MICROSOFT.AAD

DomainServiceOperations_List

valid {
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
}

DomainServices_CreateOrUpdate

enum_ConfigDiagnosticsValidatorResultStatus := [ "None", "Running", "OK", "Failure", "Warning", "Skipped" ]
enum_DomainSecuritySettingsChannelBinding := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsKerberosArmoring := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsKerberosRc4Encryption := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsLdapSigning := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsNtlmV1 := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncKerberosPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncNtlmPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncOnPremPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsTlsV1 := [ "Enabled", "Disabled" ]
enum_DomainServicePropertiesFilteredSync := [ "Enabled", "Disabled" ]
enum_DomainServicePropertiesSyncScope := [ "All", "CloudOnly" ]
enum_LdapsSettingsExternalAccess := [ "Enabled", "Disabled" ]
enum_LdapsSettingsLdaps := [ "Enabled", "Disabled" ]
enum_NotificationSettingsNotifyDcAdmins := [ "Enabled", "Disabled" ]
enum_NotificationSettingsNotifyGlobalAdmins := [ "Enabled", "Disabled" ]

valid {
    input.Body.properties.domainName == STRING
    input.Body.properties.replicaSets[_].location == STRING
    input.Body.properties.replicaSets[_].subnetId == STRING
    input.Body.properties.ldapsSettings.ldaps == enum_LdapsSettingsLdaps[_]
    input.Body.properties.ldapsSettings.pfxCertificate == STRING
    input.Body.properties.ldapsSettings.pfxCertificatePassword == STRING
    input.Body.properties.ldapsSettings.externalAccess == enum_LdapsSettingsExternalAccess[_]
    input.Body.properties.resourceForestSettings.settings[_].trustedDomainFqdn == STRING
    input.Body.properties.resourceForestSettings.settings[_].trustDirection == STRING
    input.Body.properties.resourceForestSettings.settings[_].friendlyName == STRING
    input.Body.properties.resourceForestSettings.settings[_].remoteDnsIps == STRING
    input.Body.properties.resourceForestSettings.settings[_].trustPassword == STRING
    input.Body.properties.resourceForestSettings.resourceForest == STRING
    input.Body.properties.domainSecuritySettings.ntlmV1 == enum_DomainSecuritySettingsNtlmV1[_]
    input.Body.properties.domainSecuritySettings.tlsV1 == enum_DomainSecuritySettingsTlsV1[_]
    input.Body.properties.domainSecuritySettings.syncNtlmPasswords == enum_DomainSecuritySettingsSyncNtlmPasswords[_]
    input.Body.properties.domainSecuritySettings.syncKerberosPasswords == enum_DomainSecuritySettingsSyncKerberosPasswords[_]
    input.Body.properties.domainSecuritySettings.syncOnPremPasswords == enum_DomainSecuritySettingsSyncOnPremPasswords[_]
    input.Body.properties.domainSecuritySettings.kerberosRc4Encryption == enum_DomainSecuritySettingsKerberosRc4Encryption[_]
    input.Body.properties.domainSecuritySettings.kerberosArmoring == enum_DomainSecuritySettingsKerberosArmoring[_]
    input.Body.properties.domainSecuritySettings.ldapSigning == enum_DomainSecuritySettingsLdapSigning[_]
    input.Body.properties.domainSecuritySettings.channelBinding == enum_DomainSecuritySettingsChannelBinding[_]
    input.Body.properties.domainConfigurationType == STRING
    input.Body.properties.sku == STRING
    input.Body.properties.filteredSync == enum_DomainServicePropertiesFilteredSync[_]
    input.Body.properties.syncScope == enum_DomainServicePropertiesSyncScope[_]
    input.Body.properties.notificationSettings.notifyGlobalAdmins == enum_NotificationSettingsNotifyGlobalAdmins[_]
    input.Body.properties.notificationSettings.notifyDcAdmins == enum_NotificationSettingsNotifyDcAdmins[_]
    input.Body.properties.notificationSettings.additionalRecipients[_] == STRING
    input.Body.properties.configDiagnostics.lastExecuted == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].validatorId == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].replicaSetSubnetDisplayName == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].status == enum_ConfigDiagnosticsValidatorResultStatus[_]
    input.Body.properties.configDiagnostics.validatorResults[_].issues[_].id == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].issues[_].descriptionParams[_] == STRING
    input.Body.location == STRING
    input.Body.tags.STRING == STRING
    input.Body.etag == STRING
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

DomainServices_Delete

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

DomainServices_Get

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

DomainServices_List

valid {
    input.ReqMap.SubscriptionID == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
}

DomainServices_ListByResourceGroup

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

DomainServices_Update

enum_ConfigDiagnosticsValidatorResultStatus := [ "None", "Running", "OK", "Failure", "Warning", "Skipped" ]
enum_DomainSecuritySettingsChannelBinding := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsKerberosArmoring := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsKerberosRc4Encryption := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsLdapSigning := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsNtlmV1 := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncKerberosPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncNtlmPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsSyncOnPremPasswords := [ "Enabled", "Disabled" ]
enum_DomainSecuritySettingsTlsV1 := [ "Enabled", "Disabled" ]
enum_DomainServicePropertiesFilteredSync := [ "Enabled", "Disabled" ]
enum_DomainServicePropertiesSyncScope := [ "All", "CloudOnly" ]
enum_LdapsSettingsExternalAccess := [ "Enabled", "Disabled" ]
enum_LdapsSettingsLdaps := [ "Enabled", "Disabled" ]
enum_NotificationSettingsNotifyDcAdmins := [ "Enabled", "Disabled" ]
enum_NotificationSettingsNotifyGlobalAdmins := [ "Enabled", "Disabled" ]

valid {
    input.Body.properties.domainName == STRING
    input.Body.properties.replicaSets[_].location == STRING
    input.Body.properties.replicaSets[_].subnetId == STRING
    input.Body.properties.ldapsSettings.ldaps == enum_LdapsSettingsLdaps[_]
    input.Body.properties.ldapsSettings.pfxCertificate == STRING
    input.Body.properties.ldapsSettings.pfxCertificatePassword == STRING
    input.Body.properties.ldapsSettings.externalAccess == enum_LdapsSettingsExternalAccess[_]
    input.Body.properties.resourceForestSettings.settings[_].trustedDomainFqdn == STRING
    input.Body.properties.resourceForestSettings.settings[_].trustDirection == STRING
    input.Body.properties.resourceForestSettings.settings[_].friendlyName == STRING
    input.Body.properties.resourceForestSettings.settings[_].remoteDnsIps == STRING
    input.Body.properties.resourceForestSettings.settings[_].trustPassword == STRING
    input.Body.properties.resourceForestSettings.resourceForest == STRING
    input.Body.properties.domainSecuritySettings.ntlmV1 == enum_DomainSecuritySettingsNtlmV1[_]
    input.Body.properties.domainSecuritySettings.tlsV1 == enum_DomainSecuritySettingsTlsV1[_]
    input.Body.properties.domainSecuritySettings.syncNtlmPasswords == enum_DomainSecuritySettingsSyncNtlmPasswords[_]
    input.Body.properties.domainSecuritySettings.syncKerberosPasswords == enum_DomainSecuritySettingsSyncKerberosPasswords[_]
    input.Body.properties.domainSecuritySettings.syncOnPremPasswords == enum_DomainSecuritySettingsSyncOnPremPasswords[_]
    input.Body.properties.domainSecuritySettings.kerberosRc4Encryption == enum_DomainSecuritySettingsKerberosRc4Encryption[_]
    input.Body.properties.domainSecuritySettings.kerberosArmoring == enum_DomainSecuritySettingsKerberosArmoring[_]
    input.Body.properties.domainSecuritySettings.ldapSigning == enum_DomainSecuritySettingsLdapSigning[_]
    input.Body.properties.domainSecuritySettings.channelBinding == enum_DomainSecuritySettingsChannelBinding[_]
    input.Body.properties.domainConfigurationType == STRING
    input.Body.properties.sku == STRING
    input.Body.properties.filteredSync == enum_DomainServicePropertiesFilteredSync[_]
    input.Body.properties.syncScope == enum_DomainServicePropertiesSyncScope[_]
    input.Body.properties.notificationSettings.notifyGlobalAdmins == enum_NotificationSettingsNotifyGlobalAdmins[_]
    input.Body.properties.notificationSettings.notifyDcAdmins == enum_NotificationSettingsNotifyDcAdmins[_]
    input.Body.properties.notificationSettings.additionalRecipients[_] == STRING
    input.Body.properties.configDiagnostics.lastExecuted == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].validatorId == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].replicaSetSubnetDisplayName == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].status == enum_ConfigDiagnosticsValidatorResultStatus[_]
    input.Body.properties.configDiagnostics.validatorResults[_].issues[_].id == STRING
    input.Body.properties.configDiagnostics.validatorResults[_].issues[_].descriptionParams[_] == STRING
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

OuContainerOperations_List

valid {
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
}

OuContainer_Create

valid {
    input.Body.accountName == STRING
    input.Body.spn == STRING
    input.Body.password == STRING
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.ReqMap.ouContainerName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

OuContainer_Delete

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.ReqMap.ouContainerName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

OuContainer_Get

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.ReqMap.ouContainerName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

OuContainer_List

valid {
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}

OuContainer_Update

valid {
    input.Body.accountName == STRING
    input.Body.spn == STRING
    input.Body.password == STRING
    input.ReqMap.SubscriptionID == STRING
    input.ReqMap.ResourceGroup == STRING
    input.ReqMap.domainServiceName == STRING
    input.ReqMap.ouContainerName == STRING
    input.Qs.api-version == STRING
    input.ProviderMetadata.Region == STRING
    input.ProviderMetadata.SubscriptionID == STRING
    input.ProviderMetadata.ResourceGroup == STRING
}