Merge pull request #508 from KelvinTegelaar/dev

[pull] dev from KelvinTegelaar:dev

Author: pull[bot]

Modules/CIPPCore/Public/Add-CIPPScheduledTask.ps1

@@ -56,7 +56,7 @@ function Add-CIPPScheduledTask {
 
             $propertiesToCheck = @('Webhook', 'Email', 'PSA')
             $PostExecutionObject = ($propertiesToCheck | Where-Object { $task.PostExecution.$_ -eq $true })
-            $PostExecution = $PostExecutionObject ? ($PostExecutionObject -join ',') : ($Task.PostExecution.value -join ',')
+            $PostExecution = $PostExecutionObject ? @($PostExecutionObject -join ',') : ($Task.PostExecution.value -join ',')
             $Parameters = [System.Collections.Hashtable]@{}
             foreach ($Key in $task.Parameters.PSObject.Properties.Name) {
                 $Param = $task.Parameters.$Key
@@ -122,6 +122,10 @@ function Add-CIPPScheduledTask {
                 $task.Recurrence.value
             }
 
+            if ($task.PSObject.Properties.Name -notcontains 'ScheduledTime') {
+                $task | Add-Member -MemberType NoteProperty -Name 'ScheduledTime' -Value 0 -Force
+            }
+
             if ($DesiredStartTime) {
                 try {
                     # Parse the epoch time
@@ -186,6 +190,8 @@ function Add-CIPPScheduledTask {
                 Results              = 'Planned'
                 AlertComment         = [string]$task.AlertComment
             }
+
+
             # Always store DesiredStartTime if provided
             if ($DesiredStartTime) {
                 $entity['DesiredStartTime'] = [string]$DesiredStartTime
@@ -205,22 +211,57 @@ function Add-CIPPScheduledTask {
                     # Not a JSON object, ignore
                 }
             }
+
+            if ($task.Trigger) {
+                $entity.Trigger = [string]($task.Trigger | ConvertTo-Json -Compress)
+                $TriggerType = $task.Trigger.Type.value ?? $task.Trigger.Type
+                if ($TriggerType -eq 'DeltaQuery') {
+                    $Parameters = @{}
+                    if ($task.Trigger.WatchedAttributes -and ($task.Trigger.WatchedAttributes | Measure-Object).Count -gt 0) {
+                        $Parameters.'$select' = $task.Trigger.WatchedAttributes | ForEach-Object { $_.value ?? $_ } -join ','
+                    }
+                    if ($task.Trigger.ResourceFilter) {
+                        $Parameters.'$filter' = "id eq '" + $task.Trigger.ResourceFilter | ForEach-Object { $_.value ?? $_ } -join "' or id eq '"
+                    }
+                    $Resource = $task.Trigger.DeltaResource.value ?? $task.Trigger.DeltaResource
+
+                    if ($entity.TenantGroup) {
+                        $tenantFilter = $entity.TenantGroup | ConvertFrom-Json
+                    }
+                    $DeltaQuery = @{
+                        TenantFilter = $tenantFilter
+                        Resource     = $Resource
+                        Parameters   = $Parameters
+                        PartitionKey = $RowKey
+                    }
+
+                    try {
+                        $null = New-GraphDeltaQuery @DeltaQuery
+                        Write-Information "Created delta query for resource $($Resource)"
+                    } catch {
+                        Write-Warning "Failed to create delta query for resource $($Resource): $($_.Exception.Message)"
+                    }
+                }
+            }
+
             if ($SyncType) {
                 $entity.SyncType = $SyncType
             }
             try {
                 Add-CIPPAzDataTableEntity @Table -Entity $entity -Force
             } catch {
                 $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
-                return "Could not add task: $ErrorMessage"
+                Write-Information $_.InvocationInfo.PositionMessage
+                Write-Information ($entity | ConvertTo-Json)
+                return "Error - Could not add task: $ErrorMessage"
             }
             Write-LogMessage -headers $Headers -API 'ScheduledTask' -message "Added task $($entity.Name) with ID $($entity.RowKey)" -Sev 'Info' -Tenant $tenantFilter
             return "Successfully added task: $($entity.Name)"
         }
     } catch {
         Write-Warning "Failed to add scheduled task: $($_.Exception.Message)"
-        Write-Information $_.InvocationInfo.PositionMessage
         $ErrorMessage = Get-NormalizedError -Message $_.Exception.Message
-        throw "Could not add task: $ErrorMessage"
+        #Write-Information ($Task | ConvertTo-Json)
+        throw "Error - Could not add task: $ErrorMessage"
     }
 }

Modules/CIPPCore/Public/DeltaQueries/Get-DeltaQueryResults.ps1

@@ -0,0 +1,30 @@
+function Get-DeltaQueryResults {
+    <#
+    .SYNOPSIS
+        Retrieves results for Delta Queries
+    .DESCRIPTION
+        This helper function modifies the results from Delta Query triggers based on specified properties.
+    .PARAMETER Data
+        The data containing Delta Query results. Use %triggerdata% from the scheduler to pass in the data.
+    .PARAMETER Properties
+        A comma-separated list of properties to include in the output. If not specified, all properties are returned.
+    #>
+
+    [CmdletBinding()]
+    param(
+        [Parameter(Mandatory = $true)]
+        $Data,
+        [string]$Properties,
+        [string]$TenantFilter,
+        $Headers
+    )
+
+    $Properties = $Properties -split ',' | ForEach-Object { $_.Trim() }
+    if (!$Properties -or $Properties.Count -eq 0) {
+        Write-Information 'No specific properties requested, returning all data.'
+        Write-Information ($Data | ConvertTo-Json -Depth 10)
+        return $Data
+    }
+
+    $Data = $Data | Select-Object -Property $Properties
+}

Modules/CIPPCore/Public/DeltaQueries/Get-DeltaQueryUrl.ps1

@@ -0,0 +1,29 @@
+function Get-DeltaQueryUrl {
+    <#
+    .SYNOPSIS
+        Retrieves the URL for Delta Queries
+    .DESCRIPTION
+        This helper function constructs the URL for Delta Query requests based on the resource and parameters.
+    .PARAMETER TenantFilter
+        The tenant to filter the query on.
+    .PARAMETER PartitionKey
+        The partition key for the delta query.
+    #>
+
+    [CmdletBinding()]
+    param(
+        [Parameter(Mandatory = $true)]
+        $TenantFilter,
+        [Parameter(Mandatory = $true)]
+        $PartitionKey
+    )
+
+    $Table = Get-CIPPTable -TableName 'DeltaQueries'
+    $DeltaQueryEntity = Get-CIPPAzDataTableEntity @Table -Filter "PartitionKey eq '$PartitionKey' and RowKey eq '$TenantFilter'"
+
+    if ($DeltaQueryEntity) {
+        return $DeltaQueryEntity.DeltaUrl
+    } else {
+        throw "Delta Query not found for Tenant '$TenantFilter' and PartitionKey '$PartitionKey'."
+    }
+}

Modules/CIPPCore/Public/DeltaQueries/New-GraphDeltaQuery.ps1

@@ -13,87 +13,158 @@ function New-GraphDeltaQuery {
         Additional query parameters (e.g., $select, $filter, $top).
     .PARAMETER DeltaUrl
         Use this parameter to continue a delta query with a specific delta or next link.
+    .FUNCTIONALITY
+        Internal
     #>
     [CmdletBinding(DefaultParameterSetName = 'NewDeltaQuery')]
     param(
         [Parameter(Mandatory = $true, ParameterSetName = 'NewDeltaQuery')]
         [Parameter(Mandatory = $true, ParameterSetName = 'DeltaUrl')]
-        [string]$TenantFilter,
+        $TenantFilter,
 
         [Parameter(ParameterSetName = 'NewDeltaQuery', Mandatory = $true)]
-        [ValidateSet('users', 'groups', 'contacts', 'devices', 'applications', 'servicePrincipals', 'directoryObjects', 'administrativeUnits')]
+        [ValidateSet('users', 'groups', 'contacts', 'orgContact', 'devices', 'applications', 'servicePrincipals', 'directoryObjects', 'directoryRole', 'administrativeUnits', 'oAuth2PermissionGrant')]
         [string]$Resource,
 
         [Parameter(ParameterSetName = 'NewDeltaQuery', Mandatory = $false)]
         [hashtable]$Parameters = @{},
 
         [Parameter(ParameterSetName = 'DeltaUrl', Mandatory = $true)]
-        [string]$DeltaUrl
+        [string]$DeltaUrl,
+
+        [Parameter(Mandatory = $false, ParameterSetName = 'NewDeltaQuery')]
+        [Parameter(Mandatory = $true, ParameterSetName = 'DeltaUrl')]
+        [string]$PartitionKey
     )
 
-    try {
-        if ($DeltaUrl) {
-            $GraphQuery = [System.UriBuilder]$DeltaUrl
+    if ($TenantFilter -eq 'AllTenants' -or $TenantFilter.type -eq 'Group') {
+        Write-Information 'Creating delta query for all tenants or tenant group.'
+        if ($TenantFilter.type -eq 'group') {
+            $Tenants = Expand-CIPPTenantGroups -TenantFilter $TenantFilter
         } else {
-            $GraphQuery = [System.UriBuilder]('https://graph.microsoft.com/beta/{0}/delta' -f $Resource)
-            $QueryParams = @{
-                '$deltaToken' = 'latest'
+            $Tenants = Get-Tenants -IncludeErrors
+        }
+
+        if (!$PartitionKey) {
+            $ParamJson = $Parameters | ConvertTo-Json -Depth 5 -Compress
+            $PartitionKey = Get-StringHash -String ($Resource + $ParamJson)
+        }
+        # Prepare batch processing for all tenants
+        $TenantBatch = $Tenants | ForEach-Object {
+            [PSCustomObject]@{
+                FunctionName = 'GraphDeltaQuery'
+                TenantFilter = $_.defaultDomainName ?? $_.value
+                Resource     = $Resource
+                Parameters   = $Parameters
+                PartitionKey = $PartitionKey
             }
-            $ParamCollection = [System.Web.HttpUtility]::ParseQueryString([String]::Empty)
+        }
 
-            foreach ($key in $QueryParams.Keys) {
-                if ($QueryParams[$key]) {
-                    $ParamCollection.Add($key, $QueryParams[$key])
-                }
+        $InputObject = @{
+            Batch            = @($TenantBatch)
+            OrchestratorName = 'ProcessDeltaQueries'
+            SkipLog          = $true
+        }
+        Write-Information "Starting delta query orchestration for $($Tenants.Count) tenants."
+        Write-Information "Orchestration Input: $($InputObject | ConvertTo-Json -Compress -Depth 5)"
+        $Orchestration = Start-NewOrchestration -FunctionName CIPPOrchestrator -InputObject ($InputObject | ConvertTo-Json -Compress -Depth 5)
+
+    } else {
+        $Table = Get-CIPPTable -TableName 'DeltaQueries'
+
+        if ($Parameters -and $Resource) {
+            $ParamJson = $Parameters | ConvertTo-Json -Depth 5
+            $ResourceHash = Get-StringHash -String ($Resource + $ParamJson)
+
+            $DeltaQuery = @{
+                PartitionKey = $PartitionKey ?? $ResourceHash
+                RowKey       = $TenantFilter
+                Resource     = $Resource
+                Parameters   = [string]($Parameters | ConvertTo-Json -Depth 5 -Compress)
+                DeltaUrl     = $DeltaUrl
             }
+        } elseif ($PartitionKey) {
+            $DeltaQuery = Get-AzDataTableEntity @Table -Filter "PartitionKey eq '$PartitionKey' and RowKey eq '$TenantFilter'"
+        }
 
-            foreach ($Item in ($Parameters.GetEnumerator() | Sort-Object -CaseSensitive -Property Key)) {
-                if ($Item.Value -is [System.Boolean]) {
-                    $Item.Value = $Item.Value.ToString().ToLower()
+        try {
+            if ($DeltaUrl) {
+                $GraphQuery = [System.UriBuilder]$DeltaUrl
+            } else {
+                $GraphQuery = [System.UriBuilder]('https://graph.microsoft.com/beta/{0}/delta' -f $Resource)
+                $QueryParams = @{
+                    '$deltaToken' = 'latest'
                 }
-                if ($Item.Value) {
-                    $ParamCollection.Add($Item.Key, $Item.Value)
+                $ParamCollection = [System.Web.HttpUtility]::ParseQueryString([String]::Empty)
+
+                foreach ($key in $QueryParams.Keys) {
+                    if ($QueryParams[$key]) {
+                        $ParamCollection.Add($key, $QueryParams[$key])
+                    }
                 }
-            }
-            $GraphQuery.Query = $ParamCollection.ToString()
-        }
-        
-        $allResults = [System.Collections.ArrayList]::new()
-        $nextUrl = $GraphQuery.ToString()
-        $deltaLink = $null
-
-        do {
-            $response = New-GraphGetRequest -tenantid $TenantFilter -uri $nextUrl -ReturnRawResponse
-
-            if ($response.Content) {
-                $content = $response.Content
-                if ($content -is [string]) {
-                    $content = $content | ConvertFrom-Json
+
+                foreach ($Item in ($Parameters.GetEnumerator() | Sort-Object -CaseSensitive -Property Key)) {
+                    if ($Item.Value -is [System.Boolean]) {
+                        $Item.Value = $Item.Value.ToString().ToLower()
+                    }
+                    if ($Item.Value) {
+                        $ParamCollection.Add($Item.Key, $Item.Value)
+                    }
                 }
+                $GraphQuery.Query = $ParamCollection.ToString()
+            }
+
+            $allResults = [System.Collections.ArrayList]::new()
+            $nextUrl = $GraphQuery.ToString()
+            $deltaLink = $null
 
-                # Add results from this page
-                if ($content.value) {
-                    $allResults.AddRange($content.value)
+            $DeltaError = $false
+            do {
+                try {
+                    $response = New-GraphGetRequest -tenantid $TenantFilter -uri $nextUrl -ReturnRawResponse -extraHeaders @{ Prefer = 'return=minimal' } -ErrorAction Stop
+                    if ($response.Content) {
+                        $content = $response.Content
+                        if ($content -is [string]) {
+                            $content = $content | ConvertFrom-Json
+                        }
+
+                        # Add results from this page
+                        if ($content.value) {
+                            $allResults.AddRange($content.value)
+                        }
+
+                        # Check for next page or delta link
+                        $nextUrl = $content.'@odata.nextLink'
+                        $deltaLink = $content.'@odata.deltaLink'
+                    }
+                } catch {
+                    Write-Error "Error during Graph Delta Query request for tenant '$TenantFilter': $(Get-NormalizedError -Message $_.Exception.message)"
+                    $DeltaError = $true
                 }
+            } while ($nextUrl -and -not $deltaLink -and -not $DeltaError)
 
-                # Check for next page or delta link
-                $nextUrl = $content.'@odata.nextLink'
-                $deltaLink = $content.'@odata.deltaLink'
+            if ($DeltaError) {
+                throw "Delta Query failed for tenant '$TenantFilter'."
             }
-        } while ($nextUrl -and -not $deltaLink)
+            $DeltaQuery.RowKey = $TenantFilter
+            $DeltaQuery.DeltaUrl = $deltaLink
 
-        # Return results with delta link for future queries
-        $result = @{
-            value              = $allResults.ToArray()
-            '@odata.deltaLink' = $deltaLink
-        }
+            # Return results with delta link for future queries
+            $result = @{
+                value              = $allResults.ToArray()
+                '@odata.deltaLink' = $deltaLink
+                PartitionKey       = $PartitionKey
+            }
+            # Save link to table
+            Add-CIPPAzDataTableEntity @Table -Entity $DeltaQuery -Force
 
-        Write-Information "Delta Query completed for $Resource. Total items: $($allResults.Count)"
+            Write-Information "Delta Query created for $($DeltaQuery.Resource). Total items: $($allResults.Count)"
 
-        # Always return full response with deltaLink
-        return $result
-    } catch {
-        Write-Error "Failed to create Delta Query: $(Get-NormalizedError -Message $_.Exception.message)"
-        Write-Warning $_.InvocationInfo.PositionMessage
+            # Always return full response with deltaLink
+            return $result
+        } catch {
+            Write-Error "Failed to create Delta Query: $(Get-NormalizedError -Message $_.Exception.message)"
+            Write-Warning $_.InvocationInfo.PositionMessage
+        }
     }
 }

Modules/CIPPCore/Public/DeltaQueries/Push-GraphDeltaQuery.ps1

@@ -0,0 +1,19 @@
+function Push-GraphDeltaQuery {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    #>
+    [CmdletBinding()]
+    param (
+        $Item
+    )
+
+    $Item = $Item | Select-Object -ExcludeProperty FunctionName | ConvertTo-Json -Depth 5 | ConvertFrom-Json -AsHashtable
+    try {
+        New-GraphDeltaQuery @Item
+    } catch {
+        Write-Error "Failed to create Delta Query: $(Get-NormalizedError -Message $_.Exception.message)"
+        Write-Warning $_.InvocationInfo.PositionMessage
+    }
+
+}