Observação
O acesso a essa página exige autorização. Você pode tentar entrar ou alterar diretórios.
O acesso a essa página exige autorização. Você pode tentar alterar os diretórios.
本文提供Azure订阅事件的属性和架构。 有关事件架构的简介,请参阅Azure Event Grid事件架构。
Azure订阅和资源组发出相同的事件类型。 事件类型与资源更改或作相关。 主要区别是资源组为资源组中的资源发出事件,Azure订阅针对订阅中的资源发出事件。
为发送到 management.chinacloudapi.cn的 PUT、PATCH、POST 和 DELETE作创建资源事件。 GET作不创建事件。 发送到数据平面的作(如 myaccount.blob.core.chinacloudapi.cn)不会创建事件。 作事件为作提供事件数据,例如列出资源的密钥。
订阅Azure订阅的事件时,终结点将接收该订阅的所有事件。 事件可以包括要查看的事件,例如更新虚拟机,但也包括不重要的事件,例如在部署历史记录中编写新条目。 可以在终结点接收所有事件,并编写处理要处理的事件的代码。 或者,可以在创建事件订阅时设置筛选器。
若要以编程方式处理事件,可以通过查看 operationName 值对事件进行排序。 例如,事件终结点可能只处理等于 Microsoft.Compute/virtualMachines/write 或等于或 Microsoft.Storage/storageAccounts/write。
事件主题是作目标的资源的资源 ID。 若要筛选资源的事件,在创建事件订阅时提供该资源 ID。 若要按资源类型进行筛选,请使用以下格式的值: /subscriptions/<subscription-id>/resourcegroups/<resource-group>/providers/Microsoft.Compute/virtualMachines
可用事件类型
Azure订阅从Azure Resource Manager发出管理事件,例如创建 VM 或删除存储帐户时。
| 事件类型 | 说明 |
|---|---|
| Microsoft.Resources.ResourceActionCancel | 取消对资源执行的作时引发。 |
| Microsoft.Resources.ResourceActionFailure | 在资源作失败时引发。 |
| Microsoft.Resources.ResourceActionSuccess | 在资源作成功时引发。 |
| Microsoft.Resources.ResourceDeleteCancel | 取消删除作时引发。 取消模板部署时,会发生此事件。 |
| Microsoft.Resources.ResourceDeleteFailure | 删除作失败时引发。 |
| Microsoft.Resources.ResourceDeleteSuccess | 删除作成功时引发。 |
| Microsoft.Resources.ResourceWriteCancel | 在取消创建或更新作时引发。 |
| Microsoft.Resources.ResourceWriteFailure | 创建或更新作失败时引发。 |
| Microsoft.Resources.ResourceWriteSuccess | 创建或更新作成功时引发。 |
示例事件
以下示例演示 ResourceWriteSuccess 事件的架构。 同一架构用于具有不同值的 ResourceWriteFailure 和 eventType 事件。
[{
"subject": "/subscriptions/{subscription-id}/resourcegroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"topic": "/subscriptions/{subscription-id}",
"type": "Microsoft.Resources.ResourceWriteSuccess",
"time": "2018-07-19T18:38:04.6117357Z",
"id": "4db48cba-50a2-455a-93b4-de41a3b5b7f6",
"data": {
"authorization": {
"scope": "/subscriptions/{subscription-id}/resourcegroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"action": "Microsoft.Storage/storageAccounts/write",
"evidence": {
"role": "Subscription Admin"
}
},
"claims": {
"aud": "{audience-claim}",
"iss": "{issuer-claim}",
"iat": "{issued-at-claim}",
"nbf": "{not-before-claim}",
"exp": "{expiration-claim}",
"_claim_names": "{\"groups\":\"src1\"}",
"_claim_sources": "{\"src1\":{\"endpoint\":\"{URI}\"}}",
"http://schemas.microsoft.com/claims/authnclassreference": "1",
"aio": "{token}",
"http://schemas.microsoft.com/claims/authnmethodsreferences": "rsa,mfa",
"appid": "{ID}",
"appidacr": "2",
"http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier": "{ID}",
"e_exp": "{expiration}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname": "{last-name}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname": "{first-name}",
"ipaddr": "{IP-address}",
"name": "{full-name}",
"http://schemas.microsoft.com/identity/claims/objectidentifier": "{ID}",
"onprem_sid": "{ID}",
"puid": "{ID}",
"http://schemas.microsoft.com/identity/claims/scope": "user_impersonation",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier": "{ID}",
"http://schemas.microsoft.com/identity/claims/tenantid": "{ID}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name": "{user-name}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn": "{user-name}",
"uti": "{ID}",
"ver": "1.0"
},
"correlationId": "{ID}",
"resourceProvider": "Microsoft.Storage",
"resourceUri": "/subscriptions/{subscription-id}/resourcegroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"operationName": "Microsoft.Storage/storageAccounts/write",
"status": "Succeeded",
"subscriptionId": "{subscription-id}",
"tenantId": "{tenant-id}"
},
"specversion": "`1.0"
}]
以下示例显示了 ResourceDeleteSuccess 事件的架构。 同一架构用于具有不同值的 ResourceDeleteFailure 和 eventType 事件。
[{
"subject": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"source": "/subscriptions/{subscription-id}",
"type": "Microsoft.Resources.ResourceDeleteSuccess",
"time": "2018-07-19T19:24:12.763881Z",
"id": "19a69642-1aad-4a96-a5ab-8d05494513ce",
"data": {
"authorization": {
"scope": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"action": "Microsoft.Storage/storageAccounts/delete",
"evidence": {
"role": "Subscription Admin"
}
},
"claims": {
"aud": "{audience-claim}",
"iss": "{issuer-claim}",
"iat": "{issued-at-claim}",
"nbf": "{not-before-claim}",
"exp": "{expiration-claim}",
"_claim_names": "{\"groups\":\"src1\"}",
"_claim_sources": "{\"src1\":{\"endpoint\":\"{URI}\"}}",
"http://schemas.microsoft.com/claims/authnclassreference": "1",
"aio": "{token}",
"http://schemas.microsoft.com/claims/authnmethodsreferences": "rsa,mfa",
"appid": "{ID}",
"appidacr": "2",
"http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier": "{ID}",
"e_exp": "262800",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname": "{last-name}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname": "{first-name}",
"ipaddr": "{IP-address}",
"name": "{full-name}",
"http://schemas.microsoft.com/identity/claims/objectidentifier": "{ID}",
"onprem_sid": "{ID}",
"puid": "{ID}",
"http://schemas.microsoft.com/identity/claims/scope": "user_impersonation",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier": "{ID}",
"http://schemas.microsoft.com/identity/claims/tenantid": "{ID}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name": "{user-name}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn": "{user-name}",
"uti": "{ID}",
"ver": "1.0"
},
"correlationId": "{ID}",
"httpRequest": {
"clientRequestId": "{ID}",
"clientIpAddress": "{IP-address}",
"method": "DELETE",
"url": "https://management.chinacloudapi.cn/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}?api-version=2018-02-01"
},
"resourceProvider": "Microsoft.Storage",
"resourceUri": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.Storage/storageAccounts/{storage-name}",
"operationName": "Microsoft.Storage/storageAccounts/delete",
"status": "Succeeded",
"subscriptionId": "{subscription-id}",
"tenantId": "{tenant-id}"
},
"specversion": "1.0"
}]
以下示例显示了 ResourceActionSuccess 事件的架构。 同一架构用于具有不同值的 ResourceActionFailure 和 eventType 事件。
[{
"subject": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.EventHub/namespaces/{namespace}/AuthorizationRules/RootManageSharedAccessKey",
"source": "/subscriptions/{subscription-id}",
"type": "Microsoft.Resources.ResourceActionSuccess",
"time": "2018-10-08T22:46:22.6022559Z",
"id": "{ID}",
"data": {
"authorization": {
"scope": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.EventHub/namespaces/{namespace}/AuthorizationRules/RootManageSharedAccessKey",
"action": "Microsoft.EventHub/namespaces/AuthorizationRules/listKeys/action",
"evidence": {
"role": "Contributor",
"roleAssignmentScope": "/subscriptions/{subscription-id}",
"roleAssignmentId": "{ID}",
"roleDefinitionId": "{ID}",
"principalId": "{ID}",
"principalType": "ServicePrincipal"
}
},
"claims": {
"aud": "{audience-claim}",
"iss": "{issuer-claim}",
"iat": "{issued-at-claim}",
"nbf": "{not-before-claim}",
"exp": "{expiration-claim}",
"aio": "{token}",
"appid": "{ID}",
"appidacr": "2",
"http://schemas.microsoft.com/identity/claims/identityprovider": "{URL}",
"http://schemas.microsoft.com/identity/claims/objectidentifier": "{ID}",
"http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier": "{ID}", "http://schemas.microsoft.com/identity/claims/tenantid": "{ID}",
"uti": "{ID}",
"ver": "1.0"
},
"correlationId": "{ID}",
"httpRequest": {
"clientRequestId": "{ID}",
"clientIpAddress": "{IP-address}",
"method": "POST",
"url": "https://management.chinacloudapi.cn/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.EventHub/namespaces/{namespace}/AuthorizationRules/RootManageSharedAccessKey/listKeys?api-version=2017-04-01"
},
"resourceProvider": "Microsoft.EventHub",
"resourceUri": "/subscriptions/{subscription-id}/resourceGroups/{resource-group}/providers/Microsoft.EventHub/namespaces/{namespace}/AuthorizationRules/RootManageSharedAccessKey",
"operationName": "Microsoft.EventHub/namespaces/AuthorizationRules/listKeys/action",
"status": "Succeeded",
"subscriptionId": "{subscription-id}",
"tenantId": "{tenant-id}"
},
"specversion": "1.0"
}]
事件属性
事件具有以下顶层数据:
| 财产 | 类型 | 说明 |
|---|---|---|
source |
字符串 | 事件源的完整资源路径。 此字段不可写入。 事件网格提供此值。 |
subject |
字符串 | 由发布者定义的事件主题路径。 |
type |
字符串 | 此事件源的已注册事件类型之一。 |
time |
字符串 | 事件生成的时间是基于提供者的 UTC 时间。 |
id |
字符串 | 事件的唯一标识符。 |
data |
对象 | 订阅事件数据。 |
specversion |
字符串 | CloudEvents 架构规范版本。 |
数据对象具有以下属性:
| 财产 | 类型 | 说明 |
|---|---|---|
authorization |
对象 | 请求的作授权。 |
claims |
对象 | 声明的属性。 有关详细信息,请参阅 JWT 规范。 |
correlationId |
字符串 | 用于故障排除的作 ID。 |
httpRequest |
对象 | 作的详细信息。 仅当更新现有资源或删除资源时,才包含此对象。 |
resourceProvider |
字符串 | 操作的资源提供程序。 |
resourceUri |
字符串 | 作中资源的 URI。 |
operationName |
字符串 | 已执行的作。 |
status |
字符串 | 操作状态。 |
subscriptionId |
字符串 | 资源的订阅 ID。 |
tenantId |
字符串 | 资源的租户 ID。 |
教程与操作方法
| 标题 | 说明 |
|---|---|
| 如何:通过门户订阅事件 | 使用门户订阅Azure订阅的事件。 |
| Azure CLI:订阅Azure订阅的事件 | 创建Azure订阅的事件网格订阅并将事件发送到 WebHook 的示例脚本。 |
| PowerShell:订阅Azure订阅的事件 | 创建Azure订阅的事件网格订阅并将事件发送到 WebHook 的示例脚本。 |
后续步骤
- 有关Azure Event Grid简介,请参阅 什么是事件网格?
- 有关创建Azure Event Grid订阅的详细信息,请参阅 Event Grid 订阅架构。