Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Remove all premium firewall policy properties (private preview feature) #10072

Merged
merged 2 commits into from
Jul 9, 2020
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Original file line number Diff line number Diff line change
Expand Up @@ -614,10 +614,6 @@
"threatIntelMode": {
"description": "The operation mode for Threat Intelligence.",
"$ref": "./azureFirewall.json#/definitions/AzureFirewallThreatIntelMode"
},
"intrusionSystemMode": {
"description": "The operation mode for Intrusion system.",
"$ref": "#/definitions/FirewallPolicyIntrusionSystemMode"
}
},
"description": "Firewall Policy definition."
Expand Down Expand Up @@ -1058,18 +1054,6 @@
}
},
"description": "Response for ListFirewallPolicyRuleGroups API service call."
},
"FirewallPolicyIntrusionSystemMode": {
"type": "string",
"description": "The operation mode for Intrusion system mode.",
"enum": [
"Enabled",
"Disabled"
],
"x-ms-enum": {
"name": "FirewallPolicyIntrusionSystemMode",
"modelAsString": true
}
}
}
}
Original file line number Diff line number Diff line change
Expand Up @@ -566,10 +566,6 @@
"type": "string",
"readOnly": true,
"description": "A unique read-only string that changes whenever the resource is updated."
},
"identity": {
"$ref": "./network.json#/definitions/ManagedServiceIdentity",
"description": "The identity of the firewall policy."
}
},
"allOf": [
Expand Down Expand Up @@ -622,88 +618,10 @@
"threatIntelWhitelist": {
"description": "ThreatIntel Whitelist for Firewall Policy.",
"$ref": "#/definitions/FirewallPolicyThreatIntelWhitelist"
},
"intrusionSystemMode": {
"description": "The operation mode for Intrusion system.",
"$ref": "#/definitions/FirewallPolicyIntrusionSystemMode"
},
"transportSecurity": {
"description": "TLS Configuration definition.",
"$ref": "#/definitions/FirewallPolicyTransportSecurity"
}
},
"description": "Firewall Policy definition."
},
"FirewallPolicyTransportSecurity": {
"properties": {
"certificateAuthority": {
"$ref": "#/definitions/FirewallPolicyCertificateAuthority",
"description": "The CA used for intermediate CA generation."
},
"excludedDomains": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of domains which are excluded from TLS termination."
},
"trustedRootCertificates": {
"type": "array",
"items": {
"$ref": "#/definitions/FirewallPolicyTrustedRootCertificate",
"description": "A list of certificates which are to be trusted by the firewall."
},
"description": "Certificates which are to be trusted by the firewall."
}
},
"description": "Configuration needed to perform TLS termination & initiation."
},
"FirewallPolicyTrustedRootCertificate": {
"properties": {
"properties": {
"x-ms-client-flatten": true,
"$ref": "#/definitions/FirewallPolicyTrustedRootCertificatePropertiesFormat",
"description": "Properties of the trusted root authorities."
},
"name": {
"type": "string",
"description": "Name of the trusted root certificate that is unique within a firewall policy."
}
},
"description": "Trusted Root certificates of a firewall policy."
},
"FirewallPolicyTrustedRootCertificatePropertiesFormat": {
"properties": {
"keyVaultSecretId": {
"type": "string",
"description": "Secret Id of (base-64 encoded unencrypted pfx) the public certificate data stored in KeyVault."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyCertificateAuthority": {
"properties": {
"properties": {
"x-ms-client-flatten": true,
"$ref": "#/definitions/FirewallPolicyCertificateAuthorityPropertiesFormat",
"description": "Properties of the certificate authority."
},
"name": {
"type": "string",
"description": "Name of the CA certificate."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyCertificateAuthorityPropertiesFormat": {
"properties": {
"keyVaultSecretId": {
"type": "string",
"description": "Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyRuleGroup": {
"properties": {
"properties": {
Expand Down Expand Up @@ -901,13 +819,6 @@
},
"description": "Array of Application Protocols."
},
"targetUrls": {
"type": "array",
"description": "List of Urls for this rule condition.",
"items": {
"type": "string"
}
},
"targetFqdns": {
"type": "array",
"description": "List of FQDNs for this rule condition.",
Expand Down Expand Up @@ -975,10 +886,6 @@
"items": {
"type": "string"
}
},
"terminateTLS": {
"type": "boolean",
"description": "Terminate TLS connections for this rule."
}
}
},
Expand Down Expand Up @@ -1152,18 +1059,6 @@
},
"description": "Response for ListFirewallPolicyRuleGroups API service call."
},
"FirewallPolicyIntrusionSystemMode": {
"type": "string",
"description": "The operation mode for Intrusion system mode.",
"enum": [
"Enabled",
"Disabled"
],
"x-ms-enum": {
"name": "FirewallPolicyIntrusionSystemMode",
"modelAsString": true
}
},
"FirewallPolicyThreatIntelWhitelist": {
"description": "ThreatIntel Whitelist for Firewall Policy.",
"x-ms-discriminator-value": "FirewallPolicyThreatIntelWhitelist",
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -566,10 +566,6 @@
"type": "string",
"readOnly": true,
"description": "A unique read-only string that changes whenever the resource is updated."
},
"identity": {
"$ref": "./network.json#/definitions/ManagedServiceIdentity",
"description": "The identity of the firewall policy."
}
},
"allOf": [
Expand Down Expand Up @@ -623,91 +619,13 @@
"description": "ThreatIntel Whitelist for Firewall Policy.",
"$ref": "#/definitions/FirewallPolicyThreatIntelWhitelist"
},
"intrusionSystemMode": {
"description": "The operation mode for Intrusion system.",
"$ref": "#/definitions/FirewallPolicyIntrusionSystemMode"
},
"transportSecurity": {
"description": "TLS Configuration definition.",
"$ref": "#/definitions/FirewallPolicyTransportSecurity"
},
"dnsSettings": {
"description": "DNS Proxy Settings definition.",
"$ref": "#/definitions/DnsSettings"
}
},
"description": "Firewall Policy definition."
},
"FirewallPolicyTransportSecurity": {
"properties": {
"certificateAuthority": {
"$ref": "#/definitions/FirewallPolicyCertificateAuthority",
"description": "The CA used for intermediate CA generation."
},
"excludedDomains": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of domains which are excluded from TLS termination."
},
"trustedRootCertificates": {
"type": "array",
"items": {
"$ref": "#/definitions/FirewallPolicyTrustedRootCertificate",
"description": "A list of certificates which are to be trusted by the firewall."
},
"description": "Certificates which are to be trusted by the firewall."
}
},
"description": "Configuration needed to perform TLS termination & initiation."
},
"FirewallPolicyTrustedRootCertificate": {
"properties": {
"properties": {
"x-ms-client-flatten": true,
"$ref": "#/definitions/FirewallPolicyTrustedRootCertificatePropertiesFormat",
"description": "Properties of the trusted root authorities."
},
"name": {
"type": "string",
"description": "Name of the trusted root certificate that is unique within a firewall policy."
}
},
"description": "Trusted Root certificates of a firewall policy."
},
"FirewallPolicyTrustedRootCertificatePropertiesFormat": {
"properties": {
"keyVaultSecretId": {
"type": "string",
"description": "Secret Id of (base-64 encoded unencrypted pfx) the public certificate data stored in KeyVault."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyCertificateAuthority": {
"properties": {
"properties": {
"x-ms-client-flatten": true,
"$ref": "#/definitions/FirewallPolicyCertificateAuthorityPropertiesFormat",
"description": "Properties of the certificate authority."
},
"name": {
"type": "string",
"description": "Name of the CA certificate."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyCertificateAuthorityPropertiesFormat": {
"properties": {
"keyVaultSecretId": {
"type": "string",
"description": "Secret Id of (base-64 encoded unencrypted pfx) 'Secret' or 'Certificate' object stored in KeyVault."
}
},
"description": "Trusted Root certificates properties for tls."
},
"FirewallPolicyRuleCollectionGroup": {
"properties": {
"properties": {
Expand Down Expand Up @@ -900,13 +818,6 @@
},
"description": "Array of Application Protocols."
},
"targetUrls": {
"type": "array",
"description": "List of Urls for this rule condition.",
"items": {
"type": "string"
}
},
"targetFqdns": {
"type": "array",
"description": "List of FQDNs for this rule.",
Expand All @@ -927,10 +838,6 @@
"items": {
"type": "string"
}
},
"terminateTLS": {
"type": "boolean",
"description": "Terminate TLS connections for this rule."
}
},
"description": "Rule of type application."
Expand Down Expand Up @@ -1166,18 +1073,6 @@
},
"description": "Response for ListFirewallPolicyRuleCollectionGroups API service call."
},
"FirewallPolicyIntrusionSystemMode": {
"type": "string",
"description": "The operation mode for Intrusion system mode.",
"enum": [
"Enabled",
"Disabled"
],
"x-ms-enum": {
"name": "FirewallPolicyIntrusionSystemMode",
"modelAsString": true
}
},
"FirewallPolicyThreatIntelWhitelist": {
"description": "ThreatIntel Whitelist for Firewall Policy.",
"x-ms-discriminator-value": "FirewallPolicyThreatIntelWhitelist",
Expand Down