Updating REST examples to use OAuth.

Author: soocho-MSFT

README.md

@@ -1,25 +1,26 @@
----
-page_type: sample
-products:
-- office-project
-- office-365
-languages:
-- powershell
-extensions:
-  contentType: samples
-  platforms:
-  - REST API
-  createdDate: 11/23/2015 8:07:26 PM
----
+---
+page_type: sample
+products:
+- office-project
+- office-365
+languages:
+- powershell
+extensions:
+  contentType: samples
+  platforms:
+  - REST API
+  createdDate: 11/23/2015 8:07:26 PM
+---
 # Project REST Basic Operations
 
 The Project REST Basic Operations demonstrates how to create and update a project using REST API
 
 ###Prerequisites
 To use this Project Online REST code sample, you need the following:
 * An Office 365 tenant with a Project license
-* Project CSOM client library.  It is available as a Nuget Package from [here](https://www.nuget.org/packages/Microsoft.SharePointOnline.CSOM/)
 * PowerShell v4.0
+* Latest ADAL.NET library. It is available as a Nuget Package from [here](https://www.nuget.org/packages/Microsoft.IdentityModel.Clients.ActiveDirectory/)
+* For the files downloaded, please run "Unblock-File *" to unblock accessing the file.
 
 ###Modules
 * [CreateProject](/createproject.ps1)

ReST.ps1

@@ -3,25 +3,43 @@
   See LICENSE in the project root for license information.
 #>
 
+$ErrorActionPreference = "Stop"  # http://technet.microsoft.com/en-us/library/dd347731.aspx
+Set-StrictMode -Version "Latest" # http://technet.microsoft.com/en-us/library/dd347614.aspx
+
 # PS helper methods to call ReST API methods targeting Project Online tenants
-$global:fedAuthTicket = ''
+$global:accessHeader = ''
 $global:digestValue = ''
 
+[Reflection.Assembly]::LoadFrom("$($PSScriptRoot)\Microsoft.IdentityModel.Clients.ActiveDirectory.dll") | Out-Null
+
+function Get-AADAuthToken([Uri] $Uri)
+{
+	# NOTE: Create an azure app and update $clientId and $redirectUri below
+	$clientId = ""
+	$redirectUri = "https://login.microsoftonline.com/common/oauth2/nativeclient"
+
+	$authority = "https://login.microsoftonline.com/common"
+	$resource = $Uri.GetLeftPart([System.UriPartial]::Authority);
+
+	$promptBehavior = [Microsoft.IdentityModel.Clients.ActiveDirectory.PromptBehavior]::Always
+	$platformParam = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.PlatformParameters" -ArgumentList $promptBehavior
+    $authenticationContext = New-Object "Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext" -ArgumentList $authority, $False
+    $authenticationResult = $authenticationContext.AcquireTokenAsync($resource, $clientId, $redirectUri, $platformParam).Result
+
+	return $authenticationResult
+}
+
 function Set-SPOAuthenticationTicket([string] $siteUrl)
 {
-	$username = "[email protected]"
-    Write-Host 'Enter password for user' $username 'on site' $siteUrl
-	$password = Read-Host -AsSecureString
-    
-    # load the SP client runtime code
-	[System.Reflection.Assembly]::LoadWithPartialName("Microsoft.SharePoint.Client.Runtime")
-	$onlineCredentials = New-Object Microsoft.SharePoint.Client.SharePointOnlineCredentials($username, $password)
-	if ($onlineCredentials -ne $null)
+	$siteUri = New-Object Uri -ArgumentList $siteUrl
+
+	$authResult = Get-AADAuthToken -Uri $siteUri
+	if ($authResult -ne $null)
 	{
-		$global:fedAuthTicket = $onlineCredentials.GetAuthenticationCookie($SiteUrl, $true).TrimStart('SPOIDCRL=')
+		$global:accessHeader = $authResult.AccessTokenType + " " + $authResult.AccessToken
 	}
 
-	if ([String]::IsNullOrEmpty($global:fedAuthTicket))
+	if ([String]::IsNullOrEmpty($global:accessHeader))
 	{
 		throw 'Could not obtain authentication ticket based on provided credentials for specified site'
 	}
@@ -45,13 +63,9 @@ function Build-ReSTRequest([string] $siteUrl, [string]$endpoint, [string]$method
 	    $req.ContentLength = $body.Length
     	$req.ContentType = "application/json"
 	}
-	
-    $domain = (New-Object System.Uri($url)).Authority
-    $cookies = New-Object System.Net.CookieContainer
-    $fedCookie = New-Object System.Net.Cookie 'SPOIDCRL', $global:fedAuthTicket, "", $domain
-    $cookies.Add($fedCookie)
-    
-    $req.CookieContainer = $cookies
+
+	# set Authorization header
+	$req.Headers.Add("Authorization", $global:accessHeader)
 
     if (-not $isDigestRequest)
     {

getprojects.ps1

@@ -0,0 +1,26 @@
+<#
+  Copyright (c) Microsoft Corporation. All rights reserved. Licensed under the MIT license.
+  See LICENSE in the project root for license information.
+#>
+
+
+# Get list of projects using OData/CSOM ReST API
+param
+(
+    # SharepointOnline project site collection URL
+    $SiteUrl = $(throw "SiteUrl parameter is required")
+)
+# Load ReST helper methods
+. .\ReST.ps1
+
+# Set up the request authentication
+Set-SPOAuthenticationTicket $siteUrl
+Set-DigestValue $siteUrl
+
+# Get list of projects using OData ReST API
+"OData"
+Get-ReSTRequest $SiteUrl "ProjectData/Projects"
+
+"CSOM"
+# Get list of projects using CSOM ReST API
+Get-ReSTRequest $SiteUrl "ProjectServer/Projects"

updateprojectcustomfieldvalues.ps1

@@ -3,7 +3,8 @@
   See LICENSE in the project root for license information.
 #>
 
-# Updates a Project Custom field value using ReST API
+
+# Updates a Project Custom field value using ReST API
 param
 (
     # SharepointOnline project site collection URL