Alert Rule Policy Filter #277

lvets · 2024-01-05T15:20:26Z

Describe the bug

It's unclear from the documentation how to use the alertRulePolicyFilter part in the Terraform alert rule resource.

Let's say the API returns the following (removed some fields from the snippet for clearity):

{
  "policyScanConfigId": "xxx",
  "name": "Prisma Default Alert Rule",
  "description": "Prisma Default alert rule to scan all policies associated with label Prisma_Cloud  and all account added to 'Default Account Group'",
...
  "target": {
    "accountGroups": [
      "xxx"
    ],
    "excludedAccounts": [],
    "regions": [],
    "tags": [],
    "alertRulePolicyFilter": {
      "policy.severity": [],
      "policy.label": [
        "Prisma_Cloud"
      ],
      "cloud.type": [],
      "policy.complianceStandard": []
    }
  },
...
}

How can I use the alertRulePolicyFilter parameters in the Terraform prismacloud_alert_rule resource:

    "alertRulePolicyFilter": {
      "policy.severity": [],
      "policy.label": [
        "Prisma_Cloud"
      ],
      "cloud.type": [],
      "policy.complianceStandard": []
    }

Or do I need to first filter the prismacloud_policies data resource and then use those policies in a policies argument in the prismacloud_alert_rule resource?

The text was updated successfully, but these errors were encountered:

bryonwinger · 2024-06-18T23:02:00Z

Attention to this would be great. We really need this fixed for our use cases.

lvets added the bug label Jan 5, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Alert Rule Policy Filter #277

Alert Rule Policy Filter #277

lvets commented Jan 5, 2024

bryonwinger commented Jun 18, 2024

Alert Rule Policy Filter #277

Alert Rule Policy Filter #277

Comments

lvets commented Jan 5, 2024

Describe the bug

bryonwinger commented Jun 18, 2024