Skip to content
/ ComplianceDemoApp Public
forked from tauhid621/ComplianceDemoApp

Demo app to test Azure policy compliance action

0 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rgsubh/ComplianceDemoApp

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

56 Commits
.github/workflows
.github/workflows
 
 
nodeApp
nodeApp
 
 
README.md
README.md
 
 

Repository files navigation

Compliance Scan Action

GitHub action to trigger an on-demand scan of Azure Policy for a given scope.

Demo Script:

This action can be used for 3 scenarios:

  1. As a developer I want to make sure the resource is complaint before/after I deploy my code/application
  2. As an IT team/Admin I want to periodically scan Subscriptions/RG/Resource for compliance and get a summary
  3. As an policy developer I want to test my new/updated policy by triggering on demand scan for this policy alone on a scope

Developer scenario:

compliant-webapp-deployment

This deployment workflow is triggered on code push to branch. It deploys the node app to Azure Web APP server. There are no non-compliance changes made as a part of this deployment and hence the post-deployment compliance scan will be successful.

noncompliant-webapp-deployment

This deployment workflow is triggered on code push to branch. It deploys the node app to Azure Web APP server. There are non-compliance changes made as a part of this deployment i.e:

  • "Redirect all HTTP traffic to HTTPS" is disabled
    There are polices "Web Application should only be accessible over HTTPS" assigned which mandate APP to be accessed only via HTTPS.

About

Demo app to test Azure policy compliance action

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 65.3%
  • JavaScript 34.7%