Merge pull request #340 from KelvinTegelaar/dev

[pull] dev from KelvinTegelaar:dev

Author: pull[bot]

.gitignore

@@ -9,3 +9,7 @@ Logs
 ExcludedTenants
 SendNotifications/config.json
 .env
+
+
+# Cursor IDE
+.cursor/rules

Modules/CIPPCore/Public/Clear-CIPPImmutableId.ps1

@@ -2,21 +2,22 @@ function Clear-CIPPImmutableId {
     [CmdletBinding()]
     param (
         $TenantFilter,
-        $userid,
+        $UserID,
         $Headers,
-        $APIName
+        $APIName = 'Clear Immutable ID'
     )
 
     try {
         $Body = [pscustomobject]@{ onPremisesImmutableId = $null }
         $Body = ConvertTo-Json -InputObject $Body -Depth 5 -Compress
-        $null = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/users/$userid" -tenantid $TenantFilter -type PATCH -body $Body
-        Write-LogMessage -headers $Headers -API $APIName -message "Successfully cleared immutable ID for $userid" -sev Info
-        return 'Successfully cleared immutable ID for user.'
+        $null = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/users/$UserID" -tenantid $TenantFilter -type PATCH -body $Body
+        $Result = "Successfully cleared immutable ID for user $UserID"
+        Write-LogMessage -headers $Headers -API $APIName -message $Result -sev Info -tenant $TenantFilter
+        return $Result
     } catch {
         $ErrorMessage = Get-CippException -Exception $_
-        $Message = "Could not clear immutable ID for $($userid): $($ErrorMessage.NormalizedError)"
-        Write-LogMessage -headers $Headers -API $APIName -message $Message -sev Error -LogData $ErrorMessage
-        return $Message
+        $Result = "Failed to clear immutable ID for $($UserID). Error: $($ErrorMessage.NormalizedError)"
+        Write-LogMessage -headers $Headers -API $APIName -message $Result -sev Error -tenant $TenantFilter -LogData $ErrorMessage
+        throw $Result
     }
 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Core/Invoke-ExecEditTemplate.ps1

@@ -16,15 +16,15 @@ function Invoke-ExecEditTemplate {
 
     try {
         $Table = Get-CippTable -tablename 'templates'
-        $guid = $request.body.guid
+        $guid = $request.body.id
         $JSON = ConvertTo-Json -Compress -Depth 100 -InputObject ($request.body | Select-Object * -ExcludeProperty GUID)
         $Type = $request.query.Type
 
         if ($Type -eq 'IntuneTemplate') {
             Write-Host 'Intune Template'
             $OriginalTemplate = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq 'IntuneTemplate' and RowKey eq '$GUID'"
             $OriginalTemplate = ($OriginalTemplate.JSON | ConvertFrom-Json -Depth 100)
-            $RawJSON = $OriginalTemplate.RAWJson
+            $RawJSON = ConvertTo-Json -Compress -Depth 100 -InputObject $Request.body.parsedRAWJson
             Set-CIPPIntuneTemplate -RawJSON $RawJSON -GUID $GUID -DisplayName $Request.body.displayName -Description $Request.body.description -templateType $OriginalTemplate.Type -Headers $Request.Headers
         } else {
             $Table.Force = $true

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Administration/Invoke-AddSharedMailbox.ps1

@@ -1,6 +1,6 @@
 using namespace System.Net
 
-Function Invoke-AddSharedMailbox {
+function Invoke-AddSharedMailbox {
     <#
     .FUNCTIONALITY
         Entrypoint
@@ -14,10 +14,10 @@ Function Invoke-AddSharedMailbox {
     $Headers = $Request.Headers
     Write-LogMessage -Headers $Headers -API $APIName -message 'Accessed this API' -Sev 'Debug'
 
-    $Results = [System.Collections.ArrayList]@()
+    $Results = [System.Collections.Generic.List[string]]::new()
     $MailboxObject = $Request.Body
     $Tenant = $MailboxObject.tenantID
-    $Aliases = $MailboxObject.addedAliases -Split '\n'
+    $Aliases = $MailboxObject.addedAliases -split '\n'
 
     try {
 
@@ -29,18 +29,18 @@ Function Invoke-AddSharedMailbox {
             Shared             = $true
         }
         $AddSharedRequest = New-ExoRequest -tenantid $Tenant -cmdlet 'New-Mailbox' -cmdParams $BodyToShip
-        $Body = $Results.Add("Successfully created shared mailbox: $Email")
+        $Results.Add("Successfully created shared mailbox: $Email.")
         Write-LogMessage -Headers $Headers -API $APIName -tenant $Tenant -message "Created shared mailbox $($MailboxObject.displayName) with email $Email" -Sev 'Info'
 
         # Block sign-in for the mailbox
         try {
             $null = Set-CIPPSignInState -userid $AddSharedRequest.ExternalDirectoryObjectId -TenantFilter $Tenant -APIName $APIName -Headers $Headers -AccountEnabled $false
-            $Body = $Results.Add("Blocked sign-in for shared mailbox $Email")
+            $Results.Add("Blocked sign-in for shared mailbox $Email")
         } catch {
             $ErrorMessage = Get-CippException -Exception $_
             $Message = "Failed to block sign-in for shared mailbox $Email Error: $($ErrorMessage.NormalizedError)"
             Write-LogMessage -Headers $Headers -API $APIName -tenant $Tenant -message $Message -Sev 'Error' -LogData $ErrorMessage
-            $Body = $Results.Add($Message)
+            $Results.Add($Message)
         }
 
         # Add aliases to the mailbox if any are provided
@@ -54,30 +54,29 @@ Function Invoke-AddSharedMailbox {
                 $null = New-ExoRequest -tenantid $Tenant -cmdlet 'Set-Mailbox' -cmdParams $AliasBodyToShip -UseSystemMailbox $true
                 $Message = "Added aliases to $Email : $($Aliases -join ',')"
                 Write-LogMessage -Headers $Headers -API $APIName -tenant $Tenant -message $Message -Sev 'Info'
-                $Body = $Results.Add($Message)
+                $Results.Add($Message)
 
             } catch {
                 $ErrorMessage = Get-CippException -Exception $_
                 $Message = "Failed to add aliases to $Email : $($ErrorMessage.NormalizedError)"
                 Write-LogMessage -Headers $Headers -API $APIName -tenant $Tenant -message $Message -Sev 'Error' -LogData $ErrorMessage
-                $Body = $Results.Add($Message)
+                $Results.Add($Message)
             }
         }
         $StatusCode = [HttpStatusCode]::OK
     } catch {
         $ErrorMessage = Get-CippException -Exception $_
         $Message = "Failed to create shared mailbox. $($ErrorMessage.NormalizedError)"
         Write-LogMessage -Headers $Headers -API $APIName -tenant $Tenant -message $Message -Sev 'Error' -LogData $ErrorMessage
-        $Body = $Results.Add($Message)
+        $Results.Add($Message)
         $StatusCode = [HttpStatusCode]::Forbidden
     }
 
 
-    $Body = [pscustomobject] @{ Results = @($Results) }
     # Associate values to output bindings by calling 'Push-OutputBinding'.
     Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
             StatusCode = $StatusCode
-            Body       = $Body
+            Body       = @{ Results = @($Results) }
         })
 
 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Administration/Invoke-ExecConvertMailbox.ps1

@@ -11,27 +11,25 @@ Function Invoke-ExecConvertMailbox {
     param($Request, $TriggerMetadata)
 
     $APIName = $Request.Params.CIPPEndpoint
-    $TenantFilter = $Request.Body.tenantFilter
-    Write-LogMessage -Headers $Request.Headers -API $APIName -message 'Accessed this API' -Sev 'Debug'
+    $Headers = $Request.Headers
+    Write-LogMessage -Headers $Headers -API $APIName -message 'Accessed this API' -Sev 'Debug'
 
     # Interact with query parameters or the body of the request.
+    $TenantFilter = $Request.Body.tenantFilter
     $UserID = $Request.Body.ID
     $MailboxType = $Request.Body.MailboxType
 
     try {
-        $ConvertedMailbox = Set-CIPPMailboxType -UserID $UserID -TenantFilter $TenantFilter -APIName $APIName -Headers $Request.Headers -MailboxType $MailboxType
-        if ($ConvertedMailbox -like 'Could not convert*') { throw $ConvertedMailbox }
-        $Results = [pscustomobject]@{'Results' = "$ConvertedMailbox" }
+        $Results = Set-CIPPMailboxType -UserID $UserID -TenantFilter $TenantFilter -APIName $APIName -Headers $Headers -MailboxType $MailboxType
         $StatusCode = [HttpStatusCode]::OK
     } catch {
-        $ErrorMessage = $_.Exception.Message
-        $Results = [pscustomobject]@{'Results' = "$ErrorMessage" }
+        $Results = $_.Exception.Message
         $StatusCode = [HttpStatusCode]::InternalServerError
     }
     # Associate values to output bindings by calling 'Push-OutputBinding'.
     Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
             StatusCode = $StatusCode
-            Body       = $Results
+            Body       = @{'Results' = $Results }
         })
 
 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Administration/Invoke-ExecEditMailboxPermissions.ps1

@@ -11,7 +11,8 @@ Function Invoke-ExecEditMailboxPermissions {
     param($Request, $TriggerMetadata)
 
     $APIName = $Request.Params.CIPPEndpoint
-    Write-LogMessage -headers $Request.Headers -API $APINAME-message 'Accessed this API' -Sev 'Debug'
+    $Headers = $Request.Headers
+    Write-LogMessage -headers $Headers -API $APINAME-message 'Accessed this API' -Sev 'Debug'
     $Username = $request.body.userID
     $Tenantfilter = $request.body.tenantfilter
     if ($username -eq $null) { exit }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Administration/Invoke-ExecEmailForward.ps1

@@ -10,66 +10,61 @@ Function Invoke-ExecEmailForward {
     [CmdletBinding()]
     param($Request, $TriggerMetadata)
 
-    $Tenantfilter = $request.body.tenantfilter
-    $username = $request.body.userid
-    if ($request.body.ForwardInternal -is [string]) {
-        $ForwardingAddress = $request.body.ForwardInternal
-    } else {($request.body.ForwardInternal.value)
-        $ForwardingAddress = $request.body.ForwardInternal.value
-    }
-    $ForwardingSMTPAddress = $request.body.ForwardExternal
-    $ForwardOption = $request.body.forwardOption
+
     $APIName = $Request.Params.CIPPEndpoint
-    [bool]$KeepCopy = if ($request.body.KeepCopy -eq 'true') { $true } else { $false }
+    $Headers = $Request.Headers
+    Write-LogMessage -headers $Headers -API $APINAME-message 'Accessed this API' -Sev 'Debug'
 
-    if ($ForwardOption -eq 'internalAddress') {
-        try {
-            Set-CIPPForwarding -userid $username -tenantFilter $TenantFilter -APIName $APINAME -Headers $Request.Headers -Forward $ForwardingAddress -KeepCopy $KeepCopy
-            if (-not $request.body.KeepCopy) {
-                $results = "Forwarding all email for $($username) to $($ForwardingAddress) and not keeping a copy"
-            } else {
-                $results = "Forwarding all email for $($username) to $($ForwardingAddress) and keeping a copy"
-            }
-        } catch {
-            Write-LogMessage -headers $Request.Headers -API $APINAME -message "Could not add forwarding for $($username)" -Sev 'Error' -tenant $TenantFilter
-            $results = "Could not add forwarding for $($username). Error: $($_.Exception.Message)"
 
-        }
+    $TenantFilter = $Request.Body.tenantFilter
+    $Username = $Request.Body.userID
+    if ($Request.Body.ForwardInternal -is [string]) {
+        $ForwardingAddress = $Request.Body.ForwardInternal
+    } else {
+        $ForwardingAddress = $Request.Body.ForwardInternal.value
     }
+    $ForwardingSMTPAddress = $Request.Body.ForwardExternal
+    $ForwardOption = $Request.Body.forwardOption
+    [bool]$KeepCopy = if ($Request.Body.KeepCopy -eq 'true') { $true } else { $false }
 
-    if ($ForwardOption -eq 'ExternalAddress') {
-        try {
-            Set-CIPPForwarding -userid $username -tenantFilter $TenantFilter -APIName $APINAME -Headers $Request.Headers -forwardingSMTPAddress $ForwardingSMTPAddress -KeepCopy $KeepCopy
-            if (-not $request.body.KeepCopy) {
-                $results = "Forwarding all email for $($username) to $($ForwardingSMTPAddress) and not keeping a copy"
-            } else {
-                $results = "Forwarding all email for $($username) to $($ForwardingSMTPAddress) and keeping a copy"
+    # Process the forwarding option based on the type selected
+    switch ($ForwardOption) {
+        'internalAddress' {
+            # Set up internal forwarding to another mailbox within the organization
+            try {
+                $Results = Set-CIPPForwarding -UserID $Username -TenantFilter $TenantFilter -APIName $APIName -Headers $Headers -Forward $ForwardingAddress -KeepCopy $KeepCopy
+                $StatusCode = [HttpStatusCode]::OK
+            } catch {
+                $Results = $_.Exception.Message
+                $StatusCode = [HttpStatusCode]::InternalServerError
             }
-        } catch {
-            Write-LogMessage -headers $Request.Headers -API $APINAME -message "Could not add forwarding for $($username)" -Sev 'Error' -tenant $TenantFilter
-            $results = "Could not add forwarding for $($username). Error: $($_.Exception.Message)"
-
         }
-
-    }
-
-    if ($ForwardOption -eq 'disabled') {
-        try {
-            Set-CIPPForwarding -userid $username -username $username -tenantFilter $Tenantfilter -Headers $Request.Headers -APIName $APIName -Disable $true
-            $results = "Disabled Email Forwarding for $($username)"
-        } catch {
-            Write-LogMessage -headers $Request.Headers -API $APINAME -message "Could not disable Email forwarding for $($username)" -Sev 'Error' -tenant $TenantFilter
-            $results = "Could not disable Email forwarding for $($username). Error: $($_.Exception.Message)"
-
+        'ExternalAddress' {
+            # Set up external forwarding to an SMTP address outside the organization
+            try {
+                $Results = Set-CIPPForwarding -UserID $Username -TenantFilter $TenantFilter -APIName $APIName -Headers $Headers -ForwardingSMTPAddress $ForwardingSMTPAddress -KeepCopy $KeepCopy
+                $StatusCode = [HttpStatusCode]::OK
+            } catch {
+                $Results = $_.Exception.Message
+                $StatusCode = [HttpStatusCode]::InternalServerError
+            }
+        }
+        'disabled' {
+            # Disable email forwarding for the specified user
+            try {
+                $Results = Set-CIPPForwarding -UserID $Username -Username $Username -TenantFilter $TenantFilter -Headers $Headers -APIName $APIName -Disable $true
+                $StatusCode = [HttpStatusCode]::OK
+            } catch {
+                $Results = $_.Exception.Message
+                $StatusCode = [HttpStatusCode]::InternalServerError
+            }
         }
     }
 
-    $Body = @{'Results' = @($results) }
-
     # Associate values to output bindings by calling 'Push-OutputBinding'.
     Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
-            StatusCode = [HttpStatusCode]::OK
-            Body       = $Body
+            StatusCode = $StatusCode
+            Body       = @{'Results' = @($Results) }
         })
 
 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Administration/Invoke-ExecRemoveMailboxRule.ps1

@@ -20,19 +20,19 @@ Function Invoke-ExecRemoveMailboxRule {
     $RuleId = $Request.Query.ruleId ?? $Request.Body.ruleId
     $Username = $Request.Query.userPrincipalName ?? $Request.Body.userPrincipalName
 
-    # Remove the rule
-    $Results = Remove-CIPPMailboxRule -username $Username -TenantFilter $TenantFilter -APIName $APIName -Headers $Headers -RuleId $RuleId -RuleName $RuleName
-
-    if ($Results -like '*Could not delete*') {
-        $StatusCode = [HttpStatusCode]::InternalServerError
-    } else {
+    try {
+        # Remove the rule
+        $Results = Remove-CIPPMailboxRule -username $Username -TenantFilter $TenantFilter -APIName $APIName -Headers $Headers -RuleId $RuleId -RuleName $RuleName
         $StatusCode = [HttpStatusCode]::OK
+    } catch {
+        $Results = $_.Exception.Message
+        $StatusCode = [HttpStatusCode]::InternalServerError
     }
 
     # Associate values to output bindings by calling 'Push-OutputBinding'.
     Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
             StatusCode = $StatusCode
-            Body       = @{ Results = $Results }
+            Body       = @{ 'Results' = $Results }
         })
 
 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Resources/Invoke-AddEquipmentMailbox.ps1

@@ -34,12 +34,11 @@ Function Invoke-AddEquipmentMailbox {
 
         # Block sign-in for the mailbox
         try {
-            $BlockSignInRequest = Set-CIPPSignInState -userid $AddEquipmentRequest.ExternalDirectoryObjectId -TenantFilter $Tenant -APIName $APINAME -Headers $Headers -AccountEnabled $false
-            if ($BlockSignInRequest -like 'Could not disable*') { throw $BlockSignInRequest }
-            $Results.Add("Blocked sign-in for Equipment mailbox; $($MailboxObject.userPrincipalName)")
+            $null = Set-CIPPSignInState -userid $AddEquipmentRequest.ExternalDirectoryObjectId -TenantFilter $Tenant -APIName $APINAME -Headers $Headers -AccountEnabled $false
+            $Results.Add("Successfully blocked sign-in for Equipment mailbox $($MailboxObject.userPrincipalName)")
         } catch {
-            $ErrorMessage = Get-CippException -Exception $_
-            $Results.Add("Failed to block sign-in for Equipment mailbox: $($MailboxObject.userPrincipalName). Error: $($ErrorMessage.NormalizedError)")
+            $ErrorMessage = $_.Exception.Message
+            $Results.Add("Failed to block sign-in for Equipment mailbox: $($MailboxObject.userPrincipalName). Error: $ErrorMessage")
         }
         Write-LogMessage -headers $Headers -API $APIName -tenant $Tenant -message "Created equipment mailbox $($MailboxObject.displayName)" -Sev 'Info'
         $StatusCode = [HttpStatusCode]::OK

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Email-Exchange/Resources/Invoke-AddRoomMailbox.ps1

@@ -32,12 +32,11 @@ Function Invoke-AddRoomMailbox {
 
         # Block sign-in for the mailbox
         try {
-            $BlockSignInRequest = Set-CIPPSignInState -userid $AddRoomRequest.ExternalDirectoryObjectId -TenantFilter $Tenant -APIName $APINAME -Headers $Headers -AccountEnabled $false
-            if ($BlockSignInRequest -like 'Could not disable*') { throw $BlockSignInRequest }
-            $Results.Add("Blocked sign-in for Room mailbox; $($MailboxObject.userPrincipalName)")
+            $null = Set-CIPPSignInState -userid $AddRoomRequest.ExternalDirectoryObjectId -TenantFilter $Tenant -APIName $APINAME -Headers $Headers -AccountEnabled $false
+            $Results.Add("Successfully blocked sign-in for Room mailbox $($MailboxObject.userPrincipalName)")
         } catch {
-            $ErrorMessage = Get-CippException -Exception $_
-            $Results.Add("Failed to block sign-in for Room mailbox: $($MailboxObject.userPrincipalName). Error: $($ErrorMessage.NormalizedError)")
+            $ErrorMessage = $_.Exception.Message
+            $Results.Add("Failed to block sign-in for Room mailbox: $($MailboxObject.userPrincipalName). Error: $ErrorMessage")
         }
         $StatusCode = [HttpStatusCode]::OK
     } catch {