Removed module dependencies

Author: merill

src/MSIdentityTools.psd1

@@ -55,15 +55,20 @@ function Add-MsIdClientSecretToAgentIdentityBlueprint {
         $secretResult = $null
         $success = $false
 
+        $body = @{
+            passwordCredential = $passwordCredential
+        }
+
         while ($retryCount -lt $maxRetries -and -not $success) {
             try {
-                $secretResult = Add-MgApplicationPassword -ApplicationId $AgentBlueprintId -PasswordCredential $passwordCredential -ErrorAction Stop
+                $secretResult = Invoke-MgGraphRequest -Method POST -Uri "v1.0/applications/$AgentBlueprintId/addPassword" -Body ($body | ConvertTo-Json -Depth 10) -ErrorAction Stop
                 $success = $true
             }
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
                     Start-Sleep -Seconds 10
                 }
                 else {

src/agentid/Add-MsIdClientSecretToAgentIdentityBlueprint.ps1

@@ -40,7 +40,8 @@ function Add-MsIdInheritablePermissionsToAgentIdentityBlueprint {
         $resourceInput = Read-Host "Resource App ID (press Enter for Microsoft Graph default)"
         if ($resourceInput -and $resourceInput.Trim() -ne "") {
             $ResourceAppId = $resourceInput.Trim()
-        } else {
+        }
+        else {
             $ResourceAppId = "00000003-0000-0000-c000-000000000000"
             Write-Host "Using default: Microsoft Graph" -ForegroundColor Cyan
         }
@@ -93,10 +94,10 @@ function Add-MsIdInheritablePermissionsToAgentIdentityBlueprint {
 
         # Build the request body
         $Body = [PSCustomObject]@{
-            resourceAppId = $ResourceAppId
+            resourceAppId     = $ResourceAppId
             inheritableScopes = [PSCustomObject]@{
                 "@odata.type" = "microsoft.graph.enumeratedScopes"
-                scopes = $Scopes
+                scopes        = $Scopes
             }
         }
 
@@ -106,7 +107,7 @@ function Add-MsIdInheritablePermissionsToAgentIdentityBlueprint {
         # Use Invoke-MgRestMethod to make the API call with the stored Agent Blueprint ID with retry logic
         $apiUrl = "https://graph.microsoft.com/beta/applications/microsoft.graph.agentIdentityBlueprint/$($script:CurrentAgentBlueprintId)/inheritablePermissions"
         Write-Debug "API URL: $apiUrl"
-        
+
         $retryCount = 0
         $maxRetries = 10
         $result = $null
@@ -120,7 +121,8 @@ function Add-MsIdInheritablePermissionsToAgentIdentityBlueprint {
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
                     Start-Sleep -Seconds 10
                 }
                 else {
@@ -138,13 +140,13 @@ function Add-MsIdInheritablePermissionsToAgentIdentityBlueprint {
 
         # Create a result object with permission information
         $permissionResult = [PSCustomObject]@{
-            AgentBlueprintId = $script:CurrentAgentBlueprintId
-            ResourceAppId = $ResourceAppId
-            ResourceAppName = $resourceName
+            AgentBlueprintId  = $script:CurrentAgentBlueprintId
+            ResourceAppId     = $ResourceAppId
+            ResourceAppName   = $resourceName
             InheritableScopes = $Scopes
-            ScopeCount = $Scopes.Count
-            ConfiguredAt = Get-Date
-            ApiResponse = $result
+            ScopeCount        = $Scopes.Count
+            ConfiguredAt      = Get-Date
+            ApiResponse       = $result
         }
 
         return $permissionResult

src/agentid/Add-MsIdInheritablePermissionsToAgentIdentityBlueprint.ps1

@@ -50,21 +50,23 @@ function Add-MsIdPermissionToCreateAgentUsersToAgentIdentityBlueprintPrincipal {
     else {
         Write-Host "Connected to Microsoft Graph as: $($context.Account)" -ForegroundColor Green
     }
-    
+
     try {
         Write-Host "Adding permission to create Agent Users to Agent Identity Blueprint Principal..." -ForegroundColor Green
         Write-Verbose "Retrieving Blueprint Service Principal ID from tenant..."
-        $blueprintServicePrincipal = Get-MgServicePrincipal -Filter "appId eq '$AgentBlueprintId'" -Select "id,appId,displayName"
+        $blueprintServicePrincipalResponse = Invoke-MgGraphRequest -Method GET -Uri "v1.0/servicePrincipals?`$filter=appId eq '$AgentBlueprintId'&`$select=id,appId,displayName"
 
-        if (-not $blueprintServicePrincipal) {
+        if (-not $blueprintServicePrincipalResponse.value -or $blueprintServicePrincipalResponse.value.Count -eq 0) {
             throw "Blueprint Service Principal not found in tenant"
        }
 
+        $blueprintServicePrincipal = $blueprintServicePrincipalResponse.value[0]
+
         # Cache the result
-        $script:CurrentAgentBlueprintServicePrincipalId = $blueprintServicePrincipal.Id
+        $script:CurrentAgentBlueprintServicePrincipalId = $blueprintServicePrincipal.id
+
+        Write-Verbose "Blueprint Service Principal found - ID: $script:CurrentAgentBlueprintServicePrincipalId, Display Name: $($blueprintServicePrincipal.displayName)"
 
-        Write-Verbose "Blueprint Service Principal found - ID: $script:CurrentAgentBlueprintServicePrincipalId, Display Name: $($blueprintServicePrincipal.DisplayName)"
-        
         $servicePrincipalId = $script:CurrentAgentBlueprintServicePrincipalId
         Write-Host "Using stored Agent Identity Blueprint Service Principal ID: $servicePrincipalId" -ForegroundColor Yellow
 

src/agentid/Add-MsIdPermissionToCreateAgentUsersToAgentIdentityBlueprintPrincipal.ps1

@@ -57,7 +57,7 @@ function Add-MsIdRedirectURIToAgentIdentityBlueprint {
 
         # First, get the current application configuration to preserve existing redirect URIs
         Write-Host "Retrieving current application configuration..." -ForegroundColor Yellow
-        
+
         $retryCount = 0
         $maxRetries = 10
         $currentApp = $null
@@ -71,7 +71,8 @@ function Add-MsIdRedirectURIToAgentIdentityBlueprint {
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
                     Start-Sleep -Seconds 10
                 }
                 else {
@@ -93,10 +94,10 @@ function Add-MsIdRedirectURIToAgentIdentityBlueprint {
 
             $result = [PSCustomObject]@{
                 AgentBlueprintId = $AgentBlueprintId
-                RedirectUri = $RedirectUri
-                Action = "Already Exists"
-                AllRedirectUris = $existingRedirectUris
-                ConfiguredAt = Get-Date
+                RedirectUri      = $RedirectUri
+                Action           = "Already Exists"
+                AllRedirectUris  = $existingRedirectUris
+                ConfiguredAt     = Get-Date
             }
 
             return $result
@@ -129,7 +130,8 @@ function Add-MsIdRedirectURIToAgentIdentityBlueprint {
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
                     Start-Sleep -Seconds 10
                 }
                 else {
@@ -145,11 +147,11 @@ function Add-MsIdRedirectURIToAgentIdentityBlueprint {
         # Create a result object with redirect URI information
         $result = [PSCustomObject]@{
             AgentBlueprintId = $AgentBlueprintId
-            RedirectUri = $RedirectUri
-            Action = "Added"
-            AllRedirectUris = $updatedRedirectUris
-            ConfiguredAt = Get-Date
-            ApiResponse = $updateResult
+            RedirectUri      = $RedirectUri
+            Action           = "Added"
+            AllRedirectUris  = $updatedRedirectUris
+            ConfiguredAt     = Get-Date
+            ApiResponse      = $updateResult
         }
 
         return $result

src/agentid/Add-MsIdRedirectURIToAgentIdentityBlueprint.ps1

@@ -140,7 +140,8 @@ function Add-MsIdScopeToAgentIdentityBlueprint {
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
                     Start-Sleep -Seconds 10
                 }
                 else {

src/agentid/Add-MsIdScopeToAgentIdentityBlueprint.ps1

@@ -22,11 +22,11 @@ function Connect-MsIdEntraAsUser {
         [string[]]$Scopes = @('AgentIdentityBlueprint.Create', 'AgentIdentityBlueprintPrincipal.Create', 'AppRoleAssignment.ReadWrite.All', 'Application.ReadWrite.All', 'User.ReadWrite.All', 'AgentIdentityBlueprint.ReadWrite.All', 'AgentIdentityBlueprint.AddRemoveCreds.All')
     )
 
-    # Ensure required modules are available
-    if (!(EnsureRequiredModules)) {
-        Write-Error "Failed to ensure required modules are available."
-        return
-    }
+    # # Ensure required modules are available
+    # if (!(EnsureRequiredModules)) {
+    #     Write-Error "Failed to ensure required modules are available."
+    #     return
+    # }
 
     try {
         # Check if we need to disconnect from a different connection type

src/agentid/Connect-MsIdEntraAsUser.ps1

@@ -26,16 +26,18 @@ function Get-MSGraphServicePrincipalId {
         $msGraphAppId = "00000003-0000-0000-c000-000000000000"
 
         # Get the service principal for Microsoft Graph
-        $msGraphServicePrincipal = Get-MgServicePrincipal -Filter "appId eq '$msGraphAppId'" -Select "id,appId,displayName"
+        $msGraphServicePrincipalResponse = Invoke-MgGraphRequest -Method GET -Uri "v1.0/servicePrincipals?`$filter=appId eq '$msGraphAppId'&`$select=id,appId,displayName"
 
-        if (-not $msGraphServicePrincipal) {
+        if (-not $msGraphServicePrincipalResponse.value -or $msGraphServicePrincipalResponse.value.Count -eq 0) {
             throw "Microsoft Graph Service Principal not found in tenant"
         }
 
+        $msGraphServicePrincipal = $msGraphServicePrincipalResponse.value[0]
+
         # Cache the result
-        $script:MSGraphServicePrincipalId = $msGraphServicePrincipal.Id
+        $script:MSGraphServicePrincipalId = $msGraphServicePrincipal.id
 
-        Write-Verbose "Microsoft Graph Service Principal found - ID: $script:MSGraphServicePrincipalId, Display Name: $($msGraphServicePrincipal.DisplayName)"
+        Write-Verbose "Microsoft Graph Service Principal found - ID: $script:MSGraphServicePrincipalId, Display Name: $($msGraphServicePrincipal.displayName)"
 
         return $script:MSGraphServicePrincipalId
     }

src/agentid/Get-MSGraphServicePrincipalId.ps1

@@ -72,8 +72,12 @@ function Invoke-MsIdAgentIdInteractive {
     try {
         $currentUserUpn = (Get-MgContext).Account
         # Get user's OID directly using their UPN
-        $currentUser = Get-MgUser -Filter "userPrincipalName eq '$currentUserUpn'" -Property Id
-        $currentUserId = $currentUser.Id
+        $currentUserResponse = Invoke-MgGraphRequest -Method GET -Uri "v1.0/users?`$filter=userPrincipalName eq '$currentUserUpn'&`$select=id"
+        if ($currentUserResponse.value -and $currentUserResponse.value.Count -gt 0) {
+            $currentUserId = $currentUserResponse.value[0].id
+        } else {
+            $currentUserId = $null
+        }
     }
     catch {
         $currentUserUpn = $null
@@ -216,7 +220,7 @@ function Invoke-MsIdAgentIdInteractive {
 
     while ($elapsedSeconds -lt $maxWaitSeconds) {
         try {
-            $sp = Get-MgServicePrincipal -ServicePrincipalId $principal1.id -ErrorAction Stop
+            $sp = Invoke-MgGraphRequest -Method GET -Uri "v1.0/servicePrincipals/$($principal1.id)" -ErrorAction Stop
             if ($sp) {
                 $spAvailable = $true
                 Write-Host "Service principal is now available" -ForegroundColor Green
@@ -337,7 +341,8 @@ function Invoke-MsIdAgentIdInteractive {
             if ($agentIDNeedsUser) {
                 Write-Host "Creating Agent Users as requested..." -ForegroundColor Yellow
                 # Get current tenant's domain for UPN
-                $tenantDomain = (Get-MgOrganization).VerifiedDomains | Where-Object { $_.IsDefault -eq $true } | Select-Object -First 1 -ExpandProperty Name
+                $orgResponse = Invoke-MgGraphRequest -Method GET -Uri "v1.0/organization?`$select=verifiedDomains"
+                $tenantDomain = $orgResponse.value[0].verifiedDomains | Where-Object { $_.isDefault -eq $true } | Select-Object -First 1 -ExpandProperty name
 
                 # Determine names for the Agent User
                 if ($useExampleNames) {

src/agentid/Invoke-MsIdAgentIdInteractive.ps1

@@ -125,7 +125,9 @@ function New-MsIdAgentIDForAgentIdentityBlueprint {
             catch {
                 $retryCount++
                 if ($retryCount -lt $maxRetries) {
-                    Write-Host "Attempt $retryCount failed. Waiting 10 seconds before retry..." -ForegroundColor Yellow
+                    Write-Host "Waiting for propagation..." -ForegroundColor Yellow
+                    Write-Verbose "Attempt $retryCount failed. Waiting 10 seconds before retry..."
+
                     Start-Sleep -Seconds 10
                 }
                 else {