Private/RESTHelpers.ps1
|
<#
SAMPLE CODE NOTICE THIS SAMPLE CODE IS MADE AVAILABLE AS IS. MICROSOFT MAKES NO WARRANTIES, WHETHER EXPRESS OR IMPLIED, OF FITNESS FOR A PARTICULAR PURPOSE, OF ACCURACY OR COMPLETENESS OF RESPONSES, OF RESULTS, OR CONDITIONS OF MERCHANTABILITY. THE ENTIRE RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS SAMPLE CODE REMAINS WITH THE USER. NO TECHNICAL SUPPORT IS PROVIDED. YOU MAY NOT DISTRIBUTE THIS CODE UNLESS YOU HAVE A LICENSE AGREEMENT WITH MICROSOFT THAT ALLOWS YOU TO DO SO. #> <# .SYNOPSIS Import this module to get functions to help handling REST calls. .DESCRIPTION This script can be imported to enable cmdlets to deal with HTTP connection and JSON messages. .NOTES Copyright © 2025 Microsoft. All rights reserved. #> <# .SYNOPSIS Create new HttpRequestMessage object and set Json content and authorization header #> function New-JsonRequestMessage { param( [Parameter(Mandatory=$true)] [string] $Uri, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) Write-Verbose "Creating request for URI: $Uri" $request = New-Object -TypeName System.Net.Http.HttpRequestMessage -ArgumentList @($HttpMethod, $Uri) if ($Content) { $request.Content = New-Object -TypeName System.Net.Http.StringContent -ArgumentList @($Content, [System.Text.Encoding]::UTF8, "application/json") } $request.Headers.Authorization = "Bearer $(ConvertFrom-SecureStringInternal $AccessToken)" return $request } function New-EnvironmentRouteRequest { param( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [PPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-EnvironmentRouteHostName -Endpoint $Endpoint -EnvironmentId $EnvironmentId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = $hostName $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod return $request } function New-HomeTenantRouteRequest { param( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [PPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-TenantRouteHostName -Endpoint $Endpoint -TenantId $TenantId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = $hostName $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod $request.Headers.Host = $hostName return $request } <# .SYNOPSIS Gets a singleton HttpClient object or creates a new one and clears Default Request Headers #> function Get-HttpClient { if($null -eq $script:httpClient) { [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.SecurityProtocolType]::Tls13 -bor [System.Net.SecurityProtocolType]::Tls12 $script:httpClient = New-Object -TypeName System.Net.Http.HttpClient $script:httpClient.DefaultRequestHeaders.Clear() $moduleName = "Microsoft.PowerPlatform.EnterprisePolicies" $moduleVersion = Get-ModuleVersion $osPlatform = [System.Environment]::OSVersion.Platform $script:httpClient.DefaultRequestHeaders.UserAgent.Add([System.Net.Http.Headers.ProductInfoHeaderValue]::new($moduleName, $moduleVersion)) $script:httpClient.DefaultRequestHeaders.Add("x-ms-useragent", "$moduleName/$moduleVersion ($osPlatform)") } return $script:httpClient } <# .SYNOPSIS Given an async Task, await and return its result #> function Get-AsyncResult { param( [Parameter(Mandatory=$true)] $task ) try { $result = $task.GetAwaiter().GetResult() } catch { if ($_.Exception.InnerException) { # Two levels into inner exceptions have network connection problem messages if ($_.Exception.InnerException.InnerException) { throw $_.Exception.InnerException.InnerException.Message } else { throw $_.Exception.InnerException.Message } } else { throw $_.Exception.Message } } return $result } function Get-EnvironmentRouteHostName { param ( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $EnvironmentId = $EnvironmentId.Replace("-", "") if(Test-IsSingleCharEndpoint -Endpoint $Endpoint) { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 1, 1) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 1) } else { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 2, 2) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 2) } return "$remainingEnvId.$shortEnvId.environment.$baseUri" } function Get-TenantRouteHostName { param ( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $TenantId = $TenantId.Replace("-", "") if(Test-IsSingleCharEndpoint -Endpoint $Endpoint) { $shortTenantId = $TenantId.Substring($TenantId.Length - 1, 1) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 1) } else { $shortTenantId = $TenantId.Substring($TenantId.Length - 2, 2) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 2) } return "il-$remainingTenantId.$shortTenantId.tenant.$baseUri" } function Get-PPEndpointUrl { param ( [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) switch ($Endpoint) { ([PPEndpoint]::tip1) { return "https://tip1.api.bap.microsoft.com/" } ([PPEndpoint]::tip2) { return "https://tip2.api.bap.microsoft.com/" } ([PPEndpoint]::prod) { return "https://api.bap.microsoft.com/" } ([PPEndpoint]::usgovhigh) { return "https://high.api.bap.microsoft.us/" } ([PPEndpoint]::dod) { return "https://api.bap.appsplatform.us/" } ([PPEndpoint]::china) { return "https://api.bap.partner.microsoftonline.cn/" } Default { throw "Unsupported PP endpoint: $Endpoint" } } } function Get-PPResourceUrl { param ( [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) switch ($Endpoint) { ([PPEndpoint]::tip1) { return "https://service.powerapps.com/" } ([PPEndpoint]::tip2) { return "https://service.powerapps.com/" } ([PPEndpoint]::prod) { return "https://service.powerapps.com/" } ([PPEndpoint]::usgovhigh) { return "https://high.service.powerapps.us/" } ([PPEndpoint]::dod) { return "https://service.apps.appsplatform.us/" } ([PPEndpoint]::china) { return "https://service.powerapps.cn/" } Default { throw "Unsupported PP endpoint: $Endpoint" } } } function Get-APIResourceUrl { param ( [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) switch ($Endpoint) { ([PPEndpoint]::tip1) { return "https://api.preprod.powerplatform.com/" } ([PPEndpoint]::tip2) { return "https://api.test.powerplatform.com/" } ([PPEndpoint]::prod) { return "https://api.powerplatform.com/" } ([PPEndpoint]::usgovhigh) { return "https://api.high.powerplatform.microsoft.us/" } ([PPEndpoint]::dod) { return "https://api.appsplatform.us/" } ([PPEndpoint]::china) { return "https://api.powerplatform.partner.microsoftonline.cn/" } Default { throw "Unsupported PP endpoint: $Endpoint" } } } function Send-RequestWithRetries { param ( [Parameter(Mandatory)] [int] $MaxRetries, [Parameter(Mandatory)] [int] $DelaySeconds, [Parameter(Mandatory)] [scriptblock] $RequestFactory ) $client = Get-HttpClient $attempt = 0 $retryAfterFound = $false while ($attempt -lt $MaxRetries) { try { $sleepSeconds = $DelaySeconds $result = Get-AsyncResult -Task $client.SendAsync((& $RequestFactory)) if(Test-Result -Result $result) { return $result } # Check for 503 Service Unavailable or 429 Too Many Requests with Retry-After header if ($result.StatusCode -eq 503 -or $result.StatusCode -eq 429) { if ($result.Headers.Contains("Retry-After")) { $retryAfterFound = $true $retryAfterValue = $result.Headers.GetValues("Retry-After") | Select-Object -First 1 # Retry-After can be either seconds (integer) or HTTP date if ($retryAfterValue -match '^\d+$') { $sleepSeconds = [int]$retryAfterValue } else { try { $retryAfterDate = [DateTime]::Parse($retryAfterValue) if ($retryAfterDate.Kind -ne [System.DateTimeKind]::Utc) { $retryAfterDate = $retryAfterDate.ToUniversalTime() } $sleepSeconds = [Math]::Max(1, [int]($retryAfterDate - [DateTime]::UtcNow).TotalSeconds) } catch { Write-Verbose "Could not parse Retry-After header value: $retryAfterValue. Using default delay." $sleepSeconds = $DelaySeconds } } Write-Host "The service is working on the request and has requested a retry. Waiting for $sleepSeconds seconds as indicated by the Retry-After header..." -ForegroundColor Yellow } } elseif($result.StatusCode -eq 502 -and $retryAfterFound) { # If we previously saw a Retry-After header, extend the wait time as the gateway might not have the route configured yet. $sleepSeconds = 60 Write-Host "The gateway has not updated the route information yet. Waiting for $sleepSeconds seconds before retrying..." -ForegroundColor Yellow } $attempt++ } catch { $attempt++ Write-Verbose "Exception on attempt $attempt : $($_.Exception.Message)" if($attempt -ge $MaxRetries) { throw "Request failed after $MaxRetries attempts. Last error: $($_.Exception.Message)" } } if ($attempt -ge $MaxRetries) { Write-Host "Request failed after $MaxRetries attempts." -ForegroundColor Red Assert-Result -Result $result } Write-Verbose "Request failed on attempt $attempt. Retrying in $sleepSeconds seconds..." Start-Sleep -Seconds $sleepSeconds } } function Test-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } } return $true } function Assert-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } } } function ConvertFrom-JsonToClass { param ( [string]$Json, [Type]$ClassType ) $data = $Json | ConvertFrom-Json # Handle array types directly if ($ClassType.IsArray) { $elementType = $ClassType.GetElementType() $itemList = @() foreach ($item in $data) { $itemJson = $item | ConvertTo-Json -Depth 10 $itemList += ConvertFrom-JsonToClass -Json $itemJson -ClassType $elementType } return ,$itemList } # Handle primitive types and strings if ($ClassType.IsPrimitive -or $ClassType -eq [string]) { return ($data -as $ClassType) } # Handle common value types explicitly if ($ClassType -eq [DateTime]) { return [DateTime]::Parse($data) } if ($ClassType.FullName -eq 'System.Guid') { return [Guid]::Parse($data) } if ($ClassType.FullName -eq 'System.Decimal') { return [Decimal]::Parse($data) } if ($null -eq $data) { return $null } # Handle complex types $instance = [Activator]::CreateInstance($ClassType) foreach ($property in $ClassType.GetProperties()) { $name = $property.Name $type = Get-UnderlyingType $property.PropertyType if ($data.PSObject.Properties -and $data.PSObject.Properties[$name]) { if ($type -eq [hashtable] -or $type.FullName -eq 'System.Collections.Hashtable') { $instance.$name = ConvertTo-Hashtable $data.$name } elseif ($type.IsClass -and $type -ne [string]) { $nestedJson = $data.$name | ConvertTo-Json -Depth 10 $instance.$name = ConvertFrom-JsonToClass -Json $nestedJson -ClassType $type } elseif ($type.IsEnum){ $instance.$name = [System.Enum]::Parse($type, $data.$name) } else { $instance.$name = $data.$name } } } return $instance } function Get-UnderlyingType([type]$t) { if ($t.IsGenericType -and $t.GetGenericTypeDefinition().FullName -eq 'System.Nullable`1') { return $t.GetGenericArguments()[0] } return $t } function ConvertTo-Hashtable($obj) { if ($obj -is [hashtable]) { return $obj } $hash = @{} foreach ($property in $obj.PSObject.Properties) { $hash[$property.Name] = $property.Value } return $hash } function Test-IsSingleCharEndpoint { param ( [Parameter(Mandatory)] [PPEndpoint] $Endpoint ) return $Endpoint -in @( [PPEndpoint]::tip1, [PPEndpoint]::tip2, [PPEndpoint]::usgovhigh, [PPEndpoint]::dod ) } # SIG # Begin signature block # MIIoLAYJKoZIhvcNAQcCoIIoHTCCKBkCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCAiPSk13Rj0r463 # XdPZXtnAE1GB/2cqgLq8u7Sv9rqHz6CCDXYwggX0MIID3KADAgECAhMzAAAEhV6Z # 7A5ZL83XAAAAAASFMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjUwNjE5MTgyMTM3WhcNMjYwNjE3MTgyMTM3WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDASkh1cpvuUqfbqxele7LCSHEamVNBfFE4uY1FkGsAdUF/vnjpE1dnAD9vMOqy # 5ZO49ILhP4jiP/P2Pn9ao+5TDtKmcQ+pZdzbG7t43yRXJC3nXvTGQroodPi9USQi # 9rI+0gwuXRKBII7L+k3kMkKLmFrsWUjzgXVCLYa6ZH7BCALAcJWZTwWPoiT4HpqQ # hJcYLB7pfetAVCeBEVZD8itKQ6QA5/LQR+9X6dlSj4Vxta4JnpxvgSrkjXCz+tlJ # 67ABZ551lw23RWU1uyfgCfEFhBfiyPR2WSjskPl9ap6qrf8fNQ1sGYun2p4JdXxe # UAKf1hVa/3TQXjvPTiRXCnJPAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUuCZyGiCuLYE0aU7j5TFqY05kko0w # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwNTM1OTAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBACjmqAp2Ci4sTHZci+qk # tEAKsFk5HNVGKyWR2rFGXsd7cggZ04H5U4SV0fAL6fOE9dLvt4I7HBHLhpGdE5Uj # Ly4NxLTG2bDAkeAVmxmd2uKWVGKym1aarDxXfv3GCN4mRX+Pn4c+py3S/6Kkt5eS # DAIIsrzKw3Kh2SW1hCwXX/k1v4b+NH1Fjl+i/xPJspXCFuZB4aC5FLT5fgbRKqns # WeAdn8DsrYQhT3QXLt6Nv3/dMzv7G/Cdpbdcoul8FYl+t3dmXM+SIClC3l2ae0wO # lNrQ42yQEycuPU5OoqLT85jsZ7+4CaScfFINlO7l7Y7r/xauqHbSPQ1r3oIC+e71 # 5s2G3ClZa3y99aYx2lnXYe1srcrIx8NAXTViiypXVn9ZGmEkfNcfDiqGQwkml5z9 # nm3pWiBZ69adaBBbAFEjyJG4y0a76bel/4sDCVvaZzLM3TFbxVO9BQrjZRtbJZbk # C3XArpLqZSfx53SuYdddxPX8pvcqFuEu8wcUeD05t9xNbJ4TtdAECJlEi0vvBxlm # M5tzFXy2qZeqPMXHSQYqPgZ9jvScZ6NwznFD0+33kbzyhOSz/WuGbAu4cHZG8gKn # lQVT4uA2Diex9DMs2WHiokNknYlLoUeWXW1QrJLpqO82TLyKTbBM/oZHAdIc0kzo # STro9b3+vjn2809D0+SOOCVZMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGgwwghoIAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAASFXpnsDlkvzdcAAAAABIUwDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIEXkzOHMwuld1Uq7nYC24+LK # jpFUgQsP0ZC2+EQVadmfMEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAVDjPcD6Ks6/eQtsElsMTx0dYDWNxJjWop1Bb/8gW0uNS5PyMSLLm5BZy # KkihUhq9jGOs9XcG9b6GQoscph7y5gmc7RqrinFtF0qOoksgq8Yx4bhD0xNoSPNU # E4lMJwH/lnRDPq6GymHcCt7xRqgh37BRTz2JX1l1ymzwp46/ob0LGZ5/1SHGeJ2o # 2ze0IjCFjtP1gxk7ho6/1tlMBq2U+s/2GSfDVRAz8658FZ1ts2azsqooxA2szdYs # kUClURWpR7lkNv7zqlmNzEwXyeoDPY6VJ05eH3D9s45uojDj2RXNvZaSY0zJJMMn # 4lAggJ+VjyDaL2HHeJFJu3jeW3xXsaGCF5YwgheSBgorBgEEAYI3AwMBMYIXgjCC # F34GCSqGSIb3DQEHAqCCF28wghdrAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFRBgsq # hkiG9w0BCRABBKCCAUAEggE8MIIBOAIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCAHX3/SquwXhi/xbAwzt30SIedO/Egcf/W15Ao5IezR1QIGabhrZUPI # GBIyMDI2MDMyNTIzMjAwNC45OVowBIACAfSggdGkgc4wgcsxCzAJBgNVBAYTAlVT # MRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQK # ExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJTAjBgNVBAsTHE1pY3Jvc29mdCBBbWVy # aWNhIE9wZXJhdGlvbnMxJzAlBgNVBAsTHm5TaGllbGQgVFNTIEVTTjpGMDAyLTA1 # RTAtRDk0NzElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2VydmljZaCC # Ee0wggcgMIIFCKADAgECAhMzAAACICTh5uAXubSOAAEAAAIgMA0GCSqGSIb3DQEB # CwUAMHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQH # EwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNV # BAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMB4XDTI2MDIxOTE5Mzk1 # MloXDTI3MDUxNzE5Mzk1MlowgcsxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNo # aW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29y # cG9yYXRpb24xJTAjBgNVBAsTHE1pY3Jvc29mdCBBbWVyaWNhIE9wZXJhdGlvbnMx # JzAlBgNVBAsTHm5TaGllbGQgVFNTIEVTTjpGMDAyLTA1RTAtRDk0NzElMCMGA1UE # AxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAgU2VydmljZTCCAiIwDQYJKoZIhvcNAQEB # BQADggIPADCCAgoCggIBANFhjvKvuKNboJHXvy4q94gy5+61Y6JzGAnAo5x7/YY5 # Bx66zplZ9fXiLeM2Dck4/swYkyQ4C5zBYHCIDxRGn5liQaOlWhWQZmxXbtaOovCl # /YDCoGwn9POrATskUVrG6nct3GPwaN0nKYMVGt1U3+lgegEWuMPUiQgO7xvUJafy # 2CiaIpFJj5JO8mr32ZWR2mEwEhQY56BCfLypF3bhUwTTGLw6iaSz1mr0SMN4ocam # 8BtdQRDqbdxE6gQ+FMT+aLB5Af1Oom3cg6yo+/cvy6uiMHvjtcELbLQIMgeUotwu # XdkbwPslcqdZMV6feaww8mly+tDfNQFUmsf+YjdHEeYKH2mkM/S4bX48nCTof/H6 # x+gb2FbrjGheSnHoMR81k19xd0ptcXbxcRd0s2fOjdIs1XKZ5AmE2o5IqGdTzhCc # qauMSTnjUmK6uUMKQJY72VQFQxv3HSfJ9dRs1E9UuA/49MxF1c6jAl1gLMJB83Zm # ovSzhgjbwXUNufsGDDYTg/UT26ey8zMke3OFLZOHdOkJ8Fs4ZqUiUX3H8Mln+yyb # /LLNP1i0gV6qZ83EE9MTdo66HofGZMgLN9gABO9Y2EFujX1DCyM94D0m+GpMsLYp # Q2CteugbLh4NmjSfuMViNmRSKHVPL7wTqoS9XY1rpnmBTIPlr60cYOarr0KZSId/ # AgMBAAGjggFJMIIBRTAdBgNVHQ4EFgQU28ic4IiHEYDyZjuXWDTtQe/I2DMwHwYD # VR0jBBgwFoAUn6cVXQBeYl2D9OXSZacbUzUZ6XIwXwYDVR0fBFgwVjBUoFKgUIZO # aHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0JTIw # VGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3JsMGwGCCsGAQUFBwEBBGAwXjBc # BggrBgEFBQcwAoZQaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jZXJ0 # cy9NaWNyb3NvZnQlMjBUaW1lLVN0YW1wJTIwUENBJTIwMjAxMCgxKS5jcnQwDAYD # VR0TAQH/BAIwADAWBgNVHSUBAf8EDDAKBggrBgEFBQcDCDAOBgNVHQ8BAf8EBAMC # B4AwDQYJKoZIhvcNAQELBQADggIBAK0oYG2jUFK+bhYUj4nQ1LJWFTUscvsXd9uN # nZ3sXkqf8UJMFlenOsNWXrcUtE1wgWmcnLj+eWDjevtPmwk92jgyzwANIdAQmcdK # 7fH1SmMLNEQE+L36ceG8OBHH/VaYEPqBBRkks6Fw3ZPFbgonKGKcy2IEW2Q1Fna+ # ZnUwB01dObl3QvCTfDOP79/tUIJNYJclKio1rdVT/qwAIcj3sS9ufODxt3eHGt/P # oJwJW5/vt6C9EeKe2Em7BJF48/tpWZx69vWdZQgAgJ0F5sdA6vM0h5YEhDC9wVpL # dIVz7j2uqvBA4wUNHgVgHNLtvRB4FXEW4svaJW7goAcw1SEstIPiIosMUE1M61PN # OWEa8yAbvsDVyN5CsMwdrqhF4wN5QOodSvG/yDshF0iH6HSAMuTM3TEi7OWLQG/s # m3JsYltXonFoMXgLNIIgxGkrn2cjqIqjguCdtAFklbv7pqRiwob+lc+V/E2/Yiek # PXS1IKQK/D2SvpbX41E34S5lzNGADBaVwr1clne67+/+jEe07v+SZUiznUX2pXpj # ZA1d3q1Tjpg+sr3ybZAPKz6W8s2KYrR7XFntnUZrAqiEoa+UsAtYOVlCqAd8nfUI # HQuUgMjuIvJhOl3aLIqOqyRtCLIy0gIf5GYf+gKDsk4rRkDdcgxtr1pJaAEXdBnq # kbcQZ5CqMIIHcTCCBVmgAwIBAgITMwAAABXF52ueAptJmQAAAAAAFTANBgkqhkiG # 9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAO # BgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEy # MDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIw # MTAwHhcNMjEwOTMwMTgyMjI1WhcNMzAwOTMwMTgzMjI1WjB8MQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGlt # ZS1TdGFtcCBQQ0EgMjAxMDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB # AOThpkzntHIhC3miy9ckeb0O1YLT/e6cBwfSqWxOdcjKNVf2AX9sSuDivbk+F2Az # /1xPx2b3lVNxWuJ+Slr+uDZnhUYjDLWNE893MsAQGOhgfWpSg0S3po5GawcU88V2 # 9YZQ3MFEyHFcUTE3oAo4bo3t1w/YJlN8OWECesSq/XJprx2rrPY2vjUmZNqYO7oa # ezOtgFt+jBAcnVL+tuhiJdxqD89d9P6OU8/W7IVWTe/dvI2k45GPsjksUZzpcGkN # yjYtcI4xyDUoveO0hyTD4MmPfrVUj9z6BVWYbWg7mka97aSueik3rMvrg0XnRm7K # MtXAhjBcTyziYrLNueKNiOSWrAFKu75xqRdbZ2De+JKRHh09/SDPc31BmkZ1zcRf # NN0Sidb9pSB9fvzZnkXftnIv231fgLrbqn427DZM9ituqBJR6L8FA6PRc6ZNN3SU # HDSCD/AQ8rdHGO2n6Jl8P0zbr17C89XYcz1DTsEzOUyOArxCaC4Q6oRRRuLRvWoY # WmEBc8pnol7XKHYC4jMYctenIPDC+hIK12NvDMk2ZItboKaDIV1fMHSRlJTYuVD5 # C4lh8zYGNRiER9vcG9H9stQcxWv2XFJRXRLbJbqvUAV6bMURHXLvjflSxIUXk8A8 # FdsaN8cIFRg/eKtFtvUeh17aj54WcmnGrnu3tz5q4i6tAgMBAAGjggHdMIIB2TAS # BgkrBgEEAYI3FQEEBQIDAQABMCMGCSsGAQQBgjcVAgQWBBQqp1L+ZMSavoKRPEY1 # Kc8Q/y8E7jAdBgNVHQ4EFgQUn6cVXQBeYl2D9OXSZacbUzUZ6XIwXAYDVR0gBFUw # UzBRBgwrBgEEAYI3TIN9AQEwQTA/BggrBgEFBQcCARYzaHR0cDovL3d3dy5taWNy # b3NvZnQuY29tL3BraW9wcy9Eb2NzL1JlcG9zaXRvcnkuaHRtMBMGA1UdJQQMMAoG # CCsGAQUFBwMIMBkGCSsGAQQBgjcUAgQMHgoAUwB1AGIAQwBBMAsGA1UdDwQEAwIB # hjAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFNX2VsuP6KJcYmjRPZSQW9fO # mhjEMFYGA1UdHwRPME0wS6BJoEeGRWh0dHA6Ly9jcmwubWljcm9zb2Z0LmNvbS9w # a2kvY3JsL3Byb2R1Y3RzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNybDBaBggr # BgEFBQcBAQROMEwwSgYIKwYBBQUHMAKGPmh0dHA6Ly93d3cubWljcm9zb2Z0LmNv # bS9wa2kvY2VydHMvTWljUm9vQ2VyQXV0XzIwMTAtMDYtMjMuY3J0MA0GCSqGSIb3 # DQEBCwUAA4ICAQCdVX38Kq3hLB9nATEkW+Geckv8qW/qXBS2Pk5HZHixBpOXPTEz # tTnXwnE2P9pkbHzQdTltuw8x5MKP+2zRoZQYIu7pZmc6U03dmLq2HnjYNi6cqYJW # AAOwBb6J6Gngugnue99qb74py27YP0h1AdkY3m2CDPVtI1TkeFN1JFe53Z/zjj3G # 82jfZfakVqr3lbYoVSfQJL1AoL8ZthISEV09J+BAljis9/kpicO8F7BUhUKz/Aye # ixmJ5/ALaoHCgRlCGVJ1ijbCHcNhcy4sa3tuPywJeBTpkbKpW99Jo3QMvOyRgNI9 # 5ko+ZjtPu4b6MhrZlvSP9pEB9s7GdP32THJvEKt1MMU0sHrYUP4KWN1APMdUbZ1j # dEgssU5HLcEUBHG/ZPkkvnNtyo4JvbMBV0lUZNlz138eW0QBjloZkWsNn6Qo3GcZ # KCS6OEuabvshVGtqRRFHqfG3rsjoiV5PndLQTHa1V1QJsWkBRH58oWFsc/4Ku+xB # Zj1p/cvBQUl+fpO+y/g75LcVv7TOPqUxUYS8vwLBgqJ7Fx0ViY1w/ue10CgaiQuP # Ntq6TPmb/wrpNPgkNWcr4A245oyZ1uEi6vAnQj0llOZ0dFtq0Z4+7X6gMTN9vMvp # e784cETRkPHIqzqKOghif9lwY1NNje6CbaUFEMFxBmoQtB1VM1izoXBm8qGCA1Aw # ggI4AgEBMIH5oYHRpIHOMIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu # Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv # cmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScw # JQYDVQQLEx5uU2hpZWxkIFRTUyBFU046RjAwMi0wNUUwLUQ5NDcxJTAjBgNVBAMT # HE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2WiIwoBATAHBgUrDgMCGgMVAJMY # D2+mwnqCWoIuYjSuCAbHhgQSoIGDMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNV # BAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jv # c29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAg # UENBIDIwMTAwDQYJKoZIhvcNAQELBQACBQDtbsZNMCIYDzIwMjYwMzI1MjAzODM3 # WhgPMjAyNjAzMjYyMDM4MzdaMHcwPQYKKwYBBAGEWQoEATEvMC0wCgIFAO1uxk0C # AQAwCgIBAAICAasCAf8wBwIBAAICE2UwCgIFAO1wF80CAQAwNgYKKwYBBAGEWQoE # AjEoMCYwDAYKKwYBBAGEWQoDAqAKMAgCAQACAwehIKEKMAgCAQACAwGGoDANBgkq # hkiG9w0BAQsFAAOCAQEADNWUXFaRB3gYeni4JVhWiV3QR+ka/IFhquL5t/kVQder # K6NNxBEYXqJGNduzvNALJ5HvgP3ANY3KS/QimwhoSi1xKMG5ag0z8DAxSt5RC5ek # uYGrByUTMM4YTGhjo9GLd1otnpiEBMqOEoVCgso2Fa8pssyCh8o4jpW6AFWEwODB # HjeLbN/86QKYLAuYaHHIKvOVJS4My7vnf/9CreM2zU00E5KKUxxlsbJNQvwVinkj # D7UnPt3nKV8guYQCNN28qbnFTZnIsesr1NY7OcvMoSk0WVUZLnjsBuMZyxnYggae # hzT5f6tTyhDiPw2EfC2dwpZX5bT8t8L5rhEAOVfTkjGCBA0wggQJAgEBMIGTMHwx # CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt # b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1p # Y3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwAhMzAAACICTh5uAXubSOAAEAAAIg # MA0GCWCGSAFlAwQCAQUAoIIBSjAaBgkqhkiG9w0BCQMxDQYLKoZIhvcNAQkQAQQw # LwYJKoZIhvcNAQkEMSIEIKlA+TFuN4dycGkTab44YIELOEZlVkKVHprkR9lJAmO6 # MIH6BgsqhkiG9w0BCRACLzGB6jCB5zCB5DCBvQQg43u/I6U8DVWqUSnRAhUaU13x # LlhYGcqP3su5NYdI7a8wgZgwgYCkfjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMK # V2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0 # IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0Eg # MjAxMAITMwAAAiAk4ebgF7m0jgABAAACIDAiBCBHCbU2mHL+3flvrUxg9v7KGE+j # DKOTbONLRVHiou33jjANBgkqhkiG9w0BAQsFAASCAgAbqLvQpgF7mqgCZ1CnfTYp # DXLqgwvXuma8mrPx720n4/POcLcDXVKNQQaleOpH+bNEZswYqLn9chVeY6lqAko2 # dAQtnZkF97MBilXYchLA2RhteNa1cQXKODDmZmgLBM0Mkc5y1dcVS4n7Gj6PHCX9 # HkYQYgbUW0AO9EXWzM+lD3z5hlU07ujPMEs2ASDGxfQrn/C1NQ3yfC0XYRBD8j0p # 2OizCNJ0dv+pAHH3VRO2L9PkhfBDtFgT/QXqujle+B/3BTwTNlqHuVXgT68S1+/R # A9cHwG6WmEm2hrzyVETJ52ofhBWOR0qlFx9Gy1C/0oP9BMR5lYgsZ0MJkQysbxyv # koLhjB7fmiu5Gw/6pMSnH6e4xXP+71SrTbTMiWfXrXUfJit+C0b06Af5VExj+mkp # FeawdSmEdKKo7Oerf79AOsoagiVJNdKdDP6t1tVQvelPSGbtIk12twsxVspUY6wF # r/qfl5jsIhUyisQsgVT56dmFbSYCgmx6/0/cGXmK3W8hME7cBWvoUA3vmEusMVxf # YpvTn14s7Vht87FGH+7OlwL5wUHlk78CvlTQkcME/q3G7UsXU09OciGPKP2eVowI # +a3epT/lSSh6CO5qqTxXRawVJu9qWO+YruiTOfQZthPfDuvlL6KElzCAHKaC6j4/ # vo+Ow/+E2SnmZbDTxqlxnA== # SIG # End signature block |