Skip to content

Commit 9df810c

Browse files
mmolendammolenda
committed
packaging
1 parent 54911a9 commit 9df810c

File tree

2 files changed

+68
-28
lines changed

2 files changed

+68
-28
lines changed

Solutions/Intel471/Package/3.0.0.zip

-746 Bytes
Binary file not shown.

Solutions/Intel471/Package/mainTemplate.json

Lines changed: 68 additions & 28 deletions
Original file line numberDiff line numberDiff line change
@@ -156,7 +156,7 @@
156156
},
157157
"parameterValues": {
158158
"accountName": "[[variables('StorageAccountName')]",
159-
"accessKey": "[[listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('StorageAccountName')), '2023-04-01').keys[0].value]"
159+
"accessKey": "[[listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('StorageAccountName')), '2022-09-01').keys[0].value]"
160160
}
161161
}
162162
},
@@ -1162,19 +1162,8 @@
11621162
"variables": {
11631163
"MicrosoftSentinelConnectionName": "[[concat('sentinel-', parameters('PlaybookName'))]",
11641164
"AzureBlobConnectionName": "[[concat('azureblob-', parameters('PlaybookName'))]",
1165-
"StorageAccountName": "[[parameters('StorageAccountName')]",
1166-
"StorageAccountContainerName": "[[parameters('StorageAccountContainerName')]",
11671165
"AzureKeyVaultName": "[[parameters('KeyVaultName')]",
11681166
"AzureKeyVaultConnectionName": "[[concat('keyvault-', parameters('PlaybookName'))]",
1169-
"BlobNameCursor": "[[if(equals(parameters('Backend'), 'Titan'), 'cursorSentinel.txt', 'cursorVerity.txt')]",
1170-
"BlobNameFromDate": "[[if(equals(parameters('Backend'), 'Titan'), 'fromdateSentinel.txt', 'fromdateVerity.txt')]",
1171-
"ApiURI": "[[if(equals(parameters('Backend'), 'Titan'), 'https://api.intel471.com/v1/indicators/stream', 'https://api.intel471.cloud/integrations/indicators/v1/indicators/stream')]",
1172-
"UsernameSecretName": "[[if(equals(parameters('Backend'), 'Titan'), 'TitanUserNameSentinel', 'VerityUserNameSentinel')]",
1173-
"ApiKeySecretName": "[[if(equals(parameters('Backend'), 'Titan'), 'TitanAPIKeySentinel', 'VerityAPIKeySentinel')]",
1174-
"RequestParamFrom": "[[if(equals(parameters('Backend'), 'Titan'), 'lastUpdatedFrom', 'from')]",
1175-
"RequestParamSize": "[[if(equals(parameters('Backend'), 'Titan'), 'count', 'size')]",
1176-
"RequestThreatType": "[[if(equals(parameters('Backend'), 'Titan'), 'threatType', 'threat_type')]",
1177-
"ResponseFieldCursor": "[[if(equals(parameters('Backend'), 'Titan'), 'cursorNext', 'cursor_next')]",
11781167
"connection-1": "[[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', variables('workspace-location-inline'), '/managedApis/Azuresentinel')]",
11791168
"_connection-1": "[[variables('connection-1')]",
11801169
"connection-2": "[[concat('/subscriptions/', subscription().subscriptionId, '/providers/Microsoft.Web/locations/', variables('workspace-location-inline'), '/managedApis/azureblob')]",
@@ -1211,8 +1200,8 @@
12111200
"id": "[[variables('_connection-2')]"
12121201
},
12131202
"parameterValues": {
1214-
"accountName": "[[variables('StorageAccountName')]",
1215-
"accessKey": "[[listKeys(resourceId('Microsoft.Storage/storageAccounts', variables('StorageAccountName')), '2023-04-01').keys[0].value]"
1203+
"accountName": "[[parameters('StorageAccountName')]",
1204+
"accessKey": "[[listKeys(resourceId('Microsoft.Storage/storageAccounts', parameters('StorageAccountName')), '2022-09-01').keys[0].value]"
12161205
}
12171206
}
12181207
},
@@ -1268,15 +1257,39 @@
12681257
"type": "String"
12691258
},
12701259
"BlobNameCursor": {
1271-
"defaultValue": "[[variables('BlobNameCursor')]",
1260+
"defaultValue": "[variables('blanks')]",
12721261
"type": "String"
12731262
},
12741263
"BlobNameFromDate": {
1275-
"defaultValue": "[[variables('BlobNameFromDate')]",
1264+
"defaultValue": "[variables('blanks')]",
1265+
"type": "String"
1266+
},
1267+
"ApiURI": {
1268+
"defaultValue": "[variables('blanks')]",
1269+
"type": "String"
1270+
},
1271+
"UsernameSecretName": {
1272+
"defaultValue": "[variables('blanks')]",
1273+
"type": "String"
1274+
},
1275+
"ApiKeySecretName": {
1276+
"defaultValue": "[variables('blanks')]",
1277+
"type": "String"
1278+
},
1279+
"RequestParamFrom": {
1280+
"defaultValue": "[variables('blanks')]",
1281+
"type": "String"
1282+
},
1283+
"RequestParamSize": {
1284+
"defaultValue": "[variables('blanks')]",
1285+
"type": "String"
1286+
},
1287+
"RequestThreatType": {
1288+
"defaultValue": "[variables('blanks')]",
12761289
"type": "String"
12771290
},
12781291
"ResponseFieldCursor": {
1279-
"defaultValue": "[[variables('ResponseFieldCursor')]",
1292+
"defaultValue": "[variables('blanks')]",
12801293
"type": "String"
12811294
},
12821295
"LookBackDays": {
@@ -1367,7 +1380,7 @@
13671380
"HTTP": {
13681381
"type": "Http",
13691382
"inputs": {
1370-
"uri": "[[variables('ApiURI')]",
1383+
"uri": "@parameters('ApiURI')",
13711384
"method": "GET",
13721385
"headers": {
13731386
"User-Agent": "Intel 471 - Malware Intelligence Sentinel - Azure Logic App 4.0.0"
@@ -1638,7 +1651,7 @@
16381651
}
16391652
},
16401653
"method": "get",
1641-
"path": "[[concat('/secrets/', variables('ApiKeySecretName'), '/value')]"
1654+
"path": "@concat('/secrets/', parameters('ApiKeySecretName'), '/value')"
16421655
},
16431656
"runAfter": {
16441657
"GetUsername": [
@@ -1695,7 +1708,7 @@
16951708
}
16961709
},
16971710
"method": "get",
1698-
"path": "[[concat('/secrets/', variables('UsernameSecretName'), '/value')]"
1711+
"path": "@concat('/secrets/', parameters('UsernameSecretName'), '/value')"
16991712
}
17001713
},
17011714
"IfCursorBlobExists": {
@@ -1869,9 +1882,9 @@
18691882
"name": "payload",
18701883
"type": "object",
18711884
"value": {
1872-
"[variables('RequestParamSize')]": 100,
1873-
"[variables('RequestThreatType')]": "malware",
1874-
"[variables('RequestParamFrom')]": "@{variables('fromDate')}"
1885+
"@{parameters('RequestParamSize')}": 100,
1886+
"@{parameters('RequestThreatType')}": "malware",
1887+
"@{parameters('RequestParamFrom')}": "@{variables('fromDate')}"
18751888
}
18761889
}
18771890
]
@@ -1914,18 +1927,45 @@
19141927
}
19151928
}
19161929
},
1930+
"WorkspaceID": {
1931+
"value": "[[parameters('WorkspaceID')]"
1932+
},
19171933
"StorageAccountName": {
1918-
"value": "[[variables('StorageAccountName')]"
1934+
"value": "[[parameters('StorageAccountName')]"
19191935
},
19201936
"StorageAccountContainerName": {
1921-
"value": "[[variables('StorageAccountContainerName')]"
1937+
"value": "[[parameters('StorageAccountContainerName')]"
1938+
},
1939+
"BlobNameCursor": {
1940+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'cursorSentinel.txt', 'cursorVerity.txt')]"
1941+
},
1942+
"BlobNameFromDate": {
1943+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'fromdateSentinel.txt', 'fromdateVerity.txt')]"
1944+
},
1945+
"ApiURI": {
1946+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'https://api.intel471.com/v1/indicators/stream', 'https://api.intel471.cloud/integrations/indicators/v1/indicators/stream')]"
1947+
},
1948+
"UsernameSecretName": {
1949+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'TitanUserNameSentinel', 'VerityUserNameSentinel')]"
1950+
},
1951+
"ApiKeySecretName": {
1952+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'TitanAPIKeySentinel', 'VerityAPIKeySentinel')]"
1953+
},
1954+
"RequestParamFrom": {
1955+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'lastUpdatedFrom', 'from')]"
1956+
},
1957+
"RequestParamSize": {
1958+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'count', 'size')]"
1959+
},
1960+
"RequestThreatType": {
1961+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'threatType', 'threat_type')]"
1962+
},
1963+
"ResponseFieldCursor": {
1964+
"value": "[[if(equals(parameters('Backend'), 'Titan'), 'cursorNext', 'cursor_next')]"
19221965
},
19231966
"LookBackDays": {
19241967
"value": "[[parameters('LookBackDays')]"
19251968
},
1926-
"WorkspaceID": {
1927-
"value": "[[parameters('WorkspaceID')]"
1928-
},
19291969
"Backend": {
19301970
"value": "[[parameters('Backend')]"
19311971
}

0 commit comments

Comments
 (0)