Skip to content

tverdohleb/azure-storage-account-application-assets

BranchesTags
 
 

Repository files navigation

Massdriver

azure-storage-account-application-assets

Release Contributors Forks Stargazers Issues MIT License

Azure Blob storage is optimized for storing unstructured data. This storage solution is ideal for storing any files produced and consumed by your application internally.

Design

For detailed information, check out our Operator Guide for this bundle.

Usage

Our bundles aren't intended to be used locally, outside of testing. Instead, our bundles are designed to be configured, connected, deployed and monitored in the Massdriver platform.

What are Bundles?

Bundles are the basic building blocks of infrastructure, applications, and architectures in Massdriver. Read more here.

Bundle

Security and compliance scanning of our bundles is performed using Bridgecrew. Massdriver also offers security and compliance scanning of operational infrastructure configured and deployed using the platform.

Benchmark Description
Infrastructure Security Infrastructure Security Compliance
CIS AZURE Center for Internet Security, AZURE Compliance
PCI-DSS Payment Card Industry Data Security Standards Compliance
NIST-800-53 National Institute of Standards and Technology Compliance
ISO27001 Information Security Management System, ISO/IEC 27001 Compliance
SOC2 Service Organization Control 2 Compliance
HIPAA Health Insurance Portability and Accountability Compliance

Params

Form input parameters for configuring a bundle for deployment.

View

Properties

  • account (object)
    • region (string): The region where the storage account will be created. Cannot be changed after deployment.
  • monitoring (object)
    • mode (string): Enable and customize Function App metric alarms. Default: AUTOMATED.
      • One of
        • Automated
        • Custom
        • Disabled
  • redundancy (object)
    • data_protection (integer): Set the number of days to allow data recovery if data is deleted (minimum 1, maximum 365). Minimum: 1. Maximum: 365. Default: 7.
    • replication_type (string)
      • One of
        • Local-redundant storage
        • Geo-redundant storage
        • Geo-redundant storage (read-access)
        • Zone-redundant storage
        • Geo-zone-redundant storage
        • Geo-zone-redundant storage (read-access)
    • zone_redundancy (boolean): Enable zone redundancy for the storage account. Cannot be changed after deployment. Default: False.

Connections

Connections from other bundles that this bundle depends on.

View

Properties

  • azure_service_principal (object): . Cannot contain additional properties.

    • data (object)

      • client_id (string): A valid UUID field.

        Examples:

        "123xyz99-ab34-56cd-e7f8-456abc1q2w3e"

      • client_secret (string)

      • subscription_id (string): A valid UUID field.

        Examples:

        "123xyz99-ab34-56cd-e7f8-456abc1q2w3e"

      • tenant_id (string): A valid UUID field.

        Examples:

        "123xyz99-ab34-56cd-e7f8-456abc1q2w3e"

    • specs (object)

Artifacts

Resources created by this bundle that can be connected to other bundles.

View

Properties

  • azure_storage_account_blob (object): . Cannot contain additional properties.
    • data (object)

      • authentication (object)

        • sas_token (string)

      • infrastructure (object)

        • ari (string): Azure Resource ID.

          Examples:

          "/subscriptions/12345678-1234-1234-abcd-1234567890ab/resourceGroups/resource-group-name/providers/Microsoft.Network/virtualNetworks/network-name"

        • endpoint (string): Azure Storage Account endpoint authentication. Cannot contain additional properties.

          Examples:

          "https://storageaccount.blob.core.windows.net/"
          "http://storageaccount.file.core.windows.net"
          "abfs://filesystem.accountname.dfs.core.windows.net/"
          "https://storageaccount.privatelink01.queue.core.windows.net/"

      • security (object): Azure Security Configuration. Cannot contain additional properties.

        • iam (object): IAM Roles And Scopes. Cannot contain additional properties.
          • ^[a-z]+[a-z_]*[a-z]$ (object)

            • role: Azure Role.

              Examples:

              "Storage Blob Data Reader"

            • scope (string): Azure IAM Scope.

    • specs (object)
      • azure (object): .
        • region (string): Select the Azure region you'd like to provision your resources in.

Contributing

Bug Reports & Feature Requests

Did we miss something? Please submit an issue to report any bugs or request additional features.

Developing

Note: Massdriver bundles are intended to be tightly use-case scoped, intention-based, reusable pieces of IaC for use in the Massdriver platform. For this reason, major feature additions that broaden the scope of an existing bundle are likely to be rejected by the community.

Still want to get involved? First check out our contribution guidelines.

Fix or Fork

If your use-case isn't covered by this bundle, you can still get involved! Massdriver is designed to be an extensible platform. Fork this bundle, or create your own bundle from scratch!

Connect

Questions? Concerns? Adulations? We'd love to hear from you!

Please connect with us!

Email GitHub LinkedIn Twitter YouTube Reddit

About

massdriver.cloud

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • HCL 79.5%
  • Ruby 16.6%
  • Makefile 3.9%