281 lines
9.5 KiB
Perl
281 lines
9.5 KiB
Perl
#
|
|
# Copyright 2021 Centreon (http://www.centreon.com/)
|
|
#
|
|
# Centreon is a full-fledged industry-strength solution that meets
|
|
# the needs in IT infrastructure and application monitoring for
|
|
# service performance.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
|
|
package cloud::microsoft::office365::custom::managementapi;
|
|
|
|
use strict;
|
|
use warnings;
|
|
use DateTime;
|
|
use centreon::plugins::http;
|
|
use centreon::plugins::statefile;
|
|
use JSON::XS;
|
|
use URI::Encode;
|
|
use Digest::MD5 qw(md5_hex);
|
|
|
|
sub new {
|
|
my ($class, %options) = @_;
|
|
my $self = {};
|
|
bless $self, $class;
|
|
|
|
if (!defined($options{output})) {
|
|
print "Class Custom: Need to specify 'output' argument.\n";
|
|
exit 3;
|
|
}
|
|
if (!defined($options{options})) {
|
|
$options{output}->add_option_msg(short_msg => "Class Custom: Need to specify 'options' argument.");
|
|
$options{output}->option_exit();
|
|
}
|
|
|
|
if (!defined($options{noptions})) {
|
|
$options{options}->add_options(arguments => {
|
|
'tenant:s' => { name => 'tenant' },
|
|
'client-id:s' => { name => 'client_id' },
|
|
'client-secret:s' => { name => 'client_secret' },
|
|
'login-endpoint:s' => { name => 'login_endpoint' },
|
|
'management-endpoint:s' => { name => 'management_endpoint' },
|
|
'timeout:s' => { name => 'timeout' }
|
|
});
|
|
}
|
|
$options{options}->add_help(package => __PACKAGE__, sections => 'REST API OPTIONS', once => 1);
|
|
|
|
$self->{output} = $options{output};
|
|
$self->{http} = centreon::plugins::http->new(%options);
|
|
$self->{cache} = centreon::plugins::statefile->new(%options);
|
|
|
|
return $self;
|
|
}
|
|
|
|
sub set_options {
|
|
my ($self, %options) = @_;
|
|
|
|
$self->{option_results} = $options{option_results};
|
|
}
|
|
|
|
sub set_defaults {}
|
|
|
|
sub check_options {
|
|
my ($self, %options) = @_;
|
|
|
|
$self->{tenant} = (defined($self->{option_results}->{tenant})) ? $self->{option_results}->{tenant} : undef;
|
|
$self->{client_id} = (defined($self->{option_results}->{client_id})) ? $self->{option_results}->{client_id} : undef;
|
|
$self->{client_secret} = (defined($self->{option_results}->{client_secret})) ? $self->{option_results}->{client_secret} : undef;
|
|
$self->{login_endpoint} = (defined($self->{option_results}->{login_endpoint})) ? $self->{option_results}->{login_endpoint} : 'https://login.windows.net';
|
|
$self->{management_endpoint} = (defined($self->{option_results}->{management_endpoint})) ? $self->{option_results}->{management_endpoint} : 'https://manage.office.com';
|
|
$self->{timeout} = (defined($self->{option_results}->{timeout})) ? $self->{option_results}->{timeout} : 10;
|
|
|
|
if (!defined($self->{tenant}) || $self->{tenant} eq '') {
|
|
$self->{output}->add_option_msg(short_msg => "Need to specify --tenant option.");
|
|
$self->{output}->option_exit();
|
|
}
|
|
if (!defined($self->{client_id}) || $self->{client_id} eq '') {
|
|
$self->{output}->add_option_msg(short_msg => "Need to specify --client-id option.");
|
|
$self->{output}->option_exit();
|
|
}
|
|
if (!defined($self->{client_secret}) || $self->{client_secret} eq '') {
|
|
$self->{output}->add_option_msg(short_msg => "Need to specify --client-secret option.");
|
|
$self->{output}->option_exit();
|
|
}
|
|
|
|
$self->{cache}->check_options(option_results => $self->{option_results});
|
|
|
|
return 0;
|
|
}
|
|
|
|
sub build_options_for_httplib {
|
|
my ($self, %options) = @_;
|
|
|
|
$self->{option_results}->{timeout} = $self->{timeout};
|
|
$self->{option_results}->{warning_status} = '';
|
|
$self->{option_results}->{critical_status} = '';
|
|
$self->{option_results}->{unknown_status} = '';
|
|
}
|
|
|
|
sub settings {
|
|
my ($self, %options) = @_;
|
|
|
|
$self->build_options_for_httplib();
|
|
$self->{http}->add_header(key => 'Accept', value => 'application/json');
|
|
$self->{http}->add_header(key => 'Content-Type', value => 'application/x-www-form-urlencoded');
|
|
if (defined($self->{access_token})) {
|
|
$self->{http}->add_header(key => 'Authorization', value => 'Bearer ' . $self->{access_token});
|
|
}
|
|
$self->{http}->set_options(%{$self->{option_results}});
|
|
}
|
|
|
|
sub get_access_token {
|
|
my ($self, %options) = @_;
|
|
|
|
my $has_cache_file = $options{statefile}->read(statefile => 'office365_managementapi_' . md5_hex($self->{tenant}) . '_' . md5_hex($self->{client_id}));
|
|
my $expires_on = $options{statefile}->get(name => 'expires_on');
|
|
my $access_token = $options{statefile}->get(name => 'access_token');
|
|
|
|
if ($has_cache_file == 0 || !defined($access_token) || (($expires_on - time()) < 10)) {
|
|
my $uri = URI::Encode->new({encode_reserved => 1});
|
|
my $encoded_client_secret = $uri->encode($self->{client_secret});
|
|
my $encoded_management_endpoint = $uri->encode($self->{management_endpoint});
|
|
my $post_data = 'grant_type=client_credentials' .
|
|
'&client_id=' . $self->{client_id} .
|
|
'&client_secret=' . $encoded_client_secret .
|
|
'&resource=' . $encoded_management_endpoint;
|
|
|
|
$self->settings();
|
|
|
|
my $content = $self->{http}->request(method => 'POST', query_form_post => $post_data,
|
|
full_url => $self->{login_endpoint} . '/' . $self->{tenant} . '/oauth2/token?api-version=1.0',
|
|
hostname => '');
|
|
|
|
my $decoded;
|
|
eval {
|
|
$decoded = JSON::XS->new->utf8->decode($content);
|
|
};
|
|
if ($@) {
|
|
$self->{output}->output_add(long_msg => $content, debug => 1);
|
|
$self->{output}->add_option_msg(short_msg => "Cannot decode json response");
|
|
$self->{output}->option_exit();
|
|
}
|
|
if (defined($decoded->{error})) {
|
|
$self->{output}->output_add(long_msg => "Error message : " . $decoded->{error_description}, debug => 1);
|
|
$self->{output}->add_option_msg(short_msg => "Login endpoint API return error code '" . $decoded->{error} . "' (add --debug option for detailed message)");
|
|
$self->{output}->option_exit();
|
|
}
|
|
|
|
$access_token = $decoded->{access_token};
|
|
my $datas = { last_timestamp => time(), access_token => $decoded->{access_token}, expires_on => $decoded->{expires_on} };
|
|
$options{statefile}->write(data => $datas);
|
|
}
|
|
|
|
return $access_token;
|
|
}
|
|
|
|
sub request_api {
|
|
my ($self, %options) = @_;
|
|
|
|
if (!defined($self->{access_token})) {
|
|
$self->{access_token} = $self->get_access_token(statefile => $self->{cache});
|
|
}
|
|
|
|
$self->settings();
|
|
|
|
my $content = $self->{http}->request(%options);
|
|
|
|
my $decoded;
|
|
eval {
|
|
$decoded = JSON::XS->new->utf8->decode($content);
|
|
};
|
|
if ($@) {
|
|
$self->{output}->output_add(long_msg => $content, debug => 1);
|
|
$self->{output}->add_option_msg(short_msg => "Cannot decode json response: $@");
|
|
$self->{output}->option_exit();
|
|
}
|
|
if (defined($decoded->{error})) {
|
|
$self->{output}->output_add(long_msg => "Error message : " . $decoded->{error}->{message}, debug => 1);
|
|
$self->{output}->add_option_msg(short_msg => "Management endpoint API return error code '" . $decoded->{error}->{code} . "' (add --debug option for detailed message)");
|
|
$self->{output}->option_exit();
|
|
}
|
|
|
|
return $decoded;
|
|
}
|
|
|
|
sub office_get_services_status_set_url {
|
|
my ($self, %options) = @_;
|
|
|
|
my $url = $self->{management_endpoint} . "/api/v1.0/" . $self->{tenant} . "/ServiceComms/CurrentStatus";
|
|
|
|
return $url;
|
|
}
|
|
|
|
sub office_get_services_status {
|
|
my ($self, %options) = @_;
|
|
|
|
my $full_url = $self->office_get_services_status_set_url(%options);
|
|
my $response = $self->request_api(method => 'GET', full_url => $full_url, hostname => '');
|
|
|
|
return $response;
|
|
}
|
|
|
|
sub office_list_services_set_url {
|
|
my ($self, %options) = @_;
|
|
|
|
my $url = $self->{management_endpoint} . "/api/v1.0/" . $self->{tenant} . "/ServiceComms/Services";
|
|
|
|
return $url;
|
|
}
|
|
|
|
sub office_list_services {
|
|
my ($self, %options) = @_;
|
|
|
|
my $full_url = $self->office_list_services_set_url(%options);
|
|
my $response = $self->request_api(method => 'GET', full_url => $full_url, hostname => '');
|
|
|
|
return $response;
|
|
}
|
|
|
|
1;
|
|
|
|
__END__
|
|
|
|
=head1 NAME
|
|
|
|
Microsoft Office 365 Management API
|
|
|
|
=head1 REST API OPTIONS
|
|
|
|
Microsoft Office 365 Management API
|
|
|
|
To connect to the Office 365 Management API, you must register an application.
|
|
|
|
Follow the 'How-to guide' in https://docs.microsoft.com/en-us/office/office-365-management-api/get-started-with-office-365-management-apis#register-your-application-in-azure-ad
|
|
|
|
This custom mode is using the 'OAuth 2.0 Client Credentials Grant Flow'.
|
|
|
|
=over 8
|
|
|
|
=item B<--tenant>
|
|
|
|
Set Office 365 tenant ID.
|
|
|
|
=item B<--client-id>
|
|
|
|
Set Office 365 client ID.
|
|
|
|
=item B<--client-secret>
|
|
|
|
Set Office 365 client secret.
|
|
|
|
=item B<--login-endpoint>
|
|
|
|
Set Office 365 login endpoint URL (Default: 'https://login.windows.net')
|
|
|
|
=item B<--management-endpoint>
|
|
|
|
Set Office 365 management endpoint URL (Default: 'https://manage.office.com')
|
|
|
|
=item B<--timeout>
|
|
|
|
Set timeout in seconds (Default: 10).
|
|
|
|
=back
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
B<custom>.
|
|
|
|
=cut
|