last sync: 2021-Jul-23 16:37:57 UTC

Azure Policy definition

Bot Service endpoint should be a valid HTTPS URI

Name Bot Service endpoint should be a valid HTTPS URI
Azure Portal
Id 6164527b-e1ee-4882-8673-572f425f5e0a
Version 1.0.1
details on versioning
Category Bot Service
Microsoft docs
Description Data can be tampered with during transmission. Protocols exist that provide encryption to address problems of misuse and tampering. To ensure your bots are communicating only over encrypted channels, set the endpoint to a valid HTTPS URI. This ensures the HTTPS protocol is used to encrypt your data in transit and is also often a requirement for compliance with regulatory or industry standards. Please visit: https://docs.microsoft.com/azure/bot-service/bot-builder-security-guidelines.
Mode Indexed
Type BuiltIn
Preview FALSE
Deprecated FALSE
Effect Default: audit
Allowed: (audit, deny, disabled)
Used RBAC Role none
History
Date/Time (UTC ymd) (i) Change type Change detail
2021-01-27 16:54:46 change Patch (1.0.0 > 1.0.1) *changes on text case sensitivity are not tracked
2021-01-05 16:06:49 add 6164527b-e1ee-4882-8673-572f425f5e0a
Used in Initiatives none
JSON Changes

JSON
{
  "properties": {
    "displayName": "Bot Service endpoint should be a valid HTTPS URI",
    "policyType": "BuiltIn",
    "mode": "Indexed",
    "description": "Data can be tampered with during transmission. Protocols exist that provide encryption to address problems of misuse and tampering. To ensure your bots are communicating only over encrypted channels, set the endpoint to a valid HTTPS URI. This ensures the HTTPS protocol is used to encrypt your data in transit and is also often a requirement for compliance with regulatory or industry standards. Please visit: https://docs.microsoft.com/azure/bot-service/bot-builder-security-guidelines.",
    "metadata": {
      "version": "1.0.1",
      "category": "Bot Service"
    },
    "parameters": {
      "effect": {
        "type": "String",
        "metadata": {
          "displayName": "Effect",
          "description": "The desired effect of the policy."
        },
        "allowedValues": [
          "audit",
          "deny",
          "disabled"
        ],
        "defaultValue": "audit"
      }
    },
    "policyRule": {
      "if": {
        "allOf": [
          {
            "field": "type",
            "equals": "Microsoft.BotService/botServices"
          },
          {
            "field": "Microsoft.BotService/botServices/endpoint",
            "notLike": "https://*"
          }
        ]
      },
      "then": {
      "effect": "[parameters('effect')]"
      }
    }
  },
  "id": "/providers/Microsoft.Authorization/policyDefinitions/6164527b-e1ee-4882-8673-572f425f5e0a",
  "type": "Microsoft.Authorization/policyDefinitions",
  "name": "6164527b-e1ee-4882-8673-572f425f5e0a"
}