Added tests, help files + fixes based on CR

Author: irrogozh

src/Network/Network.Test/ScenarioTests/NetworkWatcherAPITests.cs

@@ -121,5 +121,13 @@ public void TestNetworkConfigurationDiagnostic()
         {
             TestRunner.RunTestScript("Test-NetworkConfigurationDiagnostic");
         }
+
+        [Fact]
+        [Trait(Category.RunType, Category.LiveOnly)]
+        [Trait(Category.Owner, NrpTeamAlias.netanalyticsdev)]
+        public void TestCRUDFlowLog()
+        {
+            TestRunner.RunTestScript("Test-CRUDFlowLog");
+        }
     }
 }

src/Network/Network.Test/ScenarioTests/NetworkWatcherAPITests.ps1

@@ -716,6 +716,88 @@ function Test-FlowLog
     }
 }
 
+<#
+.SYNOPSIS
+Test Flow log CRUD API.
+#>
+function Test-CRUDFlowLog
+{
+    # Setup
+    $resourceGroupName = Get-NrpResourceGroupName
+    $nwName = Get-NrpResourceName
+    $nwRgName = Get-NrpResourceGroupName
+    $flowLogName = Get-NrpResourceName
+    $domainNameLabel = Get-NrpResourceName
+    $nsgName = Get-NrpResourceName
+    $stoname =  Get-NrpResourceName
+    $location = Get-ProviderLocation "Microsoft.Network/networkWatchers" "West Central US"
+
+    try 
+    {
+        # Create Resource group
+        New-AzResourceGroup -Name $resourceGroupName -Location "$location"
+
+        # Create NetworkSecurityGroup
+        $nsg = New-AzNetworkSecurityGroup -name $nsgName -ResourceGroupName $resourceGroupName -Location $location
+
+        # Get NetworkSecurityGroup
+        $getNsg = Get-AzNetworkSecurityGroup -name $nsgName -ResourceGroupName $resourceGroupName
+        
+        # Create Resource group for Network Watcher
+        New-AzResourceGroup -Name $nwRgName -Location "$location"
+        
+        # Get Network Watcher
+        $nw = Get-CreateTestNetworkWatcher -location $location -nwName $nwName -nwRgName $nwRgName
+ 
+        # Create storage
+        $stoname = 'sto' + $stoname
+        $stotype = 'Standard_GRS'
+
+        New-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $stoname -Location $location -Type $stotype;
+        $sto = Get-AzStorageAccount -ResourceGroupName $resourceGroupName -Name $stoname;
+
+        # Create flow log
+        $job = New-AzNetworkWatcherFlowLog -NetworkWatcher $nw Name $flowLogName -TargetResourceId $getNsg.Id -StorageAccountId $sto.Id -Enabled $true
+        $job | Wait-Job
+        $config = $job | Receive-Job
+
+        # Validation set operation
+        Assert-AreEqual $config.TargetResourceId $getNsg.Id
+        Assert-AreEqual $config.StorageId $sto.Id
+        Assert-AreEqual $config.Enabled $true
+        Assert-AreEqual $config.Format.Type "JSON"
+        Assert-AreEqual $config.Format.Version 1
+
+        # Get flow log
+        $flowLog = Get-AzNetworkWatcherFlowLog -NetworkWatcher $nw -Name $flowLogName
+
+        # Validation get operation
+        Assert-AreEqual $flowLog.TargetResourceId $getNsg.Id
+        Assert-AreEqual $flowLog.StorageId $sto.Id
+        Assert-AreEqual $flowLog.Enabled $true
+        Assert-AreEqual $flowLog.Format.Type "JSON"
+        Assert-AreEqual $flowLog.Format.Version 1
+
+        # Set flow log
+        $flowLog.Format.Version = 2
+        $flowLog | Set-AzNetworkWatcherFlowLog -Force
+
+        # Get updated flowLog
+        $updatedFlowLog = Get-AzNetworkWatcherFlowLog -NetworkWatcher $nw -Name $flowLogName
+        Assert-AreEqual $updatedFlowLog.Format.Version 2
+
+        # Delete flow log
+        Remove-AzNetworkWatcherFlowLog -NetworkWatcher $nw -Name $flowLogName
+    }
+    finally
+    {
+        # Cleanup
+        Clean-ResourceGroup $resourceGroupName
+        Clean-ResourceGroup $nwRgName
+    }
+}
+
+
 <#
 .SYNOPSIS
 Test ConnectivityCheck NetworkWatcher API.

src/Network/Network/NetworkWatcher/FlowLog/FlowLogBaseCmdlet.cs

@@ -12,7 +12,11 @@
 // limitations under the License.
 // ----------------------------------------------------------------------------------
 
+using Microsoft.Azure.Management.Internal.Resources.Utilities.Models;
 using Microsoft.Azure.Management.Network;
+using System;
+using System.Linq;
+using System.Management.Automation;
 using System.Net;
 using MNM = Microsoft.Azure.Management.Network.Models;
 
@@ -42,5 +46,80 @@ public bool IsFlowLogPresent(string resourceGroupName, string name, string flowL
 
             return true;
         }
+
+        public bool IsValidResourceId(ResourceIdentifier id, string expectedResourceType, bool validateParent = false, string expectedParentType = null)
+        {
+            if (id == null || string.IsNullOrEmpty(id.ResourceName) || string.IsNullOrEmpty(id.ResourceGroupName) || string.IsNullOrEmpty(id.Subscription) 
+                || !string.Equals(id.ResourceType, expectedResourceType))
+            {
+                return false;
+            }
+
+            if (validateParent)
+            {
+                if (string.IsNullOrEmpty(id.ParentResource))
+                {
+                    return false;
+                }
+
+                string[] tokens = id.ParentResource.Split(new[] { '/' }, StringSplitOptions.RemoveEmptyEntries);
+                if (tokens.Count() != 2 || (!string.IsNullOrEmpty(expectedParentType) && !string.Equals(tokens[0], expectedParentType)))
+                {
+                    return false;
+                }
+            }
+
+            return true;
+        }
+
+        public void ValidateFlowLogParameters(string targetResourceId, string storageId, int? formatVersion, string formatType,
+            bool enableTrafficAnalytics, string trafficAnalyticsWorkspaceId, int? trafficAnalyticsInterval, int? retentionPolicyDays)
+        {
+            ResourceIdentifier targetResourceInfo = new ResourceIdentifier(targetResourceId);
+            if (!this.IsValidResourceId(targetResourceInfo, "Microsoft.Network/networkSecurityGroups"))
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidTargetResourceId);
+            }
+
+            ResourceIdentifier storageAccountInfo = new ResourceIdentifier(storageId);
+            if (!this.IsValidResourceId(storageAccountInfo, "Microsoft.Storage/storageAccounts"))
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidStorageId);
+            }
+
+            if (formatVersion != null && (formatVersion < 0 || formatVersion > 2))
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidFlowLogFormatVersion);
+            }
+
+            if (!string.IsNullOrEmpty(formatType) && !string.Equals(formatType, "JSON", StringComparison.OrdinalIgnoreCase))
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidFlowLogFormatVersion);
+            }
+
+            if (enableTrafficAnalytics && string.IsNullOrEmpty(trafficAnalyticsWorkspaceId))
+            {
+                throw new PSArgumentException(Properties.Resources.TrafficAnalyticsWorkspaceResourceIdIsMissing);
+            }
+
+            if (trafficAnalyticsInterval != null && trafficAnalyticsInterval != 10 && trafficAnalyticsInterval != 60)
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidTrafficAnalyticsInterval);
+            }
+
+            if (!string.IsNullOrEmpty(trafficAnalyticsWorkspaceId))
+            {
+                ResourceIdentifier workspaceInfo = new ResourceIdentifier(trafficAnalyticsWorkspaceId);
+                if (!this.IsValidResourceId(workspaceInfo, "Microsoft.OperationalInsights/workspaces"))
+                {
+                    throw new PSArgumentException(Properties.Resources.InvalidWorkspaceResourceId);
+                }
+            }
+
+            if (retentionPolicyDays != null && retentionPolicyDays < 0)
+            {
+                throw new PSArgumentException(Properties.Resources.InvalidTrafficAnalyticsInterval);
+            }
+        }
     }
 }