Skip to content

Commit d546b7f

Browse files
KelvinTegelaarKelvinTegelaar
committed
Merge branch 'dev' of https://github.com/KelvinTegelaar/CIPP-API into dev
2 parents 41700ef + 44136c3 commit d546b7f

File tree

2 files changed

+15
-12
lines changed

2 files changed

+15
-12
lines changed

EditGroup/run.ps1

Lines changed: 13 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ if ($AddMembers) {
2727
else {
2828
New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)" -tenantid $Userobj.tenantid -type patch -body $addmemberbody -Verbose
2929
}
30-
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added member to $($userobj.displayname) group" -Sev "Info"
30+
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupid) group" -Sev "Info"
3131
$body = $results.add("Success. $member has been added")
3232
}
3333
catch {
@@ -45,32 +45,35 @@ if ($AddContacts) {
4545
if ($userobj.groupType -eq "Distribution list" -or $userobj.groupType -eq "Mail-Enabled Security") {
4646
$Params = @{ Identity = $userobj.groupid; Member = $member; BypassSecurityGroupManagerCheck = $true }
4747
New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Add-DistributionGroupMember" -cmdParams $params -UseSystemMailbox $true
48-
}
49-
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added member to $($userobj.displayname) group" -Sev "Info"
50-
$body = $results.add("Success. $member has been added")
48+
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added $member to $($userobj.groupid) group" -Sev "Info"
49+
$body = $results.add("Success. $member has been added")
50+
} else {
51+
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "You cannot add a contact to a security group" -Sev "Error"
52+
$body = $results.add("You cannot add a contact to a security group")
5153
}
54+
}
5255
catch {
5356
$body = $results.add("Failed to add member $member to $($userobj.Groupid): $($_.Exception.Message)")
5457
}
5558
}
5659

5760
}
5861

59-
6062
$RemoveMembers = ($userobj.Removemember).value
6163
try {
6264
if ($RemoveMembers) {
6365
$RemoveMembers | ForEach-Object {
64-
$MemberInfo = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid)
66+
$member = $_
6567
if ($userobj.groupType -eq "Distribution list" -or $userobj.groupType -eq "Mail-Enabled Security") {
66-
$Params = @{ Identity = $userobj.groupid; Member = $_ ; BypassSecurityGroupManagerCheck = $true }
68+
$Params = @{ Identity = $userobj.groupid; Member = $member ; BypassSecurityGroupManagerCheck = $true }
6769
New-ExoRequest -tenantid $Userobj.tenantid -cmdlet "Remove-DistributionGroupMember" -cmdParams $params -UseSystemMailbox $true
6870
}
6971
else {
72+
$MemberInfo = (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid)
7073
New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)/members/$($MemberInfo.id)/`$ref" -tenantid $Userobj.tenantid -type DELETE
7174
}
72-
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Removed $($MemberInfo.UserPrincipalname) from $($userobj.displayname) group" -Sev "Info"
73-
$body = $results.add("Success. Member $_ has been removed from $($userobj.Groupid)")
75+
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Removed $member from $($userobj.groupid) group" -Sev "Info"
76+
$body = $results.add("Success. Member $member has been removed")
7477
}
7578
}
7679
}
@@ -87,7 +90,7 @@ try {
8790
$ID = "https://graph.microsoft.com/beta/users/" + (New-GraphGetRequest -uri "https://graph.microsoft.com/beta/users/$($_)" -tenantid $Userobj.tenantid).id
8891
Write-Host $ID
8992
$AddOwner = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/groups/$($userobj.groupid)/owners/`$ref" -tenantid $Userobj.tenantid -type POST -body ('{"@odata.id": "' + $ID + '"}')
90-
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added owner $_ to $($userobj.displayname) group" -Sev "Info"
93+
Write-LogMessage -API $APINAME -tenant $Userobj.tenantid -user $request.headers.'x-ms-client-principal' -message "Added owner $_ to $($userobj.groupid) group" -Sev "Info"
9194
$body = $results.add("Success. $_ has been added")
9295
}
9396
catch {

ExecOffboardUser/run.ps1

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -46,7 +46,7 @@ try {
4646
try {
4747
$GraphRequest = New-GraphPostRequest -uri "https://graph.microsoft.com/beta/users/$($userid)/invalidateAllRefreshTokens" -tenantid $TenantFilter -type POST -body '{}' -verbose
4848
"Success. All sessions by $username have been revoked"
49-
Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Revoked sessions for $($username)" -Sev "Info"
49+
Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Revoked sessions for $($username)" -Sev "Info" -tenant $TenantFilter
5050

5151
}
5252
catch {
@@ -88,7 +88,7 @@ try {
8888
catch {
8989
Write-LogMessage -user $request.headers.'x-ms-client-principal' -API $APINAME -message "Could not remove $($username) from group $group" -Sev "Error" -tenant $TenantFilter
9090

91-
"Could not remove user from group $($Groupname): $($_.Exception.Message). This is likely because its a Dynamic Group"
91+
"Could not remove user from group $($Groupname): $($_.Exception.Message). This is likely because its a Dynamic Group or synched with active directory"
9292
}
9393

9494
}

0 commit comments

Comments
 (0)