Private/RESTHelpers.ps1
|
<#
SAMPLE CODE NOTICE THIS SAMPLE CODE IS MADE AVAILABLE AS IS. MICROSOFT MAKES NO WARRANTIES, WHETHER EXPRESS OR IMPLIED, OF FITNESS FOR A PARTICULAR PURPOSE, OF ACCURACY OR COMPLETENESS OF RESPONSES, OF RESULTS, OR CONDITIONS OF MERCHANTABILITY. THE ENTIRE RISK OF THE USE OR THE RESULTS FROM THE USE OF THIS SAMPLE CODE REMAINS WITH THE USER. NO TECHNICAL SUPPORT IS PROVIDED. YOU MAY NOT DISTRIBUTE THIS CODE UNLESS YOU HAVE A LICENSE AGREEMENT WITH MICROSOFT THAT ALLOWS YOU TO DO SO. #> <# .SYNOPSIS Import this module to get functions to help handling REST calls. .DESCRIPTION This script can be imported to enable cmdlets to deal with HTTP connection and JSON messages. .NOTES Copyright © 2025 Microsoft. All rights reserved. #> <# .SYNOPSIS Create new HttpRequestMessage object and set Json content and authorization header #> function New-JsonRequestMessage { param( [Parameter(Mandatory=$true)] [string] $Uri, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) Write-Verbose "Creating request for URI: $Uri" $request = New-Object -TypeName System.Net.Http.HttpRequestMessage -ArgumentList @($HttpMethod, $Uri) if ($Content) { $request.Content = New-Object -TypeName System.Net.Http.StringContent -ArgumentList @($Content, [System.Text.Encoding]::UTF8, "application/json") } $request.Headers.Authorization = "Bearer $(ConvertFrom-SecureStringInternal $AccessToken)" return $request } function New-EnvironmentRouteRequest { param( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-EnvironmentRouteHostName -Endpoint $Endpoint -EnvironmentId $EnvironmentId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = "primary-$hostName" $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod $request.Headers.Host = $hostName return $request } function New-HomeTenantRouteRequest { param( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [string] $Path, [Parameter(Mandatory)] [string] $Query, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint, [Parameter(Mandatory=$true)] [System.Security.SecureString] $AccessToken, [Parameter(Mandatory=$false)] [string] $Content, [Parameter(Mandatory=$false)] [System.Net.Http.HttpMethod] $HttpMethod = [System.Net.Http.HttpMethod]::Post ) $hostName = Get-TenantRouteHostName -Endpoint $Endpoint -TenantId $TenantId $uriBuilder = [System.UriBuilder]::new() $uriBuilder.Scheme = "https" $uriBuilder.Host = $hostName $uriBuilder.Path = $Path $uriBuilder.Query = $Query $request = New-JsonRequestMessage -Uri $uriBuilder.Uri.ToString() -AccessToken $AccessToken -Content $Content -HttpMethod $HttpMethod $request.Headers.Host = $hostName return $request } <# .SYNOPSIS Gets a singleton HttpClient object or creates a new one and clears Default Request Headers #> function Get-HttpClient { if($null -eq $script:httpClient) { [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.SecurityProtocolType]::Tls13 -bor [System.Net.SecurityProtocolType]::Tls12 $script:httpClient = New-Object -TypeName System.Net.Http.HttpClient $script:httpClient.DefaultRequestHeaders.Clear() $script:httpClient.DefaultRequestHeaders.UserAgent.Add([System.Net.Http.Headers.ProductInfoHeaderValue]::new("Microsoft.PowerPlatform.EnterprisePolicies", (Get-ModuleVersion))) } return $script:httpClient } <# .SYNOPSIS Given an async Task, await and return its result #> function Get-AsyncResult { param( [Parameter(Mandatory=$true)] $task ) try { $result = $task.GetAwaiter().GetResult() } catch { if ($_.Exception.InnerException) { # Two levels into inner exceptions have network connection problem messages if ($_.Exception.InnerException.InnerException) { throw $_.Exception.InnerException.InnerException.Message } else { throw $_.Exception.InnerException.Message } } else { throw $_.Exception.Message } } return $result } function Get-EnvironmentRouteHostName { param ( [Parameter(Mandatory)] [string] $EnvironmentId, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $EnvironmentId = $EnvironmentId.Replace("-", "") if($Endpoint -eq [BAPEndpoint]::tip1 -or $Endpoint -eq [BAPEndpoint]::tip2 -or $Endpoint -eq [BAPEndpoint]::usgovhigh) { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 1, 1) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 1) } else { $shortEnvId = $EnvironmentId.Substring($EnvironmentId.Length - 2, 2) $remainingEnvId = $EnvironmentId.Substring(0, $EnvironmentId.Length - 2) } return "$remainingEnvId.$shortEnvId.environment.$baseUri" } function Get-TenantRouteHostName { param ( [Parameter(Mandatory)] [string] $TenantId, [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) $baseUri = Get-APIResourceUrl -Endpoint $Endpoint # Separate the scheme from the base URI $baseUri = $baseUri.Replace("https://", "").Trim('/') $TenantId = $TenantId.Replace("-", "") if($Endpoint -eq [BAPEndpoint]::tip1 -or $Endpoint -eq [BAPEndpoint]::tip2 -or $Endpoint -eq [BAPEndpoint]::usgovhigh) { $shortTenantId = $TenantId.Substring($TenantId.Length - 1, 1) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 1) } else { $shortTenantId = $TenantId.Substring($TenantId.Length - 2, 2) $remainingTenantId = $TenantId.Substring(0, $TenantId.Length - 2) } return "il-$remainingTenantId.$shortTenantId.tenant.$baseUri" } function Get-BAPEndpointUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://tip1.api.bap.microsoft.com/" } ([BAPEndpoint]::tip2) { return "https://tip2.api.bap.microsoft.com/" } ([BAPEndpoint]::prod) { return "https://api.bap.microsoft.com/" } ([BAPEndpoint]::usgovhigh) { return "https://high.api.bap.microsoft.us/" } ([BAPEndpoint]::dod) { return "https://api.bap.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://api.bap.partner.microsoftonline.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Get-BAPResourceUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://service.powerapps.com/" } ([BAPEndpoint]::tip2) { return "https://service.powerapps.com/" } ([BAPEndpoint]::prod) { return "https://service.powerapps.com/" } ([BAPEndpoint]::usgovhigh) { return "https://high.service.powerapps.us/" } ([BAPEndpoint]::dod) { return "https://service.apps.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://service.powerapps.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Get-APIResourceUrl { param ( [Parameter(Mandatory)] [BAPEndpoint] $Endpoint ) switch ($Endpoint) { ([BAPEndpoint]::tip1) { return "https://api.preprod.powerplatform.com/" } ([BAPEndpoint]::tip2) { return "https://api.test.powerplatform.com/" } ([BAPEndpoint]::prod) { return "https://api.powerplatform.com/" } ([BAPEndpoint]::usgovhigh) { return "https://api.high.powerplatform.microsoft.us/" } ([BAPEndpoint]::dod) { return "https://api.appsplatform.us/" } ([BAPEndpoint]::china) { return "https://api.powerplatform.partner.microsoftonline.cn/" } Default { throw "Unsupported BAP endpoint: $Endpoint" } } } function Send-RequestWithRetries { param ( [Parameter(Mandatory)] [int] $MaxRetries, [Parameter(Mandatory)] [int] $DelaySeconds, [Parameter(Mandatory)] [scriptblock] $RequestFactory ) $client = Get-HttpClient $attempt = 0 $retryAfterFound = $false while ($attempt -lt $MaxRetries) { try { $sleepSeconds = $DelaySeconds $result = Get-AsyncResult -Task $client.SendAsync((& $RequestFactory)) if(Test-Result -Result $result) { return $result } # Check for 503 Service Unavailable or 429 Too Many Requests with Retry-After header if ($result.StatusCode -eq 503 -or $result.StatusCode -eq 429) { if ($result.Headers.Contains("Retry-After")) { $retryAfterFound = $true $retryAfterValue = $result.Headers.GetValues("Retry-After") | Select-Object -First 1 # Retry-After can be either seconds (integer) or HTTP date if ($retryAfterValue -match '^\d+$') { $sleepSeconds = [int]$retryAfterValue } else { try { $retryAfterDate = [DateTime]::Parse($retryAfterValue) if ($retryAfterDate.Kind -ne [System.DateTimeKind]::Utc) { $retryAfterDate = $retryAfterDate.ToUniversalTime() } $sleepSeconds = [Math]::Max(1, [int]($retryAfterDate - [DateTime]::UtcNow).TotalSeconds) } catch { Write-Verbose "Could not parse Retry-After header value: $retryAfterValue. Using default delay." $sleepSeconds = $DelaySeconds } } Write-Host "The service is working on the request and has requested a retry. Waiting for $sleepSeconds seconds as indicated by the Retry-After header..." -ForegroundColor Yellow } } elseif($result.StatusCode -eq 502 -and $retryAfterFound) { # If we previously saw a Retry-After header, extend the wait time as the gateway might not have the route configured yet. $sleepSeconds = 60 Write-Host "The gateway has not updated the route information yet. Waiting for $sleepSeconds seconds before retrying..." -ForegroundColor Yellow } $attempt++ } catch { $attempt++ Write-Verbose "Exception on attempt $attempt : $($_.Exception.Message)" if($attempt -ge $MaxRetries) { throw "Request failed after $MaxRetries attempts. Last error: $($_.Exception.Message)" } } if ($attempt -ge $MaxRetries) { Write-Host "Request failed after $MaxRetries attempts." -ForegroundColor Red Assert-Result -Result $result } Write-Verbose "Request failed on attempt $attempt. Retrying in $sleepSeconds seconds..." Start-Sleep -Seconds $sleepSeconds } } function Test-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" return $false } } return $true } function Assert-Result { param ( [Parameter(Mandatory)] $Result ) if (-not($Result.IsSuccessStatusCode)) { $contentString = Get-AsyncResult -Task $Result.Content.ReadAsStringAsync() if ($contentString) { $errorMessage = $contentString.Trim('.') Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($errorMessage). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } else { Write-Verbose "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" throw "$(Get-LogDate): API Call returned $($Result.StatusCode): $($Result.ReasonPhrase). Correlation ID: $($($Result.Headers.GetValues("x-ms-correlation-id") | Select-Object -First 1))" } } } function ConvertFrom-JsonToClass { param ( [string]$Json, [Type]$ClassType ) $data = $Json | ConvertFrom-Json # Handle array types directly if ($ClassType.IsArray) { $elementType = $ClassType.GetElementType() $itemList = @() foreach ($item in $data) { $itemJson = $item | ConvertTo-Json -Depth 10 $itemList += ConvertFrom-JsonToClass -Json $itemJson -ClassType $elementType } return ,$itemList } # Handle primitive types and strings if ($ClassType.IsPrimitive -or $ClassType -eq [string]) { return ($data -as $ClassType) } # Handle common value types explicitly if ($ClassType -eq [DateTime]) { return [DateTime]::Parse($data) } if ($ClassType.FullName -eq 'System.Guid') { return [Guid]::Parse($data) } if ($ClassType.FullName -eq 'System.Decimal') { return [Decimal]::Parse($data) } if ($null -eq $data) { return $null } # Handle complex types $instance = [Activator]::CreateInstance($ClassType) foreach ($property in $ClassType.GetProperties()) { $name = $property.Name $type = Get-UnderlyingType $property.PropertyType if ($data.PSObject.Properties -and $data.PSObject.Properties[$name]) { if ($type -eq [hashtable] -or $type.FullName -eq 'System.Collections.Hashtable') { $instance.$name = ConvertTo-Hashtable $data.$name } elseif ($type.IsClass -and $type -ne [string]) { $nestedJson = $data.$name | ConvertTo-Json -Depth 10 $instance.$name = ConvertFrom-JsonToClass -Json $nestedJson -ClassType $type } elseif ($type.IsEnum){ $instance.$name = [System.Enum]::Parse($type, $data.$name) } else { $instance.$name = $data.$name } } } return $instance } function Get-UnderlyingType([type]$t) { if ($t.IsGenericType -and $t.GetGenericTypeDefinition().FullName -eq 'System.Nullable`1') { return $t.GetGenericArguments()[0] } return $t } function ConvertTo-Hashtable($obj) { if ($obj -is [hashtable]) { return $obj } $hash = @{} foreach ($property in $obj.PSObject.Properties) { $hash[$property.Name] = $property.Value } return $hash } # SIG # Begin signature block # MIIoKgYJKoZIhvcNAQcCoIIoGzCCKBcCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCCtMNsW9tI1TgxL # NSlp1hRspu0QM1ngnaDrueZvCEbapqCCDXYwggX0MIID3KADAgECAhMzAAAEhV6Z # 7A5ZL83XAAAAAASFMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjUwNjE5MTgyMTM3WhcNMjYwNjE3MTgyMTM3WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQDASkh1cpvuUqfbqxele7LCSHEamVNBfFE4uY1FkGsAdUF/vnjpE1dnAD9vMOqy # 5ZO49ILhP4jiP/P2Pn9ao+5TDtKmcQ+pZdzbG7t43yRXJC3nXvTGQroodPi9USQi # 9rI+0gwuXRKBII7L+k3kMkKLmFrsWUjzgXVCLYa6ZH7BCALAcJWZTwWPoiT4HpqQ # hJcYLB7pfetAVCeBEVZD8itKQ6QA5/LQR+9X6dlSj4Vxta4JnpxvgSrkjXCz+tlJ # 67ABZ551lw23RWU1uyfgCfEFhBfiyPR2WSjskPl9ap6qrf8fNQ1sGYun2p4JdXxe # UAKf1hVa/3TQXjvPTiRXCnJPAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQUuCZyGiCuLYE0aU7j5TFqY05kko0w # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwNTM1OTAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBACjmqAp2Ci4sTHZci+qk # tEAKsFk5HNVGKyWR2rFGXsd7cggZ04H5U4SV0fAL6fOE9dLvt4I7HBHLhpGdE5Uj # Ly4NxLTG2bDAkeAVmxmd2uKWVGKym1aarDxXfv3GCN4mRX+Pn4c+py3S/6Kkt5eS # DAIIsrzKw3Kh2SW1hCwXX/k1v4b+NH1Fjl+i/xPJspXCFuZB4aC5FLT5fgbRKqns # WeAdn8DsrYQhT3QXLt6Nv3/dMzv7G/Cdpbdcoul8FYl+t3dmXM+SIClC3l2ae0wO # lNrQ42yQEycuPU5OoqLT85jsZ7+4CaScfFINlO7l7Y7r/xauqHbSPQ1r3oIC+e71 # 5s2G3ClZa3y99aYx2lnXYe1srcrIx8NAXTViiypXVn9ZGmEkfNcfDiqGQwkml5z9 # nm3pWiBZ69adaBBbAFEjyJG4y0a76bel/4sDCVvaZzLM3TFbxVO9BQrjZRtbJZbk # C3XArpLqZSfx53SuYdddxPX8pvcqFuEu8wcUeD05t9xNbJ4TtdAECJlEi0vvBxlm # M5tzFXy2qZeqPMXHSQYqPgZ9jvScZ6NwznFD0+33kbzyhOSz/WuGbAu4cHZG8gKn # lQVT4uA2Diex9DMs2WHiokNknYlLoUeWXW1QrJLpqO82TLyKTbBM/oZHAdIc0kzo # STro9b3+vjn2809D0+SOOCVZMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGgowghoGAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAASFXpnsDlkvzdcAAAAABIUwDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEILNDhwhPHHZzmRFfdGz0/2bI # OpjKljtbixdcsgeJRT35MEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAo7on1NuloEJP7QcYqHF52YmL9spC+SOf2KuL2iMx0gGKM/HFFX05xo3E # IfMz91g9aAStJB8uRhTstw0JXcwgt51ATItSTzLVPfGbLa9xIxM9/+3z266YZNC6 # keSDfKqW6uCLgB4ioc++tp5gz3DYkdjRTSEg/r8HVo1BGly2bCzpoKZz3RD44nn2 # bvfxQyTmArbjsxaCMTpp2u3btP395pE6S7pW5VaokPNSD1dwNjiyCxnsQvAERP1f # RLBSPzelxBb5GL2CGACyY+lta0+yZy+l3Ndz+tZhHti4e0/jQxQ4KoN3k98Q/OtV # Bh7ENkdJVzVPvYjr6p21rfQZnek3+aGCF5QwgheQBgorBgEEAYI3AwMBMYIXgDCC # F3wGCSqGSIb3DQEHAqCCF20wghdpAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFSBgsq # hkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCBPqXTMIIJmPDA/zyWNd/7YQ9HGtQ+LHbQBpGnrZa+OBAIGaW+u4MLH # GBMyMDI2MDEyODAyNTAxOC42OTNaMASAAgH0oIHRpIHOMIHLMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1l # cmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046OTYwMC0w # NUUwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2Wg # ghHqMIIHIDCCBQigAwIBAgITMwAAAgTY4A4HlzJYmAABAAACBDANBgkqhkiG9w0B # AQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYD # VQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAeFw0yNTAxMzAxOTQy # NDdaFw0yNjA0MjIxOTQyNDdaMIHLMQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2Fz # aGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENv # cnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25z # MScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046OTYwMC0wNUUwLUQ5NDcxJTAjBgNV # BAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2UwggIiMA0GCSqGSIb3DQEB # AQUAA4ICDwAwggIKAoICAQDw3Sbcee2d66vkWGTIXhfGqqgQGxQXTnq44XlUvNzF # St7ELtO4B939jwZFX7DrRt/4fpzGNkFdGpc7EL5S86qKYv360eXjW+fIv1lAqDD3 # 1d/p8Ai9/AZz8M95zo0rDpK2csz9WAyR9FtUDx52VOs9qP3/pgpHvgUvD8s6/3KN # ITzms8QC1tJ3TMw1cRn9CZgVIYzw2iD/ZvOW0sbF/DRdgM8UdtxjFIKTXTaI/bJh # sQge3TwayKQ2j85RafFFVCR5/ChapkrBQWGwNFaPzpmYN46mPiOvUxriISC9nQ/G # rDXUJWzLDmchrmr2baABJevvw31UYlTlLZY6zUmjkgaRfpozd+Glq9TY2E3Dglr6 # PtTEKgPu2hM6v8NiU5nTvxhDnxdmcf8UN7goeVlELXbOm7j8yw1xM9IyyQuUMWko # rBaN/5r9g4lvYkMohRXEYB0tMaOPt0FmZmQMLBFpNRVnXBTa4haXvn1adKrvTz8V # lfnHxkH6riA/h2AlqYWhv0YULsEcHnaDWgqA29ry+jH097MpJ/FHGHxk+d9kH2L5 # aJPpAYuNmMNPB7FDTPWAx7Apjr/J5MhUx0i07gV2brAZ9J9RHi+fMPbS+Qm4AonC # 5iOTj+dKCttVRs+jKKuO63CLwqlljvnUCmuSavOX54IXOtKcFZkfDdOZ7cE4DioP # 1QIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFBp1dktAcGpW/Km6qm+vu4M1GaJfMB8G # A1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8GA1UdHwRYMFYwVKBSoFCG # Tmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3JsL01pY3Jvc29mdCUy # MFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBsBggrBgEFBQcBAQRgMF4w # XAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY2Vy # dHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIwMTAoMSkuY3J0MAwG # A1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUHAwgwDgYDVR0PAQH/BAQD # AgeAMA0GCSqGSIb3DQEBCwUAA4ICAQBecv6sRw2HTLMyUC1WJJ+FR+DgA9Jkv0lG # sIt4y69CmOj8R63oFbhSmcdpakxqNbr8v9dyTb4RDyNqtohiiXbtrXmQK5X7y/Q+ # +F0zMotTtTpTPvG3eltyV/LvO15mrLoNQ7W4VH58aLt030tORxs8VnAQQF5BmQQM # Oua+EQgH4f1F4uF6rl3EC17JBSJ0wjHSea/n0WYiHPR0qkz/NRAf8lSUUV0gbIMa # wGIjn7+RKyCr+8l1xdNkK/F0UYuX3hG0nE+9Wc0L4A/enluUN7Pa9vOV6Vi3BOJS # T0RY/ax7iZ45leM8kqCw7BFPcTIkWzxpjr2nCtirnkw7OBQ6FNgwIuAvYNTU7r60 # W421YFOL5pTsMZcNDOOsA01xv7ymCF6zknMGpRHuw0Rb2BAJC9quU7CXWbMbAJLd # Z6XINKariSmCX3/MLdzcW5XOycK0QhoRNRf4WqXRshEBaY2ymJvHO48oSSY/kpuY # vBS3ljAAuLN7Rp8jWS7t916paGeE7prmrP9FJsoy1LFKmFnW+vg43ANhByuAEXq9 # Cay5o7K2H5NFnR5wj/SLRKwK1iyUX926i1TEviEiAh/PVyJbAD4koipig28p/6HD # uiYOZ0wUkm/a5W8orIjoOdU3XsJ4i08CfNp5I73CsvB5QPYMcLpF9NO/1LvoQAw3 # UPdL55M5HTCCB3EwggVZoAMCAQICEzMAAAAVxedrngKbSZkAAAAAABUwDQYJKoZI # hvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAw # DgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24x # MjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAy # MDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIyNVowfDELMAkGA1UEBhMC # VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV # BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp # bWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC # AQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXIyjVX9gF/bErg4r25Phdg # M/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjoYH1qUoNEt6aORmsHFPPF # dvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1yaa8dq6z2Nr41JmTamDu6 # GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v3byNpOORj7I5LFGc6XBp # Dco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pGve2krnopN6zL64NF50Zu # yjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viSkR4dPf0gz3N9QZpGdc3E # XzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYrbqgSUei/BQOj0XOmTTd0 # lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlMjgK8QmguEOqEUUbi0b1q # GFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSLW6CmgyFdXzB0kZSU2LlQ # +QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AFemzFER1y7435UsSFF5PA # PBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIurQIDAQABo4IB3TCCAdkw # EgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIEFgQUKqdS/mTEmr6CkTxG # NSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMFwGA1UdIARV # MFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0dHA6Ly93d3cubWlj # cm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0bTATBgNVHSUEDDAK # BggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMC # AYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV9lbLj+iiXGJo0T2UkFvX # zpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20v # cGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAxMC0wNi0yMy5jcmwwWgYI # KwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIzLmNydDANBgkqhkiG # 9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv6lwUtj5OR2R4sQaTlz0x # M7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZnOlNN3Zi6th542DYunKmC # VgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1bSNU5HhTdSRXud2f8449 # xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4rPf5KYnDvBewVIVCs/wM # nosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU6ZGyqVvfSaN0DLzskYDS # PeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDFNLB62FD+CljdQDzHVG2d # Y3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/HltEAY5aGZFrDZ+kKNxn # GSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdUCbFpAUR+fKFhbHP+Crvs # QWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKiexcdFYmNcP7ntdAoGokL # jzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTmdHRbatGePu1+oDEzfbzL # 6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZqELQdVTNYs6FwZvKhggNN # MIICNQIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hp # bmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jw # b3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJpY2EgT3BlcmF0aW9uczEn # MCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOjk2MDAtMDVFMC1EOTQ3MSUwIwYDVQQD # ExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMKAQEwBwYFKw4DAhoDFQC6 # PYHRw9+9SH+1pwy6qzVG3k9lbqCBgzCBgKR+MHwxCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1w # IFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA7SNmjTAiGA8yMDI2MDEyNzE2MzAw # NVoYDzIwMjYwMTI4MTYzMDA1WjB0MDoGCisGAQQBhFkKBAExLDAqMAoCBQDtI2aN # AgEAMAcCAQACAiXjMAcCAQACAhHwMAoCBQDtJLgNAgEAMDYGCisGAQQBhFkKBAIx # KDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSChCjAIAgEAAgMBhqAwDQYJKoZI # hvcNAQELBQADggEBACI/fUwLbDzH5e27AtYTQ6QIFMDeSyPnPHh/DxY+EgfmGCWv # eBIjxqU8D8bgIohZ1X4dFsHwiqh6t5Zj/ckkj4YGOh3GnxP1lqoJ45PwmFSWeynq # IVnZ7FfAblXIjQ6NLRmvo0eT0AsKehQCdLYr7UkLtrHn075T/JMxIn7oP0w+9/eR # Fi+1o3dIvi8yCtMGtXoXk2Hso8j2KoofyoDb/Zwsww81Wiiv+J5in8ruvpo+Ecde # HDINbK/wxkEcCCFwU9WfT7iKbRDOcggUP8/kHlppx828bG2HZ7zYFswDxdg3Rjg2 # 7l9m+1qpkrCBkr16ispE96iEwV+85eLEsxzhBGIxggQNMIIECQIBATCBkzB8MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYDVQQDEx1NaWNy # b3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAAAgTY4A4HlzJYmAABAAACBDAN # BglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0GCyqGSIb3DQEJEAEEMC8G # CSqGSIb3DQEJBDEiBCCXZX0J910teXllVxCt6zRDcjsyKAm9ckG5G+Smfh6RGDCB # +gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIPnteGX9Wwq8VdJM6mjfx1GEJsu7 # /6kU6l0SS5rcebn+MIGYMIGApH4wfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh # c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD # b3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIw # MTACEzMAAAIE2OAOB5cyWJgAAQAAAgQwIgQggLn2g0KaFd94HJw/KrhIPQr95brC # 60ON72oZ6qfKN9wwDQYJKoZIhvcNAQELBQAEggIALz7eKkU0pGrePEw4SqpUaS0e # sGvwFlQCiuvXzocwIpP1hIXdrkQMucdJYf7ootyfqCDAvKDwWEe/qMVyn410K+rv # 2o2C2njbjwvlrwbnq0rBJDFFrpQ3hTLeqvwvgKA2Pp3HLctK58kpwrvhhivRSfkh # QWBppriBb+1HuDrzZQjSJ6m8nRp2J8s9G4oRfFesdm9WGjbC+eZJ8YC+xliFnjNO # MZMkTDIW4avzg4EnlEnjxcQfZObvcrzLw7Gv9GGxIyilSeAoaqDQLQuSpzErNLai # YOMNZC1R4hl4OmMHQH7g5Qmw8q4X2ujPAP+GMJEH4Bz6rqF8sWdwQ4i9hOD9z4vR # hcwY+Z88vJhgRPAMOjWV7ZKJwqeS7W28fxwZ3fEnfEWPtG750CMaq3bpPCr7Xfp3 # L/jBsizU5FA4wwub7aF+jYe+/A7RD0mCHjGnYnk5QFvYJXg1l6/JjNL5Jd8/1naK # uILdXa785xkwdUaDrAXn90f6JbTsvIyBxpvGgdrqOg7a5ZFFQsFRYbWA03KXClb4 # L7wUEZ5VY0C6RZOMo+oNoFiosnAuevOKJEqSdioxQrugi0mumiBN6cgCx5fzBz6G # KxzlxDaAuI0SwSN11YQGhayY06DclYLPV5E+pZ0+7SXB8/ZYtXXveelSVW6CV1Vv # wjshGoaZn7Vj9zK5TSM= # SIG # End signature block |