-
Notifications
You must be signed in to change notification settings - Fork 0
/
Remove_Re-Add_Mobile_Device_Static_Group.py
91 lines (69 loc) · 3.21 KB
/
Remove_Re-Add_Mobile_Device_Static_Group.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
#!/usr/bin/env python3
# Matthew Prins 2023
# https://github.com/MatthewPrins/Jamf/
# removes members from mobile device static group temporarily
# IDs of static group members backed up to staticgroupmembers.txt
# pip install requests if not already done
import json
import requests
import time
from datetime import datetime
############################
# Editable variables
# Jamf credentials
username="xxxxxx"
password="xxxxxx"
jamfurl="https://xxxxxx.jamfcloud.com"
# Mobile device static group ID number -- found in URL on group's page
groupID="123"
# Number of minutes to wait until adding members back into static group
waitminutes=10
############################
# definition for fetching API token
def fetchtoken():
response = requests.post(url=jamfurl + "/api/v1/auth/token", headers={'Accept': 'application/json'}, auth=(username, password))
print("new token fetched\n")
return response.json()['token'], datetime.strptime(response.json()['expires'], '%Y-%m-%dT%H:%M:%S.%fZ')
# definition for invalidating API token
def invalidatetoken():
response = requests.post(url=jamfurl + "/api/v1/auth/invalidate-token", headers={'Authorization': 'Bearer ' + token})
############################
# get initial token
token,tokenexpiration = fetchtoken()
# pull list of group members from API into dictionary
response = requests.get(url=jamfurl + "/JSSResource/mobiledevicegroups/id/" + str(groupID), headers={'Accept': 'application/json','Authorization': 'Bearer ' + token})
dictionary=json.loads(response.text)["mobile_device_group"]
#iterate through dictionary to get IDs
IDs = []
for device in dictionary["mobile_devices"]:
IDs.append(device["id"])
# for safety write IDs to staticgroupmembers.txt
print(str(len(IDs)) + " members in static group: " + str(dictionary["name"]) + " (" + groupID + ")\n")
if IDs != []:
with open('staticgroupmembers.txt', 'w') as f:
f.write(str(IDs))
print("backed up group members to staticgroupmembers.txt\n")
#iterate through IDs to create XML to delete group members
XML = "<mobile_device_group><mobile_device_deletions>"
for ID in IDs:
XML = XML + "<mobile_device><id>" + str(ID) + "</id></mobile_device>"
XML = XML + "</mobile_device_deletions></mobile_device_group>"
#API call to delete members
print("sending command to delete members, please wait\n")
response = requests.put(url=jamfurl + "/JSSResource/mobiledevicegroups/id/" + str(groupID), headers={'Content-Type': 'application/xml','Authorization': 'Bearer ' + token}, data=XML)
print("members deleted\n")
#wait
print("waiting for " + str(waitminutes) + " minutes\n")
time.sleep(waitminutes*60)
print("waiting done\n")
#change XML to add group members instead of deleting
XML = XML.replace("mobile_device_deletions", "mobile_device_additions")
# if less than 5 minutes left, invalidate token and get a new one
if (tokenexpiration-datetime.utcnow()).total_seconds() < 600:
invalidatetoken()
token,tokenexpiration = fetchtoken()
#API call to restore members
print("sending command to restore members, please wait\n")
response = requests.put(url=jamfurl + "/JSSResource/mobiledevicegroups/id/" + str(groupID), headers={'Content-Type': 'application/xml','Authorization': 'Bearer ' + token}, data=XML)
print("members restored, script closing\n")
exit()