addigy 2.8.2 → 2.10.0

package/lib/mdm/mdm-profiles.js

@@ -0,0 +1,74 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MdmProfiles = void 0;
+const uuid_1 = require("uuid");
+const plist_1 = __importDefault(require("@expo/plist"));
+const axios_1 = __importDefault(require("axios"));
+const addigy_constants_1 = require("../addigy.constants");
+const addigy_utils_1 = require("../addigy.utils");
+class MdmProfiles {
+    constructor() {
+        this.http = axios_1.default.create({
+            baseURL: `${addigy_constants_1.Urls.appProd}/api/mdm/user/profiles/configurations`,
+            ...(0, addigy_utils_1.getAxiosHttpAgents)(),
+            headers: { origin: addigy_constants_1.Urls.appProd },
+        });
+    }
+    async createCustomProfile(authObject, name, customProfileText, supportedOsVersions, payloadScope = 'System', is_profile_signed = false) {
+        const groupUUID = (0, uuid_1.v4)();
+        const customProfileJson = plist_1.default.parse(customProfileText);
+        const updateCustomProfileJson = Object.entries(customProfileJson).reduce((acc, [key, value]) => {
+            acc[this.toSnakeCase(key)] = value;
+            return acc;
+        }, {});
+        const customProfileBase64 = Buffer.from(customProfileText).toString('base64');
+        const payload = {
+            addigy_payload_type: 'com.addigy.custom.mdm.payload',
+            payload_type: 'custom',
+            payload_version: 1,
+            payload_identifier: `com.addigy.custom.mdm.payload.${groupUUID}`,
+            payload_uuid: `custom-profile-${(0, uuid_1.v4)()}`,
+            payload_group_id: groupUUID,
+            payload_display_name: name,
+            is_profile_signed,
+            profile_json_data: updateCustomProfileJson,
+            decoded_profile_content: customProfileText,
+            custom_profile_content: customProfileBase64,
+            supported_os_versions: supportedOsVersions,
+            payload_scope: payloadScope,
+        };
+        try {
+            let res = await this.http.post('/', { payloads: [payload] }, {
+                headers: {
+                    Cookie: `auth_token=${authObject.authToken};`,
+                },
+            });
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async createMdmProfile(authObject, mdmProfile) {
+        try {
+            let res = await this.http.post('/', { payloads: mdmProfile }, {
+                headers: {
+                    Cookie: `auth_token=${authObject.authToken};`,
+                },
+            });
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    toSnakeCase(text) {
+        return text
+            .replace(/([^\p{L}\d]+|(?<=\p{L})(?=\d)|(?<=\d)(?=\p{L})|(?<=[\p{Ll}\d])(?=\p{Lu})|(?<=\p{Lu})(?=\p{Lu}\p{Ll})|(?<=[\p{L}\d])(?=\p{Lu}\p{Ll}))/gu, '_')
+            .toLowerCase();
+    }
+}
+exports.MdmProfiles = MdmProfiles;

package/{types.d.ts → lib/mdm/mdm.types.d.ts}

@@ -1,22 +1,32 @@
-export interface IAddigyConfig {
-    clientId: string;
-    clientSecret: string;
-    adminUsername?: string;
-    adminPassword?: string;
-}
-export interface IAddigyInternalAuthObject {
-    orgId: string;
-    authToken: string;
-    emailAddress: string;
+import { Payload, SupportedOsVersions } from '../types';
+export interface CreateWebContentFilterPayload {
+    user_defined_name: string;
+    plugin_bundle_id: string;
+    filter_grade: 'firewall' | 'inspector';
+    vendor_config?: Record<string, string>;
+    content_filter_uuid?: string;
+    server_address?: string;
+    organization?: string;
+    user_name?: string;
+    password?: string;
+    filter_browsers?: boolean;
+    filter_sockets?: boolean;
+    filter_data_provider_bundle_identifier?: string;
+    filter_data_provider_designated_requirement?: string;
+    filter_packets?: boolean;
+    filter_packet_provider_bundle_identifier?: string;
+    filter_packet_provider_designated_requirement?: string;
+    auto_filter_enabled?: null;
+    permitted_urls?: string[];
+    blacklisted_urls?: string[];
+    white_listed_bookmarks?: string[];
+    policy_restricted?: boolean;
+    requires_device_supervision?: boolean;
+    requires_mdm_profile_approved?: boolean;
 }
-export interface Payload {
-    addigy_payload_type: 'com.addigy.syspolicy.system-extension-policy.com.apple.system-extension-policy' | 'com.addigy.TCC.configuration-profile-policy.com.apple.TCC.configuration-profile-policy' | 'com.addigy.syspolicy.kernel-extension-policy.com.apple.syspolicy.kernel-extension-policy' | 'com.addigy.notifications.com.apple.notificationsettings' | 'com.addigy.custom.mdm.payload' | 'com.addigy.securityAndPrivacy.com.apple.MCX.FileVault2' | 'com.addigy.securityAndPrivacy.com.apple.MCX' | 'com.addigy.securityAndPrivacy.com.apple.security.pkcs1' | 'com.addigy.securityAndPrivacy.com.apple.security.FDERecoveryKeyEscrow' | 'com.addigy.securityAndPrivacy.com.apple.security.FDERecoveryRedirect' | 'com.addigy.servicemanagement.com.apple.servicemanagement' | 'com.addigy.webcontent-filter.com.apple.webcontent-filter';
-    payload_type: 'com.apple.system-extension-policy' | 'com.apple.syspolicy.kernel-extension-policy' | 'com.apple.TCC.configuration-profile-policy' | 'com.apple.notificationsettings' | 'custom' | 'com.apple.MCX.FileVault2' | 'com.apple.MCX' | 'com.apple.security.pkcs1' | 'com.apple.security.FDERecoveryKeyEscrow' | 'com.apple.security.FDERecoveryRedirect' | 'com.apple.servicemanagement' | 'com.apple.webcontent-filter';
-    payload_version: number;
-    payload_identifier: string;
-    payload_uuid: string;
-    payload_group_id: string;
-    payload_display_name: string;
+export interface Extension {
+    teamIdentifier: string;
+    bundleIdentifiers: string[];
 }
 export interface SystemExtensionPayload extends Payload {
     payload_enabled: boolean;
@@ -25,7 +35,7 @@ export interface SystemExtensionPayload extends Payload {
     allowed_team_identifiers: string[];
     allow_user_overrides: boolean;
 }
-export interface KernalExtensionPayload extends Payload {
+export interface KernelExtensionPayload extends Payload {
     payload_enabled: boolean;
     allow_user_overrides: boolean;
     allowed_kernel_extensions: any;
@@ -84,6 +94,67 @@ export interface PPPCServiceInput {
     staticCode?: boolean;
     identifierType: 'bundleID' | 'path';
 }
+export interface WebContentFilterPayload extends Payload {
+    addigy_payload_version: number;
+    auto_filter_enabled: null | boolean;
+    blacklisted_urls: null | string[];
+    content_filter_uuid: null | string;
+    filter_browsers: null | boolean;
+    filter_data_provider_bundle_identifier: string | null;
+    filter_data_provider_designated_requirement: string | null;
+    filter_grade: 'firewall' | 'inspector';
+    filter_packet_provider_bundle_identifier: null | string;
+    filter_packet_provider_designated_requirement: null | string;
+    filter_packets: null | boolean;
+    filter_sockets: boolean;
+    filter_type: string;
+    has_manifest: boolean;
+    organization: null | string;
+    password: null | string;
+    payload_enabled: boolean;
+    payload_priority: number;
+    permitted_urls: null | string[];
+    plugin_bundle_id: string | null;
+    policy_restricted: boolean;
+    requires_device_supervision: boolean;
+    requires_mdm_profile_approved: boolean;
+    server_address: null | string;
+    supported_os_versions: null | SupportedOsVersions;
+    user_defined_name: string;
+    user_name: null | string;
+    vendor_config: Record<string, string> | null;
+    white_listed_bookmarks: null | string[];
+}
+export interface ServiceManagementPayload extends Payload {
+    addigy_payload_version: number;
+    has_manifest: boolean;
+    payload_enabled: boolean;
+    payload_priority: number;
+    policy_restricted: boolean;
+    requires_device_supervision: boolean;
+    requires_mdm_profile_approved: boolean;
+    rules: ServiceManagementPayloadRule[];
+    supported_os_versions: SupportedOsVersions | null;
+}
+export interface ServiceManagementPayloadRule {
+    comment: string;
+    rule_type: string;
+    rule_value: string;
+}
+export interface NotificationSettings {
+    bundle_identifier: string;
+    notifications_enabled: boolean;
+    show_in_lock_screen: boolean;
+    show_in_notification_center: boolean;
+    sounds_enabled: boolean;
+    badges_enabled: boolean;
+    critical_alert_enabled: boolean;
+    preview_type?: any;
+    alert_type?: any;
+}
+export interface NotificationSettingsPayload extends Payload {
+    notification_settings: NotificationSettings[];
+}
 export interface PPPCScreenCaptureServiceInput {
     service: 'microphone' | 'camera';
     allowed: false;
@@ -105,95 +176,6 @@ export interface PPPCAppleEventServiceInput {
     aeReceiverIdentifierType: 'bundleID' | 'path';
     aeReceiverCodeRequirement: string;
 }
-export interface Extension {
-    teamIdentifier: string;
-    bundleIdentifiers: string[];
-}
-export interface NotificationSettings {
-    bundle_identifier: string;
-    notifications_enabled: boolean;
-    show_in_lock_screen: boolean;
-    show_in_notification_center: boolean;
-    sounds_enabled: boolean;
-    badges_enabled: boolean;
-    critical_alert_enabled: boolean;
-    preview_type?: any;
-    alert_type?: any;
-}
-export interface NotificationSettingsPayload extends Payload {
-    notification_settings: NotificationSettings[];
-}
-export interface CustomProfilePayload extends Payload {
-    is_profile_signed: boolean;
-    custom_profile_content: string;
-    decoded_profile_content: string;
-    supported_os_versions: SupportedOsVersions;
-    payload_scope: 'System' | 'User';
-    profile_json_data: CustomProfileJSONData[];
-}
-export interface CustomProfileJSONData {
-    payload_identifier: string;
-    payload_removal_disallowed: boolean;
-    payload_scope: string;
-    payload_type: string;
-    payload_uuid: string;
-    payload_organization: string;
-    payload_version: number;
-    payload_display_name: string;
-    payload_content: any[];
-}
-export interface SupportedOsVersions {
-    macOS?: string;
-    iOS?: string;
-    tvOS?: string;
-}
-export interface FilevaultPayload extends Payload {
-    enable?: 'On' | 'Off';
-    defer?: boolean;
-    use_recovery_key?: boolean;
-    show_recovery_key?: boolean | null;
-    defer_dont_ask_at_user_logout?: boolean | null;
-    defer_force_at_user_login_max_bypass_attempts?: number | null;
-    addigy_payload_version?: number;
-    destroy_fv_key_on_standby?: boolean | null;
-    dont_allow_fde_disable?: boolean;
-    is_from_security_profile?: boolean;
-    encrypt_cert_payload_uuid?: string;
-    location?: string;
-    payload_priority?: number;
-    redirect_url?: string;
-}
-export interface FilevaultRequest {
-    enable?: boolean;
-    defer?: boolean;
-    showRecoveryKey?: boolean;
-    destroyFvKeyOnStandby?: boolean;
-    escrowRecoveryKey?: boolean;
-    deferDontAskAtUserLogout?: boolean;
-    deferForceAtUserLoginMaxBypassAttempts?: -1 | 0 | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10;
-}
-export interface CustomFact {
-    organization_id: string;
-    name: string;
-    return_type: string;
-    identifier: string;
-    version: number;
-    os_architectures: CustomFactOSArchitectures;
-    notes: string;
-    provider: string;
-    source: string;
-}
-export interface CustomFactOSArchitectures {
-    linux_arm: CustomFactOSArchitecturesData;
-    darwin_amd64: CustomFactOSArchitecturesData;
-}
-export interface CustomFactOSArchitecturesData {
-    language: string;
-    is_supported: boolean;
-    shebang: string;
-    script: string;
-    md5_hash: string;
-}
 export interface MdmConfigurations {
     payloads: Payload[];
     staged_payloads: any[];
@@ -218,75 +200,3 @@ export interface PoliciesMdmPayload {
     configuration_id: string;
     policy_id: string;
 }
-export interface ServiceManagementPayload extends Payload {
-    addigy_payload_version: number;
-    has_manifest: boolean;
-    payload_enabled: boolean;
-    payload_priority: number;
-    policy_restricted: boolean;
-    requires_device_supervision: boolean;
-    requires_mdm_profile_approved: boolean;
-    rules: ServiceManagementPayloadRule[];
-    supported_os_versions: SupportedOsVersions | null;
-}
-export interface ServiceManagementPayloadRule {
-    comment: string;
-    rule_type: string;
-    rule_value: string;
-}
-export interface WebContentFilterPayload extends Payload {
-    addigy_payload_version: number;
-    auto_filter_enabled: null | boolean;
-    blacklisted_urls: null | string[];
-    content_filter_uuid: null | string;
-    filter_browsers: null | boolean;
-    filter_data_provider_bundle_identifier: string | null;
-    filter_data_provider_designated_requirement: string | null;
-    filter_grade: 'firewall' | 'inspector';
-    filter_packet_provider_bundle_identifier: null | string;
-    filter_packet_provider_designated_requirement: null | string;
-    filter_packets: null | boolean;
-    filter_sockets: boolean;
-    filter_type: string;
-    has_manifest: boolean;
-    organization: null | string;
-    password: null | string;
-    payload_enabled: boolean;
-    payload_priority: number;
-    permitted_urls: null | string[];
-    plugin_bundle_id: string | null;
-    policy_restricted: boolean;
-    requires_device_supervision: boolean;
-    requires_mdm_profile_approved: boolean;
-    server_address: null | string;
-    supported_os_versions: null | SupportedOsVersions;
-    user_defined_name: string;
-    user_name: null | string;
-    vendor_config: Record<string, string> | null;
-    white_listed_bookmarks: null | string[];
-}
-export interface CreateWebContentFilterPayload {
-    user_defined_name: string;
-    plugin_bundle_id: string;
-    filter_grade: 'firewall' | 'inspector';
-    vendor_config?: Record<string, string>;
-    content_filter_uuid?: string;
-    server_address?: string;
-    organization?: string;
-    user_name?: string;
-    password?: string;
-    filter_browsers?: boolean;
-    filter_sockets?: boolean;
-    filter_data_provider_bundle_identifier?: string;
-    filter_data_provider_designated_requirement?: string;
-    filter_packets?: boolean;
-    filter_packet_provider_bundle_identifier?: string;
-    filter_packet_provider_designated_requirement?: string;
-    auto_filter_enabled?: null;
-    permitted_urls?: string[];
-    blacklisted_urls?: string[];
-    white_listed_bookmarks?: string[];
-    policy_restricted?: boolean;
-    requires_device_supervision?: boolean;
-    requires_mdm_profile_approved?: boolean;
-}

package/lib/mdm/mdm.types.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/policies/policies.d.ts

@@ -0,0 +1,11 @@
+import { AxiosInstance } from 'axios';
+export declare class Policies {
+    private readonly http;
+    constructor(http: AxiosInstance);
+    getPolicies(): Promise<object[]>;
+    getPolicyInstructions(policyId: string, provider?: string): Promise<object[]>;
+    createPolicyInstructions(policyId: string, instructionId: string): Promise<object[]>;
+    deletePolicyInstructions(policyId: string, instructionId: string, provider?: string): Promise<object[]>;
+    getPolicyDetails(policyId: string, provider?: string): Promise<object[]>;
+    createPolicy(name: string, parentId?: string, icon?: string, color?: string): Promise<object[]>;
+}

package/lib/policies/policies.js

@@ -0,0 +1,78 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Policies = void 0;
+class Policies {
+    constructor(http) {
+        this.http = http;
+    }
+    async getPolicies() {
+        try {
+            let res = await this.http.get(`policies`);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async getPolicyInstructions(policyId, provider = 'ansible-profile') {
+        try {
+            let res = await this.http.get(`policies/instructions?provider=${provider}&policy_id=${policyId}`);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async createPolicyInstructions(policyId, instructionId) {
+        try {
+            let res = await this.http.post(`policies/instructions`, {
+                instruction_id: instructionId,
+                policy_id: policyId,
+            });
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async deletePolicyInstructions(policyId, instructionId, provider = 'ansible-profile') {
+        try {
+            let res = await this.http.delete(`policies/instructions?policy_id=${policyId}&instruction_id=${instructionId}&provider=${provider}`);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async getPolicyDetails(policyId, provider = 'ansible-profile') {
+        try {
+            let res = await this.http.get(`policies/details?provider=${provider}&policy_id=${policyId}`);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async createPolicy(name, parentId, icon, color) {
+        let postBody = {
+            name: name,
+        };
+        if (icon !== undefined) {
+            postBody['icon'] = icon;
+        }
+        if (color !== undefined) {
+            postBody['color'] = color;
+        }
+        if (parentId !== undefined) {
+            postBody['parent_id'] = parentId;
+        }
+        try {
+            let res = await this.http.post(`policies`, postBody);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+}
+exports.Policies = Policies;

package/lib/profiles/profiles.d.ts

@@ -0,0 +1,9 @@
+import { AxiosInstance } from 'axios';
+export declare class Profiles {
+    private readonly http;
+    constructor(http: AxiosInstance);
+    getProfiles(instructionId?: string): Promise<object[]>;
+    createProfile(name: string, payloads: object[]): Promise<object[]>;
+    updateProfile(instructionId: string, payloads: object[]): Promise<object[]>;
+    deleteProfile(instructionId: string): Promise<object[]>;
+}

package/lib/profiles/profiles.js

@@ -0,0 +1,59 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Profiles = void 0;
+class Profiles {
+    constructor(http) {
+        this.http = http;
+    }
+    async getProfiles(instructionId) {
+        let instructionUri = '';
+        if (instructionId !== undefined) {
+            instructionUri = `?instruction_id=${instructionId}`;
+        }
+        try {
+            let res = await this.http.get(`profiles` + instructionUri);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async createProfile(name, payloads) {
+        let postBody = {
+            name: name,
+            payloads: payloads,
+        };
+        try {
+            let res = await this.http.post(`profiles`, postBody);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async updateProfile(instructionId, payloads) {
+        let postBody = {
+            instruction_id: instructionId,
+            payloads: payloads,
+        };
+        try {
+            let res = await this.http.put(`profiles`, postBody);
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+    async deleteProfile(instructionId) {
+        try {
+            let res = await this.http.delete(`profiles`, {
+                params: { instruction_id: instructionId },
+            });
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+}
+exports.Profiles = Profiles;

package/lib/profiles/profiles.types.d.ts

@@ -0,0 +1,20 @@
+import { Payload, SupportedOsVersions } from '../types';
+export interface CustomProfilePayload extends Payload {
+    is_profile_signed: boolean;
+    custom_profile_content: string;
+    decoded_profile_content: string;
+    supported_os_versions: SupportedOsVersions;
+    payload_scope: 'System' | 'User';
+    profile_json_data: CustomProfileJSONData[];
+}
+export interface CustomProfileJSONData {
+    payload_identifier: string;
+    payload_removal_disallowed: boolean;
+    payload_scope: string;
+    payload_type: string;
+    payload_uuid: string;
+    payload_organization: string;
+    payload_version: number;
+    payload_display_name: string;
+    payload_content: any[];
+}

package/lib/profiles/profiles.types.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/screenconnect/screenconnect.d.ts

@@ -0,0 +1,5 @@
+import { IAddigyInternalAuthObject } from '../auth/auth.types';
+export declare class ScreenConnect {
+    private readonly http;
+    getScreenconnectLinks(authObject: IAddigyInternalAuthObject, sessionId: string, agentId?: string): Promise<object[]>;
+}

package/lib/screenconnect/screenconnect.js

@@ -0,0 +1,39 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ScreenConnect = void 0;
+const axios_1 = __importDefault(require("axios"));
+const addigy_constants_1 = require("../addigy.constants");
+const addigy_utils_1 = require("../addigy.utils");
+class ScreenConnect {
+    constructor() {
+        this.http = axios_1.default.create({
+            baseURL: `${addigy_constants_1.Urls.appProd}/api/devices/screenconnect`,
+            ...(0, addigy_utils_1.getAxiosHttpAgents)(),
+            headers: { origin: addigy_constants_1.Urls.appProd },
+        });
+    }
+    async getScreenconnectLinks(authObject, sessionId, agentId) {
+        agentId = agentId ? agentId : sessionId;
+        let postBody = {
+            sessionId: sessionId,
+            agentid: agentId,
+        };
+        try {
+            let res = await this.http.post('links', postBody, {
+                headers: {
+                    Cookie: `auth_token=${authObject.authToken};`,
+                    email: authObject.emailAddress,
+                    orgid: authObject.orgId,
+                },
+            });
+            return res.data;
+        }
+        catch (err) {
+            throw err;
+        }
+    }
+}
+exports.ScreenConnect = ScreenConnect;

package/lib/software/software.d.ts

@@ -0,0 +1,13 @@
+import { AxiosInstance } from 'axios';
+import { IAddigyInternalAuthObject } from '../auth/auth.types';
+import { CreateSoftware } from './software.types';
+export declare class Software {
+    private readonly http;
+    constructor(http: AxiosInstance);
+    getPublicSoftware(): Promise<object[]>;
+    getCustomSoftware(): Promise<object[]>;
+    getCustomSoftwareAllVersions(softwareId: string): Promise<object[]>;
+    getCustomSoftwareSpecificVersion(instructionId: string): Promise<object[]>;
+    createCustomSoftware(baseIdentifier: string, version: string, downloads: string[], installationScript: string, condition: string, removeScript: string, priority?: number): Promise<object[]>;
+    createSoftwareInternal(authObject: IAddigyInternalAuthObject, software: CreateSoftware): Promise<Software>;
+}