Merge pull request #423 from KelvinTegelaar/dev

[pull] dev from KelvinTegelaar:dev

Author: pull[bot]

Modules/CIPPCore/Public/Add-CIPPAzDataTableEntity.ps1

@@ -102,6 +102,7 @@ function Add-CIPPAzDataTableEntity {
 
                             $propertiesToRemove = [System.Collections.Generic.List[object]]::new()
                             foreach ($key in $SingleEnt.Keys) {
+                                if ($key -in @('RowKey', 'PartitionKey')) { continue }
                                 $newEntitySize = [System.Text.Encoding]::UTF8.GetByteCount($($newEntity | ConvertTo-Json -Compress))
                                 if ($newEntitySize -lt $MaxRowSize) {
                                     $propertySize = [System.Text.Encoding]::UTF8.GetByteCount($SingleEnt[$key].ToString())

Modules/CIPPCore/Public/Alerts/Get-CIPPAlertSmtpAuthSuccess.ps1

@@ -0,0 +1,32 @@
+function Get-CIPPAlertSmtpAuthSuccess {
+    <#
+    .FUNCTIONALITY
+        Entrypoint – Check sign-in logs for SMTP AUTH with success status
+    #>
+    [CmdletBinding()]
+    Param (
+        [Parameter(Mandatory = $false)]
+        [Alias('input')]
+        $InputValue,
+        $TenantFilter
+    )
+
+    try {
+        # Graph API endpoint for sign-ins
+        $uri = "https://graph.microsoft.com/v1.0/auditLogs/signIns?`$filter=clientAppUsed eq 'SMTP' and status/errorCode eq 0"
+
+        # Call Graph API for the given tenant
+        $SignIns = New-GraphGetRequest -uri $uri -tenantid $TenantFilter
+
+        # Select only the properties you care about
+        $AlertData = $SignIns.value | Select-Object userPrincipalName, createdDateTime, clientAppUsed, ipAddress, status
+
+        # Write results into the alert pipeline
+        Write-AlertTrace -cmdletName $MyInvocation.MyCommand -tenantFilter $TenantFilter -data $AlertData
+
+    } catch {
+        # Suppress errors if no data returned
+        # Uncomment if you want explicit error logging
+        # Write-AlertMessage -tenant $($TenantFilter) -message "Failed to query SMTP AUTH sign-ins for $($TenantFilter): $(Get-NormalizedError -message $_.Exception.message)"
+    }
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Extensions/Invoke-ExecExtensionMapping.ps1

@@ -1,121 +1,127 @@
 using namespace System.Net
 
 Function Invoke-ExecExtensionMapping {
-    <#
+  <#
     .FUNCTIONALITY
         Entrypoint
     .ROLE
         CIPP.Extension.ReadWrite
     #>
-    [CmdletBinding()]
-    param($Request, $TriggerMetadata)
+  [CmdletBinding()]
+  param($Request, $TriggerMetadata)
 
-    $APIName = $Request.Params.CIPPEndpoint
-    $Headers = $Request.Headers
-    Write-LogMessage -headers $Headers -API $APIName -message 'Accessed this API' -Sev 'Debug'
+  $APIName = $Request.Params.CIPPEndpoint
+  $Headers = $Request.Headers
+  Write-LogMessage -headers $Headers -API $APIName -message 'Accessed this API' -Sev 'Debug'
 
-    $Table = Get-CIPPTable -TableName CippMapping
+  $Table = Get-CIPPTable -TableName CippMapping
 
-    if ($Request.Query.List) {
-        switch ($Request.Query.List) {
-            'HaloPSA' {
-                $Result = Get-HaloMapping -CIPPMapping $Table
-            }
-            'NinjaOne' {
-                $Result = Get-NinjaOneOrgMapping -CIPPMapping $Table
-            }
-            'NinjaOneFields' {
-                $Result = Get-NinjaOneFieldMapping -CIPPMapping $Table
-            }
-            'Hudu' {
-                $Result = Get-HuduMapping -CIPPMapping $Table
-            }
-            'HuduFields' {
-                $Result = Get-HuduFieldMapping -CIPPMapping $Table
-            }
-            'Sherweb' {
-                $Result = Get-SherwebMapping -CIPPMapping $Table
-            }
-            'HaloPSAFields' {
-                $TicketTypes = Get-HaloTicketType
-                $Result = @{'TicketTypes' = $TicketTypes }
-            }
-            'PWPushFields' {
-                $Accounts = Get-PwPushAccount
-                $Result = @{
-                    'Accounts' = $Accounts
-                }
-            }
+  if ($Request.Query.List) {
+    switch ($Request.Query.List) {
+      'HaloPSA' {
+        $Result = Get-HaloMapping -CIPPMapping $Table
+      }
+      'NinjaOne' {
+        $Result = Get-NinjaOneOrgMapping -CIPPMapping $Table
+      }
+      'NinjaOneFields' {
+        $Result = Get-NinjaOneFieldMapping -CIPPMapping $Table
+      }
+      'Hudu' {
+        $Result = Get-HuduMapping -CIPPMapping $Table
+      }
+      'HuduFields' {
+        $Result = Get-HuduFieldMapping -CIPPMapping $Table
+      }
+      'Sherweb' {
+        $Result = Get-SherwebMapping -CIPPMapping $Table
+      }
+      'HaloPSAFields' {
+        $TicketTypes = Get-HaloTicketType
+        $Outcomes = Get-HaloTicketOutcome
+        $Result = @{
+          'TicketTypes' = $TicketTypes
+          'Outcomes'    = $Outcomes
         }
+      }
+      'PWPushFields' {
+        $Accounts = Get-PwPushAccount
+        $Result = @{
+          'Accounts' = $Accounts
+        }
+      }
     }
+  }
 
-    try {
-        if ($Request.Query.AddMapping) {
-            switch ($Request.Query.AddMapping) {
-                'Sherweb' {
-                    $Result = Set-SherwebMapping -CIPPMapping $Table -APIName $APIName -Request $Request
-                }
-                'HaloPSA' {
-                    $Result = Set-HaloMapping -CIPPMapping $Table -APIName $APIName -Request $Request
-                }
-                'NinjaOne' {
-                    $Result = Set-NinjaOneOrgMapping -CIPPMapping $Table -APIName $APIName -Request $Request
-                    Register-CIPPExtensionScheduledTasks
-                }
-                'NinjaOneFields' {
-                    $Result = Set-NinjaOneFieldMapping -CIPPMapping $Table -APIName $APIName -Request $Request -TriggerMetadata $TriggerMetadata
-                    Register-CIPPExtensionScheduledTasks
-                }
-                'Hudu' {
-                    $Result = Set-HuduMapping -CIPPMapping $Table -APIName $APIName -Request $Request
-                    Register-CIPPExtensionScheduledTasks
-                }
-                'HuduFields' {
-                    $Result = Set-ExtensionFieldMapping -CIPPMapping $Table -APIName $APIName -Request $Request -Extension 'Hudu'
-                    Register-CIPPExtensionScheduledTasks
-                }
-            }
+  try {
+    if ($Request.Query.AddMapping) {
+      switch ($Request.Query.AddMapping) {
+        'Sherweb' {
+          $Result = Set-SherwebMapping -CIPPMapping $Table -APIName $APIName -Request $Request
+        }
+        'HaloPSA' {
+          $Result = Set-HaloMapping -CIPPMapping $Table -APIName $APIName -Request $Request
+        }
+        'NinjaOne' {
+          $Result = Set-NinjaOneOrgMapping -CIPPMapping $Table -APIName $APIName -Request $Request
+          Register-CIPPExtensionScheduledTasks
+        }
+        'NinjaOneFields' {
+          $Result = Set-NinjaOneFieldMapping -CIPPMapping $Table -APIName $APIName -Request $Request -TriggerMetadata $TriggerMetadata
+          Register-CIPPExtensionScheduledTasks
         }
-        $StatusCode = [HttpStatusCode]::OK
-    } catch {
-        $ErrorMessage = Get-CippException -Exception $_
-        $Result = "Mapping API failed. $($ErrorMessage.NormalizedError)"
-        Write-LogMessage -API $APIName -headers $Headers -message $Result -Sev 'Error' -LogData $ErrorMessage
-        $StatusCode = [HttpStatusCode]::InternalServerError
+        'Hudu' {
+          $Result = Set-HuduMapping -CIPPMapping $Table -APIName $APIName -Request $Request
+          Register-CIPPExtensionScheduledTasks
+        }
+        'HuduFields' {
+          $Result = Set-ExtensionFieldMapping -CIPPMapping $Table -APIName $APIName -Request $Request -Extension 'Hudu'
+          Register-CIPPExtensionScheduledTasks
+        }
+      }
     }
+    $StatusCode = [HttpStatusCode]::OK
+  }
+  catch {
+    $ErrorMessage = Get-CippException -Exception $_
+    $Result = "Mapping API failed. $($ErrorMessage.NormalizedError)"
+    Write-LogMessage -API $APIName -headers $Headers -message $Result -Sev 'Error' -LogData $ErrorMessage
+    $StatusCode = [HttpStatusCode]::InternalServerError
+  }
 
-    try {
-        if ($Request.Query.AutoMapping) {
-            switch ($Request.Query.AutoMapping) {
-                'NinjaOne' {
-                    $Batch = [PSCustomObject]@{
-                        'NinjaAction'  = 'StartAutoMapping'
-                        'FunctionName' = 'NinjaOneQueue'
-                    }
-                    $InputObject = [PSCustomObject]@{
-                        OrchestratorName = 'NinjaOneOrchestrator'
-                        Batch            = @($Batch)
-                    }
-                    #Write-Host ($InputObject | ConvertTo-Json)
-                    $InstanceId = Start-NewOrchestration -FunctionName 'CIPPOrchestrator' -InputObject ($InputObject | ConvertTo-Json -Depth 5 -Compress)
-                    Write-Host "Started permissions orchestration with ID = '$InstanceId'"
-                    $Result = 'AutoMapping Request has been queued. Exact name matches will appear first and matches on device names and serials will take longer. Please check the CIPP Logbook and refresh the page once complete.'
-                }
-
-            }
+  try {
+    if ($Request.Query.AutoMapping) {
+      switch ($Request.Query.AutoMapping) {
+        'NinjaOne' {
+          $Batch = [PSCustomObject]@{
+            'NinjaAction'  = 'StartAutoMapping'
+            'FunctionName' = 'NinjaOneQueue'
+          }
+          $InputObject = [PSCustomObject]@{
+            OrchestratorName = 'NinjaOneOrchestrator'
+            Batch            = @($Batch)
+          }
+          #Write-Host ($InputObject | ConvertTo-Json)
+          $InstanceId = Start-NewOrchestration -FunctionName 'CIPPOrchestrator' -InputObject ($InputObject | ConvertTo-Json -Depth 5 -Compress)
+          Write-Host "Started permissions orchestration with ID = '$InstanceId'"
+          $Result = 'AutoMapping Request has been queued. Exact name matches will appear first and matches on device names and serials will take longer. Please check the CIPP Logbook and refresh the page once complete.'
         }
-        $StatusCode = [HttpStatusCode]::OK
-    } catch {
-        $ErrorMessage = Get-CippException -Exception $_
-        $Result = "Mapping API failed. $($ErrorMessage.NormalizedError)"
-        Write-LogMessage -API $APIName -headers $Headers -message $Result -Sev 'Error' -LogData $ErrorMessage
-        $StatusCode = [HttpStatusCode]::InternalServerError
+
+      }
     }
+    $StatusCode = [HttpStatusCode]::OK
+  }
+  catch {
+    $ErrorMessage = Get-CippException -Exception $_
+    $Result = "Mapping API failed. $($ErrorMessage.NormalizedError)"
+    Write-LogMessage -API $APIName -headers $Headers -message $Result -Sev 'Error' -LogData $ErrorMessage
+    $StatusCode = [HttpStatusCode]::InternalServerError
+  }
 
-    # Associate values to output bindings by calling 'Push-OutputBinding'.
-    Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
-            StatusCode = $StatusCode
-            Body       = $Result
-        })
+  # Associate values to output bindings by calling 'Push-OutputBinding'.
+  Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+      StatusCode = $StatusCode
+      Body       = $Result
+    })
 
 }

Modules/CippExtensions/Public/HIBP/New-BreachTenantSearch.ps1

@@ -6,7 +6,7 @@ function New-BreachTenantSearch {
     )
 
     $Table = Get-CIPPTable -TableName UserBreaches
-    $LatestBreach = Get-BreachInfo -TenantFilter $TenantFilter | Group-Object -Property clientDomain
+    $LatestBreach = Get-BreachInfo -TenantFilter $TenantFilter | Where-Object { $_.email } | Group-Object -Property clientDomain
 
     $usersResults = foreach ($domain in $LatestBreach) {
         $ExistingBreaches = Get-CIPPAzDataTableEntity @Table -Filter "RowKey eq '$($domain.name)'"

Modules/CippExtensions/Public/Halo/Get-HaloTicketOutcome.ps1

@@ -0,0 +1,44 @@
+function Get-HaloTicketOutcome {
+  <#
+    .SYNOPSIS
+        Get Halo Ticket Outcome
+    .DESCRIPTION
+        Get Halo Ticket Outcome
+    .EXAMPLE
+        Get-HaloTicketOutcome
+
+    #>
+  [CmdletBinding()]
+  param ()
+  $Table = Get-CIPPTable -TableName Extensionsconfig
+  try {
+    $Configuration = ((Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -ea stop).HaloPSA
+    $Token = Get-HaloToken -configuration $Configuration
+    $TicketType = $Configuration.TicketType.value ?? $Configuration.TicketType
+    if ($TicketType) {
+      $WorkflowId = (Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/tickettype/$TicketType" -ContentType 'application/json' -Method GET -Headers @{Authorization = "Bearer $($Token.access_token)" }).workflow_id
+      $Workflow = Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/workflow/$WorkflowId" -ContentType 'application/json' -Method GET -Headers @{Authorization = "Bearer $($Token.access_token)" }
+      $Outcomes = Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/outcome" -ContentType 'application/json' -Method GET -Headers @{Authorization = "Bearer $($Token.access_token)" }
+      $Outcomes | Where-Object { $_.id -in $Workflow.steps.actions.action_id } | Sort-Object -Property buttonname
+    }
+    else {
+      # Invoke-RestMethod -Uri "$($Configuration.ResourceURL)/outcome" -ContentType 'application/json' -Method GET -Headers @{Authorization = "Bearer $($Token.access_token)" }
+      @(
+        @{
+          buttonname = 'Select and save a Ticket Type first to see available outcomes'
+          value      = -1
+        }
+      )
+    }
+  }
+  catch {
+    $Message = if ($_.ErrorDetails.Message) {
+      Get-NormalizedError -Message $_.ErrorDetails.Message
+    }
+    else {
+      $_.Exception.message
+    }
+    @(@{name = "Could not get HaloPSA Outcomes, error: $Message"; id = '' })
+  }
+}
+