diff --git a/Deploy/deployui.json b/Deploy/deployui.json index 8ce2667..5244699 100644 --- a/Deploy/deployui.json +++ b/Deploy/deployui.json @@ -474,24 +474,6 @@ "uri": "https://learn.microsoft.com/defender-cloud-apps/api-introduction#api-url-structure" } } - }, - { - "name": "mdcaApi", - "type": "Microsoft.Common.TextBox", - "label": "Microsoft Defender for Cloud Apps API", - "placeholder": "*.*.portal.cloudappsecurity.com", - "defaultValue": "", - "toolTip": "Microsoft Defender for Cloud Apps API Endpoint", - "constraints": { - "required": true, - "validations": [ - { - "regex": "(^(?![hH][tT][tT][pP][sS]?:\/\/)).*", - "message": "Enter only the hostname, such as org.region.cloudappsecurity.com, do not include the https:// prefix." - } - ] - }, - "visible": true } ] }, @@ -566,6 +548,15 @@ "validations": [] }, "visible": "[steps('additionalStep').advanced.showAdvanced]" + }, + { + "name": "storageAccountAllowBlobPublicAccess", + "type": "Microsoft.Common.CheckBox", + "label": "Allow blob public access for the storage account", + "defaultValue": false, + "constraints": {}, + "toolTip": "Set the allowBlobPublicAccess property on the storage account.", + "visible": "[steps('additionalStep').advanced.showAdvanced]" } ], "visible": true @@ -580,11 +571,12 @@ "STATConnectorName": "[coalesce(steps('namingStep').customNaming.statConnectorName, 'SentinelTriageAssistantv2')]", "STATConnectorDisplayName": "[coalesce(steps('namingStep').customNaming.statConnectorDisplayName, 'STAT v2')]", "storageAccountType": "Standard_LRS", + "storageAccountAllowBlobPublicAccess": "[if(equals(steps('additionalStep').advanced.storageAccountAllowBlobPublicAccess, true), true, false)]", + "MDCAEndpoint":"-", "FunctionPackage": "[coalesce(steps('additionalStep').advanced.functionPackage, 'https://github.com/briandelmsft/STAT-Function/releases/download/v2.1.0/stat.zip')]", "MSGraphEndpoint": "[coalesce(steps('apiStep').customApi.graphApi,'graph.microsoft.com')]", "M365Endpoint": "[coalesce(steps('apiStep').customApi.m365Api,'api.security.microsoft.com')]", "MDEEndpoint": "[coalesce(steps('apiStep').customApi.mdeApi,'api.securitycenter.microsoft.com')]", - "MDCAEndpoint": "[steps('apiStep').mdcaApi]", "LogAnalyticsEndpoint": "[coalesce(steps('apiStep').customApi.laApi,'api.loganalytics.io')]", "AzureResourceManagerEndpoint": "[coalesce(steps('apiStep').customApi.armApi,'management.azure.com')]", "ServicePrincipalClientId": "[coalesce(steps('identityStep').spId.clientId,steps('identityStep').userId.clientId, 'none')]", diff --git a/Deploy/statdeploy.json b/Deploy/statdeploy.json index ccd9afe..b1befad 100644 --- a/Deploy/statdeploy.json +++ b/Deploy/statdeploy.json @@ -116,6 +116,9 @@ }, "BasicSamplePlaybookName": { "type": "string" + }, + "storageAccountAllowBlobPublicAccess": { + "type": "bool" } }, "variables": { @@ -134,6 +137,9 @@ "apiVersion": "2022-05-01", "name": "[variables('storageAccountName')]", "location": "[parameters('location')]", + "properties": { + "allowBlobPublicAccess": "[parameters('storageAccountAllowBlobPublicAccess')]" + }, "sku": { "name": "[parameters('storageAccountType')]" }, @@ -379,4 +385,4 @@ ], "outputs": { } -} \ No newline at end of file +}