{FrontDoor} Add sub command for waf (#9532)

* sub command

* fix

* add exceptions

* remove unused sdk

* update

* fix line too long

* version update

---------

Co-authored-by: JingnanXu <jingnanxu@microsoft.com>

Author: Ptnan7

linter_exclusions.yml

@@ -2197,6 +2197,36 @@ network front-door waf-policy update:
     captcha_expiration_in_minutes:
       rule_exclusions:
       - option_length_too_long
+network front-door waf-policy managed-rules:
+  rule_exclusions:
+  - require_wait_command_if_no_wait
+network front-door waf-policy managed-rules exclusion:
+  rule_exclusions:
+  - require_wait_command_if_no_wait
+network front-door waf-policy managed-rules exclusion list:
+  rule_exclusions:
+  - no_ids_for_list_commands
+network front-door waf-policy managed-rules list:
+  rule_exclusions:
+  - no_ids_for_list_commands
+network front-door waf-policy managed-rules override:
+  rule_exclusions:
+  - require_wait_command_if_no_wait
+network front-door waf-policy managed-rules override list:
+  rule_exclusions:
+  - no_ids_for_list_commands
+network front-door waf-policy rule:
+  rule_exclusions:
+  - require_wait_command_if_no_wait
+network front-door waf-policy rule list:
+  rule_exclusions:
+  - no_ids_for_list_commands
+network front-door waf-policy rule match-condition:
+  rule_exclusions:
+  - require_wait_command_if_no_wait
+network front-door waf-policy rule match-condition list:
+  rule_exclusions:
+  - no_ids_for_list_commands
 network manager connect-config create:
   parameters:
     delete_existing_peering:

src/front-door/HISTORY.rst

@@ -3,6 +3,10 @@
 Release History
 ===============
 
+2.0.0
+++++++
+* Fix a bug in ddos rule set creation.
+
 1.4.0
 ++++++
 * Bump swagger version to 2025-10-01

src/front-door/azext_front_door/aaz/latest/network/front_door/waf_policy/managed_rule_definition/__cmd_group.py

@@ -0,0 +1,23 @@
+# --------------------------------------------------------------------------------------------
+# Copyright (c) Microsoft Corporation. All rights reserved.
+# Licensed under the MIT License. See License.txt in the project root for license information.
+#
+# Code generated by aaz-dev-tools
+# --------------------------------------------------------------------------------------------
+
+# pylint: skip-file
+# flake8: noqa
+
+from azure.cli.core.aaz import *
+
+
+@register_command_group(
+    "network front-door waf-policy managed-rule-definition",
+)
+class __CMDGroup(AAZCommandGroup):
+    """Manage Managed Rule Definition
+    """
+    pass
+
+
+__all__ = ["__CMDGroup"]

src/front-door/azext_front_door/aaz/latest/network/front_door/waf_policy/managed_rule_definition/__init__.py

@@ -0,0 +1,12 @@
+# --------------------------------------------------------------------------------------------
+# Copyright (c) Microsoft Corporation. All rights reserved.
+# Licensed under the MIT License. See License.txt in the project root for license information.
+#
+# Code generated by aaz-dev-tools
+# --------------------------------------------------------------------------------------------
+
+# pylint: skip-file
+# flake8: noqa
+
+from .__cmd_group import *
+from ._list import *

src/front-door/azext_front_door/aaz/latest/network/front_door/waf_policy/managed_rule_definition/_list.py

@@ -0,0 +1,236 @@
+# --------------------------------------------------------------------------------------------
+# Copyright (c) Microsoft Corporation. All rights reserved.
+# Licensed under the MIT License. See License.txt in the project root for license information.
+#
+# Code generated by aaz-dev-tools
+# --------------------------------------------------------------------------------------------
+
+# pylint: skip-file
+# flake8: noqa
+
+from azure.cli.core.aaz import *
+
+
+@register_command(
+    "network front-door waf-policy managed-rule-definition list",
+)
+class List(AAZCommand):
+    """List all available managed rule sets.
+
+    :example: List Policies ManagedRuleSets in a Resource Group
+        az network front-door waf-policy managed-rule-definition list
+    """
+
+    _aaz_info = {
+        "version": "2025-10-01",
+        "resources": [
+            ["mgmt-plane", "/subscriptions/{}/providers/microsoft.network/frontdoorwebapplicationfirewallmanagedrulesets", "2025-10-01"],
+        ]
+    }
+
+    AZ_SUPPORT_PAGINATION = True
+
+    def _handler(self, command_args):
+        super()._handler(command_args)
+        return self.build_paging(self._execute_operations, self._output)
+
+    _args_schema = None
+
+    @classmethod
+    def _build_arguments_schema(cls, *args, **kwargs):
+        if cls._args_schema is not None:
+            return cls._args_schema
+        cls._args_schema = super()._build_arguments_schema(*args, **kwargs)
+
+        # define Arg Group ""
+        return cls._args_schema
+
+    def _execute_operations(self):
+        self.pre_operations()
+        self.ManagedRuleSetsList(ctx=self.ctx)()
+        self.post_operations()
+
+    @register_callback
+    def pre_operations(self):
+        pass
+
+    @register_callback
+    def post_operations(self):
+        pass
+
+    def _output(self, *args, **kwargs):
+        result = self.deserialize_output(self.ctx.vars.instance.value, client_flatten=True)
+        next_link = self.deserialize_output(self.ctx.vars.instance.next_link)
+        return result, next_link
+
+    class ManagedRuleSetsList(AAZHttpOperation):
+        CLIENT_TYPE = "MgmtClient"
+
+        def __call__(self, *args, **kwargs):
+            request = self.make_request()
+            session = self.client.send_request(request=request, stream=False, **kwargs)
+            if session.http_response.status_code in [200]:
+                return self.on_200(session)
+
+            return self.on_error(session.http_response)
+
+        @property
+        def url(self):
+            return self.client.format_url(
+                "/subscriptions/{subscriptionId}/providers/Microsoft.Network/FrontDoorWebApplicationFirewallManagedRuleSets",
+                **self.url_parameters
+            )
+
+        @property
+        def method(self):
+            return "GET"
+
+        @property
+        def error_format(self):
+            return "ODataV4Format"
+
+        @property
+        def url_parameters(self):
+            parameters = {
+                **self.serialize_url_param(
+                    "subscriptionId", self.ctx.subscription_id,
+                    required=True,
+                ),
+            }
+            return parameters
+
+        @property
+        def query_parameters(self):
+            parameters = {
+                **self.serialize_query_param(
+                    "api-version", "2025-10-01",
+                    required=True,
+                ),
+            }
+            return parameters
+
+        @property
+        def header_parameters(self):
+            parameters = {
+                **self.serialize_header_param(
+                    "Accept", "application/json",
+                ),
+            }
+            return parameters
+
+        def on_200(self, session):
+            data = self.deserialize_http_content(session)
+            self.ctx.set_var(
+                "instance",
+                data,
+                schema_builder=self._build_schema_on_200
+            )
+
+        _schema_on_200 = None
+
+        @classmethod
+        def _build_schema_on_200(cls):
+            if cls._schema_on_200 is not None:
+                return cls._schema_on_200
+
+            cls._schema_on_200 = AAZObjectType()
+
+            _schema_on_200 = cls._schema_on_200
+            _schema_on_200.next_link = AAZStrType(
+                serialized_name="nextLink",
+            )
+            _schema_on_200.value = AAZListType(
+                flags={"read_only": True},
+            )
+
+            value = cls._schema_on_200.value
+            value.Element = AAZObjectType()
+
+            _element = cls._schema_on_200.value.Element
+            _element.id = AAZStrType(
+                flags={"read_only": True},
+            )
+            _element.location = AAZStrType()
+            _element.name = AAZStrType(
+                flags={"read_only": True},
+            )
+            _element.properties = AAZObjectType(
+                flags={"client_flatten": True},
+            )
+            _element.tags = AAZDictType()
+            _element.type = AAZStrType(
+                flags={"read_only": True},
+            )
+
+            properties = cls._schema_on_200.value.Element.properties
+            properties.provisioning_state = AAZStrType(
+                serialized_name="provisioningState",
+                flags={"read_only": True},
+            )
+            properties.rule_groups = AAZListType(
+                serialized_name="ruleGroups",
+                flags={"read_only": True},
+            )
+            properties.rule_set_id = AAZStrType(
+                serialized_name="ruleSetId",
+                flags={"read_only": True},
+            )
+            properties.rule_set_type = AAZStrType(
+                serialized_name="ruleSetType",
+                flags={"read_only": True},
+            )
+            properties.rule_set_version = AAZStrType(
+                serialized_name="ruleSetVersion",
+                flags={"read_only": True},
+            )
+
+            rule_groups = cls._schema_on_200.value.Element.properties.rule_groups
+            rule_groups.Element = AAZObjectType()
+
+            _element = cls._schema_on_200.value.Element.properties.rule_groups.Element
+            _element.description = AAZStrType(
+                flags={"read_only": True},
+            )
+            _element.rule_group_name = AAZStrType(
+                serialized_name="ruleGroupName",
+                flags={"read_only": True},
+            )
+            _element.rules = AAZListType(
+                flags={"read_only": True},
+            )
+
+            rules = cls._schema_on_200.value.Element.properties.rule_groups.Element.rules
+            rules.Element = AAZObjectType()
+
+            _element = cls._schema_on_200.value.Element.properties.rule_groups.Element.rules.Element
+            _element.default_action = AAZStrType(
+                serialized_name="defaultAction",
+                flags={"read_only": True},
+            )
+            _element.default_sensitivity = AAZStrType(
+                serialized_name="defaultSensitivity",
+                flags={"read_only": True},
+            )
+            _element.default_state = AAZStrType(
+                serialized_name="defaultState",
+                flags={"read_only": True},
+            )
+            _element.description = AAZStrType(
+                flags={"read_only": True},
+            )
+            _element.rule_id = AAZStrType(
+                serialized_name="ruleId",
+                flags={"read_only": True},
+            )
+
+            tags = cls._schema_on_200.value.Element.tags
+            tags.Element = AAZStrType()
+
+            return cls._schema_on_200
+
+
+class _ListHelper:
+    """Helper class for List"""
+
+
+__all__ = ["List"]

src/front-door/azext_front_door/azext_metadata.json

@@ -1,3 +1,3 @@
 {
-    "azext.minCliCoreVersion": "2.70.0"
+    "azext.minCliCoreVersion": "2.75.0"
 }