Class: MicrosoftGraph::Models::SecurityAlertEvidence

Inherits:

Object

• Object
• MicrosoftGraph::Models::SecurityAlertEvidence

Includes:

MicrosoftKiotaAbstractions::AdditionalDataHolder, MicrosoftKiotaAbstractions::Parsable

Defined in:

lib/models/security_alert_evidence.rb

Direct Known Subclasses

SecurityAmazonResourceEvidence, SecurityAnalyzedMessageEvidence, SecurityAzureResourceEvidence, SecurityBlobContainerEvidence, SecurityBlobEvidence, SecurityCloudApplicationEvidence, SecurityContainerEvidence, SecurityContainerImageEvidence, SecurityContainerRegistryEvidence, SecurityDeviceEvidence, SecurityFileEvidence, SecurityGoogleCloudResourceEvidence, SecurityIpEvidence, SecurityKubernetesClusterEvidence, SecurityKubernetesControllerEvidence, SecurityKubernetesNamespaceEvidence, SecurityKubernetesPodEvidence, SecurityKubernetesSecretEvidence, SecurityKubernetesServiceAccountEvidence, SecurityKubernetesServiceEvidence, SecurityMailClusterEvidence, SecurityMailboxEvidence, SecurityOauthApplicationEvidence, SecurityProcessEvidence, SecurityRegistryKeyEvidence, SecurityRegistryValueEvidence, SecuritySecurityGroupEvidence, SecurityUrlEvidence, SecurityUserEvidence

Class Method Summary

• .create_from_discriminator_value(parse_node) ⇒ Object

  Creates a new instance of the appropriate class based on discriminator value.

Instance Method Summary

• #additional_data ⇒ Object

  Gets the additionalData property value.

• #additional_data=(value) ⇒ Object

  Sets the additionalData property value.

• #created_date_time ⇒ Object

  Gets the createdDateTime property value.

• #created_date_time=(value) ⇒ Object

  Sets the createdDateTime property value.

• #detailed_roles ⇒ Object

  Gets the detailedRoles property value.

• #detailed_roles=(value) ⇒ Object

  Sets the detailedRoles property value.

• #get_field_deserializers ⇒ Object

  The deserialization information for the current model.

• #initialize ⇒ Object constructor

  Instantiates a new securityAlertEvidence and sets the default values.

• #odata_type ⇒ Object

  Gets the @odata.type property value.

• #odata_type=(value) ⇒ Object

  Sets the @odata.type property value.

• #remediation_status ⇒ Object

  Gets the remediationStatus property value.

• #remediation_status=(value) ⇒ Object

  Sets the remediationStatus property value.

• #remediation_status_details ⇒ Object

  Gets the remediationStatusDetails property value.

• #remediation_status_details=(value) ⇒ Object

  Sets the remediationStatusDetails property value.

• #roles ⇒ Object

  Gets the roles property value.

• #roles=(value) ⇒ Object

  Sets the roles property value.

• #serialize(writer) ⇒ Object

  Serializes information the current object.

• #tags ⇒ Object

  Gets the tags property value.

• #tags=(value) ⇒ Object

  Sets the tags property value.

• #verdict ⇒ Object

  Gets the verdict property value.

• #verdict=(value) ⇒ Object

  Sets the verdict property value.

Constructor Details

#initialize ⇒ Object

Instantiates a new securityAlertEvidence and sets the default values.

# File 'lib/models/security_alert_evidence.rb', line 56

def initialize()
    @additional_data = Hash.new
end

Class Method Details

.create_from_discriminator_value(parse_node) ⇒ Object

Creates a new instance of the appropriate class based on discriminator value

Parameters:

• parse_node —

  The parse node to use to read the discriminator value and create the object

Returns:

• a security_alert_evidence

Raises:

• (StandardError)

# File 'lib/models/security_alert_evidence.rb', line 79

def self.create_from_discriminator_value(parse_node)
    raise StandardError, 'parse_node cannot be null' if parse_node.nil?
    mapping_value_node = parse_node.get_child_node("@odata.type")
    unless mapping_value_node.nil? then
        mapping_value = mapping_value_node.get_string_value
        case mapping_value
            when "#microsoft.graph.security.amazonResourceEvidence"
                return SecurityAmazonResourceEvidence.new
            when "#microsoft.graph.security.analyzedMessageEvidence"
                return SecurityAnalyzedMessageEvidence.new
            when "#microsoft.graph.security.azureResourceEvidence"
                return SecurityAzureResourceEvidence.new
            when "#microsoft.graph.security.blobContainerEvidence"
                return SecurityBlobContainerEvidence.new
            when "#microsoft.graph.security.blobEvidence"
                return SecurityBlobEvidence.new
            when "#microsoft.graph.security.cloudApplicationEvidence"
                return SecurityCloudApplicationEvidence.new
            when "#microsoft.graph.security.containerEvidence"
                return SecurityContainerEvidence.new
            when "#microsoft.graph.security.containerImageEvidence"
                return SecurityContainerImageEvidence.new
            when "#microsoft.graph.security.containerRegistryEvidence"
                return SecurityContainerRegistryEvidence.new
            when "#microsoft.graph.security.deviceEvidence"
                return SecurityDeviceEvidence.new
            when "#microsoft.graph.security.fileEvidence"
                return SecurityFileEvidence.new
            when "#microsoft.graph.security.googleCloudResourceEvidence"
                return SecurityGoogleCloudResourceEvidence.new
            when "#microsoft.graph.security.ipEvidence"
                return SecurityIpEvidence.new
            when "#microsoft.graph.security.kubernetesClusterEvidence"
                return SecurityKubernetesClusterEvidence.new
            when "#microsoft.graph.security.kubernetesControllerEvidence"
                return SecurityKubernetesControllerEvidence.new
            when "#microsoft.graph.security.kubernetesNamespaceEvidence"
                return SecurityKubernetesNamespaceEvidence.new
            when "#microsoft.graph.security.kubernetesPodEvidence"
                return SecurityKubernetesPodEvidence.new
            when "#microsoft.graph.security.kubernetesSecretEvidence"
                return SecurityKubernetesSecretEvidence.new
            when "#microsoft.graph.security.kubernetesServiceAccountEvidence"
                return SecurityKubernetesServiceAccountEvidence.new
            when "#microsoft.graph.security.kubernetesServiceEvidence"
                return SecurityKubernetesServiceEvidence.new
            when "#microsoft.graph.security.mailboxEvidence"
                return SecurityMailboxEvidence.new
            when "#microsoft.graph.security.mailClusterEvidence"
                return SecurityMailClusterEvidence.new
            when "#microsoft.graph.security.oauthApplicationEvidence"
                return SecurityOauthApplicationEvidence.new
            when "#microsoft.graph.security.processEvidence"
                return SecurityProcessEvidence.new
            when "#microsoft.graph.security.registryKeyEvidence"
                return SecurityRegistryKeyEvidence.new
            when "#microsoft.graph.security.registryValueEvidence"
                return SecurityRegistryValueEvidence.new
            when "#microsoft.graph.security.securityGroupEvidence"
                return SecuritySecurityGroupEvidence.new
            when "#microsoft.graph.security.urlEvidence"
                return SecurityUrlEvidence.new
            when "#microsoft.graph.security.userEvidence"
                return SecurityUserEvidence.new
        end
    end
    return SecurityAlertEvidence.new
end

Instance Method Details

#additional_data ⇒ Object

Gets the additionalData property value. Stores additional data not described in the OpenAPI description found when deserializing. Can be used for serialization as well.

Returns:

• a i_dictionary

# File 'lib/models/security_alert_evidence.rb', line 41

def additional_data
    return @additional_data
end

#additional_data=(value) ⇒ Object

Sets the additionalData property value. Stores additional data not described in the OpenAPI description found when deserializing. Can be used for serialization as well.

Parameters:

• value —

  Value to set for the additionalData property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 49

def additional_data=(value)
    @additional_data = value
end

#created_date_time ⇒ Object

Gets the createdDateTime property value. The date and time when the evidence was created and added to the alert. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.

Returns:

• a date_time

# File 'lib/models/security_alert_evidence.rb', line 63

def created_date_time
    return @created_date_time
end

#created_date_time=(value) ⇒ Object

Sets the createdDateTime property value. The date and time when the evidence was created and added to the alert. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z.

Parameters:

• value —

  Value to set for the createdDateTime property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 71

def created_date_time=(value)
    @created_date_time = value
end

#detailed_roles ⇒ Object

Gets the detailedRoles property value. Detailed description of the entity role/s in an alert. Values are free-form.

Returns:

• a string

# File 'lib/models/security_alert_evidence.rb', line 151

def detailed_roles
    return @detailed_roles
end

#detailed_roles=(value) ⇒ Object

Sets the detailedRoles property value. Detailed description of the entity role/s in an alert. Values are free-form.

Parameters:

• value —

  Value to set for the detailedRoles property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 159

def detailed_roles=(value)
    @detailed_roles = value
end

#get_field_deserializers ⇒ Object

The deserialization information for the current model

Returns:

• a i_dictionary

# File 'lib/models/security_alert_evidence.rb', line 166

def get_field_deserializers()
    return {
        "createdDateTime" => lambda {|n| @created_date_time = n.get_date_time_value() },
        "detailedRoles" => lambda {|n| @detailed_roles = n.get_collection_of_primitive_values(String) },
        "@odata.type" => lambda {|n| @odata_type = n.get_string_value() },
        "remediationStatus" => lambda {|n| @remediation_status = n.get_enum_value(MicrosoftGraph::Models::SecurityEvidenceRemediationStatus) },
        "remediationStatusDetails" => lambda {|n| @remediation_status_details = n.get_string_value() },
        "roles" => lambda {|n| @roles = n.get_collection_of_object_values(lambda {|pn| MicrosoftGraph::Models::SecurityEvidenceRole.create_from_discriminator_value(pn) }) },
        "tags" => lambda {|n| @tags = n.get_collection_of_primitive_values(String) },
        "verdict" => lambda {|n| @verdict = n.get_enum_value(MicrosoftGraph::Models::SecurityEvidenceVerdict) },
    }
end

#odata_type ⇒ Object

Gets the @odata.type property value. The OdataType property

Returns:

• a string

# File 'lib/models/security_alert_evidence.rb', line 182

def odata_type
    return @odata_type
end

#odata_type=(value) ⇒ Object

Sets the @odata.type property value. The OdataType property

Parameters:

• value —

  Value to set for the @odata.type property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 190

def odata_type=(value)
    @odata_type = value
end

#remediation_status ⇒ Object

Gets the remediationStatus property value. The remediationStatus property

Returns:

• a security_evidence_remediation_status

# File 'lib/models/security_alert_evidence.rb', line 197

def remediation_status
    return @remediation_status
end

#remediation_status=(value) ⇒ Object

Sets the remediationStatus property value. The remediationStatus property

Parameters:

• value —

  Value to set for the remediationStatus property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 205

def remediation_status=(value)
    @remediation_status = value
end

#remediation_status_details ⇒ Object

Gets the remediationStatusDetails property value. Details about the remediation status.

Returns:

• a string

# File 'lib/models/security_alert_evidence.rb', line 212

def remediation_status_details
    return @remediation_status_details
end

#remediation_status_details=(value) ⇒ Object

Sets the remediationStatusDetails property value. Details about the remediation status.

Parameters:

• value —

  Value to set for the remediationStatusDetails property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 220

def remediation_status_details=(value)
    @remediation_status_details = value
end

#roles ⇒ Object

Gets the roles property value. The role/s that an evidence entity represents in an alert, e.g., an IP address that is associated with an attacker will have the evidence role Attacker.

Returns:

• a security_evidence_role

# File 'lib/models/security_alert_evidence.rb', line 227

def roles
    return @roles
end

#roles=(value) ⇒ Object

Sets the roles property value. The role/s that an evidence entity represents in an alert, e.g., an IP address that is associated with an attacker will have the evidence role Attacker.

Parameters:

• value —

  Value to set for the roles property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 235

def roles=(value)
    @roles = value
end

#serialize(writer) ⇒ Object

Serializes information the current object

Parameters:

• writer —

  Serialization writer to use to serialize this model

Returns:

• a void

Raises:

• (StandardError)

# File 'lib/models/security_alert_evidence.rb', line 243

def serialize(writer)
    raise StandardError, 'writer cannot be null' if writer.nil?
    writer.write_date_time_value("createdDateTime", @created_date_time)
    writer.write_collection_of_primitive_values("detailedRoles", @detailed_roles)
    writer.write_string_value("@odata.type", @odata_type)
    writer.write_enum_value("remediationStatus", @remediation_status)
    writer.write_string_value("remediationStatusDetails", @remediation_status_details)
    writer.write_collection_of_object_values("roles", @roles)
    writer.write_collection_of_primitive_values("tags", @tags)
    writer.write_enum_value("verdict", @verdict)
    writer.write_additional_data(@additional_data)
end

#tags ⇒ Object

Gets the tags property value. Array of custom tags associated with an evidence instance, for example, to denote a group of devices, high-value assets, etc.

Returns:

• a string

# File 'lib/models/security_alert_evidence.rb', line 259

def tags
    return @tags
end

#tags=(value) ⇒ Object

Sets the tags property value. Array of custom tags associated with an evidence instance, for example, to denote a group of devices, high-value assets, etc.

Parameters:

• value —

  Value to set for the tags property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 267

def tags=(value)
    @tags = value
end

#verdict ⇒ Object

Gets the verdict property value. The verdict property

Returns:

• a security_evidence_verdict

# File 'lib/models/security_alert_evidence.rb', line 274

def verdict
    return @verdict
end

#verdict=(value) ⇒ Object

Sets the verdict property value. The verdict property

Parameters:

• value —

  Value to set for the verdict property.

Returns:

• a void

# File 'lib/models/security_alert_evidence.rb', line 282

def verdict=(value)
    @verdict = value
end