Skip to content

Commit

Permalink
Vulnerability Scanner: Remove legacy auth (#1246)
Browse files Browse the repository at this point in the history 
* remove secrets scripts

* disable username/password auth
  • Loading branch information
@Richard87
Richard87 authored Mar 15, 2024
1 parent 23a6d07 commit 5e17e9c
Show file tree
Hide file tree
Showing 12 changed files with 8 additions and 580 deletions.
13 changes: 1 addition & 12 deletions scripts/radix-zone/radix_zone_c2.env
View file
Original file line number Diff line number Diff line change
Expand Up @@ -179,18 +179,7 @@ RADIX_API_REQUIRE_APP_AD_GROUPS=true
### Radix Vulnerability Scanner Environment
###


AZ_RESOURCE_GROUP_VULNERABILITY_SCAN_SQL="vulnerability-scan-$RADIX_ZONE_MIGRATE"
KV_SECRET_VULNERABILITY_SCAN_SQL_ADMIN="radix-vulnerability-scan-db-admin"
KV_SECRET_VULNERABILITY_SCAN_DB_WRITER="radix-vulnerability-scan-db-writer"
KV_SECRET_VULNERABILITY_SCAN_DB_API="radix-vulnerability-scan-db-api"
VULNERABILITY_SCAN_SQL_SERVER_NAME="sql-radix-vulnerability-scan-$RADIX_ZONE"
VULNERABILITY_SCAN_SQL_SERVER_FQDN="$VULNERABILITY_SCAN_SQL_SERVER_NAME.database.windows.net"
VULNERABILITY_SCAN_SQL_DATABASE_NAME=radix-vulnerability-scan
VULNERABILITY_SCAN_SQL_ADMIN_LOGIN=radix
VULNERABILITY_SCAN_SQL_API_USER=radix-scanner-api
VULNERABILITY_SCAN_SQL_SCANNER_USER=radix-scanner-writer
VULNERABILITY_SCAN_API_CONFIG="radixconfig.c2.yaml"
VULNERABILITY_SCAN_API_CONFIG="radixconfig.${RADIX_ZONE}.yaml"

#######################################################################################
### Radix Cost Allocation Environment
Expand Down
11 changes: 0 additions & 11 deletions scripts/radix-zone/radix_zone_dev.env
View file
Original file line number Diff line number Diff line change
Expand Up @@ -184,17 +184,6 @@ RADIX_API_REQUIRE_APP_AD_GROUPS=true
### Radix Vulnerability Scanner Environment
###


AZ_RESOURCE_GROUP_VULNERABILITY_SCAN_SQL="vulnerability-scan-$RADIX_ZONE"
KV_SECRET_VULNERABILITY_SCAN_SQL_ADMIN=radix-vulnerability-scan-db-admin
KV_SECRET_VULNERABILITY_SCAN_DB_WRITER="radix-vulnerability-scan-db-writer"
KV_SECRET_VULNERABILITY_SCAN_DB_API="radix-vulnerability-scan-db-api"
VULNERABILITY_SCAN_SQL_SERVER_NAME="sql-radix-vulnerability-scan-$RADIX_ZONE"
VULNERABILITY_SCAN_SQL_SERVER_FQDN="$VULNERABILITY_SCAN_SQL_SERVER_NAME.database.windows.net"
VULNERABILITY_SCAN_SQL_DATABASE_NAME=radix-vulnerability-scan
VULNERABILITY_SCAN_SQL_ADMIN_LOGIN=radix
VULNERABILITY_SCAN_SQL_API_USER=radix-scanner-api
VULNERABILITY_SCAN_SQL_SCANNER_USER=radix-scanner-writer
VULNERABILITY_SCAN_API_CONFIG="radixconfig.${RADIX_ZONE}.yaml"

#######################################################################################
Expand Down
10 changes: 0 additions & 10 deletions scripts/radix-zone/radix_zone_playground.env
View file
Original file line number Diff line number Diff line change
Expand Up @@ -181,16 +181,6 @@ RADIX_API_REQUIRE_APP_AD_GROUPS=false
### Radix Vulnerability Scanner Environment
###

AZ_RESOURCE_GROUP_VULNERABILITY_SCAN_SQL="vulnerability-scan-$RADIX_ZONE"
KV_SECRET_VULNERABILITY_SCAN_SQL_ADMIN="radix-vulnerability-scan-db-admin-$RADIX_ZONE"
KV_SECRET_VULNERABILITY_SCAN_DB_WRITER="radix-vulnerability-scan-db-writer"
KV_SECRET_VULNERABILITY_SCAN_DB_API="radix-vulnerability-scan-db-api"
VULNERABILITY_SCAN_SQL_SERVER_NAME="sql-radix-vulnerability-scan-$RADIX_ZONE"
VULNERABILITY_SCAN_SQL_SERVER_FQDN="$VULNERABILITY_SCAN_SQL_SERVER_NAME.database.windows.net"
VULNERABILITY_SCAN_SQL_DATABASE_NAME=radix-vulnerability-scan
VULNERABILITY_SCAN_SQL_ADMIN_LOGIN=radix
VULNERABILITY_SCAN_SQL_API_USER=radix-scanner-api
VULNERABILITY_SCAN_SQL_SCANNER_USER=radix-scanner-writer
VULNERABILITY_SCAN_API_CONFIG="radixconfig.${RADIX_ZONE}.yaml"

#######################################################################################
Expand Down
12 changes: 1 addition & 11 deletions scripts/radix-zone/radix_zone_prod.env
View file
Original file line number Diff line number Diff line change
Expand Up @@ -185,17 +185,7 @@ RADIX_API_REQUIRE_APP_AD_GROUPS=true
### Radix Vulnerability Scanner Environment
###

AZ_RESOURCE_GROUP_VULNERABILITY_SCAN_SQL="vulnerability-scan-platform"
KV_SECRET_VULNERABILITY_SCAN_SQL_ADMIN="radix-vulnerability-scan-db-admin"
KV_SECRET_VULNERABILITY_SCAN_DB_WRITER="radix-vulnerability-scan-db-writer"
KV_SECRET_VULNERABILITY_SCAN_DB_API="radix-vulnerability-scan-db-api"
VULNERABILITY_SCAN_SQL_SERVER_NAME="sql-radix-vulnerability-scan-platform"
VULNERABILITY_SCAN_SQL_SERVER_FQDN="$VULNERABILITY_SCAN_SQL_SERVER_NAME.database.windows.net"
VULNERABILITY_SCAN_SQL_DATABASE_NAME=radix-vulnerability-scan
VULNERABILITY_SCAN_SQL_ADMIN_LOGIN=radix
VULNERABILITY_SCAN_SQL_API_USER=radix-scanner-api
VULNERABILITY_SCAN_SQL_SCANNER_USER=radix-scanner-writer
VULNERABILITY_SCAN_API_CONFIG="radixconfig.platform.yaml"
VULNERABILITY_SCAN_API_CONFIG="radixconfig.${RADIX_ZONE_MIGRATE}.yaml"

#######################################################################################
### Radix Cost Allocation Environment
Expand Down
185 changes: 0 additions & 185 deletions scripts/rotate-secrets/services/vulnerability-scan-reader.sh
View file

This file was deleted.

Loading

0 comments on commit 5e17e9c

Please sign in to comment.