steampipe plugin install azure

Table: azure_eventgrid_domain - Query Azure Event Grid Domains using SQL

Azure Event Grid Domain is a management tool within Microsoft Azure that allows you to route events from your apps and services to specific handlers. It provides a centralized way to manage and route events that occur within your applications, including virtual machines, databases, web applications, and more. Azure Event Grid Domain helps you stay informed about the events occurring in your Azure resources and take appropriate actions when certain conditions are met.

Table Usage Guide

The azure_eventgrid_domain table provides insights into Event Grid Domains within Microsoft Azure. As a DevOps engineer, explore domain-specific details through this table, including domain name, resource group, location, input schema, and metric resource id. Utilize it to uncover information about the events routing, such as the domain's endpoint, the input schema of the domain, and the provisioning state of the domain.

Examples

Basic info

Discover the segments that have been provisioned within your Azure EventGrid domain. This query is useful for gaining insights into the current state of your domain, including identifying the type and status of each segment.

select
name,
id,
type,
provisioning_state
from
azure_eventgrid_domain;
select
name,
id,
type,
provisioning_state
from
azure_eventgrid_domain;

List domains not configured with private endpoint connections

Identify instances where Azure EventGrid domains are not configured with private endpoint connections. This can be useful for pinpointing potential security gaps in your network infrastructure.

select
name,
id,
type,
private_endpoint_connections
from
azure_eventgrid_domain
where
private_endpoint_connections is null;
select
name,
id,
type,
private_endpoint_connections
from
azure_eventgrid_domain
where
private_endpoint_connections is null;

List domains with local authentication disabled

Identify instances where domains have local authentication disabled within Azure's event grid. This can be useful to assess potential security risks and ensure compliance with security policies.

select
name,
id,
type,
disable_local_auth
from
azure_eventgrid_domain
where
disable_local_auth;
select
name,
id,
type,
disable_local_auth
from
azure_eventgrid_domain
where
disable_local_auth = 1;

Schema for azure_eventgrid_domain

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
auto_create_topic_with_first_subscriptionbooleanThis Boolean is used to specify the creation mechanism for 'all' the event grid domain topics associated with this event grid domain resource.
auto_delete_topic_with_last_subscriptionbooleanThis Boolean is used to specify the deletion mechanism for 'all' the Event Grid Domain Topics associated with this Event Grid Domain resource.
cloud_environmenttextThe Azure Cloud Environment.
created_attimestamp with time zoneThe timestamp of resource creation (UTC).
created_bytextThe identity that created the resource.
created_by_typetextThe type of identity that created the resource.
diagnostic_settingsjsonbA list of active diagnostic settings for the eventgrid domain.
disable_local_authbooleanThis boolean is used to enable or disable local auth. Default value is false. When the property is set to true, only AAD token will be used to authenticate if user is allowed to publish to the domain.
endpointtextEndpoint for the Event Grid Domain Resource which is used for publishing the events.
idtextFully qualified identifier of the resource.
identity_typetextThe type of managed identity used. The type 'SystemAssigned, UserAssigned' includes both an implicitly created identity and a set of user-assigned identities. The type 'None' will remove any identity. Possible values include: 'None', 'SystemAssigned', 'UserAssigned', 'SystemAssignedUserAssigned'.
inbound_ip_rulesjsonbThis can be used to restrict traffic from specific IPs instead of all IPs. Note: These are considered only if PublicNetworkAccess is enabled.
input_schematextThis determines the format that Event Grid should expect for incoming events published to the Event Grid Domain Resource. Possible values include: 'EventGridSchema', 'CustomEventSchema', 'CloudEventSchemaV10'.
input_schema_mappingjsonbInformation about the InputSchemaMapping which specified the info about mapping event payload.
last_modified_attimestamp with time zoneThe timestamp of resource last modification (UTC).
last_modified_bytextThe identity that last modified the resource.
last_modified_by_typetextThe type of identity that last modified the resource.
locationtextLocation of the resource.
nametext=The name of the resource.
principal_idtextThe principal ID of resource identity.
private_endpoint_connectionsjsonbList of private endpoint connections.
provisioning_statetextProvisioning state of the event grid domain resource. Possible values include: 'Creating', 'Updating', 'Deleting', 'Succeeded', 'Canceled', 'Failed'.
public_network_accesstextThis determines if traffic is allowed over public network. By default it is enabled.
regiontextThe Azure region/location in which the resource is located.
resource_grouptext=The resource group which holds this resource.
sku_nametextName of this SKU. Possible values include: 'Basic', 'Standard'.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
subscription_idtext=, !=, ~~, ~~*, !~~, !~~*The Azure Subscription ID in which the resource is located.
tagsjsonbA map of tags for the resource.
titletextTitle of the resource.
typetextThe resource type.
user_assigned_identitiesjsonbThe list of user identities associated with the resource. The user identity dictionary key references will be ARM resource ids.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- azure

You can pass the configuration to the command with the --config argument:

steampipe_export_azure --config '<your_config>' azure_eventgrid_domain