-
Notifications
You must be signed in to change notification settings - Fork 11
/
PutMetadata.go
97 lines (93 loc) · 3.43 KB
/
PutMetadata.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
package armsecurityinsights_test
import (
"context"
"log"
"time"
"github.com/Azure/azure-sdk-for-go/sdk/azcore/to"
"github.com/Azure/azure-sdk-for-go/sdk/azidentity"
"github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/securityinsights/armsecurityinsights"
)
// x-ms-original-file: specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-10-01-preview/examples/metadata/PutMetadata.json
func ExampleMetadataClient_Create() {
cred, err := azidentity.NewDefaultAzureCredential(nil)
if err != nil {
log.Fatalf("failed to obtain a credential: %v", err)
}
ctx := context.Background()
client := armsecurityinsights.NewMetadataClient("<subscription-id>", cred, nil)
res, err := client.Create(ctx,
"<resource-group-name>",
"<workspace-name>",
"<metadata-name>",
armsecurityinsights.MetadataModel{
Properties: &armsecurityinsights.MetadataProperties{
Author: &armsecurityinsights.MetadataAuthor{
Name: to.StringPtr("<name>"),
Email: to.StringPtr("<email>"),
},
Categories: &armsecurityinsights.MetadataCategories{
Domains: []*string{
to.StringPtr("Application"),
to.StringPtr("Security – Insider Threat")},
Verticals: []*string{
to.StringPtr("Healthcare")},
},
ContentID: to.StringPtr("<content-id>"),
Dependencies: &armsecurityinsights.MetadataDependencies{
Criteria: []*armsecurityinsights.MetadataDependencies{
{
Criteria: []*armsecurityinsights.MetadataDependencies{
{
Name: to.StringPtr("<name>"),
ContentID: to.StringPtr("<content-id>"),
Kind: armsecurityinsights.Kind("DataConnector").ToPtr(),
},
{
ContentID: to.StringPtr("<content-id>"),
Kind: armsecurityinsights.Kind("DataConnector").ToPtr(),
},
{
ContentID: to.StringPtr("<content-id>"),
Kind: armsecurityinsights.Kind("DataConnector").ToPtr(),
Version: to.StringPtr("<version>"),
}},
Operator: armsecurityinsights.Operator("OR").ToPtr(),
},
{
ContentID: to.StringPtr("<content-id>"),
Kind: armsecurityinsights.Kind("Playbook").ToPtr(),
Version: to.StringPtr("<version>"),
},
{
ContentID: to.StringPtr("<content-id>"),
Kind: armsecurityinsights.Kind("Parser").ToPtr(),
}},
Operator: armsecurityinsights.Operator("AND").ToPtr(),
},
FirstPublishDate: to.TimePtr(func() time.Time { t, _ := time.Parse("2006-01-02", "2021-05-18"); return t }()),
Kind: armsecurityinsights.Kind("AnalyticsRule").ToPtr(),
LastPublishDate: to.TimePtr(func() time.Time { t, _ := time.Parse("2006-01-02", "2021-05-18"); return t }()),
ParentID: to.StringPtr("<parent-id>"),
Providers: []*string{
to.StringPtr("Amazon"),
to.StringPtr("Microsoft")},
Source: &armsecurityinsights.MetadataSource{
Name: to.StringPtr("<name>"),
Kind: armsecurityinsights.SourceKind("Solution").ToPtr(),
SourceID: to.StringPtr("<source-id>"),
},
Support: &armsecurityinsights.MetadataSupport{
Name: to.StringPtr("<name>"),
Email: to.StringPtr("<email>"),
Link: to.StringPtr("<link>"),
Tier: armsecurityinsights.SupportTier("Partner").ToPtr(),
},
Version: to.StringPtr("<version>"),
},
},
nil)
if err != nil {
log.Fatal(err)
}
log.Printf("Response result: %#v\n", res.MetadataClientCreateResult)
}