fleet/frontend/services/entities/conditional_access.ts

import sendRequest from "services";

import endpoints from "utilities/endpoints";

export type TriggerMSConditionalStatusResponse = {
  microsoft_authentication_url: string;
};
export type ConfirmMSConditionalAccessResponse = {
  configuration_completed: boolean;
  setup_error: string;
};

const conditionalAccessService = {
  triggerMicrosoftConditionalAccess: (
    msTenantId: string
  ): Promise<TriggerMSConditionalStatusResponse> => {
    return sendRequest("POST", endpoints.CONDITIONAL_ACCESS_MICROSOFT, {
      microsoft_tenant_id: msTenantId,
    });
  },
  confirmMicrosoftConditionalAccess: (): Promise<ConfirmMSConditionalAccessResponse> => {
    return sendRequest("POST", endpoints.CONDITIONAL_ACCESS_MICROSOFT_CONFIRM);
  },
  deleteMicrosoftConditionalAccess: () => {
    return sendRequest("DELETE", endpoints.CONDITIONAL_ACCESS_MICROSOFT);
  },
  getIdpAppleProfile: (): Promise<string> => {
    return sendRequest(
      "GET",
      endpoints.CONDITIONAL_ACCESS_IDP_APPLE_PROFILE,
      undefined,
      "text"
    );
  },
  getIdpSigningCert: (): Promise<Blob> => {
    return sendRequest(
      "GET",
      endpoints.CONDITIONAL_ACCESS_IDP_SIGNING_CERT,
      undefined,
      "blob"
    );
  },
};

export default conditionalAccessService;