Updated New-AzFirewallPolicyApplicationRule to only use HTTPS as the default Protocol for FqdnTag rules

[ajtms]

Description

Overview

Changed the default protocol to be https (instead of https, http, mssql) for new FQDN tag application rules. Added a test scenario and record to confirm new default protocol and confirm that manually setting the protocol for FQDN tag application rules is not allowed.

Additional changes

Replaced a packet capture URL secret with a fake URL and updated the accompanying test records with the same fake URL.

Mandatory Checklist

• Please choose the target release of Azure PowerShell. (⚠️Target release is a different concept from API readiness. Please click below links for details.)

  • General release
  • Public preview
  • Private preview
  • Engineering build
  • No need for a release

• Check this box to confirm: I have read the Submitting Changes section of CONTRIBUTING.md and reviewed the following information:

• SHOULD update ChangeLog.md file(s) appropriately
  • Update src/{{SERVICE}}/{{SERVICE}}/ChangeLog.md.
    • A snippet outlining the change(s) made in the PR should be written under the ## Upcoming Release header in the past tense.
  • Should not change ChangeLog.md if no new release is required, such as fixing test case only.
• SHOULD regenerate markdown help files if there is cmdlet API change. Instruction
• SHOULD have proper test coverage for changes in pull request.
• SHOULD NOT adjust version of module manually in pull request

[azure-client-tools-bot-prd]

Thanks for your contribution! The pull request validation has started. Please revisit this comment for updated status.

[Copilot]

Pull Request Overview

This PR updates the default protocol for FQDN Tag application rules in Azure Firewall Policy to use only HTTPS. The changes remove the previously allowed protocols ("http" and "mssql") and include new tests to validate the default behavior and disallow manual protocol overrides.

• Updated the default protocol in the application rule command.
• Added and updated tests (both PowerShell and C#) for FQDN Tag rules.
• Updated the changelog accordingly.

Reviewed Changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
src/Network/Network/ChangeLog.md	Updated changelog entry for the new default protocol.
src/Network/Network/AzureFirewallPolicy/ApplicationRuleCondition/NewAzureFirewallPolicyApplicationRuleCommand.cs	Modified protocol array to include only "https" for FQDN Tag rules.
src/Network/Network.Test/SessionRecords/Commands.Network.Test.ScenarioTests.AzureFirewallPolicyTests/TestAzureFirewallPolicyApplicationRuleFqdnTagDefaultProtocol.json	Added test record for verifying default protocol.
src/Network/Network.Test/ScenarioTests/AzureFirewallPolicyTests.ps1	Added a new test function to check protocol behavior.
src/Network/Network.Test/ScenarioTests/AzureFirewallPolicyTests.cs	Added a test method for FQDN Tag default protocol verification.

Comments suppressed due to low confidence (1)

src/Network/Network/AzureFirewallPolicy/ApplicationRuleCondition/NewAzureFirewallPolicyApplicationRuleCommand.cs:164

• Ensure that the protocol string 'https' is normalized to 'Https' as expected by the tests to maintain consistency with documented behavior.

                this.Protocol = new string[] {"https"}; // "http" and "mssql" are not allowed for FqdnTags

[YanaXu]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 3 pipeline(s).

[ajtms]

/azp run

[azure-pipelines]

Commenter does not have sufficient privileges for PR 28027 in repo Azure/azure-powershell

[YanaXu]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 3 pipeline(s).