Merge pull request #136 from KelvinTegelaar/dev

[pull] dev from KelvinTegelaar:dev

Author: pull[bot]

Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-ExecOnboardTenantQueue.ps1

@@ -44,7 +44,7 @@ Function Push-ExecOnboardTenantQueue {
             @{ Name = 'Cloud App Security Administrator'; Id = '892c5842-a9a6-463a-8041-72aa08ca3cf6' },
             @{ Name = 'Cloud Device Administrator'; Id = '7698a772-787b-4ac8-901f-60d6b08affd2' },
             @{ Name = 'Teams Administrator'; Id = '69091246-20e8-4a56-aa4d-066075b2a7a8' },
-            @{ Name = 'Sharepoint Administrator'; Id = 'f28a1f50-f6e7-4571-818b-6a12f2af6b6c' },
+            @{ Name = 'SharePoint Administrator'; Id = 'f28a1f50-f6e7-4571-818b-6a12f2af6b6c' },
             @{ Name = 'Authentication Policy Administrator'; Id = '0526716b-113d-4c15-b2c8-68e3c22b9f80' },
             @{ Name = 'Privileged Role Administrator'; Id = 'e8611ab8-c189-46e8-94e1-60213ab1f814' },
             @{ Name = 'Privileged Authentication Administrator'; Id = '7be44c8a-adaf-4e2a-84d6-ab2649e08a13' }

Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-SchedulerCIPPNotifications.ps1

@@ -6,7 +6,7 @@ function Push-SchedulerCIPPNotifications {
     param (
         $QueueItem, $TriggerMetadata
     )
-
+    #Add new alert engine.
     $Table = Get-CIPPTable -TableName SchedulerConfig
     $Filter = "RowKey eq 'CippNotifications' and PartitionKey eq 'CippNotifications'"
     $Config = [pscustomobject](Get-CIPPAzDataTableEntity @Table -Filter $Filter)
@@ -30,55 +30,20 @@ function Push-SchedulerCIPPNotifications {
     Write-Information "Alerts: $($Currentlog.count) found"
     #email try
     try {
-        if ($Config.email -like '*@*') {
-            $Addresses = $Config.email.split(',').trim()
-            $Recipients = foreach ($Address in $Addresses) {
-                [PSCustomObject]@{
-                    EmailAddress = @{
-                        Address = $Address
-                    }
+        if ($Config.email -like '*@*' -and $null -ne $CurrentLog) {
+            if ($config.onePerTenant) {
+                foreach ($tenant in ($CurrentLog.Tenant | Sort-Object -Unique)) {
+                    $Data = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | Where-Object -Property tenant -EQ $tenant)
+                    $Subject = "$($Tenant): CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
+                    $HTMLContent = New-CIPPAlertTemplate -Data $Data -Format 'html' -InputObject 'table'
+                    Send-CIPPAlert -Type 'email' -Title $Subject -HTMLContent $HTMLContent.htmlcontent -TenantFilter $tenant -APIName 'Alerts'
                 }
-            }
-
-            $LogEmails = if ($config.onePerTenant) {
-                if ($Config.email -like '*@*' -and $null -ne $CurrentLog) {
-                    foreach ($tenant in ($CurrentLog.Tenant | Sort-Object -Unique)) {
-                        $HTMLLog = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | Where-Object -Property tenant -EQ $tenant | ConvertTo-Html -frag) -replace '<table>', '<table class=blueTable>' | Out-String
-                        $Subject = "$($Tenant): CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
-                        [PSCustomObject]@{
-                            HTMLLog = $HTMLLog
-                            Subject = $Subject
-                        }
-                    }
-                }
-
             } else {
-                if ($null -ne $CurrentLog) {
-                    $HTMLLog = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | ConvertTo-Html -frag) -replace '<table>', '<table class=blueTable>' | Out-String
-                    $Subject = "CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
-                    [PSCustomObject]@{
-                        HTMLLog = $HTMLLog
-                        Subject = $Subject
-                    }
-                }
+                $Data = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | ConvertTo-Html -frag)
+                $Subject = "CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
+                $HTMLContent = New-CIPPAlertTemplate -Data $Data -Format 'html' -InputObject 'table'
+                Send-CIPPAlert -Type 'email' -Title $Subject -HTMLContent $HTMLContent.htmlcontent -TenantFilter $tenant -APIName 'Alerts'
             }
-
-            foreach ($LogEmail in $LogEmails) {
-                $Email = [PSCustomObject]@{
-                    message         = @{
-                        subject      = $LogEmail.Subject
-                        body         = @{
-                            contentType = 'HTML'
-                            content     = "You've setup your alert policies to be alerted whenever specific events happen. We've found some of these events in the log:<br><br><style>table.blueTable { border:1px solid #1C6EA4;background-color:#EEE;width:100%;text-align:left;border-collapse:collapse}table.blueTable td,table.blueTable th{border:1px solid #AAA;padding:3px 2px}table.blueTable tbody td{font-size:13px}table.blueTable tr:nth-child(even){background:#D0E4F5}table.blueTable thead{background:#1C6EA4;background:-moz-linear-gradient(top,#5592bb 0,#327cad 66%,#1C6EA4 100%);background:-webkit-linear-gradient(top,#5592bb 0,#327cad 66%,#1C6EA4 100%);background:linear-gradient(to bottom,#5592bb 0,#327cad 66%,#1C6EA4 100%);border-bottom:2px solid #444}table.blueTable thead th{font-size:15px;font-weight:700;color:#FFF;border-left:2px solid #D0E4F5}table.blueTable thead th:first-child{border-left:none}table.blueTable tfoot{font-size:14px;font-weight:700;color:#FFF;background:#D0E4F5;background:-moz-linear-gradient(top,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);background:-webkit-linear-gradient(top,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);background:linear-gradient(to bottom,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);border-top:2px solid #444}table.blueTable tfoot td{font-size:14px}table.blueTable tfoot .links{text-align:right}table.blueTable tfoot .links a{display:inline-block;background:#1C6EA4;color:#FFF;padding:2px 8px;border-radius:5px}</style>$($LogEmail.HTMLLog)"
-                        }
-                        toRecipients = @($Recipients)
-                    }
-                    saveToSentItems = $false
-                }
-                $JSONBody = ConvertTo-Json -Depth 10 -Compress -InputObject $Email
-                New-GraphPostRequest -uri 'https://graph.microsoft.com/v1.0/me/sendMail' -tenantid $env:TenantID -type POST -body $JSONBody
-            }
-            Write-LogMessage -API 'Alerts' -message "Sent $(($LogEmails|Measure-Object).Count) alerts to: $($Addresses -join ', ')" -sev Debug
         }
     } catch {
         Write-Information "Could not send alerts to email: $($_.Exception.message)"
@@ -89,35 +54,8 @@ function Push-SchedulerCIPPNotifications {
         Write-Information $($config | ConvertTo-Json)
         Write-Information $config.webhook
         if ($Config.webhook -ne '' -and $null -ne $CurrentLog) {
-            switch -wildcard ($config.webhook) {
-
-                '*webhook.office.com*' {
-                    $Log = $Currentlog | ConvertTo-Html -frag | Out-String
-                    $JSonBody = "{`"text`": `"You've setup your alert policies to be alerted whenever specific events happen. We've found some of these events in the log. <br><br>$Log`"}"
-                    Invoke-RestMethod -Uri $config.webhook -Method POST -ContentType 'Application/json' -Body $JSONBody
-                }
-
-                '*slack.com*' {
-                    $Log = $Currentlog | ForEach-Object {
-                        $JSonBody = @"
-        {"blocks":[{"type":"header","text":{"type":"plain_text","text":"New Alert from CIPP","emoji":true}},{"type":"section","fields":[{"type":"mrkdwn","text":"*DateTime:*\n$($_.Timestamp)"},{"type":"mrkdwn","text":"*Tenant:*\n$($_.Tenant)"},{"type":"mrkdwn","text":"*API:*\n$($_.API)"},{"type":"mrkdwn","text":"*User:*\n$($_.Username)."}]},{"type":"section","text":{"type":"mrkdwn","text":"*Message:*\n$($_.Message)"}}]}
-"@
-                        Invoke-RestMethod -Uri $config.webhook -Method POST -ContentType 'Application/json' -Body $JSONBody
-                    }
-                }
-
-                '*discord.com*' {
-                    $Log = $Currentlog | ConvertTo-Html -frag | Out-String
-                    $JSonBody = "{`"content`": `"You've setup your alert policies to be alerted whenever specific events happen. We've found some of these events in the log. $Log`"}"
-                    Invoke-RestMethod -Uri $config.webhook -Method POST -ContentType 'Application/json' -Body $JSONBody
-                }
-                default {
-                    $Log = $Currentlog | ConvertTo-Json -Compress
-                    $JSonBody = $Log
-                    Invoke-RestMethod -Uri $config.webhook -Method POST -ContentType 'Application/json' -Body $JSONBody
-                }
-            }
-            Write-LogMessage -API 'Alerts' -tenant $Tenant -message "Sent Webhook to $($config.webhook)" -sev Debug
+            $JSONContent = $Currentlog | ConvertTo-Json -Compress
+            Send-CIPPAlert -Type 'webhook' -JSONContent $JSONContent -TenantFilter $Tenant -APIName 'Alerts'
         }
 
         $UpdateLogs = $CurrentLog | ForEach-Object {
@@ -135,13 +73,11 @@ function Push-SchedulerCIPPNotifications {
     if ($config.sendtoIntegration) {
         try {
             foreach ($tenant in ($CurrentLog.Tenant | Sort-Object -Unique)) {
-                $HTMLLog = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | Where-Object -Property tenant -EQ $tenant | ConvertTo-Html -frag) -replace '<table>', '<table class=blueTable>' | Out-String
-                $Alert = @{
-                    TenantId   = $Tenant
-                    AlertText  = "<style>table.blueTable{border:1px solid #1C6EA4;background-color:#EEE;width:100%;text-align:left;border-collapse:collapse}table.blueTable td,table.blueTable th{border:1px solid #AAA;padding:3px 2px}table.blueTable tbody td{font-size:13px}table.blueTable tr:nth-child(even){background:#D0E4F5}table.blueTable thead{background:#1C6EA4;background:-moz-linear-gradient(top,#5592bb 0,#327cad 66%,#1C6EA4 100%);background:-webkit-linear-gradient(top,#5592bb 0,#327cad 66%,#1C6EA4 100%);background:linear-gradient(to bottom,#5592bb 0,#327cad 66%,#1C6EA4 100%);border-bottom:2px solid #444}table.blueTable thead th{font-size:15px;font-weight:700;color:#FFF;border-left:2px solid #D0E4F5}table.blueTable thead th:first-child{border-left:none}table.blueTable tfoot{font-size:14px;font-weight:700;color:#FFF;background:#D0E4F5;background:-moz-linear-gradient(top,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);background:-webkit-linear-gradient(top,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);background:linear-gradient(to bottom,#dcebf7 0,#d4e6f6 66%,#D0E4F5 100%);border-top:2px solid #444}table.blueTable tfoot td{font-size:14px}table.blueTable tfoot .links{text-align:right}table.blueTable tfoot .links a{display:inline-block;background:#1C6EA4;color:#FFF;padding:2px 8px;border-radius:5px}</style> $($htmllog)"
-                    AlertTitle = "$tenant CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
-                }
-                New-CippExtAlert -Alert $Alert
+                $Data = ($CurrentLog | Select-Object Message, API, Tenant, Username, Severity | Where-Object -Property tenant -EQ $tenant | ConvertTo-Html -frag)
+                $HTMLContent = New-CIPPAlertTemplate -Data $Data -Format 'html' -InputObject 'table'
+                $Title = "$tenant CIPP Alert: Alerts found starting at $((Get-Date).AddMinutes(-15))"
+                Send-CIPPAlert -Type 'psa' -Title $Title -HTMLContent $HTMLContent.htmlcontent -TenantFilter $tenant -APIName 'Alerts'
+
                 $UpdateLogs = $CurrentLog | ForEach-Object {
                     $_.SentAsAlert = $true
                     $_

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Settings/Invoke-ExecCustomData.ps1

@@ -334,6 +334,13 @@ function Invoke-ExecCustomData {
                 }
             }
         }
+        'ListAvailableAttributes' {
+            $TargetObject = $Request.Query.targetObject ?? 'All'
+            $AvailableAttributes = Get-CippCustomDataAttributes -TargetObject $TargetObject
+            $Body = @{
+                Results = @($AvailableAttributes)
+            }
+        }
         default {
             $Body = @{
                 Results = @(

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Tenant/GDAP/Invoke-ExecAddGDAPRole.ps1

@@ -22,7 +22,7 @@ Function Invoke-ExecAddGDAPRole {
         @{ label = 'Cloud App Security Administrator'; value = '892c5842-a9a6-463a-8041-72aa08ca3cf6' },
         @{ label = 'Cloud Device Administrator'; value = '7698a772-787b-4ac8-901f-60d6b08affd2' },
         @{ label = 'Teams Administrator'; value = '69091246-20e8-4a56-aa4d-066075b2a7a8' },
-        @{ label = 'Sharepoint Administrator'; value = 'f28a1f50-f6e7-4571-818b-6a12f2af6b6c' },
+        @{ label = 'SharePoint Administrator'; value = 'f28a1f50-f6e7-4571-818b-6a12f2af6b6c' },
         @{ label = 'Authentication Policy Administrator'; value = '0526716b-113d-4c15-b2c8-68e3c22b9f80' },
         @{ label = 'Privileged Role Administrator'; value = 'e8611ab8-c189-46e8-94e1-60213ab1f814' },
         @{ label = 'Privileged Authentication Administrator'; value = '7be44c8a-adaf-4e2a-84d6-ab2649e08a13' }

Modules/CIPPCore/Public/Get-CIPPMFAState.ps1

@@ -6,14 +6,15 @@ function Get-CIPPMFAState {
         $APIName = 'Get MFA Status',
         $Headers
     )
-    $PerUserMFAState = Get-CIPPPerUserMFA -TenantFilter $TenantFilter -AllUsers $true
-    $users = foreach ($user in (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/users?$top=999&$select=id,UserPrincipalName,DisplayName,accountEnabled,assignedLicenses' -tenantid $TenantFilter)) {
+    #$PerUserMFAState = Get-CIPPPerUserMFA -TenantFilter $TenantFilter -AllUsers $true
+    $users = foreach ($user in (New-GraphGetRequest -uri 'https://graph.microsoft.com/v1.0/users?$top=999&$select=id,UserPrincipalName,DisplayName,accountEnabled,assignedLicenses,perUserMfaState' -tenantid $TenantFilter)) {
         [PSCustomObject]@{
             UserPrincipalName = $user.UserPrincipalName
             isLicensed        = [boolean]$user.assignedLicenses.skuid
             accountEnabled    = $user.accountEnabled
             DisplayName       = $user.DisplayName
             ObjectId          = $user.id
+            perUserMfaState   = $user.perUserMfaState
         }
     }
 
@@ -40,7 +41,7 @@ function Get-CIPPMFAState {
     if ($null -ne $MFARegistration) {
         $CASuccess = $true
         try {
-            $CAPolicies = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/identity/conditionalAccess/policies' -tenantid $TenantFilter -ErrorAction Stop )
+            $CAPolicies = (New-GraphGetRequest -Uri 'https://graph.microsoft.com/beta/identity/conditionalAccess/policies?$top=999' -tenantid $TenantFilter -ErrorAction Stop )
             foreach ($Policy in $CAPolicies) {
                 $IsMFAControl = $policy.grantControls.builtincontrols -eq 'mfa' -or $Policy.grantControls.authenticationStrength.requirementsSatisfied -eq 'mfa' -or $Policy.grantControls.customAuthenticationFactors -eq 'RequireDuoMfa'
                 $IsAllApps = [bool]($Policy.conditions.applications.includeApplications -eq 'All')
@@ -98,7 +99,7 @@ function Get-CIPPMFAState {
             }
         }
 
-        $PerUser = if ($null -eq $PerUserMFAState) { $null } else { ($PerUserMFAState | Where-Object -Property UserPrincipalName -EQ $_.UserPrincipalName).PerUserMFAState }
+        $PerUser = $_.PerUserMFAState
 
         $MFARegUser = if ($null -eq ($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.userPrincipalName).isMFARegistered) { $false } else { ($MFARegistration | Where-Object -Property UserPrincipalName -EQ $_.userPrincipalName) }
 

Modules/CIPPCore/Public/Get-CIPPPerUserMFA.ps1

@@ -8,21 +8,10 @@ function Get-CIPPPerUserMFA {
     )
     try {
         if ($AllUsers -eq $true) {
-            $AllUsers = New-graphGetRequest -Uri "https://graph.microsoft.com/beta/users?`$top=999&`$select=UserPrincipalName,Id" -tenantid $tenantfilter
-            $Requests = foreach ($id in $AllUsers.userPrincipalName) {
-                @{
-                    id     = $int++
-                    method = 'GET'
-                    url    = "users/$id/authentication/requirements"
-                }
-            }
-            $Requests = New-GraphBulkRequest -tenantid $tenantfilter -scope 'https://graph.microsoft.com/.default' -Requests @($Requests) -asapp $true
-            if ($Requests.body) {
-                $UsersWithoutMFA = $Requests.body | Select-Object peruserMFAState, @{Name = 'UserPrincipalName'; Expression = { [System.Web.HttpUtility]::UrlDecode($_.'@odata.context'.split("'")[1]) } }
-                return $UsersWithoutMFA
-            }
+            $AllUsers = New-graphGetRequest -Uri "https://graph.microsoft.com/v1.0/users?`$top=999&`$select=UserPrincipalName,Id,perUserMfaState" -tenantid $tenantfilter
+            return $AllUsers
         } else {
-            $MFAState = New-graphGetRequest -Uri "https://graph.microsoft.com/beta/users/$($userId)/authentication/requirements" -tenantid $tenantfilter
+            $MFAState = New-graphGetRequest -Uri "https://graph.microsoft.com/v1.0/users/$($userId)?`$select=UserPrincipalName,Id,perUserMfaState" -tenantid $tenantfilter
             return [PSCustomObject]@{
                 PerUserMFAState   = $MFAState.perUserMfaState
                 UserPrincipalName = $userId

Modules/CIPPCore/Public/Get-CippCustomDataAttributes.ps1

@@ -0,0 +1,48 @@
+function Get-CippCustomDataAttributes {
+    <#
+    .SYNOPSIS
+        Get the custom data attributes for CIPP
+    .DESCRIPTION
+        This function is used to get the custom data attributes for CIPP
+    #>
+    [CmdletBinding()]
+    param(
+        $TargetObject = 'All'
+    )
+    $CustomDataTable = Get-CippTable -tablename 'CustomData'
+    $CustomDataEntities = Get-CIPPAzDataTableEntity @CustomDataTable
+    $AvailableAttributes = foreach ($CustomDataEntity in $CustomDataEntities) {
+        $Type = $CustomDataEntity.PartitionKey
+        $CustomData = $CustomDataEntity.JSON | ConvertFrom-Json
+        if ($CustomData) {
+            if ($Type -eq 'SchemaExtension') {
+                $Name = $CustomData.id
+                foreach ($TargetObject in $CustomData.targetTypes) {
+                    [PSCustomObject]@{
+                        name         = $Name
+                        type         = $Type
+                        targetObject = $TargetObject.ToLower()
+                        properties   = $CustomData.properties
+                    }
+                }
+            } elseif ($Type -eq 'DirectoryExtension') {
+                $Name = $CustomData.RowKey
+                foreach ($TargetObject in $CustomData.targetObjects) {
+                    [PSCustomObject]@{
+                        name          = $Name
+                        type          = $Type
+                        targetObject  = $TargetObject
+                        dataType      = $CustomData.dataType
+                        isMultiValued = $CustomData.isMultiValued
+                    }
+                }
+            }
+        }
+    }
+
+    if ($TargetObject -eq 'All') {
+        return $AvailableAttributes
+    } else {
+        return $AvailableAttributes | Where-Object { $_.targetObject -eq $TargetObject }
+    }
+}

Modules/CIPPCore/Public/GraphHelper/New-ClassicAPIGetRequest.ps1

@@ -18,13 +18,13 @@ function New-ClassicAPIGetRequest($TenantID, $Uri, $Method = 'GET', $Resource =
                     'X-Requested-With'       = 'XMLHttpRequest'
                 }
                 $Data
-                if ($noPagination) { $nextURL = $null } else { $nextURL = $data.NextLink }
+                if ($noPagination -or $null -eq $data.NextLink) { $nextURL = $null } else { $nextURL = $data.NextLink }
             } catch {
                 throw "Failed to make Classic Get Request $_"
             }
-        } until ($null -eq $NextURL)
+        } until ($null -eq $NextURL -or ' ' -eq $NextURL)
         return $ReturnedData
     } else {
         Write-Error 'Not allowed. You cannot manage your own tenant or tenants not under your scope'
     }
-}
+}