Merge pull request #133 from KelvinTegelaar/dev

[pull] dev from KelvinTegelaar:dev

Author: pull[bot]

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Settings/Invoke-ExecCippReplacemap.ps1

@@ -0,0 +1,64 @@
+function Invoke-ExecCippReplacemap {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    .ROLE
+        CIPP.Extension.ReadWrite
+    #>
+    [CmdletBinding()]
+    param($Request, $TriggerMetadata)
+
+    $Table = Get-CippTable -tablename 'CippReplacemap'
+    $Action = $Request.Query.Action ?? $Request.Body.Action
+    $customerId = $Request.Query.customerId ?? $Request.Body.customerId
+
+    if (!$customerId) {
+        Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+                StatusCode = [HttpStatusCode]::BadRequest
+                Body       = 'customerId is required'
+            })
+        return
+    }
+
+    switch ($Action) {
+        'List' {
+            $Variables = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq '$customerId'"
+            if (!$Variables) {
+                $Variables = @()
+            }
+            $Body = @{ Results = @($Variables) }
+        }
+        'AddEdit' {
+            $VariableName = $Request.Body.RowKey
+            $VariableValue = $Request.Body.Value
+
+            $VariableEntity = @{
+                PartitionKey = $customerId
+                RowKey       = $VariableName
+                Value        = $VariableValue
+            }
+
+            Add-CIPPAzDataTableEntity @Table -Entity $VariableEntity -Force
+            $Body = @{ Results = "Variable '$VariableName' saved successfully" }
+        }
+        'Delete' {
+            $VariableName = $Request.Body.RowKey
+
+            $VariableEntity = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq '$customerId' and RowKey eq '$VariableName'"
+            if ($VariableEntity) {
+                Remove-AzDataTableEntity @Table -Entity $VariableEntity -Force
+                $Body = @{ Results = "Variable '$VariableName' deleted successfully" }
+            } else {
+                $Body = @{ Results = "Variable '$VariableName' not found" }
+            }
+        }
+        default {
+            $Body = @{ Results = 'Invalid action' }
+        }
+    }
+
+    Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+            StatusCode = [HttpStatusCode]::OK
+            Body       = $Body
+        })
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Settings/Invoke-ExecTenantGroup.ps1

@@ -0,0 +1,114 @@
+function Invoke-ExecTenantGroup {
+    <#
+    .SYNOPSIS
+        Entrypoint for tenant group management
+    .DESCRIPTION
+        This function is used to manage tenant groups in CIPP
+    .FUNCTIONALITY
+        Entrypoint,AnyTenant
+    .ROLE
+        Tenant.Config.ReadWrite
+    #>
+    [CmdletBinding()]
+    param($Request, $TriggerMetadata)
+
+    $Table = Get-CippTable -tablename 'TenantGroups'
+    $MembersTable = Get-CippTable -tablename 'TenantGroupMembers'
+    $Action = $Request.Body.Action
+    $groupId = $Request.Body.groupId ?? [guid]::NewGuid().ToString()
+    $groupName = $Request.Body.groupName
+    $groupDescription = $Request.Body.groupDescription
+    $members = $Request.Body.members
+
+    switch ($Action) {
+        'AddEdit' {
+            $Results = [System.Collections.Generic.List[object]]::new()
+            # Update group details
+            $GroupEntity = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq 'TenantGroup' and RowKey eq '$groupId'"
+            if ($GroupEntity) {
+                if ($groupName) {
+                    $GroupEntity.Name = $groupName
+                }
+                if ($groupDescription) {
+                    $GroupEntity.Description = $groupDescription
+                }
+                Add-CIPPAzDataTableEntity @Table -Entity $GroupEntity -Force
+            } else {
+                $GroupEntity = @{
+                    PartitionKey = 'TenantGroup'
+                    RowKey       = $groupId
+                    Name         = $groupName
+                    Description  = $groupDescription
+                }
+                Add-CIPPAzDataTableEntity @Table -Entity $GroupEntity -Force
+            }
+
+            $CurrentMembers = Get-CIPPAzDataTableEntity @MembersTable -Filter "GroupId eq '$groupId'"
+
+            $Adds = [System.Collections.Generic.List[string]]::new()
+            $Removes = [System.Collections.Generic.List[string]]::new()
+            # Add members
+            foreach ($member in $members) {
+                if ($CurrentMembers) {
+                    $CurrentMember = $CurrentMembers | Where-Object { $_.customerId -eq $member.value }
+                    if ($CurrentMember) {
+                        continue
+                    }
+                }
+                $MemberEntity = @{
+                    PartitionKey = 'Member'
+                    RowKey     = '{0}-{1}' -f $groupId, $member.value
+                    GroupId    = $groupId
+                    customerId = $member.value
+                }
+                Add-CIPPAzDataTableEntity @MembersTable -Entity $MemberEntity -Force
+                $Adds.Add('Added member {0}' -f $member.label)
+            }
+
+            if ($CurrentMembers) {
+                foreach ($CurrentMember in $CurrentMembers) {
+                    if ($members.value -notcontains $CurrentMember.customerId) {
+                        Remove-AzDataTableEntity @MembersTable -Entity $CurrentMember -Force
+                        $Removes.Add('Removed member {0}' -f $CurrentMember.customerId)
+                    }
+                }
+            }
+            $Results.Add(@{
+                    resultText = "Group '$groupName' saved successfully"
+                    state      = 'success'
+                })
+            foreach ($Add in $Adds) {
+                $Results.Add(@{
+                        resultText = $Add
+                        state      = 'success'
+                    })
+            }
+            foreach ($Remove in $Removes) {
+                $Results.Add(@{
+                        resultText = $Remove
+                        state      = 'success'
+                    })
+            }
+
+            $Body = @{ Results = $Results }
+        }
+        'Delete' {
+            # Delete group
+            $GroupEntity = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq 'TenantGroup' and RowKey eq '$groupId'"
+            if ($GroupEntity) {
+                Remove-AzDataTableEntity @Table -Entity $GroupEntity -Force
+                $Body = @{ Results = "Group '$($GroupEntity.Name)' deleted successfully" }
+            } else {
+                $Body = @{ Results = "Group '$groupId' not found" }
+            }
+        }
+        default {
+            $Body = @{ Results = 'Invalid action' }
+        }
+    }
+
+    Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+            StatusCode = [HttpStatusCode]::OK
+            Body       = $Body
+        })
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Settings/Invoke-ListTenantGroups.ps1

@@ -0,0 +1,21 @@
+function Invoke-ListTenantGroups {
+    <#
+    .SYNOPSIS
+        Entrypoint for listing tenant groups
+    .FUNCTIONALITY
+        Entrypoint,AnyTenant
+    .ROLE
+        CIPP.Core.Read
+    #>
+    [CmdletBinding()]
+    param($Request, $TriggerMetadata)
+
+    $groupFilter = $Request.Query.groupId ?? $Request.Body.groupId
+    $TenantGroups = (Get-TenantGroups -GroupId $groupFilter) ?? @()
+    $Body = @{ Results = @($TenantGroups) }
+
+    Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+            StatusCode = [HttpStatusCode]::OK
+            Body       = $Body
+        })
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Tenant/Administration/Tenant/Invoke-EditTenant.ps1

@@ -0,0 +1,88 @@
+using namespace System.Net
+
+Function Invoke-EditTenant {
+    <#
+    .FUNCTIONALITY
+        Entrypoint,AnyTenant
+    .ROLE
+        Tenant.Config.ReadWrite
+    #>
+    [CmdletBinding()]
+    param($Request, $TriggerMetadata)
+
+    $APIName = $Request.Params.CIPPEndpoint
+
+    Write-LogMessage -headers $Request.Headers -API $APINAME -message 'Accessed this API' -Sev 'Debug'
+
+    $customerId = $Request.Body.customerId
+    $tenantAlias = $Request.Body.tenantAlias
+    $tenantGroups = $Request.Body.tenantGroups
+
+    $PropertiesTable = Get-CippTable -TableName 'TenantProperties'
+    $Existing = Get-CIPPAzDataTableEntity @PropertiesTable -Filter "PartitionKey eq '$customerId'"
+    $Tenant = Get-Tenants -TenantFilter $customerId
+    $TenantTable = Get-CippTable -TableName 'Tenants'
+    $GroupMembersTable = Get-CippTable -TableName 'TenantGroupMembers'
+
+    try {
+        $AliasEntity = $Existing | Where-Object { $_.RowKey -eq 'Alias' }
+        if (!$tenantAlias) {
+            if ($AliasEntity) {
+                Write-Host 'Removing alias'
+                Remove-AzDataTableEntity @PropertiesTable -Entity $AliasEntity
+                $null = Get-Tenants -TenantFilter $customerId -TriggerRefresh
+            }
+        } else {
+            $aliasEntity = @{
+                PartitionKey = $customerId
+                RowKey       = 'Alias'
+                Value        = $tenantAlias
+            }
+            $null = Add-CIPPAzDataTableEntity @PropertiesTable -Entity $aliasEntity -Force
+            Write-Host "Setting alias to $tenantAlias"
+            $Tenant.displayName = $tenantAlias
+            $null = Add-CIPPAzDataTableEntity @TenantTable -Entity $Tenant -Force
+        }
+
+        # Update tenant groups
+        $CurrentMembers = Get-CIPPAzDataTableEntity @GroupMembersTable -Filter "customerId eq '$customerId'"
+        foreach ($Group in $tenantGroups) {
+            $GroupEntity = $CurrentMembers | Where-Object { $_.GroupId -eq $Group.groupId }
+            if (!$GroupEntity) {
+                $GroupEntity = @{
+                    PartitionKey = 'Member'
+                    RowKey       = '{0}-{1}' -f $Group.groupId, $customerId
+                    GroupId      = $Group.groupId
+                    customerId   = $customerId
+                }
+                Add-CIPPAzDataTableEntity @GroupMembersTable -Entity $GroupEntity -Force
+            }
+        }
+
+        # Remove any groups that are no longer selected
+        foreach ($Group in $CurrentMembers) {
+            if ($tenantGroups -notcontains $Group.GroupId) {
+                Remove-AzDataTableEntity @GroupMembersTable -Entity $Group
+            }
+        }
+
+        $response = @{
+            state      = 'success'
+            resultText = 'Tenant details updated successfully'
+        }
+        Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+                StatusCode = [HttpStatusCode]::OK
+                Body       = $response
+            })
+    } catch {
+        Write-LogMessage -headers $Request.Headers -tenant $customerId -API $APINAME -message "Edit Tenant failed. The error is: $($_.Exception.Message)" -Sev 'Error'
+        $response = @{
+            state      = 'error'
+            resultText = $_.Exception.Message
+        }
+        Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
+                StatusCode = [HttpStatusCode]::InternalServerError
+                Body       = $response
+            })
+    }
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Tenant/Administration/Tenant/Invoke-ListTenantDetails.ps1

@@ -22,6 +22,13 @@ Function Invoke-ListTenantDetails {
         @{ Name = 'technicalNotificationMails'; Expression = { $_.technicalNotificationMails -join ', ' } },
         tenantType, createdDateTime, onPremisesLastPasswordSyncDateTime, onPremisesLastSyncDateTime, onPremisesSyncEnabled, assignedPlans
 
+        $customProperties = Get-TenantProperties -customerId $tenantfilter
+        $org | Add-Member -MemberType NoteProperty -Name 'customProperties' -Value $customProperties
+
+        $Groups = (Get-TenantGroups -TenantFilter $tenantfilter) ?? @()
+        $org | Add-Member -MemberType NoteProperty -Name 'Groups' -Value @($Groups)
+
+
         # Respond with the successful output
         Push-OutputBinding -Name Response -Value ([HttpResponseContext]@{
                 StatusCode = [HttpStatusCode]::OK

Modules/CIPPCore/Public/Functions/Get-TenantGroups.ps1

@@ -0,0 +1,88 @@
+function Get-TenantGroups {
+    <#
+    .SYNOPSIS
+        Get tenant groups
+    .DESCRIPTION
+        Get tenant groups from Azure Table Storage
+    .PARAMETER GroupId
+        The group id to filter on
+    .PARAMETER TenantFilter
+        The tenant filter to apply to get the groups for a specific tenant
+    #>
+    [CmdletBinding()]
+    param(
+        $GroupId,
+        $TenantFilter
+    )
+
+    $GroupTable = Get-CippTable -tablename 'TenantGroups'
+    $MembersTable = Get-CippTable -tablename 'TenantGroupMembers'
+
+    if ($TenantFilter) {
+        $TenantParams = @{
+            TenantFilter = $TenantFilter
+            IncludeErrors = $true
+        }
+    } else {
+        $TenantParams = @{
+            IncludeErrors = $true
+        }
+    }
+    $Tenants = Get-Tenants @TenantParams
+
+    if ($GroupFilter) {
+        $Groups = Get-CIPPAzDataTableEntity @GroupTable -Filter "RowKey eq '$GroupFilter'"
+        $AllMembers = Get-CIPPAzDataTableEntity @MembersTable -Filter "GroupId eq '$GroupFilter'"
+    } else {
+        $Groups = Get-CIPPAzDataTableEntity @GroupTable
+        $AllMembers = Get-CIPPAzDataTableEntity @MembersTable
+    }
+
+    if (!$Groups) {
+        return @()
+    }
+
+    if ($TenantFilter) {
+        $Memberships = $AllMembers | Where-Object { $_.customerId -eq $Tenants.customerId }
+        foreach ($Group in $Memberships) {
+            $Group = $Groups | Where-Object { $_.RowKey -eq $Group.GroupId }
+            if ($Group) {
+                [PSCustomObject]@{
+                    Id          = $Group.RowKey
+                    Name        = $Group.Name
+                    Description = $Group.Description
+                }
+            }
+        }
+    } else {
+        $Groups | ForEach-Object {
+            $Group = $_
+            $Members = $AllMembers | Where-Object { $_.GroupId -eq $Group.RowKey }
+            if (!$Members) {
+                $Members = @()
+            }
+
+            $Members = $Members | ForEach-Object {
+                $Member = $_
+                $Tenant = $Tenants | Where-Object { $Member.customerId -eq $_.customerId }
+                if ($Tenant) {
+                    @{
+                        customerId        = $Tenant.customerId
+                        displayName       = $Tenant.displayName
+                        defaultDomainName = $Tenant.defaultDomainName
+                    }
+                }
+            }
+            if (!$Members) {
+                $Members = @()
+            }
+
+            [PSCustomObject]@{
+                Id          = $Group.RowKey
+                Name        = $Group.Name
+                Description = $Group.Description
+                Members     = @($Members)
+            }
+        }
+    }
+}