From abc074417e86bacf678c9689f0f2c17ac799bd78 Mon Sep 17 00:00:00 2001
From: Vidyadhari Jami <vijami@microsoft.com>
Date: Sat, 30 Jul 2022 20:41:45 +0530
Subject: [PATCH 1/2] Recoveryservices Powershell module fix for get vault
 credential file cmdlet

---
 ...ervices.Backup.ServiceClientAdapter.csproj |  2 +-
 .../RecoveryServices.Backup.csproj            |  2 +-
 .../RecoveryServices.SiteRecovery.Test.csproj |  2 +-
 .../RecoveryServices.SiteRecovery.csproj      |  2 +-
 .../Models/RSBackupVaultAADCreds.cs           |  6 ++
 .../RecoveryServices/RecoveryServices.csproj  |  2 +-
 ...zureRMRecoveryServicesVaultSettingsFile.cs | 64 ++++++++-----------
 7 files changed, 37 insertions(+), 43 deletions(-)

diff --git a/src/RecoveryServices/RecoveryServices.Backup.ServiceClientAdapter/RecoveryServices.Backup.ServiceClientAdapter.csproj b/src/RecoveryServices/RecoveryServices.Backup.ServiceClientAdapter/RecoveryServices.Backup.ServiceClientAdapter.csproj
index 79d8dd649e26..337508b0605d 100644
--- a/src/RecoveryServices/RecoveryServices.Backup.ServiceClientAdapter/RecoveryServices.Backup.ServiceClientAdapter.csproj
+++ b/src/RecoveryServices/RecoveryServices.Backup.ServiceClientAdapter/RecoveryServices.Backup.ServiceClientAdapter.csproj
@@ -12,7 +12,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
 	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
 	  <PackageReference Include="System.Configuration.ConfigurationManager" Version="4.4.1" />
   </ItemGroup>
diff --git a/src/RecoveryServices/RecoveryServices.Backup/RecoveryServices.Backup.csproj b/src/RecoveryServices/RecoveryServices.Backup/RecoveryServices.Backup.csproj
index a7fa6cc5debc..f1962e675587 100644
--- a/src/RecoveryServices/RecoveryServices.Backup/RecoveryServices.Backup.csproj
+++ b/src/RecoveryServices/RecoveryServices.Backup/RecoveryServices.Backup.csproj
@@ -12,7 +12,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
 	  <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
   </ItemGroup>
 
diff --git a/src/RecoveryServices/RecoveryServices.SiteRecovery.Test/RecoveryServices.SiteRecovery.Test.csproj b/src/RecoveryServices/RecoveryServices.SiteRecovery.Test/RecoveryServices.SiteRecovery.Test.csproj
index dccdec544db8..9593acfac106 100644
--- a/src/RecoveryServices/RecoveryServices.SiteRecovery.Test/RecoveryServices.SiteRecovery.Test.csproj
+++ b/src/RecoveryServices/RecoveryServices.SiteRecovery.Test/RecoveryServices.SiteRecovery.Test.csproj
@@ -13,7 +13,7 @@
   <ItemGroup>
     <PackageReference Include="Microsoft.Azure.Management.Compute" Version="49.2.0" />
     <PackageReference Include="Microsoft.Azure.Management.Network" Version="21.0.0" />
-    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
     <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
     <PackageReference Include="Microsoft.Azure.Management.Storage" Version="14.3.0" />
     <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.SiteRecovery" Version="2.1.6-preview" />
diff --git a/src/RecoveryServices/RecoveryServices.SiteRecovery/RecoveryServices.SiteRecovery.csproj b/src/RecoveryServices/RecoveryServices.SiteRecovery/RecoveryServices.SiteRecovery.csproj
index 7c2df6443536..7fcbdc854ab9 100644
--- a/src/RecoveryServices/RecoveryServices.SiteRecovery/RecoveryServices.SiteRecovery.csproj
+++ b/src/RecoveryServices/RecoveryServices.SiteRecovery/RecoveryServices.SiteRecovery.csproj
@@ -13,7 +13,7 @@
 
   <ItemGroup>
     <PackageReference Include="AutoMapper" Version="6.2.2" />
-    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
     <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.SiteRecovery" Version="2.1.6-preview" />
   </ItemGroup>
 
diff --git a/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs b/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
index 03ad99e2c3ab..239b96989aa5 100644
--- a/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
+++ b/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
@@ -102,5 +102,11 @@ public class RSBackupVaultAADCreds
         /// </summary>
         [DataMember(Order = 13)]
         public string AgentLinks { get; set; }
+
+        /// <summary>
+        /// Gets or sets the values for AadAudience.
+        /// </summary>
+        [DataMember(Order = 14)]
+        public string AadAudience { get; set; }
     }
 }
diff --git a/src/RecoveryServices/RecoveryServices/RecoveryServices.csproj b/src/RecoveryServices/RecoveryServices/RecoveryServices.csproj
index 80944d176d5d..075d2aa37a1a 100644
--- a/src/RecoveryServices/RecoveryServices/RecoveryServices.csproj
+++ b/src/RecoveryServices/RecoveryServices/RecoveryServices.csproj
@@ -11,7 +11,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
 	<PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
     <PackageReference Include="System.Security.Cryptography.Cng" Version="4.4.0" />
   </ItemGroup>
diff --git a/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs b/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
index 68b58b8a70f6..16fc9d50eefa 100644
--- a/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
+++ b/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
@@ -235,25 +235,16 @@ private void GetBackupCredentialsWithCertificate(string certificate)
             {
                 // Upload cert into ID Mgmt
                 WriteDebug(string.Format(CultureInfo.InvariantCulture, Resources.UploadingCertToIdmgmt));
-                X509Certificate2 x509 = new X509Certificate2();
-                byte[] data = Convert.FromBase64String(certificate);
-                x509.Import(data);
-                var bytes = x509.RawData;
-                var certificateArgs = new CertificateRequest
-                {
-                    Properties = new RawCertificateData {Certificate = bytes, AuthType = AuthType.AAD}
-                };
-
 
                 var dateString = DateTime.Now.ToString("M-d-yyyy");
 
-                var friendlyName = string.Format("{0}{1}-{2}-vaultcredentials", Vault.Name, subscriptionId, dateString);
+                var friendlyName = string.Format("CN={0}{1}-{2}-vaultcredentials", Vault.Name, subscriptionId, dateString);
 
                 vaultCertificateResponse = RecoveryServicesClient.GetRecoveryServicesClient.VaultCertificates.CreateWithHttpMessagesAsync(
                     Vault.ResourceGroupName,
                     Vault.Name,
                     friendlyName,
-                    certificateArgs.Properties,
+                    null,
                     RecoveryServicesClient.GetRequestHeaders()).Result.Body;
                 WriteDebug(string.Format(CultureInfo.InvariantCulture, Resources.UploadedCertToIdmgmt));
             }
@@ -263,7 +254,7 @@ private void GetBackupCredentialsWithCertificate(string certificate)
             }
 
             // generate vault credentials
-            var vaultCredsFileContent = GenerateVaultCredsForBackup(certificate, subscriptionId, vaultCertificateResponse);
+            var vaultCredsFileContent = GenerateVaultCredsForBackup(subscriptionId, vaultCertificateResponse);
 
             // NOTE: One of the scenarios for this cmdlet is to generate a file which will be an input 
             //       to DPM servers. 
@@ -307,28 +298,18 @@ private void GetSiteRecoveryCredentialsWithCertificate(string certificate)
                 var fullFilePath = System.IO.Path.Combine(filePath, fileName);
                 // Upload cert into ID Mgmt
                 WriteDebug(string.Format(CultureInfo.InvariantCulture, Resources.UploadingCertToIdmgmt));
-                X509Certificate2 x509 = new X509Certificate2();
-                byte[] data = Convert.FromBase64String(certificate);
-                x509.Import(data);
-                var bytes = x509.RawData;
-                var certificateArgs = new CertificateRequest
-                {
-                    Properties = new RawCertificateData {Certificate = bytes, AuthType = AuthType.AAD}
-                };
 
                 var dateString = DateTime.Now.ToString("M-d-yyyy");
-
-                var friendlyName = string.Format("{0}{1}-{2}-vaultcredentials", Vault.Name, subscriptionId, dateString);
+                var friendlyName = string.Format("CN={0}{1}-{2}-vaultcredentials", Vault.Name, subscriptionId, dateString);
                 var vaultCertificateResponse = RecoveryServicesClient.GetRecoveryServicesClient.VaultCertificates.CreateWithHttpMessagesAsync(
                     Vault.ResourceGroupName,
                     Vault.Name,
                     friendlyName,
-                    certificateArgs.Properties,
+                    null,
                     RecoveryServicesClient.GetRequestHeaders()).Result.Body;
                 WriteDebug(string.Format(CultureInfo.InvariantCulture, Resources.UploadedCertToIdmgmt));
 
                 var vaultCredsFileContent = GenerateVaultCredsForSiteRecovery(
-                        certificate,
                         subscriptionId,
                         vaultCertificateResponse,
                         site);
@@ -418,7 +399,6 @@ private void GetSiteRecoveryCredentials()
                     var managementCert = CertUtils.SerializeCert(cert, X509ContentType.Pfx);
                     // generate vault credentials
                     var vaultCredsFileContent = GenerateVaultCredsForSiteRecovery(
-                        managementCert,
                         subscription.Id,
                         vaultCertificateResponse,
                         site);
@@ -548,7 +528,7 @@ private string GenerateVaultCreds(X509Certificate2 cert, string subscriptionId,
             try
             {
                 var certString = CertUtils.SerializeCert(cert, X509ContentType.Pfx);
-                return GenerateVaultCredsForBackup(certString, subscriptionId, vaultCertificateResponse);
+                return GenerateVaultCredsForBackup(subscriptionId, vaultCertificateResponse);
             }
             catch (Exception exception)
             {
@@ -559,13 +539,15 @@ private string GenerateVaultCreds(X509Certificate2 cert, string subscriptionId,
         /// <summary>
         /// Generates vault creds file content for backup Vault
         /// </summary>
-        /// <param name="cert">management certificate</param>
         /// <param name="subscriptionId">subscription Id</param>
         /// <param name="acsNamespace">acs namespace</param>
         /// <returns>xml file in string format</returns>
-        private string GenerateVaultCredsForBackup(string certificateString, string subscriptionId,
+        private string GenerateVaultCredsForBackup(string subscriptionId,
             VaultCertificateResponse vaultCertificateResponse)
         {
+            string certificateString = Convert.ToBase64String(
+                vaultCertificateResponse.Properties.Certificate);
+
             using (var output = new MemoryStream())
             {
                 using (var writer = XmlWriter.Create(output, GetXmlWriterSettings()))
@@ -587,7 +569,8 @@ private string GenerateVaultCredsForBackup(string certificateString, string subs
                         Location = Vault.Location,
                         Version = VaultCredentialVersionAad,
                         ResourceType = RecoveryServicesVaultType,
-                        AgentLinks = GetAgentLinks()
+                        AgentLinks = GetAgentLinks(),
+                        AadAudience = aadDetails.AadAudience
                     };
 
                     var serializer = new DataContractSerializer(typeof(RSBackupVaultAADCreds));
@@ -603,12 +586,11 @@ private string GenerateVaultCredsForBackup(string certificateString, string subs
         /// <summary>
         /// Generates vault creds file content for Site Recovery Vault
         /// </summary>
-        /// <param name="cert">management certificate</param>
         /// <param name="subscriptionId">subscription Id</param>
         /// <param name="vaultCertificateResponse">vaultCertificate Response</param>
         /// <param name="asrSite">asrSite Info</param>
         /// <returns>xml file in string format</returns>
-        private string GenerateVaultCredsForSiteRecovery(string managementCert, string subscriptionId,
+        private string GenerateVaultCredsForSiteRecovery(string subscriptionId,
             VaultCertificateResponse vaultCertificateResponse, ASRSite asrSite)
         {
             using (var output = new MemoryStream())
@@ -618,6 +600,8 @@ private string GenerateVaultCredsForSiteRecovery(string managementCert, string s
                     var aadDetails = vaultCertificateResponse.Properties as ResourceCertificateAndAadDetails;
                     var resourceProviderNamespace = string.Empty;
                     var resourceType = string.Empty;
+                    string certificateString =
+                        Convert.ToBase64String(vaultCertificateResponse.Properties.Certificate);
 
                     Utilities.GetResourceProviderNamespaceAndType(Vault.ID, out resourceProviderNamespace, out resourceType);
 
@@ -635,12 +619,16 @@ private string GenerateVaultCredsForSiteRecovery(string managementCert, string s
                         ARMResourceType = resourceType
                     });
 
-                    //Code taken from Ibiza code
-                    var aadAudience = string.Format(CultureInfo.InvariantCulture,
-                        @"https://RecoveryServiceVault/{0}/{1}/{2}",
-                        Vault.Location,
-                        Vault.Name,
-                        aadDetails.ResourceId);
+                    string aadAudience = aadDetails.AadAudience;
+                    if (string.IsNullOrEmpty(aadAudience))
+                    {
+                        //Code taken from Ibiza code
+                        aadAudience = string.Format(CultureInfo.InvariantCulture,
+                            @"https://RecoveryServiceVault/{0}/{1}/{2}",
+                            Vault.Location,
+                            Vault.Name,
+                            aadDetails.ResourceId);
+                    }
 
                     var vaultCreds = new RSVaultAsrCreds
                     {
@@ -654,7 +642,7 @@ private string GenerateVaultCredsForSiteRecovery(string managementCert, string s
                             ResourceType = RecoveryServicesVaultType,
                             ProviderNamespace = PSRecoveryServicesClient.ProductionRpNamespace
                         },
-                        ManagementCert = managementCert,
+                        ManagementCert = certificateString,
                         Version = VaultCredentialVersionAad,
                         AadDetails = new ASRVaultAadDetails
                         {

From 24a5047c639b2bf775f383c1121883c1ee269209 Mon Sep 17 00:00:00 2001
From: Himanshu Agarwal <himanshu.123j@gmail.com>
Date: Tue, 2 Aug 2022 08:04:54 +0530
Subject: [PATCH 2/2] Added rs vault backup changes for get vault credential
 file cmdlet

---
 .../RecoveryServices.Backup.Test.csproj          |  2 +-
 .../RecoveryServices.Test.csproj                 |  2 +-
 .../Models/RSBackupVaultAADCreds.cs              | 16 ++++++++--------
 ...etAzureRMRecoveryServicesVaultSettingsFile.cs | 14 ++++++++++++--
 4 files changed, 22 insertions(+), 12 deletions(-)

diff --git a/src/RecoveryServices/RecoveryServices.Backup.Test/RecoveryServices.Backup.Test.csproj b/src/RecoveryServices/RecoveryServices.Backup.Test/RecoveryServices.Backup.Test.csproj
index ea787f3990f9..8b30984c2648 100644
--- a/src/RecoveryServices/RecoveryServices.Backup.Test/RecoveryServices.Backup.Test.csproj
+++ b/src/RecoveryServices/RecoveryServices.Backup.Test/RecoveryServices.Backup.Test.csproj
@@ -13,7 +13,7 @@
   <ItemGroup>
     <PackageReference Include="Microsoft.Azure.Management.Compute" Version="49.2.0" />
     <PackageReference Include="Microsoft.Azure.Management.Network" Version="21.0.0" />
-    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
     <PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
   </ItemGroup>
 
diff --git a/src/RecoveryServices/RecoveryServices.Test/RecoveryServices.Test.csproj b/src/RecoveryServices/RecoveryServices.Test/RecoveryServices.Test.csproj
index fa0ddea9f081..5acec09ae072 100644
--- a/src/RecoveryServices/RecoveryServices.Test/RecoveryServices.Test.csproj
+++ b/src/RecoveryServices/RecoveryServices.Test/RecoveryServices.Test.csproj
@@ -11,7 +11,7 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.2-preview" />
+    <PackageReference Include="Microsoft.Azure.Management.RecoveryServices" Version="4.3.3-preview" />
 	<PackageReference Include="Microsoft.Azure.Management.RecoveryServices.Backup" Version="4.2.0-preview" />
   </ItemGroup>
 
diff --git a/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs b/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
index 239b96989aa5..53540631503f 100644
--- a/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
+++ b/src/RecoveryServices/RecoveryServices/Models/RSBackupVaultAADCreds.cs
@@ -86,27 +86,27 @@ public class RSBackupVaultAADCreds
         public string AadTenantId { get; set; }
 
         /// <summary>
-        /// Gets or sets the Service Principal Client Id.
+        /// Gets or sets the values for AadAudience.
         /// </summary>
         [DataMember(Order = 11)]
-        public string ServicePrincipalClientId { get; set; }
+        public string AadAudience { get; set; }
 
         /// <summary>
-        /// Gets or sets the Id Management Endpoint.
+        /// Gets or sets the Service Principal Client Id.
         /// </summary>
         [DataMember(Order = 12)]
-        public string IdMgmtRestEndpoint { get; set; }
+        public string ServicePrincipalClientId { get; set; }
 
         /// <summary>
-        /// Gets or sets the agent links
+        /// Gets or sets the Id Management Endpoint.
         /// </summary>
         [DataMember(Order = 13)]
-        public string AgentLinks { get; set; }
+        public string IdMgmtRestEndpoint { get; set; }
 
         /// <summary>
-        /// Gets or sets the values for AadAudience.
+        /// Gets or sets the agent links
         /// </summary>
         [DataMember(Order = 14)]
-        public string AadAudience { get; set; }
+        public string AgentLinks { get; set; }
     }
 }
diff --git a/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs b/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
index 16fc9d50eefa..740a15fd5fc9 100644
--- a/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
+++ b/src/RecoveryServices/RecoveryServices/Vault/GetAzureRMRecoveryServicesVaultSettingsFile.cs
@@ -554,6 +554,16 @@ private string GenerateVaultCredsForBackup(string subscriptionId,
                 {
                     var aadDetails = vaultCertificateResponse.Properties as ResourceCertificateAndAadDetails;
 
+                    string aadAudience = aadDetails.AadAudience;
+                    if (string.IsNullOrEmpty(aadAudience))
+                    {
+                        aadAudience = string.Format(CultureInfo.InvariantCulture,
+                            @"https://RecoveryServiceVault/{0}/{1}/{2}",
+                            Vault.Location,
+                            Vault.Name,
+                            aadDetails.ResourceId);
+                    }
+
                     var vaultCreds = new RSBackupVaultAADCreds
                     {
                         SubscriptionId = subscriptionId,
@@ -562,6 +572,7 @@ private string GenerateVaultCredsForBackup(string subscriptionId,
                         ResourceId = aadDetails.ResourceId.Value,
                         AadAuthority = aadDetails.AadAuthority,
                         AadTenantId = aadDetails.AadTenantId,
+                        AadAudience = aadAudience,
                         ServicePrincipalClientId = aadDetails.ServicePrincipalClientId,
                         IdMgmtRestEndpoint = aadDetails.AzureManagementEndpointAudience,
                         ProviderNamespace = PSRecoveryServicesClient.ProductionRpNamespace,
@@ -569,8 +580,7 @@ private string GenerateVaultCredsForBackup(string subscriptionId,
                         Location = Vault.Location,
                         Version = VaultCredentialVersionAad,
                         ResourceType = RecoveryServicesVaultType,
-                        AgentLinks = GetAgentLinks(),
-                        AadAudience = aadDetails.AadAudience
+                        AgentLinks = GetAgentLinks()
                     };
 
                     var serializer = new DataContractSerializer(typeof(RSBackupVaultAADCreds));