functions/oAuth/Get-EXRAccessTokenUserAndPass.ps1
|
function Get-EXRAccessTokenUserAndPass { [CmdletBinding()] param ( [Parameter(Position = 0, Mandatory = $true)] [string] $MailboxName, [Parameter(Position = 1, Mandatory = $false)] [string] $ClientId, [Parameter(Position = 2, Mandatory = $false)] [string] $ResourceURL, [Parameter(Position = 3, Mandatory = $true)] [System.Management.Automation.PSCredential] $Credentials, [Parameter(Position = 4, Mandatory = $false)] [switch] $Beta, [Parameter(Position = 7, Mandatory = $false)] [switch] $CacheCredentials, [Parameter(Position = 8, Mandatory = $false)] [string] $TenantId ) Begin { Add-Type -AssemblyName System.Web $HttpClient = Get-HTTPClient -MailboxName $MailboxName $AppSetting = Get-AppSettings if ($ClientId -eq $null) { $ClientId = $AppSetting.ClientId } if ([String]::IsNullOrEmpty($ResourceURL)) { $ResourceURL = $AppSetting.ResourceURL } $UserName = $Credentials.UserName.ToString() $password = $Credentials.GetNetworkCredential().password.ToString() $AuthorizationPostRequest = "resource=https%3A%2F%2F$ResourceURL&client_id=$ClientId&grant_type=password&username=$username&password=$password" $content = New-Object System.Net.Http.StringContent($AuthorizationPostRequest, [System.Text.Encoding]::UTF8, "application/x-www-form-urlencoded") if([String]::IsNullOrEmpty($TenantId)){ $ClientReesult = $HttpClient.PostAsync([Uri]("https://login.windows.net/common/oauth2/token"), $content) }else{ $ClientReesult = $HttpClient.PostAsync([Uri]("https://login.windows.net/$TenantId/oauth2/token"), $content) } $JsonObject = ConvertFrom-Json -InputObject $ClientReesult.Result.Content.ReadAsStringAsync().Result if ([bool]($JsonObject.PSobject.Properties.name -match "refresh_token")) { $JsonObject.refresh_token = (Get-ProtectedToken -PlainToken $JsonObject.refresh_token) } if ([bool]($JsonObject.PSobject.Properties.name -match "access_token")) { $JsonObject.access_token = (Get-ProtectedToken -PlainToken $JsonObject.access_token) } if ([bool]($JsonObject.PSobject.Properties.name -match "id_token")) { $JsonObject.id_token = (Get-ProtectedToken -PlainToken $JsonObject.id_token) } Add-Member -InputObject $JsonObject -NotePropertyName clientid -NotePropertyValue $ClientId Add-Member -InputObject $JsonObject -NotePropertyName redirectUrl -NotePropertyValue $redirectUrl Add-Member -InputObject $JsonObject -NotePropertyName mailbox -NotePropertyValue $MailboxName if(![String]::IsNullOrEmpty($TenantId)){ Add-Member -InputObject $JsonObject -NotePropertyName TenantId -NotePropertyValue $TenantId } if ($Beta.IsPresent) { Add-Member -InputObject $JsonObject -NotePropertyName Beta -NotePropertyValue $True } if($CacheCredentials.IsPresent){ if(!$Script:TokenCache.ContainsKey($ResourceURL)){ $ResourceTokens = @{} $Script:TokenCache.Add($ResourceURL,$ResourceTokens) } Add-Member -InputObject $JsonObject -NotePropertyName Cached -NotePropertyValue $true $HostDomain = (New-Object system.net.Mail.MailAddress($MailboxName)).Host.ToLower() if(!$Script:TokenCache[$ResourceURL].ContainsKey($HostDomain)){ $Script:TokenCache[$ResourceURL].Add($HostDomain,$JsonObject) } else{ $Script:TokenCache[$ResourceURL][$HostDomain] = $JsonObject } write-host ("Cached Token for " + $ResourceURL + " " + $HostDomain) } return $JsonObject } } |