a policy assignment with the given scope and name. Policy assignments apply to all resources contained within their scope. For example, when you assign a policy at resource group scope, that policy applies to all resources in the group. Parameters: scope - the scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}' policyAssignmentName - the name of the policy assignment. parameters - parameters for the policy assignment.

func (AssignmentsClient) CreateByID

func (client AssignmentsClient) CreateByID(ctx context.Context, policyAssignmentID string, parameters Assignment) (result Assignment, err error)

CreateByID this operation creates or updates the policy assignment with the given ID. Policy assignments made on a scope apply to all resources contained in that scope. For example, when you assign a policy to a resource group that policy applies to all resources in the group. Policy assignment IDs have this format: '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'. Parameters: policyAssignmentID - the ID of the policy assignment to create. Use the format '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'. parameters - parameters for policy assignment.

func (AssignmentsClient) CreateByIDPreparer

func (client AssignmentsClient) CreateByIDPreparer(ctx context.Context, policyAssignmentID string, parameters Assignment) (*http.Request, error)

CreateByIDPreparer prepares the CreateByID request.

func (AssignmentsClient) CreateByIDResponder

func (client AssignmentsClient) CreateByIDResponder(resp *http.Response) (result Assignment, err error)

CreateByIDResponder handles the response to the CreateByID request. The method always closes the http.Response Body.

func (AssignmentsClient) CreateByIDSender

func (client AssignmentsClient) CreateByIDSender(req *http.Request) (*http.Response, error)

CreateByIDSender sends the CreateByID request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) CreatePreparer

func (client AssignmentsClient) CreatePreparer(ctx context.Context, scope string, policyAssignmentName string, parameters Assignment) (*http.Request, error)

CreatePreparer prepares the Create request.

func (AssignmentsClient) CreateResponder

func (client AssignmentsClient) CreateResponder(resp *http.Response) (result Assignment, err error)

CreateResponder handles the response to the Create request. The method always closes the http.Response Body.

func (AssignmentsClient) CreateSender

func (client AssignmentsClient) CreateSender(req *http.Request) (*http.Response, error)

CreateSender sends the Create request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) Delete

func (client AssignmentsClient) Delete(ctx context.Context, scope string, policyAssignmentName string) (result Assignment, err error)

Delete this operation deletes a policy assignment, given its name and the scope it was created in. The scope of a policy assignment is the part of its ID preceding '/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'. Parameters: scope - the scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}' policyAssignmentName - the name of the policy assignment to delete.

func (AssignmentsClient) DeleteByID

func (client AssignmentsClient) DeleteByID(ctx context.Context, policyAssignmentID string) (result Assignment, err error)

DeleteByID this operation deletes the policy with the given ID. Policy assignment IDs have this format: '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'. Valid formats for {scope} are: '/providers/Microsoft.Management/managementGroups/{managementGroup}' (management group), '/subscriptions/{subscriptionId}' (subscription), '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}' (resource group), or '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}' (resource). Parameters: policyAssignmentID - the ID of the policy assignment to delete. Use the format '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'.

func (AssignmentsClient) DeleteByIDPreparer

func (client AssignmentsClient) DeleteByIDPreparer(ctx context.Context, policyAssignmentID string) (*http.Request, error)

DeleteByIDPreparer prepares the DeleteByID request.

func (AssignmentsClient) DeleteByIDResponder

func (client AssignmentsClient) DeleteByIDResponder(resp *http.Response) (result Assignment, err error)

DeleteByIDResponder handles the response to the DeleteByID request. The method always closes the http.Response Body.

func (AssignmentsClient) DeleteByIDSender

func (client AssignmentsClient) DeleteByIDSender(req *http.Request) (*http.Response, error)

DeleteByIDSender sends the DeleteByID request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) DeletePreparer

func (client AssignmentsClient) DeletePreparer(ctx context.Context, scope string, policyAssignmentName string) (*http.Request, error)

DeletePreparer prepares the Delete request.

func (AssignmentsClient) DeleteResponder

func (client AssignmentsClient) DeleteResponder(resp *http.Response) (result Assignment, err error)

DeleteResponder handles the response to the Delete request. The method always closes the http.Response Body.

func (AssignmentsClient) DeleteSender

func (client AssignmentsClient) DeleteSender(req *http.Request) (*http.Response, error)

DeleteSender sends the Delete request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) Get

func (client AssignmentsClient) Get(ctx context.Context, scope string, policyAssignmentName string) (result Assignment, err error)

Get this operation retrieves a single policy assignment, given its name and the scope it was created at. Parameters: scope - the scope of the policy assignment. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}' policyAssignmentName - the name of the policy assignment to get.

func (AssignmentsClient) GetByID

func (client AssignmentsClient) GetByID(ctx context.Context, policyAssignmentID string) (result Assignment, err error)

GetByID the operation retrieves the policy assignment with the given ID. Policy assignment IDs have this format: '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'. Valid scopes are: management group (format: '/providers/Microsoft.Management/managementGroups/{managementGroup}'), subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'. Parameters: policyAssignmentID - the ID of the policy assignment to get. Use the format '{scope}/providers/Microsoft.Authorization/policyAssignments/{policyAssignmentName}'.

func (AssignmentsClient) GetByIDPreparer

func (client AssignmentsClient) GetByIDPreparer(ctx context.Context, policyAssignmentID string) (*http.Request, error)

GetByIDPreparer prepares the GetByID request.

func (AssignmentsClient) GetByIDResponder

func (client AssignmentsClient) GetByIDResponder(resp *http.Response) (result Assignment, err error)

GetByIDResponder handles the response to the GetByID request. The method always closes the http.Response Body.

func (AssignmentsClient) GetByIDSender

func (client AssignmentsClient) GetByIDSender(req *http.Request) (*http.Response, error)

GetByIDSender sends the GetByID request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) GetPreparer

func (client AssignmentsClient) GetPreparer(ctx context.Context, scope string, policyAssignmentName string) (*http.Request, error)

GetPreparer prepares the Get request.

func (AssignmentsClient) GetResponder

func (client AssignmentsClient) GetResponder(resp *http.Response) (result Assignment, err error)

GetResponder handles the response to the Get request. The method always closes the http.Response Body.

func (AssignmentsClient) GetSender

func (client AssignmentsClient) GetSender(req *http.Request) (*http.Response, error)

GetSender sends the Get request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) List

func (client AssignmentsClient) List(ctx context.Context, filter string, top *int32) (result AssignmentListResultPage, err error)

List this operation retrieves the list of all policy assignments associated with the given subscription that match the optional given $filter. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, the unfiltered list includes all policy assignments associated with the subscription, including those that apply directly or from management groups that contain the given subscription, as well as any applied to objects contained within the subscription. If $filter=atScope() is provided, the returned list includes all policy assignments that apply to the subscription, which is everything in the unfiltered list except those applied to objects contained within the subscription. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the subscription. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value}. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atScope() is provided, the returned list only includes all policy assignments that apply to the scope, which is everything in the unfiltered list except those applied to sub scopes contained within the given scope. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the given scope. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (AssignmentsClient) ListComplete

func (client AssignmentsClient) ListComplete(ctx context.Context, filter string, top *int32) (result AssignmentListResultIterator, err error)

ListComplete enumerates all values, automatically crossing page boundaries as required.

func (AssignmentsClient) ListForManagementGroup

func (client AssignmentsClient) ListForManagementGroup(ctx context.Context, managementGroupID string, filter string, top *int32) (result AssignmentListResultPage, err error)

ListForManagementGroup this operation retrieves the list of all policy assignments applicable to the management group that match the given $filter. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter=atScope() is provided, the returned list includes all policy assignments that are assigned to the management group or the management group's ancestors. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the management group. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value} that apply to the management group. Parameters: managementGroupID - the ID of the management group. filter - the filter to apply on the operation. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atScope() is provided, the returned list only includes all policy assignments that apply to the scope, which is everything in the unfiltered list except those applied to sub scopes contained within the given scope. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the given scope. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (AssignmentsClient) ListForManagementGroupComplete

func (client AssignmentsClient) ListForManagementGroupComplete(ctx context.Context, managementGroupID string, filter string, top *int32) (result AssignmentListResultIterator, err error)

ListForManagementGroupComplete enumerates all values, automatically crossing page boundaries as required.

func (AssignmentsClient) ListForManagementGroupPreparer

func (client AssignmentsClient) ListForManagementGroupPreparer(ctx context.Context, managementGroupID string, filter string, top *int32) (*http.Request, error)

ListForManagementGroupPreparer prepares the ListForManagementGroup request.

func (AssignmentsClient) ListForManagementGroupResponder

func (client AssignmentsClient) ListForManagementGroupResponder(resp *http.Response) (result AssignmentListResult, err error)

ListForManagementGroupResponder handles the response to the ListForManagementGroup request. The method always closes the http.Response Body.

func (AssignmentsClient) ListForManagementGroupSender

func (client AssignmentsClient) ListForManagementGroupSender(req *http.Request) (*http.Response, error)

ListForManagementGroupSender sends the ListForManagementGroup request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) ListForResource

func (client AssignmentsClient) ListForResource(ctx context.Context, resourceGroupName string, resourceProviderNamespace string, parentResourcePath string, resourceType string, resourceName string, filter string, top *int32) (result AssignmentListResultPage, err error)

ListForResource this operation retrieves the list of all policy assignments associated with the specified resource in the given resource group and subscription that match the optional given $filter. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, the unfiltered list includes all policy assignments associated with the resource, including those that apply directly or from all containing scopes, as well as any applied to resources contained within the resource. If $filter=atScope() is provided, the returned list includes all policy assignments that apply to the resource, which is everything in the unfiltered list except those applied to resources contained within the resource. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the resource level. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value} that apply to the resource. Three parameters plus the resource name are used to identify a specific resource. If the resource is not part of a parent resource (the more common case), the parent resource path should not be provided (or provided as ”). For example a web app could be specified as ({resourceProviderNamespace} == 'Microsoft.Web', {parentResourcePath} == ”, {resourceType} == 'sites', {resourceName} == 'MyWebApp'). If the resource is part of a parent resource, then all parameters should be provided. For example a virtual machine DNS name could be specified as ({resourceProviderNamespace} == 'Microsoft.Compute', {parentResourcePath} == 'virtualMachines/MyVirtualMachine', {resourceType} == 'domainNames', {resourceName} == 'MyComputerName'). A convenient alternative to providing the namespace and type name separately is to provide both in the {resourceType} parameter, format: ({resourceProviderNamespace} == ”, {parentResourcePath} == ”, {resourceType} == 'Microsoft.Web/sites', {resourceName} == 'MyWebApp'). Parameters: resourceGroupName - the name of the resource group containing the resource. resourceProviderNamespace - the namespace of the resource provider. For example, the namespace of a virtual machine is Microsoft.Compute (from Microsoft.Compute/virtualMachines) parentResourcePath - the parent resource path. Use empty string if there is none. resourceType - the resource type name. For example the type name of a web app is 'sites' (from Microsoft.Web/sites). resourceName - the name of the resource. filter - the filter to apply on the operation. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atScope() is provided, the returned list only includes all policy assignments that apply to the scope, which is everything in the unfiltered list except those applied to sub scopes contained within the given scope. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the given scope. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (AssignmentsClient) ListForResourceComplete

func (client AssignmentsClient) ListForResourceComplete(ctx context.Context, resourceGroupName string, resourceProviderNamespace string, parentResourcePath string, resourceType string, resourceName string, filter string, top *int32) (result AssignmentListResultIterator, err error)

ListForResourceComplete enumerates all values, automatically crossing page boundaries as required.

func (AssignmentsClient) ListForResourceGroup

func (client AssignmentsClient) ListForResourceGroup(ctx context.Context, resourceGroupName string, filter string, top *int32) (result AssignmentListResultPage, err error)

ListForResourceGroup this operation retrieves the list of all policy assignments associated with the given resource group in the given subscription that match the optional given $filter. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, the unfiltered list includes all policy assignments associated with the resource group, including those that apply directly or apply from containing scopes, as well as any applied to resources contained within the resource group. If $filter=atScope() is provided, the returned list includes all policy assignments that apply to the resource group, which is everything in the unfiltered list except those applied to resources contained within the resource group. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the resource group. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value} that apply to the resource group. Parameters: resourceGroupName - the name of the resource group that contains policy assignments. filter - the filter to apply on the operation. Valid values for $filter are: 'atScope()', 'atExactScope()' or 'policyDefinitionId eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atScope() is provided, the returned list only includes all policy assignments that apply to the scope, which is everything in the unfiltered list except those applied to sub scopes contained within the given scope. If $filter=atExactScope() is provided, the returned list only includes all policy assignments that at the given scope. If $filter=policyDefinitionId eq '{value}' is provided, the returned list includes all policy assignments of the policy definition whose id is {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (AssignmentsClient) ListForResourceGroupComplete

func (client AssignmentsClient) ListForResourceGroupComplete(ctx context.Context, resourceGroupName string, filter string, top *int32) (result AssignmentListResultIterator, err error)

ListForResourceGroupComplete enumerates all values, automatically crossing page boundaries as required.

func (AssignmentsClient) ListForResourceGroupPreparer

func (client AssignmentsClient) ListForResourceGroupPreparer(ctx context.Context, resourceGroupName string, filter string, top *int32) (*http.Request, error)

ListForResourceGroupPreparer prepares the ListForResourceGroup request.

func (AssignmentsClient) ListForResourceGroupResponder

func (client AssignmentsClient) ListForResourceGroupResponder(resp *http.Response) (result AssignmentListResult, err error)

ListForResourceGroupResponder handles the response to the ListForResourceGroup request. The method always closes the http.Response Body.

func (AssignmentsClient) ListForResourceGroupSender

func (client AssignmentsClient) ListForResourceGroupSender(req *http.Request) (*http.Response, error)

ListForResourceGroupSender sends the ListForResourceGroup request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) ListForResourcePreparer

func (client AssignmentsClient) ListForResourcePreparer(ctx context.Context, resourceGroupName string, resourceProviderNamespace string, parentResourcePath string, resourceType string, resourceName string, filter string, top *int32) (*http.Request, error)

ListForResourcePreparer prepares the ListForResource request.

func (AssignmentsClient) ListForResourceResponder

func (client AssignmentsClient) ListForResourceResponder(resp *http.Response) (result AssignmentListResult, err error)

ListForResourceResponder handles the response to the ListForResource request. The method always closes the http.Response Body.

func (AssignmentsClient) ListForResourceSender

func (client AssignmentsClient) ListForResourceSender(req *http.Request) (*http.Response, error)

ListForResourceSender sends the ListForResource request. The method will close the http.Response Body if it receives an error.

func (AssignmentsClient) ListPreparer

func (client AssignmentsClient) ListPreparer(ctx context.Context, filter string, top *int32) (*http.Request, error)

ListPreparer prepares the List request.

func (AssignmentsClient) ListResponder

func (client AssignmentsClient) ListResponder(resp *http.Response) (result AssignmentListResult, err error)

ListResponder handles the response to the List request. The method always closes the http.Response Body.

func (AssignmentsClient) ListSender

func (client AssignmentsClient) ListSender(req *http.Request) (*http.Response, error)

ListSender sends the List request. The method will close the http.Response Body if it receives an error.

type BaseClient

type BaseClient struct {
	autorest.Client
	BaseURI        string
	SubscriptionID string
}

BaseClient is the base client for Policy.

func New

func New(subscriptionID string) BaseClient

New creates an instance of the BaseClient client.

func NewWithBaseURI

func NewWithBaseURI(baseURI string, subscriptionID string) BaseClient

NewWithBaseURI creates an instance of the BaseClient client using a custom endpoint. Use this when interacting with an Azure cloud that uses a non-standard base URI (sovereign clouds, Azure stack).

type CloudError

type CloudError struct {
	// Error - The error object.
	Error *ErrorDetail `json:"error,omitempty"`
}

CloudError common error response for all Azure Resource Manager APIs to return error details for failed operations. (This also follows the OData error response format.).

type DataEffect

type DataEffect struct {
	// Name - The data effect name.
	Name *string `json:"name,omitempty"`
	// DetailsSchema - The data effect details schema.
	DetailsSchema interface{} `json:"detailsSchema,omitempty"`
}

DataEffect the data effect definition.

type DataManifestCustomResourceFunctionDefinition

type DataManifestCustomResourceFunctionDefinition struct {
	// Name - The function name as it will appear in the policy rule. eg - 'vault'.
	Name *string `json:"name,omitempty"`
	// FullyQualifiedResourceType - The fully qualified control plane resource type that this function represents. eg - 'Microsoft.KeyVault/vaults'.
	FullyQualifiedResourceType *string `json:"fullyQualifiedResourceType,omitempty"`
	// DefaultProperties - The top-level properties that can be selected on the function's output. eg - [ "name", "location" ] if vault().name and vault().location are supported
	DefaultProperties *[]string `json:"defaultProperties,omitempty"`
	// AllowCustomProperties - A value indicating whether the custom properties within the property bag are allowed. Needs api-version to be specified in the policy rule eg - vault('2019-06-01').
	AllowCustomProperties *bool `json:"allowCustomProperties,omitempty"`
}

DataManifestCustomResourceFunctionDefinition the custom resource function definition.

type DataManifestResourceFunctionsDefinition

type DataManifestResourceFunctionsDefinition struct {
	// Standard - The standard resource functions (subscription and/or resourceGroup).
	Standard *[]string `json:"standard,omitempty"`
	// Custom - An array of data manifest custom resource definition.
	Custom *[]DataManifestCustomResourceFunctionDefinition `json:"custom,omitempty"`
}

DataManifestResourceFunctionsDefinition the resource functions supported by a manifest

type DataPolicyManifest

type DataPolicyManifest struct {
	autorest.Response `json:"-"`
	// DataPolicyManifestProperties - The data policy manifest properties.
	*DataPolicyManifestProperties `json:"properties,omitempty"`
	// ID - READ-ONLY; The ID of the data policy manifest.
	ID *string `json:"id,omitempty"`
	// Name - READ-ONLY; The name of the data policy manifest (it's the same as the Policy Mode).
	Name *string `json:"name,omitempty"`
	// Type - READ-ONLY; The type of the resource (Microsoft.Authorization/dataPolicyManifests).
	Type *string `json:"type,omitempty"`
}

DataPolicyManifest the data policy manifest.

func (DataPolicyManifest) MarshalJSON

func (dpm DataPolicyManifest) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for DataPolicyManifest.

func (*DataPolicyManifest) UnmarshalJSON

func (dpm *DataPolicyManifest) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for DataPolicyManifest struct.

type DataPolicyManifestListResult

type DataPolicyManifestListResult struct {
	autorest.Response `json:"-"`
	// Value - An array of data policy manifests.
	Value *[]DataPolicyManifest `json:"value,omitempty"`
	// NextLink - The URL to use for getting the next set of results.
	NextLink *string `json:"nextLink,omitempty"`
}

DataPolicyManifestListResult list of data policy manifests.

func (DataPolicyManifestListResult) IsEmpty

func (dpmlr DataPolicyManifestListResult) IsEmpty() bool

IsEmpty returns true if the ListResult contains no values.

type DataPolicyManifestListResultIterator

type DataPolicyManifestListResultIterator struct {
	// contains filtered or unexported fields
}

DataPolicyManifestListResultIterator provides access to a complete listing of DataPolicyManifest values.

func NewDataPolicyManifestListResultIterator

func NewDataPolicyManifestListResultIterator(page DataPolicyManifestListResultPage) DataPolicyManifestListResultIterator

Creates a new instance of the DataPolicyManifestListResultIterator type.

func (*DataPolicyManifestListResultIterator) Next

Next advances to the next value. If there was an error making the request the iterator does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*DataPolicyManifestListResultIterator) NextWithContext

func (iter *DataPolicyManifestListResultIterator) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next value. If there was an error making the request the iterator does not advance and the error is returned.

func (DataPolicyManifestListResultIterator) NotDone

NotDone returns true if the enumeration should be started or is not yet complete.

func (DataPolicyManifestListResultIterator) Response

Response returns the raw server response from the last page request.

func (DataPolicyManifestListResultIterator) Value

Value returns the current value or a zero-initialized value if the iterator has advanced beyond the end of the collection.

type DataPolicyManifestListResultPage

type DataPolicyManifestListResultPage struct {
	// contains filtered or unexported fields
}

DataPolicyManifestListResultPage contains a page of DataPolicyManifest values.

func NewDataPolicyManifestListResultPage

Creates a new instance of the DataPolicyManifestListResultPage type.

func (*DataPolicyManifestListResultPage) Next

Next advances to the next page of values. If there was an error making the request the page does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*DataPolicyManifestListResultPage) NextWithContext

func (page *DataPolicyManifestListResultPage) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next page of values. If there was an error making the request the page does not advance and the error is returned.

func (DataPolicyManifestListResultPage) NotDone

func (page DataPolicyManifestListResultPage) NotDone() bool

NotDone returns true if the page enumeration should be started or is not yet complete.

func (DataPolicyManifestListResultPage) Response

Response returns the raw server response from the last page request.

func (DataPolicyManifestListResultPage) Values

Values returns the slice of values for the current page or nil if there are no values.

type DataPolicyManifestProperties

type DataPolicyManifestProperties struct {
	// Namespaces - The list of namespaces for the data policy manifest.
	Namespaces *[]string `json:"namespaces,omitempty"`
	// PolicyMode - The policy mode of the data policy manifest.
	PolicyMode *string `json:"policyMode,omitempty"`
	// IsBuiltInOnly - A value indicating whether policy mode is allowed only in built-in definitions.
	IsBuiltInOnly *bool `json:"isBuiltInOnly,omitempty"`
	// ResourceTypeAliases - An array of resource type aliases.
	ResourceTypeAliases *[]ResourceTypeAliases `json:"resourceTypeAliases,omitempty"`
	// Effects - The effect definition.
	Effects *[]DataEffect `json:"effects,omitempty"`
	// FieldValues - The non-alias field accessor values that can be used in the policy rule.
	FieldValues *[]string `json:"fieldValues,omitempty"`
	// DataManifestResourceFunctionsDefinition - The resource functions definition specified in the data manifest.
	*DataManifestResourceFunctionsDefinition `json:"resourceFunctions,omitempty"`
}

DataPolicyManifestProperties the properties of the data policy manifest.

func (DataPolicyManifestProperties) MarshalJSON

func (dpmp DataPolicyManifestProperties) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for DataPolicyManifestProperties.

func (*DataPolicyManifestProperties) UnmarshalJSON

func (dpmp *DataPolicyManifestProperties) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for DataPolicyManifestProperties struct.

type DataPolicyManifestsClient

type DataPolicyManifestsClient struct {
	BaseClient
}

DataPolicyManifestsClient is the to manage and control access to your resources, you can define customized policies and assign them at a scope.

func NewDataPolicyManifestsClient

func NewDataPolicyManifestsClient(subscriptionID string) DataPolicyManifestsClient

NewDataPolicyManifestsClient creates an instance of the DataPolicyManifestsClient client.

func NewDataPolicyManifestsClientWithBaseURI

func NewDataPolicyManifestsClientWithBaseURI(baseURI string, subscriptionID string) DataPolicyManifestsClient

NewDataPolicyManifestsClientWithBaseURI creates an instance of the DataPolicyManifestsClient client using a custom endpoint. Use this when interacting with an Azure cloud that uses a non-standard base URI (sovereign clouds, Azure stack).

func (DataPolicyManifestsClient) GetByPolicyMode

func (client DataPolicyManifestsClient) GetByPolicyMode(ctx context.Context, policyMode string) (result DataPolicyManifest, err error)

GetByPolicyMode this operation retrieves the data policy manifest with the given policy mode. Parameters: policyMode - the policy mode of the data policy manifest to get.

func (DataPolicyManifestsClient) GetByPolicyModePreparer

func (client DataPolicyManifestsClient) GetByPolicyModePreparer(ctx context.Context, policyMode string) (*http.Request, error)

GetByPolicyModePreparer prepares the GetByPolicyMode request.

func (DataPolicyManifestsClient) GetByPolicyModeResponder

func (client DataPolicyManifestsClient) GetByPolicyModeResponder(resp *http.Response) (result DataPolicyManifest, err error)

GetByPolicyModeResponder handles the response to the GetByPolicyMode request. The method always closes the http.Response Body.

func (DataPolicyManifestsClient) GetByPolicyModeSender

func (client DataPolicyManifestsClient) GetByPolicyModeSender(req *http.Request) (*http.Response, error)

GetByPolicyModeSender sends the GetByPolicyMode request. The method will close the http.Response Body if it receives an error.

func (DataPolicyManifestsClient) List

List this operation retrieves a list of all the data policy manifests that match the optional given $filter. Valid values for $filter are: "$filter=namespace eq '{0}'". If $filter is not provided, the unfiltered list includes all data policy manifests for data resource types. If $filter=namespace is provided, the returned list only includes all data policy manifests that have a namespace matching the provided value. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: "namespace eq '{value}'". If $filter is not provided, no filtering is performed. If $filter=namespace eq '{value}' is provided, the returned list only includes all data policy manifests that have a namespace matching the provided value.

func (DataPolicyManifestsClient) ListComplete

func (client DataPolicyManifestsClient) ListComplete(ctx context.Context, filter string) (result DataPolicyManifestListResultIterator, err error)

ListComplete enumerates all values, automatically crossing page boundaries as required.

func (DataPolicyManifestsClient) ListPreparer

func (client DataPolicyManifestsClient) ListPreparer(ctx context.Context, filter string) (*http.Request, error)

ListPreparer prepares the List request.

func (DataPolicyManifestsClient) ListResponder

func (client DataPolicyManifestsClient) ListResponder(resp *http.Response) (result DataPolicyManifestListResult, err error)

ListResponder handles the response to the List request. The method always closes the http.Response Body.

func (DataPolicyManifestsClient) ListSender

func (client DataPolicyManifestsClient) ListSender(req *http.Request) (*http.Response, error)

ListSender sends the List request. The method will close the http.Response Body if it receives an error.

type Definition

type Definition struct {
	autorest.Response `json:"-"`
	// DefinitionProperties - The policy definition properties.
	*DefinitionProperties `json:"properties,omitempty"`
	// ID - READ-ONLY; The ID of the policy definition.
	ID *string `json:"id,omitempty"`
	// Name - READ-ONLY; The name of the policy definition.
	Name *string `json:"name,omitempty"`
	// Type - READ-ONLY; The type of the resource (Microsoft.Authorization/policyDefinitions).
	Type *string `json:"type,omitempty"`
}

Definition the policy definition.

func (Definition) MarshalJSON

func (d Definition) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for Definition.

func (*Definition) UnmarshalJSON

func (d *Definition) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for Definition struct.

type DefinitionGroup

type DefinitionGroup struct {
	// Name - The name of the group.
	Name *string `json:"name,omitempty"`
	// DisplayName - The group's display name.
	DisplayName *string `json:"displayName,omitempty"`
	// Category - The group's category.
	Category *string `json:"category,omitempty"`
	// Description - The group's description.
	Description *string `json:"description,omitempty"`
	// AdditionalMetadataID - A resource ID of a resource that contains additional metadata about the group.
	AdditionalMetadataID *string `json:"additionalMetadataId,omitempty"`
}

DefinitionGroup the policy definition group.

type DefinitionListResult

type DefinitionListResult struct {
	autorest.Response `json:"-"`
	// Value - An array of policy definitions.
	Value *[]Definition `json:"value,omitempty"`
	// NextLink - The URL to use for getting the next set of results.
	NextLink *string `json:"nextLink,omitempty"`
}

DefinitionListResult list of policy definitions.

func (DefinitionListResult) IsEmpty

func (dlr DefinitionListResult) IsEmpty() bool

IsEmpty returns true if the ListResult contains no values.

type DefinitionListResultIterator

type DefinitionListResultIterator struct {
	// contains filtered or unexported fields
}

DefinitionListResultIterator provides access to a complete listing of Definition values.

func NewDefinitionListResultIterator

func NewDefinitionListResultIterator(page DefinitionListResultPage) DefinitionListResultIterator

Creates a new instance of the DefinitionListResultIterator type.

func (*DefinitionListResultIterator) Next

func (iter *DefinitionListResultIterator) Next() error

Next advances to the next value. If there was an error making the request the iterator does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*DefinitionListResultIterator) NextWithContext

func (iter *DefinitionListResultIterator) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next value. If there was an error making the request the iterator does not advance and the error is returned.

func (DefinitionListResultIterator) NotDone

func (iter DefinitionListResultIterator) NotDone() bool

NotDone returns true if the enumeration should be started or is not yet complete.

func (DefinitionListResultIterator) Response

Response returns the raw server response from the last page request.

func (DefinitionListResultIterator) Value

Value returns the current value or a zero-initialized value if the iterator has advanced beyond the end of the collection.

type DefinitionListResultPage

type DefinitionListResultPage struct {
	// contains filtered or unexported fields
}

DefinitionListResultPage contains a page of Definition values.

func NewDefinitionListResultPage

func NewDefinitionListResultPage(cur DefinitionListResult, getNextPage func(context.Context, DefinitionListResult) (DefinitionListResult, error)) DefinitionListResultPage

Creates a new instance of the DefinitionListResultPage type.

func (*DefinitionListResultPage) Next

func (page *DefinitionListResultPage) Next() error

Next advances to the next page of values. If there was an error making the request the page does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*DefinitionListResultPage) NextWithContext

func (page *DefinitionListResultPage) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next page of values. If there was an error making the request the page does not advance and the error is returned.

func (DefinitionListResultPage) NotDone

func (page DefinitionListResultPage) NotDone() bool

NotDone returns true if the page enumeration should be started or is not yet complete.

func (DefinitionListResultPage) Response

Response returns the raw server response from the last page request.

func (DefinitionListResultPage) Values

func (page DefinitionListResultPage) Values() []Definition

Values returns the slice of values for the current page or nil if there are no values.

type DefinitionProperties

type DefinitionProperties struct {
	// PolicyType - The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static. Possible values include: 'TypeNotSpecified', 'TypeBuiltIn', 'TypeCustom', 'TypeStatic'
	PolicyType Type `json:"policyType,omitempty"`
	// Mode - The policy definition mode. Some examples are All, Indexed, Microsoft.KeyVault.Data.
	Mode *string `json:"mode,omitempty"`
	// DisplayName - The display name of the policy definition.
	DisplayName *string `json:"displayName,omitempty"`
	// Description - The policy definition description.
	Description *string `json:"description,omitempty"`
	// PolicyRule - The policy rule.
	PolicyRule interface{} `json:"policyRule,omitempty"`
	// Metadata - The policy definition metadata.  Metadata is an open ended object and is typically a collection of key value pairs.
	Metadata interface{} `json:"metadata,omitempty"`
	// Parameters - The parameter definitions for parameters used in the policy rule. The keys are the parameter names.
	Parameters map[string]*ParameterDefinitionsValue `json:"parameters"`
}

DefinitionProperties the policy definition properties.

func (DefinitionProperties) MarshalJSON

func (dp DefinitionProperties) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for DefinitionProperties.

type DefinitionReference

type DefinitionReference struct {
	// PolicyDefinitionID - The ID of the policy definition or policy set definition.
	PolicyDefinitionID *string `json:"policyDefinitionId,omitempty"`
	// Parameters - The parameter values for the referenced policy rule. The keys are the parameter names.
	Parameters map[string]*ParameterValuesValue `json:"parameters"`
	// PolicyDefinitionReferenceID - A unique id (within the policy set definition) for this policy definition reference.
	PolicyDefinitionReferenceID *string `json:"policyDefinitionReferenceId,omitempty"`
	// GroupNames - The name of the groups that this policy definition reference belongs to.
	GroupNames *[]string `json:"groupNames,omitempty"`
}

DefinitionReference the policy definition reference.

func (DefinitionReference) MarshalJSON

func (dr DefinitionReference) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for DefinitionReference.

type DefinitionsClient

type DefinitionsClient struct {
	BaseClient
}

DefinitionsClient is the to manage and control access to your resources, you can define customized policies and assign them at a scope.

func NewDefinitionsClient

func NewDefinitionsClient(subscriptionID string) DefinitionsClient

NewDefinitionsClient creates an instance of the DefinitionsClient client.

func NewDefinitionsClientWithBaseURI

func NewDefinitionsClientWithBaseURI(baseURI string, subscriptionID string) DefinitionsClient

NewDefinitionsClientWithBaseURI creates an instance of the DefinitionsClient client using a custom endpoint. Use this when interacting with an Azure cloud that uses a non-standard base URI (sovereign clouds, Azure stack).

func (DefinitionsClient) CreateOrUpdate

func (client DefinitionsClient) CreateOrUpdate(ctx context.Context, policyDefinitionName string, parameters Definition) (result Definition, err error)

CreateOrUpdate this operation creates or updates a policy definition in the given subscription with the given name. Parameters: policyDefinitionName - the name of the policy definition to create. parameters - the policy definition properties.

func (DefinitionsClient) CreateOrUpdateAtManagementGroup

func (client DefinitionsClient) CreateOrUpdateAtManagementGroup(ctx context.Context, policyDefinitionName string, parameters Definition, managementGroupID string) (result Definition, err error)

CreateOrUpdateAtManagementGroup this operation creates or updates a policy definition in the given management group with the given name. Parameters: policyDefinitionName - the name of the policy definition to create. parameters - the policy definition properties. managementGroupID - the ID of the management group.

func (DefinitionsClient) CreateOrUpdateAtManagementGroupPreparer

func (client DefinitionsClient) CreateOrUpdateAtManagementGroupPreparer(ctx context.Context, policyDefinitionName string, parameters Definition, managementGroupID string) (*http.Request, error)

CreateOrUpdateAtManagementGroupPreparer prepares the CreateOrUpdateAtManagementGroup request.

func (DefinitionsClient) CreateOrUpdateAtManagementGroupResponder

func (client DefinitionsClient) CreateOrUpdateAtManagementGroupResponder(resp *http.Response) (result Definition, err error)

CreateOrUpdateAtManagementGroupResponder handles the response to the CreateOrUpdateAtManagementGroup request. The method always closes the http.Response Body.

func (DefinitionsClient) CreateOrUpdateAtManagementGroupSender

func (client DefinitionsClient) CreateOrUpdateAtManagementGroupSender(req *http.Request) (*http.Response, error)

CreateOrUpdateAtManagementGroupSender sends the CreateOrUpdateAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) CreateOrUpdatePreparer

func (client DefinitionsClient) CreateOrUpdatePreparer(ctx context.Context, policyDefinitionName string, parameters Definition) (*http.Request, error)

CreateOrUpdatePreparer prepares the CreateOrUpdate request.

func (DefinitionsClient) CreateOrUpdateResponder

func (client DefinitionsClient) CreateOrUpdateResponder(resp *http.Response) (result Definition, err error)

CreateOrUpdateResponder handles the response to the CreateOrUpdate request. The method always closes the http.Response Body.

func (DefinitionsClient) CreateOrUpdateSender

func (client DefinitionsClient) CreateOrUpdateSender(req *http.Request) (*http.Response, error)

CreateOrUpdateSender sends the CreateOrUpdate request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) Delete

func (client DefinitionsClient) Delete(ctx context.Context, policyDefinitionName string) (result autorest.Response, err error)

Delete this operation deletes the policy definition in the given subscription with the given name. Parameters: policyDefinitionName - the name of the policy definition to delete.

func (DefinitionsClient) DeleteAtManagementGroup

func (client DefinitionsClient) DeleteAtManagementGroup(ctx context.Context, policyDefinitionName string, managementGroupID string) (result autorest.Response, err error)

DeleteAtManagementGroup this operation deletes the policy definition in the given management group with the given name. Parameters: policyDefinitionName - the name of the policy definition to delete. managementGroupID - the ID of the management group.

func (DefinitionsClient) DeleteAtManagementGroupPreparer

func (client DefinitionsClient) DeleteAtManagementGroupPreparer(ctx context.Context, policyDefinitionName string, managementGroupID string) (*http.Request, error)

DeleteAtManagementGroupPreparer prepares the DeleteAtManagementGroup request.

func (DefinitionsClient) DeleteAtManagementGroupResponder

func (client DefinitionsClient) DeleteAtManagementGroupResponder(resp *http.Response) (result autorest.Response, err error)

DeleteAtManagementGroupResponder handles the response to the DeleteAtManagementGroup request. The method always closes the http.Response Body.

func (DefinitionsClient) DeleteAtManagementGroupSender

func (client DefinitionsClient) DeleteAtManagementGroupSender(req *http.Request) (*http.Response, error)

DeleteAtManagementGroupSender sends the DeleteAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) DeletePreparer

func (client DefinitionsClient) DeletePreparer(ctx context.Context, policyDefinitionName string) (*http.Request, error)

DeletePreparer prepares the Delete request.

func (DefinitionsClient) DeleteResponder

func (client DefinitionsClient) DeleteResponder(resp *http.Response) (result autorest.Response, err error)

DeleteResponder handles the response to the Delete request. The method always closes the http.Response Body.

func (DefinitionsClient) DeleteSender

func (client DefinitionsClient) DeleteSender(req *http.Request) (*http.Response, error)

DeleteSender sends the Delete request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) Get

func (client DefinitionsClient) Get(ctx context.Context, policyDefinitionName string) (result Definition, err error)

Get this operation retrieves the policy definition in the given subscription with the given name. Parameters: policyDefinitionName - the name of the policy definition to get.

func (DefinitionsClient) GetAtManagementGroup

func (client DefinitionsClient) GetAtManagementGroup(ctx context.Context, policyDefinitionName string, managementGroupID string) (result Definition, err error)

GetAtManagementGroup this operation retrieves the policy definition in the given management group with the given name. Parameters: policyDefinitionName - the name of the policy definition to get. managementGroupID - the ID of the management group.

func (DefinitionsClient) GetAtManagementGroupPreparer

func (client DefinitionsClient) GetAtManagementGroupPreparer(ctx context.Context, policyDefinitionName string, managementGroupID string) (*http.Request, error)

GetAtManagementGroupPreparer prepares the GetAtManagementGroup request.

func (DefinitionsClient) GetAtManagementGroupResponder

func (client DefinitionsClient) GetAtManagementGroupResponder(resp *http.Response) (result Definition, err error)

GetAtManagementGroupResponder handles the response to the GetAtManagementGroup request. The method always closes the http.Response Body.

func (DefinitionsClient) GetAtManagementGroupSender

func (client DefinitionsClient) GetAtManagementGroupSender(req *http.Request) (*http.Response, error)

GetAtManagementGroupSender sends the GetAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) GetBuiltIn

func (client DefinitionsClient) GetBuiltIn(ctx context.Context, policyDefinitionName string) (result Definition, err error)

GetBuiltIn this operation retrieves the built-in policy definition with the given name. Parameters: policyDefinitionName - the name of the built-in policy definition to get.

func (DefinitionsClient) GetBuiltInPreparer

func (client DefinitionsClient) GetBuiltInPreparer(ctx context.Context, policyDefinitionName string) (*http.Request, error)

GetBuiltInPreparer prepares the GetBuiltIn request.

func (DefinitionsClient) GetBuiltInResponder

func (client DefinitionsClient) GetBuiltInResponder(resp *http.Response) (result Definition, err error)

GetBuiltInResponder handles the response to the GetBuiltIn request. The method always closes the http.Response Body.

func (DefinitionsClient) GetBuiltInSender

func (client DefinitionsClient) GetBuiltInSender(req *http.Request) (*http.Response, error)

GetBuiltInSender sends the GetBuiltIn request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) GetPreparer

func (client DefinitionsClient) GetPreparer(ctx context.Context, policyDefinitionName string) (*http.Request, error)

GetPreparer prepares the Get request.

func (DefinitionsClient) GetResponder

func (client DefinitionsClient) GetResponder(resp *http.Response) (result Definition, err error)

GetResponder handles the response to the Get request. The method always closes the http.Response Body.

func (DefinitionsClient) GetSender

func (client DefinitionsClient) GetSender(req *http.Request) (*http.Response, error)

GetSender sends the Get request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) List

func (client DefinitionsClient) List(ctx context.Context, filter string, top *int32) (result DefinitionListResultPage, err error)

List this operation retrieves a list of all the policy definitions in a given subscription that match the optional given $filter. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, the unfiltered list includes all policy definitions associated with the subscription, including those that apply directly or from management groups that contain the given subscription. If $filter=atExactScope() is provided, the returned list only includes all policy definitions that at the given subscription. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy definitions whose category match the {value}. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (DefinitionsClient) ListBuiltIn

func (client DefinitionsClient) ListBuiltIn(ctx context.Context, filter string, top *int32) (result DefinitionListResultPage, err error)

ListBuiltIn this operation retrieves a list of all the built-in policy definitions that match the optional given $filter. If $filter='policyType -eq {value}' is provided, the returned list only includes all built-in policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all built-in policy definitions whose category match the {value}. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (DefinitionsClient) ListBuiltInComplete

func (client DefinitionsClient) ListBuiltInComplete(ctx context.Context, filter string, top *int32) (result DefinitionListResultIterator, err error)

ListBuiltInComplete enumerates all values, automatically crossing page boundaries as required.

func (DefinitionsClient) ListBuiltInPreparer

func (client DefinitionsClient) ListBuiltInPreparer(ctx context.Context, filter string, top *int32) (*http.Request, error)

ListBuiltInPreparer prepares the ListBuiltIn request.

func (DefinitionsClient) ListBuiltInResponder

func (client DefinitionsClient) ListBuiltInResponder(resp *http.Response) (result DefinitionListResult, err error)

ListBuiltInResponder handles the response to the ListBuiltIn request. The method always closes the http.Response Body.

func (DefinitionsClient) ListBuiltInSender

func (client DefinitionsClient) ListBuiltInSender(req *http.Request) (*http.Response, error)

ListBuiltInSender sends the ListBuiltIn request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) ListByManagementGroup

func (client DefinitionsClient) ListByManagementGroup(ctx context.Context, managementGroupID string, filter string, top *int32) (result DefinitionListResultPage, err error)

ListByManagementGroup this operation retrieves a list of all the policy definitions in a given management group that match the optional given $filter. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, the unfiltered list includes all policy definitions associated with the management group, including those that apply directly or from management groups that contain the given management group. If $filter=atExactScope() is provided, the returned list only includes all policy definitions that at the given management group. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy definitions whose category match the {value}. Parameters: managementGroupID - the ID of the management group. filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (DefinitionsClient) ListByManagementGroupComplete

func (client DefinitionsClient) ListByManagementGroupComplete(ctx context.Context, managementGroupID string, filter string, top *int32) (result DefinitionListResultIterator, err error)

ListByManagementGroupComplete enumerates all values, automatically crossing page boundaries as required.

func (DefinitionsClient) ListByManagementGroupPreparer

func (client DefinitionsClient) ListByManagementGroupPreparer(ctx context.Context, managementGroupID string, filter string, top *int32) (*http.Request, error)

ListByManagementGroupPreparer prepares the ListByManagementGroup request.

func (DefinitionsClient) ListByManagementGroupResponder

func (client DefinitionsClient) ListByManagementGroupResponder(resp *http.Response) (result DefinitionListResult, err error)

ListByManagementGroupResponder handles the response to the ListByManagementGroup request. The method always closes the http.Response Body.

func (DefinitionsClient) ListByManagementGroupSender

func (client DefinitionsClient) ListByManagementGroupSender(req *http.Request) (*http.Response, error)

ListByManagementGroupSender sends the ListByManagementGroup request. The method will close the http.Response Body if it receives an error.

func (DefinitionsClient) ListComplete

func (client DefinitionsClient) ListComplete(ctx context.Context, filter string, top *int32) (result DefinitionListResultIterator, err error)

ListComplete enumerates all values, automatically crossing page boundaries as required.

func (DefinitionsClient) ListPreparer

func (client DefinitionsClient) ListPreparer(ctx context.Context, filter string, top *int32) (*http.Request, error)

ListPreparer prepares the List request.

func (DefinitionsClient) ListResponder

func (client DefinitionsClient) ListResponder(resp *http.Response) (result DefinitionListResult, err error)

ListResponder handles the response to the List request. The method always closes the http.Response Body.

func (DefinitionsClient) ListSender

func (client DefinitionsClient) ListSender(req *http.Request) (*http.Response, error)

ListSender sends the List request. The method will close the http.Response Body if it receives an error.

type EnforcementMode

type EnforcementMode string

EnforcementMode enumerates the values for enforcement mode.

const (
	// Default The policy effect is enforced during resource creation or update.
	Default EnforcementMode = "Default"
	// DoNotEnforce The policy effect is not enforced during resource creation or update.
	DoNotEnforce EnforcementMode = "DoNotEnforce"
)

func PossibleEnforcementModeValues

func PossibleEnforcementModeValues() []EnforcementMode

PossibleEnforcementModeValues returns an array of possible values for the EnforcementMode const type.

type ErrorAdditionalInfo

type ErrorAdditionalInfo struct {
	// Type - READ-ONLY; The additional info type.
	Type *string `json:"type,omitempty"`
	// Info - READ-ONLY; The additional info.
	Info interface{} `json:"info,omitempty"`
}

ErrorAdditionalInfo the resource management error additional info.

type ErrorDetail

type ErrorDetail struct {
	// Code - READ-ONLY; The error code.
	Code *string `json:"code,omitempty"`
	// Message - READ-ONLY; The error message.
	Message *string `json:"message,omitempty"`
	// Target - READ-ONLY; The error target.
	Target *string `json:"target,omitempty"`
	// Details - READ-ONLY; The error details.
	Details *[]ErrorDetail `json:"details,omitempty"`
	// AdditionalInfo - READ-ONLY; The error additional info.
	AdditionalInfo *[]ErrorAdditionalInfo `json:"additionalInfo,omitempty"`
}

ErrorDetail the error detail.

type Identity

type Identity struct {
	// PrincipalID - READ-ONLY; The principal ID of the resource identity.
	PrincipalID *string `json:"principalId,omitempty"`
	// TenantID - READ-ONLY; The tenant ID of the resource identity.
	TenantID *string `json:"tenantId,omitempty"`
	// Type - The identity type. This is the only required field when adding a system assigned identity to a resource. Possible values include: 'ResourceIdentityTypeSystemAssigned', 'ResourceIdentityTypeNone'
	Type ResourceIdentityType `json:"type,omitempty"`
}

Identity identity for the resource.

func (Identity) MarshalJSON

func (i Identity) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for Identity.

type NonComplianceMessage

type NonComplianceMessage struct {
	// Message - A message that describes why a resource is non-compliant with the policy. This is shown in 'deny' error messages and on resource's non-compliant compliance results.
	Message *string `json:"message,omitempty"`
	// PolicyDefinitionReferenceID - The policy definition reference ID within a policy set definition the message is intended for. This is only applicable if the policy assignment assigns a policy set definition. If this is not provided the message applies to all policies assigned by this policy assignment.
	PolicyDefinitionReferenceID *string `json:"policyDefinitionReferenceId,omitempty"`
}

NonComplianceMessage a message that describes why a resource is non-compliant with the policy. This is shown in 'deny' error messages and on resource's non-compliant compliance results.

type ParameterDefinitionsValue

type ParameterDefinitionsValue struct {
	// Type - The data type of the parameter. Possible values include: 'ParameterTypeString', 'ParameterTypeArray', 'ParameterTypeObject', 'ParameterTypeBoolean', 'ParameterTypeInteger', 'ParameterTypeFloat', 'ParameterTypeDateTime'
	Type ParameterType `json:"type,omitempty"`
	// AllowedValues - The allowed values for the parameter.
	AllowedValues *[]interface{} `json:"allowedValues,omitempty"`
	// DefaultValue - The default value for the parameter if no value is provided.
	DefaultValue interface{} `json:"defaultValue,omitempty"`
	// Metadata - General metadata for the parameter.
	Metadata *ParameterDefinitionsValueMetadata `json:"metadata,omitempty"`
}

ParameterDefinitionsValue the definition of a parameter that can be provided to the policy.

type ParameterDefinitionsValueMetadata

type ParameterDefinitionsValueMetadata struct {
	// AdditionalProperties - Unmatched properties from the message are deserialized this collection
	AdditionalProperties map[string]interface{} `json:""`
	// DisplayName - The display name for the parameter.
	DisplayName *string `json:"displayName,omitempty"`
	// Description - The description of the parameter.
	Description *string `json:"description,omitempty"`
	// StrongType - Used when assigning the policy definition through the portal. Provides a context aware list of values for the user to choose from.
	StrongType *string `json:"strongType,omitempty"`
	// AssignPermissions - Set to true to have Azure portal create role assignments on the resource ID or resource scope value of this parameter during policy assignment. This property is useful in case you wish to assign permissions outside the assignment scope.
	AssignPermissions *bool `json:"assignPermissions,omitempty"`
}

ParameterDefinitionsValueMetadata general metadata for the parameter.

func (ParameterDefinitionsValueMetadata) MarshalJSON

func (pdv ParameterDefinitionsValueMetadata) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for ParameterDefinitionsValueMetadata.

func (*ParameterDefinitionsValueMetadata) UnmarshalJSON

func (pdv *ParameterDefinitionsValueMetadata) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for ParameterDefinitionsValueMetadata struct.

type ParameterType

type ParameterType string

ParameterType enumerates the values for parameter type.

const (
	// ParameterTypeArray ...
	ParameterTypeArray ParameterType = "Array"
	// ParameterTypeBoolean ...
	ParameterTypeBoolean ParameterType = "Boolean"
	// ParameterTypeDateTime ...
	ParameterTypeDateTime ParameterType = "DateTime"
	// ParameterTypeFloat ...
	ParameterTypeFloat ParameterType = "Float"
	// ParameterTypeInteger ...
	ParameterTypeInteger ParameterType = "Integer"
	// ParameterTypeObject ...
	ParameterTypeObject ParameterType = "Object"
	// ParameterTypeString ...
	ParameterTypeString ParameterType = "String"
)

func PossibleParameterTypeValues

func PossibleParameterTypeValues() []ParameterType

PossibleParameterTypeValues returns an array of possible values for the ParameterType const type.

type ParameterValuesValue

type ParameterValuesValue struct {
	// Value - The value of the parameter.
	Value interface{} `json:"value,omitempty"`
}

ParameterValuesValue the value of a parameter.

type ResourceIdentityType

type ResourceIdentityType string

ResourceIdentityType enumerates the values for resource identity type.

const (
	// ResourceIdentityTypeNone Indicates that no identity is associated with the resource or that the existing
	// identity should be removed.
	ResourceIdentityTypeNone ResourceIdentityType = "None"
	// ResourceIdentityTypeSystemAssigned Indicates that a system assigned identity is associated with the
	// resource.
	ResourceIdentityTypeSystemAssigned ResourceIdentityType = "SystemAssigned"
)

func PossibleResourceIdentityTypeValues

func PossibleResourceIdentityTypeValues() []ResourceIdentityType

PossibleResourceIdentityTypeValues returns an array of possible values for the ResourceIdentityType const type.

type ResourceTypeAliases

type ResourceTypeAliases struct {
	// ResourceType - The resource type name.
	ResourceType *string `json:"resourceType,omitempty"`
	// Aliases - The aliases for property names.
	Aliases *[]Alias `json:"aliases,omitempty"`
}

ResourceTypeAliases the resource type aliases definition.

type SetDefinition

type SetDefinition struct {
	autorest.Response `json:"-"`
	// SetDefinitionProperties - The policy definition properties.
	*SetDefinitionProperties `json:"properties,omitempty"`
	// ID - READ-ONLY; The ID of the policy set definition.
	ID *string `json:"id,omitempty"`
	// Name - READ-ONLY; The name of the policy set definition.
	Name *string `json:"name,omitempty"`
	// Type - READ-ONLY; The type of the resource (Microsoft.Authorization/policySetDefinitions).
	Type *string `json:"type,omitempty"`
}

SetDefinition the policy set definition.

func (SetDefinition) MarshalJSON

func (sd SetDefinition) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for SetDefinition.

func (*SetDefinition) UnmarshalJSON

func (sd *SetDefinition) UnmarshalJSON(body []byte) error

UnmarshalJSON is the custom unmarshaler for SetDefinition struct.

type SetDefinitionListResult

type SetDefinitionListResult struct {
	autorest.Response `json:"-"`
	// Value - An array of policy set definitions.
	Value *[]SetDefinition `json:"value,omitempty"`
	// NextLink - The URL to use for getting the next set of results.
	NextLink *string `json:"nextLink,omitempty"`
}

SetDefinitionListResult list of policy set definitions.

func (SetDefinitionListResult) IsEmpty

func (sdlr SetDefinitionListResult) IsEmpty() bool

IsEmpty returns true if the ListResult contains no values.

type SetDefinitionListResultIterator

type SetDefinitionListResultIterator struct {
	// contains filtered or unexported fields
}

SetDefinitionListResultIterator provides access to a complete listing of SetDefinition values.

func NewSetDefinitionListResultIterator

func NewSetDefinitionListResultIterator(page SetDefinitionListResultPage) SetDefinitionListResultIterator

Creates a new instance of the SetDefinitionListResultIterator type.

func (*SetDefinitionListResultIterator) Next

Next advances to the next value. If there was an error making the request the iterator does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*SetDefinitionListResultIterator) NextWithContext

func (iter *SetDefinitionListResultIterator) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next value. If there was an error making the request the iterator does not advance and the error is returned.

func (SetDefinitionListResultIterator) NotDone

func (iter SetDefinitionListResultIterator) NotDone() bool

NotDone returns true if the enumeration should be started or is not yet complete.

func (SetDefinitionListResultIterator) Response

Response returns the raw server response from the last page request.

func (SetDefinitionListResultIterator) Value

Value returns the current value or a zero-initialized value if the iterator has advanced beyond the end of the collection.

type SetDefinitionListResultPage

type SetDefinitionListResultPage struct {
	// contains filtered or unexported fields
}

SetDefinitionListResultPage contains a page of SetDefinition values.

func NewSetDefinitionListResultPage

Creates a new instance of the SetDefinitionListResultPage type.

func (*SetDefinitionListResultPage) Next

func (page *SetDefinitionListResultPage) Next() error

Next advances to the next page of values. If there was an error making the request the page does not advance and the error is returned. Deprecated: Use NextWithContext() instead.

func (*SetDefinitionListResultPage) NextWithContext

func (page *SetDefinitionListResultPage) NextWithContext(ctx context.Context) (err error)

NextWithContext advances to the next page of values. If there was an error making the request the page does not advance and the error is returned.

func (SetDefinitionListResultPage) NotDone

func (page SetDefinitionListResultPage) NotDone() bool

NotDone returns true if the page enumeration should be started or is not yet complete.

func (SetDefinitionListResultPage) Response

Response returns the raw server response from the last page request.

func (SetDefinitionListResultPage) Values

Values returns the slice of values for the current page or nil if there are no values.

type SetDefinitionProperties

type SetDefinitionProperties struct {
	// PolicyType - The type of policy definition. Possible values are NotSpecified, BuiltIn, Custom, and Static. Possible values include: 'TypeNotSpecified', 'TypeBuiltIn', 'TypeCustom', 'TypeStatic'
	PolicyType Type `json:"policyType,omitempty"`
	// DisplayName - The display name of the policy set definition.
	DisplayName *string `json:"displayName,omitempty"`
	// Description - The policy set definition description.
	Description *string `json:"description,omitempty"`
	// Metadata - The policy set definition metadata.  Metadata is an open ended object and is typically a collection of key value pairs.
	Metadata interface{} `json:"metadata,omitempty"`
	// Parameters - The policy set definition parameters that can be used in policy definition references.
	Parameters map[string]*ParameterDefinitionsValue `json:"parameters"`
	// PolicyDefinitions - An array of policy definition references.
	PolicyDefinitions *[]DefinitionReference `json:"policyDefinitions,omitempty"`
	// PolicyDefinitionGroups - The metadata describing groups of policy definition references within the policy set definition.
	PolicyDefinitionGroups *[]DefinitionGroup `json:"policyDefinitionGroups,omitempty"`
}

SetDefinitionProperties the policy set definition properties.

func (SetDefinitionProperties) MarshalJSON

func (sdp SetDefinitionProperties) MarshalJSON() ([]byte, error)

MarshalJSON is the custom marshaler for SetDefinitionProperties.

type SetDefinitionsClient

type SetDefinitionsClient struct {
	BaseClient
}

SetDefinitionsClient is the to manage and control access to your resources, you can define customized policies and assign them at a scope.

func NewSetDefinitionsClient

func NewSetDefinitionsClient(subscriptionID string) SetDefinitionsClient

NewSetDefinitionsClient creates an instance of the SetDefinitionsClient client.

func NewSetDefinitionsClientWithBaseURI

func NewSetDefinitionsClientWithBaseURI(baseURI string, subscriptionID string) SetDefinitionsClient

NewSetDefinitionsClientWithBaseURI creates an instance of the SetDefinitionsClient client using a custom endpoint. Use this when interacting with an Azure cloud that uses a non-standard base URI (sovereign clouds, Azure stack).

func (SetDefinitionsClient) CreateOrUpdate

func (client SetDefinitionsClient) CreateOrUpdate(ctx context.Context, policySetDefinitionName string, parameters SetDefinition) (result SetDefinition, err error)

CreateOrUpdate this operation creates or updates a policy set definition in the given subscription with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to create. parameters - the policy set definition properties.

func (SetDefinitionsClient) CreateOrUpdateAtManagementGroup

func (client SetDefinitionsClient) CreateOrUpdateAtManagementGroup(ctx context.Context, policySetDefinitionName string, parameters SetDefinition, managementGroupID string) (result SetDefinition, err error)

CreateOrUpdateAtManagementGroup this operation creates or updates a policy set definition in the given management group with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to create. parameters - the policy set definition properties. managementGroupID - the ID of the management group.

func (SetDefinitionsClient) CreateOrUpdateAtManagementGroupPreparer

func (client SetDefinitionsClient) CreateOrUpdateAtManagementGroupPreparer(ctx context.Context, policySetDefinitionName string, parameters SetDefinition, managementGroupID string) (*http.Request, error)

CreateOrUpdateAtManagementGroupPreparer prepares the CreateOrUpdateAtManagementGroup request.

func (SetDefinitionsClient) CreateOrUpdateAtManagementGroupResponder

func (client SetDefinitionsClient) CreateOrUpdateAtManagementGroupResponder(resp *http.Response) (result SetDefinition, err error)

CreateOrUpdateAtManagementGroupResponder handles the response to the CreateOrUpdateAtManagementGroup request. The method always closes the http.Response Body.

func (SetDefinitionsClient) CreateOrUpdateAtManagementGroupSender

func (client SetDefinitionsClient) CreateOrUpdateAtManagementGroupSender(req *http.Request) (*http.Response, error)

CreateOrUpdateAtManagementGroupSender sends the CreateOrUpdateAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) CreateOrUpdatePreparer

func (client SetDefinitionsClient) CreateOrUpdatePreparer(ctx context.Context, policySetDefinitionName string, parameters SetDefinition) (*http.Request, error)

CreateOrUpdatePreparer prepares the CreateOrUpdate request.

func (SetDefinitionsClient) CreateOrUpdateResponder

func (client SetDefinitionsClient) CreateOrUpdateResponder(resp *http.Response) (result SetDefinition, err error)

CreateOrUpdateResponder handles the response to the CreateOrUpdate request. The method always closes the http.Response Body.

func (SetDefinitionsClient) CreateOrUpdateSender

func (client SetDefinitionsClient) CreateOrUpdateSender(req *http.Request) (*http.Response, error)

CreateOrUpdateSender sends the CreateOrUpdate request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) Delete

func (client SetDefinitionsClient) Delete(ctx context.Context, policySetDefinitionName string) (result autorest.Response, err error)

Delete this operation deletes the policy set definition in the given subscription with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to delete.

func (SetDefinitionsClient) DeleteAtManagementGroup

func (client SetDefinitionsClient) DeleteAtManagementGroup(ctx context.Context, policySetDefinitionName string, managementGroupID string) (result autorest.Response, err error)

DeleteAtManagementGroup this operation deletes the policy set definition in the given management group with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to delete. managementGroupID - the ID of the management group.

func (SetDefinitionsClient) DeleteAtManagementGroupPreparer

func (client SetDefinitionsClient) DeleteAtManagementGroupPreparer(ctx context.Context, policySetDefinitionName string, managementGroupID string) (*http.Request, error)

DeleteAtManagementGroupPreparer prepares the DeleteAtManagementGroup request.

func (SetDefinitionsClient) DeleteAtManagementGroupResponder

func (client SetDefinitionsClient) DeleteAtManagementGroupResponder(resp *http.Response) (result autorest.Response, err error)

DeleteAtManagementGroupResponder handles the response to the DeleteAtManagementGroup request. The method always closes the http.Response Body.

func (SetDefinitionsClient) DeleteAtManagementGroupSender

func (client SetDefinitionsClient) DeleteAtManagementGroupSender(req *http.Request) (*http.Response, error)

DeleteAtManagementGroupSender sends the DeleteAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) DeletePreparer

func (client SetDefinitionsClient) DeletePreparer(ctx context.Context, policySetDefinitionName string) (*http.Request, error)

DeletePreparer prepares the Delete request.

func (SetDefinitionsClient) DeleteResponder

func (client SetDefinitionsClient) DeleteResponder(resp *http.Response) (result autorest.Response, err error)

DeleteResponder handles the response to the Delete request. The method always closes the http.Response Body.

func (SetDefinitionsClient) DeleteSender

func (client SetDefinitionsClient) DeleteSender(req *http.Request) (*http.Response, error)

DeleteSender sends the Delete request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) Get

func (client SetDefinitionsClient) Get(ctx context.Context, policySetDefinitionName string) (result SetDefinition, err error)

Get this operation retrieves the policy set definition in the given subscription with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to get.

func (SetDefinitionsClient) GetAtManagementGroup

func (client SetDefinitionsClient) GetAtManagementGroup(ctx context.Context, policySetDefinitionName string, managementGroupID string) (result SetDefinition, err error)

GetAtManagementGroup this operation retrieves the policy set definition in the given management group with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to get. managementGroupID - the ID of the management group.

func (SetDefinitionsClient) GetAtManagementGroupPreparer

func (client SetDefinitionsClient) GetAtManagementGroupPreparer(ctx context.Context, policySetDefinitionName string, managementGroupID string) (*http.Request, error)

GetAtManagementGroupPreparer prepares the GetAtManagementGroup request.

func (SetDefinitionsClient) GetAtManagementGroupResponder

func (client SetDefinitionsClient) GetAtManagementGroupResponder(resp *http.Response) (result SetDefinition, err error)

GetAtManagementGroupResponder handles the response to the GetAtManagementGroup request. The method always closes the http.Response Body.

func (SetDefinitionsClient) GetAtManagementGroupSender

func (client SetDefinitionsClient) GetAtManagementGroupSender(req *http.Request) (*http.Response, error)

GetAtManagementGroupSender sends the GetAtManagementGroup request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) GetBuiltIn

func (client SetDefinitionsClient) GetBuiltIn(ctx context.Context, policySetDefinitionName string) (result SetDefinition, err error)

GetBuiltIn this operation retrieves the built-in policy set definition with the given name. Parameters: policySetDefinitionName - the name of the policy set definition to get.

func (SetDefinitionsClient) GetBuiltInPreparer

func (client SetDefinitionsClient) GetBuiltInPreparer(ctx context.Context, policySetDefinitionName string) (*http.Request, error)

GetBuiltInPreparer prepares the GetBuiltIn request.

func (SetDefinitionsClient) GetBuiltInResponder

func (client SetDefinitionsClient) GetBuiltInResponder(resp *http.Response) (result SetDefinition, err error)

GetBuiltInResponder handles the response to the GetBuiltIn request. The method always closes the http.Response Body.

func (SetDefinitionsClient) GetBuiltInSender

func (client SetDefinitionsClient) GetBuiltInSender(req *http.Request) (*http.Response, error)

GetBuiltInSender sends the GetBuiltIn request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) GetPreparer

func (client SetDefinitionsClient) GetPreparer(ctx context.Context, policySetDefinitionName string) (*http.Request, error)

GetPreparer prepares the Get request.

func (SetDefinitionsClient) GetResponder

func (client SetDefinitionsClient) GetResponder(resp *http.Response) (result SetDefinition, err error)

GetResponder handles the response to the Get request. The method always closes the http.Response Body.

func (SetDefinitionsClient) GetSender

func (client SetDefinitionsClient) GetSender(req *http.Request) (*http.Response, error)

GetSender sends the Get request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) List

func (client SetDefinitionsClient) List(ctx context.Context, filter string, top *int32) (result SetDefinitionListResultPage, err error)

List this operation retrieves a list of all the policy set definitions in a given subscription that match the optional given $filter. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, the unfiltered list includes all policy set definitions associated with the subscription, including those that apply directly or from management groups that contain the given subscription. If $filter=atExactScope() is provided, the returned list only includes all policy set definitions that at the given subscription. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy set definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn and Custom. If $filter='category -eq {value}' is provided, the returned list only includes all policy set definitions whose category match the {value}. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy set definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy set definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy set definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (SetDefinitionsClient) ListBuiltIn

func (client SetDefinitionsClient) ListBuiltIn(ctx context.Context, filter string, top *int32) (result SetDefinitionListResultPage, err error)

ListBuiltIn this operation retrieves a list of all the built-in policy set definitions that match the optional given $filter. If $filter='category -eq {value}' is provided, the returned list only includes all built-in policy set definitions whose category match the {value}. Parameters: filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy set definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy set definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy set definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (SetDefinitionsClient) ListBuiltInComplete

func (client SetDefinitionsClient) ListBuiltInComplete(ctx context.Context, filter string, top *int32) (result SetDefinitionListResultIterator, err error)

ListBuiltInComplete enumerates all values, automatically crossing page boundaries as required.

func (SetDefinitionsClient) ListBuiltInPreparer

func (client SetDefinitionsClient) ListBuiltInPreparer(ctx context.Context, filter string, top *int32) (*http.Request, error)

ListBuiltInPreparer prepares the ListBuiltIn request.

func (SetDefinitionsClient) ListBuiltInResponder

func (client SetDefinitionsClient) ListBuiltInResponder(resp *http.Response) (result SetDefinitionListResult, err error)

ListBuiltInResponder handles the response to the ListBuiltIn request. The method always closes the http.Response Body.

func (SetDefinitionsClient) ListBuiltInSender

func (client SetDefinitionsClient) ListBuiltInSender(req *http.Request) (*http.Response, error)

ListBuiltInSender sends the ListBuiltIn request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) ListByManagementGroup

func (client SetDefinitionsClient) ListByManagementGroup(ctx context.Context, managementGroupID string, filter string, top *int32) (result SetDefinitionListResultPage, err error)

ListByManagementGroup this operation retrieves a list of all the policy set definitions in a given management group that match the optional given $filter. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, the unfiltered list includes all policy set definitions associated with the management group, including those that apply directly or from management groups that contain the given management group. If $filter=atExactScope() is provided, the returned list only includes all policy set definitions that at the given management group. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy set definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn and Custom. If $filter='category -eq {value}' is provided, the returned list only includes all policy set definitions whose category match the {value}. Parameters: managementGroupID - the ID of the management group. filter - the filter to apply on the operation. Valid values for $filter are: 'atExactScope()', 'policyType -eq {value}' or 'category eq '{value}”. If $filter is not provided, no filtering is performed. If $filter=atExactScope() is provided, the returned list only includes all policy set definitions that at the given scope. If $filter='policyType -eq {value}' is provided, the returned list only includes all policy set definitions whose type match the {value}. Possible policyType values are NotSpecified, BuiltIn, Custom, and Static. If $filter='category -eq {value}' is provided, the returned list only includes all policy set definitions whose category match the {value}. top - maximum number of records to return. When the $top filter is not provided, it will return 500 records.

func (SetDefinitionsClient) ListByManagementGroupComplete

func (client SetDefinitionsClient) ListByManagementGroupComplete(ctx context.Context, managementGroupID string, filter string, top *int32) (result SetDefinitionListResultIterator, err error)

ListByManagementGroupComplete enumerates all values, automatically crossing page boundaries as required.

func (SetDefinitionsClient) ListByManagementGroupPreparer

func (client SetDefinitionsClient) ListByManagementGroupPreparer(ctx context.Context, managementGroupID string, filter string, top *int32) (*http.Request, error)

ListByManagementGroupPreparer prepares the ListByManagementGroup request.

func (SetDefinitionsClient) ListByManagementGroupResponder

func (client SetDefinitionsClient) ListByManagementGroupResponder(resp *http.Response) (result SetDefinitionListResult, err error)

ListByManagementGroupResponder handles the response to the ListByManagementGroup request. The method always closes the http.Response Body.

func (SetDefinitionsClient) ListByManagementGroupSender

func (client SetDefinitionsClient) ListByManagementGroupSender(req *http.Request) (*http.Response, error)

ListByManagementGroupSender sends the ListByManagementGroup request. The method will close the http.Response Body if it receives an error.

func (SetDefinitionsClient) ListComplete

func (client SetDefinitionsClient) ListComplete(ctx context.Context, filter string, top *int32) (result SetDefinitionListResultIterator, err error)

ListComplete enumerates all values, automatically crossing page boundaries as required.

func (SetDefinitionsClient) ListPreparer

func (client SetDefinitionsClient) ListPreparer(ctx context.Context, filter string, top *int32) (*http.Request, error)

ListPreparer prepares the List request.

func (SetDefinitionsClient) ListResponder

func (client SetDefinitionsClient) ListResponder(resp *http.Response) (result SetDefinitionListResult, err error)

ListResponder handles the response to the List request. The method always closes the http.Response Body.

func (SetDefinitionsClient) ListSender

func (client SetDefinitionsClient) ListSender(req *http.Request) (*http.Response, error)

ListSender sends the List request. The method will close the http.Response Body if it receives an error.

type Type

type Type string

Type enumerates the values for type.

const (
	// TypeBuiltIn ...
	TypeBuiltIn Type = "BuiltIn"
	// TypeCustom ...
	TypeCustom Type = "Custom"
	// TypeNotSpecified ...
	TypeNotSpecified Type = "NotSpecified"
	// TypeStatic ...
	TypeStatic Type = "Static"
)

func PossibleTypeValues

func PossibleTypeValues() []Type

PossibleTypeValues returns an array of possible values for the Type const type.

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL