Removing PSAzureFirewallPolicyThreatIntelWhitelist validations (Azure#16377)

amosarbiv-work · web-flow · commit 2b57afb10f3c · 2021-11-25T00:31:53.000+08:00
* Removed PSAzureFirewallPolicyThreatIntelWhitelist validation because all validation happen in BE

* added my changes in changelog.md

* reomved comments from change log that merged mistakenly to PR
diff --git a/src/Network/Network/ChangeLog.md b/src/Network/Network/ChangeLog.md
@@ -19,6 +19,7 @@
 --->
 
 ## Upcoming Release
+* Bugfix in PSAzureFirewallPolicyThreatIntelWhitelist for FirewallPolicy
 * Added optional parameter `-IsSecuritySite` to the following cmdlet:
     - `New-AzVpnSite`
 * Support for new Match Variables in WAF Exclusions
diff --git a/src/Network/Network/Models/AzureFirewallPolicy/PSAzureFirewallPolicyThreatIntelWhitelist.cs b/src/Network/Network/Models/AzureFirewallPolicy/PSAzureFirewallPolicyThreatIntelWhitelist.cs
@@ -31,7 +31,6 @@ public string[] FQDNs
             get { return this.fqdns; }
             set
             {
-                ValidateFqdns(value);
                 fqdns = value;
             }
         }
@@ -41,41 +40,8 @@ public string[] IpAddresses
             get { return this.ipAddresses; }
             set
             {
-                ValidateIpAddresses(value);
                 ipAddresses = value;
             }
         }
-
-        private const string SecureGatewayThreatIntelFqdnRegex = "^\\*?([a-zA-Z0-9\\-\\.]?[a-zA-Z0-9])*$";
-
-        private void ValidateFqdns(string[] fqdns)
-        {
-            if (fqdns == null)
-                return;
-
-            var matchingRegEx = new Regex(SecureGatewayThreatIntelFqdnRegex);
-            foreach (var fqdn in fqdns)
-            {
-                if (!matchingRegEx.IsMatch(fqdn))
-                {
-                    throw new PSArgumentException(String.Format("\'{0}\' is not a valid threat intel whitelist FQDN", fqdn));
-                }
-            }
-        }
-
-        private void ValidateIpAddresses(string[] ipAddresses)
-        {
-            if (ipAddresses == null)
-                return;
-
-            foreach (var ip in ipAddresses)
-            {
-                IPAddress ipVal;
-                if (!IPAddress.TryParse(ip, out ipVal) || ipVal.AddressFamily != System.Net.Sockets.AddressFamily.InterNetwork)
-                {
-                    throw new PSArgumentException(String.Format("\'{0}\' is not a valid threat intel whitelist Ip Address", ip));
-                }
-            }
-        }
     }
 }
