Cleanup and bugfixes

Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Applications/Push-UploadApplication.ps1

@@ -100,7 +100,7 @@ function Push-UploadApplication {
                 #For anyone that reads this, The maximum chunk size is 100MB for blob storage, so we can upload it as one part and just give it the single ID. Easy :)
                 $Upload = Invoke-RestMethod -Uri "$($AzFileUri.azureStorageUri)&comp=block&blockid=$id" -Method Put -Headers @{'x-ms-blob-type' = 'BlockBlob' } -InFile $inFile -ContentType 'application/octet-stream'
                 Write-Host "Upload data: $($Upload | ConvertTo-Json -Depth 10)"
-                $ConfirmUpload = Invoke-RestMethod -Uri "$($AzFileUri.azureStorageUri)&comp=blocklist" -Method Put -Body "<?xml version=`"1.0`" encoding=`"utf-8`"?><BlockList><Latest>$id</Latest></BlockList>"
+                $ConfirmUpload = Invoke-RestMethod -Uri "$($AzFileUri.azureStorageUri)&comp=blocklist" -Method Put -Body "<?xml version=`"1.0`" encoding=`"utf-8`"?><BlockList><Latest>$id</Latest></BlockList>" -ContentType 'application/xml'
                 Write-Host "Confirm Upload data: $($ConfirmUpload | ConvertTo-Json -Depth 10)"
                 $CommitReq = New-graphPostRequest -Uri "$($BaseURI)/$($NewApp.id)/microsoft.graph.win32lobapp/contentVersions/1/files/$($ContentReq.id)/commit" -Body $EncBody -Type POST -tenantid $tenant
                 Write-Host "Commit Request: $($CommitReq | ConvertTo-Json -Depth 10)"

ExecAlertsListAllTenants/run.ps1 → Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-ExecAlertsListAllTenants.ps1

@@ -1,12 +1,12 @@
-# Input bindings are passed in via param block.
-param( $QueueItem, $TriggerMetadata)
+function Push-ExecAlertsListAllTenants {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    #>
+    [CmdletBinding()]
+    param($Item)
 
-# Write out the queue message and metadata to the information log.
-Write-Host "PowerShell queue trigger function processed work item: $QueueItem"
-
-Get-Tenants | ForEach-Object -Parallel {
-    $domainName = $_.defaultDomainName
-    Import-Module CIPPCore
+    $domainName = $Item.defaultDomainName
     $Table = Get-CIPPTable -TableName 'cachealertsandincidents'
 
     try {
@@ -21,7 +21,6 @@ Get-Tenants | ForEach-Object -Parallel {
                 PartitionKey = 'alert'
             }
             Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null
-
         }
 
     } catch {
@@ -46,7 +45,5 @@ Get-Tenants | ForEach-Object -Parallel {
             Tenant       = $domainName
         }
         Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null
-
-
     }
 }

ExecIncidentsListAllTenants/run.ps1 → Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-ExecIncidentsListAllTenants.ps1

@@ -1,12 +1,13 @@
-# Input bindings are passed in via param block.
-param( $QueueItem, $TriggerMetadata)
+function Push-ExecIncidentsListAllTenants {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    #>
+    param(
+        $Item
+    )
 
-# Write out the queue message and metadata to the information log.
-Write-Host "PowerShell queue trigger function processed work item: $QueueItem"
-
-Get-Tenants | ForEach-Object -Parallel {
-    $domainName = $_.defaultDomainName
-    Import-Module CIPPCore
+    $domainName = $Item.defaultDomainName
     $Table = Get-CIPPTable -TableName 'cachealertsandincidents'
 
     try {
@@ -43,7 +44,6 @@ Get-Tenants | ForEach-Object -Parallel {
             Tenant       = [string]$domainName
         }
         Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null
-
-
     }
 }
+

Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-ExecOffboardingMailboxPermissions.ps1

@@ -0,0 +1,13 @@
+function Push-ExecOffboardingMailboxPermissions {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    #>
+    param(
+        $Item
+    )
+    $Mailboxes = New-ExoRequest -tenantid $Item.TenantFilter -cmdlet 'get-mailbox' -Select UserPrincipalName
+    foreach ($Mailbox in $Mailboxes) {
+        Remove-CIPPMailboxPermissions -PermissionsLevel @('FullAccess', 'SendAs', 'SendOnBehalf') -userid $Mailbox.UserPrincipalName -AccessUser $Item.User -TenantFilter $Item.TenantFilter -APIName $APINAME -ExecutingUser $Item.executingUser
+    }
+}

Modules/CIPPCore/Public/Entrypoints/Activity Triggers/Push-ListBasicAuthAllTenants.ps1

@@ -0,0 +1,37 @@
+Function Push-ListBasicAuthAllTenants {
+    <#
+    .FUNCTIONALITY
+        Entrypoint
+    #>
+    [CmdletBinding()]
+    param($Item)
+
+    $domainName = $Item.defaultDomainName
+
+    $currentTime = Get-Date -Format 'yyyy-MM-ddTHH:MM:ss'
+    $ts = (Get-Date).AddDays(-30)
+    $endTime = $ts.ToString('yyyy-MM-ddTHH:MM:ss')
+    $filters = "createdDateTime ge $($endTime)Z and createdDateTime lt $($currentTime)Z and (clientAppUsed eq 'AutoDiscover' or clientAppUsed eq 'Exchange ActiveSync' or clientAppUsed eq 'Exchange Online PowerShell' or clientAppUsed eq 'Exchange Web Services' or clientAppUsed eq 'IMAP4' or clientAppUsed eq 'MAPI Over HTTP' or clientAppUsed eq 'Offline Address Book' or clientAppUsed eq 'Outlook Anywhere (RPC over HTTP)' or clientAppUsed eq 'Other clients' or clientAppUsed eq 'POP3' or clientAppUsed eq 'Reporting Web Services' or clientAppUsed eq 'Authenticated SMTP' or clientAppUsed eq 'Outlook Service')"
+    try {
+        $GraphRequest = New-GraphGetRequest -uri "https://graph.microsoft.com/beta/auditLogs/signIns?api-version=beta&filter=$($filters)" -tenantid $domainName -ErrorAction stop | Sort-Object -Unique -Property clientAppUsed | ForEach-Object {
+            @{
+                Tenant            = $domainName
+                clientAppUsed     = $_.clientAppUsed
+                userPrincipalName = $_.UserPrincipalName
+                RowKey            = "$($_.UserPrincipalName)-$($_.clientAppUsed)"
+                PartitionKey      = 'basicauth'
+            }
+        }
+    } catch {
+        $GraphRequest = @{
+            Tenant            = $domainName
+            clientAppUsed     = "Could not connect to Tenant: $($_.Exception.message)"
+            userPrincipalName = $domainName
+            RowKey            = $domainName
+            PartitionKey      = 'basicauth'
+        }
+    }
+    $Table = Get-CIPPTable -TableName cachebasicauth
+    Add-CIPPAzDataTableEntity @Table -Entity $GraphRequest -Force | Out-Null
+
+}

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/CIPP/Extensions/Invoke-ExecExtensionSync.ps1

@@ -19,12 +19,19 @@ Function Invoke-ExecExtensionSync {
                 Write-LogMessage -API 'Scheduler_Billing' -tenant 'none' -message 'Starting billing processing.' -sev Info
                 $Table = Get-CIPPTable -TableName Extensionsconfig
                 $Configuration = (Get-CIPPAzDataTableEntity @Table).config | ConvertFrom-Json -Depth 10
+
                 foreach ($ConfigItem in $Configuration.psobject.properties.name) {
                     switch ($ConfigItem) {
                         'Gradient' {
                             If ($Configuration.Gradient.enabled -and $Configuration.Gradient.BillingEnabled) {
-                                Push-OutputBinding -Name gradientqueue -Value 'LetsGo'
-                                $Results = [pscustomobject]@{'Results' = 'Successfully started Gradient Sync' }
+                                $ProcessorQueue = Get-CIPPTable -TableName 'ProcessorQueue'
+                                $ProcessorFunction = [PSCustomObject]@{
+                                    PartitionKey = 'Function'
+                                    RowKey       = 'New-GradientServiceSyncRun'
+                                    FunctionName = 'New-GradientServiceSyncRun'
+                                }
+                                Add-AzDataTableEntity @ProcessorQueue -Entity $ProcessorFunction -Force
+                                $Results = [pscustomobject]@{'Results' = 'Successfully queued Gradient Sync' }
                             }
                         }
                     }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Identity/Administration/Users/Invoke-ListUsers.ps1

@@ -35,11 +35,8 @@ Function Invoke-ListUsers {
         $Table = Get-CIPPTable -TableName 'cacheusers'
         $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1)
         if (!$Rows) {
-            $Queue = New-CippQueueEntry -Name 'Users' -Link '/identity/administration/users?customerId=AllTenants'
-            Push-OutputBinding -Name listusers -Value "users/$($userid)?`$top=999&`$select=$($selectlist -join ',')&`$filter=$GraphFilter&`$count=true"
             [PSCustomObject]@{
-                Tenant  = 'Loading data for all tenants. Please check back after the job completes'
-                QueueId = $Queue.RowKey
+                Message = 'This function has been deprecated for all users, please use ListGraphRequest instead'
             }
         } else {
             $Rows.Data | ConvertFrom-Json | Select-Object $selectlist | ForEach-Object {

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Identity/Reports/Invoke-ListBasicAuth.ps1

@@ -45,7 +45,22 @@ Function Invoke-ListBasicAuth {
         $Table = Get-CIPPTable -TableName cachebasicauth
         $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1)
         if (!$Rows) {
-            Push-OutputBinding -Name Msg -Value (Get-Date).ToString()
+            $TenantList = Get-Tenants -IncludeErrors
+            $Queue = New-CippQueueEntry -Name 'Basic Auth - All Tenants' -TotalTasks ($TenantList | Measure-Object).Count
+            $InputObject = [PSCustomObject]@{
+                OrchestratorName = 'BasicAuthOrchestrator'
+                QueueFunction    = @{
+                    FunctionName    = 'GetTenants'
+                    TenantParams    = @{
+                        IncludeErrors = $true
+                    }
+                    QueueId         = $Queue.RowKey
+                    DurableFunction = 'ListBasicAuthAllTenants'
+                }
+                SkipLog          = $true
+            }
+            Start-NewOrchestration -FunctionName 'CIPPOrchestrator' -InputObject ($InputObject | ConvertTo-Json -Depth 5 -Compress)
+
             $GraphRequest = [PSCustomObject]@{
                 Tenant = 'Loading data for all tenants. Please check back in 10 minutes'
             }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Security/Invoke-ExecAlertsList.ps1

@@ -60,7 +60,22 @@ Function Invoke-ExecAlertsList {
             $Filter = "PartitionKey eq 'alert'"
             $Rows = Get-CIPPAzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10)
             if (!$Rows) {
-                Push-OutputBinding -Name alertqueue -Value (Get-Date).ToString()
+                $TenantList = Get-Tenants -IncludeErrors
+                $Queue = New-CippQueueEntry -Name 'Alerts List' -TotalTasks ($TenantList | Measure-Object).Count
+                $InputObject = [PSCustomObject]@{
+                    OrchestratorName = 'AlertsList'
+                    QueueFunction    = [PSCustomObject]@{
+                        FunctionName = 'GetTenants'
+                        QueueId      = $Queue.RowKey
+                        TenantParams = @{
+                            IncludeErrors = $true
+                        }
+                        DurableName  = 'ExecAlertsAllTenants'
+                    }
+                    SkipLog          = $true
+                } | ConvertTo-Json -Depth 10
+                Start-NewOrchestration -FunctionName CIPPOrchestrator -InputObject $InputObject
+
                 [PSCustomObject]@{
                     Waiting = $true
                 }

Modules/CIPPCore/Public/Entrypoints/HTTP Functions/Security/Invoke-ExecIncidentsList.ps1

@@ -41,7 +41,21 @@ Function Invoke-ExecIncidentsList {
             $Filter = "PartitionKey eq 'Incident'"
             $Rows = Get-CIPPAzDataTableEntity @Table -filter $Filter | Where-Object -Property Timestamp -GT (Get-Date).AddMinutes(-10)
             if (!$Rows) {
-                Push-OutputBinding -Name incidentqueue -Value (Get-Date).ToString()
+                $TenantList = Get-Tenants -IncludeErrors
+                $Queue = New-CippQueueEntry -Name 'Incidents - All Tenants' -Link '/security/reports/incident-report?customerId=AllTenants' -TotalTasks ($TenantList | Measure-Object).Count
+                $InputObject = [PSCustomObject]@{
+                    OrchestratorName = 'IncidentOrchestrator'
+                    QueueFunction    = @{
+                        FunctionName    = 'GetTenants'
+                        TenantParams    = @{
+                            IncludeErrors = $true
+                        }
+                        QueueId         = $Queue.RowKey
+                        DurableFunction = 'ExecIncidentListAllTenants'
+                    }
+                    SkipLog          = $true
+                }
+                Start-NewOrchestration -FunctionName 'CIPPOrchestrator' -InputObject ($InputObject | ConvertTo-Json -Depth 5 -Compress)
                 [PSCustomObject]@{
                     Waiting = $true
                 }

Modules/CIPPCore/Public/Entrypoints/Invoke-ListLicenses.ps1

@@ -29,7 +29,6 @@ Function Invoke-ListLicenses {
         $Table = Get-CIPPTable -TableName cachelicenses
         $Rows = Get-CIPPAzDataTableEntity @Table | Where-Object -Property Timestamp -GT (Get-Date).AddHours(-1)
         if (!$Rows) {
-            #Push-OutputBinding -Name LicenseQueue -Value (Get-Date).ToString()
             $GraphRequest = [PSCustomObject]@{
                 Tenant  = 'Loading data for all tenants. Please check back in 1 minute'
                 License = 'Loading data for all tenants. Please check back in 1 minute'

Modules/CIPPCore/Public/Entrypoints/Invoke-ListMFAUsers.ps1

@@ -27,7 +27,6 @@ Function Invoke-ListMFAUsers {
             $TenantList = Get-Tenants -IncludeErrors
             $Queue = New-CippQueueEntry -Name 'MFA Users - All Tenants' -Link '/identity/reports/mfa-report?customerId=AllTenants' -TotalTasks ($TenantList | Measure-Object).Count
             Write-Information ($Queue | ConvertTo-Json)
-            #Push-OutputBinding -Name mfaqueue -Value $Queue.RowKey
             $GraphRequest = [PSCustomObject]@{
                 UPN = 'Loading data for all tenants. Please check back in a few minutes'
             }