turbot/azure

steampipe plugin install azuresteampipe plugin install azure
azure_ad_groupazure_ad_service_principalazure_ad_userazure_api_managementazure_app_service_environmentazure_app_service_function_appazure_app_service_planazure_app_service_web_appazure_application_security_groupazure_compute_availability_setazure_compute_diskazure_compute_disk_encryption_setazure_compute_disk_metric_read_opsazure_compute_disk_metric_read_ops_dailyazure_compute_disk_metric_read_ops_hourlyazure_compute_disk_metric_write_opsazure_compute_disk_metric_write_ops_dailyazure_compute_disk_metric_write_ops_hourlyazure_compute_imageazure_compute_resource_skuazure_compute_snapshotazure_compute_virtual_machineazure_compute_virtual_machine_metric_cpu_utilizationazure_compute_virtual_machine_metric_cpu_utilization_dailyazure_compute_virtual_machine_metric_cpu_utilization_hourlyazure_cosmosdb_accountazure_cosmosdb_mongo_databaseazure_cosmosdb_sql_databaseazure_data_factoryazure_data_factory_datasetazure_data_factory_pipelineazure_diagnostic_settingazure_express_route_circuitazure_firewallazure_key_vaultazure_key_vault_keyazure_key_vault_secretazure_kubernetes_clusterazure_locationazure_log_alertazure_log_profileazure_management_lockazure_mysql_serverazure_network_interfaceazure_network_security_groupazure_network_watcherazure_network_watcher_flow_logazure_policy_assignmentazure_policy_definitionazure_postgresql_serverazure_providerazure_public_ipazure_resource_groupazure_role_assignmentazure_role_definitionazure_route_tableazure_security_center_auto_provisioningazure_security_center_contactazure_security_center_settingazure_security_center_subscription_pricingazure_sql_databaseazure_sql_serverazure_storage_accountazure_storage_blobazure_storage_blob_serviceazure_storage_containerazure_storage_queueazure_storage_tableazure_storage_table_serviceazure_subnetazure_subscriptionazure_tenantazure_virtual_networkazure_virtual_network_gateway

Table: azure_storage_container

A container organizes a set of blobs, similar to a directory in a file system. A storage account can include an unlimited number of containers, and a container can store an unlimited number of blobs.

Examples

Basic info

select
name,
id,
type,
account_name
from
azure_storage_container;

List containers which are publicly accessible

select
name,
id,
type,
account_name,
public_access
from
azure_storage_container
where
public_access <> 'None';
select
name,
id,
type,
account_name,
has_legal_hold
from
azure_storage_container
where
has_legal_hold;

List containers which are either leased or have a broken lease state

select
name,
id,
type,
account_name,
lease_state
from
azure_storage_container
where
lease_state = 'Leased'
or lease_state = 'Broken';

List containers with infinite lease duration

select
name,
id,
type,
account_name,
lease_duration
from
azure_storage_container
where
lease_duration = 'Infinite';

List containers with a remaining retention period of 7 days

select
name,
id,
type,
account_name,
remaining_retention_days
from
azure_storage_container
where
remaining_retention_days = 7;

.inspect azure_storage_container

Azure Storage Container

NameTypeDescription
account_nametextThe friendly name that identifies the storage account.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
default_encryption_scopetextDefault the container to use specified encryption scope for all writes.
deletedbooleanIndicates whether the blob container was deleted.
deleted_timetimestamp without time zoneSpecifies the time when the container was deleted.
deny_encryption_scope_overridebooleanIndicates whether block override of encryption scope from the container default, or not.
has_immutability_policybooleanThe hasImmutabilityPolicy public property is set to true by SRP if ImmutabilityPolicy has been created for this container. The hasImmutabilityPolicy public property is set to false by SRP if ImmutabilityPolicy has not been created for this container.
has_legal_holdbooleanThe hasLegalHold public property is set to true by SRP if there are at least one existing tag. The hasLegalHold public property is set to false by SRP if all existing legal hold tags are cleared out. There can be a maximum of 1000 blob containers with hasLegalHold=true for a given account.
idtextContains ID to identify a container uniquely.
immutability_policyjsonbThe ImmutabilityPolicy property of the container.
last_modified_timetimestamp without time zoneSpecifies the date and time the container was last modified.
lease_durationtextSpecifies whether the lease on a container is of infinite or fixed duration, only when the container is leased. Possible values are: 'Infinite', 'Fixed'.
lease_statetextSpecifies the lease state of the container.
lease_statustextSpecifies the lease status of the container.
legal_holdjsonbThe LegalHold property of the container.
metadatajsonbA name-value pair to associate with the container as metadata.
nametextThe friendly name that identifies the container.
public_accesstextSpecifies whether data in the container may be accessed publicly and the level of access.
remaining_retention_daysbigintRemaining retention days for soft deleted blob container.
resource_grouptextThe resource group which holds this resource.
subscription_idtextThe Azure Subscription ID in which the resource is located.
titletextTitle of the resource.
typetextSpecifies the type of the container.
versiontextThe version of the deleted blob container.