lart2150 · October 28, 2025 10:39 · EionRobb · Oct 28, 2025
diff --git a/roamingSignature.ts b/roamingSignature.ts
 /*
 Copyright 2025

 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the “Software”), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

 The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

 THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 */
 import type {User} from "@microsoft/microsoft-graph-types";
 import {
    TokenCredentialAuthenticationProvider
 } from "@microsoft/microsoft-graph-client/authProviders/azureTokenCredentials/index.js";
 import {Client} from "@microsoft/microsoft-graph-client";
 import {ClientSecretCredential} from "@azure/identity";

 const authorization = process.env.OWA_BEARER_TOKEN ?? 'Bearer asdf.asdf.asdf';

 const credential = new ClientSecretCredential(
    process.env.OAUTH_CLIENT_TENANT ?? "",
    process.env.OAUTH_CLIENT_ID ?? "",
    process.env.OAUTH_CLIENT_SECRET ?? "",
 );
 const authProvider = new TokenCredentialAuthenticationProvider(credential, {
    scopes: ["https://graph.microsoft.com/.default"],
 });

 export const client = Client.initWithMiddleware({
    // debugLogging: true,
    authProvider,
 });

 const usersResponse = await client
        .api("/users")
        .header("ConsistencyLevel", "eventual")
        .filter("accountEnabled eq true and not(employeeId eq null)")
        .get();

 const users = usersResponse.value as User[];


 const generateSignatureText = (user: User) => {
    return `${user.displayName}
 ${user.jobTitle}
 ${(user.businessPhones ?? [''])[0]}
 ${user.mail}`
 }

 const generateSignatureHtml = (user: User)=> {
    return `
          <p style="padding: 5px 10px 0 0; margin: 0; color: #254F59; font-family: Arial; font-size: 17px; font-weight: bold; text-transform: uppercase"><span style="color: #254F59;">${user.displayName}</span></p>
          <p style="padding: 0px 10px 4px 0; margin: 0; color: #262626; font-family: Arial; font-size: 13px; font-weight: normal; line-height: 1.6; text-align: left; vertical-align: top;"><span style="color: #254F59;">${user.jobTitle}</span></p>
          <p style="padding: 6px 0 5px 0; margin: 0; color: #000000; font-family: Arial; font-size: 13px; font-weight: normal;">
            ${(user.businessPhones ?? [''])[0]}<br>
            <a href="mailto:${user.mail}" style="color: rgba(37, 79, 80, 0.82); line-height: 1.6;">${user.mail}</a><br>
          </p>
        `
 }


 export type GetSignResponse = {
    name: string
    value: string
    type: string
    source: string
    scope: string
    parentSetting: string
    Timestamp: number
    itemClass: string
    metadata?: string
    "@odata.context"?: string
    "@odata.id"?: string
    "@odata.etag"?: string
    id?: string
    createdDateTime?: string
    lastModifiedDateTime?: string
    secondaryKey?: string
 }

 const createList = async (user: User, name: string) => {
    const email = user.mail;
    const options = {
        method: 'POST',
        headers: {
            authorization,
            'Content-Type': 'application/json',
            'x-islargesetting': 'true',
        },
        body: JSON.stringify([
            {
                "itemClass": "RoamingSetting",
                "name": "roaming_signature_list",
                "scope": email,
                "secondaryKey": "roaming_signature_list",
                "type": "BlobArray",
                "value": name
            }
        ])
    };

    const response = await fetch(`https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings/account`, options);
    if (response.ok) {
        console.log('created roaming signature list for', email);
    }
 }

 const getSignatureName = async (user: User)=> {
    const email = user.mail;
    const options = {
        method: 'GET',
        headers: {
            authorization,
        }
    };

    const response = await fetch(
        `https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings?settingname=roaming_signature_list,roaming_new_signature,roaming_reply_signature`,
        options
    );

    if (!response.ok) {
        console.warn('failed to get settings for', email);
        return null;
    }

    const signResponse = await response.json() as GetSignResponse[];
    const roamingSigList = signResponse.find(i => i.name.toLowerCase() === 'roaming_signature_list');
    if (!roamingSigList) {
        console.warn('no roaming_signature_list for', email, signResponse.length);
        // if (signResponse.length === 0) {
        //     await createList(user, 'Roaming_Signature_List');
        //     return 'Outlook Web Signature';
        // }
        return null;
    }

    if (roamingSigList.value === '') {
        console.warn('user has no roaming signatures', email);
    }

    const signatureNames = roamingSigList.value.split(',');
    if (signatureNames.length === 1) {
        return signatureNames[0];
    }

    const roamingNewSig = signResponse.find(i => i.name.toLowerCase() === 'roaming_new_signature');
    if (roamingNewSig && roamingNewSig.value !== '') {
        return roamingNewSig.value;
    }

    const roamingReplySig = signResponse.find(i => i.name.toLowerCase() === 'roaming_reply_signature');
    if (roamingReplySig && roamingReplySig.value !== '') {
        return roamingReplySig.value;
    }

    return signatureNames[0];
 }

 const changeUserSignature = async (user: User, signatureName: string)=> {
    const email = user.mail;
    const options = {
        method: 'PATCH',
        headers: {
            authorization,
            'Content-Type': 'application/json',
            // 'x-anchormailbox': email,
            'x-islargesetting': 'true',
            // 'x-routingparameter-sessionkey': `SMTP:${email}`
        },
        body: JSON.stringify([
            {
                "itemClass": "RoamingSetting",
                "metadata": "encoding:utf-8",
                "name": signatureName,
                "parentSetting": "roaming_signature_list",
                "scope": email,
                "secondaryKey": "htm",
                "timestamp": 638902835270616367,
                "type": "Blob",
                "value": generateSignatureHtml(user),
                "[email protected]": true
            },
            {
                "itemClass": "RoamingSetting",
                "metadata": "encoding:utf-8",
                "name": signatureName,
                "parentSetting": "roaming_signature_list",
                "scope": email,
                "secondaryKey": "txt",
                "timestamp": 638902835270616367,
                "type": "Blob",
                "value": generateSignatureText(user),
                "[email protected]": true
            }
        ])
    };

    const response = await fetch(`https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings/account`, options);
    if (!response.ok) {
        console.warn('failed to set settings for', email, await response.text());
        return false;
    }
    return true;
 }

 const runForUser = async (user: User)=> {
    const signatureName = await getSignatureName(user);
    if (!signatureName) {
        return false;
    }
    console.log('user has signature', user.mail, signatureName)
    // return;
    console.log(`setting ${signatureName} for ${user.mail}`);
    await changeUserSignature(user, signatureName);
 }

 //run for one user
 const user = users.find(u => u.mail === '[email protected]');
 if (user) {
    await runForUser(user);
 } else {
    console.error("failed to find user")
 }

 //run for all users
 // for (const user of users) {
 //     await runForUser(user);
 // }
	/*
	Copyright 2025

	Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the “Software”), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

	The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

	THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
	*/
	import type {User} from "@microsoft/microsoft-graph-types";
	import {
	TokenCredentialAuthenticationProvider
	} from "@microsoft/microsoft-graph-client/authProviders/azureTokenCredentials/index.js";
	import {Client} from "@microsoft/microsoft-graph-client";
	import {ClientSecretCredential} from "@azure/identity";

	const authorization = process.env.OWA_BEARER_TOKEN ?? 'Bearer asdf.asdf.asdf';

	const credential = new ClientSecretCredential(
	process.env.OAUTH_CLIENT_TENANT ?? "",
	process.env.OAUTH_CLIENT_ID ?? "",
	process.env.OAUTH_CLIENT_SECRET ?? "",
	);
	const authProvider = new TokenCredentialAuthenticationProvider(credential, {
	scopes: ["https://graph.microsoft.com/.default"],
	});

	export const client = Client.initWithMiddleware({
	// debugLogging: true,
	authProvider,
	});

	const usersResponse = await client
	.api("/users")
	.header("ConsistencyLevel", "eventual")
	.filter("accountEnabled eq true and not(employeeId eq null)")
	.get();

	const users = usersResponse.value as User[];


	const generateSignatureText = (user: User) => {
	return `${user.displayName}
	${user.jobTitle}
	${(user.businessPhones ?? [''])[0]}
	${user.mail}`
	}

	const generateSignatureHtml = (user: User)=> {
	return `
	<p style="padding: 5px 10px 0 0; margin: 0; color: #254F59; font-family: Arial; font-size: 17px; font-weight: bold; text-transform: uppercase"><span style="color: #254F59;">${user.displayName}</span></p>
	<p style="padding: 0px 10px 4px 0; margin: 0; color: #262626; font-family: Arial; font-size: 13px; font-weight: normal; line-height: 1.6; text-align: left; vertical-align: top;"><span style="color: #254F59;">${user.jobTitle}</span></p>
	<p style="padding: 6px 0 5px 0; margin: 0; color: #000000; font-family: Arial; font-size: 13px; font-weight: normal;">
	${(user.businessPhones ?? [''])[0]}<br>
	<a href="mailto:${user.mail}" style="color: rgba(37, 79, 80, 0.82); line-height: 1.6;">${user.mail}</a><br>
	</p>
	`
	}


	export type GetSignResponse = {
	name: string
	value: string
	type: string
	source: string
	scope: string
	parentSetting: string
	Timestamp: number
	itemClass: string
	metadata?: string
	"@odata.context"?: string
	"@odata.id"?: string
	"@odata.etag"?: string
	id?: string
	createdDateTime?: string
	lastModifiedDateTime?: string
	secondaryKey?: string
	}

	const createList = async (user: User, name: string) => {
	const email = user.mail;
	const options = {
	method: 'POST',
	headers: {
	authorization,
	'Content-Type': 'application/json',
	'x-islargesetting': 'true',
	},
	body: JSON.stringify([
	{
	"itemClass": "RoamingSetting",
	"name": "roaming_signature_list",
	"scope": email,
	"secondaryKey": "roaming_signature_list",
	"type": "BlobArray",
	"value": name
	}
	])
	};

	const response = await fetch(`https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings/account`, options);
	if (response.ok) {
	console.log('created roaming signature list for', email);
	}
	}

	const getSignatureName = async (user: User)=> {
	const email = user.mail;
	const options = {
	method: 'GET',
	headers: {
	authorization,
	}
	};

	const response = await fetch(
	`https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings?settingname=roaming_signature_list,roaming_new_signature,roaming_reply_signature`,
	options
	);

	if (!response.ok) {
	console.warn('failed to get settings for', email);
	return null;
	}

	const signResponse = await response.json() as GetSignResponse[];
	const roamingSigList = signResponse.find(i => i.name.toLowerCase() === 'roaming_signature_list');
	if (!roamingSigList) {
	console.warn('no roaming_signature_list for', email, signResponse.length);
	// if (signResponse.length === 0) {
	// await createList(user, 'Roaming_Signature_List');
	// return 'Outlook Web Signature';
	// }
	return null;
	}

	if (roamingSigList.value === '') {
	console.warn('user has no roaming signatures', email);
	}

	const signatureNames = roamingSigList.value.split(',');
	if (signatureNames.length === 1) {
	return signatureNames[0];
	}

	const roamingNewSig = signResponse.find(i => i.name.toLowerCase() === 'roaming_new_signature');
	if (roamingNewSig && roamingNewSig.value !== '') {
	return roamingNewSig.value;
	}

	const roamingReplySig = signResponse.find(i => i.name.toLowerCase() === 'roaming_reply_signature');
	if (roamingReplySig && roamingReplySig.value !== '') {
	return roamingReplySig.value;
	}

	return signatureNames[0];
	}

	const changeUserSignature = async (user: User, signatureName: string)=> {
	const email = user.mail;
	const options = {
	method: 'PATCH',
	headers: {
	authorization,
	'Content-Type': 'application/json',
	// 'x-anchormailbox': email,
	'x-islargesetting': 'true',
	// 'x-routingparameter-sessionkey': `SMTP:${email}`
	},
	body: JSON.stringify([
	{
	"itemClass": "RoamingSetting",
	"metadata": "encoding:utf-8",
	"name": signatureName,
	"parentSetting": "roaming_signature_list",
	"scope": email,
	"secondaryKey": "htm",
	"timestamp": 638902835270616367,
	"type": "Blob",
	"value": generateSignatureHtml(user),
	"[email protected]": true
	},
	{
	"itemClass": "RoamingSetting",
	"metadata": "encoding:utf-8",
	"name": signatureName,
	"parentSetting": "roaming_signature_list",
	"scope": email,
	"secondaryKey": "txt",
	"timestamp": 638902835270616367,
	"type": "Blob",
	"value": generateSignatureText(user),
	"[email protected]": true
	}
	])
	};

	const response = await fetch(`https://outlook.office.com/ows/${email}/v1/OutlookCloudSettings/settings/account`, options);
	if (!response.ok) {
	console.warn('failed to set settings for', email, await response.text());
	return false;
	}
	return true;
	}

	const runForUser = async (user: User)=> {
	const signatureName = await getSignatureName(user);
	if (!signatureName) {
	return false;
	}
	console.log('user has signature', user.mail, signatureName)
	// return;
	console.log(`setting ${signatureName} for ${user.mail}`);
	await changeUserSignature(user, signatureName);
	}

	//run for one user
	const user = users.find(u => u.mail === '[email protected]');
	if (user) {
	await runForUser(user);
	} else {
	console.error("failed to find user")
	}

	//run for all users
	// for (const user of users) {
	// await runForUser(user);
	// }
No results found