Merge pull request #4061 from kunalcha/dev

Key Vault: Powershell cmdlets for Managed Key Vault Storage Accounts …

Author: markcowl

src/ResourceManager/KeyVault/AzureRM.KeyVault.psd1

@@ -100,8 +100,15 @@ CmdletsToExport = 'Add-AzureKeyVaultCertificate',
                'Get-AzureKeyVaultCertificatePolicy', 
                'New-AzureKeyVaultCertificateAdministratorDetails', 
                'New-AzureKeyVaultCertificateOrganizationDetails', 
-               'Backup-AzureKeyVaultSecret', 'Restore-AzureKeyVaultSecret'
-
+               'Backup-AzureKeyVaultSecret', 'Restore-AzureKeyVaultSecret',
+               'Get-AzureKeyVaultManagedStorageAccount',
+               'Add-AzureKeyVaultManagedStorageAccount',
+               'Remove-AzureKeyVaultManagedStorageAccount',
+               'Update-AzureKeyVaultManagedStorageAccount',
+               'Update-AzureKeyVaultManagedStorageAccountKey',
+               'Get-AzureKeyVaultManagedStorageSasDefinition',
+               'Set-AzureKeyVaultManagedStorageSasDefinition',
+               'Remove-AzureKeyVaultManagedStorageSasDefinition'
 # Variables to export from this module
 # VariablesToExport = @()
 

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Commands.KeyVault.Test.csproj

@@ -66,11 +66,11 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Graph.RBAC.3.4.0-preview\lib\net452\Microsoft.Azure.Graph.RBAC.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.KeyVault, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.2.1.0-preview\lib\net45\Microsoft.Azure.KeyVault.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.2.3.0-preview\lib\net452\Microsoft.Azure.KeyVault.dll</HintPath>
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Azure.KeyVault.WebKey, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.WebKey.2.0.4\lib\net45\Microsoft.Azure.KeyVault.WebKey.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.KeyVault.WebKey.2.0.6\lib\net452\Microsoft.Azure.KeyVault.WebKey.dll</HintPath>
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.Authorization">
@@ -81,7 +81,7 @@
       <HintPath>..\..\..\packages\Microsoft.Azure.Common.2.1.0\lib\net45\Microsoft.Azure.Common.NetFramework.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Azure.Management.KeyVault, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.2.0-preview\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Azure.Management.KeyVault.2.3.0-preview\lib\net452\Microsoft.Azure.Management.KeyVault.dll</HintPath>
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Azure.ResourceManager, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
@@ -106,11 +106,12 @@
       <HintPath>..\..\..\packages\Microsoft.IdentityModel.Clients.ActiveDirectory.2.28.3\lib\net45\Microsoft.IdentityModel.Clients.ActiveDirectory.WindowsForms.dll</HintPath>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Rest.ClientRuntime.2.3.6\lib\net45\Microsoft.Rest.ClientRuntime.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Rest.ClientRuntime.2.3.8\lib\net452\Microsoft.Rest.ClientRuntime.dll</HintPath>
       <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime.Azure, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
-      <HintPath>..\..\..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.5\lib\net45\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
+      <HintPath>..\..\..\packages\Microsoft.Rest.ClientRuntime.Azure.3.3.7\lib\net452\Microsoft.Rest.ClientRuntime.Azure.dll</HintPath>
+      <Private>True</Private>
     </Reference>
     <Reference Include="Microsoft.Rest.ClientRuntime.Azure.Authentication, Version=2.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35, processorArchitecture=MSIL">
       <HintPath>..\..\..\packages\Microsoft.Rest.ClientRuntime.Azure.Authentication.2.2.9-preview\lib\net45\Microsoft.Rest.ClientRuntime.Azure.Authentication.dll</HintPath>
@@ -219,6 +220,7 @@
     <None Include="Scripts\RunUITests.ps1" />
     <None Include="Scripts\VaultCertificateTests.ps1" />
     <None Include="Scripts\VaultKeyTests.ps1" />
+    <None Include="Scripts\VaultManagedStorageAccountTests.ps1" />
     <None Include="Scripts\VaultManagementTests.ps1" />
     <None Include="Scripts\VaultSecretTests.ps1" />
     <None Include="Scripts\VaultUITests.ps1" />

src/ResourceManager/KeyVault/Commands.KeyVault.Test/Scripts/Common.ps1

@@ -15,6 +15,7 @@
 $global:createdKeys = @()
 $global:createdSecrets = @()
 $global:createdCertificates = @()
+$global:createdManagedStorageAccounts = @()
 
 $invocationPath = Split-Path $MyInvocation.MyCommand.Definition;
 
@@ -73,6 +74,33 @@ function Get-CertificateName([string]$suffix)
     return 'pshtc-' + $global:testns + '-' + $suffix
 }
 
+<#
+.SYNOPSIS
+Get test key vault managed storage account name
+#>
+function Get-ManagedStorageAccountName([string]$suffix)
+{
+    return 'pshtmsa' + $global:testns + $suffix
+}
+
+<#
+.SYNOPSIS
+Get test key vault managed storage sas definition name
+#>
+function Get-ManagedStorageSasDefinitionName([string]$suffix)
+{
+    return 'pshtmsas' + $global:testns + $suffix
+}
+
+<#
+.SYNOPSIS
+Get Storage resource id for managed storage account tests.
+#>
+function Get-KeyVaultManagedStorageResourceId
+{
+    return $global:storageResourceId
+}
+
 <#
 .SYNOPSIS
 Get key file path to be imported
@@ -230,6 +258,20 @@ function Cleanup-OldSecrets
 	}
 }
 
+<#
+.SYNOPSIS
+Remove all old managed storage accounts starting with the given prefix.
+#>
+function Cleanup-OldManagedStorageAccounts
+{
+    Write-Host "Cleaning up old managed storage accounts..."
+
+    $keyVault = Get-KeyVault
+    $managedStorageAccountPattern = Get-ManagedStorageAccountName '*'
+    Get-AzureKeyVaultManagedStorageAccount $keyVault |
+        Where-Object {$_.AccountName -like $managedStorageAccountPattern} |
+        Remove-AzureKeyVaultManagedStorageAccount -Force -Confirm:$false
+}
 
 <#
 .SYNOPSIS
@@ -242,6 +284,17 @@ function Initialize-CertificateTest
     Get-AzureKeyVaultCertificate $keyVault  | Where-Object {$_.Name -like $certificatePattern}  | Remove-AzureKeyVaultCertificate -Force
 }
 
+<#
+.SYNOPSIS
+Removes all managed storage accounts starting with the prefix
+#>
+function Initialize-ManagedStorageAccountTest
+{
+    $keyVault = Get-KeyVault
+    $managedStorageAccountPattern = Get-ManagedStorageAccountName '*'
+    Get-AzureKeyVaultManagedStorageAccount $keyVault  | Where-Object {$_.AccountName -like $managedStorageAccountPattern}  | Remove-AzureKeyVaultManagedStorageAccount -Force
+}
+
 <#
 .SYNOPSIS
 Removes all created keys.
@@ -399,6 +452,30 @@ function Wait-ForDeletedSecret ([string] $vault, [string] $secretName)
 	return $secret
 }
 
+<#
+.SYNOPSIS
+Removes all managed storage accounts.
+#>
+function Cleanup-SingleManagedStorageAccountTest
+{
+    $global:createdManagedStorageAccounts | % {
+       if ($_ -ne $null)
+       {
+         try
+         {
+            $keyVault = Get-KeyVault
+            Write-Debug "Removing managed storage account with name $_ in vault $keyVault"
+            $catch = Remove-AzureKeyVaultManagedStorageAccount $keyVault $_ -Force -Confirm:$false
+         }
+         catch 
+         {
+         }
+      }
+    }
+
+    $global:createdManagedStorageAccounts.Clear()
+}
+
 <#
 .SYNOPSIS
 Run a key test, with cleanup.
@@ -439,6 +516,18 @@ function Run-CertificateTest ([ScriptBlock] $test, [string] $testName)
    }
 }
 
+function Run-ManagedStorageAccountTest ([ScriptBlock] $test, [string] $testName)
+{   
+   try 
+   {
+     Run-Test $test $testName *>> "$testName.debug_log"
+   }
+   finally 
+   {
+     Cleanup-SingleManagedStorageAccountTest *>> "$testName.debug_log"
+   }
+}
+
 function Run-VaultTest ([ScriptBlock] $test, [string] $testName)
 {   
    try