search

prancer-io / cloud-validation-framework

prancer platform is an IaC Security engine + Continuous Compliance for your cloud (Azure, AWS, GCP) and Kubernetes environment
https://www.prancer.io
Mozilla Public License 2.0
121 stars 29 forks source link

Crawl authorizationPolicy from MS Graph API #686

Closed rezoan closed 1 year ago

rezoan commented 1 year ago

Cawl below graph API endpoint to get AAD authorizationPolicy:

https://learn.microsoft.com/en-us/graph/api/authorizationpolicy-get?view=graph-rest-1.0&tabs=http

Note: Normalize the resource snapshot by adding a typeas microsoft.graph.authorizationPolicy and move all other properties under a properties block.

Also see the permissions section for necessary permission to crawl this resource type from AAD.

master-snapshot:

                {
                    "masterSnapshotId": "AZRSNP_526",
                    "type": "microsoft.graph.authorizationPolicy",
                    "collection": "microsoft.graph",
                    "version": "1.0"
                }