Merge pull request #6925 from maddieclayton/mergkvpreview

Merge keyvault branch into preview

Author: Maddie Clayton

ChangeLog.md

@@ -1,4 +1,4 @@
-## 6.7.0 - August 2018
+## 6.7.0 - August 2018
 #### AzureRM.Profile
 * Updated to the latest version of the Azure ClientRuntime.
 * Add user id to default context name to avoid context clashing

src/ResourceManager/Compute/Commands.Compute.Test/Commands.Compute.Test.Netcore.csproj

@@ -28,7 +28,7 @@
   <ItemGroup>
     <PackageReference Include="Microsoft.Azure.Graph.RBAC" Version="3.4.0-preview" />
     <PackageReference Include="Microsoft.Azure.Management.Compute" Version="21.0.0" />
-    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1-alpha" />
+    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1" />
     <PackageReference Include="Microsoft.Azure.Management.Network" Version="19.1.0-preview" />
     <PackageReference Include="Moq" Version="4.7.145" />
   </ItemGroup>

src/ResourceManager/Compute/Commands.Compute/Commands.Compute.Netcore.csproj

@@ -33,7 +33,7 @@
   <ItemGroup>
     <PackageReference Include="AutoMapper" Version="6.2.2" />
     <PackageReference Include="Microsoft.Azure.Management.Compute" Version="21.0.0" />
-    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1-alpha" />
+    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1" />
     <PackageReference Include="Microsoft.Azure.Management.Storage" Version="7.1.0-preview" />
     <PackageReference Include="System.Security.Permissions" Version="4.5.0" />
     <PackageReference Include="System.ServiceModel.Primitives" Version="4.4.1" />

src/ResourceManager/Compute/Commands.Compute/Commands.Compute.csproj

@@ -57,7 +57,7 @@
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.KeyVault, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.4.1-alpha\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.4.1\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Storage">

src/ResourceManager/Compute/Commands.Compute/packages.config

@@ -2,7 +2,7 @@
 <packages>
   <package id="AutoMapper" version="6.0.2" targetFramework="net452" />
   <package id="Microsoft.Azure.Management.Compute" version="21.0.0" targetFramework="net452" />
-  <package id="Microsoft.Azure.Management.KeyVault" version="2.4.1-alpha" targetFramework="net452" />
+  <package id="Microsoft.Azure.Management.KeyVault" version="2.4.1" targetFramework="net452" />
   <package id="Microsoft.Azure.Management.Storage" version="4.1.0-preview" targetFramework="net45" />
   <package id="WindowsAzure.Storage" version="8.1.1" targetFramework="net452" />
 </packages>

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Commands.KeyVault.Test.Netcore.csproj

@@ -26,9 +26,10 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.Azure.KeyVault" Version="3.0.0-alpha" />
-    <PackageReference Include="Microsoft.Azure.KeyVault.WebKey" Version="3.0.0-alpha" />
-    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1-alpha" />
+    <PackageReference Include="Microsoft.Azure.KeyVault" Version="3.0.0" />
+    <PackageReference Include="Microsoft.Azure.KeyVault.WebKey" Version="3.0.0" />
+    <PackageReference Include="Microsoft.Azure.Management.KeyVault" Version="2.4.1" />
+    <PackageReference Include="Microsoft.Azure.Management.Network" Version="19.0.2-preview" />
   </ItemGroup>
 
   <ItemGroup>

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Commands.KeyVault.Test.csproj

@@ -63,10 +63,10 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Gallery.2.6.2-preview\lib\net40\Microsoft.Azure.Gallery.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.KeyVault">
-      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.3.0.0-alpha\lib\net452\Microsoft.Azure.KeyVault.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.3.0.0\lib\net452\Microsoft.Azure.KeyVault.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.KeyVault.WebKey">
-      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.WebKey.3.0.0-alpha\lib\net452\Microsoft.Azure.KeyVault.WebKey.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.WebKey.3.0.0\lib\net452\Microsoft.Azure.KeyVault.WebKey.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Authorization">
       <HintPath>..\..\..\packages\Microsoft.Azure.Management.Authorization.2.0.0\lib\net40\Microsoft.Azure.Management.Authorization.dll</HintPath>
@@ -76,7 +76,10 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Common.2.1.0\lib\net45\Microsoft.Azure.Common.NetFramework.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.KeyVault">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.4.1-alpha\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.4.1\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
+    </Reference>
+    <Reference Include="Microsoft.Azure.Management.Network, Version=19.0.2.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.Network.19.0.2-preview\lib\net452\Microsoft.Azure.Management.Network.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.ResourceManager, Version=1.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <SpecificVersion>False</SpecificVersion>
@@ -257,6 +260,9 @@
     <None Include="SessionRecords\Microsoft.Azure.Commands.KeyVault.Test.ScenarioTests.KeyVaultManagementTests\TestSetRemoveAccessPolicyByUPN.json">
       <CopyToOutputDirectory>Always</CopyToOutputDirectory>
     </None>
+    <None Include="SessionRecords\Microsoft.Azure.Commands.KeyVault.Test.ScenarioTests.KeyVaultManagementTests\TestNetworkSet.json">
+      <CopyToOutputDirectory>Always</CopyToOutputDirectory>
+    </None>
   </ItemGroup>
   <ItemGroup>
     <ProjectReference Include="..\..\..\Common\Commands.Common.Authentication.Abstractions\Commands.Common.Authentication.Abstractions.csproj">

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Properties/AssemblyInfo.cs

@@ -47,6 +47,6 @@
 // You can specify all the values or you can default the Build and Revision Numbers
 // by using the '*' as shown below:
 
-[assembly: AssemblyVersion( "4.0.1.0" )]
-[assembly: AssemblyFileVersion("4.0.1")]
+[assembly: AssemblyVersion( "5.1.0" )]
+[assembly: AssemblyFileVersion("5.1.0")]
 [assembly: CollectionBehavior(DisableTestParallelization = true)]

src/ResourceManager/KeyVault/Commands.KeyVault.Test/ScenarioTests/KeyVaultManagementController.cs

@@ -18,14 +18,15 @@
 using Microsoft.Azure.ServiceManagemenet.Common.Models;
 using Microsoft.Azure.Test.HttpRecorder;
 using Microsoft.WindowsAzure.Commands.ScenarioTest;
-using Microsoft.Azure.Commands.Common.Authentication.Abstractions;
-using Microsoft.Rest.ClientRuntime.Azure.TestFramework;
 using System;
 using System.Collections.Generic;
 using System.Diagnostics;
 using System.IO;
 using System.Linq;
 using Microsoft.Azure.Management.Internal.Resources;
+using Microsoft.Azure.Management.Network;
+using Microsoft.Rest.ClientRuntime.Azure.TestFramework;
+using Microsoft.Azure.Commands.Common.Authentication.Abstractions;
 using RM = Microsoft.Azure.Management.ResourceManager;
 
 namespace Microsoft.Azure.Commands.KeyVault.Test
@@ -40,12 +41,14 @@ public class KeyVaultManagementController
 
         public ResourceManagementClient NewResourceManagementClient { get; private set; }
 
-        public RM.ResourceManagementClient ResourceClient { get; private set; }
-
         public KeyVaultManagementClient KeyVaultManagementClient { get; private set; }
 
         public GraphRbacManagementClient GraphClient { get; private set; }
 
+        public NetworkManagementClient NetworkManagementClient { get; private set; }
+
+        public RM.ResourceManagementClient ResourceClient { get; private set; }
+
         public string UserDomain { get; private set; }
 
         public static KeyVaultManagementController NewInstance => new KeyVaultManagementController();
@@ -105,7 +108,8 @@ public void RunPsTestWorkflow(
                     "Scripts\\ControlPlane\\" + callingClassName + ".ps1",
                     _helper.RMProfileModule,
                     _helper.RMResourceModule,
-                    _helper.GetRMModulePath("AzureRM.KeyVault.psd1"));
+                    _helper.GetRMModulePath("AzureRM.KeyVault.psd1"),
+                    _helper.RMNetworkModule);
 
                 try
                 {
@@ -130,16 +134,23 @@ private void SetupManagementClients(MockContext context)
         {
             NewResourceManagementClient = GetResourceManagementClient(context);
             ResourceClient = GetResourceClient(context);
+            NetworkManagementClient = GetNetworkManagementClient(context);
             GraphClient = GetGraphClient(context);
             KeyVaultManagementClient = GetKeyVaultManagementClient(context);
             _helper.SetupManagementClients(
                 NewResourceManagementClient,
                 ResourceClient,
+                NetworkManagementClient,
                 KeyVaultManagementClient,
                 GraphClient
                 );
         }
 
+        private NetworkManagementClient GetNetworkManagementClient(MockContext context)
+        {
+            return context.GetServiceClient<NetworkManagementClient>(TestEnvironmentFactory.GetTestEnvironment());
+        }
+
         private ResourceManagementClient GetResourceManagementClient(MockContext context)
         {
             return context.GetServiceClient<ResourceManagementClient>(TestEnvironmentFactory.GetTestEnvironment());
@@ -163,10 +174,8 @@ private GraphRbacManagementClient GetGraphClient(MockContext context)
             if (HttpMockServer.Mode == HttpRecorderMode.Record)
             {
                 tenantId = environment.Tenant;
-                UserDomain = environment.UserName.Split(new[] { "@" }, StringSplitOptions.RemoveEmptyEntries).Last();
 
                 HttpMockServer.Variables[TenantIdKey] = tenantId;
-                HttpMockServer.Variables[DomainKey] = UserDomain;
             }
             else if (HttpMockServer.Mode == HttpRecorderMode.Playback)
             {
@@ -196,4 +205,4 @@ private GraphRbacManagementClient GetGraphClient(MockContext context)
             return client;
         }
     }
-}
+}

src/ResourceManager/KeyVault/Commands.KeyVault.Test/ScenarioTests/KeyVaultManagementTests.cs

@@ -390,6 +390,35 @@ public void TestRemoveNonExistentAccessPolicyDoesNotThrow()
 
         #endregion
 
+        #region Piping
+        [Fact(Skip = "Graph authentication blocks test passes")]
+        [Trait(Category.AcceptanceType, Category.CheckIn)]
+        public void TestCreateDeleteVaultWithPiping()
+        {
+            KeyVaultManagementController.NewInstance.RunPsTestWorkflow(
+                 _logger,
+                () => { return new[] { string.Format("{0} {1} {2}", "Test-CreateDeleteVaultWithPiping", _data.ResourceGroupName, _data.Location) }; },
+                null,
+                MethodBase.GetCurrentMethod().ReflectedType?.ToString(),
+                MethodBase.GetCurrentMethod().Name
+                );
+        }
+
+        #endregion
+
+        [Fact]
+        [Trait(Category.AcceptanceType, Category.CheckIn)]
+        public void TestNetworkSet()
+        {
+            KeyVaultManagementController.NewInstance.RunPsTestWorkflow(
+                 _logger,
+                () => { return new[] { "Test-NetworkRuleSet" }; },
+                null,
+                MethodBase.GetCurrentMethod().ReflectedType?.ToString(),
+                MethodBase.GetCurrentMethod().Name
+                );
+        }
+
         #region Helper Methods
         private string GetUserObjectId(KeyVaultManagementController controllerAdmin, string upn)
         {
@@ -451,4 +480,4 @@ private void DeleteAdServicePrincipal(KeyVaultManagementController controllerAdm
     }
 
 
-}
+}

src/ResourceManager/KeyVault/Commands.KeyVault.Test/ScenarioTests/KeyVaultTestFixture.cs

@@ -133,7 +133,7 @@ public void ResetPreCreatedVault()
         }
         public void Dispose()
         {
-            Dispose(true);
+            Dispose(false);
             GC.SuppressFinalize(this);
         }
 

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Scripts/ControlPlane/KeyVaultManagementTests.ps1

@@ -753,4 +753,49 @@ function Compare-Vaults
         CheckVaultAccessPolicy $vault1 $vault2.AccessPolicies[0].PermissionsToKeys $vault2.AccessPolicies[0].PermissionsToSecrets $vault2.AccessPolicies[0].PermissionsToCertificates $vault2.AccessPolicies[0].PermissionsToStorage
         Assert-AreEqual $vault1.AccessPolicies[0].ObjectId $vault2.AccessPolicies[0].ObjectId
     }
+}
+
+function Test-NetworkRuleSet
+{
+	$resourceGroupName = getAssetName
+	$resourceGroupLocation = Get-Location "Microsoft.Resources" "resourceGroups" "westus"
+	$vaultName = getAssetName
+	$vaultLocation = Get-Location "Microsoft.KeyVault" "vaults" "westus"
+	$virtualNetworkName = getAssetName
+	$virtualNetworkLocation = Get-Location "Microsoft.Network" "virtualNetworks" "westus"
+
+	try
+	{
+		$rg = New-AzureRmResourceGroup -Name $resourceGroupName -Location $resourceGroupLocation
+		$vault = New-AzureRmKeyVault -VaultName $vaultName -ResourceGroupName $resourceGroupName -Location $vaultLocation
+
+		$frontendSubnet = New-AzureRmVirtualNetworkSubnetConfig -Name frontendSubnet -AddressPrefix "10.0.1.0/24" -ServiceEndpoint Microsoft.KeyVault 
+		$virtualNetwork = New-AzureRmVirtualNetwork -Name $virtualNetworkName -ResourceGroupName $resourceGroupName -Location $virtualNetworkLocation -AddressPrefix "10.0.0.0/16" -Subnet $frontendSubnet
+
+		$myNetworkResId = (Get-AzureRmVirtualNetwork -Name $virtualNetworkName -ResourceGroupName $resourceGroupName).Subnets[0].Id
+		Add-AzureRmKeyVaultNetworkRule -VaultName $vaultName -IpAddressRange "10.0.1.0/24" -VirtualNetworkResourceId $myNetworkResId
+		$vault = Get-AzureRmKeyVault -ResourceGroupName $resourceGroupName -Name $vaultName
+		Assert-AreEqual $vault.NetworkAcls.IpAddressRanges.Count 1
+		Assert-AreEqual $vault.NetworkAcls.IpAddressRanges[0] "10.0.1.0/24"
+		Assert-AreEqual $vault.NetworkAcls.VirtualNetworkResourceIds.Count 1
+		Assert-AreEqual $vault.NetworkAcls.VirtualNetworkResourceIds[0] $myNetworkResId
+		Assert-AreEqual $vault.NetworkAcls.Bypass.toString() "AzureServices"
+		Assert-AreEqual $vault.NetworkAcls.DefaultAction.toString() "Allow"
+
+		$networkRule = Update-AzureRmKeyVaultNetworkRuleSet -VaultName $vaultName -ResourceGroupName $resourceGroupName -Bypass None -DefaultAction Deny -PassThru
+		Assert-AreEqual $networkRule.NetworkAcls.Bypass.toString() "None"
+		Assert-AreEqual $networkRule.NetworkAcls.DefaultAction.toString() "Deny"
+		$vault = Get-AzureRmKeyVault -ResourceGroupName $resourceGroupName -Name $vaultName
+		Assert-AreEqual $vault.NetworkAcls.Bypass.toString() "None"
+		Assert-AreEqual $vault.NetworkAcls.DefaultAction.toString() "Deny"
+
+		Remove-AzureRmKeyVaultNetworkRule -VaultName $vaultName -ResourceGroupName $resourceGroupName -IpAddressRange "10.0.1.0/24" -VirtualNetworkResourceId $myNetworkResId
+		$vault = Get-AzureRmKeyVault -ResourceGroupName $resourceGroupName -Name $vaultName
+		Assert-AreEqual $vault.NetworkAcls.IpAddressRanges.Count 0
+		Assert-AreEqual $vault.NetworkAcls.VirtualNetworkResourceIds.Count 0
+	}
+	finally
+	{
+		Remove-AzureRmResourceGroup -Name $resourceGroupName -Force
+	}
 }