Step by Step Guide to Building a Microsoft Intune API Integration in JS

Aug 8, 2024 • 6 minute read

Introduction

Hey there, fellow dev! Ready to dive into the world of Microsoft Intune API integration? You're in for a treat. This guide will walk you through the process of building a robust integration using JavaScript. We'll cover everything from authentication to advanced features, so buckle up!

Prerequisites

Before we jump in, make sure you've got:

An Azure AD account with the right permissions
Node.js installed on your machine
Your favorite code editor (I'm partial to VS Code, but you do you!)

Authentication

First things first, let's get you authenticated:

Head over to the Azure portal and register your application.
Grab your client ID, client secret, and tenant ID.

Trust me, you'll need these later!

Setting up the project

Let's get our project off the ground:

mkdir intune-api-integration
cd intune-api-integration
npm init -y
npm install @azure/msal-node axios

Implementing the API integration

Now for the fun part! Let's create our authentication function:

const msal = require('@azure/msal-node');

const config = {
  auth: {
    clientId: 'YOUR_CLIENT_ID',
    clientSecret: 'YOUR_CLIENT_SECRET',
    authority: 'https://login.microsoftonline.com/YOUR_TENANT_ID'
  }
};

const cca = new msal.ConfidentialClientApplication(config);

async function getToken() {
  const result = await cca.acquireTokenByClientCredential({
    scopes: ['https://graph.microsoft.com/.default']
  });
  return result.accessToken;
}

Next, let's build our base API request function:

const axios = require('axios');

async function makeApiRequest(endpoint, method = 'GET', data = null) {
  const token = await getToken();
  const response = await axios({
    method,
    url: `https://graph.microsoft.com/v1.0${endpoint}`,
    headers: {
      Authorization: `Bearer ${token}`,
      'Content-Type': 'application/json'
    },
    data
  });
  return response.data;
}

Core API operations

Now that we've got the basics, let's put them to use:

// Get all devices
async function getDevices() {
  return makeApiRequest('/deviceManagement/managedDevices');
}

// Create a device configuration
async function createDeviceConfig(config) {
  return makeApiRequest('/deviceManagement/deviceConfigurations', 'POST', config);
}

// Deploy an app
async function deployApp(app) {
  return makeApiRequest('/deviceAppManagement/mobileApps', 'POST', app);
}

Advanced features

Want to level up? Let's implement webhooks for real-time updates:

async function createSubscription(resource, changeType, notificationUrl) {
  const subscription = {
    changeType,
    notificationUrl,
    resource,
    applicationId: config.auth.clientId,
    expirationDateTime: new Date(Date.now() + 43200000).toISOString() // 12 hours from now
  };
  return makeApiRequest('/subscriptions', 'POST', subscription);
}

Best practices

Remember to handle errors gracefully and respect rate limits. Here's a quick example:

async function makeApiRequestWithRetry(endpoint, method = 'GET', data = null, retries = 3) {
  try {
    return await makeApiRequest(endpoint, method, data);
  } catch (error) {
    if (error.response && error.response.status === 429 && retries > 0) {
      const retryAfter = error.response.headers['retry-after'] || 10;
      await new Promise(resolve => setTimeout(resolve, retryAfter * 1000));
      return makeApiRequestWithRetry(endpoint, method, data, retries - 1);
    }
    throw error;
  }
}

Testing and debugging

When things go sideways (and they will), the Graph Explorer is your best friend. Use it to test your API calls and debug any issues you encounter.

Conclusion

And there you have it! You're now equipped to build a killer Microsoft Intune API integration. Remember, the official Microsoft Graph documentation is always there if you need more details. Now go forth and integrate!

Happy coding, and may your API calls always return 200 OK! 🚀