Merge branch 'master' into devel-AzureResourceGraph

Author: juju4

.script/SolutionValidations/solutionValidator.ts

@@ -1,110 +1,24 @@
 import { runCheckOverChangedFiles } from "./../utils/changedFilesValidator";
 import * as logger from "./../utils/logger";
 import { ExitCode } from "./../utils/exitCode";
-import fs from "fs";
-import { MainTemplateValidationError } from "./../utils/validationError";
+import { IsValidSolutionDomainsVerticals } from "./validDomainsVerticals";
+import { IsValidSupportObject } from "./validSupportObject";
+import { IsValidBrandingContent } from "./validMSBranding";
+import { IsValidSolutionID } from "./validSolutionID";
+import { MainTemplateDomainVerticalValidationError, MainTemplateSupportObjectValidationError, InvalidFileContentError, InvalidSolutionIDValidationError } from "../utils/validationError";
 
-// initialize arrays to store valid domains and verticals
-let validDomains: string[] = [];
-let validVerticals: string[] = [];
 
-// read the valid domains and verticals from the JSON file
-try {
-    const validDomainsVerticals = JSON.parse(fs.readFileSync('./.script/SolutionValidations/ValidDomainsVerticals.json', "utf8"));
-    validDomains = validDomainsVerticals.validDomains;
-    validVerticals = validDomainsVerticals.validVerticals;
-} catch (error) {
-    logger.logError(`Error reading ValidDomainsVerticals.json file: ${error}`);
-}
 
 // function to check if the solution is valid
 export async function IsValidSolution(filePath: string): Promise<ExitCode> {
-
-    // check if the file is a mainTemplate.json file
-    if (filePath.endsWith("mainTemplate.json")) {
-        // read the content of the file
-        let jsonFile = JSON.parse(fs.readFileSync(filePath, "utf8"));
-
-        // check if the file has a "resources" field
-        if (!jsonFile.hasOwnProperty("resources")) {
-            console.warn(`No "resources" field found in the file. Skipping file path: ${filePath}`);
-            return ExitCode.SUCCESS;
-        }
-
-        // get the resources from the file
-        let resources = jsonFile.resources;
-
-        // filter resources that have type "Microsoft.OperationalInsights/workspaces/providers/metadata"
-        const filteredResource = resources.filter(function (resource: { type: string; }) {
-            return resource.type === "Microsoft.OperationalInsights/workspaces/providers/metadata";
-        });
-        if (filteredResource.length > 0) {
-            filteredResource.forEach((element: { hasOwnProperty: (arg0: string) => boolean; properties: { hasOwnProperty: (arg0: string) => boolean; categories: any; }; }) => {
-                // check if the resource has a "properties" field
-                if (element.hasOwnProperty("properties") === true) {
-                    // check if the "properties" field has a "categories" field
-                    if (element.properties.hasOwnProperty("categories") === true) {
-                        const categories = element.properties.categories;
-
-                        let invalidDomains = [];
-                        let invalidVerticals = [];
-
-                        // check if the categories have a "domains" field
-                        if (categories.hasOwnProperty("domains")) {
-                            let domains = categories.domains;
-                            if (domains.length === 0) {
-                                throw new MainTemplateValidationError("The solution must include at least one valid domain. Please provide a domain in the 'domains' field of the 'categories' object.");
-                            }
-                            for (const domain of domains) {
-                                // check if the domain is valid
-                                if (!validDomains.includes(domain)) {
-                                    invalidDomains.push(domain);
-                                }
-                            }
-                        }
-                        else {
-                            throw new MainTemplateValidationError("The solution must include at least one valid domain. Please provide a domain in the 'domains' field of the 'categories' object.");
-                        }
-
-                        // check if the categories have a "verticals" field
-                        if (categories.hasOwnProperty("verticals")) {
-                            let verticals = categories.verticals;
-                            for (const vertical of verticals) {
-                                if (!validVerticals.includes(vertical)) {
-                                    invalidVerticals.push(vertical);
-                                }
-                            }
-                        }
-
-                        if (invalidDomains.length > 0 || invalidVerticals.length > 0) {
-                            let errorMessage = "Invalid";
-                            if (invalidDomains.length > 0) {
-                                errorMessage += ` domains: [${invalidDomains.join(", ")}]`;
-                            }
-                            if (invalidVerticals.length > 0) {
-                                errorMessage += ` verticals: [${invalidVerticals.join(", ")}]`;
-                            }
-                            errorMessage += ` provided.`;
-                            throw new MainTemplateValidationError(errorMessage);
-                        }
-                    }
-                }
-            });
-        }
-
-        // If the file is not identified as a main template, log a warning message
-    } else {
-        console.warn(`Could not identify json file as a Main Template. Skipping File path: ${filePath}`);
-    }
-
-    // Return success code after completion of the check
+    IsValidSolutionDomainsVerticals(filePath);
+    IsValidSupportObject(filePath);
+    IsValidBrandingContent(filePath);
+    IsValidSolutionID(filePath);
     return ExitCode.SUCCESS;
 }
 
 
-
-
-
 // Array to store file type suffixes for the check
 let fileTypeSuffixes = ["json"];
 
@@ -122,13 +36,27 @@ let CheckOptions = {
     },
     // Callback function to handle errors during execution
     onExecError: async (e: any, filePath: string) => {
-        console.log(`Solution Validation Failed. File path: ${filePath}. Error message: ${e.message}`);
+        console.log(`Solution Validation Failed. File path: ${filePath} \nError message: ${e.message}`);
+        if (e instanceof MainTemplateDomainVerticalValidationError) {
+            logger.logError("Please refer link https://github.com/MicrosoftDocs/azure-docs/blob/main/articles/sentinel/sentinel-solutions.md?msclkid=9a240b52b11411ec99ae6736bd089c4a#categories-for-microsoft-sentinel-out-of-the-box-content-and-solutions for valid Domains and Verticals.");
+        } else if (e instanceof MainTemplateSupportObjectValidationError) {
+            logger.logError("Validation for Support object failed in Main Template.");
+        }
+        else if (e instanceof InvalidFileContentError) {
+            logger.logError("Validation for Microsoft Sentinel Branding Failed.");
+        }
+        else if (e instanceof InvalidSolutionIDValidationError) {
+            logger.logError("Validation for Solution ID Failed.");
+        }
     },
     // Callback function to handle final failure
     onFinalFailed: async () => {
-        logger.logError("Please refer link https://github.com/MicrosoftDocs/azure-docs/blob/main/articles/sentinel/sentinel-solutions.md?msclkid=9a240b52b11411ec99ae6736bd089c4a#categories-for-microsoft-sentinel-out-of-the-box-content-and-solutions for valid Domains and Verticals.");
+        logger.logError("Validation failed, please fix the errors.");
     },
+
 };
 
 // Function call to start the check process
 runCheckOverChangedFiles(CheckOptions, fileKinds, fileTypeSuffixes, filePathFolderPrefixes);
+
+

.script/SolutionValidations/validDomainsVerticals.ts

@@ -0,0 +1,104 @@
+import { MainTemplateDomainVerticalValidationError } from "./../utils/validationError";
+import * as logger from "./../utils/logger";
+import { ExitCode } from "../utils/exitCode";
+import fs from "fs";
+
+// initialize arrays to store valid domains and verticals
+let validDomains: string[] = [];
+let validVerticals: string[] = [];
+
+// read the valid domains and verticals from the JSON file
+try {
+    const validDomainsVerticals = JSON.parse(fs.readFileSync('./.script/SolutionValidations/ValidDomainsVerticals.json', "utf8"));
+    validDomains = validDomainsVerticals.validDomains;
+    validVerticals = validDomainsVerticals.validVerticals;
+} catch (error) {
+    logger.logError(`Error reading ValidDomainsVerticals.json file: ${error}`);
+}
+
+// function to check if the solution is valid
+export function IsValidSolutionDomainsVerticals(filePath: string): ExitCode {
+
+    // check if the file is a mainTemplate.json file
+    if (filePath.endsWith("mainTemplate.json")) {
+        // read the content of the file
+        let jsonFile = JSON.parse(fs.readFileSync(filePath, "utf8"));
+
+        // check if the file has a "resources" field
+        if (!jsonFile.hasOwnProperty("resources")) {
+            throw new MainTemplateDomainVerticalValidationError(`No "resources" field found in the file. File path: ${filePath}`);
+        }
+
+        // get the resources from the file
+        let resources = jsonFile.resources;
+
+        // filter resources that have type "Microsoft.OperationalInsights/workspaces/providers/metadata"
+        const filteredResource = resources.filter(function (resource: { type: string; }) {
+            return resource.type === "Microsoft.OperationalInsights/workspaces/providers/metadata";
+        });
+        if (filteredResource.length > 0) {
+            filteredResource.forEach((element: { hasOwnProperty: (arg0: string) => boolean; properties: { hasOwnProperty: (arg0: string) => boolean; categories: any; }; }) => {
+                // check if the resource has a "properties" field
+                if (element.hasOwnProperty("properties") === true) {
+                    // check if the "properties" field has a "categories" field
+                    if (element.properties.hasOwnProperty("categories") === true) {
+                        const categories = element.properties.categories;
+
+                        let invalidDomains = [];
+                        let invalidVerticals = [];
+
+                        // check if the categories have a "domains" field
+                        if (categories.hasOwnProperty("domains")) {
+                            let domains = categories.domains;
+                            if (domains.length === 0) {
+                                throw new MainTemplateDomainVerticalValidationError("The solution must include at least one valid domain. Please provide a domain in the 'domains' field of the 'categories' object.");
+                            }
+                            for (const domain of domains) {
+                                // check if the domain is valid
+                                if (!validDomains.includes(domain)) {
+                                    invalidDomains.push(domain);
+                                }
+                            }
+                        }
+                        else {
+                            throw new MainTemplateDomainVerticalValidationError("The solution must include at least one valid domain. Please provide a domain in the 'domains' field of the 'categories' object.");
+                        }
+
+                        // check if the categories have a "verticals" field
+                        if (categories.hasOwnProperty("verticals")) {
+                            let verticals = categories.verticals;
+                            for (const vertical of verticals) {
+                                if (!validVerticals.includes(vertical)) {
+                                    invalidVerticals.push(vertical);
+                                }
+                            }
+                        }
+
+                        if (invalidDomains.length > 0 || invalidVerticals.length > 0) {
+                            let errorMessage = "Invalid";
+                            if (invalidDomains.length > 0) {
+                                errorMessage += ` domains: [${invalidDomains.join(", ")}]`;
+                            }
+                            if (invalidVerticals.length > 0) {
+                                errorMessage += ` verticals: [${invalidVerticals.join(", ")}]`;
+                            }
+                            errorMessage += ` provided.`;
+                            throw new MainTemplateDomainVerticalValidationError(errorMessage);
+                        }
+                    }
+                }
+            });
+        }
+        else {
+            throw new MainTemplateDomainVerticalValidationError(`There are no metadata resoruces found in the file. File path: ${filePath}`);
+        }
+
+        // If the file is not identified as a main template, log a warning message
+    } else {
+        console.warn(`Could not identify json file as a Main Template. Skipping File path: ${filePath}`);
+    }
+
+    // Return success code after completion of the check
+    return ExitCode.SUCCESS;
+}
+

.script/SolutionValidations/validMSBranding.ts

@@ -0,0 +1,70 @@
+import { InvalidFileContentError } from "./../utils/validationError";
+import { ExitCode } from "../utils/exitCode";
+import fs from "fs";
+
+type AttributeConfig = {
+    mainTemplateAttributes: string[];
+    createUIDefinitionAttributes: string[];
+};
+
+const attributeConfig: AttributeConfig = {
+    mainTemplateAttributes: ["descriptionMarkdown", "description"],
+    createUIDefinitionAttributes: ["text", "description"],
+};
+
+export function IsValidBrandingContent(filePath: string): ExitCode {
+    // Skip validation if file path contains "SentinelOne"
+    if (filePath.includes("SentinelOne")) {
+        return ExitCode.SUCCESS;
+    }
+
+    const errors: string[] = [];
+
+    // check if the file is mainTemplate.json or createUiDefinition.json
+    if (filePath.endsWith("mainTemplate.json")) {
+        validateFileContent(filePath, attributeConfig.mainTemplateAttributes, errors);
+    } else if (filePath.endsWith("createUiDefinition.json")) {
+        validateFileContent(filePath, attributeConfig.createUIDefinitionAttributes, errors);
+    } else {
+        console.warn(`Could not identify JSON file as mainTemplate.json or createUiDefinition.json. Skipping. File path: ${filePath}`);
+    }
+
+    // Throw a single error with all the error messages concatenated
+    if (errors.length > 0) {
+        throw new InvalidFileContentError(errors.join("\n"));
+    }
+
+    // Return success code after completion of the check
+    return ExitCode.SUCCESS;
+}
+
+function validateFileContent(filePath: string, attributeNames: string[], errors: string[]): void {
+    const fileContent = fs.readFileSync(filePath, "utf8");
+    const jsonContent = JSON.parse(fileContent);
+
+    traverseAttributes(jsonContent, attributeNames, errors);
+}
+
+function traverseAttributes(jsonContent: any, attributeNames: string[], errors: string[]): void {
+    for (const key in jsonContent) {
+        if (jsonContent.hasOwnProperty(key)) {
+            const attributeValue = jsonContent[key];
+            if (attributeNames.includes(key) && typeof attributeValue === "string") {
+                validateAttribute(attributeValue, key, errors);
+            }
+            if (typeof attributeValue === "object" && attributeValue !== null) {
+                traverseAttributes(attributeValue, attributeNames, errors);
+            }
+        }
+    }
+}
+
+function validateAttribute(attributeValue: string, attributeName: string, errors: string[]): void {
+    const sentinelRegex = /(?<!Microsoft\s)(?<!\S)Sentinel(?!\S)/g;
+    const updatedValue = attributeValue.replace(sentinelRegex, "Microsoft Sentinel");
+
+    if (attributeValue !== updatedValue) {
+        const error = `Inaccurate product branding used in '${attributeName}' for '${attributeValue}'. Use "Microsoft Sentinel" instead of "Sentinel"`;
+        errors.push(error);
+    }
+}

.script/SolutionValidations/validSolutionID.ts

@@ -0,0 +1,42 @@
+import { InvalidSolutionIDValidationError } from "./../utils/validationError";
+import { ExitCode } from "../utils/exitCode";
+import fs from "fs";
+
+export function IsValidSolutionID(filePath: string): ExitCode {
+    // Check if the file path ends with mainTemplate.json
+    if (!filePath.endsWith("mainTemplate.json")) {
+        return ExitCode.SUCCESS;
+    }
+
+    // Parse the JSON content from the file
+    const jsonContent = JSON.parse(fs.readFileSync(filePath, "utf8"));
+
+    // Get the 'variables' section from the JSON
+    const variables = jsonContent.variables;
+
+    // Check if 'solutionId' attribute is present
+    if (variables && "solutionId" in variables) {
+        const solutionId = variables.solutionId;
+
+        // Validate if the solution ID is empty
+        if (!solutionId) {
+            throw new InvalidSolutionIDValidationError(`Empty solution ID. Expected format: publisherID.offerID. and it must be in lowercase. Found empty value.`);
+        }
+
+        // Validate the solution ID format
+        const regex = /^[^.]+\.[^.]+$/;
+        if (!regex.test(solutionId)) {
+            throw new InvalidSolutionIDValidationError(`Invalid solution ID format. Expected format: publisherID.offerID. and it must be in lowercase. Found: ${solutionId}`);
+        }
+
+        // Validate the solution ID case (lowercase)
+        if (solutionId !== solutionId.toLowerCase()) {
+            throw new InvalidSolutionIDValidationError(`Invalid solution ID format. Expected format: publisherID.offerID. and it must be in lowercase. Found: ${solutionId}`);
+        }
+    } else {
+        throw new InvalidSolutionIDValidationError(`Missing 'solutionId' attribute in the file. File path: ${filePath}`);
+    }
+
+    // Return success code after completion of the check
+    return ExitCode.SUCCESS;
+}