@pnp/cli-microsoft365/dist/m365/entra/commands/user/user-session-revoke.js

Manage Microsoft 365 and SharePoint Framework projects on any platform

import { z } from 'zod';
import { globalOptionsZod } from '../../../../Command.js';
import { zod } from '../../../../utils/zod.js';
import GraphCommand from '../../../base/GraphCommand.js';
import commands from '../../commands.js';
import { validation } from '../../../../utils/validation.js';
import request from '../../../../request.js';
import { cli } from '../../../../cli/cli.js';
import { formatting } from '../../../../utils/formatting.js';
const options = globalOptionsZod
    .extend({
    userId: zod.alias('i', z.string().refine(id => validation.isValidGuid(id), id => ({
        message: `'${id}' is not a valid GUID.`
    })).optional()),
    userName: zod.alias('n', z.string().refine(name => validation.isValidUserPrincipalName(name), name => ({
        message: `'${name}' is not a valid UPN.`
    })).optional()),
    force: zod.alias('f', z.boolean().optional())
})
    .strict();
class EntraUserSessionRevokeCommand extends GraphCommand {
    get name() {
        return commands.USER_SESSION_REVOKE;
    }
    get description() {
        return 'Revokes all sign-in sessions for a given user';
    }
    get schema() {
        return options;
    }
    getRefinedSchema(schema) {
        return schema
            .refine(options => [options.userId, options.userName].filter(o => o !== undefined).length === 1, {
            message: `Specify either 'userId' or 'userName'.`
        });
    }
    async commandAction(logger, args) {
        const revokeUserSessions = async () => {
            try {
                const userIdentifier = args.options.userId ?? args.options.userName;
                if (this.verbose) {
                    await logger.logToStderr(`Invalidating all the refresh tokens for user ${userIdentifier}...`);
                }
                const requestOptions = {
                    url: `${this.resource}/v1.0/users('${formatting.encodeQueryParameter(userIdentifier)}')/revokeSignInSessions`,
                    headers: {
                        accept: 'application/json;odata.metadata=none'
                    },
                    responseType: 'json',
                    data: {}
                };
                await request.post(requestOptions);
            }
            catch (err) {
                this.handleRejectedODataJsonPromise(err);
            }
        };
        if (args.options.force) {
            await revokeUserSessions();
        }
        else {
            const result = await cli.promptForConfirmation({ message: `This will revoke all sessions for the user '${args.options.userId || args.options.userName}', requiring the user to re-sign in from all devices. Are you sure?` });
            if (result) {
                await revokeUserSessions();
            }
        }
    }
}
export default new EntraUserSessionRevokeCommand();
//# sourceMappingURL=user-session-revoke.js.map