com.pulumi.azure.mssql.kotlin.ServerVulnerabilityAssessment.kt Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of pulumi-azure-kotlin Show documentation
Show all versions of pulumi-azure-kotlin Show documentation
Build cloud applications and infrastructure by combining the safety and reliability of infrastructure as code with the power of the Kotlin programming language.
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.azure.mssql.kotlin
import com.pulumi.azure.mssql.kotlin.outputs.ServerVulnerabilityAssessmentRecurringScans
import com.pulumi.azure.mssql.kotlin.outputs.ServerVulnerabilityAssessmentRecurringScans.Companion.toKotlin
import com.pulumi.core.Output
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
/**
* Builder for [ServerVulnerabilityAssessment].
*/
@PulumiTagMarker
public class ServerVulnerabilityAssessmentResourceBuilder internal constructor() {
public var name: String? = null
public var args: ServerVulnerabilityAssessmentArgs = ServerVulnerabilityAssessmentArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend ServerVulnerabilityAssessmentArgsBuilder.() -> Unit) {
val builder = ServerVulnerabilityAssessmentArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): ServerVulnerabilityAssessment {
val builtJavaResource =
com.pulumi.azure.mssql.ServerVulnerabilityAssessment(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return ServerVulnerabilityAssessment(builtJavaResource)
}
}
/**
* Manages the Vulnerability Assessment for a MS SQL Server.
* > **NOTE** Vulnerability Assessment is currently only available for MS SQL databases.
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as azure from "@pulumi/azure";
* const example = new azure.core.ResourceGroup("example", {
* name: "example-resources",
* location: "West Europe",
* });
* const exampleServer = new azure.mssql.Server("example", {
* name: "mysqlserver",
* resourceGroupName: example.name,
* location: example.location,
* version: "12.0",
* administratorLogin: "4dm1n157r470r",
* administratorLoginPassword: "4-v3ry-53cr37-p455w0rd",
* });
* const exampleAccount = new azure.storage.Account("example", {
* name: "accteststorageaccount",
* resourceGroupName: example.name,
* location: example.location,
* accountTier: "Standard",
* accountReplicationType: "GRS",
* });
* const exampleContainer = new azure.storage.Container("example", {
* name: "accteststoragecontainer",
* storageAccountName: exampleAccount.name,
* containerAccessType: "private",
* });
* const exampleServerSecurityAlertPolicy = new azure.mssql.ServerSecurityAlertPolicy("example", {
* resourceGroupName: example.name,
* serverName: exampleServer.name,
* state: "Enabled",
* });
* const exampleServerVulnerabilityAssessment = new azure.mssql.ServerVulnerabilityAssessment("example", {
* serverSecurityAlertPolicyId: exampleServerSecurityAlertPolicy.id,
* storageContainerPath: pulumi.interpolate`${exampleAccount.primaryBlobEndpoint}${exampleContainer.name}/`,
* storageAccountAccessKey: exampleAccount.primaryAccessKey,
* recurringScans: {
* enabled: true,
* emailSubscriptionAdmins: true,
* emails: [
* "[email protected]",
* "[email protected]",
* ],
* },
* });
* ```
* ```python
* import pulumi
* import pulumi_azure as azure
* example = azure.core.ResourceGroup("example",
* name="example-resources",
* location="West Europe")
* example_server = azure.mssql.Server("example",
* name="mysqlserver",
* resource_group_name=example.name,
* location=example.location,
* version="12.0",
* administrator_login="4dm1n157r470r",
* administrator_login_password="4-v3ry-53cr37-p455w0rd")
* example_account = azure.storage.Account("example",
* name="accteststorageaccount",
* resource_group_name=example.name,
* location=example.location,
* account_tier="Standard",
* account_replication_type="GRS")
* example_container = azure.storage.Container("example",
* name="accteststoragecontainer",
* storage_account_name=example_account.name,
* container_access_type="private")
* example_server_security_alert_policy = azure.mssql.ServerSecurityAlertPolicy("example",
* resource_group_name=example.name,
* server_name=example_server.name,
* state="Enabled")
* example_server_vulnerability_assessment = azure.mssql.ServerVulnerabilityAssessment("example",
* server_security_alert_policy_id=example_server_security_alert_policy.id,
* storage_container_path=pulumi.Output.all(example_account.primary_blob_endpoint, example_container.name).apply(lambda primary_blob_endpoint, name: f"{primary_blob_endpoint}{name}/"),
* storage_account_access_key=example_account.primary_access_key,
* recurring_scans=azure.mssql.ServerVulnerabilityAssessmentRecurringScansArgs(
* enabled=True,
* email_subscription_admins=True,
* emails=[
* "[email protected]",
* "[email protected]",
* ],
* ))
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Azure = Pulumi.Azure;
* return await Deployment.RunAsync(() =>
* {
* var example = new Azure.Core.ResourceGroup("example", new()
* {
* Name = "example-resources",
* Location = "West Europe",
* });
* var exampleServer = new Azure.MSSql.Server("example", new()
* {
* Name = "mysqlserver",
* ResourceGroupName = example.Name,
* Location = example.Location,
* Version = "12.0",
* AdministratorLogin = "4dm1n157r470r",
* AdministratorLoginPassword = "4-v3ry-53cr37-p455w0rd",
* });
* var exampleAccount = new Azure.Storage.Account("example", new()
* {
* Name = "accteststorageaccount",
* ResourceGroupName = example.Name,
* Location = example.Location,
* AccountTier = "Standard",
* AccountReplicationType = "GRS",
* });
* var exampleContainer = new Azure.Storage.Container("example", new()
* {
* Name = "accteststoragecontainer",
* StorageAccountName = exampleAccount.Name,
* ContainerAccessType = "private",
* });
* var exampleServerSecurityAlertPolicy = new Azure.MSSql.ServerSecurityAlertPolicy("example", new()
* {
* ResourceGroupName = example.Name,
* ServerName = exampleServer.Name,
* State = "Enabled",
* });
* var exampleServerVulnerabilityAssessment = new Azure.MSSql.ServerVulnerabilityAssessment("example", new()
* {
* ServerSecurityAlertPolicyId = exampleServerSecurityAlertPolicy.Id,
* StorageContainerPath = Output.Tuple(exampleAccount.PrimaryBlobEndpoint, exampleContainer.Name).Apply(values =>
* {
* var primaryBlobEndpoint = values.Item1;
* var name = values.Item2;
* return $"{primaryBlobEndpoint}{name}/";
* }),
* StorageAccountAccessKey = exampleAccount.PrimaryAccessKey,
* RecurringScans = new Azure.MSSql.Inputs.ServerVulnerabilityAssessmentRecurringScansArgs
* {
* Enabled = true,
* EmailSubscriptionAdmins = true,
* Emails = new[]
* {
* "[email protected]",
* "[email protected]",
* },
* },
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/mssql"
* "github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
* Name: pulumi.String("example-resources"),
* Location: pulumi.String("West Europe"),
* })
* if err != nil {
* return err
* }
* exampleServer, err := mssql.NewServer(ctx, "example", &mssql.ServerArgs{
* Name: pulumi.String("mysqlserver"),
* ResourceGroupName: example.Name,
* Location: example.Location,
* Version: pulumi.String("12.0"),
* AdministratorLogin: pulumi.String("4dm1n157r470r"),
* AdministratorLoginPassword: pulumi.String("4-v3ry-53cr37-p455w0rd"),
* })
* if err != nil {
* return err
* }
* exampleAccount, err := storage.NewAccount(ctx, "example", &storage.AccountArgs{
* Name: pulumi.String("accteststorageaccount"),
* ResourceGroupName: example.Name,
* Location: example.Location,
* AccountTier: pulumi.String("Standard"),
* AccountReplicationType: pulumi.String("GRS"),
* })
* if err != nil {
* return err
* }
* exampleContainer, err := storage.NewContainer(ctx, "example", &storage.ContainerArgs{
* Name: pulumi.String("accteststoragecontainer"),
* StorageAccountName: exampleAccount.Name,
* ContainerAccessType: pulumi.String("private"),
* })
* if err != nil {
* return err
* }
* exampleServerSecurityAlertPolicy, err := mssql.NewServerSecurityAlertPolicy(ctx, "example", &mssql.ServerSecurityAlertPolicyArgs{
* ResourceGroupName: example.Name,
* ServerName: exampleServer.Name,
* State: pulumi.String("Enabled"),
* })
* if err != nil {
* return err
* }
* _, err = mssql.NewServerVulnerabilityAssessment(ctx, "example", &mssql.ServerVulnerabilityAssessmentArgs{
* ServerSecurityAlertPolicyId: exampleServerSecurityAlertPolicy.ID(),
* StorageContainerPath: pulumi.All(exampleAccount.PrimaryBlobEndpoint, exampleContainer.Name).ApplyT(func(_args []interface{}) (string, error) {
* primaryBlobEndpoint := _args[0].(string)
* name := _args[1].(string)
* return fmt.Sprintf("%v%v/", primaryBlobEndpoint, name), nil
* }).(pulumi.StringOutput),
* StorageAccountAccessKey: exampleAccount.PrimaryAccessKey,
* RecurringScans: &mssql.ServerVulnerabilityAssessmentRecurringScansArgs{
* Enabled: pulumi.Bool(true),
* EmailSubscriptionAdmins: pulumi.Bool(true),
* Emails: pulumi.StringArray{
* pulumi.String("[email protected]"),
* pulumi.String("[email protected]"),
* },
* },
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.azure.core.ResourceGroup;
* import com.pulumi.azure.core.ResourceGroupArgs;
* import com.pulumi.azure.mssql.Server;
* import com.pulumi.azure.mssql.ServerArgs;
* import com.pulumi.azure.storage.Account;
* import com.pulumi.azure.storage.AccountArgs;
* import com.pulumi.azure.storage.Container;
* import com.pulumi.azure.storage.ContainerArgs;
* import com.pulumi.azure.mssql.ServerSecurityAlertPolicy;
* import com.pulumi.azure.mssql.ServerSecurityAlertPolicyArgs;
* import com.pulumi.azure.mssql.ServerVulnerabilityAssessment;
* import com.pulumi.azure.mssql.ServerVulnerabilityAssessmentArgs;
* import com.pulumi.azure.mssql.inputs.ServerVulnerabilityAssessmentRecurringScansArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var example = new ResourceGroup("example", ResourceGroupArgs.builder()
* .name("example-resources")
* .location("West Europe")
* .build());
* var exampleServer = new Server("exampleServer", ServerArgs.builder()
* .name("mysqlserver")
* .resourceGroupName(example.name())
* .location(example.location())
* .version("12.0")
* .administratorLogin("4dm1n157r470r")
* .administratorLoginPassword("4-v3ry-53cr37-p455w0rd")
* .build());
* var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
* .name("accteststorageaccount")
* .resourceGroupName(example.name())
* .location(example.location())
* .accountTier("Standard")
* .accountReplicationType("GRS")
* .build());
* var exampleContainer = new Container("exampleContainer", ContainerArgs.builder()
* .name("accteststoragecontainer")
* .storageAccountName(exampleAccount.name())
* .containerAccessType("private")
* .build());
* var exampleServerSecurityAlertPolicy = new ServerSecurityAlertPolicy("exampleServerSecurityAlertPolicy", ServerSecurityAlertPolicyArgs.builder()
* .resourceGroupName(example.name())
* .serverName(exampleServer.name())
* .state("Enabled")
* .build());
* var exampleServerVulnerabilityAssessment = new ServerVulnerabilityAssessment("exampleServerVulnerabilityAssessment", ServerVulnerabilityAssessmentArgs.builder()
* .serverSecurityAlertPolicyId(exampleServerSecurityAlertPolicy.id())
* .storageContainerPath(Output.tuple(exampleAccount.primaryBlobEndpoint(), exampleContainer.name()).applyValue(values -> {
* var primaryBlobEndpoint = values.t1;
* var name = values.t2;
* return String.format("%s%s/", primaryBlobEndpoint,name);
* }))
* .storageAccountAccessKey(exampleAccount.primaryAccessKey())
* .recurringScans(ServerVulnerabilityAssessmentRecurringScansArgs.builder()
* .enabled(true)
* .emailSubscriptionAdmins(true)
* .emails(
* "[email protected]",
* "[email protected]")
* .build())
* .build());
* }
* }
* ```
* ```yaml
* resources:
* example:
* type: azure:core:ResourceGroup
* properties:
* name: example-resources
* location: West Europe
* exampleServer:
* type: azure:mssql:Server
* name: example
* properties:
* name: mysqlserver
* resourceGroupName: ${example.name}
* location: ${example.location}
* version: '12.0'
* administratorLogin: 4dm1n157r470r
* administratorLoginPassword: 4-v3ry-53cr37-p455w0rd
* exampleAccount:
* type: azure:storage:Account
* name: example
* properties:
* name: accteststorageaccount
* resourceGroupName: ${example.name}
* location: ${example.location}
* accountTier: Standard
* accountReplicationType: GRS
* exampleContainer:
* type: azure:storage:Container
* name: example
* properties:
* name: accteststoragecontainer
* storageAccountName: ${exampleAccount.name}
* containerAccessType: private
* exampleServerSecurityAlertPolicy:
* type: azure:mssql:ServerSecurityAlertPolicy
* name: example
* properties:
* resourceGroupName: ${example.name}
* serverName: ${exampleServer.name}
* state: Enabled
* exampleServerVulnerabilityAssessment:
* type: azure:mssql:ServerVulnerabilityAssessment
* name: example
* properties:
* serverSecurityAlertPolicyId: ${exampleServerSecurityAlertPolicy.id}
* storageContainerPath: ${exampleAccount.primaryBlobEndpoint}${exampleContainer.name}/
* storageAccountAccessKey: ${exampleAccount.primaryAccessKey}
* recurringScans:
* enabled: true
* emailSubscriptionAdmins: true
* emails:
* - [email protected]
* - [email protected]
* ```
*
* ## Import
* MS SQL Server Vulnerability Assessment can be imported using the `resource id`, e.g.
* ```sh
* $ pulumi import azure:mssql/serverVulnerabilityAssessment:ServerVulnerabilityAssessment example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/acceptanceTestResourceGroup1/providers/Microsoft.Sql/servers/mssqlserver/vulnerabilityAssessments/Default
* ```
*/
public class ServerVulnerabilityAssessment internal constructor(
override val javaResource: com.pulumi.azure.mssql.ServerVulnerabilityAssessment,
) : KotlinCustomResource(javaResource, ServerVulnerabilityAssessmentMapper) {
/**
* The recurring scans settings. The `recurring_scans` block supports fields documented below.
*/
public val recurringScans: Output
get() = javaResource.recurringScans().applyValue({ args0 ->
args0.let({ args0 ->
toKotlin(args0)
})
})
/**
* The id of the security alert policy of the MS SQL Server. Changing this forces a new resource to be created.
*/
public val serverSecurityAlertPolicyId: Output
get() = javaResource.serverSecurityAlertPolicyId().applyValue({ args0 -> args0 })
/**
* Specifies the identifier key of the storage account for vulnerability assessment scan results. If `storage_container_sas_key` isn't specified, `storage_account_access_key` is required.
* > **NOTE** The `storage_account_access_key` only applies if the storage account is not behind a virtual network or a firewall.
*/
public val storageAccountAccessKey: Output?
get() = javaResource.storageAccountAccessKey().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* A blob storage container path to hold the scan results (e.g.
get() = javaResource.storageContainerPath().applyValue({ args0 -> args0 })
/**
* A shared access signature (SAS Key) that has write access to the blob container specified in `storage_container_path` parameter. If `storage_account_access_key` isn't specified, `storage_container_sas_key` is required.
* > **NOTE** The `storage_container_sas_key` only applies if the storage account is not behind a virtual network or a firewall.
*/
public val storageContainerSasKey: Output?
get() = javaResource.storageContainerSasKey().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
}
public object ServerVulnerabilityAssessmentMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.azure.mssql.ServerVulnerabilityAssessment::class == javaResource::class
override fun map(javaResource: Resource): ServerVulnerabilityAssessment =
ServerVulnerabilityAssessment(
javaResource as
com.pulumi.azure.mssql.ServerVulnerabilityAssessment,
)
}
/**
* @see [ServerVulnerabilityAssessment].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [ServerVulnerabilityAssessment].
*/
public suspend fun serverVulnerabilityAssessment(
name: String,
block: suspend ServerVulnerabilityAssessmentResourceBuilder.() -> Unit,
):
ServerVulnerabilityAssessment {
val builder = ServerVulnerabilityAssessmentResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [ServerVulnerabilityAssessment].
* @param name The _unique_ name of the resulting resource.
*/
public fun serverVulnerabilityAssessment(name: String): ServerVulnerabilityAssessment {
val builder = ServerVulnerabilityAssessmentResourceBuilder()
builder.name(name)
return builder.build()
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy