Microsoft.security insights 2021 09 01 preview add missing resources (#…

…15531)

* Copy missing resources specs and examples from 2019-01-01-preview

* Update added resources specs and examples and extract common types

* Update readme

* Extract ClientInfo, UserInfo and Lable to common types

* Fix SpellCheck and Avocado

* Return ThreatIntelligence to readme

* Fix broken refs in Watchlists

* Resolve duplicate schema errors

* Run prettier

* Make common types prettier

* Add required property to operations according to ARM requirments

* Fix readme

* Add file separators to readme

* Rename example file

* Supress OBJECT_ADDITIONAL_PROPERTIES

* Add 'where' to OBJECT_ADDITIONAL_PROPERTIES supression

* Move OBJECT_ADDITIONAL_PROPERTIES supression under general Supression section.

* Copy dataConnectors from 2021-03-01-preview

* Update version of dataConnectors (this was done as there were errors when trying to generate C# client. Copying and changing version again fixed the problem).

* Add dataConnectorsCheckRequirments path, parameters and definitions from 2019-01-01-preveiw

Co-authored-by: Anat Gilenson <[email protected]>

specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2021-09-01-preview/AlertRules.json

@@ -804,61 +804,6 @@
         "value"
       ]
     },
-    "AlertSeverity": {
-      "description": "The severity of the alert",
-      "enum": [
-        "High",
-        "Medium",
-        "Low",
-        "Informational"
-      ],
-      "type": "string",
-      "x-ms-enum": {
-        "modelAsString": true,
-        "name": "AlertSeverity",
-        "values": [
-          {
-            "description": "High severity",
-            "value": "High"
-          },
-          {
-            "description": "Medium severity",
-            "value": "Medium"
-          },
-          {
-            "description": "Low severity",
-            "value": "Low"
-          },
-          {
-            "description": "Informational severity",
-            "value": "Informational"
-          }
-        ]
-      }
-    },
-    "AttackTactic": {
-      "description": "The severity for alerts created by this alert rule.",
-      "enum": [
-        "InitialAccess",
-        "Execution",
-        "Persistence",
-        "PrivilegeEscalation",
-        "DefenseEvasion",
-        "CredentialAccess",
-        "Discovery",
-        "LateralMovement",
-        "Collection",
-        "Exfiltration",
-        "CommandAndControl",
-        "Impact",
-        "PreAttack"
-      ],
-      "type": "string",
-      "x-ms-enum": {
-        "modelAsString": true,
-        "name": "AttackTactic"
-      }
-    },
     "MLBehaviorAnalyticsAlertRule": {
       "allOf": [
         {
@@ -904,14 +849,14 @@
           "type": "string"
         },
         "severity": {
-          "$ref": "#/definitions/AlertSeverity",
+          "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
           "description": "The severity for alerts created by this alert rule.",
           "readOnly": true
         },
         "tactics": {
           "description": "The tactics of the alert rule",
           "items": {
-            "$ref": "#/definitions/AttackTactic"
+            "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
           },
           "readOnly": true,
           "type": "array"
@@ -940,13 +885,13 @@
           "description": "MLBehaviorAnalytics alert rule template properties.",
           "properties": {
             "severity": {
-              "$ref": "#/definitions/AlertSeverity",
+              "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
               "description": "The severity for alerts created by this alert rule."
             },
             "tactics": {
               "description": "The tactics of the alert rule template.",
               "items": {
-                "$ref": "#/definitions/AttackTactic"
+                "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
               },
               "type": "array"
             }
@@ -1010,14 +955,14 @@
           "type": "string"
         },
         "severity": {
-          "$ref": "#/definitions/AlertSeverity",
+          "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
           "description": "The severity for alerts created by this alert rule.",
           "readOnly": true
         },
         "tactics": {
           "description": "The tactics of the alert rule",
           "items": {
-            "$ref": "#/definitions/AttackTactic"
+            "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
           },
           "readOnly": true,
           "type": "array"
@@ -1046,13 +991,13 @@
           "description": "Fusion alert rule template properties",
           "properties": {
             "severity": {
-              "$ref": "#/definitions/AlertSeverity",
+              "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
               "description": "The severity for alerts created by this alert rule."
             },
             "tactics": {
               "description": "The tactics of the alert rule template",
               "items": {
-                "$ref": "#/definitions/AttackTactic"
+                "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
               },
               "type": "array"
             }
@@ -1116,14 +1061,14 @@
           "type": "string"
         },
         "severity": {
-          "$ref": "#/definitions/AlertSeverity",
+          "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
           "description": "The severity for alerts created by this alert rule.",
           "readOnly": true
         },
         "tactics": {
           "description": "The tactics of the alert rule",
           "items": {
-            "$ref": "#/definitions/AttackTactic"
+            "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
           },
           "readOnly": true,
           "type": "array"
@@ -1152,13 +1097,13 @@
           "description": "Threat Intelligence alert rule template properties",
           "properties": {
             "severity": {
-              "$ref": "#/definitions/AlertSeverity",
+              "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
               "description": "The severity for alerts created by this alert rule."
             },
             "tactics": {
               "description": "The tactics of the alert rule template",
               "items": {
-                "$ref": "#/definitions/AttackTactic"
+                "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
               },
               "type": "array"
             }
@@ -1231,7 +1176,7 @@
         "severitiesFilter": {
           "description": "the alerts' severities on which the cases will be generated",
           "items": {
-            "$ref": "#/definitions/AlertSeverity"
+            "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum"
           },
           "type": "array"
         }
@@ -1353,7 +1298,7 @@
         "tactics": {
           "description": "The tactics of the alert rule",
           "items": {
-            "$ref": "#/definitions/AttackTactic"
+            "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
           },
           "type": "array"
         },
@@ -1398,7 +1343,7 @@
             "tactics": {
               "description": "The tactics of the alert rule template",
               "items": {
-                "$ref": "#/definitions/AttackTactic"
+                "$ref": "./common/AlertTypes.json#/definitions/AttackTactic"
               },
               "type": "array"
             }
@@ -1478,7 +1423,7 @@
           "type": "string"
         },
         "severity": {
-          "$ref": "#/definitions/AlertSeverity",
+          "$ref": "./common/AlertTypes.json#/definitions/AlertSeverityEnum",
           "description": "The severity for alerts created by this alert rule."
         },
         "triggerOperator": {