Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-04 22:08:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 118
fleet/website/api/helpers/android-proxy/get-is-enterprise-managed-by-fleet.js
Eric 292c23497f
Website: Update Android Proxy endpoints to return 404 responses if an Android Enterprise are not managed by Fleet (#33816) 
Related to: https://github.com/fleetdm/fleet/issues/33266

Changes:
- Added a new helper
`sails.helpers.androidProxy.getIsEnterpriseManagedByFleet`. This helper
returns `true` if a provided Android Enterprise ID is present in the
list of all Android Enterprises managed by Fleet, or `false` if it is
not in the list.
- Updated `create-android-enrollment-token`,
`create-android-signup-url`, and `modify-android-policies` to return a
404 response to the requesting Fleet instance if their Android
Enterprise is not managed by Fleet.
2025-10-06 12:50:42 -05:00

81 lines
2.5 KiB
JavaScript
Vendored
Raw Blame History

module.exports = {
friendlyName: 'Get is enterprise managed by fleet',
description: 'Checks the list of Android Enterprises managed by Fleet\'s Enterprise Management Google project and returns true if the provided enterprise ID is present.',
inputs: {
androidEnterpriseId: {
type: 'string',
required: true,
description: 'The enterprise ID of the Android Enterprise '
}
},
exits: {
success: {
outputFriendlyName: 'Is enterprise managed by fleet',
outputType: 'boolean',
},
},
fn: async function ({androidEnterpriseId}) {
require('assert')(sails.config.custom.androidEnterpriseServiceAccountEmailAddress);
require('assert')(sails.config.custom.androidEnterpriseServiceAccountPrivateKey);
require('assert')(sails.config.custom.androidEnterpriseProjectId);
let isEnterpriseManagedByFleet = false;
// Log into google.
let { google } = require('googleapis');
let androidmanagement = google.androidmanagement('v1');
let googleAuth = new google.auth.GoogleAuth({
scopes: ['https://www.googleapis.com/auth/androidmanagement'],
credentials: {
client_email: sails.config.custom.androidEnterpriseServiceAccountEmailAddress,// eslint-disable-line camelcase
private_key: sails.config.custom.androidEnterpriseServiceAccountPrivateKey,// eslint-disable-line camelcase
},
});
let authClient = await googleAuth.getClient();
google.options({auth: authClient});
// Use Google's LIST call to check if enterprise exists.
let enterprises = [];
let tokenForNextPageOfEnterprises;
await sails.helpers.flow.until(async ()=>{
let listEnterprisesResponse = await androidmanagement.enterprises.list({
projectId: sails.config.custom.androidEnterpriseProjectId,
pageSize: 100,
pageToken: tokenForNextPageOfEnterprises,
});
tokenForNextPageOfEnterprises = listEnterprisesResponse.data.nextPageToken;
enterprises = enterprises.concat(listEnterprisesResponse.data.enterprises);
if(!listEnterprisesResponse.data.nextPageToken){
return true;
}
});
// Check the list of enterprises
let enterpriseExistsInTheListOfEnterprises = _.find(enterprises, (enterprise)=>{
return enterprise.name === `enterprises/${androidEnterpriseId}` || enterprise.name === androidEnterpriseId;
});
if(enterpriseExistsInTheListOfEnterprises){
isEnterpriseManagedByFleet = true;
}
// Send back the result through the success exit.
return isEnterpriseManagedByFleet;
}
};
Reference in a new issue View git blame Copy permalink