@pnp/cli-microsoft365 10.0.0-beta.48e9f7d → 10.0.0-beta.58f28f9

package/dist/m365/entra/commands/app/app-add.js

@@ -9,10 +9,10 @@ import { v4 } from 'uuid';
 import auth from '../../../../Auth.js';
 import request from '../../../../request.js';
 import { accessToken } from '../../../../utils/accessToken.js';
-import { odata } from '../../../../utils/odata.js';
+import { entraApp } from '../../../../utils/entraApp.js';
 import GraphCommand from '../../../base/GraphCommand.js';
-import commands from '../../commands.js';
 import aadCommands from '../../aadCommands.js';
+import commands from '../../commands.js';
 class EntraAppAddCommand extends GraphCommand {
     get name() {
         return commands.APP_ADD;
@@ -27,7 +27,6 @@ class EntraAppAddCommand extends GraphCommand {
         super();
         _EntraAppAddCommand_instances.add(this);
         this.appName = '';
-        this.appPermissions = [];
         __classPrivateFieldGet(this, _EntraAppAddCommand_instances, "m", _EntraAppAddCommand_initTelemetry).call(this);
         __classPrivateFieldGet(this, _EntraAppAddCommand_instances, "m", _EntraAppAddCommand_initOptions).call(this);
         __classPrivateFieldGet(this, _EntraAppAddCommand_instances, "m", _EntraAppAddCommand_initValidators).call(this);
@@ -35,16 +34,38 @@ class EntraAppAddCommand extends GraphCommand {
     }
     async commandAction(logger, args) {
         await this.showDeprecationWarning(logger, aadCommands.APP_ADD, commands.APP_ADD);
+        if (!args.options.name && this.manifest) {
+            args.options.name = this.manifest.name;
+        }
+        this.appName = args.options.name;
         try {
-            const apis = await this.resolveApis(args, logger);
-            let appInfo = await this.createAppRegistration(args, apis, logger);
+            const apis = await entraApp.resolveApis({
+                options: args.options,
+                manifest: this.manifest,
+                logger,
+                verbose: this.verbose,
+                debug: this.debug
+            });
+            let appInfo = await entraApp.createAppRegistration({
+                options: args.options,
+                apis,
+                logger,
+                verbose: this.verbose,
+                debug: this.debug
+            });
             // based on the assumption that we're adding Microsoft Entra app to the current
             // directory. If we in the future extend the command with allowing
             // users to create Microsoft Entra app in a different directory, we'll need to
             // adjust this
             appInfo.tenantId = accessToken.getTenantIdFromAccessToken(auth.connection.accessTokens[auth.defaultResource].accessToken);
             appInfo = await this.updateAppFromManifest(args, appInfo);
-            appInfo = await this.grantAdminConsent(appInfo, args.options.grantAdminConsent, logger);
+            appInfo = await entraApp.grantAdminConsent({
+                appInfo,
+                appPermissions: entraApp.appPermissions,
+                adminConsent: args.options.grantAdminConsent,
+                logger,
+                debug: this.debug
+            });
             appInfo = await this.configureUri(args, appInfo, logger);
             appInfo = await this.configureSecret(args, appInfo, logger);
             const _appInfo = await this.saveAppInfo(args, appInfo, logger);
@@ -62,128 +83,45 @@ class EntraAppAddCommand extends GraphCommand {
             this.handleRejectedODataJsonPromise(err);
         }
     }
-    async createAppRegistration(args, apis, logger) {
-        const applicationInfo = {
-            displayName: args.options.name,
-            signInAudience: args.options.multitenant ? 'AzureADMultipleOrgs' : 'AzureADMyOrg'
-        };
-        if (!applicationInfo.displayName && this.manifest) {
-            applicationInfo.displayName = this.manifest.name;
-        }
-        this.appName = applicationInfo.displayName;
-        if (apis.length > 0) {
-            applicationInfo.requiredResourceAccess = apis;
-        }
-        if (args.options.redirectUris) {
-            applicationInfo[args.options.platform] = {
-                redirectUris: args.options.redirectUris.split(',').map(u => u.trim())
-            };
-        }
-        if (args.options.implicitFlow) {
-            if (!applicationInfo.web) {
-                applicationInfo.web = {};
-            }
-            applicationInfo.web.implicitGrantSettings = {
-                enableAccessTokenIssuance: true,
-                enableIdTokenIssuance: true
-            };
-        }
-        if (args.options.certificateFile || args.options.certificateBase64Encoded) {
-            const certificateBase64Encoded = await this.getCertificateBase64Encoded(args, logger);
-            const newKeyCredential = {
-                type: "AsymmetricX509Cert",
-                usage: "Verify",
-                displayName: args.options.certificateDisplayName,
-                key: certificateBase64Encoded
-            };
-            applicationInfo.keyCredentials = [newKeyCredential];
-        }
-        if (args.options.allowPublicClientFlows) {
-            applicationInfo.isFallbackPublicClient = true;
+    async configureSecret(args, appInfo, logger) {
+        if (!args.options.withSecret || (appInfo.secrets && appInfo.secrets.length > 0)) {
+            return appInfo;
         }
         if (this.verbose) {
-            await logger.logToStderr(`Creating Microsoft Entra app registration...`);
-        }
-        const createApplicationRequestOptions = {
-            url: `${this.resource}/v1.0/myorganization/applications`,
-            headers: {
-                accept: 'application/json;odata.metadata=none'
-            },
-            responseType: 'json',
-            data: applicationInfo
-        };
-        return request.post(createApplicationRequestOptions);
-    }
-    async grantAdminConsent(appInfo, adminConsent, logger) {
-        if (!adminConsent || this.appPermissions.length === 0) {
-            return appInfo;
+            await logger.logToStderr(`Configure Microsoft Entra app secret...`);
         }
-        const sp = await this.createServicePrincipal(appInfo.appId);
-        if (this.debug) {
-            await logger.logToStderr("Service principal created, returned object id: " + sp.id);
+        const secret = await this.createSecret({ appObjectId: appInfo.id });
+        if (!appInfo.secrets) {
+            appInfo.secrets = [];
         }
-        const tasks = [];
-        this.appPermissions.forEach(async (permission) => {
-            if (permission.scope.length > 0) {
-                tasks.push(this.grantOAuth2Permission(sp.id, permission.resourceId, permission.scope.join(' ')));
-                if (this.debug) {
-                    await logger.logToStderr(`Admin consent granted for following resource ${permission.resourceId}, with delegated permissions: ${permission.scope.join(',')}`);
-                }
-            }
-            permission.resourceAccess.filter(access => access.type === "Role").forEach(async (access) => {
-                tasks.push(this.addRoleToServicePrincipal(sp.id, permission.resourceId, access.id));
-                if (this.debug) {
-                    await logger.logToStderr(`Admin consent granted for following resource ${permission.resourceId}, with application permission: ${access.id}`);
-                }
-            });
-        });
-        await Promise.all(tasks);
+        appInfo.secrets.push(secret);
         return appInfo;
     }
-    async addRoleToServicePrincipal(objectId, resourceId, appRoleId) {
+    async createSecret({ appObjectId, displayName = undefined, expirationDate = undefined }) {
+        let secretExpirationDate = expirationDate;
+        if (!secretExpirationDate) {
+            secretExpirationDate = new Date();
+            secretExpirationDate.setFullYear(secretExpirationDate.getFullYear() + 1);
+        }
+        const secretName = displayName ?? 'Default';
         const requestOptions = {
-            url: `${this.resource}/v1.0/myorganization/servicePrincipals/${objectId}/appRoleAssignments`,
-            headers: {
-                'Content-Type': 'application/json'
-            },
-            responseType: 'json',
-            data: {
-                appRoleId: appRoleId,
-                principalId: objectId,
-                resourceId: resourceId
-            }
-        };
-        return request.post(requestOptions);
-    }
-    async grantOAuth2Permission(appId, resourceId, scopeName) {
-        const grantAdminConsentApplicationRequestOptions = {
-            url: `${this.resource}/v1.0/myorganization/oauth2PermissionGrants`,
+            url: `${this.resource}/v1.0/myorganization/applications/${appObjectId}/addPassword`,
             headers: {
-                accept: 'application/json;odata.metadata=none'
+                'content-type': 'application/json'
             },
             responseType: 'json',
             data: {
-                clientId: appId,
-                consentType: "AllPrincipals",
-                principalId: null,
-                resourceId: resourceId,
-                scope: scopeName
+                passwordCredential: {
+                    displayName: secretName,
+                    endDateTime: secretExpirationDate.toISOString()
+                }
             }
         };
-        return request.post(grantAdminConsentApplicationRequestOptions);
-    }
-    async createServicePrincipal(appId) {
-        const requestOptions = {
-            url: `${this.resource}/v1.0/myorganization/servicePrincipals`,
-            headers: {
-                'content-type': 'application/json'
-            },
-            data: {
-                appId: appId
-            },
-            responseType: 'json'
+        const response = await request.post(requestOptions);
+        return {
+            displayName: secretName,
+            value: response.secretText
         };
-        return request.post(requestOptions);
     }
     async updateAppFromManifest(args, appInfo) {
         if (!args.options.manifest) {
@@ -423,180 +361,6 @@ class EntraAppAddCommand extends GraphCommand {
         await request.patch(requestOptions);
         return appInfo;
     }
-    async resolveApis(args, logger) {
-        if (!args.options.apisDelegated && !args.options.apisApplication
-            && (typeof this.manifest?.requiredResourceAccess === 'undefined' || this.manifest.requiredResourceAccess.length === 0)) {
-            return [];
-        }
-        if (this.verbose) {
-            await logger.logToStderr('Resolving requested APIs...');
-        }
-        const servicePrincipals = await odata.getAllItems(`${this.resource}/v1.0/myorganization/servicePrincipals?$select=appId,appRoles,id,oauth2PermissionScopes,servicePrincipalNames`);
-        let resolvedApis = [];
-        try {
-            if (args.options.apisDelegated || args.options.apisApplication) {
-                resolvedApis = await this.getRequiredResourceAccessForApis(servicePrincipals, args.options.apisDelegated, 'Scope', logger);
-                if (this.verbose) {
-                    await logger.logToStderr(`Resolved delegated permissions: ${JSON.stringify(resolvedApis, null, 2)}`);
-                }
-                const resolvedApplicationApis = await this.getRequiredResourceAccessForApis(servicePrincipals, args.options.apisApplication, 'Role', logger);
-                if (this.verbose) {
-                    await logger.logToStderr(`Resolved application permissions: ${JSON.stringify(resolvedApplicationApis, null, 2)}`);
-                }
-                // merge resolved application APIs onto resolved delegated APIs
-                resolvedApplicationApis.forEach(resolvedRequiredResource => {
-                    const requiredResource = resolvedApis.find(api => api.resourceAppId === resolvedRequiredResource.resourceAppId);
-                    if (requiredResource) {
-                        requiredResource.resourceAccess.push(...resolvedRequiredResource.resourceAccess);
-                    }
-                    else {
-                        resolvedApis.push(resolvedRequiredResource);
-                    }
-                });
-            }
-            else {
-                const manifestApis = this.manifest.requiredResourceAccess;
-                manifestApis.forEach(manifestApi => {
-                    resolvedApis.push(manifestApi);
-                    const app = servicePrincipals.find(servicePrincipals => servicePrincipals.appId === manifestApi.resourceAppId);
-                    if (app) {
-                        manifestApi.resourceAccess.forEach((res => {
-                            const resourceAccessPermission = {
-                                id: res.id,
-                                type: res.type
-                            };
-                            const oAuthValue = app.oauth2PermissionScopes.find(scp => scp.id === res.id)?.value;
-                            this.updateAppPermissions(app.id, resourceAccessPermission, oAuthValue);
-                        }));
-                    }
-                });
-            }
-            if (this.verbose) {
-                await logger.logToStderr(`Merged delegated and application permissions: ${JSON.stringify(resolvedApis, null, 2)}`);
-                await logger.logToStderr(`App role assignments: ${JSON.stringify(this.appPermissions.flatMap(permission => permission.resourceAccess.filter(access => access.type === "Role")), null, 2)}`);
-                await logger.logToStderr(`OAuth2 permissions: ${JSON.stringify(this.appPermissions.flatMap(permission => permission.scope), null, 2)}`);
-            }
-            return resolvedApis;
-        }
-        catch (e) {
-            throw e;
-        }
-    }
-    async getRequiredResourceAccessForApis(servicePrincipals, apis, scopeType, logger) {
-        if (!apis) {
-            return [];
-        }
-        const resolvedApis = [];
-        const requestedApis = apis.split(',').map(a => a.trim());
-        for (const api of requestedApis) {
-            const pos = api.lastIndexOf('/');
-            const permissionName = api.substr(pos + 1);
-            const servicePrincipalName = api.substr(0, pos);
-            if (this.debug) {
-                await logger.logToStderr(`Resolving ${api}...`);
-                await logger.logToStderr(`Permission name: ${permissionName}`);
-                await logger.logToStderr(`Service principal name: ${servicePrincipalName}`);
-            }
-            const servicePrincipal = servicePrincipals.find(sp => (sp.servicePrincipalNames.indexOf(servicePrincipalName) > -1 ||
-                sp.servicePrincipalNames.indexOf(`${servicePrincipalName}/`) > -1));
-            if (!servicePrincipal) {
-                throw `Service principal ${servicePrincipalName} not found`;
-            }
-            const scopesOfType = scopeType === 'Scope' ? servicePrincipal.oauth2PermissionScopes : servicePrincipal.appRoles;
-            const permission = scopesOfType.find(scope => scope.value === permissionName);
-            if (!permission) {
-                throw `Permission ${permissionName} for service principal ${servicePrincipalName} not found`;
-            }
-            let resolvedApi = resolvedApis.find(a => a.resourceAppId === servicePrincipal.appId);
-            if (!resolvedApi) {
-                resolvedApi = {
-                    resourceAppId: servicePrincipal.appId,
-                    resourceAccess: []
-                };
-                resolvedApis.push(resolvedApi);
-            }
-            const resourceAccessPermission = {
-                id: permission.id,
-                type: scopeType
-            };
-            resolvedApi.resourceAccess.push(resourceAccessPermission);
-            this.updateAppPermissions(servicePrincipal.id, resourceAccessPermission, permission.value);
-        }
-        return resolvedApis;
-    }
-    updateAppPermissions(spId, resourceAccessPermission, oAuth2PermissionValue) {
-        // During API resolution, we store globally both app role assignments and oauth2permissions
-        // So that we'll be able to parse them during the admin consent process
-        let existingPermission = this.appPermissions.find(oauth => oauth.resourceId === spId);
-        if (!existingPermission) {
-            existingPermission = {
-                resourceId: spId,
-                resourceAccess: [],
-                scope: []
-            };
-            this.appPermissions.push(existingPermission);
-        }
-        if (resourceAccessPermission.type === 'Scope' && oAuth2PermissionValue && !existingPermission.scope.find(scp => scp === oAuth2PermissionValue)) {
-            existingPermission.scope.push(oAuth2PermissionValue);
-        }
-        if (!existingPermission.resourceAccess.find(res => res.id === resourceAccessPermission.id)) {
-            existingPermission.resourceAccess.push(resourceAccessPermission);
-        }
-    }
-    async configureSecret(args, appInfo, logger) {
-        if (!args.options.withSecret || (appInfo.secrets && appInfo.secrets.length > 0)) {
-            return appInfo;
-        }
-        if (this.verbose) {
-            await logger.logToStderr(`Configure Microsoft Entra app secret...`);
-        }
-        const secret = await this.createSecret({ appObjectId: appInfo.id });
-        if (!appInfo.secrets) {
-            appInfo.secrets = [];
-        }
-        appInfo.secrets.push(secret);
-        return appInfo;
-    }
-    async createSecret({ appObjectId, displayName = undefined, expirationDate = undefined }) {
-        let secretExpirationDate = expirationDate;
-        if (!secretExpirationDate) {
-            secretExpirationDate = new Date();
-            secretExpirationDate.setFullYear(secretExpirationDate.getFullYear() + 1);
-        }
-        const secretName = displayName ?? 'Default';
-        const requestOptions = {
-            url: `${this.resource}/v1.0/myorganization/applications/${appObjectId}/addPassword`,
-            headers: {
-                'content-type': 'application/json'
-            },
-            responseType: 'json',
-            data: {
-                passwordCredential: {
-                    displayName: secretName,
-                    endDateTime: secretExpirationDate.toISOString()
-                }
-            }
-        };
-        const response = await request.post(requestOptions);
-        return {
-            displayName: secretName,
-            value: response.secretText
-        };
-    }
-    async getCertificateBase64Encoded(args, logger) {
-        if (args.options.certificateBase64Encoded) {
-            return args.options.certificateBase64Encoded;
-        }
-        if (this.debug) {
-            await logger.logToStderr(`Reading existing ${args.options.certificateFile}...`);
-        }
-        try {
-            return fs.readFileSync(args.options.certificateFile, { encoding: 'base64' });
-        }
-        catch (e) {
-            throw new Error(`Error reading certificate file: ${e}. Please add the certificate using base64 option '--certificateBase64Encoded'.`);
-        }
-    }
     async saveAppInfo(args, appInfo, logger) {
         if (!args.options.save) {
             return appInfo;

package/dist/m365/entra/commands/m365group/m365group-set.js

@@ -3,7 +3,7 @@ var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (
     if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot read private member from an object whose class did not declare it");
     return kind === "m" ? f : kind === "a" ? f.call(receiver) : f ? f.value : state.get(receiver);
 };
-var _EntraM365GroupSetCommand_instances, _EntraM365GroupSetCommand_initTelemetry, _EntraM365GroupSetCommand_initOptions, _EntraM365GroupSetCommand_initTypes, _EntraM365GroupSetCommand_initValidators;
+var _EntraM365GroupSetCommand_instances, _EntraM365GroupSetCommand_initTelemetry, _EntraM365GroupSetCommand_initOptions, _EntraM365GroupSetCommand_initOptionSets, _EntraM365GroupSetCommand_initTypes, _EntraM365GroupSetCommand_initValidators;
 import { setTimeout } from 'timers/promises';
 import fs from 'fs';
 import path from 'path';
@@ -31,8 +31,9 @@ class EntraM365GroupSetCommand extends GraphCommand {
         this.pollingInterval = 500;
         __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initTelemetry).call(this);
         __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initOptions).call(this);
-        __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initTypes).call(this);
         __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initValidators).call(this);
+        __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initOptionSets).call(this);
+        __classPrivateFieldGet(this, _EntraM365GroupSetCommand_instances, "m", _EntraM365GroupSetCommand_initTypes).call(this);
     }
     async commandAction(logger, args) {
         await this.showDeprecationWarning(logger, aadCommands.M365GROUP_SET, commands.M365GROUP_SET);
@@ -40,23 +41,24 @@ class EntraM365GroupSetCommand extends GraphCommand {
             if ((args.options.allowExternalSenders !== undefined || args.options.autoSubscribeNewMembers !== undefined) && accessToken.isAppOnlyAccessToken(auth.connection.accessTokens[auth.defaultResource].accessToken)) {
                 throw `Option 'allowExternalSenders' and 'autoSubscribeNewMembers' can only be used when using delegated permissions.`;
             }
-            const isUnifiedGroup = await entraGroup.isUnifiedGroup(args.options.id);
+            const groupId = args.options.id || await entraGroup.getGroupIdByDisplayName(args.options.displayName);
+            const isUnifiedGroup = await entraGroup.isUnifiedGroup(groupId);
             if (!isUnifiedGroup) {
-                throw Error(`Specified group with id '${args.options.id}' is not a Microsoft 365 group.`);
+                throw Error(`Specified group with id '${groupId}' is not a Microsoft 365 group.`);
             }
             if (this.verbose) {
-                await logger.logToStderr(`Updating Microsoft 365 Group ${args.options.id}...`);
+                await logger.logToStderr(`Updating Microsoft 365 Group ${args.options.id || args.options.displayName}...`);
             }
-            if (args.options.displayName || args.options.description !== undefined || args.options.isPrivate !== undefined) {
+            if (args.options.newDisplayName || args.options.description !== undefined || args.options.isPrivate !== undefined) {
                 const update = {
-                    displayName: args.options.displayName,
+                    displayName: args.options.newDisplayName,
                     description: args.options.description !== '' ? args.options.description : null
                 };
                 if (args.options.isPrivate !== undefined) {
                     update.visibility = args.options.isPrivate ? 'Private' : 'Public';
                 }
                 const requestOptions = {
-                    url: `${this.resource}/v1.0/groups/${args.options.id}`,
+                    url: `${this.resource}/v1.0/groups/${groupId}`,
                     headers: {
                         'accept': 'application/json;odata.metadata=none'
                     },
@@ -74,7 +76,7 @@ class EntraM365GroupSetCommand extends GraphCommand {
                     hideFromOutlookClients: args.options.hideFromOutlookClients
                 };
                 const requestOptions = {
-                    url: `${this.resource}/v1.0/groups/${args.options.id}`,
+                    url: `${this.resource}/v1.0/groups/${groupId}`,
                     headers: {
                         accept: 'application/json;odata.metadata=none'
                     },
@@ -89,7 +91,7 @@ class EntraM365GroupSetCommand extends GraphCommand {
                     await logger.logToStderr(`Setting group logo ${fullPath}...`);
                 }
                 const requestOptions = {
-                    url: `${this.resource}/v1.0/groups/${args.options.id}/photo/$value`,
+                    url: `${this.resource}/v1.0/groups/${groupId}/photo/$value`,
                     headers: {
                         'content-type': this.getImageContentType(fullPath)
                     },
@@ -114,7 +116,7 @@ class EntraM365GroupSetCommand extends GraphCommand {
                 };
                 const res = await request.get(requestOptions);
                 await Promise.all(res.value.map(u => request.post({
-                    url: `${this.resource}/v1.0/groups/${args.options.id}/owners/$ref`,
+                    url: `${this.resource}/v1.0/groups/${groupId}/owners/$ref`,
                     headers: {
                         'content-type': 'application/json'
                     },
@@ -141,7 +143,7 @@ class EntraM365GroupSetCommand extends GraphCommand {
                 };
                 const res = await request.get(requestOptions);
                 await Promise.all(res.value.map(u => request.post({
-                    url: `${this.resource}/v1.0/groups/${args.options.id}/members/$ref`,
+                    url: `${this.resource}/v1.0/groups/${groupId}/members/$ref`,
                     headers: {
                         'content-type': 'application/json'
                     },
@@ -188,7 +190,9 @@ class EntraM365GroupSetCommand extends GraphCommand {
 _EntraM365GroupSetCommand_instances = new WeakSet(), _EntraM365GroupSetCommand_initTelemetry = function _EntraM365GroupSetCommand_initTelemetry() {
     this.telemetry.push((args) => {
         Object.assign(this.telemetryProperties, {
+            id: typeof args.options.id !== 'undefined',
             displayName: typeof args.options.displayName !== 'undefined',
+            newDisplayName: typeof args.options.newDisplayName !== 'undefined',
             description: typeof args.options.description !== 'undefined',
             owners: typeof args.options.owners !== 'undefined',
             members: typeof args.options.members !== 'undefined',
@@ -202,9 +206,11 @@ _EntraM365GroupSetCommand_instances = new WeakSet(), _EntraM365GroupSetCommand_i
     });
 }, _EntraM365GroupSetCommand_initOptions = function _EntraM365GroupSetCommand_initOptions() {
     this.options.unshift({
-        option: '-i, --id <id>'
+        option: '-i, --id [id]'
     }, {
         option: '-n, --displayName [displayName]'
+    }, {
+        option: '--newDisplayName [newDisplayName]'
     }, {
         option: '-d, --description [description]'
     }, {
@@ -229,12 +235,14 @@ _EntraM365GroupSetCommand_instances = new WeakSet(), _EntraM365GroupSetCommand_i
         option: '--hideFromOutlookClients [hideFromOutlookClients]',
         autocomplete: ['true', 'false']
     });
+}, _EntraM365GroupSetCommand_initOptionSets = function _EntraM365GroupSetCommand_initOptionSets() {
+    this.optionSets.push({ options: ['id', 'displayName'] });
 }, _EntraM365GroupSetCommand_initTypes = function _EntraM365GroupSetCommand_initTypes() {
     this.types.boolean.push('isPrivate', 'allowEternalSenders', 'autoSubscribeNewMembers', 'hideFromAddressLists', 'hideFromOutlookClients');
-    this.types.string.push('id', 'displayName', 'description', 'owners', 'members', 'logoPath');
+    this.types.string.push('id', 'displayName', 'newDisplayName', 'description', 'owners', 'members', 'logoPath');
 }, _EntraM365GroupSetCommand_initValidators = function _EntraM365GroupSetCommand_initValidators() {
     this.validators.push(async (args) => {
-        if (!args.options.displayName &&
+        if (!args.options.newDisplayName &&
             args.options.description === undefined &&
             !args.options.members &&
             !args.options.owners &&
@@ -246,7 +254,7 @@ _EntraM365GroupSetCommand_instances = new WeakSet(), _EntraM365GroupSetCommand_i
             args.options.hideFromOutlookClients === undefined) {
             return 'Specify at least one option to update.';
         }
-        if (!validation.isValidGuid(args.options.id)) {
+        if (args.options.id && !validation.isValidGuid(args.options.id)) {
             return `${args.options.id} is not a valid GUID`;
         }
         if (args.options.owners) {

package/dist/m365/entra/commands/m365group/m365group-user-add.js

@@ -35,19 +35,15 @@ class EntraM365GroupUserAddCommand extends GraphCommand {
     }
     async commandAction(logger, args) {
         await this.showDeprecationWarning(logger, aadCommands.M365GROUP_USER_ADD, commands.M365GROUP_USER_ADD);
-        if (args.options.userName) {
-            await this.warn(logger, `Option 'userName' is deprecated. Please use 'ids' or 'userNames' instead.`);
-        }
         try {
-            const userNames = args.options.userNames || args.options.userName;
             const providedGroupId = await this.getGroupId(logger, args);
             const isUnifiedGroup = await entraGroup.isUnifiedGroup(providedGroupId);
             if (!isUnifiedGroup) {
                 throw Error(`Specified group with id '${providedGroupId}' is not a Microsoft 365 group.`);
             }
-            const userIds = await this.getUserIds(logger, args.options.ids, userNames);
+            const userIds = await this.getUserIds(logger, args.options.ids, args.options.userNames);
             if (this.verbose) {
-                await logger.logToStderr(`Adding user(s) ${args.options.ids || userNames} to group ${args.options.groupId || args.options.groupName || args.options.teamId || args.options.teamName}...`);
+                await logger.logToStderr(`Adding user(s) ${args.options.ids || args.options.userNames} to group ${args.options.groupId || args.options.groupName || args.options.teamId || args.options.teamName}...`);
             }
             await this.addUsers(providedGroupId, userIds, args.options.role);
         }
@@ -122,14 +118,11 @@ _EntraM365GroupUserAddCommand_instances = new WeakSet(), _EntraM365GroupUserAddC
             teamName: typeof args.options.teamName !== 'undefined',
             groupName: typeof args.options.groupName !== 'undefined',
             ids: typeof args.options.ids !== 'undefined',
-            userNames: typeof args.options.userNames !== 'undefined',
-            userName: typeof args.options.userName !== 'undefined'
+            userNames: typeof args.options.userNames !== 'undefined'
         });
     });
 }, _EntraM365GroupUserAddCommand_initOptions = function _EntraM365GroupUserAddCommand_initOptions() {
     this.options.unshift({
-        option: '-n, --userName [userName]'
-    }, {
         option: '--ids [ids]'
     }, {
         option: '--userNames [userNames]'
@@ -172,9 +165,9 @@ _EntraM365GroupUserAddCommand_instances = new WeakSet(), _EntraM365GroupUserAddC
     });
 }, _EntraM365GroupUserAddCommand_initOptionSets = function _EntraM365GroupUserAddCommand_initOptionSets() {
     this.optionSets.push({ options: ['groupId', 'groupName', 'teamId', 'teamName'] });
-    this.optionSets.push({ options: ['userName', 'ids', 'userNames'] });
+    this.optionSets.push({ options: ['ids', 'userNames'] });
 }, _EntraM365GroupUserAddCommand_initTypes = function _EntraM365GroupUserAddCommand_initTypes() {
-    this.types.string.push('userName', 'ids', 'userNames', 'groupId', 'groupName', 'teamId', 'teamName', 'role');
+    this.types.string.push('ids', 'userNames', 'groupId', 'groupName', 'teamId', 'teamName', 'role');
 };
 export default new EntraM365GroupUserAddCommand();
 //# sourceMappingURL=m365group-user-add.js.map

package/dist/m365/entra/commands/oauth2grant/oauth2grant-list.js

@@ -4,8 +4,8 @@ var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (
     return kind === "m" ? f : kind === "a" ? f.call(receiver) : f ? f.value : state.get(receiver);
 };
 var _EntraOAuth2GrantListCommand_instances, _EntraOAuth2GrantListCommand_initOptions, _EntraOAuth2GrantListCommand_initValidators;
-import request from '../../../../request.js';
 import { formatting } from '../../../../utils/formatting.js';
+import { odata } from '../../../../utils/odata.js';
 import { validation } from '../../../../utils/validation.js';
 import GraphCommand from '../../../base/GraphCommand.js';
 import aadCommands from '../../aadCommands.js';
@@ -35,17 +35,8 @@ class EntraOAuth2GrantListCommand extends GraphCommand {
             await logger.logToStderr(`Retrieving list of OAuth grants for the service principal...`);
         }
         try {
-            const requestOptions = {
-                url: `${this.resource}/v1.0/oauth2PermissionGrants?$filter=clientId eq '${formatting.encodeQueryParameter(args.options.spObjectId)}'`,
-                headers: {
-                    accept: 'application/json;odata.metadata=none'
-                },
-                responseType: 'json'
-            };
-            const res = await request.get(requestOptions);
-            if (res.value && res.value.length > 0) {
-                await logger.log(res.value);
-            }
+            const res = await odata.getAllItems(`${this.resource}/v1.0/oauth2PermissionGrants?$filter=clientId eq '${formatting.encodeQueryParameter(args.options.spObjectId)}'`);
+            await logger.log(res);
         }
         catch (err) {
             this.handleRejectedODataJsonPromise(err);

package/dist/m365/external/commands/item/item-add.js

@@ -45,8 +45,7 @@ class ExternalItemAddCommand extends GraphCommand {
             properties: {}
         };
         // we need to rewrite the @odata properties to the correct format
-        // because . in @odata.type is interpreted by minimist as a child property
-        // we also need to extract multiple values for collections into arrays
+        // to extract multiple values for collections into arrays
         this.rewriteCollectionProperties(args.options);
         this.addUnknownOptionsToPayload(requestBody.properties, args.options);
         const requestOptions = {
@@ -81,11 +80,9 @@ class ExternalItemAddCommand extends GraphCommand {
     }
     rewriteCollectionProperties(options) {
         Object.getOwnPropertyNames(options).forEach(name => {
-            if (!name.endsWith('@odata')) {
+            if (!name.includes('@odata')) {
                 return;
             }
-            options[`${name}.type`] = options[name].type;
-            delete options[name];
             // convert the value of a collection to an array
             const nameWithoutOData = name.substring(0, name.indexOf('@odata'));
             if (options[nameWithoutOData]) {