AzureRestHelper.psm1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
function Invoke-ArhRestMethod
{
    [CmdletBinding()]
    param
    (
        #Headers
        [Parameter()]
        [ValidateNotNullOrEmpty()]
        $Headers,

        #Method
        [Parameter(Mandatory = $true)]
        [ValidateNotNullOrEmpty()]
        [string]$Method,

        #Uri
        [Parameter(Mandatory = $true)]
        [ValidateNotNullOrEmpty()]
        [string]$Uri,

        #Body
        [Parameter(Mandatory = $false)]
        [object]$Body,

        #FollowNextLink
        [Parameter(Mandatory = $false)]
        [switch]$FollowNextLink,

        #NextLinkPropertyName
        [Parameter(Mandatory = $false)]
        [string]$NextLinkPropertyName = 'nextLink',

        #NextLinkTokenName
        [Parameter(Mandatory = $false)]
        [string]$NextLinkTokenName
    )

    process
    {
        $InvokeRestMethod_Params = @{
            Method          = $Method
            Headers         = $Headers
            Uri             = $Uri
            UseBasicParsing = $true
        }
        if ($PSBoundParameters.ContainsKey('Body'))
        {
            $InvokeRestMethod_Params.Add('Body', $Body)
        }
        $restResult = Invoke-RestMethod @InvokeRestMethod_Params -ErrorAction Stop
        $restResult

        if ($FollowNextLink.IsPresent)
        {
            while ($restResult.psobject.properties.Name -contains $NextLinkPropertyName -and (-not [string]::IsNullOrEmpty($restResult."$NextLinkPropertyName")))
            {
                remove-variable -Name InvokeRestMethod_Params -ErrorAction SilentlyContinue
                $InvokeRestMethod_Params = @{
                    Method          = $Method
                    Headers         = $Headers
                    UseBasicParsing = $true
                }
                if ($PSBoundParameters.ContainsKey('NextLinkTokenName'))
                {
                
                    $UriBuilder = [System.UriBuilder]::new($Uri)
                    $QueryStringBuilder = [System.Web.HttpUtility]::ParseQueryString($UriBuilder.Query)
                    $NextLinkTokenValue = $restResult."$NextLinkPropertyName".Substring($restResult."$NextLinkPropertyName".IndexOf($NextLinkTokenName) + $NextLinkTokenName.Length + 1)
                    $QueryStringBuilder.Add($NextLinkTokenName, $NextLinkTokenValue)
                    $UriBuilder.Query = $QueryStringBuilder.ToString()
                    $InvokeRestMethod_Params.Add('Uri', $UriBuilder.ToString()) 
                }
                elseif ($Method -eq 'Post')
                {
                    $InvokeRestMethod_Params.Add('Body', ($restResult."$NextLinkPropertyName" | ConvertTo-Json -Compress))
                    $InvokeRestMethod_Params.Add('Uri', $Uri) 
                }
                else
                {
                    $InvokeRestMethod_Params.Add('Uri', $restResult."$NextLinkPropertyName") 
                }
                $restResult = Invoke-RestMethod @InvokeRestMethod_Params -ErrorAction Stop 
                $restResult
            }
        }
    }
}

function Get-ArhAuthorizationHeader
{
    [CmdletBinding()]
    param
    (
        #TenantId
        [Parameter(Mandatory = $true)]
        [string]$TenantId,

        #AccountId
        [Parameter(Mandatory = $true)]
        [string]$AccountId,

        #Resource
        [Parameter(Mandatory = $false)]
        [string]$Resource = 'https://management.core.windows.net/'
    )

    process
    {
        $azProfile = [Microsoft.Azure.Commands.Common.Authentication.Abstractions.AzureRmProfileProvider]::Instance.Profile
        $SelectedTenantContext = $azProfile.Contexts.Values | Where-Object {($_.Tenant.Id -eq $TenantId) -and ($_.Account.Id -eq $AccountId)}
        if (-not $SelectedTenantContext)
        {
            Write-Error "Account: $AccountId is not authenticated against Tenant: $TenantId"
        }

        $UserId = [Microsoft.IdentityModel.Clients.ActiveDirectory.UserIdentifier]::new($AccountId, [Microsoft.IdentityModel.Clients.ActiveDirectory.UserIdentifierType]::RequiredDisplayableId)
        $context = [Microsoft.IdentityModel.Clients.ActiveDirectory.AuthenticationContext]::new("https://login.microsoftonline.com/$TenantId", $SelectedTenantContext[0].TokenCache)
        $TokenResult = $context.AcquireTokenSilent($Resource, [Microsoft.Azure.Commands.Common.Authentication.AdalConfiguration]::PowerShellClientId, $UserId)
        $TokenResult.CreateAuthorizationHeader()
    }
}