MICROSOFT.AUTHORIZATION
AccessReviewDefaultSettings_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewDefaultSettings_Put
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
enum_AccessReviewScheduleSettingsDefaultDecision := [ "Approve", "Deny", "Recommendation" ]
valid {
input.Body.mailNotificationsEnabled == BOOLEAN
input.Body.reminderNotificationsEnabled == BOOLEAN
input.Body.defaultDecisionEnabled == BOOLEAN
input.Body.justificationRequiredOnApproval == BOOLEAN
input.Body.defaultDecision == enum_AccessReviewScheduleSettingsDefaultDecision[_]
input.Body.autoApplyDecisionsEnabled == BOOLEAN
input.Body.recommendationsEnabled == BOOLEAN
input.Body.recommendationLookBackDuration == STRING
input.Body.instanceDurationInDays == INTEGER
input.Body.recurrence.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.recurrence.pattern.interval == INTEGER
input.Body.recurrence.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.recurrence.range.numberOfOccurrences == INTEGER
input.Body.recurrence.range.startDate == STRING
input.Body.recurrence.range.endDate == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinitionInstance_GenerateDownloadUri
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.historyDefinitionId == STRING
input.ReqMap.instanceId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinitionInstances_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinition_Create
enum_AccessReviewHistoryDefinitionPropertiesDecisions := [ "Approve", "Deny", "NotReviewed", "DontKnow", "NotNotified" ]
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
valid {
input.Body.displayName == STRING
input.Body.decisions[_] == enum_AccessReviewHistoryDefinitionPropertiesDecisions[_]
input.Body.scopes[_].inactiveDuration == STRING
input.Body.scopes[_].expandNestedMemberships == BOOLEAN
input.Body.scopes[_].includeInheritedAccess == BOOLEAN
input.Body.scopes[_].includeAccessBelowResource == BOOLEAN
input.Body.scopes[_].excludeResourceId == STRING
input.Body.scopes[_].excludeRoleDefinitionId == STRING
input.Body.settings.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.settings.pattern.interval == INTEGER
input.Body.settings.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.settings.range.numberOfOccurrences == INTEGER
input.Body.settings.range.startDate == STRING
input.Body.settings.range.endDate == STRING
input.Body.instances[_].properties.reviewHistoryPeriodStartDateTime == STRING
input.Body.instances[_].properties.reviewHistoryPeriodEndDateTime == STRING
input.Body.instances[_].properties.displayName == STRING
input.Body.instances[_].properties.runDateTime == STRING
input.Body.instances[_].properties.fulfilledDateTime == STRING
input.Body.instances[_].properties.expiration == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinition_DeleteById
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinitions_GetById
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewHistoryDefinitions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstanceContactedReviewers_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstanceDecisions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstanceMyDecisions_GetById
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.ReqMap.decisionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstanceMyDecisions_List
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstanceMyDecisions_Patch
enum_AccessReviewDecisionInsightPropertiesType := [ "userSignInInsight" ]
enum_AccessReviewDecisionPropertiesDecision := [ "Approve", "Deny", "NotReviewed", "DontKnow", "NotNotified" ]
valid {
input.Body.decision == enum_AccessReviewDecisionPropertiesDecision[_]
input.Body.justification == STRING
input.Body.insights[_].properties.type == enum_AccessReviewDecisionInsightPropertiesType[_]
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.ReqMap.decisionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstance_AcceptRecommendations
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstance_ApplyDecisions
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstance_ResetDecisions
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstance_SendReminders
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstance_Stop
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstancesAssignedForMyApproval_GetById
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstancesAssignedForMyApproval_List
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewInstances_Create
valid {
input.Body.startDateTime == STRING
input.Body.endDateTime == STRING
input.Body.reviewers[_].principalId == STRING
input.Body.backupReviewers[_].principalId == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstances_GetById
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewInstances_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewScheduleDefinitionsAssignedForMyApproval_List
valid {
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}AccessReviewScheduleDefinitions_CreateOrUpdateById
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
enum_AccessReviewScheduleSettingsDefaultDecision := [ "Approve", "Deny", "Recommendation" ]
valid {
input.Body.displayName == STRING
input.Body.descriptionForAdmins == STRING
input.Body.descriptionForReviewers == STRING
input.Body.settings.mailNotificationsEnabled == BOOLEAN
input.Body.settings.reminderNotificationsEnabled == BOOLEAN
input.Body.settings.defaultDecisionEnabled == BOOLEAN
input.Body.settings.justificationRequiredOnApproval == BOOLEAN
input.Body.settings.defaultDecision == enum_AccessReviewScheduleSettingsDefaultDecision[_]
input.Body.settings.autoApplyDecisionsEnabled == BOOLEAN
input.Body.settings.recommendationsEnabled == BOOLEAN
input.Body.settings.recommendationLookBackDuration == STRING
input.Body.settings.instanceDurationInDays == INTEGER
input.Body.settings.recurrence.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.settings.recurrence.pattern.interval == INTEGER
input.Body.settings.recurrence.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.settings.recurrence.range.numberOfOccurrences == INTEGER
input.Body.settings.recurrence.range.startDate == STRING
input.Body.settings.recurrence.range.endDate == STRING
input.Body.reviewers[_].principalId == STRING
input.Body.backupReviewers[_].principalId == STRING
input.Body.instances[_].properties.startDateTime == STRING
input.Body.instances[_].properties.endDateTime == STRING
input.Body.instances[_].properties.reviewers[_].principalId == STRING
input.Body.instances[_].properties.backupReviewers[_].principalId == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewScheduleDefinitions_DeleteById
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewScheduleDefinitions_GetById
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewScheduleDefinitions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AccessReviewScheduleDefinitions_Stop
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}AlertConfigurations_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertConfigurations_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertConfigurations_Update
valid {
input.Body.properties.isEnabled == BOOLEAN
input.Body.properties.alertConfigurationType == STRING
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertDefinitions_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertDefinitions_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertIncidents_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.ReqMap.alertIncidentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertIncidents_ListForScope
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertIncidents_Remediate
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.ReqMap.alertIncidentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}AlertOperation_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.operationId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Alerts_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Alerts_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Alerts_Refresh
valid {
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Alerts_RefreshAll
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Alerts_Update
valid {
input.Body.properties.isActive == BOOLEAN
input.ReqMap.scope == STRING
input.ReqMap.alertId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ClassicAdministrators_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}DataPolicyManifests_GetByPolicyMode
valid {
input.ReqMap.policyMode == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}DataPolicyManifests_List
valid {
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}DenyAssignments_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.denyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}DenyAssignments_GetById
valid {
input.ReqMap.denyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}DenyAssignments_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}DenyAssignments_ListForResource
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}DenyAssignments_ListForResourceGroup
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}DenyAssignments_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}EligibleChildResources_Get
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}GlobalAdministrator_ElevateAccess
valid {
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ManagementLocks_CreateOrUpdateAtResourceGroupLevel
enum_ManagementLockPropertiesLevel := [ "NotSpecified", "CanNotDelete", "ReadOnly" ]
valid {
input.Body.properties.level == enum_ManagementLockPropertiesLevel[_]
input.Body.properties.notes == STRING
input.Body.properties.owners[_].applicationId == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_CreateOrUpdateAtResourceLevel
enum_ManagementLockPropertiesLevel := [ "NotSpecified", "CanNotDelete", "ReadOnly" ]
valid {
input.Body.properties.level == enum_ManagementLockPropertiesLevel[_]
input.Body.properties.notes == STRING
input.Body.properties.owners[_].applicationId == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_CreateOrUpdateAtSubscriptionLevel
enum_ManagementLockPropertiesLevel := [ "NotSpecified", "CanNotDelete", "ReadOnly" ]
valid {
input.Body.properties.level == enum_ManagementLockPropertiesLevel[_]
input.Body.properties.notes == STRING
input.Body.properties.owners[_].applicationId == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}ManagementLocks_CreateOrUpdateByScope
enum_ManagementLockPropertiesLevel := [ "NotSpecified", "CanNotDelete", "ReadOnly" ]
valid {
input.Body.properties.level == enum_ManagementLockPropertiesLevel[_]
input.Body.properties.notes == STRING
input.Body.properties.owners[_].applicationId == STRING
input.ReqMap.scope == STRING
input.ReqMap.lockName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ManagementLocks_DeleteAtResourceGroupLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_DeleteAtResourceLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_DeleteAtSubscriptionLevel
valid {
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}ManagementLocks_DeleteByScope
valid {
input.ReqMap.scope == STRING
input.ReqMap.lockName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ManagementLocks_GetAtResourceGroupLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_GetAtResourceLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_GetAtSubscriptionLevel
valid {
input.ReqMap.lockName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}ManagementLocks_GetByScope
valid {
input.ReqMap.scope == STRING
input.ReqMap.lockName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ManagementLocks_ListAtResourceGroupLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_ListAtResourceLevel
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ManagementLocks_ListAtSubscriptionLevel
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}ManagementLocks_ListByScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Operations_List
valid {
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Permissions_ListForResource
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}Permissions_ListForResourceGroup
valid {
input.ReqMap.ResourceGroup == STRING
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}PolicyAssignments_Create
enum_IdentityType := [ "SystemAssigned", "UserAssigned", "None" ]
enum_OverrideKind := [ "policyEffect" ]
enum_PolicyAssignmentPropertiesAssignmentType := [ "NotSpecified", "System", "SystemHidden", "Custom" ]
enum_PolicyAssignmentPropertiesEnforcementMode := [ "Default", "DoNotEnforce" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.displayName == STRING
input.Body.properties.policyDefinitionId == STRING
input.Body.properties.notScopes[_] == STRING
input.Body.properties.parameters.STRING.value.STRING == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.enforcementMode == enum_PolicyAssignmentPropertiesEnforcementMode[_]
input.Body.properties.nonComplianceMessages[_].message == STRING
input.Body.properties.nonComplianceMessages[_].policyDefinitionReferenceId == STRING
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.overrides[_].kind == enum_OverrideKind[_]
input.Body.properties.overrides[_].value == STRING
input.Body.properties.overrides[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.overrides[_].selectors[_].in[_] == STRING
input.Body.properties.overrides[_].selectors[_].notIn[_] == STRING
input.Body.properties.assignmentType == enum_PolicyAssignmentPropertiesAssignmentType[_]
input.Body.location == STRING
input.Body.identity.type == enum_IdentityType[_]
input.Body.identity.userAssignedIdentities.STRING == {}
input.ReqMap.scope == STRING
input.ReqMap.policyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_CreateById
enum_IdentityType := [ "SystemAssigned", "UserAssigned", "None" ]
enum_OverrideKind := [ "policyEffect" ]
enum_PolicyAssignmentPropertiesAssignmentType := [ "NotSpecified", "System", "SystemHidden", "Custom" ]
enum_PolicyAssignmentPropertiesEnforcementMode := [ "Default", "DoNotEnforce" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.displayName == STRING
input.Body.properties.policyDefinitionId == STRING
input.Body.properties.notScopes[_] == STRING
input.Body.properties.parameters.STRING.value.STRING == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.enforcementMode == enum_PolicyAssignmentPropertiesEnforcementMode[_]
input.Body.properties.nonComplianceMessages[_].message == STRING
input.Body.properties.nonComplianceMessages[_].policyDefinitionReferenceId == STRING
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.overrides[_].kind == enum_OverrideKind[_]
input.Body.properties.overrides[_].value == STRING
input.Body.properties.overrides[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.overrides[_].selectors[_].in[_] == STRING
input.Body.properties.overrides[_].selectors[_].notIn[_] == STRING
input.Body.properties.assignmentType == enum_PolicyAssignmentPropertiesAssignmentType[_]
input.Body.location == STRING
input.Body.identity.type == enum_IdentityType[_]
input.Body.identity.userAssignedIdentities.STRING == {}
input.ReqMap.policyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.policyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_DeleteById
valid {
input.ReqMap.policyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.policyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_GetById
valid {
input.ReqMap.policyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyAssignments_ListForManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_ListForResource
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}PolicyAssignments_ListForResourceGroup
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}PolicyAssignments_Update
enum_IdentityType := [ "SystemAssigned", "UserAssigned", "None" ]
enum_OverrideKind := [ "policyEffect" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.overrides[_].kind == enum_OverrideKind[_]
input.Body.properties.overrides[_].value == STRING
input.Body.properties.overrides[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.overrides[_].selectors[_].in[_] == STRING
input.Body.properties.overrides[_].selectors[_].notIn[_] == STRING
input.Body.location == STRING
input.Body.identity.type == enum_IdentityType[_]
input.Body.identity.userAssignedIdentities.STRING == {}
input.ReqMap.scope == STRING
input.ReqMap.policyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyAssignments_UpdateById
enum_IdentityType := [ "SystemAssigned", "UserAssigned", "None" ]
enum_OverrideKind := [ "policyEffect" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.overrides[_].kind == enum_OverrideKind[_]
input.Body.properties.overrides[_].value == STRING
input.Body.properties.overrides[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.overrides[_].selectors[_].in[_] == STRING
input.Body.properties.overrides[_].selectors[_].notIn[_] == STRING
input.Body.location == STRING
input.Body.identity.type == enum_IdentityType[_]
input.Body.identity.userAssignedIdentities.STRING == {}
input.ReqMap.policyAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_CreateOrUpdate
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicyDefinitionVersionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicyDefinitionVersionPropertiesPolicyType[_]
input.Body.properties.mode == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.policyRule.STRING == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.version == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitionVersions_CreateOrUpdateAtManagementGroup
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicyDefinitionVersionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicyDefinitionVersionPropertiesPolicyType[_]
input.Body.properties.mode == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.policyRule.STRING == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.version == STRING
input.ReqMap.managementGroupName == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitionVersions_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitionVersions_GetAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_GetBuiltIn
valid {
input.ReqMap.policyDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitionVersions_ListAll
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitionVersions_ListAllAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_ListAllBuiltins
valid {
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_ListBuiltIn
valid {
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicyDefinitionVersions_ListByManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_CreateOrUpdate
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicyDefinitionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicyDefinitionPropertiesPolicyType[_]
input.Body.properties.mode == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.policyRule.STRING == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.version == STRING
input.Body.properties.versions[_] == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitions_CreateOrUpdateAtManagementGroup
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicyDefinitionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicyDefinitionPropertiesPolicyType[_]
input.Body.properties.mode == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.policyRule.STRING == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.version == STRING
input.Body.properties.versions[_] == STRING
input.ReqMap.managementGroupId == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitions_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitions_GetAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_GetBuiltIn
valid {
input.ReqMap.policyDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyDefinitions_ListBuiltIn
valid {
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicyDefinitions_ListByManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicyExemptions_CreateOrUpdate
enum_PolicyExemptionPropertiesAssignmentScopeValidation := [ "Default", "DoNotValidate" ]
enum_PolicyExemptionPropertiesExemptionCategory := [ "Waiver", "Mitigated" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.policyAssignmentId == STRING
input.Body.properties.policyDefinitionReferenceIds[_] == STRING
input.Body.properties.exemptionCategory == enum_PolicyExemptionPropertiesExemptionCategory[_]
input.Body.properties.expiresOn == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.assignmentScopeValidation == enum_PolicyExemptionPropertiesAssignmentScopeValidation[_]
input.ReqMap.scope == STRING
input.ReqMap.policyExemptionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyExemptions_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.policyExemptionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyExemptions_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.policyExemptionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyExemptions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicyExemptions_ListForManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicyExemptions_ListForResource
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.parentResourcePath == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}PolicyExemptions_ListForResourceGroup
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}PolicyExemptions_Update
enum_PolicyExemptionUpdatePropertiesAssignmentScopeValidation := [ "Default", "DoNotValidate" ]
enum_SelectorKind := [ "resourceLocation", "resourceType", "resourceWithoutLocation", "policyDefinitionReferenceId" ]
valid {
input.Body.properties.resourceSelectors[_].name == STRING
input.Body.properties.resourceSelectors[_].selectors[_].kind == enum_SelectorKind[_]
input.Body.properties.resourceSelectors[_].selectors[_].in[_] == STRING
input.Body.properties.resourceSelectors[_].selectors[_].notIn[_] == STRING
input.Body.properties.assignmentScopeValidation == enum_PolicyExemptionUpdatePropertiesAssignmentScopeValidation[_]
input.ReqMap.scope == STRING
input.ReqMap.policyExemptionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_CreateOrUpdate
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicySetDefinitionVersionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicySetDefinitionVersionPropertiesPolicyType[_]
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.policyDefinitions[_].policyDefinitionId == STRING
input.Body.properties.policyDefinitions[_].parameters.STRING.value.STRING == STRING
input.Body.properties.policyDefinitions[_].policyDefinitionReferenceId == STRING
input.Body.properties.policyDefinitions[_].groupNames[_] == STRING
input.Body.properties.policyDefinitionGroups[_].name == STRING
input.Body.properties.policyDefinitionGroups[_].displayName == STRING
input.Body.properties.policyDefinitionGroups[_].category == STRING
input.Body.properties.policyDefinitionGroups[_].description == STRING
input.Body.properties.policyDefinitionGroups[_].additionalMetadataId == STRING
input.Body.properties.version == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitionVersions_CreateOrUpdateAtManagementGroup
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicySetDefinitionVersionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicySetDefinitionVersionPropertiesPolicyType[_]
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.policyDefinitions[_].policyDefinitionId == STRING
input.Body.properties.policyDefinitions[_].parameters.STRING.value.STRING == STRING
input.Body.properties.policyDefinitions[_].policyDefinitionReferenceId == STRING
input.Body.properties.policyDefinitions[_].groupNames[_] == STRING
input.Body.properties.policyDefinitionGroups[_].name == STRING
input.Body.properties.policyDefinitionGroups[_].displayName == STRING
input.Body.properties.policyDefinitionGroups[_].category == STRING
input.Body.properties.policyDefinitionGroups[_].description == STRING
input.Body.properties.policyDefinitionGroups[_].additionalMetadataId == STRING
input.Body.properties.version == STRING
input.ReqMap.managementGroupName == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitionVersions_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitionVersions_GetAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_GetBuiltIn
valid {
input.ReqMap.policySetDefinitionName == STRING
input.ReqMap.policyDefinitionVersion == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitionVersions_ListAll
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitionVersions_ListAllAtManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_ListAllBuiltins
valid {
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_ListBuiltIn
valid {
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicySetDefinitionVersions_ListByManagementGroup
valid {
input.ReqMap.managementGroupName == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_CreateOrUpdate
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicySetDefinitionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicySetDefinitionPropertiesPolicyType[_]
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.policyDefinitions[_].policyDefinitionId == STRING
input.Body.properties.policyDefinitions[_].parameters.STRING.value.STRING == STRING
input.Body.properties.policyDefinitions[_].policyDefinitionReferenceId == STRING
input.Body.properties.policyDefinitions[_].groupNames[_] == STRING
input.Body.properties.policyDefinitionGroups[_].name == STRING
input.Body.properties.policyDefinitionGroups[_].displayName == STRING
input.Body.properties.policyDefinitionGroups[_].category == STRING
input.Body.properties.policyDefinitionGroups[_].description == STRING
input.Body.properties.policyDefinitionGroups[_].additionalMetadataId == STRING
input.Body.properties.version == STRING
input.Body.properties.versions[_] == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitions_CreateOrUpdateAtManagementGroup
enum_ParameterDefinitionsValueType := [ "String", "Array", "Object", "Boolean", "Integer", "Float", "DateTime" ]
enum_PolicySetDefinitionPropertiesPolicyType := [ "NotSpecified", "BuiltIn", "Custom", "Static" ]
valid {
input.Body.properties.policyType == enum_PolicySetDefinitionPropertiesPolicyType[_]
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.metadata.STRING == STRING
input.Body.properties.parameters.STRING.type == enum_ParameterDefinitionsValueType[_]
input.Body.properties.parameters.STRING.allowedValues[_].STRING == STRING
input.Body.properties.parameters.STRING.defaultValue.STRING == STRING
input.Body.properties.parameters.STRING.schema.STRING == STRING
input.Body.properties.parameters.STRING.metadata.displayName == STRING
input.Body.properties.parameters.STRING.metadata.description == STRING
input.Body.properties.parameters.STRING.metadata.strongType == STRING
input.Body.properties.parameters.STRING.metadata.assignPermissions == BOOLEAN
input.Body.properties.policyDefinitions[_].policyDefinitionId == STRING
input.Body.properties.policyDefinitions[_].parameters.STRING.value.STRING == STRING
input.Body.properties.policyDefinitions[_].policyDefinitionReferenceId == STRING
input.Body.properties.policyDefinitions[_].groupNames[_] == STRING
input.Body.properties.policyDefinitionGroups[_].name == STRING
input.Body.properties.policyDefinitionGroups[_].displayName == STRING
input.Body.properties.policyDefinitionGroups[_].category == STRING
input.Body.properties.policyDefinitionGroups[_].description == STRING
input.Body.properties.policyDefinitionGroups[_].additionalMetadataId == STRING
input.Body.properties.version == STRING
input.Body.properties.versions[_] == STRING
input.ReqMap.managementGroupId == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitions_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitions_GetAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_GetBuiltIn
valid {
input.ReqMap.policySetDefinitionName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}PolicySetDefinitions_ListBuiltIn
valid {
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PolicySetDefinitions_ListByManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.$top == INTEGER
input.ProviderMetadata.Region == STRING
}PrivateLinkAssociation_Delete
valid {
input.ReqMap.groupId == STRING
input.ReqMap.plaId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PrivateLinkAssociation_Get
valid {
input.ReqMap.groupId == STRING
input.ReqMap.plaId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PrivateLinkAssociation_List
valid {
input.ReqMap.groupId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}PrivateLinkAssociation_Put
enum_PrivateLinkAssociationPropertiesPublicNetworkAccess := [ "Enabled", "Disabled" ]
valid {
input.Body.properties.privateLink == STRING
input.Body.properties.publicNetworkAccess == enum_PrivateLinkAssociationPropertiesPublicNetworkAccess[_]
input.ReqMap.groupId == STRING
input.ReqMap.plaId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ProviderOperationsMetadata_Get
valid {
input.ReqMap.resourceProviderNamespace == STRING
input.Qs.api-version == STRING
input.Qs.$expand == STRING
input.ProviderMetadata.Region == STRING
}ProviderOperationsMetadata_List
valid {
input.Qs.api-version == STRING
input.Qs.$expand == STRING
input.ProviderMetadata.Region == STRING
}ResourceManagementPrivateLink_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.rmplName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ResourceManagementPrivateLink_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.rmplName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ResourceManagementPrivateLink_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}ResourceManagementPrivateLink_ListByResourceGroup
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}ResourceManagementPrivateLink_Put
valid {
input.Body.location == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.rmplName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}RoleAssignmentApprovalStep_GetById
valid {
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentApprovalStep_Patch
enum_RoleAssignmentApprovalStepPropertiesReviewResult := [ "Approve", "Deny", "NotReviewed" ]
valid {
input.Body.displayName == STRING
input.Body.reviewResult == enum_RoleAssignmentApprovalStepPropertiesReviewResult[_]
input.Body.justification == STRING
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentApprovalStep_Put
enum_RoleAssignmentApprovalStepPropertiesReviewResult := [ "Approve", "Deny", "NotReviewed" ]
valid {
input.Body.displayName == STRING
input.Body.reviewResult == enum_RoleAssignmentApprovalStepPropertiesReviewResult[_]
input.Body.justification == STRING
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentApprovalSteps_List
valid {
input.ReqMap.approvalId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentApproval_GetById
valid {
input.ReqMap.approvalId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentApproval_List
valid {
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentMetrics_GetMetricsForSubscription
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}RoleAssignmentScheduleInstances_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleInstanceName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleInstances_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleRequests_Cancel
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleRequests_Create
enum_RoleAssignmentScheduleRequestPropertiesRequestType := [ "AdminAssign", "AdminRemove", "AdminUpdate", "AdminExtend", "AdminRenew", "SelfActivate", "SelfDeactivate", "SelfExtend", "SelfRenew" ]
enum_RoleAssignmentScheduleRequestPropertiesScheduleInfoExpirationType := [ "AfterDuration", "AfterDateTime", "NoExpiration" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.requestType == enum_RoleAssignmentScheduleRequestPropertiesRequestType[_]
input.Body.properties.targetRoleAssignmentScheduleId == STRING
input.Body.properties.targetRoleAssignmentScheduleInstanceId == STRING
input.Body.properties.scheduleInfo.startDateTime == STRING
input.Body.properties.scheduleInfo.expiration.type == enum_RoleAssignmentScheduleRequestPropertiesScheduleInfoExpirationType[_]
input.Body.properties.scheduleInfo.expiration.endDateTime == STRING
input.Body.properties.scheduleInfo.expiration.duration == STRING
input.Body.properties.linkedRoleEligibilityScheduleId == STRING
input.Body.properties.justification == STRING
input.Body.properties.ticketInfo.ticketNumber == STRING
input.Body.properties.ticketInfo.ticketSystem == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleRequests_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleRequests_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentScheduleRequests_Validate
enum_RoleAssignmentScheduleRequestPropertiesRequestType := [ "AdminAssign", "AdminRemove", "AdminUpdate", "AdminExtend", "AdminRenew", "SelfActivate", "SelfDeactivate", "SelfExtend", "SelfRenew" ]
enum_RoleAssignmentScheduleRequestPropertiesScheduleInfoExpirationType := [ "AfterDuration", "AfterDateTime", "NoExpiration" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.requestType == enum_RoleAssignmentScheduleRequestPropertiesRequestType[_]
input.Body.properties.targetRoleAssignmentScheduleId == STRING
input.Body.properties.targetRoleAssignmentScheduleInstanceId == STRING
input.Body.properties.scheduleInfo.startDateTime == STRING
input.Body.properties.scheduleInfo.expiration.type == enum_RoleAssignmentScheduleRequestPropertiesScheduleInfoExpirationType[_]
input.Body.properties.scheduleInfo.expiration.endDateTime == STRING
input.Body.properties.scheduleInfo.expiration.duration == STRING
input.Body.properties.linkedRoleEligibilityScheduleId == STRING
input.Body.properties.justification == STRING
input.Body.properties.ticketInfo.ticketNumber == STRING
input.Body.properties.ticketInfo.ticketSystem == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentSchedules_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentScheduleName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignmentSchedules_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_Create
enum_RoleAssignmentPropertiesPrincipalType := [ "User", "Group", "ServicePrincipal", "ForeignGroup", "Device" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.principalType == enum_RoleAssignmentPropertiesPrincipalType[_]
input.Body.properties.description == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.Body.properties.delegatedManagedIdentityResourceId == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_CreateById
enum_RoleAssignmentPropertiesPrincipalType := [ "User", "Group", "ServicePrincipal", "ForeignGroup", "Device" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.principalType == enum_RoleAssignmentPropertiesPrincipalType[_]
input.Body.properties.description == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.Body.properties.delegatedManagedIdentityResourceId == STRING
input.ReqMap.roleAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentName == STRING
input.Qs.api-version == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_DeleteById
valid {
input.ReqMap.roleAssignmentId == STRING
input.Qs.api-version == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentName == STRING
input.Qs.api-version == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_GetById
valid {
input.ReqMap.roleAssignmentId == STRING
input.Qs.api-version == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_ListForResource
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.ReqMap.resourceProviderNamespace == STRING
input.ReqMap.resourceType == STRING
input.ReqMap.resourceName == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}RoleAssignments_ListForResourceGroup
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.ResourceGroup == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
input.ProviderMetadata.ResourceGroup == STRING
}RoleAssignments_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.Qs.tenantId == STRING
input.Qs.$skipToken == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_ListForSubscription
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.Qs.tenantId == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}RoleAssignments_Validate
enum_RoleAssignmentPropertiesPrincipalType := [ "User", "Group", "ServicePrincipal", "ForeignGroup", "Device" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.principalType == enum_RoleAssignmentPropertiesPrincipalType[_]
input.Body.properties.description == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.Body.properties.delegatedManagedIdentityResourceId == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleAssignments_ValidateById
enum_RoleAssignmentPropertiesPrincipalType := [ "User", "Group", "ServicePrincipal", "ForeignGroup", "Device" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.principalType == enum_RoleAssignmentPropertiesPrincipalType[_]
input.Body.properties.description == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.Body.properties.delegatedManagedIdentityResourceId == STRING
input.ReqMap.roleAssignmentId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleDefinitions_CreateOrUpdate
valid {
input.Body.properties.roleName == STRING
input.Body.properties.description == STRING
input.Body.properties.type == STRING
input.Body.properties.permissions[_].actions[_] == STRING
input.Body.properties.permissions[_].notActions[_] == STRING
input.Body.properties.permissions[_].dataActions[_] == STRING
input.Body.properties.permissions[_].notDataActions[_] == STRING
input.Body.properties.assignableScopes[_] == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleDefinitions_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleDefinitions_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleDefinitions_GetById
valid {
input.ReqMap.roleId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleDefinitions_List
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleInstances_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleInstanceName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleInstances_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleRequests_Cancel
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleRequests_Create
enum_RoleEligibilityScheduleRequestPropertiesRequestType := [ "AdminAssign", "AdminRemove", "AdminUpdate", "AdminExtend", "AdminRenew", "SelfActivate", "SelfDeactivate", "SelfExtend", "SelfRenew" ]
enum_RoleEligibilityScheduleRequestPropertiesScheduleInfoExpirationType := [ "AfterDuration", "AfterDateTime", "NoExpiration" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.requestType == enum_RoleEligibilityScheduleRequestPropertiesRequestType[_]
input.Body.properties.scheduleInfo.startDateTime == STRING
input.Body.properties.scheduleInfo.expiration.type == enum_RoleEligibilityScheduleRequestPropertiesScheduleInfoExpirationType[_]
input.Body.properties.scheduleInfo.expiration.endDateTime == STRING
input.Body.properties.scheduleInfo.expiration.duration == STRING
input.Body.properties.targetRoleEligibilityScheduleId == STRING
input.Body.properties.targetRoleEligibilityScheduleInstanceId == STRING
input.Body.properties.justification == STRING
input.Body.properties.ticketInfo.ticketNumber == STRING
input.Body.properties.ticketInfo.ticketSystem == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleRequests_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleRequests_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilityScheduleRequests_Validate
enum_RoleEligibilityScheduleRequestPropertiesRequestType := [ "AdminAssign", "AdminRemove", "AdminUpdate", "AdminExtend", "AdminRenew", "SelfActivate", "SelfDeactivate", "SelfExtend", "SelfRenew" ]
enum_RoleEligibilityScheduleRequestPropertiesScheduleInfoExpirationType := [ "AfterDuration", "AfterDateTime", "NoExpiration" ]
valid {
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.principalId == STRING
input.Body.properties.requestType == enum_RoleEligibilityScheduleRequestPropertiesRequestType[_]
input.Body.properties.scheduleInfo.startDateTime == STRING
input.Body.properties.scheduleInfo.expiration.type == enum_RoleEligibilityScheduleRequestPropertiesScheduleInfoExpirationType[_]
input.Body.properties.scheduleInfo.expiration.endDateTime == STRING
input.Body.properties.scheduleInfo.expiration.duration == STRING
input.Body.properties.targetRoleEligibilityScheduleId == STRING
input.Body.properties.targetRoleEligibilityScheduleInstanceId == STRING
input.Body.properties.justification == STRING
input.Body.properties.ticketInfo.ticketNumber == STRING
input.Body.properties.ticketInfo.ticketSystem == STRING
input.Body.properties.condition == STRING
input.Body.properties.conditionVersion == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleRequestName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilitySchedules_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleEligibilityScheduleName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleEligibilitySchedules_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.$filter == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicies_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicies_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicies_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicies_Update
enum_RoleManagementPolicyRuleType := [ "RoleManagementPolicyApprovalRule", "RoleManagementPolicyAuthenticationContextRule", "RoleManagementPolicyEnablementRule", "RoleManagementPolicyExpirationRule", "RoleManagementPolicyNotificationRule" ]
valid {
input.Body.properties.scope == STRING
input.Body.properties.displayName == STRING
input.Body.properties.description == STRING
input.Body.properties.isOrganizationDefault == BOOLEAN
input.Body.properties.rules[_].id == STRING
input.Body.properties.rules[_].ruleType == enum_RoleManagementPolicyRuleType[_]
input.Body.properties.rules[_].target.caller == STRING
input.Body.properties.rules[_].target.operations[_] == STRING
input.Body.properties.rules[_].target.level == STRING
input.Body.properties.rules[_].target.targetObjects[_] == STRING
input.Body.properties.rules[_].target.inheritableSettings[_] == STRING
input.Body.properties.rules[_].target.enforcedSettings[_] == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicyAssignments_Create
valid {
input.Body.properties.scope == STRING
input.Body.properties.roleDefinitionId == STRING
input.Body.properties.policyId == STRING
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicyAssignments_Delete
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicyAssignments_Get
valid {
input.ReqMap.scope == STRING
input.ReqMap.roleManagementPolicyAssignmentName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}RoleManagementPolicyAssignments_ListForScope
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewDefaultSettings_Get
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewDefaultSettings_Put
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
enum_AccessReviewScheduleSettingsDefaultDecision := [ "Approve", "Deny", "Recommendation" ]
valid {
input.Body.mailNotificationsEnabled == BOOLEAN
input.Body.reminderNotificationsEnabled == BOOLEAN
input.Body.defaultDecisionEnabled == BOOLEAN
input.Body.justificationRequiredOnApproval == BOOLEAN
input.Body.defaultDecision == enum_AccessReviewScheduleSettingsDefaultDecision[_]
input.Body.autoApplyDecisionsEnabled == BOOLEAN
input.Body.recommendationsEnabled == BOOLEAN
input.Body.recommendationLookBackDuration == STRING
input.Body.instanceDurationInDays == INTEGER
input.Body.recurrence.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.recurrence.pattern.interval == INTEGER
input.Body.recurrence.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.recurrence.range.numberOfOccurrences == INTEGER
input.Body.recurrence.range.startDate == STRING
input.Body.recurrence.range.endDate == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinitionInstance_GenerateDownloadUri
valid {
input.ReqMap.scope == STRING
input.ReqMap.historyDefinitionId == STRING
input.ReqMap.instanceId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinitionInstances_List
valid {
input.ReqMap.scope == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinition_Create
enum_AccessReviewHistoryDefinitionPropertiesDecisions := [ "Approve", "Deny", "NotReviewed", "DontKnow", "NotNotified" ]
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
valid {
input.Body.displayName == STRING
input.Body.decisions[_] == enum_AccessReviewHistoryDefinitionPropertiesDecisions[_]
input.Body.scopes[_].inactiveDuration == STRING
input.Body.scopes[_].expandNestedMemberships == BOOLEAN
input.Body.scopes[_].includeInheritedAccess == BOOLEAN
input.Body.scopes[_].includeAccessBelowResource == BOOLEAN
input.Body.scopes[_].excludeResourceId == STRING
input.Body.scopes[_].excludeRoleDefinitionId == STRING
input.Body.settings.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.settings.pattern.interval == INTEGER
input.Body.settings.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.settings.range.numberOfOccurrences == INTEGER
input.Body.settings.range.startDate == STRING
input.Body.settings.range.endDate == STRING
input.Body.instances[_].properties.reviewHistoryPeriodStartDateTime == STRING
input.Body.instances[_].properties.reviewHistoryPeriodEndDateTime == STRING
input.Body.instances[_].properties.displayName == STRING
input.Body.instances[_].properties.runDateTime == STRING
input.Body.instances[_].properties.fulfilledDateTime == STRING
input.Body.instances[_].properties.expiration == STRING
input.ReqMap.scope == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinition_DeleteById
valid {
input.ReqMap.scope == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinitions_GetById
valid {
input.ReqMap.scope == STRING
input.ReqMap.historyDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewHistoryDefinitions_List
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstanceContactedReviewers_List
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstanceDecisions_List
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstance_ApplyDecisions
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstance_RecordAllDecisions
enum_RecordAllDecisionsPropertiesDecision := [ "Approve", "Deny" ]
valid {
input.Body.decision == enum_RecordAllDecisionsPropertiesDecision[_]
input.Body.justification == STRING
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstance_ResetDecisions
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstance_SendReminders
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstance_Stop
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstances_Create
valid {
input.Body.startDateTime == STRING
input.Body.endDateTime == STRING
input.Body.reviewers[_].principalId == STRING
input.Body.backupReviewers[_].principalId == STRING
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstances_GetById
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewInstances_List
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewScheduleDefinitions_CreateOrUpdateById
enum_AccessReviewRecurrencePatternType := [ "weekly", "absoluteMonthly" ]
enum_AccessReviewRecurrenceRangeType := [ "endDate", "noEnd", "numbered" ]
enum_AccessReviewScheduleSettingsDefaultDecision := [ "Approve", "Deny", "Recommendation" ]
valid {
input.Body.displayName == STRING
input.Body.descriptionForAdmins == STRING
input.Body.descriptionForReviewers == STRING
input.Body.settings.mailNotificationsEnabled == BOOLEAN
input.Body.settings.reminderNotificationsEnabled == BOOLEAN
input.Body.settings.defaultDecisionEnabled == BOOLEAN
input.Body.settings.justificationRequiredOnApproval == BOOLEAN
input.Body.settings.defaultDecision == enum_AccessReviewScheduleSettingsDefaultDecision[_]
input.Body.settings.autoApplyDecisionsEnabled == BOOLEAN
input.Body.settings.recommendationsEnabled == BOOLEAN
input.Body.settings.recommendationLookBackDuration == STRING
input.Body.settings.instanceDurationInDays == INTEGER
input.Body.settings.recurrence.pattern.type == enum_AccessReviewRecurrencePatternType[_]
input.Body.settings.recurrence.pattern.interval == INTEGER
input.Body.settings.recurrence.range.type == enum_AccessReviewRecurrenceRangeType[_]
input.Body.settings.recurrence.range.numberOfOccurrences == INTEGER
input.Body.settings.recurrence.range.startDate == STRING
input.Body.settings.recurrence.range.endDate == STRING
input.Body.reviewers[_].principalId == STRING
input.Body.backupReviewers[_].principalId == STRING
input.Body.instances[_].properties.startDateTime == STRING
input.Body.instances[_].properties.endDateTime == STRING
input.Body.instances[_].properties.reviewers[_].principalId == STRING
input.Body.instances[_].properties.backupReviewers[_].principalId == STRING
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewScheduleDefinitions_DeleteById
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewScheduleDefinitions_GetById
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewScheduleDefinitions_List
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}ScopeAccessReviewScheduleDefinitions_Stop
valid {
input.ReqMap.scope == STRING
input.ReqMap.scheduleDefinitionId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApprovalStep_GetById
valid {
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApprovalStep_Patch
enum_RoleAssignmentApprovalStepPropertiesReviewResult := [ "Approve", "Deny", "NotReviewed" ]
valid {
input.Body.displayName == STRING
input.Body.reviewResult == enum_RoleAssignmentApprovalStepPropertiesReviewResult[_]
input.Body.justification == STRING
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApprovalStep_Put
enum_RoleAssignmentApprovalStepPropertiesReviewResult := [ "Approve", "Deny", "NotReviewed" ]
valid {
input.Body.displayName == STRING
input.Body.reviewResult == enum_RoleAssignmentApprovalStepPropertiesReviewResult[_]
input.Body.justification == STRING
input.ReqMap.approvalId == STRING
input.ReqMap.stageId == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApprovalSteps_List
valid {
input.ReqMap.approvalId == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApproval_GetById
valid {
input.ReqMap.approvalId == STRING
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}ScopeRoleAssignmentApproval_List
valid {
input.ReqMap.scope == STRING
input.Qs.api-version == STRING
input.Qs.$filter == STRING
input.ProviderMetadata.Region == STRING
}TenantLevelAccessReviewInstanceContactedReviewers_List
valid {
input.ReqMap.scheduleDefinitionId == STRING
input.ReqMap.id == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}VariableValues_CreateOrUpdate
valid {
input.Body.properties.values[_].columnName == STRING
input.Body.properties.values[_].columnValue.STRING == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}VariableValues_CreateOrUpdateAtManagementGroup
valid {
input.Body.properties.values[_].columnName == STRING
input.Body.properties.values[_].columnValue.STRING == STRING
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}VariableValues_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}VariableValues_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}VariableValues_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}VariableValues_GetAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.ReqMap.variableValueName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}VariableValues_List
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}VariableValues_ListForManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Variables_CreateOrUpdate
valid {
input.Body.properties.columns[_].columnName == STRING
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}Variables_CreateOrUpdateAtManagementGroup
valid {
input.Body.properties.columns[_].columnName == STRING
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Variables_Delete
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}Variables_DeleteAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Variables_Get
valid {
input.ReqMap.SubscriptionID == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}Variables_GetAtManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.ReqMap.variableName == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Variables_List
valid {
input.ReqMap.SubscriptionID == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
input.ProviderMetadata.SubscriptionID == STRING
}Variables_ListForManagementGroup
valid {
input.ReqMap.managementGroupId == STRING
input.Qs.api-version == STRING
input.ProviderMetadata.Region == STRING
}Updated 2 days ago