Sharepoint functions

JohnDuprey · JohnDuprey · commit b323911fc4b4 · 2024-07-05T08:46:31.000-04:00
diff --git a/Modules/CIPPCore/Public/Get-CIPPSPOTenant.ps1 b/Modules/CIPPCore/Public/Get-CIPPSPOTenant.ps1
@@ -0,0 +1,27 @@
+function Get-CIPPSPOTenant {
+    [CmdletBinding()]
+    Param(
+        [Parameter(Mandatory = $true)]
+        [string]$TenantFilter,
+        [string]$SharepointPrefix
+    )
+
+    if (!$SharepointPrefix) {
+        # get sharepoint admin site
+        $tenantName = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/sites/root' -asApp $true -tenantid $TenantFilter).id.Split('.')[0]
+    } else {
+        $tenantName = $SharepointPrefix
+    }
+    $AdminUrl = "https://$($tenantName)-admin.sharepoint.com"
+
+    # Query tenant settings
+    $XML = @'
+<Request AddExpandoFieldTypeSuffix="true" SchemaVersion="15.0.0.0" LibraryVersion="16.0.0.0" ApplicationName="SharePoint Online PowerShell (16.0.24908.0)" xmlns="http://schemas.microsoft.com/sharepoint/clientquery/2009"><Actions><ObjectPath Id="106" ObjectPathId="105" /><Query Id="107" ObjectPathId="105"><Query SelectAllProperties="true"><Properties /></Query></Query></Actions><ObjectPaths><Constructor Id="105" TypeId="{268004ae-ef6b-4e9b-8425-127220d84719}" /></ObjectPaths></Request>
+'@
+    $AdditionalHeaders = @{
+        'Accept' = 'application/json;odata=verbose'
+    }
+    $Results = New-GraphPostRequest -scope "$AdminURL/.default" -tenantid $TenantFilter -Uri "$AdminURL/_vti_bin/client.svc/ProcessQuery" -Type POST -Body $XML -ContentType 'text/xml' -AddedHeaders $AdditionalHeaders
+
+    $Results | Select-Object -Last 1 *, @{n = 'SharepointPrefix'; e = { $tenantName } }, @{n = 'TenantFilter'; e = { $TenantFilter } }
+}
diff --git a/Modules/CIPPCore/Public/New-CIPPSharepointSite.ps1 b/Modules/CIPPCore/Public/New-CIPPSharepointSite.ps1
@@ -0,0 +1,145 @@
+function New-CIPPSharepointSite {
+    <#
+    .SYNOPSIS
+    Create a new SharePoint site
+
+    .DESCRIPTION
+    Create a new SharePoint site using the Modern REST API
+
+    .PARAMETER SiteName
+    The name of the site
+
+    .PARAMETER SiteDescription
+    The description of the site
+
+    .PARAMETER SiteOwner
+    The username of the site owner
+
+    .PARAMETER TemplateName
+    The template to use for the site. Default is Communication
+
+    .PARAMETER SiteDesign
+    The design to use for the site. Default is Topic
+
+    .PARAMETER WebTemplateExtensionId
+    The web template extension ID to use
+
+    .PARAMETER SensitivityLabel
+    The Purview sensitivity label to apply to the site
+
+    .PARAMETER TenantFilter
+    The tenant associated with the site
+
+    #>
+    [CmdletBinding(SupportsShouldProcess = $true)]
+    Param(
+        [Parameter(Mandatory = $true)]
+        [string]$SiteName,
+
+        [Parameter(Mandatory = $true)]
+        [string]$SiteDescription,
+
+        [Parameter(Mandatory = $true)]
+        [string]$SiteOwner,
+
+        [Parameter(Mandatory = $false)]
+        [ValidateSet('Communication', 'Team')]
+        [string]$TemplateName = 'Communication',
+
+        [Parameter(Mandatory = $false)]
+        [ValidateSet('Topic', 'Showcase', 'Blank', 'Custom')]
+        [string]$SiteDesign = 'Showcase',
+
+        [Parameter(Mandatory = $false)]
+        [ValidatePattern('(\{|\()?[A-Za-z0-9]{4}([A-Za-z0-9]{4}\-?){4}[A-Za-z0-9]{12}(\}|\()?')]
+        [string]$WebTemplateExtensionId,
+
+        [Parameter(Mandatory = $false)]
+        [ValidatePattern('(\{|\()?[A-Za-z0-9]{4}([A-Za-z0-9]{4}\-?){4}[A-Za-z0-9]{12}(\}|\()?')]
+        [string]$SensitivityLabel,
+
+        [string]$Classification,
+
+        [Parameter(Mandatory = $true)]
+        [string]$TenantFilter
+    )
+    $tenantName = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/sites/root' -asApp $true -tenantid $TenantFilter).id.Split('.')[0]
+    $AdminUrl = "https://$($tenantName)-admin.sharepoint.com"
+    $SitePath = $SiteName -replace ' ' -replace '[^A-Za-z0-9-]'
+    $SiteUrl = "https://$tenantName.sharepoint.com/sites/$SitePath"
+
+
+
+
+    switch ($TemplateName) {
+        'Communication' {
+            $WebTemplate = 'SITEPAGEPUBLISHING#0'
+        }
+        'Team' {
+            $WebTemplate = 'STS#0'
+        }
+    }
+
+    $WebTemplateExtensionId = '00000000-0000-0000-0000-000000000000'
+    $DefaultSiteDesignIds = @( '96c933ac-3698-44c7-9f4a-5fd17d71af9e', '6142d2a0-63a5-4ba0-aede-d9fefca2c767', 'f6cc5403-0d63-442e-96c0-285923709ffc')
+
+    switch ($SiteDesign) {
+        'Topic' {
+            $SiteDesignId = '96c933ac-3698-44c7-9f4a-5fd17d71af9e'
+        }
+        'Showcase' {
+            $SiteDesignId = '6142d2a0-63a5-4ba0-aede-d9fefca2c767'
+        }
+        'Blank' {
+            $SiteDesignId = 'f6cc5403-0d63-442e-96c0-285923709ffc'
+        }
+        'Custom' {
+            if ($WebTemplateExtensionId -match '^[0-9a-f]{8}-([0-9a-f]{4}-){3}[0-9a-f]{12}$') {
+                if ($WebTemplateExtensionId -notin $DefaultSiteDesignIds) {
+                    $WebTemplateExtensionId = $SiteDesign
+                    $SiteDesignId = '00000000-0000-0000-0000-000000000000'
+                } else {
+                    $SiteDesignId = $WebTemplateExtensionId
+                }
+            } else {
+                $SiteDesignId = '96c933ac-3698-44c7-9f4a-5fd17d71af9e'
+            }
+        }
+    }
+
+    # Create the request body
+    $Request = @{
+        Title                  = $SiteName
+        Url                    = $SiteUrl
+        Lcid                   = 1033
+        ShareByEmailEnabled    = $false
+        Description            = $SiteDescription
+        WebTemplate            = $WebTemplate
+        SiteDesignId           = $SiteDesignId
+        Owner                  = $SiteOwner
+        WebTemplateExtensionId = $WebTemplateExtensionId
+    }
+
+    # Set the sensitivity label if provided
+    if ($SensitivityLabel) {
+        $Request.SensitivityLabel = $SensitivityLabel
+    }
+    if ($Classification) {
+        $Request.Classification = $Classification
+    }
+
+    Write-Verbose ($Request | ConvertTo-Json -Compress -Depth 10)
+
+    $body = @{
+        request = $Request
+    }
+
+    # Create the site
+    if ($PSCmdlet.ShouldProcess($SiteName, 'Create new SharePoint site')) {
+        $AddedHeaders = @{
+            'accept'        = 'application/json;odata.metadata=none'
+            'odata-version' = '4.0'
+        }
+        New-GraphPostRequest -scope "$AdminUrl/.default" -uri "$AdminUrl/_api/SPSiteManager/create" -Body ($body | ConvertTo-Json -Compress -Depth 10) -tenantid $TenantFilter -ContentType 'application/json' -AddedHeaders $AddedHeaders
+    }
+}
diff --git a/Modules/CIPPCore/Public/SAMManifest.json b/Modules/CIPPCore/Public/SAMManifest.json
@@ -12,11 +12,11 @@
   },
   "requiredResourceAccess": [
     {
-			"resourceAppId": "aeb86249-8ea3-49e2-900b-54cc8e308f85",
-			"resourceAccess": [
-				{ "id": "fc946a4f-bc4d-413b-a090-b2c86113ec4f", "type": "Scope" }
-			]
-		},
+      "resourceAppId": "aeb86249-8ea3-49e2-900b-54cc8e308f85",
+      "resourceAccess": [
+        { "id": "fc946a4f-bc4d-413b-a090-b2c86113ec4f", "type": "Scope" }
+      ]
+    },
     {
       "resourceAppId": "fa3d9a0c-3fb0-42cc-9193-47c7ecd2edbd",
       "resourceAccess": [
@@ -151,7 +151,8 @@
         { "id": "b6890674-9dd5-4e42-bb15-5af07f541ae1", "type": "Role" },
         { "id": "9e4862a5-b68f-479e-848a-4e07e25c9916", "type": "Scope" },
         { "id": "bb6f654c-d7fd-4ae3-85c3-fc380934f515", "type": "Scope" },
-        { "id": "e0a7cdbb-08b0-4697-8264-0069786e9674", "type": "Scope" }
+        { "id": "e0a7cdbb-08b0-4697-8264-0069786e9674", "type": "Scope" },
+        { "id": "19da66cb-0fb0-4390-b071-ebc76a349482", "type": "Role" }
       ]
     },
     {
diff --git a/Modules/CIPPCore/Public/Set-CIPPSPOTenant.ps1 b/Modules/CIPPCore/Public/Set-CIPPSPOTenant.ps1
@@ -0,0 +1,88 @@
+function Set-CIPPSPOTenant {
+    <#
+    .SYNOPSIS
+    Set Sharepoint Tenant properties
+
+    .DESCRIPTION
+    Set Sharepoint Tenant properties via SPO API
+
+    .PARAMETER TenantFilter
+    Tenant to apply settings to
+
+    .PARAMETER Identity
+    Tenant Identity (Get from Get-CIPPSPOTenant)
+
+    .PARAMETER Properties
+    Hashtable of tenant properties to change
+
+    .PARAMETER SharepointPrefix
+    Prefix for the sharepoint tenant
+
+    .EXAMPLE
+    $Properties = @{
+        'EnableAIPIntegration' = $true
+    }
+    Get-CippSPOTenant -TenantFilter 'contoso.onmicrosoft.com' | Set-CIPPSPOTenant -Properties $Properties
+
+    .FUNCTIONALITY
+    Internal
+
+    #>
+    [CmdletBinding(SupportsShouldProcess = $true)]
+    Param(
+        [Parameter(ValueFromPipelineByPropertyName = $true, Mandatory = $true)]
+        [string]$TenantFilter,
+        [Parameter(ValueFromPipelineByPropertyName = $true, Mandatory = $true)]
+        [Alias('_ObjectIdentity_')]
+        [string]$Identity,
+        [Parameter(Mandatory = $true)]
+        [hashtable]$Properties,
+        [Parameter(ValueFromPipelineByPropertyName = $true)]
+        [string]$SharepointPrefix
+    )
+
+    process {
+        if (!$SharepointPrefix) {
+            # get sharepoint admin site
+            $tenantName = (New-GraphGetRequest -uri 'https://graph.microsoft.com/beta/sites/root' -asApp $true -tenantid $TenantFilter).id.Split('.')[0]
+        } else {
+            $tenantName = $SharepointPrefix
+        }
+        $Identity = $Identity -replace "`n", '&#xA;'
+        $AdminUrl = "https://$($tenantName)-admin.sharepoint.com"
+        $AllowedTypes = @('Boolean', 'String', 'Int32')
+        $SetProperty = [System.Collections.Generic.List[string]]::new()
+        $x = 114
+        foreach ($Property in $Properties.Keys) {
+            # Get property type
+            $PropertyType = $Properties[$Property].GetType().Name
+            if ($PropertyType -in $AllowedTypes) {
+                if ($PropertyType -eq 'Boolean') { $Properties[$Property] = $Properties[$Property].ToString().ToLower() }
+                $xml = @"
+    <SetProperty Id="$x" ObjectPathId="110" Name="$Property">
+        <Parameter Type="Boolean">$($Properties[$Property])</Parameter>
+    </SetProperty>
+"@
+                $SetProperty.Add($xml)
+                $x++
+            }
+        }
+
+        if (($SetProperty | Measure-Object).Count -eq 0) {
+            Write-Error 'No valid properties found'
+            return
+        }
+
+        # Query tenant settings
+        $XML = @"
+    <Request AddExpandoFieldTypeSuffix="true" SchemaVersion="15.0.0.0" LibraryVersion="16.0.0.0" ApplicationName="SharePoint Online PowerShell (16.0.24908.0)" xmlns="http://schemas.microsoft.com/sharepoint/clientquery/2009"><Actions>$($SetProperty -join '')</Actions><ObjectPaths><Identity Id="110" Name="$Identity" /></ObjectPaths></Request>
+"@
+        $AdditionalHeaders = @{
+            'Accept' = 'application/json;odata=verbose'
+        }
+
+        if ($PSCmdlet.ShouldProcess(($Properties.Keys -join ', '), 'Set Tenant Properties')) {
+            New-GraphPostRequest -scope "$AdminURL/.default" -tenantid $TenantFilter -Uri "$AdminURL/_vti_bin/client.svc/ProcessQuery" -Type POST -Body $XML -ContentType 'text/xml' -AddedHeaders $AdditionalHeaders
+        }
+    }
+}
