UNPKG

@pnp/cli-microsoft365

Version:

Manage Microsoft 365 and SharePoint Framework projects on any platform

99 lines 4.15 kB
import { z } from 'zod'; import { globalOptionsZod } from '../../../../Command.js'; import request from '../../../../request.js'; import { entraGroup } from '../../../../utils/entraGroup.js'; import { entraUser } from '../../../../utils/entraUser.js'; import { formatting } from '../../../../utils/formatting.js'; import { validation } from '../../../../utils/validation.js'; import PowerAutomateCommand from '../../../base/PowerAutomateCommand.js'; import commands from '../../commands.js'; export const options = z.strictObject({ ...globalOptionsZod.shape, flowName: z.uuid(), environmentName: z.string().alias('e'), roleName: z.enum(['CanView', 'CanEdit']), userId: z.string().refine(id => validation.isValidGuid(id), { error: e => `'${e.input}' is not a valid GUID.` }).optional(), userName: z.string().refine(name => validation.isValidUserPrincipalName(name), { error: e => `'${e.input}' is not a valid userName.` }).optional(), groupId: z.string().refine(id => validation.isValidGuid(id), { error: e => `'${e.input}' is not a valid GUID.` }).optional(), groupName: z.string().optional(), asAdmin: z.boolean().optional() }); class FlowOwnerEnsureCommand extends PowerAutomateCommand { get name() { return commands.OWNER_ENSURE; } get description() { return 'Assigns/updates permissions to a Power Automate flow'; } get schema() { return options; } getRefinedSchema(schema) { return schema.refine(options => [options.userId, options.userName, options.groupId, options.groupName].filter(x => x !== undefined).length === 1, { error: 'Specify either userId, userName, groupId, or groupName, but not multiple.', params: { customCode: 'optionSet', options: ['userId', 'userName', 'groupId', 'groupName'] } }); } async commandAction(logger, args) { try { if (this.verbose) { await logger.logToStderr(`Assigning permissions for ${args.options.userId || args.options.userName || args.options.groupId || args.options.groupName} with permissions ${args.options.roleName} to Power Automate flow ${args.options.flowName}`); } let id = ''; if (args.options.userId) { id = args.options.userId; } else if (args.options.userName) { id = await entraUser.getUserIdByUpn(args.options.userName); } else if (args.options.groupId) { id = args.options.groupId; } else { id = await entraGroup.getGroupIdByDisplayName(args.options.groupName); } let type; if (args.options.userId || args.options.userName) { type = 'User'; } else { type = 'Group'; } const requestOptions = { url: `${PowerAutomateCommand.resource}/providers/Microsoft.ProcessSimple/${args.options.asAdmin ? 'scopes/admin/' : ''}environments/${formatting.encodeQueryParameter(args.options.environmentName)}/flows/${formatting.encodeQueryParameter(args.options.flowName)}/modifyPermissions?api-version=2016-11-01`, headers: { accept: 'application/json' }, data: { put: [ { properties: { principal: { id: id, type: type }, roleName: args.options.roleName } } ] }, responseType: 'json' }; await request.post(requestOptions); } catch (err) { this.handleRejectedODataJsonPromise(err); } } } export default new FlowOwnerEnsureCommand(); //# sourceMappingURL=owner-ensure.js.map