v1 tests

Author: dicolanl

src/SecurityInsights/SecurityInsights.Test/Properties/AssemblyInfo.cs

@@ -20,11 +20,11 @@
 // General Information about an assembly is controlled through the following
 // set of attributes. Change these attribute values to modify the information
 // associated with an assembly.
-[assembly: AssemblyTitle("Commands.Security.Test")]
+[assembly: AssemblyTitle("Commands.SecurityInsights.Test")]
 [assembly: AssemblyDescription("")]
 [assembly: AssemblyConfiguration("")]
 [assembly: AssemblyCompany("")]
-[assembly: AssemblyProduct("Commands.Security.Test")]
+[assembly: AssemblyProduct("Commands.SecurityInsights.Test")]
 [assembly: AssemblyCopyright("Copyright ©  2018")]
 [assembly: AssemblyTrademark("")]
 [assembly: AssemblyCulture("")]
@@ -35,7 +35,7 @@
 [assembly: ComVisible(false)]
 
 // The following GUID is for the ID of the typelib if this project is exposed to COM
-[assembly: Guid("9f866d20-059a-4dab-af42-18e37f503e30")]
+[assembly: Guid("CA24A45A-9D2D-4BBD-9F71-EF5599ADAD96")]
 
 // Version information for an assembly consists of the following four values:
 //

src/SecurityInsights/SecurityInsights.Test/ScenarioTests/SecurityTaskTests.cs renamed to src/SecurityInsights/SecurityInsights.Test/ScenarioTests/Actions/ActionsTests.cs

@@ -17,13 +17,13 @@
 using Microsoft.WindowsAzure.Commands.ScenarioTest;
 using Xunit;
 
-namespace Microsoft.Azure.Commands.Security.Test.ScenarioTests
+namespace Microsoft.Azure.Commands.SecurityInsights.Test.ScenarioTests
 {
-    public class SecurityTaskTests
+    public class ActionsTests
     {
         private readonly XunitTracingInterceptor _logger;
 
-        public SecurityTaskTests(Xunit.Abstractions.ITestOutputHelper output)
+        public ActionsTests(Xunit.Abstractions.ITestOutputHelper output)
         {
             _logger = new XunitTracingInterceptor(output);
             XunitTracingInterceptor.AddToContext(_logger);
@@ -32,37 +32,37 @@ public SecurityTaskTests(Xunit.Abstractions.ITestOutputHelper output)
 
         [Fact]
         [Trait(Category.AcceptanceType, Category.CheckIn)]
-        public void GetSubscriptionScope()
+        public void ListByAlertRule()
         {
-            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzureRmSecurityTask-SubscriptionScope");
+            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzSentinelAlertRuleAction-ListByAlertRule");
         }
 
         [Fact]
         [Trait(Category.AcceptanceType, Category.CheckIn)]
-        public void GetResourceGroupScope()
+        public void GetAction()
         {
-            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzureRmSecurityTask-ResourceGroupScope");
+            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzSentinelAlertRuleAction-GetAction");
         }
 
         [Fact]
         [Trait(Category.AcceptanceType, Category.CheckIn)]
-        public void GetResourceId()
+        public void CreateAction()
         {
-            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzureRmSecurityTask-ResourceId");
+            TestController.NewInstance.RunPowerShellTest(_logger, "New-AzSentinelAlertRuleAction-Create");
         }
 
         [Fact]
         [Trait(Category.AcceptanceType, Category.CheckIn)]
-        public void GetSubscriptionLevelResource()
+        public void UpdateAction()
         {
-            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzureRmSecurityTask-SubscriptionLevelResource");
+            TestController.NewInstance.RunPowerShellTest(_logger, "Set-AzSentinelAlertRuleAction-Update");
         }
 
         [Fact]
         [Trait(Category.AcceptanceType, Category.CheckIn)]
-        public void GetResourceGroupLevelResource()
+        public void RemoveAction()
         {
-            TestController.NewInstance.RunPowerShellTest(_logger, "Get-AzureRmSecurityTask-ResourceGroupLevelResource");
+            TestController.NewInstance.RunPowerShellTest(_logger, "Remove-AzSentinelAlertRuleAction-Delete");
         }
     }
 }

src/SecurityInsights/SecurityInsights.Test/ScenarioTests/Actions/ActionsTests.ps1

@@ -0,0 +1,153 @@
+# ----------------------------------------------------------------------------------
+#
+# Copyright Microsoft Corporation
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+# http://www.apache.org/licenses/LICENSE-2.0
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# ----------------------------------------------------------------------------------
+
+<#
+.SYNOPSIS
+List Actions by Alert Rule
+#>
+function Get-AzSentineAlertRulelAction-ListByAlertRule
+{
+	
+	$LogicAppResourceId = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Block-AADUser"
+	$LogicAppResourceId2 = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Get-MDATPInvestigationPackage"
+	
+	#Create Alert Rule
+	$alertRule = New-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -Type Scheduled -Enabled $true -DisplayName "PoshModuleTest" -SuprressionDuration "PT5H" -SuprressionEnabled $false
+	#Create Alert Rule Action
+	$action = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId
+	#Create Alert Rule Action
+	$action2 = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId2
+	
+	#Get Alert Rule Actions
+    $actions = Get-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+	# Validate
+	Validate-Actions $actions
+
+	#Cleanup
+	Remove-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+}
+
+<#
+.SYNOPSIS
+Get Action
+#>
+function Get-AzSentinelAlertRuleAction-GetAction
+{
+	
+	$LogicAppResourceId = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Block-AADUser"
+		
+	#Create Alert Rule
+	$alertRule = New-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -Type Scheduled -Enabled $true -DisplayName "PoshModuleTest" -SuprressionDuration "PT5H" -SuprressionEnabled $false
+	#Create Alert Rule Action
+	$action = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId
+		
+	#Get Alert Rule Action
+    $action = Get-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name) -ActionId ($action.Name)
+	# Validate
+	Validate-Action $action
+
+	#Cleanup
+	Remove-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+}
+
+<#
+.SYNOPSIS
+Create Action
+#>
+function New-AzSentinelAlertRuleAction-Create
+{
+    $LogicAppResourceId = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Block-AADUser"
+			
+	#Create Alert Rule
+	$alertRule = New-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -Type Scheduled -Enabled $true -DisplayName "PoshModuleTest" -SuprressionDuration "PT5H" -SuprressionEnabled $false
+	#Create Alert Rule Action
+	$action = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId
+	
+	#Validate
+	Validate-Action $action
+
+	#Cleanup
+	Remove-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+}
+
+<#
+.SYNOPSIS
+Update Action
+#>
+function Set-AzSentinelAlertRuleAction-Update
+{
+	$LogicAppResourceId = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Block-AADUser"
+	$LogicAppResourceId2 = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Get-MDATPInvestigationPackage"
+		
+	#Create Alert Rule
+	$alertRule = New-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -Type Scheduled -Enabled $true -DisplayName "PoshModuleTest" -SuprressionDuration "PT5H" -SuprressionEnabled $false
+	#Create Alert Rule Action
+	$action = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId
+	
+	#update action
+	$action = Set=AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId2
+	
+	# Validate
+	Validate-Action $action
+
+	#Cleanup
+	Remove-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+}
+
+<#
+.SYNOPSIS
+Delete Action
+#>
+function Remove-AzSentinelAlertRuleAction-Delete
+{
+	$LogicAppResourceId = "/subscriptions/1c61ccbf-70b3-45a3-a1fb-848ce46d70a6/resourceGroups/ndicola-azsposh/providers/Microsoft.Logic/workflows/Block-AADUser"
+		
+	#Create Alert Rule
+	$alertRule = New-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -Type Scheduled -Enabled $true -DisplayName "PoshModuleTest" -SuprressionDuration "PT5H" -SuprressionEnabled $false
+	#Create Alert Rule Action
+	$action = New-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -LogicAppResourceId $LogicAppResourceId
+	Remove-AzSentinelAlertRuleAction -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -ActionId ($action.Name)
+	# Validate
+	Validate-Action $action
+
+	#Cleanup
+	Remove-AzSentinelAlertRule -ResourceGroupName (Get-TestResourceGroupName) -WorkspaceName (Get-TestWorkspaceName) -AlertRuleId ($alertRule.Name)
+}
+
+<#
+.SYNOPSIS
+Validates a list of actions
+#>
+function Validate-Actions
+{
+	param($actions)
+
+    Assert-True { $actions.Count -gt 0 }
+
+	Foreach($action in $actions)
+	{
+		Validate-Action $action
+	}
+}
+
+<#
+.SYNOPSIS
+Validates a single action
+#>
+function Validate-Action
+{
+	param($action)
+
+	Assert-NotNull $action
+}

src/SecurityInsights/SecurityInsights.Test/ScenarioTests/AllowedConnectionTests.cs

@@ -18,7 +18,12 @@ Gets test resource group name
 #>
 function Get-TestResourceGroupName
 {
-	"myService1"
+	"ndicola-azsposh"
+}
+
+function Get-TestWorkspaceName
+{
+	"azsposh"
 }
 
 <#