Official

Premium

Azure

The CloudQuery Azure source plugin extracts information from many of the supported services by Microsoft Azure and loads it into any supported CloudQuery destination

Publisher

cloudquery

Latest version

v17.9.1

Type

Source

Platforms

Date Published

Download CloudQuery CLI

Documentation Tables Changelog Destinations

Overview Configuration Table options Licenses

Overview #

The CloudQuery Azure source plugin extracts information from many of the supported services by Microsoft Azure and loads it into any supported CloudQuery destination (e.g. PostgreSQL, BigQuery, Snowflake, and more).

Authentication #

The Azure plugin uses DefaultAzureCredential to authenticate.

DefaultAzureCredential will attempt to authenticate via different mechanisms in order, stopping when one succeeds. The order is described in detail in the Azure SDK documentation.

For getting started quickly with the Azure plugin, we recommend using a service principal and exporting environment variables or using az login. The latter is highly discouraged for production use as it requires spawning a new Azure CLI process each time an authentication token is needed and causes memory and performance issues.

Authentication with Environment Variables #

You will need to create a service principal for the plugin to use:

Creating a service principal

First, install the Azure CLI (az).

Then, login with the Azure CLI:

az login

Then, create the service principal the plugin will use to access your cloud deployment. WARNING: The output of az ad sp create-for-rbac contains credentials that you must protect - Make sure to handle with appropriate care. This example uses bash - The commands for CMD and PowerShell are similar.

az provider register --namespace 'Microsoft.Security'

# Create a service-principal for the plugin and grant it access to your Azure resources in a subscription
az ad sp create-for-rbac --name cloudquery-sp --scopes /subscriptions/{subscription-id} --role Reader

You can choose any name you'd like for your service-principal, cloudquery-sp is an example. If the service principal doesn't exist it will create a new one, otherwise it will update the existing one

The output of az ad sp create-for-rbac should look like this:

{
  "appId": "YOUR AZURE_CLIENT_ID",
  "displayName": "cloudquery-sp",
  "password": "YOUR AZURE_CLIENT_SECRET",
  "tenant": "YOUR AZURE_TENANT_ID"
}

Syncing from multiple subscriptions

There are multiple ways to sync from multiple subscriptions. The most dynamic way is to specify the service principal scope as a Management Group (or set of groups) when creating the service principal. This will allow the service principal to access all subscriptions under the specified Management Group(s). CloudQuery will be able to automatically discover all new subscriptions as soon as they have been added to the Management Group, which means no configuration change will be necessary to discover new resources and subscriptions.

To create a service principal with access scoped at the Management Group level, use the following command:

az provider register --namespace 'Microsoft.Security'

# Create a service-principal for the plugin and grant it access to all resources under the specified Management Group
az ad sp create-for-rbac --name cloudquery-sp-root-1 --scopes /providers/Microsoft.Management/managementGroups/{management-group-name} --role Reader

If the Service Principal should only have access to specific subscriptions, you can specify the subscriptions in the --scopes parameter. For example, to grant access to all subscriptions that a user has access to at that specific time, you can use the following command:

az provider register --namespace 'Microsoft.Security'

# Create a service-principal for the plugin and grant it access to all subscriptions that the user has access to at that specific time
az ad sp create-for-rbac --name cloudquery-sp --scopes $(az account subscription list --query "[].id" -o tsv --only-show-errors | xargs) --role Reader

Using this method if any new subscriptions are added, the service principal will not have access to them until the command is run again.

Exporting environment variables

Next, you need to export the environment variables that the plugin will use to sync your cloud configuration. Copy them from the output of az ad sp create-for-rbac. The example shows how to export environment variables for Linux - exporting for CMD and PowerShell is similar.

AZURE_TENANT_ID is tenant in the JSON.
AZURE_CLIENT_ID is appId in the JSON.
AZURE_CLIENT_SECRET is password in the JSON.

export AZURE_TENANT_ID=<YOUR AZURE_TENANT_ID>
export AZURE_CLIENT_ID=<YOUR AZURE_CLIENT_ID>
export AZURE_CLIENT_SECRET=<YOUR AZURE_CLIENT_SECRET>

Authentication with `az login` #

First, install the Azure CLI (az). Then, login with the Azure CLI:

az login

You are now authenticated!

Using only az login is not recommended for production use, as it requires spawning a new Azure CLI process each time an authentication token is needed.

Query Examples #

Find all MySQL servers #

SELECT * FROM azure_mysql_servers;

Find storage accounts that are allowing non-HTTPS traffic #

SELECT * from azure_storage_accounts where enable_https_traffic_only = false;

Find all expired key vaults #

SELECT * from azure_keyvault_vault_keys where attributes_expires >= extract(epoch from now()) * 1000;

List the Memory and vCPUs of all available Azure Compute VM types #

SELECT
 distinct(vm.name),
 vcpus.capability_value AS "vCPUs",
 memory.capability_value AS "Memory"
FROM
 azure_compute_skus vm
 CROSS JOIN LATERAL (
   SELECT (caps ->> 'value') AS capability_value
   FROM jsonb_array_elements(vm.capabilities) caps
   WHERE (caps ->> 'name') = 'vCPUs'
 ) vcpus
 CROSS JOIN LATERAL (
   SELECT (caps ->> 'value') AS capability_value
   FROM jsonb_array_elements(vm.capabilities) caps
   WHERE (caps ->> 'name') = 'MemoryGB'
 ) memory
WHERE
 vm.resource_type = 'virtualMachines' order by name;

Results:

+---------------------------+-------+--------+
| name                      | vCPUs | Memory |
|---------------------------+-------+--------|
| Basic_A0                  | 1     | 0.75   |
| Basic_A1                  | 1     | 1.75   |
| Basic_A2                  | 2     | 3.5    |
| Basic_A3                  | 4     | 7      |
| Basic_A4                  | 8     | 14     |
| Standard_A0               | 1     | 0.75   |
| Standard_A1               | 1     | 1.75   |
| Standard_A1_v2            | 1     | 2      |
... (truncated)

Configuration #

CloudQuery Azure Source Plugin Configuration Reference

Example #

This example connects a single Azure subscription to a single destination. The (top level) source spec section is described in the Source Spec Reference.

kind: source
spec:
  # Source spec section
  name: "azure"
  path: "cloudquery/azure"
  registry: "cloudquery"
  version: "v17.9.1"
  destinations: ["postgresql"]
  tables: ["azure_compute_virtual_machines"]
  # Learn more about the configuration options at https://cql.ink/azure_source
  spec:
    # Optional parameters
    # subscriptions: []
    # cloud_name: ""
    # concurrency: 50000
    # discovery_concurrency: 400
    # skip_subscriptions: []
    # normalize_ids: false
    # oidc_token: ""
    # retry_options:
    #   max_retries: 3
    #   try_timeout_seconds: 0
    #   retry_delay_seconds: 4
    #   max_retry_delay_seconds: 60

Azure Spec #

This is the (nested) spec used by the Azure source plugin.

subscriptions ([]string) (default: empty. Will use all visible subscriptions)
Specify which subscriptions to sync data from.
cloud_name (string) (default: empty)
The name of the cloud environment to use. Possible values are AzurePublic, AzureGovernment, AzureChina.
concurrency (integer) (default: 50000):
The best effort maximum number of Go routines to use. Lower this number to reduce memory usage.
discovery_concurrency (integer) (default: 400)
During initialization the Azure source plugin discovers all resource groups and enabled resource providers per subscription, to be used later on during the sync process. The plugin runs the discovery process in parallel. This setting controls the maximum number of concurrent requests to the Azure API during discovery. Only accounts with many subscriptions should require modifying this setting, to either lower it to avoid network errors, or to increase it to speed up the discovery process.
scheduler (string) (default: dfs):
The scheduler to use when determining the priority of resources to sync. Supported values are dfs (depth-first search), round-robin, shuffle and shuffle-queue.
For more information about this, see performance tuning.
skip_subscriptions ([]string) (default: empty)
A list of subscription IDs that CloudQuery will skip syncing. This is useful if CloudQuery is discovering the list of subscription IDs and there are some subscriptions that you want to not even attempt syncing.
normalize_ids (bool) (default: false)
Enabling this setting will force all id column values to be lowercase. This is useful to avoid case sensitivity and uniqueness issues around the id primary keys
oidc_token (string) (default: empty)
An OIDC token can be used to authenticate with Azure instead of AZURE_CLIENT_SECRET. This is useful for Azure AD workload identity federation. When using this option, the AZURE_CLIENT_ID and AZURE_TENANT_ID environment variables must be set.
retry_options (RetryOptions) (default: empty)
Retry options to pass to the Azure Go SDK, see more details here

`retry_options` #

max_retries (integer) (default: 10)

Described in the Azure Go SDK. The plugin overrides the Azure SDK default (described in the link above) of 3 to 10.

try_timeout_seconds (integer) (default: 0)

Disabled by default. Described in the Azure Go SDK.

retry_delay_seconds (integer) (default: 4)

Described in the Azure Go SDK.

max_retry_delay_seconds (integer) (default: 60)

Described in the Azure Go SDK.

status_codes ([]integer) (default: null)

Described in the Azure Go SDK.

The default of null uses the default status codes. An empty value disables retries for HTTP status codes.

Table options #

This feature allows users to override the default options for specific tables. The object structure begins with the table name at the root level. The next level represents the API service name, and the final level contains the input object as defined by the API.

The format of the table_options object is as follows:

table_options:
  <table_name>:
    <service_name>:
      - <input_object>

A list of <input_object> objects should be provided. The plugin will iterate through these to make multiple API calls.

For example,

  table_options:
    azure_compute_virtual_machines:
      virtual_machines_options:
        - status_only: "true"
        - status_only: "false"
          expand: "instanceView"

The field names follow the same naming conventions as the Azure API, but are converted to snake case. For example StatusOnly is represented as status_only.

The following tables and APIs are supported:

table_options:
  azure_compute_virtual_machines:
    virtual_machines_options:
      - <VirtualMachines.ListAllOptions>

The full list of supported options are documented under the Table Options section of each table in the Azure plugin tables documentation.

Licenses #

The following tools / packages are used in this plugin:

Name	License
github.com/Azure/azure-sdk-for-go/sdk/azcore	MIT
github.com/Azure/azure-sdk-for-go/sdk/azidentity	MIT
github.com/Azure/azure-sdk-for-go/sdk/internal	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/advisor/armadvisor	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/analysisservices/armanalysisservices	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/apimanagement/armapimanagement/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/appcomplianceautomation/armappcomplianceautomation	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/appconfiguration/armappconfiguration/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/appcontainers/armappcontainers/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/applicationinsights/armapplicationinsights	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/appservice/armappservice/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/authorization/armauthorization/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/automation/armautomation	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/azurearcdata/armazurearcdata	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/batch/armbatch/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/billing/armbilling	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/botservice/armbotservice	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/cdn/armcdn/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/cognitiveservices/armcognitiveservices	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute/v5	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/confidentialledger/armconfidentialledger	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/confluent/armconfluent	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/connectedvmware/armconnectedvmware	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/connectedvmware/armconnectedvmwarev020101	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/consumption/armconsumption	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerinstance/armcontainerinstance/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerregistry/armcontainerregistry	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/containerservice/armcontainerservice/v5	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/cosmos/armcosmos/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/costmanagement/armcostmanagement/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/customerinsights/armcustomerinsights	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/dashboard/armdashboard	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/databox/armdatabox/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/databricks/armdatabricks	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datacatalog/armdatacatalog	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datadog/armdatadog	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datafactory/armdatafactory/v7	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datalake-analytics/armdatalakeanalytics	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datalake-store/armdatalakestore	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datamigration/armdatamigration	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/datashare/armdatashare	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/desktopvirtualization/armdesktopvirtualization/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/devhub/armdevhub	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/devops/armdevops	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/devtestlabs/armdevtestlabs	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/dns/armdns	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/dnsresolver/armdnsresolver	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/elastic/armelastic	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/engagementfabric/armengagementfabric	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/eventgrid/armeventgrid/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/eventhub/armeventhub	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/frontdoor/armfrontdoor	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/hanaonazure/armhanaonazure	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/hdinsight/armhdinsight	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/healthbot/armhealthbot	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/healthcareapis/armhealthcareapis/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/hybridcompute/armhybridcompute	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/hybriddatamanager/armhybriddatamanager	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/keyvault/armkeyvault	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/kusto/armkusto/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/labservices/armlabservices	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/logic/armlogic	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/machinelearning/armmachinelearning/v4	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/maintenance/armmaintenance	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/managementgroups/armmanagementgroups	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/mariadb/armmariadb	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/marketplace/armmarketplace	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/mediaservices/armmediaservices/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/monitor/armmonitor	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/mysql/armmysql	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/mysql/armmysqlflexibleservers	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/netapp/armnetapp/v7	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/network/armnetwork/v5	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/networkfunction/armnetworkfunction/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/nginx/armnginx/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/notificationhubs/armnotificationhubs	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/operationalinsights/armoperationalinsights	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/peering/armpeering	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/policyinsights/armpolicyinsights	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/portal/armportal	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/postgresql/armpostgresql	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/postgresql/armpostgresqlflexibleservers/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/postgresqlhsc/armpostgresqlhsc	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/powerbidedicated/armpowerbidedicated	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/privatedns/armprivatedns	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/providerhub/armproviderhub	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/purview/armpurview	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/quota/armquota	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/recoveryservices/armrecoveryservices	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/recoveryservices/armrecoveryservicesbackup/v4	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/recoveryservices/armrecoveryservicessiterecovery/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/redhatopenshift/armredhatopenshift	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/redis/armredis/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/relay/armrelay	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/reservations/armreservations/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resourcegraph/armresourcegraph	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resourcehealth/armresourcehealth	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armlinks	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armlocks	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armmanagedapplications	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armpolicy	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armresources	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armsubscriptions	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/saas/armsaas	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/search/armsearch	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/security/armsecurity	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/servicebus/armservicebus	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/servicefabric/armservicefabric/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/servicefabricmanagedclusters/armservicefabricmanagedclusters	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/sql/armsql	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/sqlvirtualmachine/armsqlvirtualmachine	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storagecache/armstoragecache/v3	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storagemover/armstoragemover/v2	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storagesync/armstoragesync	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/streamanalytics/armstreamanalytics	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/support/armsupport	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/synapse/armsynapse	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/trafficmanager/armtrafficmanager	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/windowsiot/armwindowsiot	MIT
github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/workloads/armworkloads	MIT
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azcertificates	MIT
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azkeys	MIT
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azsecrets	MIT
github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/internal	MIT
github.com/Azure/azure-sdk-for-go/sdk/storage/azqueue	MIT
github.com/AzureAD/microsoft-authentication-library-for-go/apps	MIT
github.com/adrg/xdg	MIT
github.com/apache/arrow-go/v18	Apache-2.0
github.com/apache/arrow/go/v13	Apache-2.0
github.com/apapsch/go-jsonmerge/v2	MIT
github.com/aws/aws-sdk-go-v2	Apache-2.0
github.com/aws/aws-sdk-go-v2/config	Apache-2.0
github.com/aws/aws-sdk-go-v2/credentials	Apache-2.0
github.com/aws/aws-sdk-go-v2/feature/ec2/imds	Apache-2.0
github.com/aws/aws-sdk-go-v2/internal/configsources	Apache-2.0
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2	Apache-2.0
github.com/aws/aws-sdk-go-v2/internal/ini	Apache-2.0
github.com/aws/aws-sdk-go-v2/internal/sync/singleflight	BSD-3-Clause
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/licensemanager	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/marketplacemetering	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/sso	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/ssooidc	Apache-2.0
github.com/aws/aws-sdk-go-v2/service/sts	Apache-2.0
github.com/aws/smithy-go	Apache-2.0
github.com/aws/smithy-go/internal/sync/singleflight	BSD-3-Clause
github.com/bahlo/generic-list-go	BSD-3-Clause
github.com/buger/jsonparser	MIT
github.com/cdfmlr/ellipsis	MIT
github.com/cenkalti/backoff/v5	MIT
github.com/cloudquery/cloudquery-api-go	MPL-2.0
github.com/cloudquery/codegen/jsonschema/docs	MPL-2.0
github.com/cloudquery/plugin-pb-go	MPL-2.0
github.com/cloudquery/plugin-sdk/v2/internal/glob	MIT
github.com/cloudquery/plugin-sdk/v2/schema	MIT
github.com/cloudquery/plugin-sdk/v2/types	MPL-2.0
github.com/cloudquery/plugin-sdk/v4	MPL-2.0
github.com/cloudquery/plugin-sdk/v4/glob	MIT
github.com/cloudquery/plugin-sdk/v4/scalar	MIT
github.com/davecgh/go-spew/spew	ISC
github.com/ghodss/yaml	MIT
github.com/go-logr/logr	Apache-2.0
github.com/go-logr/stdr	Apache-2.0
github.com/goccy/go-json	MIT
github.com/golang-jwt/jwt/v5	MIT
github.com/google/flatbuffers/go	Apache-2.0
github.com/google/uuid	BSD-3-Clause
github.com/gorilla/mux	BSD-3-Clause
github.com/grpc-ecosystem/go-grpc-middleware/v2/interceptors	Apache-2.0
github.com/grpc-ecosystem/grpc-gateway/v2	BSD-3-Clause
github.com/hashicorp/go-cleanhttp	MPL-2.0
github.com/hashicorp/go-retryablehttp	MPL-2.0
github.com/invopop/jsonschema	MIT
github.com/klauspost/compress	Apache-2.0
github.com/klauspost/compress/internal/snapref	BSD-3-Clause
github.com/klauspost/compress/zstd/internal/xxhash	MIT
github.com/kylelemons/godebug	Apache-2.0
github.com/mailru/easyjson	MIT
github.com/mattn/go-colorable	MIT
github.com/mattn/go-isatty	MIT
github.com/mitchellh/hashstructure/v2	MIT
github.com/oapi-codegen/runtime	Apache-2.0
github.com/pierrec/lz4/v4	BSD-3-Clause
github.com/pkg/browser	BSD-2-Clause
github.com/pmezard/go-difflib/difflib	BSD-3-Clause
github.com/rs/zerolog	MIT
github.com/samber/lo	MIT
github.com/santhosh-tekuri/jsonschema/v6	Apache-2.0
github.com/spf13/cobra	Apache-2.0
github.com/spf13/pflag	BSD-3-Clause
github.com/stretchr/testify	MIT
github.com/thoas/go-funk	MIT
github.com/wk8/go-ordered-map/v2	Apache-2.0
github.com/zeebo/xxh3	BSD-2-Clause
go.opentelemetry.io/auto/sdk	Apache-2.0
go.opentelemetry.io/otel	Apache-2.0
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp	Apache-2.0
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp	Apache-2.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace	Apache-2.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp	Apache-2.0
go.opentelemetry.io/otel/log	Apache-2.0
go.opentelemetry.io/otel/metric	Apache-2.0
go.opentelemetry.io/otel/sdk	Apache-2.0
go.opentelemetry.io/otel/sdk/log	Apache-2.0
go.opentelemetry.io/otel/sdk/metric	Apache-2.0
go.opentelemetry.io/otel/trace	Apache-2.0
go.opentelemetry.io/proto/otlp	Apache-2.0
golang.org/x/crypto/pkcs12	BSD-3-Clause
golang.org/x/exp	BSD-3-Clause
golang.org/x/net	BSD-3-Clause
golang.org/x/sync	BSD-3-Clause
golang.org/x/sys	BSD-3-Clause
golang.org/x/text	BSD-3-Clause
golang.org/x/xerrors	BSD-3-Clause
google.golang.org/genproto/googleapis/api/httpbody	Apache-2.0
google.golang.org/genproto/googleapis/rpc/status	Apache-2.0
google.golang.org/grpc	Apache-2.0
google.golang.org/protobuf	BSD-3-Clause
gopkg.in/yaml.v2	Apache-2.0
gopkg.in/yaml.v3	MIT

Loading plugin documentation

CloudQuery

Test CloudQuery's capabilities with a demo

Learning Center

Azure

Overview #

Authentication #

Authentication with Environment Variables #

Creating a service principal

Syncing from multiple subscriptions

Exporting environment variables

Query Examples #

Find all MySQL servers #

Find storage accounts that are allowing non-HTTPS traffic #

Find all expired key vaults #

List the Memory and vCPUs of all available Azure Compute VM types #

Configuration #

CloudQuery Azure Source Plugin Configuration Reference

Example #

Azure Spec #

`retry_options` #

Table options #

Licenses #

Overview #

Authentication #

Authentication with Environment Variables #

Creating a service principal

Syncing from multiple subscriptions

Exporting environment variables

Query Examples #

Find all MySQL servers #

Find storage accounts that are allowing non-HTTPS traffic #

Find all expired key vaults #

List the Memory and vCPUs of all available Azure Compute VM types #

Configuration #

CloudQuery Azure Source Plugin Configuration Reference

Example #

Azure Spec #

`retry_options` #

Table options #

Licenses #

Test CloudQuery's capabilities with a demo

Azure

Overview #

Authentication #

Authentication with Environment Variables #

Creating a service principal

Syncing from multiple subscriptions

Exporting environment variables

Authentication with az login #

Query Examples #

Find all MySQL servers #

Find storage accounts that are allowing non-HTTPS traffic #

Find all expired key vaults #

List the Memory and vCPUs of all available Azure Compute VM types #

Configuration #

CloudQuery Azure Source Plugin Configuration Reference

Example #

Azure Spec #

retry_options #

Table options #

Licenses #

Overview #

Authentication #

Authentication with Environment Variables #

Creating a service principal

Syncing from multiple subscriptions

Exporting environment variables

Authentication with az login #

Query Examples #

Find all MySQL servers #

Find storage accounts that are allowing non-HTTPS traffic #

Find all expired key vaults #

List the Memory and vCPUs of all available Azure Compute VM types #

Configuration #

CloudQuery Azure Source Plugin Configuration Reference

Example #

Azure Spec #

retry_options #

Table options #

Licenses #

Authentication with `az login` #

`retry_options` #

Authentication with `az login` #

`retry_options` #