Skip to content

Instantly share code, notes, and snippets.

@dansimau

dansimau/recursively-list-users-in-azure-ad-group.py

Last active May 18, 2022 14:03
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save dansimau/3e6926f30ec4c63dab7f2ba83ab00c8d to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save dansimau/3e6926f30ec4c63dab7f2ba83ab00c8d to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. dansimau revised this gist May 18, 2022. 1 changed file with 1 addition and 1 deletion.
    2 changes: 1 addition & 1 deletion recursively-list-users-in-azure-ad-group.py
    View file
    Original file line number Diff line number Diff line change
    @@ -10,7 +10,7 @@ def list_users_in_groups(group_names: List[str]):

    while len(groups_stack) > 0:
    group_name = groups_stack.pop(0)
    print("Processing group %s" % group_name)
    # print("Processing group %s" % group_name)

    json_data = subprocess.check_output(["az", "ad", "group", "member", "list", "--group", group_name])
    data = json.loads(json_data)
  2. dansimau created this gist May 18, 2022.
    41 changes: 41 additions & 0 deletions recursively-list-users-in-azure-ad-group.py
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,41 @@
    #!/usr/bin/env python3
    import json
    import subprocess
    import sys
    from typing import List

    def list_users_in_groups(group_names: List[str]):
    groups_stack: List[str] = group_names;
    users: List[str] = [];

    while len(groups_stack) > 0:
    group_name = groups_stack.pop(0)
    print("Processing group %s" % group_name)

    json_data = subprocess.check_output(["az", "ad", "group", "member", "list", "--group", group_name])
    data = json.loads(json_data)

    for object in data:
    if object["objectType"] == "Group":
    # print("Adding group %s (%s) to stack..." % (object["mail"], object["objectId"]))
    groups_stack.append(object["objectId"])
    elif object["objectType"] == "User":
    if "mail" not in object:
    raise Exception("user missing mail: %s" % object["objectid"])
    users.append(str.lower(object["mail"]))
    else:
    raise Exception("unknown object type: %s" % object["objectType"])

    return sorted(set(users))

    def main(args: List[str]):
    print("\n".join(list_users_in_groups(args)))

    def help():
    print("Usage: recursively-list-users-in-azure-ad-group.py <group name [..]>")

    if __name__ == "__main__":
    if len(sys.argv) < 2:
    help()
    else:
    main(sys.argv[1:])