Cloudflare 3.0.3 - Modified workbook file, fixed workbook metadata to reference Cloudflare parser and CCF connector; added deployment prerequisites note to connector description#14246
Conversation
…t prerequisites note to connector description
|
Workbooks screenshots 
|
|
This PR is a follow-up to the previous PR #14115 |
|
Hi @v-maheshbh, I do not have access to the aka.ms portal to create the required short link referenced in the Workbooks file (CloudflareCCF.json). Could you please help create the following short link? https://aka.ms/sentinel-CloudflareDefinition-parser The previous aka.ms short link (https://aka.ms/sentinel-CloudflareDataConnector-parser) was pointing to the parser for the deprecated Cloudflare Solution instead of the new Cloudflare CCF solution. Thank you. |
There was a problem hiding this comment.
Pull request overview
Note
Copilot was unable to run its full agentic suite in this review.
This PR updates the Cloudflare CCF solution workbook and metadata to align with the Cloudflare parser/connector identifiers, and adds a prerequisite notice to the connector UI text.
Changes:
- Updated Cloudflare CCF workbook queries/fields and parser reference link.
- Updated workbook metadata dependencies and workbook template path.
- Bumped solution version to 3.0.3 and updated package UI/test parameters.
Reviewed changes
Copilot reviewed 7 out of 10 changed files in this pull request and generated 7 comments.
Show a summary per file
| File | Description |
|---|---|
| Workbooks/WorkbooksMetadata.json | Updates Cloudflare workbook metadata dependencies and template filename reference. |
| Solutions/Cloudflare CCF/Workbooks/CloudflareCCF.json | Updates workbook parser note/link and multiple queries to new field names; updates fromTemplateId. |
| Solutions/Cloudflare CCF/ReleaseNotes.md | Adds 3.0.3 release notes entry. |
| Solutions/Cloudflare CCF/Package/testParameters.json | Updates workbook display name default value used by deployment parameters. |
| Solutions/Cloudflare CCF/Package/createUiDefinition.json | Updates workbook label/text shown during solution deployment. |
| Solutions/Cloudflare CCF/Data/Solution_Cloudflare.json | Updates workbook path and bumps solution version to 3.0.3. |
| Solutions/Cloudflare CCF/Data Connectors/CloudflareLog_CCF/CloudflareLog_ConnectorDefinition.json | Adds deployment prerequisite note to connector descriptionMarkdown. |
|
Kindly review above PR comments. Thanks! |
|
Hi @v-maheshbh, I have gone through the GitHub copilot comments and will update the changes accordingly wherever required. Thank you |
|
Hi @v-maheshbh, I have reviewed and addressed all the GitHub co-pilot comments on this PR. Kindly review the changes and let me know if any further updates are required. Thank you |
|
Hi @v-maheshbh, Could you please confirm whether the aka.ms short link (https://aka.ms/sentinel-CloudflareDefinition-parser) will be created before merging the PR or after the PR has been merged? Thank you |
once the PR has been merged. Thanks! |
|
Hi @v-maheshbh, Thank you for the confirmation. Please let me know once the aka.ms link is created. Thank you |
|
Hi @rohan-sacumen 
Thanks! |
|
Hi @v-maheshbh, I will try to reproduce the validation failure on my end by performing custom deployment of the main template. Thank you |
|
Hi @v-maheshbh, I was able to reproduce the validation failure encountered during the custom deployment of the main template. Root Cause: Resolution: az rest --method DELETE After deleting the existing metadata, the custom deployment of the main template completes successfully without the BadRequestException. Thank you |
|
Hi @v-maheshbh, I wanted to follow up on my previous comment regarding the metadata validation failure (Metadata already exists with the same parentId: Parser-Cloudflare). I have provided the root cause and resolution details approximately a day ago. Could you please review the comment and let me know if any further changes or clarifications are needed on my end to proceed with the merge? Thank you |
|
Hi @v-maheshbh, Just following up again regarding the metadata validation failure issue: I had shared the root cause and proposed resolution earlier, but I have not yet received a response. Could you please review the previous comment and let me know if any additional changes or clarifications are required from my end? Looking forward to your guidance Thank you |
I will validate this by deploying the solution in a different workspace. Thanks! |
|
Hi @v-maheshbh, Thank you for the update! Please let me know if you need any additional details or run into any issues during the validation. I am happy to assist. Looking forward to your findings. Thank you |
The solution deployment to Content Hub is successful. However, it is observed that version 3.0.2 is not live in Content Hub, and this PR has been packaged with version 3.0.3. Thanks! |
|
Hi @v-maheshbh, Thank you for the update and for confirming the successful deployment! Regarding version 3.0.2 not being live in Content Hub — this was due to a broken aka.ms link (https://aka.ms/sentinel-CloudflareDataConnector-parse) that caused the solution to fail the best practices tests validation during Content Hub publishing as shown in the screenshot. As a result, version 3.0.2 was never published live. This PR (version 3.0.3) includes the fix for the broken link (i.e creating a new aka.ms link https://aka.ms/sentinel-CloudflareDefinition-parser which points to the Parser of the new Cloudflare CCF solution) along with the other changes, and is intended to be the version that goes live in Content Hub. Please let me know if any further clarification or changes are needed to proceed with the merge. Thank you |
Can these changes be packaged under version 3.0.2? Thanks! |
|
Hi @v-maheshbh, Thank you for raising this. However, based on the official Microsoft Sentinel solution packaging guidelines, these changes cannot be packaged under version 3.0.2. The official documentation states:
Since version 3.0.2 was already created (even though it did not go live in Content Hub), reusing it would not align with the versioning guidelines. Hence, version 3.0.3 is the correct version for this package. References:
Please let me know if you need any further clarification. Thank you |
|
https://aka.ms/sentinel-CloudflareDefinition-parser The short link has been created. Thanks! |
PR Summary
This PR focuses on Fixing workbooks, workbook metadata to correctly reference the Cloudflare Parser and Cloudflare CCF connector, along with adding deployment prerequisite notes to the connector UI page.
What’s included in this PR:
Change(s):
Reason for Change(s):
Version Updated:
Testing Completed:
Pending / Follow-ups: