SRP Jan25 [2025-01-01] API Version Swagger Changes (#33529)

* Copy latest API version 2024 without any change to new API version 2025 folder, change the API version 2024-01-01 in the new API version 2025-01-01

* SMB OAuth property swagger changes

* Repair item] Fix required properties in activeDirectoryProperties swagger, improve descriptions

* Zonal placement swagger changes for 2025-01-01 API

* Create swagger for restore storage account Api

* Swagger for Encryption in transit file service property for SMB & NFS in 2025-01-01

**Code Review Checklist**

*Code Style/Hygiene*
- [ ] Is the change self-contained ? If not, can this be broken to separate PRs ?
- [ ] If this is a new feature, is the entire feature behind a config or allow-listed subscription or AFEC ? Ensure that the feature is turned off by default and enabled only for a select set of subscriptions.
- [ ] If a new feature, and AFEC/subscription opt-in is not feasible, can this change be limited to stage/canaries and phased open in a future rollout ?
- [ ] Are configs/DCs included for variable limits, settings and to disable the feature off as a whole ?
- [ ] If a bug is being fixed that impacts written KVS state, is there a backfill (backfill job) plan in place to repair existing KVS records with bad data ? If not, is the bug fix backward compatible with existing data ?

*API versioning*
- [ ] Are new customer facing APIs or properties being introduced ? Should this change be introduced in a new API version ?
- [ ] Is any existing KVS schema being modified ? If yes, this change should be introduced in a new API version.
- [ ] If KVS schema is being modified for persistent state, is there a backfill (backfill job) plan in place to repair existing KVS records with the old schema ? If not, is the change backward compatible with existing KVS data ?

*Logging*
- [ ] Do any of the log messages include PII or sensitive information eg. keys (account/encryption), customer data (tags) ?
- [ ] Are appropriate verbose logs included to diagnose customer issues when this change is deployed ? i.e. are we able to describe a timeline of what happened to a customer request while triggering the new code path ?

*Exception/Error Handling*
- [ ] Are all non-recoverable errors handled and logged ? Is a user-friendly/actionable error code returned to the user ?
- [ ] If non-recoverable error are seen, is the transaction unwound to a clean state to avoid orphaned metadata ?
- [ ] If recoverable, are the retries bounded for non-transactional ?
- [ ] If recoverable, are the retries unbounded for transactional ?

*Memory*
- [ ] Are there any unbounded KVS reads eg. list entire KVS tables ? Consider pointed reads by key or paged reads.
- [ ] Does the change introduce an increased memory footprint to RSRP replicas ? Do we require memory profiling in preprod/test ?

*Performance*
- [ ] KVS writes cost 5-15ms. Are there any redundant KVS reads/writes ?
- [ ] Do we need to consider secondary indexes to improve operation performance ?

*Unit Test Coverage*
- [ ] Do unit tests cover all happy path & failure scenarios ?
- [ ] Do any of the unit tests introduced rely on randomness or prone to transient failures eg. time skew, randomly selecting account type or request parameter etc ?
- [ ] Do the Unit tests take less than 100ms(each) to execute when the test suite is run?
- [ ] Do any of the unit tests take a dependency on time, I/O, network call, disks etc?

*Monitoring*
- [ ] Are metrics created for outbound/inbound external dependenc...

* Merged PR 11577981: Swagger for Encryption in transit file service property for SMB & NFS in 2025-01-01

**Objective**: To add the swagger for a new file service property - 'EncryptionInTransit' for SMB & NFS, for service version '2026-02-06' .

- The example is added in a new file S:\Azure\Storage\Storage-SRP\src\Swagger\Microsoft.Storage\stable\2026-02-06\examples\FileServicesPut_EncryptionInTransitRequired.json

**Code Review Checklist**

*Code Style/Hygiene*
- [ ] Is the change self-contained ? If not, can this be broken to separate PRs ?
- [ ] If this is a new feature, is the entire feature behind a config or allow-listed subscription or AFEC ? Ensure that the feature is turned off by default and enabled only for a select set of subscriptions.
- [ ] If a new feature, and AFEC/subscription opt-in is not feasible, can this change be limited to stage/canaries and phased open in a future rollout ?
- [ ] Are configs/DCs included for variable limits, settings and to disable the feature off as a whole ?
- [ ] If a bug is being fixed that impacts written KVS state, is there a backfill (backfill job) plan in place to repair existing KVS records with bad data ? If not, is the bug fix backward compatible with existing data ?

*API versioning*
- [ ] Are new customer facing APIs or properties being introduced ? Should this change be introduced in a new API version ?
- [ ] Is any existing KVS schema being modified ? If yes, this change should be introduced in a new API version.
- [ ] If KVS schema is being modified for persistent state, is there a backfill (backfill job) plan in place to repair existing KVS records with the old schema ? If not, is the change backward compatible with existing KVS data ?

*Logging*
- [ ] Do any of the log messages include PII or sensitive information eg. keys (account/encryption), customer data (tags) ?
- [ ] Are appropriate verbose logs included to diagnose customer issues when this change is deployed ? i.e. are we able to describe a timeline of what happened to a customer request while triggering the new code path ?

*Exception/Error Handling*
- [ ] Are all non-recoverable errors handled and logged ? Is a user-friendly/actionable error code returned to the user ?
- [ ] If non-recoverable error are seen, is the transaction unwound to a clean state to avoid orphaned metadata ?
- [ ] If recoverable, are the retries bounded for non-transactional ?
- [ ] If recoverable, are the retries unbounded for transactional ?

*Memory*
- [ ] Are there any unbounded KVS reads eg. list entire KVS tables ? Consider pointed reads by key or paged reads.
- [ ] Does the change introduce an increased memory footprint to RSRP replicas ? Do we require memory profiling in preprod/test ?

*Performance*
- [ ] KVS writes cost 5-15ms. Are there any redundant KVS reads/writes ?
- [ ] Do we need to consider secondary indexes to improve operation performance ?

*Unit Test Coverage*
- [ ] Do unit tests cover all happy path & failure scenarios ?
- [ ] Do any of the unit tests introduced rely on randomness or prone to transient failures eg. time skew, ...

* Merged PR 12011805: Create swagger for restore storage account Api.

**Why do we need this change?**
We missed the chance to document restore storage account Api, though put storage account operation.
This is also causing challenge of build-in policy for related scenario.
Task 29330514: Build-in policy Storage_NetworkAcls_Audit.json should consider storage account recovery scenario

----
API change

This pull request updates the Swagger documentation to include the restore storage account scenario.
- Added `DeletedStorageAccountRestore.json` example for restoring a deleted storage account.
- Updated `storage.json` to include `deletedAccountCreationTime` property and reference the new restore example.
- Modified the description for the 202 response to include restore storage account requests.
<!-- GitOpsUserAgent=GitOps.Apps.Server.pullrequestcopilot -->

Related work items: #31884198

* suppress errors

* fix the api version in eample from 2025-05-01 to 2025-01-01

* fix comma syntax error

* Add the example refereces and model service

* format and storage account model fix

* Update DeletedStorageAccountRestore.json

* Update DeletedStorageAccountRestore.json

* fix the examples

* fix prettier code check

* Add type object to the "NfsSetting" and "EncryptionInTransit" in file.json

* Add additional property tag in SMB & NFS Setting in file.json

* Fix Auto REST exception file.json

* Fix file.json errors

* Fix reference definition for EncryptionInTransit in file.json

* Prettier check - FileServicesPut_EncryptionInTransitRequired.json

* Add suppression for BodyTopLevelProperties

* fix readme and prettier check

* more prettier fix

---------

Co-authored-by: Risheek Rajolu <[email protected]>
Co-authored-by: jliusan <[email protected]>
Co-authored-by: Kunyi Lin <[email protected]>
Co-authored-by: Radhika Gupta <[email protected]>
Co-authored-by: Elvis Shi <[email protected]>
Co-authored-by: Elvis Shi <[email protected]>

Author: 6 people

specification/storage/resource-manager/Microsoft.Storage/stable/2025-01-01/blob.json

@@ -0,0 +1,368 @@
+{
+  "swagger": "2.0",
+  "info": {
+    "title": "StorageManagementClient",
+    "description": "Storage Resource Provider API Common Types",
+    "version": "2025-01-01"
+  },
+  "paths": {},
+  "definitions": {
+    "CorsRules": {
+      "properties": {
+        "corsRules": {
+          "type": "array",
+          "items": {
+            "description": "Specifies a CORS rule for the Blob service. ",
+            "$ref": "#/definitions/CorsRule"
+          },
+          "description": "The List of CORS rules. You can include up to five CorsRule elements in the request. "
+        }
+      },
+      "description": "Sets the CORS rules. You can include up to five CorsRule elements in the request. "
+    },
+    "CorsRule": {
+      "properties": {
+        "allowedOrigins": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          },
+          "description": "Required if CorsRule element is present. A list of origin domains that will be allowed via CORS, or \"*\" to allow all domains"
+        },
+        "allowedMethods": {
+          "type": "array",
+          "items": {
+            "type": "string",
+            "enum": [
+              "DELETE",
+              "GET",
+              "HEAD",
+              "MERGE",
+              "POST",
+              "OPTIONS",
+              "PUT",
+              "PATCH",
+              "CONNECT",
+              "TRACE"
+            ],
+            "x-ms-enum": {
+              "name": "AllowedMethods",
+              "modelAsString": true
+            }
+          },
+          "description": "Required if CorsRule element is present. A list of HTTP methods that are allowed to be executed by the origin."
+        },
+        "maxAgeInSeconds": {
+          "type": "integer",
+          "description": "Required if CorsRule element is present. The number of seconds that the client/browser should cache a preflight response."
+        },
+        "exposedHeaders": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          },
+          "description": "Required if CorsRule element is present. A list of response headers to expose to CORS clients."
+        },
+        "allowedHeaders": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          },
+          "description": "Required if CorsRule element is present. A list of headers allowed to be part of the cross-origin request."
+        }
+      },
+      "required": [
+        "allowedOrigins",
+        "allowedMethods",
+        "maxAgeInSeconds",
+        "exposedHeaders",
+        "allowedHeaders"
+      ],
+      "description": "Specifies a CORS rule for the Blob service."
+    },
+    "DeleteRetentionPolicy": {
+      "properties": {
+        "enabled": {
+          "type": "boolean",
+          "description": "Indicates whether DeleteRetentionPolicy is enabled."
+        },
+        "days": {
+          "type": "integer",
+          "minimum": 1,
+          "maximum": 365,
+          "description": "Indicates the number of days that the deleted item should be retained. The minimum specified value can be 1 and the maximum value can be 365."
+        },
+        "allowPermanentDelete": {
+          "type": "boolean",
+          "description": "This property when set to true allows deletion of the soft deleted blob versions and snapshots. This property cannot be used blob restore policy. This property only applies to blob service and does not apply to containers or file share."
+        }
+      },
+      "description": "The service properties for soft delete."
+    },
+    "Sku": {
+      "properties": {
+        "name": {
+          "$ref": "#/definitions/SkuName"
+        },
+        "tier": {
+          "$ref": "#/definitions/Tier"
+        }
+      },
+      "required": [
+        "name"
+      ],
+      "description": "The SKU of the storage account."
+    },
+    "SkuName": {
+      "type": "string",
+      "description": "The SKU name. Required for account creation; optional for update. Note that in older versions, SKU name was called accountType.",
+      "enum": [
+        "Standard_LRS",
+        "Standard_GRS",
+        "Standard_RAGRS",
+        "Standard_ZRS",
+        "Premium_LRS",
+        "Premium_ZRS",
+        "Standard_GZRS",
+        "Standard_RAGZRS",
+        "StandardV2_LRS",
+        "StandardV2_GRS",
+        "StandardV2_ZRS",
+        "StandardV2_GZRS",
+        "PremiumV2_LRS",
+        "PremiumV2_ZRS"
+      ],
+      "x-ms-enum": {
+        "name": "SkuName",
+        "modelAsString": true
+      }
+    },
+    "Tier": {
+      "readOnly": true,
+      "type": "string",
+      "description": "The SKU tier. This is based on the SKU name.",
+      "enum": [
+        "Standard",
+        "Premium"
+      ],
+      "x-ms-enum": {
+        "name": "SkuTier",
+        "modelAsString": false
+      }
+    },
+    "CloudError": {
+      "x-ms-external": true,
+      "properties": {
+        "error": {
+          "$ref": "#/definitions/CloudErrorBody"
+        }
+      },
+      "description": "An error response from the Storage service."
+    },
+    "CloudErrorBody": {
+      "x-ms-external": true,
+      "properties": {
+        "code": {
+          "type": "string",
+          "description": "An identifier for the error. Codes are invariant and are intended to be consumed programmatically."
+        },
+        "message": {
+          "type": "string",
+          "description": "A message describing the error, intended to be suitable for display in a user interface."
+        },
+        "target": {
+          "type": "string",
+          "description": "The target of the particular error. For example, the name of the property in error."
+        },
+        "details": {
+          "type": "array",
+          "items": {
+            "$ref": "#/definitions/CloudErrorBody"
+          },
+          "description": "A list of additional details about the error."
+        }
+      },
+      "description": "An error response from the Storage service."
+    },
+    "SignedIdentifier": {
+      "properties": {
+        "id": {
+          "type": "string",
+          "description": "An unique identifier of the stored access policy."
+        },
+        "accessPolicy": {
+          "$ref": "#/definitions/AccessPolicy",
+          "description": "Access policy"
+        }
+      }
+    },
+    "AccessPolicy": {
+      "properties": {
+        "startTime": {
+          "type": "string",
+          "format": "date-time",
+          "description": "Start time of the access policy"
+        },
+        "expiryTime": {
+          "type": "string",
+          "format": "date-time",
+          "description": "Expiry time of the access policy"
+        },
+        "permission": {
+          "type": "string",
+          "description": "List of abbreviated permissions."
+        }
+      }
+    },
+    "StorageTaskReportSummary": {
+      "type": "object",
+      "properties": {
+        "value": {
+          "readOnly": true,
+          "type": "array",
+          "items": {
+            "$ref": "#/definitions/StorageTaskReportInstance"
+          },
+          "x-ms-identifiers": [],
+          "description": "Gets storage tasks run result summary."
+        },
+        "nextLink": {
+          "type": "string",
+          "description": "Request URL that can be used to query next page of storage task run results summary. Returned when the number of run instances and summary reports exceed maximum page size.",
+          "readOnly": true
+        }
+      },
+      "description": "Fetch Storage Tasks Run Summary."
+    },
+    "StorageTaskReportInstance": {
+      "type": "object",
+      "properties": {
+        "properties": {
+          "$ref": "#/definitions/StorageTaskReportProperties"
+        }
+      },
+      "allOf": [
+        {
+          "$ref": "../../../../../common-types/resource-management/v1/types.json#/definitions/ProxyResource"
+        }
+      ],
+      "description": "Storage Tasks run report instance"
+    },
+    "StorageTaskReportProperties": {
+      "type": "object",
+      "properties": {
+        "taskAssignmentId": {
+          "readOnly": true,
+          "type": "string",
+          "format": "arm-id",
+          "x-ms-arm-id-details": {
+            "allowedResources": [
+              {
+                "type": "Microsoft.Storage/storageAccounts/storageTaskAssignments"
+              }
+            ]
+          },
+          "description": "Represents the Storage Task Assignment Id associated with the storage task that provided an execution context."
+        },
+        "storageAccountId": {
+          "readOnly": true,
+          "type": "string",
+          "format": "arm-id",
+          "x-ms-arm-id-details": {
+            "allowedResources": [
+              {
+                "type": "Microsoft.Storage/storageAccounts"
+              }
+            ]
+          },
+          "description": "Represents the Storage Account Id where the storage task definition was applied and executed."
+        },
+        "startTime": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Start time of the run instance. Filter options such as startTime gt '2023-06-26T20:51:24.4494016Z' and other comparison operators can be used as described for DateTime properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "finishTime": {
+          "readOnly": true,
+          "type": "string",
+          "description": "End time of the run instance. Filter options such as startTime gt '2023-06-26T20:51:24.4494016Z' and other comparison operators can be used as described for DateTime properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "objectsTargetedCount": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Total number of objects that meet the condition as defined in the storage task assignment execution context. Filter options such as objectsTargetedCount gt 50 and other comparison operators can be used as described for Numerical properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "objectsOperatedOnCount": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Total number of objects that meet the storage tasks condition and were operated upon. Filter options such as objectsOperatedOnCount ge 100 and other comparison operators can be used as described for Numerical properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "objectFailedCount": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Total number of objects where task operation failed when was attempted. Filter options such as objectFailedCount eq 0 and other comparison operators can be used as described for Numerical properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "objectsSucceededCount": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Total number of objects where task operation succeeded when was attempted.Filter options such as objectsSucceededCount gt 150 and other comparison operators can be used as described for Numerical properties in https://learn.microsoft.com/rest/api/storageservices/querying-tables-and-entities#supported-comparison-operators"
+        },
+        "runStatusError": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Well known Azure Storage error code that represents the error encountered during execution of the run instance."
+        },
+        "runStatusEnum": {
+          "readOnly": true,
+          "type": "string",
+          "enum": [
+            "InProgress",
+            "Finished"
+          ],
+          "x-ms-enum": {
+            "name": "RunStatusEnum",
+            "modelAsString": true
+          },
+          "description": "Represents the status of the execution."
+        },
+        "summaryReportPath": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Full path to the verbose report stored in the reporting container as specified in the assignment execution context for the storage account. "
+        },
+        "taskId": {
+          "readOnly": true,
+          "type": "string",
+          "format": "arm-id",
+          "x-ms-arm-id-details": {
+            "allowedResources": [
+              {
+                "type": "Microsoft.StorageActions/storageTasks"
+              }
+            ]
+          },
+          "description": "Storage Task Arm Id."
+        },
+        "taskVersion": {
+          "readOnly": true,
+          "type": "string",
+          "description": "Storage Task Version"
+        },
+        "runResult": {
+          "readOnly": true,
+          "type": "string",
+          "enum": [
+            "Succeeded",
+            "Failed"
+          ],
+          "x-ms-enum": {
+            "name": "RunResult",
+            "modelAsString": true
+          },
+          "description": "Represents the overall result of the execution for the run instance"
+        }
+      },
+      "description": "Storage task execution report for a run instance."
+    }
+  }
+}

specification/storage/resource-manager/Microsoft.Storage/stable/2025-01-01/common.json

@@ -0,0 +1,25 @@
+{
+  "parameters": {
+    "subscriptionId": "{subscription-id}",
+    "resourceGroupName": "res4303",
+    "accountName": "sto7280",
+    "containerName": "container8723",
+    "api-version": "2025-01-01",
+    "monitor": "true",
+    "LegalHold": {
+      "tags": [
+        "tag1",
+        "tag2",
+        "tag3"
+      ]
+    }
+  },
+  "responses": {
+    "200": {
+      "body": {
+        "hasLegalHold": false,
+        "tags": []
+      }
+    }
+  }
+}