public override void ExecuteCmdlet()
{
ExecutionBlock(() =>
{
try
{
ResourceIdentifier resourceIdentifier = new ResourceIdentifier(VaultId);
string vaultName = resourceIdentifier.ResourceName;
string resourceGroupName = resourceIdentifier.ResourceGroupName;
BackupResourceVaultConfigResource currentConfig = ServiceClientAdapter.GetVaultProperty(vaultName, resourceGroupName);
BackupResourceVaultConfigResource param = new BackupResourceVaultConfigResource();
param.Properties = new BackupResourceVaultConfig();
param.Properties.SoftDeleteFeatureState = SoftDeleteFeatureState + "d";
param.Properties.EnhancedSecurityState = currentConfig.Properties.EnhancedSecurityState;
BackupResourceVaultConfigResource result = ServiceClientAdapter.SetVaultProperty(vaultName, resourceGroupName, param);
WriteObject(result.Properties);
}
catch (Exception exception)
{
WriteExceptionError(exception);
}
}, ShouldProcess(VaultId, VerbsCommon.Set));
}
public bool checkMUAForSoftDelete(BackupResourceVaultConfigResource oldConfig, BackupResourceVaultConfigResource newConfig)
{
if ((oldConfig.Properties.SoftDeleteFeatureState == "Enabled" && newConfig.Properties.SoftDeleteFeatureState == "Disabled") ||
(oldConfig.Properties.EnhancedSecurityState == "Enabled" && newConfig.Properties.EnhancedSecurityState == "Disabled"))
{
return(true);
}
return(false);
}
public BackupResourceVaultConfigResource SetVaultProperty(string vaultName, string resourceGroupName,
BackupResourceVaultConfigResource param, string auxiliaryAccessToken = null, bool isMUAProtected = false)
{
Dictionary <string, List <string> > customHeaders = new Dictionary <string, List <string> >();
string operationRequest = null;
if (isMUAProtected)
{
List <ResourceGuardProxyBaseResource> resourceGuardMapping = ListResourceGuardMapping(vaultName, resourceGroupName);
if (resourceGuardMapping != null && resourceGuardMapping.Count != 0)
{
foreach (ResourceGuardOperationDetail operationDetail in resourceGuardMapping[0].Properties.ResourceGuardOperationDetails)
{
if (operationDetail.VaultCriticalOperation == "Microsoft.RecoveryServices/vaults/backupconfig/write")
{
operationRequest = operationDetail.DefaultResourceRequest;
}
}
if (operationRequest != null)
{
param.Properties.ResourceGuardOperationRequests = new List <string>();
param.Properties.ResourceGuardOperationRequests.Add(operationRequest);
}
}
}
if (auxiliaryAccessToken != null && auxiliaryAccessToken != "")
{
if (operationRequest != null)
{
customHeaders.Add("x-ms-authorization-auxiliary", new List <string> {
"Bearer " + auxiliaryAccessToken
});
}
else if (!isMUAProtected)
{
throw new ArgumentException(String.Format(Resources.BackupConfigUpdateNotCritical));
}
else
{
string operationName = "Disabling SoftDelete or SecurityFeatures";
throw new ArgumentException(String.Format(Resources.UnexpectedParameterToken, operationName));
}
}
return(BmsAdapter.Client.BackupResourceVaultConfigs.UpdateWithHttpMessagesAsync(
vaultName ?? BmsAdapter.GetResourceName(), resourceGroupName ?? BmsAdapter.GetResourceGroupName(), param, customHeaders).Result.Body);
}
public override void ExecuteCmdlet()
{
try
{
ResourceIdentifier resourceIdentifier = new ResourceIdentifier(VaultId);
string vaultName = resourceIdentifier.ResourceName;
string resourceGroupName = resourceIdentifier.ResourceGroupName;
BackupResourceVaultConfigResource result = ServiceClientAdapter.GetVaultProperty(vaultName, resourceGroupName);
WriteObject(result.Properties);
}
catch (Exception exception)
{
WriteExceptionError(exception);
}
}
public override void ExecuteCmdlet()
{
ExecutionBlock(() =>
{
try
{
ResourceIdentifier resourceIdentifier = new ResourceIdentifier(VaultId);
string vaultName = resourceIdentifier.ResourceName;
string resourceGroupName = resourceIdentifier.ResourceGroupName;
if (SoftDeleteFeatureState != null)
{
BackupResourceVaultConfigResource currentConfig = ServiceClientAdapter.GetVaultProperty(vaultName, resourceGroupName);
BackupResourceVaultConfigResource param = new BackupResourceVaultConfigResource();
param.Properties = new BackupResourceVaultConfig();
param.Properties.SoftDeleteFeatureState = SoftDeleteFeatureState + "d";
param.Properties.EnhancedSecurityState = currentConfig.Properties.EnhancedSecurityState;
BackupResourceVaultConfigResource result = ServiceClientAdapter.SetVaultProperty(vaultName, resourceGroupName, param);
WriteObject(result.Properties);
}
else if (EncryptionKeyId != null)
{
BackupResourceEncryptionConfigResource vaultEncryptionSettings = new BackupResourceEncryptionConfigResource();
vaultEncryptionSettings.Properties = new BackupResourceEncryptionConfig();
vaultEncryptionSettings.Properties.EncryptionAtRestType = "CustomerManaged";
vaultEncryptionSettings.Properties.KeyUri = EncryptionKeyId;
if (InfrastructureEncryption.IsPresent)
{
vaultEncryptionSettings.Properties.InfrastructureEncryptionState = "Enabled";
}
vaultEncryptionSettings.Properties.SubscriptionId = KeyVaultSubscriptionId;
vaultEncryptionSettings.Properties.LastUpdateStatus = null;
var response = ServiceClientAdapter.UpdateVaultEncryptionConfig(resourceGroupName, vaultName, vaultEncryptionSettings);
}
}
catch (Exception exception)
{
WriteExceptionError(exception);
}
}, ShouldProcess(VaultId, VerbsCommon.Set));
}
public override void ExecuteCmdlet()
{
try
{
ResourceIdentifier resourceIdentifier = new ResourceIdentifier(VaultId);
string vaultName = resourceIdentifier.ResourceName;
string resourceGroupName = resourceIdentifier.ResourceGroupName;
BackupResourceEncryptionConfigExtendedResource vaultEncryptionSetting = ServiceClientAdapter.GetVaultEncryptionConfig(resourceGroupName, vaultName);
BackupResourceVaultConfigResource vaultConfigResource = ServiceClientAdapter.GetVaultProperty(vaultName, resourceGroupName);
VaultProperty vaultProperty = new VaultProperty(vaultConfigResource.Properties, vaultEncryptionSetting);
WriteObject(vaultProperty);
}
catch (Exception exception)
{
WriteExceptionError(exception);
}
}
/// <summary>
/// Updates vault security config.
/// </summary>
/// <param name='vaultName'>
/// The name of the recovery services vault.
/// </param>
/// <param name='resourceGroupName'>
/// The name of the resource group where the recovery services vault is
/// present.
/// </param>
/// <param name='parameters'>
/// resource config request
/// </param>
/// <param name='customHeaders'>
/// Headers that will be added to request.
/// </param>
/// <param name='cancellationToken'>
/// The cancellation token.
/// </param>
/// <exception cref="NewErrorResponseException">
/// Thrown when the operation returned an invalid status code
/// </exception>
/// <exception cref="SerializationException">
/// Thrown when unable to deserialize the response
/// </exception>
/// <exception cref="ValidationException">
/// Thrown when a required parameter is null
/// </exception>
/// <exception cref="System.ArgumentNullException">
/// Thrown when a required parameter is null
/// </exception>
/// <return>
/// A response object containing the response body and response headers.
/// </return>
public async Task <AzureOperationResponse <BackupResourceVaultConfigResource> > PutWithHttpMessagesAsync(string vaultName, string resourceGroupName, BackupResourceVaultConfigResource parameters, Dictionary <string, List <string> > customHeaders = null, CancellationToken cancellationToken = default(CancellationToken))
{
if (vaultName == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "vaultName");
}
if (resourceGroupName == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "resourceGroupName");
}
if (Client.SubscriptionId == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "this.Client.SubscriptionId");
}
if (parameters == null)
{
throw new ValidationException(ValidationRules.CannotBeNull, "parameters");
}
string apiVersion = "2021-03-01";
// Tracing
bool _shouldTrace = ServiceClientTracing.IsEnabled;
string _invocationId = null;
if (_shouldTrace)
{
_invocationId = ServiceClientTracing.NextInvocationId.ToString();
Dictionary <string, object> tracingParameters = new Dictionary <string, object>();
tracingParameters.Add("apiVersion", apiVersion);
tracingParameters.Add("vaultName", vaultName);
tracingParameters.Add("resourceGroupName", resourceGroupName);
tracingParameters.Add("parameters", parameters);
tracingParameters.Add("cancellationToken", cancellationToken);
ServiceClientTracing.Enter(_invocationId, this, "Put", tracingParameters);
}
// Construct URL
var _baseUrl = Client.BaseUri.AbsoluteUri;
var _url = new System.Uri(new System.Uri(_baseUrl + (_baseUrl.EndsWith("/") ? "" : "/")), "subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.RecoveryServices/vaults/{vaultName}/backupconfig/vaultconfig").ToString();
_url = _url.Replace("{vaultName}", System.Uri.EscapeDataString(vaultName));
_url = _url.Replace("{resourceGroupName}", System.Uri.EscapeDataString(resourceGroupName));
_url = _url.Replace("{subscriptionId}", System.Uri.EscapeDataString(Client.SubscriptionId));
List <string> _queryParameters = new List <string>();
if (apiVersion != null)
{
_queryParameters.Add(string.Format("api-version={0}", System.Uri.EscapeDataString(apiVersion)));
}
if (_queryParameters.Count > 0)
{
_url += (_url.Contains("?") ? "&" : "?") + string.Join("&", _queryParameters);
}
// Create HTTP transport objects
var _httpRequest = new HttpRequestMessage();
HttpResponseMessage _httpResponse = null;
_httpRequest.Method = new HttpMethod("PUT");
_httpRequest.RequestUri = new System.Uri(_url);
// Set Headers
if (Client.GenerateClientRequestId != null && Client.GenerateClientRequestId.Value)
{
_httpRequest.Headers.TryAddWithoutValidation("x-ms-client-request-id", System.Guid.NewGuid().ToString());
}
if (Client.AcceptLanguage != null)
{
if (_httpRequest.Headers.Contains("accept-language"))
{
_httpRequest.Headers.Remove("accept-language");
}
_httpRequest.Headers.TryAddWithoutValidation("accept-language", Client.AcceptLanguage);
}
if (customHeaders != null)
{
foreach (var _header in customHeaders)
{
if (_httpRequest.Headers.Contains(_header.Key))
{
_httpRequest.Headers.Remove(_header.Key);
}
_httpRequest.Headers.TryAddWithoutValidation(_header.Key, _header.Value);
}
}
// Serialize Request
string _requestContent = null;
if (parameters != null)
{
_requestContent = Rest.Serialization.SafeJsonConvert.SerializeObject(parameters, Client.SerializationSettings);
_httpRequest.Content = new StringContent(_requestContent, System.Text.Encoding.UTF8);
_httpRequest.Content.Headers.ContentType = System.Net.Http.Headers.MediaTypeHeaderValue.Parse("application/json; charset=utf-8");
}
// Set Credentials
if (Client.Credentials != null)
{
cancellationToken.ThrowIfCancellationRequested();
await Client.Credentials.ProcessHttpRequestAsync(_httpRequest, cancellationToken).ConfigureAwait(false);
}
// Send Request
if (_shouldTrace)
{
ServiceClientTracing.SendRequest(_invocationId, _httpRequest);
}
cancellationToken.ThrowIfCancellationRequested();
_httpResponse = await Client.HttpClient.SendAsync(_httpRequest, cancellationToken).ConfigureAwait(false);
if (_shouldTrace)
{
ServiceClientTracing.ReceiveResponse(_invocationId, _httpResponse);
}
System.Net.HttpStatusCode _statusCode = _httpResponse.StatusCode;
cancellationToken.ThrowIfCancellationRequested();
string _responseContent = null;
if ((int)_statusCode != 200)
{
var ex = new NewErrorResponseException(string.Format("Operation returned an invalid status code '{0}'", _statusCode));
try
{
_responseContent = await _httpResponse.Content.ReadAsStringAsync().ConfigureAwait(false);
NewErrorResponse _errorBody = Rest.Serialization.SafeJsonConvert.DeserializeObject <NewErrorResponse>(_responseContent, Client.DeserializationSettings);
if (_errorBody != null)
{
ex.Body = _errorBody;
}
}
catch (JsonException)
{
// Ignore the exception
}
ex.Request = new HttpRequestMessageWrapper(_httpRequest, _requestContent);
ex.Response = new HttpResponseMessageWrapper(_httpResponse, _responseContent);
if (_shouldTrace)
{
ServiceClientTracing.Error(_invocationId, ex);
}
_httpRequest.Dispose();
if (_httpResponse != null)
{
_httpResponse.Dispose();
}
throw ex;
}
// Create Result
var _result = new AzureOperationResponse <BackupResourceVaultConfigResource>();
_result.Request = _httpRequest;
_result.Response = _httpResponse;
if (_httpResponse.Headers.Contains("x-ms-request-id"))
{
_result.RequestId = _httpResponse.Headers.GetValues("x-ms-request-id").FirstOrDefault();
}
// Deserialize Response
if ((int)_statusCode == 200)
{
_responseContent = await _httpResponse.Content.ReadAsStringAsync().ConfigureAwait(false);
try
{
_result.Body = Rest.Serialization.SafeJsonConvert.DeserializeObject <BackupResourceVaultConfigResource>(_responseContent, Client.DeserializationSettings);
}
catch (JsonException ex)
{
_httpRequest.Dispose();
if (_httpResponse != null)
{
_httpResponse.Dispose();
}
throw new SerializationException("Unable to deserialize the response.", _responseContent, ex);
}
}
if (_shouldTrace)
{
ServiceClientTracing.Exit(_invocationId, _result);
}
return(_result);
}
public BackupResourceVaultConfigResource SetVaultProperty(string vaultName, string resourceGroupName,
BackupResourceVaultConfigResource param)
{
return(BmsAdapter.Client.BackupResourceVaultConfigs.UpdateWithHttpMessagesAsync(
vaultName, resourceGroupName, param).Result.Body);
}
public override void ExecuteCmdlet()
{
ExecutionBlock(() =>
{
try
{
ResourceIdentifier resourceIdentifier = new ResourceIdentifier(VaultId);
string vaultName = resourceIdentifier.ResourceName;
string resourceGroupName = resourceIdentifier.ResourceGroupName;
if (SoftDeleteFeatureState != null || DisableHybridBackupSecurityFeature != null)
{
BackupResourceVaultConfigResource currentConfig = ServiceClientAdapter.GetVaultProperty(vaultName, resourceGroupName);
BackupResourceVaultConfigResource param = new BackupResourceVaultConfigResource();
param.Properties = new BackupResourceVaultConfig();
param.Properties.SoftDeleteFeatureState = (SoftDeleteFeatureState != null) ? SoftDeleteFeatureState + "d" : currentConfig.Properties.SoftDeleteFeatureState;
param.Properties.EnhancedSecurityState = (DisableHybridBackupSecurityFeature != null) ? (((bool)DisableHybridBackupSecurityFeature) ? "Disabled" : "Enabled") : currentConfig.Properties.EnhancedSecurityState;
bool isMUAProtected = checkMUAForSoftDelete(currentConfig, param);
BackupResourceVaultConfigResource result = ServiceClientAdapter.SetVaultProperty(vaultName, resourceGroupName, param, Token, isMUAProtected);
WriteObject(result.Properties);
}
else if (EncryptionKeyId != null)
{
BackupResourceEncryptionConfigResource vaultEncryptionSettings = new BackupResourceEncryptionConfigResource();
vaultEncryptionSettings.Properties = new BackupResourceEncryptionConfig();
PatchVault patchVault = new PatchVault();
patchVault.Properties = new VaultProperties();
VaultPropertiesEncryption vaultEncryption = new VaultPropertiesEncryption();
vaultEncryption.KeyVaultProperties = new CmkKeyVaultProperties();
vaultEncryption.KekIdentity = new CmkKekIdentity();
vaultEncryption.KeyVaultProperties.KeyUri = EncryptionKeyId;
if (InfrastructureEncryption.IsPresent)
{
vaultEncryption.InfrastructureEncryption = "Enabled";
}
vaultEncryption.KekIdentity.UseSystemAssignedIdentity = UseSystemAssignedIdentity;
if (!UseSystemAssignedIdentity && (UserAssignedIdentity == null || UserAssignedIdentity == ""))
{
throw new ArgumentException(Resources.IdentityIdRequiredForCMK);
}
else if (!UseSystemAssignedIdentity)
{
vaultEncryption.KekIdentity.UserAssignedIdentity = UserAssignedIdentity;
}
patchVault.Properties.Encryption = vaultEncryption;
ServiceClientAdapter.UpdateRSVault(resourceGroupName, vaultName, patchVault);
}
}
catch (Exception exception)
{
WriteExceptionError(exception);
}
}, ShouldProcess(VaultId, VerbsCommon.Set));
}
/// <summary>
/// Updates vault security config.
/// </summary>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='vaultName'>
/// The name of the recovery services vault.
/// </param>
/// <param name='resourceGroupName'>
/// The name of the resource group where the recovery services vault is
/// present.
/// </param>
/// <param name='parameters'>
/// resource config request
/// </param>
public static BackupResourceVaultConfigResource Update(this IBackupResourceVaultConfigsOperations operations, string vaultName, string resourceGroupName, BackupResourceVaultConfigResource parameters)
{
return(operations.UpdateAsync(vaultName, resourceGroupName, parameters).GetAwaiter().GetResult());
}
/// <summary>
/// Updates vault security config.
/// </summary>
/// <param name='operations'>
/// The operations group for this extension method.
/// </param>
/// <param name='vaultName'>
/// The name of the recovery services vault.
/// </param>
/// <param name='resourceGroupName'>
/// The name of the resource group where the recovery services vault is
/// present.
/// </param>
/// <param name='parameters'>
/// resource config request
/// </param>
/// <param name='cancellationToken'>
/// The cancellation token.
/// </param>
public static async Task <BackupResourceVaultConfigResource> UpdateAsync(this IBackupResourceVaultConfigsOperations operations, string vaultName, string resourceGroupName, BackupResourceVaultConfigResource parameters, CancellationToken cancellationToken = default(CancellationToken))
{
using (var _result = await operations.UpdateWithHttpMessagesAsync(vaultName, resourceGroupName, parameters, null, cancellationToken).ConfigureAwait(false))
{
return(_result.Body);
}
}
