This directory contains common AutoREST.PowerShell configurations for Identity.Governance v1.0 and/or beta modules.
require:
- $(this-folder)/../readme.graph.mdsee https://github.com/Azure/autorest/blob/master/docs/powershell/directives.md
directive:
#Prevent cmdlets with the below operation Ids from being generated to allow for aliasing as a result of breaking changes in 2.18.0 and 2.17.0. The affected operation Ids starts from connectedOrganization_DeleteExternalSponsorGraphBPreRef$
- remove-path-by-operation: ^identityGovernance_(Get|Create|Update|Set|Delete)EntitlementManagement$|^identityGovernance\.entitlementManagement(_.*AccessPackageResourceRoleScope|\.accessPackageResourceRoleScope.*|\.accessPackageAssignmentPolicy\..*|\.accessPackageAssignmentRequest\..*|\.accessPackageAssignmentResourceRole\..*|\.accessPackageAssignment\..*|\.accessPackageCatalog\..*|\.accessPackageResourceRequest\..*|\.accessPackageResource\..*|\.accessPackage\..*)|^identityGovernance\.accessReview\.definition\.instance\.decision\.instance(\.|_).*|^identityGovernance\.accessReview\.definition\.instance\.stage\.decision\..*$|^privilegedAccess.roleAssignmentRequest.(resource|roleDefinition).*$|^privilegedAccess.roleAssignment.(resource|roleDefinition).*$|^privilegedAccess.roleDefinition.(resource|roleSetting).*$|^privilegedAccess.roleSetting.(resource|roleDefinition).*$|^identityGovernance_.*LifecycleWorkflow|^identityGovernance\.lifecycleWorkflow\.deletedItem\.(workflow|run|userProcessingResult)\..*|^identityGovernance\.lifecycleWorkflow\.workflow\.run\.userProcessingResult\.taskProcessingResult.*|^identityGovernance\.lifecycleWorkflow\.workflow\.userProcessingResult\.taskProcessingResult.*|^identityGovernance_.*RoleManagementAlert$|^identityGovernance\.roleManagementAlert_refresh$|^identityGovernance\.entitlementManagement\.resourceRoleScope_.*Scope$|^identityGovernance.entitlementManagement.connectedOrganization_DeleteExternalSponsorGraphBPreRef$|^identityGovernance.entitlementManagement.connectedOrganization_DeleteInternalSponsorGraphBPreRef$
# Remove cmdlets
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AccessPackageRefAccessPackageCatalog$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AccessPackageGraphRefCatalog$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentAccessPackage$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AssignmentGraphRefAccessPackage$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AssignmentAccessPackage$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentAccessPackageAssignmentPolicy$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentAccessPackageAssignmentRequest$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentAccessPackageAssignmentResourceRole$
remove: true
- where:
verb: Get|New
subject: (.*)(EntitlementManagement)AccessPackageAssignmentApproval$
remove: true
- where:
verb: Get|New
subject: (.*)(EntitlementManagement)AccessPackageAssignmentApprovalStep$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageAssignmentPolicyAccessPackage$
remove: true
- where:
verb: Get|Set|Remove
subject: (.*)(EntitlementManagement)AccessPackageAssignmentPolicyRefAccessPackage$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentPolicyAccessPackageCatalog$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageAssignmentRequestAccessPackage$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AssignmentRequestAccessPackage$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentRequestAccessPackageAssignment$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AssignmentRequestAssignment$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AccessPackageAssignmentRequestRefAccessPackage$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AssignmentRequestGraphRefAccessPackage$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AssignmentRequestGraphRefAssignment$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AssignmentRequestGraphRefRequestor$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentRequestRequestor$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AssignmentRequestRequestor$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentResourceRoleAccessPackageAssignment$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentResourceRoleAccessPackageResourceRole$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentResourceRoleAccessPackageResourceScope$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentResourceRoleAccessPackageSubject$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentTarget$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AssignmentTarget$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AssignmentGraphRefTarget$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageCatalogAccessPackage$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)CatalogGraphRefAccessPackage$
remove: true
- where:
verb: Get|New|Remove|Update|Set|Invoke
subject: (.*)(EntitlementManagement)CatalogAccessPackage$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)CatalogAccessPackageCatalog$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageResourceAccessPackageResourceEnvironment$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AccessPackageResourceRefAccessPackageResourceEnvironment$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageResourceAccessPackageResourceRole$
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageResourceAccessPackageResourceScope$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageResourceEnvironmentAccessPackageResource$
remove: true
- where:
verb: Get|New
subject: (.*)(EntitlementManagement)AccessPackageResourceEnvironmentRefAccessPackageResource$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageResourceRequestAccessPackageResource$
remove: true
- where:
verb: Get|Remove|Set
subject: (.*)(EntitlementManagement)AccessPackageResourceRequestRefAccessPackageResource$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageResourceRequestRequestor$
remove: true
- where:
verb: Get
subject: (.*)(EntitlementManagement)AccessPackageResourceRoleScope$
remove: true
- where:
verb: New
subject: (.*)(EntitlementManagement)AccessPackageAssignment$
remove: true
- where:
verb: New|Invoke|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentResourceRole$
remove: true
- where:
verb: New|Remove|Update|Get
subject: (.*)(EntitlementManagement)AccessPackageCatalogAccessPackageResourceRole$
variant: (Create.*|Delete.*|Update.*|Get.*) # Removes all variants except List.*
remove: true
- where:
verb: New|Remove|Update|Get
subject: (.*)(EntitlementManagement)AccessPackageCatalogAccessPackageResourceScope$
variant: (Create.*|Delete.*|Update.*|Get.*)
remove: true
- where:
verb: New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageResource$
remove: true
- where:
verb: New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageResourceEnvironment$
remove: true
- where:
verb: Search
subject: (.*)(EntitlementManagement)AccessPackage$
remove: true
- where:
verb: Search|Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageCatalog$
variant: ^(Search.*|Get1|List1|GetViaIdentity1|Create1|CreateExpanded1|CreateViaIdentity|CreateViaIdentityExpanded|Update1|UpdateExpanded1|UpdateViaIdentity1|UpdateViaIdentityExpanded1|Delete1|DeleteViaIdentity1)$
remove: true
- where:
verb: New|Remove|Update|Get
subject: (.*)(EntitlementManagement)AccessPackageCatalogAccessPackageResource$
variant: (Create.*|Delete.*|Update.*|Get.*)
remove: true
- where:
verb: Get|New|Remove|Update
subject: (.*)(EntitlementManagement)AccessPackageAssignmentPolicy$
variant: ^(Get1|List1|GetViaIdentity1|Create1|CreateExpanded1|CreateViaIdentity|CreateViaIdentityExpanded|Update1|UpdateExpanded1|UpdateViaIdentity1|UpdateViaIdentityExpanded1|Delete1|DeleteViaIdentity1)$
remove: true
- where:
subject: (.*)Privileged(Access|AccessResource)RoleAssignmentRequest$
variant: ^(Update1|UpdateExpanded1|UpdateViaIdentity1|UpdateViaIdentityExpanded1)$
remove: true
- where:
verb: Remove
subject: (.*)(EntitlementManagement)Setting$
remove: true
- where:
verb: Get|Update
subject: (.*)(IdentityGovernance)$
remove: true
- where:
verb: Get|Remove|Update
subject: (.*)(IdentityGovernance)AccessReview$
remove: true
- where:
verb: New|Remove|Update|Get|Invoke
subject: (.*)(IdentityGovernance)AppConsent$
remove: true
- where:
verb: New|Remove|Update
subject: ^(.*)EntitlementManagementConnectedOrganization(Internal|External)Sponsor$
remove: true
- where:
verb: Get|New|Remove|Update|Remove|Set
subject: ^(.*)AgreementFile$
variant: (.*\d)
remove: true
- where:
verb: Remove
subject: ^EntitlementManagementAccessPackageAssignment$
remove: true
# Rename cmdlets with duplicates in their name.
- where:
subject: ^(BusinessFlowTemplate)(\1)+
set:
subject: $1
- where:
subject: ^(ProgramControlType)(\1)+
set:
subject: $1
- where:
subject: ^(PrivilegedRoleAssignment)(\1)+
set:
subject: $1
- where:
subject: ^(PrivilegedRoleAssignmentRequest)(\1)+
set:
subject: $1
- where:
subject: ^(PrivilegedOperationEvent)(\1)+
set:
subject: $1
# Rename cmdlets
- where:
verb: Get
subject: ^(PrivilegedRole)(Assignment)$
set:
subject: $1Role$2
- where:
subject: (.*)(IdentityGovernance)(EntitlementManagement)(.*)$
set:
subject: $1$3$4