Resources improvements #6008
Resources improvements #6008
Conversation
| }; | ||
|
|
||
| PSADServicePrincipal servicePrincipal = FilterServicePrincipals(options).FirstOrDefault(); | ||
| var objId = objectId.ToString(); |
There was a problem hiding this comment.
better to use a descriptive identifier, like objectIdString
| using System.Management.Automation; | ||
|
|
||
| /// <summary> | ||
| /// This attribute will allow the user to autocomplete the -ResourceType parameter of a cmdlet with valid resource types |
There was a problem hiding this comment.
Can we split this into a separate PR? I want to make sure we get in as much of this as possible
| instance.ClientFactory.GetCustomHandlers()); | ||
| client.SubscriptionId = context.Subscription.Id; | ||
| // Retrieve only the first page of resource types to display to the user | ||
| var resourceTypes = client.Providers.ListAsync(); |
There was a problem hiding this comment.
@markcowl looks like this was a copy-paste issue -- I changed this so it retrieves all pages
|
|
||
| catch (Exception ex) | ||
| { | ||
| if (ex == null) { } |
There was a problem hiding this comment.
I think this check should also be in the ifdef
There was a problem hiding this comment.
@markcowl this was modeled after the ResourceGroupCompleter, but I believe that it's here so that the release build won't fail due to an unused ex variable
| instance.AuthenticationFactory.GetServiceClientCredentials(context, AzureEnvironment.Endpoint.ResourceManager), | ||
| instance.ClientFactory.GetCustomHandlers()); | ||
| client.SubscriptionId = context.Subscription.Id; | ||
| // Retrieve only the first page of ResourceGroups to display to the user |
There was a problem hiding this comment.
I wonder if we can't pass in the parameter value through to the resource groups call to make the first page of results more effective
| @@ -19,44 +19,31 @@ | |||
| using System.Collections.Generic; | |||
| using System.Threading; | |||
|
|
|||
| namespace Microsoft.Azure.Internal.Subscriptions.Models | |||
| namespace Microsoft.Azure.Commands.ResourceManager.Common.Paging | |||
There was a problem hiding this comment.
same comment - we cannot make breaking changes here. If we need to substantially redesign it, we should define a new class.
There was a problem hiding this comment.
@markcowl this has been reverted
| @@ -17,23 +17,36 @@ | |||
| using System.Collections.Generic; | |||
| using System.Collections; | |||
|
|
|||
| namespace Microsoft.Azure.Internal.Subscriptions.Models | |||
There was a problem hiding this comment.
@markcowl this has been reverted
| @@ -113,7 +113,8 @@ public static string GetDisplayNameForADObject(string objectId, ActiveDirectoryC | |||
| } | |||
| else if (obj.Type.Equals("serviceprincipal", StringComparison.InvariantCultureIgnoreCase)) | |||
| { | |||
| var servicePrincipal = adClient.FilterServicePrincipals(new ADObjectFilterOptions { Id = objectId }).FirstOrDefault(); | |||
| var odataQuery = new Rest.Azure.OData.ODataQuery<Graph.RBAC.Version1_6.Models.ServicePrincipal>(s => s.ObjectId == objectId); | |||
There was a problem hiding this comment.
we should let the keyvault team look at these changes
| @@ -607,6 +608,28 @@ public virtual List<PSResourceGroup> FilterResourceGroups(string name, Hashtable | |||
| resourceGroups.AddRange(listResult); | |||
| } | |||
|
|
|||
| if (!string.IsNullOrEmpty(name)) | |||
There was a problem hiding this comment.
ToDo: This would be really nice extracted out into a helper like:
IEnumerable<T> FilterByWildCard<T>(IEnumerable<T> source, Func<T, string> getKey, string parameterValue)| { | ||
| public class PSResource | ||
| { | ||
| public string Id { get; set; } |
There was a problem hiding this comment.
Need ResourceId for backward-compatible cmdlet piping, right?
|
@maddieclayton Can we get someone from KeyVaule to pass on the small changes here to KeyVault cmdlets? |
| [Parameter(Mandatory = true, ValueFromPipelineByPropertyName = true, ParameterSetName = ParameterSet.Explicit, HelpMessage = "The object id of the member.")] | ||
| [Parameter(Mandatory = true, ParameterSetName = ParameterSet.GroupObject, HelpMessage = "The object id of the member.")] | ||
| [ValidateNotNullOrEmpty] | ||
| public Guid MemberObjectId { get; set; } |
There was a problem hiding this comment.
For this to be parallel with other cmdlets using AD, we would want to have parameters to allow users to specify thee target group by name, and the user principals.
Also, for each of the parameters specifying things to add to the target group, including memberObjectId, I would make the parameter type an array, so we cna add multiple.
|
|
||
| [Parameter(Mandatory = true, ValueFromPipelineByPropertyName = true, ParameterSetName = ParameterSet.Explicit, HelpMessage = "The object id of the group to add the member to.")] | ||
| [ValidateNotNullOrEmpty] | ||
| public Guid GroupObjectId { get; set; } |
There was a problem hiding this comment.
I would change this to TargetGroupObjectId, and TargetGroupObject
| [ValidateNotNullOrEmpty] | ||
| public Guid GroupObjectId { get; set; } | ||
| [Alias("Id", "GroupObjectId")] |
There was a problem hiding this comment.
We should consider having a group name parameter here, if it does not exist already
| @@ -21,21 +23,32 @@ namespace Microsoft.Azure.Commands.ActiveDirectory | |||
| /// Gets AD service principal credentials. | |||
| /// </summary> | |||
| [Cmdlet(VerbsCommon.Get, "AzureRmADSpCredential", DefaultParameterSetName = ParameterSet.ObjectId), OutputType(typeof(PSADCredential))] | |||
| [Alias("Get-AzureRmADServicePrincipalCredential")] | |||
There was a problem hiding this comment.
Get-AzureRmADSpnCredential as well
There was a problem hiding this comment.
@markcowl I think we agreed to skip this comment (I can add the alias if that's not the case)
| SearchString = SearchString, | ||
| UPN = UserPrincipalName, | ||
| Id = ObjectId == Guid.Empty ? null : ObjectId.ToString(), | ||
| Paging = true, |
There was a problem hiding this comment.
what does the Paging option do here?
There was a problem hiding this comment.
@markcowl it used to signal that the client should follow the nextPageLink, but that is now handled by GenericPageEnumerable, so this isn't necessarily needed (but I will keep it around 😀 )
| [Parameter(Mandatory = true, ValueFromPipelineByPropertyName = true, ParameterSetName = ParameterSet.SPNWithDisplayName, HelpMessage = "The display name for the application.")] | ||
| [Parameter(Mandatory = true, ParameterSetName = ParameterSet.InputObjectWithDisplayName, HelpMessage = "The display name for the application")] | ||
| [ValidateNotNullOrEmpty] | ||
| public string DisplayName { get; set; } |
There was a problem hiding this comment.
is this the only thins we can actually change?
There was a problem hiding this comment.
@markcowl added Homepage, IdentifierUri, KeyCredential and PasswordCredential parameters
| @@ -81,7 +97,39 @@ Accept pipeline input: False | |||
| Accept wildcard characters: False | |||
| ``` | |||
|
|
|||
| ### -First | |||
| Gets the first N objects. | |||
There was a problem hiding this comment.
I would say The maximum number of objects to return
|
|
||
| ## DESCRIPTION | ||
| Updates an existing azure active directory application. | ||
| To update the credentials associated with this application, please use New-AzureRmADAppCredential cmdlet. |
There was a problem hiding this comment.
<nit>
.. please use the New-AzureRmADAppCredential...
</nit>
| Get-AzureRmResource [-ResourceType <String>] [-ExtensionResourceType <String>] [-ExpandProperties] | ||
| [-IsCollection] [-ODataQuery <String>] [-ResourceGroupName <String>] [-ApiVersion <String>] [-Pre] | ||
| [-DefaultProfile <IAzureContextContainer>] [<CommonParameters>] | ||
| PS C:\> Get-AzureRmResource -Name testVM | ft |
| { | ||
| try | ||
| { | ||
| Thread.Sleep(5000); |
There was a problem hiding this comment.
We should use our own TestMockSupport.Delay method so this doesn't take forever in playback
| ``` | ||
|
|
||
| ### -MemberUserPrincipalName | ||
| The UPN of the member(s) to remove.```yaml |
|
I'm taking a look. Will update in an hour. |
| @@ -59,7 +59,8 @@ public static PSADObject ToPSADObject(this AADObject obj) | |||
| DisplayName = obj.DisplayName, | |||
| Type = obj.ObjectType, | |||
| Id = new Guid(obj.ObjectId), | |||
| SecurityEnabled = obj.SecurityEnabled | |||
| SecurityEnabled = obj.SecurityEnabled, | |||
| MailNickname = obj.Mail | |||
There was a problem hiding this comment.
MailNickname = obj.Mail [](start = 20, length = 23)
for a group the mail will be always null,do we need this?
https://msdn.microsoft.com/en-us/library/azure/ad/graph/api/groups-operations
| /// Updates an exisitng service principal. | ||
| /// </summary> | ||
| [Cmdlet(VerbsData.Update, "AzureRmADServicePrincipal", DefaultParameterSetName = ParameterSet.SpObjectIdWithDisplayName, SupportsShouldProcess = true), OutputType(typeof(PSADServicePrincipal))] | ||
| [Alias("Set-AzureRmADServicePrincipal")] |
There was a problem hiding this comment.
Set-AzureRmADServicePrincipa [](start = 12, length = 28)
why the change from Set to update?
isnt it confusing/inconsistent wrt other commandlets?
for some we have set and for others we have update
…o resources-improvements # Conflicts: # tools/StaticAnalysis/Exceptions/BreakingChangeIssues.csv # tools/StaticAnalysis/Exceptions/SignatureIssues.csv
…ve logic for Get-AzureRmResource into ProcessRecord
| return result; | ||
| } | ||
|
|
||
| private IEnumerable<PSResource> FilterResourceByWildcard(IEnumerable<PSResource> result) |
There was a problem hiding this comment.
For the future, we should implement this once as a generic, and pass in a Function that gets the key we want to search
|
nightly build (Cloudshell prereq) here: https://azuresdkci.westus2.cloudapp.azure.com/view/PowerShell/job/powershell-nightly/122/ |
| @@ -265,7 +265,8 @@ private string GetObjectIdBySpn(string spn) | |||
| if (!string.IsNullOrWhiteSpace(spn)) | |||
| { | |||
| #if NETSTANDARD | |||
| var servicePrincipal = ActiveDirectoryClient.FilterServicePrincipals(new ADObjectFilterOptions() { SPN = spn }).SingleOrDefault(); | |||
| var odataQuery = new Rest.Azure.OData.ODataQuery<Graph.RBAC.Version1_6.Models.ServicePrincipal>(s => s.ServicePrincipalNames.Contains(spn)); | |||
There was a problem hiding this comment.
Is this filter using a case insensitive compare like the one below on line 273? If not, is there a reason that it would not be using the same?
There was a problem hiding this comment.
@RandalliLama the filter is case insensitive
Description
Fix for issue #5903
New-AzureRmADServicePrincipalfor simple creation of a service principalFind-AzureRmResourceand updateGet-AzureRmResourceto work in basic scenariosFind-AzureRmResourceGroupand move missing functionality intoGet-AzureRmResourceGroupChecklist
CONTRIBUTING.mdplatyPSmodule