Merge pull request #7228 from bganapa/role-fix

Maddie Clayton · web-flow · commit 4d4a682fd899 · 2018-09-13T18:44:47.000-05:00
Fix for New-AzureRmRoleAssignment and Remove-AzureRmRoleAssignment fo…
diff --git a/src/StackAdmin/Resources/Commands.Resources/Models.Authorization/AuthorizationClient.cs b/src/StackAdmin/Resources/Commands.Resources/Models.Authorization/AuthorizationClient.cs
@@ -165,14 +165,25 @@ public List<PSRoleDefinition> FilterRoleDefinitionsByCustom(string scope, bool s
         public PSRoleAssignment CreateRoleAssignment(FilterRoleAssignmentsOptions parameters)
         {
             Guid principalId = ActiveDirectoryClient.GetObjectId(parameters.ADObjectFilter);
+            string principalIdStr = null;
+
+            if (principalId == Guid.Empty)
+            {
+                principalIdStr = ActiveDirectoryClient.GetAdfsObjectId(parameters.ADObjectFilter);
+            }
+            else
+            {
+                principalIdStr = principalId.ToString();
+            }
+
             Guid roleAssignmentId = RoleAssignmentNames.Count == 0 ? Guid.NewGuid() : RoleAssignmentNames.Dequeue();
             string scope = parameters.Scope;
             string roleDefinitionId = !string.IsNullOrEmpty(parameters.RoleDefinitionName)
                 ? AuthorizationHelper.ConstructFullyQualifiedRoleDefinitionIdFromScopeAndIdAsGuid(scope, GetSingleRoleDefinitionByName(parameters.RoleDefinitionName, scope).Id)
                 : AuthorizationHelper.ConstructFullyQualifiedRoleDefinitionIdFromScopeAndIdAsGuid(scope, parameters.RoleDefinitionId);
             var createProperties = new RoleAssignmentProperties
             {
-                PrincipalId = principalId.ToString(),
+                PrincipalId = principalIdStr,
                 RoleDefinitionId = roleDefinitionId
             };
             var createParameters = new RoleAssignmentCreateParameters(createProperties);
diff --git a/src/StackAdmin/Resources/Commands.Resources/RoleAssignments/RemoveAzureRoleAssignmentCommand.cs b/src/StackAdmin/Resources/Commands.Resources/RoleAssignments/RemoveAzureRoleAssignmentCommand.cs
@@ -175,7 +175,7 @@ public override void ExecuteCmdlet()
                 ADObjectFilter = new ADObjectFilterOptions
                 {
                     UPN = SignInName,
-                    Id =  ObjectId.ToString(),
+                    Id =  ObjectId,
                     SPN = ServicePrincipalName
                 },
                 ResourceIdentifier = new ResourceIdentifier()
diff --git a/tools/CleanupBuild.ps1 b/tools/CleanupBuild.ps1
@@ -77,7 +77,7 @@ foreach($RMPath in $resourceManagerPaths)
             $removedScripts = Get-ChildItem -Path "$($RMFolder.FullName)\StartupScripts" -Filter "*.ps1" | where { $_.FullName -ne $scriptName }
             $removedScripts | % { Write-Verbose "Removing $($_.FullName)"; Remove-Item $_.FullName -Force }
         }
-        $removedPsd1 = Get-ChildItem -Path "$($RMFolder.FullName)" -Filter "*.psd1" -Recurse | where { $_.FullName -ne "$($RMFolder.FullName)$([IO.Path]::DirectorySeparatorChar)$($RMFolder.Name).psd1" }
+        $removedPsd1 = Get-ChildItem -Path "$($RMFolder.FullName)" -Filter "*.psd1" | where { $_.FullName -ne "$($RMFolder.FullName)$([IO.Path]::DirectorySeparatorChar)$($RMFolder.Name).psd1" }
         $removedPsd1 | % { Write-Verbose "Removing $($_.FullName)"; Remove-Item $_.FullName -Force }
     }
 }
diff --git a/tools/Modules/Run-UnitTests.ps1 b/tools/Modules/Run-UnitTests.ps1
@@ -117,16 +117,9 @@ if ($Scope -in $AzureScopes) {
 
 if ($Scope -in $StackScopes) {
 
-    # Download and add AzureRM.Profile 3.4.1 to PSModulePath
-    [System.String]$SavePath = (Join-Path -Path $PSScriptRoot -ChildPath "tmp")
-    if (-not(Test-Path $SavePath)) {
-        New-Item -Path $SavePath -ItemType Directory -Force | Out-Null
-        Save-Module -Name AzureRM.Profile -RequiredVersion 3.4.1 -Repository PSGallery -Path $SavePath | Out-Null
-        Save-Module -Name AzureRM.Resources -RequiredVersion 4.4.1 -Repository PSGallery -Path $SavePath | Out-Null
-    }
-
-    $oldModulePath = $env:PSModulePath.Clone()
-    [Environment]::SetEnvironmentVariable("PSModulePath","$env:PSModulePath;$SavePath")
+    $ARMRoot = "$PSScriptRoot\..\..\src\Stack\$BuildConfig\ResourceManager\AzureResourceManager"
+    Import-Module "$ARMRoot\AzureRM.Profile\AzureRM.Profile.psd1"
+    Import-Module "$ARMRoot\AzureRM.Resources\AzureRM.Resources.psd1";
 
     # All admin modules
     $AllStackModules = @(
@@ -151,6 +144,5 @@ if ($Scope -in $StackScopes) {
     [System.String[]]$ModulesToTest = $AllStackModules | Where-Object { !($_ -in $IgnoredStackModules) }
     Test-Stack -BuildConfig $BuildConfig -Modules $ModulesToTest
 
-    [Environment]::SetEnvironmentVariable("PSModulePath",$oldModulePath)
 }
 

Original file line number	Diff line number	Diff line change
`@@ -175,7 +175,7 @@ public override void ExecuteCmdlet()`
`175`	`175`	`ADObjectFilter = new ADObjectFilterOptions`
`176`	`176`	`{`
`177`	`177`	`UPN = SignInName,`
`178`		`- Id = ObjectId.ToString(),`
	`178`	`+ Id = ObjectId,`
`179`	`179`	`SPN = ServicePrincipalName`
`180`	`180`	`},`
`181`	`181`	`ResourceIdentifier = new ResourceIdentifier()`
Original file line number	Diff line number	Diff line change
`@@ -77,7 +77,7 @@ foreach($RMPath in $resourceManagerPaths)`
`77`	`77`	`$removedScripts = Get-ChildItem -Path "$($RMFolder.FullName)\StartupScripts" -Filter "*.ps1" \| where { $_.FullName -ne $scriptName }`
`78`	`78`	`$removedScripts \| % { Write-Verbose "Removing $($_.FullName)"; Remove-Item $_.FullName -Force }`
`79`	`79`	`}`
`80`		`- $removedPsd1 = Get-ChildItem -Path "$($RMFolder.FullName)" -Filter "*.psd1" -Recurse \| where { $_.FullName -ne "$($RMFolder.FullName)$([IO.Path]::DirectorySeparatorChar)$($RMFolder.Name).psd1" }`
	`80`	`+ $removedPsd1 = Get-ChildItem -Path "$($RMFolder.FullName)" -Filter "*.psd1" \| where { $_.FullName -ne "$($RMFolder.FullName)$([IO.Path]::DirectorySeparatorChar)$($RMFolder.Name).psd1" }`
`81`	`81`	`$removedPsd1 \| % { Write-Verbose "Removing $($_.FullName)"; Remove-Item $_.FullName -Force }`
`82`	`82`	`}`
`83`	`83`	`}`