Private/RESTHelpers.ps1
|
<#
SAMPLE CODE NOTICE THIS SAMPLE CODE IS MADE AVAILABLE AS IS. MICROSOFT MAKES NO WARRANTIES, WHETHER EXPRESS OR IMPLIED, OF FITNESS FOR A PARTICULAR PURPOSE, OF ACCURACY OR COMPLETENESS OF RESPONSES, OF RESULTS, OR CONDITIONS OF MERCHANTABILITY. THE ENTIRE RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS SAMPLE CODE REMAINS WITH THE USER. NO TECHNICAL SUPPORT IS PROVIDED. YOU MAY NOT DISTRIBUTE THIS CODE UNLESS YOU HAVE A LICENSE AGREEMENT WITH MICROSOFT THAT ALLOWS YOU TO DO SO. #> <# .SYNOPSIS Import this module to get functions to help handling REST calls. .DESCRIPTION This script can be imported to enable cmdlets to deal with HTTP connection and JSON messages. .NOTES Copyright © 2025 Microsoft. All rights reserved. #> <# .SYNOPSIS Create new HttpRequestMessage object and set Json content and authorization header #> function New-JsonRequestMessage { param( [Parameter(Mandatory=$true)] [string] $Uri, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) Write-Verbose "Creating request for URI: $Uri" $request = New-Object -TypeName System.Net.Http.HttpRequestMessage -ArgumentList @($HttpMethod, $Uri) if ($Content) { $request.Content = New-Object -TypeName System.Net.Http.StringContent -ArgumentList @($Content, [System.Text.Encoding]::UTF8, "application/json") } $request.Headers.Authorization = "Bearer $(ConvertFrom-SecureStringInternal $AccessToken)" return $request } function New-EnvironmentRouteRequest { param( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-EnvironmentRouteHostName -Endpoint $Endpoint -EnvironmentId $EnvironmentId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = "primary-$hostName" $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod $request.Headers.Host = $hostName return $request } function New-HomeTenantRouteRequest { param( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-TenantRouteHostName -Endpoint $Endpoint -TenantId $TenantId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = $hostName $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod $request.Headers.Host = $hostName return $request } <# .SYNOPSIS Gets a singleton HttpClient object or creates a new one and clears Default Request Headers #> function Get-HttpClient { if($null -eq $script:httpClient) { [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.SecurityProtocolType]::Tls13 -bor [System.Net.SecurityProtocolType]::Tls12 $script:httpClient = New-Object -TypeName System.Net.Http.HttpClient $script:httpClient.DefaultRequestHeaders.Clear() $moduleName = "Microsoft.PowerPlatform.EnterprisePolicies" $moduleVersion = Get-ModuleVersion $osPlatform = [System.Environment]::OSVersion.Platform $script:httpClient.DefaultRequestHeaders.UserAgent.Add([System.Net.Http.Headers.ProductInfoHeaderValue]::new($moduleName, $moduleVersion)) $script:httpClient.DefaultRequestHeaders.Add("x-ms-useragent", "$moduleName/$moduleVersion ($osPlatform)") } return $script:httpClient } <# .SYNOPSIS Given an async Task, await and return its result #> function Get-AsyncResult { param( [Parameter(Mandatory=$true)] $task ) try { $result = $task.GetAwaiter().GetResult() } catch { if ($_.Exception.InnerException) { # Two levels into inner exceptions have network connection problem messages if ($_.Exception.InnerException.InnerException) { throw $_.Exception.InnerException.InnerException.Message } else { throw $_.Exception.InnerException.Message } } else { throw $_.Exception.Message } } return $result } function Get-EnvironmentRouteHostName { param ( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $EnvironmentId = $EnvironmentId.Replace("-", "") if($Endpoint -eq [BAPEndpoint]::tip1 -or $Endpoint -eq [BAPEndpoint]::tip2 -or $Endpoint -eq [BAPEndpoint]::usgovhigh) { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 1, 1) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 1) } else { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 2, 2) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 2) } return "$remainingEnvId.$shortEnvId.environment.$baseUri" } function Get-TenantRouteHostName { param ( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $TenantId = $TenantId.Replace("-", "") if($Endpoint -eq [BAPEndpoint]::tip1 -or $Endpoint -eq [BAPEndpoint]::tip2 -or $Endpoint -eq [BAPEndpoint]::usgovhigh) { $shortTenantId = $TenantId.Substring($TenantId.Length - 1, 1) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 1) } else { $shortTenantId = $TenantId.Substring($TenantId.Length - 2, 2) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 2) } return "il-$remainingTenantId.$shortTenantId.tenant.$baseUri" } function Get-BAPEndpointUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://tip1.api.bap.microsoft.com/" } ([BAPEndpoint]::tip2) { return "https://tip2.api.bap.microsoft.com/" } ([BAPEndpoint]::prod) { return "https://api.bap.microsoft.com/" } ([BAPEndpoint]::usgovhigh) { return "https://high.api.bap.microsoft.us/" } ([BAPEndpoint]::dod) { return "https://api.bap.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://api.bap.partner.microsoftonline.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Get-BAPResourceUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://service.powerapps.com/" } ([BAPEndpoint]::tip2) { return "https://service.powerapps.com/" } ([BAPEndpoint]::prod) { return "https://service.powerapps.com/" } ([BAPEndpoint]::usgovhigh) { return "https://high.service.powerapps.us/" } ([BAPEndpoint]::dod) { return "https://service.apps.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://service.powerapps.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Get-APIResourceUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://api.preprod.powerplatform.com/" } ([BAPEndpoint]::tip2) { return "https://api.test.powerplatform.com/" } ([BAPEndpoint]::prod) { return "https://api.powerplatform.com/" } ([BAPEndpoint]::usgovhigh) { return "https://api.high.powerplatform.microsoft.us/" } ([BAPEndpoint]::dod) { return "https://api.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://api.powerplatform.partner.microsoftonline.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Send-RequestWithRetries { param ( [Parameter(Mandatory)] [int] $MaxRetries, [Parameter(Mandatory)] [int] $DelaySeconds, [Parameter(Mandatory)] [scriptblock] $RequestFactory ) $client = Get-HttpClient $attempt = 0 $retryAfterFound = $false while ($attempt -lt $MaxRetries) { try { $sleepSeconds = $DelaySeconds $result = Get-AsyncResult -Task $client.SendAsync((& $RequestFactory)) if(Test-Result -Result $result) { return $result } # Check for 503 Service Unavailable or 429 Too Many Requests with Retry-After header if ($result.StatusCode -eq 503 -or $result.StatusCode -eq 429) { if ($result.Headers.Contains("Retry-After")) { $retryAfterFound = $true $retryAfterValue = $result.Headers.GetValues("Retry-After") | Select-Object -First 1 # Retry-After can be either seconds (integer) or HTTP date if ($retryAfterValue -match '^\d+$') { $sleepSeconds = [int]$retryAfterValue } else { try { $retryAfterDate = [DateTime]::Parse($retryAfterValue) if ($retryAfterDate.Kind -ne [System.DateTimeKind]::Utc) { $retryAfterDate = $retryAfterDate.ToUniversalTime() } $sleepSeconds = [Math]::Max(1, [int]($retryAfterDate - [DateTime]::UtcNow).TotalSeconds) } catch { Write-Verbose "Could not parse Retry-After header value: $retryAfterValue. Using default delay." $sleepSeconds = $DelaySeconds } } Write-Host "The service is working on the request and has requested a retry. Waiting for $sleepSeconds seconds as indicated by the Retry-After header..." -ForegroundColor Yellow } } elseif($result.StatusCode -eq 502 -and $retryAfterFound) { # If we previously saw a Retry-After header, extend the wait time as the gateway might not have the route configured yet. $sleepSeconds = 60 Write-Host "The gateway has not updated the route information yet. Waiting for $sleepSeconds seconds before retrying..." -ForegroundColor Yellow } $attempt++ } catch { $attempt++ Write-Verbose "Exception on attempt $attempt : $($_.Exception.Message)" if($attempt -ge $MaxRetries) { throw "Request failed after $MaxRetries attempts. Last error: $($_.Exception.Message)" } } if ($attempt -ge $MaxRetries) { Write-Host "Request failed after $MaxRetries attempts." -ForegroundColor Red Assert-Result -Result $result } Write-Verbose "Request failed on attempt $attempt. Retrying in $sleepSeconds seconds..." Start-Sleep -Seconds $sleepSeconds } } function Test-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } } return $true } function Assert-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } } } function ConvertFrom-JsonToClass { param ( [string]$Json, [Type]$ClassType ) $data = $Json | ConvertFrom-Json # Handle array types directly if ($ClassType.IsArray) { $elementType = $ClassType.GetElementType() $itemList = @() foreach ($item in $data) { $itemJson = $item | ConvertTo-Json -Depth 10 $itemList += ConvertFrom-JsonToClass -Json $itemJson -ClassType $elementType } return ,$itemList } # Handle primitive types and strings if ($ClassType.IsPrimitive -or $ClassType -eq [string]) { return ($data -as $ClassType) } # Handle common value types explicitly if ($ClassType -eq [DateTime]) { return [DateTime]::Parse($data) } if ($ClassType.FullName -eq 'System.Guid') { return [Guid]::Parse($data) } if ($ClassType.FullName -eq 'System.Decimal') { return [Decimal]::Parse($data) } if ($null -eq $data) { return $null } # Handle complex types $instance = [Activator]::CreateInstance($ClassType) foreach ($property in $ClassType.GetProperties()) { $name = $property.Name $type = Get-UnderlyingType $property.PropertyType if ($data.PSObject.Properties -and $data.PSObject.Properties[$name]) { if ($type -eq [hashtable] -or $type.FullName -eq 'System.Collections.Hashtable') { $instance.$name = ConvertTo-Hashtable $data.$name } elseif ($type.IsClass -and $type -ne [string]) { $nestedJson = $data.$name | ConvertTo-Json -Depth 10 $instance.$name = ConvertFrom-JsonToClass -Json $nestedJson -ClassType $type } elseif ($type.IsEnum){ $instance.$name = [System.Enum]::Parse($type, $data.$name) } else { $instance.$name = $data.$name } } } return $instance } function Get-UnderlyingType([type]$t) { if ($t.IsGenericType -and $t.GetGenericTypeDefinition().FullName -eq 'System.Nullable`1') { return $t.GetGenericArguments()[0] } return $t } function ConvertTo-Hashtable($obj) { if ($obj -is [hashtable]) { return $obj } $hash = @{} foreach ($property in $obj.PSObject.Properties) { $hash[$property.Name] = $property.Value } return $hash } # SIG # Begin signature block # MIIoKgYJKoZIhvcNAQcCoIIoGzCCKBcCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCD6jk2wZcGB1wPB # JYVU+WY5odgrpARCGU35Imehj0lRN6CCDXYwggX0MIID3KADAgECAhMzAAAEhV6Z # 7A5ZL83XAAAAAASFMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjUwNjE5MTgyMTM3WhcNMjYwNjE3MTgyMTM3WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDASkh1cpvuUqfbqxele7LCSHEamVNBfFE4uY1FkGsAdUF/vnjpE1dnAD9vMOqy # 5ZO49ILhP4jiP/P2Pn9ao+5TDtKmcQ+pZdzbG7t43yRXJC3nXvTGQroodPi9USQi # 9rI+0gwuXRKBII7L+k3kMkKLmFrsWUjzgXVCLYa6ZH7BCALAcJWZTwWPoiT4HpqQ # hJcYLB7pfetAVCeBEVZD8itKQ6QA5/LQR+9X6dlSj4Vxta4JnpxvgSrkjXCz+tlJ # 67ABZ551lw23RWU1uyfgCfEFhBfiyPR2WSjskPl9ap6qrf8fNQ1sGYun2p4JdXxe # UAKf1hVa/3TQXjvPTiRXCnJPAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUuCZyGiCuLYE0aU7j5TFqY05kko0w # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwNTM1OTAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBACjmqAp2Ci4sTHZci+qk # tEAKsFk5HNVGKyWR2rFGXsd7cggZ04H5U4SV0fAL6fOE9dLvt4I7HBHLhpGdE5Uj # Ly4NxLTG2bDAkeAVmxmd2uKWVGKym1aarDxXfv3GCN4mRX+Pn4c+py3S/6Kkt5eS # DAIIsrzKw3Kh2SW1hCwXX/k1v4b+NH1Fjl+i/xPJspXCFuZB4aC5FLT5fgbRKqns # WeAdn8DsrYQhT3QXLt6Nv3/dMzv7G/Cdpbdcoul8FYl+t3dmXM+SIClC3l2ae0wO # lNrQ42yQEycuPU5OoqLT85jsZ7+4CaScfFINlO7l7Y7r/xauqHbSPQ1r3oIC+e71 # 5s2G3ClZa3y99aYx2lnXYe1srcrIx8NAXTViiypXVn9ZGmEkfNcfDiqGQwkml5z9 # nm3pWiBZ69adaBBbAFEjyJG4y0a76bel/4sDCVvaZzLM3TFbxVO9BQrjZRtbJZbk # C3XArpLqZSfx53SuYdddxPX8pvcqFuEu8wcUeD05t9xNbJ4TtdAECJlEi0vvBxlm # M5tzFXy2qZeqPMXHSQYqPgZ9jvScZ6NwznFD0+33kbzyhOSz/WuGbAu4cHZG8gKn # lQVT4uA2Diex9DMs2WHiokNknYlLoUeWXW1QrJLpqO82TLyKTbBM/oZHAdIc0kzo # STro9b3+vjn2809D0+SOOCVZMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGgowghoGAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAASFXpnsDlkvzdcAAAAABIUwDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIGwD8icmptX/Kkz/iLp/1CsM # 9njdBRn0T5Vu9kfqFX5/MEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAo+riZn/h/yEcfPYb4C9oalPZ8EzVTXBTEd4RWB6CndjPW+wDZ5nRFgPP # uXc8JG/je8p2tmOlbdz34iRuVTWJUixT6Q8PO4Kk806gTp36RbhhL4k3JaLeG6Zy # +W/EwObPLV7uli8NGjQjJljP/i0DLWqQN6rR7xD+Vx6ja8dIsggsh80c0ZnYdckK # SgHiy4UtpBfrWjoAhIsA8vbHBGcKi82rcIPuOs0K5FIv8zgIUUrsoVhpd3qno9Ef # 6ZKqwJzI++5+dh09K+U8v2zsOUMeD3CO+i5hi+nF0Yrydh2t37u5sL8S+KP4EYAJ # ymo+gsgaIIHbSR3YX1COsuAotOBgcaGCF5QwgheQBgorBgEEAYI3AwMBMYIXgDCC # F3wGCSqGSIb3DQEHAqCCF20wghdpAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFSBgsq # hkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCBaZg+ps7CIvjRB4aNBxf5mC0gSnIJnwmkcgdIJexfplgIGaWj29/mS # GBMyMDI2MDIwNTA0MjUyMy41NDNaMASAAgH0oIHRpIHOMIHLMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l # cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046REMwMC0w # NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Wg # ghHqMIIHIDCCBQigAwIBAgITMwAAAgO7HlwAOGx0ygABAAACAzANBgkqhkiG9w0B # AQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYD # VQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAeFw0yNTAxMzAxOTQy # NDZaFw0yNjA0MjIxOTQyNDZaMIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz # aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv # cnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25z # MScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046REMwMC0wNUUwLUQ5NDcxJTAjBgNV # BAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2UwggIiMA0GCSqGSIb3DQEB # AQUAA4ICDwAwggIKAoICAQChl0MH5wAnOx8Uh8RtidF0J0yaFDHJYHTpPvRR16X1 # KxGDYfT8PrcGjCLCiaOu3K1DmUIU4Rc5olndjappNuOgzwUoj43VbbJx5PFTY/a1 # Z80tpqVP0OoKJlUkfDPSBLFgXWj6VgayRCINtLsUasy0w5gysD7ILPZuiQjace5K # xASjKf2MVX1qfEzYBbTGNEijSQCKwwyc0eavr4Fo3X/+sCuuAtkTWissU64k8rK6 # 0jsGRApiESdfuHr0yWAmc7jTOPNeGAx6KCL2ktpnGegLDd1IlE6Bu6BSwAIFHr7z # OwIlFqyQuCe0SQALCbJhsT9y9iy61RJAXsU0u0TC5YYmTSbEI7g10dYx8Uj+vh9I # nLoKYC5DpKb311bYVd0bytbzlfTRslRTJgotnfCAIGMLqEqk9/2VRGu9klJi1j9n # VfqyYHYrMPOBXcrQYW0jmKNjOL47CaEArNzhDBia1wXdJANKqMvJ8pQe2m8/ciby # DM+1BVZquNAov9N4tJF4ACtjX0jjXNDUMtSZoVFQH+FkWdfPWx1uBIkc97R+xRLu # PjUypHZ5A3AALSke4TaRBvbvTBYyW2HenOT7nYLKTO4jw5Qq6cw3Z9zTKSPQ6D5l # yiYpes5RR2MdMvJS4fCcPJFeaVOvuWFSQ/EGtVBShhmLB+5ewzFzdpf1UuJmuOQT # TwIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFLIpWUB+EeeQ29sWe0VdzxWQGJJ9MB8G # A1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8GA1UdHwRYMFYwVKBSoFCG # Tmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY3Jvc29mdCUy # MFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBsBggrBgEFBQcBAQRgMF4w # XAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2Vy # dHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3J0MAwG # A1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUHAwgwDgYDVR0PAQH/BAQD # AgeAMA0GCSqGSIb3DQEBCwUAA4ICAQCQEMbesD6TC08R0oYCdSC452AQrGf/O89G # Q54CtgEsbxzwGDVUcmjXFcnaJSTNedBKVXkBgawRonP1LgxH4bzzVj2eWNmzGIwO # 1FlhldAPOHAzLBEHRoSZ4pddFtaQxoabU/N1vWyICiN60It85gnF5JD4MMXyd6pS # 8eADIi6TtjfgKPoumWa0BFQ/aEzjUrfPN1r7crK+qkmLztw/ENS7zemfyx4kGRgw # Y1WBfFqm/nFlJDPQBicqeU3dOp9hj7WqD0Rc+/4VZ6wQjesIyCkv5uhUNy2LhNDi # 2leYtAiIFpmjfNk4GngLvC2Tj9IrOMv20Srym5J/Fh7yWAiPeGs3yA3QapjZTtfr # 7NfzpBIJQ4xT/ic4WGWqhGlRlVBI5u6Ojw3ZxSZCLg3vRC4KYypkh8FdIWoKirji # dEGlXsNOo+UP/YG5KhebiudTBxGecfJCuuUspIdRhStHAQsjv/dAqWBLlhorq2OC # aP+wFhE3WPgnnx5pflvlujocPgsN24++ddHrl3O1FFabW8m0UkDHSKCh8QTwTkYO # wu99iExBVWlbYZRz2qOIBjL/ozEhtCB0auKhfTLLeuNGBUaBz+oZZ+X9UAECoMhk # ETjb6YfNaI1T7vVAaiuhBoV/JCOQT+RYZrgykyPpzpmwMNFBD1vdW/29q9nkTWoE # hcEOO0L9NzCCB3EwggVZoAMCAQICEzMAAAAVxedrngKbSZkAAAAAABUwDQYJKoZI # hvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAw # DgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24x # MjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAy # MDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIyNVowfDELMAkGA1UEBhMC # VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV # BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp # bWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC # AQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXIyjVX9gF/bErg4r25Phdg # M/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjoYH1qUoNEt6aORmsHFPPF # dvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1yaa8dq6z2Nr41JmTamDu6 # GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v3byNpOORj7I5LFGc6XBp # Dco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pGve2krnopN6zL64NF50Zu # yjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viSkR4dPf0gz3N9QZpGdc3E # XzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYrbqgSUei/BQOj0XOmTTd0 # lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlMjgK8QmguEOqEUUbi0b1q # GFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSLW6CmgyFdXzB0kZSU2LlQ # +QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AFemzFER1y7435UsSFF5PA # PBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIurQIDAQABo4IB3TCCAdkw # EgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIEFgQUKqdS/mTEmr6CkTxG # NSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMFwGA1UdIARV # MFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0dHA6Ly93d3cubWlj # cm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0bTATBgNVHSUEDDAK # BggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMC # AYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV9lbLj+iiXGJo0T2UkFvX # zpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20v # cGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAxMC0wNi0yMy5jcmwwWgYI # KwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNydDANBgkqhkiG # 9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv6lwUtj5OR2R4sQaTlz0x # M7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZnOlNN3Zi6th542DYunKmC # VgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1bSNU5HhTdSRXud2f8449 # xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4rPf5KYnDvBewVIVCs/wM # nosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU6ZGyqVvfSaN0DLzskYDS # PeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDFNLB62FD+CljdQDzHVG2d # Y3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/HltEAY5aGZFrDZ+kKNxn # GSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdUCbFpAUR+fKFhbHP+Crvs # QWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKiexcdFYmNcP7ntdAoGokL # jzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTmdHRbatGePu1+oDEzfbzL # 6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZqELQdVTNYs6FwZvKhggNN # MIICNQIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hp # bmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jw # b3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJpY2EgT3BlcmF0aW9uczEn # MCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkRDMDAtMDVFMC1EOTQ3MSUwIwYDVQQD # ExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMKAQEwBwYFKw4DAhoDFQDN # rxRX/iz6ss1lBCXG8P1LFxD0e6CBgzCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1w # IFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA7S54jTAiGA8yMDI2MDIwNTAyMDE0 # OVoYDzIwMjYwMjA2MDIwMTQ5WjB0MDoGCisGAQQBhFkKBAExLDAqMAoCBQDtLniN # AgEAMAcCAQACAgy4MAcCAQACAhL5MAoCBQDtL8oNAgEAMDYGCisGAQQBhFkKBAIx # KDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSChCjAIAgEAAgMBhqAwDQYJKoZI # hvcNAQELBQADggEBACVUvQfJ+cklo3GqUeW2GAA7rw/fLjOc+pI+O3HaqtGOY5z6 # mwznQTlY/LfJqeCkKPzBH21u67BNZT5t6qkbWasiO74yA/yiav2GaviV/jsNqWoq # eS0K17ZRIqQ376m0iVSenDTZGdzkHvLJHlHPyE8dLq9+tPwWr2FkusNdetIuiFZg # /Kowr6IBGXJkSbqXJbbbUTXirXdx+BJ50yDskRImJ+PIw6rzabBc0A1AjoCVyMf2 # X2rfavdrxN/a0oeuoMskUt2A0HmAxOCSWUHSLGE13MF2O+XK5NUvB5niQezYOEPv # EOYt1HZ/SlNJBiu4Z0Cu5/BWtAjXtv9xBueLc24xggQNMIIECQIBATCBkzB8MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNy # b3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAAAgO7HlwAOGx0ygABAAACAzAN # BglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0GCyqGSIb3DQEJEAEEMC8G # CSqGSIb3DQEJBDEiBCDfs2fThM0pmbhj/PS74NTCLbrGww9bFtIxGMl8qOIYNTCB # +gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIEsD3RtxlvaTxFOZZnpQw0DksPmV # duo5SyK9h9w++hMtMIGYMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh # c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD # b3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIw # MTACEzMAAAIDux5cADhsdMoAAQAAAgMwIgQgueqhV/q8YJenwv7oLH2YNsRGeQTG # CEYSQ6Se690gDKIwDQYJKoZIhvcNAQELBQAEggIAJTIutbnxYB4WsnLcxW+4ovVb # SWzv96Z/4UiB8LLJzDhd/zhcoPwpVyDqJKflFrBkO3ZBsmSjMsET53I1gS4jB9Px # eM7ynXqMOEAceCRveb9aGABQMM+ZgibFeSOBruDOjDzJHxo2/h8AUu9EYQ1z9TIB # ZB33tjmXPS5NhrVaGM8uSoUXw1IgSMBSToigbJGlJBX1/HXMGua3am9KVjQKxk1r # 4Tip21jAiJJX3Aau7fCLYAIe7kE85RFFeacuvBJIBpsf6dlo5U5MlXBYE9esxrxN # k65bFR2XEEu3HkWe2t0winOMncGF5d1jXf7qZ/ndEGPIKz1oh1wcoxEiIuhZMR2P # 7EgfuFDvYOXzeSBNkc3X/+fSB1dMtFJLg7ooOJg7J55wvXctwhnKTlKb6j/qZ43y # Fz9P9r0lSmps3VBRlUkq6TPXutEYaivSLlwmJDYZdDqrajeXpr2HRfi/snpvbJi4 # lCZ36YJeRGt4hRH+US9IXPv02YWK9S22NReXasJL1eKRiliMi61RcYqkp7LdVNWc # DQTo6OdEut5ZKSYVprJximAzG5N4BeCJkwNw3MxKnEtRiIrEoTNXwhd4HSLbYrZp # Fx2+QEvxW9E/q9ffJ9gR27LucXNhHjwL30Ro0U/5D1bot555/N4nlub6q4a8oXV9 # nafrApG/8rYdKHifxb0= # SIG # End signature block |