diff --git a/MakeMeAnAdmin.sh b/MakeMeAnAdmin.sh
index 5c2a54f..cceab06 100644
--- a/MakeMeAnAdmin.sh
+++ b/MakeMeAnAdmin.sh
@@ -1,87 +1,1621 @@
#!/bin/bash
-###############################################
-# This script will provide temporary admin #
-# rights to a standard user right from self #
-# service. First it will grab the username of #
-# the logged in user, elevate them to admin #
-# and then create a launch daemon that will #
-# count down from 30 minutes and then create #
-# and run a secondary script that will demote #
-# the user back to a standard account. The #
-# launch daemon will continue to count down #
-# no matter how often the user logs out or #
-# restarts their computer. #
-###############################################
-
-#############################################
-# find the logged in user and let them know #
-#############################################
-
-currentUser=$(who | awk '/console/{print $1}')
-echo $currentUser
-
-osascript -e 'display dialog "You now have administrative rights for 30 minutes. DO NOT ABUSE THIS PRIVILEGE..." buttons {"Make me an admin, please"} default button 1'
-
-#########################################################
-# write a daemon that will let you remove the privilege #
-# with another script and chmod/chown to make #
-# sure it'll run, then load the daemon #
-#########################################################
-
-#Create the plist
-sudo defaults write /Library/LaunchDaemons/removeAdmin.plist Label -string "removeAdmin"
-
-#Add program argument to have it run the update script
-sudo defaults write /Library/LaunchDaemons/removeAdmin.plist ProgramArguments -array -string /bin/sh -string "/Library/Application Support/JAMF/removeAdminRights.sh"
-
-#Set the run inverval to run every 7 days
-sudo defaults write /Library/LaunchDaemons/removeAdmin.plist StartInterval -integer 1800
-
-#Set run at load
-sudo defaults write /Library/LaunchDaemons/removeAdmin.plist RunAtLoad -boolean yes
-
-#Set ownership
-sudo chown root:wheel /Library/LaunchDaemons/removeAdmin.plist
-sudo chmod 644 /Library/LaunchDaemons/removeAdmin.plist
-
-#Load the daemon
-launchctl load /Library/LaunchDaemons/removeAdmin.plist
-sleep 10
-
-#########################
-# make file for removal #
-#########################
-
-if [ ! -d /private/var/userToRemove ]; then
- mkdir /private/var/userToRemove
- echo $currentUser >> /private/var/userToRemove/user
+##############################################################
+#
+# This script can be run to help an admin set up the Jamf Setup
+# app within Jamf Pro. It will create the necessary Extension Attribute
+# with as many options as you need, the appropriate smart groups,
+# and configure the Jamf Setup App with all of the settings you want.
+#
+###############
+# YOU WILL NEED
+###############
+#
+# Before running this script make sure you have the following dependencies in place!
+# 1. You have a Jamf Pro Admin user account and password
+# 2. The Jamf Setup app needs to already exist as an app record in Jamf Pro under Devices/Mobile Device Apps
+# 3. The name you would like to give the extension attribute that determines the loadout for a device
+# 4. All of the options you would like for different possible loadouts
+# 5. The hexadecimal color codes for what you would like to be the background, text, and border colors.
+# You will also be able to choose from a color picker if you don't know the options (optional)
+# 6. The URL of a hosted image to display when the app opens (optional)
+# 7. Any messaging you would like to change (optional)
+#
+# Upon completion or failure, you can find the logs at ~/Desktop/JamfSetupConstructorLogs.txt
+#
+# Do not change anything below this line manually, the script will prompt you for input
+#
+#########
+# LICENSE
+#########
+#
+# MIT License
+#
+# Copyright (c) 2019 Zach Halliwell
+#
+# Permission is hereby granted, free of charge, to any person obtaining a copy
+# of this software and associated documentation files (the "Software"), to deal
+# in the Software without restriction, including without limitation the rights
+# to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+# copies of the Software, and to permit persons to whom the Software is
+# furnished to do so, subject to the following conditions:
+#
+# The above copyright notice and this permission notice shall be included in all
+# copies or substantial portions of the Software.
+#
+# THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+# IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+# FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+# AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+# LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+# OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+# SOFTWARE.
+#
+# Created by Zach Halliwell
+# https://github.com/zghalliwell
+#
+###############################################################
+
+###################################################
+# ESTABLISH STARTING VARIABLES FUNCTIONS AND ARRAYS
+###################################################
+
+#Do not manually edit these
+JSCVersion="Jamf Setup Constructor V1.3"
+jamfProURL=
+initialAnswer=
+adminUser=
+adminPass=
+adminRecord=
+accountRecord=
+privilegeVerify=
+accountID=
+setupUser="jamfSetup"
+setupPass=
+adminPrivileges=
+passwordOption=
+setupTest=
+EAName=
+EANameVerification=
+EAOptions=()
+EAOptionIndex=1
+EAOptionName=
+EAOptionVerification=
+EAOptionCreateAnother=
+EAConfirmationMessage=
+messageIndex=
+optionChoice=
+optionalVerification=
+EANumberOfOptions=
+numberOfSmartGroups=
+smartGroupChoice=
+smartGroupName=
+smartGroupNameArray=()
+finalMessage=
+finalMessageChoice=
+EAindex=
+smartGroupIndex=
+EAXML=
+smartGroupXML=()
+smartGroupXMLindex=
+appConfigOptions=
+appConfig=
+logPath=~/Desktop/JamfSetupConstructorLogs.txt
+closingSelection=
+RGBcolor=
+hexColor=
+defaultColor=
+siteArray=()
+siteList=""
+site=
+sgIDarray=()
+createDeconstructor="Yes"
+duplicateAppRecordCreated=0
+
+#Functions:
+
+#Function to convert RGB value to Hexadecimal
+function getHex() {
+ #Remove the commas from the RGB value
+ RGB=$(echo $1 | tr -d ,)
+
+ #Grab the specific values for each segment and divide by 256 to go from hi-res to standard values
+ R=$(echo $RGB | awk '{print $1}')
+ R=$(echo $(($R/256)))
+ G=$(echo $RGB | awk '{print $2}')
+ G=$(echo $(($G/256)))
+ B=$(echo $RGB | awk '{print $3}')
+ B=$(echo $(($B/256)))
+ echo "$R $G $B"
+
+ #Convert the RGB value to a Hexadecimal value
+ # NOTE: due to the calculations, this value may be off by the tiniest fraction of a decimal, but the resulting
+ # color will be virutally indinctual from the naked eye
+ hexColor=$(ruby -pae '$_=?#+"%02X"*3%$F' <<< "$R $G $B")
+}
+
+#Function to convert Hexadecimal to RGB
+function getRGB() {
+ #take off the pound sign at the front
+ hex=$(echo "${1}" | sed 's/#//g')
+
+ #split up the three sections of the Hexadecimal
+ a=$(echo $hex | cut -c-2)
+ b=$(echo $hex | cut -c3-4)
+ c=$(echo $hex | cut -c5-6)
+
+ #convert them to RGB decimal format
+ r=$(echo "ibase=16; $a" | bc)
+ g=$(echo "ibase=16; $b" | bc)
+ b=$(echo "ibase=16; $c" | bc)
+
+ #Multiply by 256 for high resolution input
+ r=$(($r*256))
+ g=$(($g*256))
+ b=$(($b*256))
+
+ # NOTE: due to the calculations, this value may be off by the tiniest fraction of a decimal, but the resulting
+ # color will be virutally indinctual from the naked eye
+ echo "$r, $g, $b"
+}
+
+#Function to delete content that has been created if any errors cause the process to stop
+function rollback() {
+ echo "$(date) Rolling back what has been created..." >> $logPath
+ #Delete smart groups if they exist
+ #Calculate how smart groups have been created
+ smartGroupIDSize=$(echo "${#sgIDarray[@]}")
+
+ if [[ "$smartGroupIDSize" > 0 ]]; then
+ smartGroupIDSizeIndex=$(($smartGroupIDSize-1))
+ echo "$(date) $smartGroupIDSize group(s) will be deleted..." >> $logPath
+
+ #Loop through and delete each smart group that was created
+ for i in $(seq 0 $smartGroupIDSizeIndex); do
+ curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledevicegroups/id/${sgIDarray[$i]} -X DELETE
+ echo "$(date) Smart Group with ID ${sgIDarray[$i]} deleted..." >> $logPath
+ done
+ fi
+
+ #Delete the extension attribute if it exists
+ curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceextensionattributes/id/$EAidFormatted -X DELETE
+ echo "$(date) Extension attribute has been deleted..." >> $logPath
+
+ #If sites are configured, delete the duplicate app record created in the new site
+ if [[ "$currentSite" != "$site" ]] && [[ "$duplicateAppRecordCreated" == 1 ]]; then
+ #Delete the duplicate app record
+ curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceapplications/id/$jamfSetupID -X DELETE
+ echo "$(date) Duplicate app record with ID $jamfSetupID deleted..." >> $logPath
+ fi
+}
+
+#Optional Variable Defaults
+backgroundColor="#F8F8F8"
+pageTextColor="#444444"
+buttonColor="#37BB9A"
+buttonTextColor="#F8F8F8"
+headerLogoURL="https://resources.jamf.com/images/logos/Jamf-color.png"
+mainPageTitle="Make a Selection"
+mainPageBody="Select the appropriate role below, and then click Submit to configure your device"
+buttonText="Submit"
+successPageTitle="Success"
+successPageBody="You have selected: "'$SELECTION'". Press the home button or swipe up to begin using this device."
+
+###########################################
+# BEGINNING MESSAGE AND VARIABLE COLLECTION
+###########################################
+
+#Prompt the user with the prerequisites needed to run this script successfully and allow them to quit if they're not ready. If they quit, script will exit 0 and notate in logs
+
+#Create Log File and overwrite previous log files
+echo "################################
+# JAMF SETUP CONSTRUCTOR
+################################
+" > $logPath
+echo $(date) "Jamf Setup Constructor initiated, prompting user to make sure dependencies are in place..." >> $logPath
+
+initialAnswer=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "Welcome to The Jamf Setup Constructor!
+_______________________________________
+
+BEFORE PROCEEDING, YOU WILL NEED:
+ 1. You have a Jamf Pro Admin user account and password
+ 2. The Jamf Setup app needs to already exist as an app record in Jamf Pro under Devices/Mobile Device Apps
+ 3. The name you would like to give the extension attribute that determines the loadout for a device
+ 4. All of the options you would like for different possible loadouts
+ 5. If you would like to change the color scheme of the Jamf Setup app, you will need to know which colors you want to use. If you do not know the hexadecimal color code of the color you want, you will have the ability to choose from a color picker as well.(optional)
+ 6. The URL of a hosted image to display when the app opens (optional)
+ 7. Any messaging you would like to change (optional)
+
+If you do not have these items necessary, hit Quit and gather them before proceeding." with title "$JSCVersion" with icon caution buttons {"Quit", "Proceed"} default button 2)
+end timeout
+EOF
+)
+
+#If the user clicks quit, stop the script immediately
+if [[ $initialAnswer == "Quit" ]]; then
+ echo $(date) "User chose to quit session, terminating..." >> $logPath
+ exit 0
+ fi
+
+#Prompt the user for the URL of their Jamf Pro server
+jamfProURL=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Please enter the URL of your Jamf Pro server" default answer "ex. https://my.jamf.pro" with title "$JSCVersion" buttons {"OK"} default button 1)
+end timeout
+EOF
+)
+echo $(date) "Jamf Pro Server: $jamfProURL" >> $logPath
+
+echo "
+################################
+# ACCOUNT VALIDATION AND JAMF SETUP USER CREATION
+################################
+" >> $logPath
+#
+# The admin account for Jamf Pro must have AT LEAST the following Privileges:
+#-CREATE/READ/UPDATE on Jamf Pro User Accounts and Groups
+#-CREATE/READ/UPDATE on Mobile Device Applications
+#-READ on Sites
+#-CREATE/DELETE on Mobile Device Extension Attributes
+#-CREATE/DELETE on Smart Mobile Device Groups
+#
+# After proceeding, first prompt the user to enter admin credentials for their Jamf Pro server
+adminUser=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Please enter the username of an ADMIN for your Jamf Pro server at $jamfProURL" default answer "" with title "$JSCVersion" buttons {"OK"} default button 1)
+end timeout
+EOF
+)
+echo $(date) "Jamf Pro admin account to be used: $adminUser" >> $logPath
+
+# Prompt for their admin password with hidden input
+adminPass=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Please enter the password for admin user $adminUser for your Jamf Pro server at $jamfProURL" default answer "" with title "$JSCVersion" buttons {"OK"} default button 1 with hidden answer)
+end timeout
+EOF
+)
+
+"/Library/Application Support/JAMF/bin/jamfHelper.app/Contents/MacOS/jamfHelper" -windowType utility -title "Authenticating..." -description "Testing your credentials and privileges, please stand by..." -alignDescription center &
+
+# The script will now verify the user's account has at least these privileges
+echo $(date) "Checking to see if admin user $adminUser has the correct privileges..." >> $logPath
+adminRecord=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/accounts/username/$adminUser -H "Accept: text/xml" -X GET)
+adminPrivileges=$(echo $adminRecord | xmllint --xpath '/account/privileges/jss_objects' -)
+
+# Testing user's privileges to see if the necessary ones exist
+if [[ $adminPrivileges == *"Read Mobile Device Applications"* ]] && [[ $adminPrivileges == *"Create Mobile Device Applications"* ]] && [[ $adminPrivileges == *"Update Mobile Device Applications"* ]] && [[ $adminPrivileges == *"Create Mobile Device Extension Attributes"* ]] && [[ $adminPrivileges == *"Delete Mobile Device Extension Attributes"* ]] && [[ $adminPrivileges == *"Create Accounts"* ]] && [[ $adminPrivileges == *"Read Accounts"* ]] && [[ $adminPrivileges == *"Update Accounts"* ]] && [[ $adminPrivileges == *"Create Smart Mobile Device Groups"* ]] && [[ $adminPrivileges == *"Delete Smart Mobile Device Groups"* ]] && [[ $adminPrivileges == *"Read Sites"* ]]; then
+
+ #Admin account has the necessary privileges needed, awesome!
+ echo $(date) "Admin user $adminUser has all of the privileges necessary, continuing on..." >> $logPath
+ else
+ echo $(date) "The admin user credentials that were entered do not meet all of the privelege requirements. Please log into Jamf Pro and give the account the following privileges:
+ -CREATE/READ/UPDATE on Jamf Pro User Accounts and Groups
+ -CREATE/READ/UPDATE on Mobile Device Applications
+ -READ on Sites
+ -CREATE/DELETE on Mobile Device Extension Attributes
+ -CREATE/DELETE on Smart Mobile Device Groups
+ Exiting script." >> $logPath
+
+ #Inform the user that the account does not have proper privileges
+ # Kill the Jamf Helper prompt that's telling them to wait
+ pkill jamfHelper
+
+ osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to display dialog "Your admin account does not have the correct privileges. Please log into Jamf Pro and give the account the following permissions:
+
+ -CREATE/READ/UPDATE on Jamf Pro User Accounts and Groups
+ -CREATE/READ/UPDATE on Mobile Device Applications
+ -READ on Sites
+ -CREATE/DELETE on Mobile Device Extension Attributes
+ -CREATE/DELETE on Smart Mobile Device Groups" with title "$JSCVersion" buttons {"OK"} default button 1
+ end timeout
+EOF
+ exit 0
+ fi
+
+##########################
+# JAMF SETUP USER CREATION
+##########################
+#
+# The Jamf Setup app requires its own API account that it can use to change the loadout of devices
+# when the user selects an option. This script will first check to see if the default
+# account exists in Settings/Jamf Pro User Accounts and Groups and if it doesn't, it will
+# create the account with the necessary privileges. If it does exist, it will give it the
+# correct privileges. It will then generate a random 25 character string to use as the password,
+# this is the password that Jamf Setup will use to authenticate with that account. Once
+# created, it will ask if you would like to copy that password to your clipboard to use OR
+# allow you to create your own password to use. It will then have you go into Jamf Pro and update
+# the password on the default account that was created. To do so, go to
+# Settings/Jamf Pro User Accounts and Groups and click "jamfSetup" and update the password
+# field with the randomly generated password that has been provided. The script will test
+# if the password has been updated and won't proceed until it can validate that it can do so.
+
+echo $(date) "JSC will now check if the $setupUser account exists in Jamf Pro or not..." >> $logPath
+
+#First run an API command to see if the account exists and save the response in a variable and hide any errors that might
+#come through if the account doesn't exist
+accountRecord=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/accounts/username/$setupUser -H "Accept: text/xml" -X GET)
+accountVerify=$(echo $accountRecord | xmllint --xpath '/account/name/text()' - 2>/dev/null)
+
+#Test to see if the account is created, if it's not created then create it with appropriate permissions
+#If it is created, check its permissions and update them with the appropriate permissions if necessary
+
+if [[ "$accountVerify" != "$setupUser" ]]; then
+ #If the account doesn't exist, create it with permissions needed for API
+ echo $(date) "Account $setupUser does not exist, creating..." >> $logPath
+ outcome=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/accounts/userid/0 -H "Content-type: application/xml" -X POST -d "
+ $setupUser
+ false
+ API Service Account created on $(date) by $adminUser
+
+
+ Enabled
+ false
+ Full Access
+ Custom
+
+
+ Update Mobile Device Extension Attributes
+ Read Mobile Devices
+ Update Mobile Devices
+ Update User
+
+
+
+
+
+
+
+
+ ")
+ outcomeFormatted=$(echo "$outcome" | xmllint --xpath '/account/id/text()' -)
+ echo $(date) "The $setupUser account has been created at $jamfProURL with an ID of $outcomeFormatted" >> $logPath
+ accountID="$outcomeFormatted"
+ else
+ #If it does exist, check its permissions
+ echo $(date) "Account already exists, checking permissions..." >> $logPath
+ privilegeVerify=$(echo $accountRecord | xmllint --xpath '/account/privileges/jss_objects' -)
+ accountID=$(echo $accountRecord | xmllint --xpath '/account/id/text()' -)
+
+ if [[ $privilegeVerify != *"Update Mobile Device Extension Attributes"* ]] || [[ $privilegeVerify != *"Update Mobile Devices"* ]] || [[ $privilegeVerify != *"Update User"* ]] || [[ $privilegeVerify != *"Read Mobile Devices"* ]]; then
+ #If it has incorrect permissions, correct them
+ echo $(date) "Account $setupUser doesn't have the correct permissions, updating to correct permission set" >> $logPath
+ curl -su $adminUser:$adminPass $jamfProURL/JSSResource/accounts/userid/$accountID -H "Content-type: text/xml" -X PUT -d "API Service Account updated on $(date) by $adminUserUpdate Mobile Device Extension AttributesRead Mobile DevicesUpdate Mobile DevicesUpdate User"
+ else
+ echo $(date) "Account $setupUser has the correct permissions." >> $logPath
+ fi
+fi
+
+##############################
+# JAMF SETUP PASSWORD CREATION
+##############################
+# Now generate a random 25 character alphanumeric string to use as the password for the jamfSetup API account
+# Once the password is generated, the user will be prompted to either copy that to their clipboard so they
+# can enter it in the Jamf Pro GUI or they can choose to create their own password if they wish
+
+#Generate a random 25-character alphanumeric string and save it in the setupPass variable
+setupPass=$(perl -e '@c=("A".."Z","a".."z",0..9);$p.=$c[rand(scalar @c)] for 1..25; print "$p\n"')
+
+# Kill the Jamf Helper prompt that's telling them to wait
+pkill jamfHelper
+
+#Prompt the user to ask them if they would like to use the randomly generated password or enter their own password
+passwordOption=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "JSC has created a special API account for the Jamf Setup app to use in order for the app to actually be able to change the loadout of the devices. For security reasons, you will need to manually enter the password in the Jamf Pro GUI at
+
+Settings/Jamf Pro User Accounts and Groups/$setupUser
+
+To randomly generate a 25 character alphanumeric password, click the Copy to Clipboard button below. To specify your own password, click Manually Enter Password. Once you select an option, a browser window will automatically be opened to the EDIT page of the $setupUser account within Jamf Pro." with title "$JSCVersion" buttons {"Copy to Clipboard","Manually Enter Password"} default button 1)
+end timeout
+EOF
+)
+echo $(date) "User has selected $passwordOption..." >> $logPath
+
+# If they selected to copy to clipboard, copy the random password to their clipboard and prompt them to go to jamf
+# and enter it as the password for the jamfSetup user. If they opted to manually set it, prompt them to enter the
+# password they would like to use and again prompt them to enter it in jamf pro. With either option, validate that the
+# account and password work before continuing.
+
+if [[ $passwordOption == "Copy to Clipboard" ]]; then
+ echo $(date) "Copying password to clipboard" >> $logPath
+ echo $setupPass | pbcopy
+ #Open jamf pro to the Jamf Setup user account and edit so they can easily paste the password
+ open "$jamfProURL/accounts.html?id=$accountID&o=u"
+ osascript << EOF
+ with timeout of 60000 seconds
+tell application "System Events" to display dialog "STOP!
+
+The password has been copied to your clipboard. At this moment, a browser should have automatically opened to take you to the account page for the $setupUser user. If you weren't already logged in, do so and the page should already be in EDIT mode. Paste the password into both of the password fields on that user account and click SAVE.
+
+When you have SAVED and finished, click TEST below.
+
+(If you accidentally lost what was on your clipboard, just hit TEST anyway, when it fails it will re-copy the password to your clipboard and prompt you to test again.)" with title "$JSCVersion" buttons {"TEST"} default button 1
+end timeout
+EOF
+
+ #test out the credentials with a simple read API call to make sure it can authenticate
+ testCall=$(curl -su $setupUser:$setupPass $jamfProURL/JSSResource/mobiledevices -H "Accept: text/xml" -X GET | xmllint --xpath '/mobile_devices/size/text()' -)
+
+ #If it returns a number, that means the call succeeded
+ if [[ $testCall > 0 ]] || [[ $testCall == 0 ]]; then
+ setupTest="Successful"
+ echo $(date) "The test call succeeded" >> $logPath
+ else
+ echo $(date) "The test call failed. Trying again" >> $logPath
+ fi
+
+ while [[ $setupTest != "Successful" ]]; do
+ echo $setupPass | pbcopy
+ open "$jamfProURL/accounts.html?id=$accountID&o=u"
+ osascript << EOF
+ with timeout of 60000 seconds
+tell application "System Events" to display dialog "Authentication Failed
+
+The password has been copied to your clipboard again. At this moment, pause for a second and go log into Jamf Pro (the web page should have automatically reopened to the account again. If it did not, go into Settings/Jamf Pro User Accounts and Groups and find the $setupUser user that was created. When you edit that user, paste the password into both of the password fields on that user account.
+
+When you have SAVED and finished, click TEST below.
+
+(If you accidentally lost what was on your clipboard, just hit TEST anyway, when it fails it will re-copy the password and prompt you to test again.)" with title "$JSCVersion" buttons {"TEST"} default button 1
+end timeout
+EOF
+
+ #test out the credentials with a simple read API call to make sure it can authenticate
+ testCall=$(curl -su $setupUser:$setupPass $jamfProURL/JSSResource/mobiledevices -H "Accept: text/xml" -X GET | xmllint --xpath '/mobile_devices/size/text()' -)
+
+ #If it returns a number, that means the call succeeded
+ if [[ $testCall > 0 ]] || [[ $testCall == 0 ]]; then
+ setupTest="Successful"
+ echo $(date) "The test call succeeded" >> $logPath
+ else
+ echo $(date) "The test call failed. Trying again" >> $logPath
+ fi
+ done
+ else
+ echo $(date) "User chose to enter their own password, prompting them to enter it." >> $logPath
+ open "$jamfProURL/accounts.html?id=$accountID&o=u"
+ #Prompt the user to enter a password, update the account in Jamf Pro and then hit test to test it out
+ setupPass=$(osascript << EOF
+ with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "STOP
+A browser window should have automatically opened to Jamf Pro, if you're not logged in then do so and it should bring you right to the $setupUser account in EDIT mode. Set the password for that account how you want it.
+
+Make sure to SAVE and then return to this dialog and enter the password you used in the box below and hit TEST." default answer "ENTER PASSWORD HERE" with title "$JSCVersion" buttons {"TEST"} default button 1 with hidden answer)
+end timeout
+EOF
+)
+
+ #test out the credentials with a simple read API call to make sure it can authenticate
+ testCall=$(curl -su $setupUser:$setupPass $jamfProURL/JSSResource/mobiledevices -H "Accept: text/xml" -X GET | xmllint --xpath '/mobile_devices/size/text()' -)
+
+ #If it returns a number, that means the call succeeded
+ if [[ $testCall > 0 ]] || [[ $testCall == 0 ]]; then
+ setupTest="Successful"
+ echo $(date) "The test call succeeded" >> $logPath
+ else
+ echo $(date) "The test call failed. Trying again" >> $logPath
+ fi
+
+ while [[ $setupTest != "Successful" ]]; do
+ setupPass=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Authentication Failed
+
+FIRST log into Jamf Pro and go to Settings/Jamf Pro User Accounts and Groups and select the account $setupUser and set the password for that account how you want it.
+
+SAVE and then return to this dialog and enter the password in the box below and hit TEST." default answer "ENTER PASSWORD HERE" with title "$JSCVersion" buttons {"TEST"} default button 1 with hidden answer)
+end timeout
+EOF
+)
+
+ #test out the credentials with a simple read API call to make sure it can authenticate
+ testCall=$(curl -su $setupUser:$setupPass $jamfProURL/JSSResource/mobiledevices -H "Accept: text/xml" -X GET | xmllint --xpath '/mobile_devices/size/text()' -)
+
+ #If it returns a number, that means the call succeeded
+ if [[ $testCall > 0 ]] || [[ $testCall == 0 ]]; then
+ setupTest="Successful"
+ echo $(date) "The test call succeeded" >> $logPath
+ else
+ echo $(date) "The test call failed. Trying again" >> $logPath
+ fi
+ done
+ fi
+
+#Test to see if the Jamf Setup app exists as an app record and save it's ID as a variable
+jamfSetupApp=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceapplications/name/Jamf%20Setup -H "Accept: text/xml" -X GET)
+jamfSetupID=$(echo $jamfSetupApp | xmllint --xpath '/mobile_device_application/general/id/text()' -)
+
+if [[ $jamfSetupID > 0 ]] && [[ $jamfSetupID < 99999999999999 ]]; then
+ echo $(date) "Jamf Setup app exists as Mobile Device App record with ID $jamfSetupID" >> $logPath
+ else
+ echo $(date) "Error: $jamfSetupID
+ exiting..." >> $logPath
+ osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to display dialog "There was an error attempting to verify the Jamf Setup app exists in your Mobile Device Apps section of Jamf Pro.
+
+ View the logs for more details. The script will now exit." with title "$JSCVersion" buttons {"OK"} default button 1
+ end timeout
+EOF
+ exit 0
+ fi
+
+echo $(date) "Jamf Setup account finished. Continuing on with Site Check...
+
+################################
+# CHECK IF SITES ARE CONFIGURED
+################################
+" >> $logPath
+# Next we will check and see if the user's server has sites configured and if so we will
+# prompt the user to choose which site to create the app, app config, and smart groups in
+
+echo "$(date) Checking for sites..." >> $logPath
+
+#Get the results of the sites endpoint
+sites=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/sites -H "Accept: text/xml" -X GET)
+
+#Parse the xml for the size of the sites endpoint
+siteCount=$(echo "$sites" | xmllint --xpath '/sites/size/text()' -)
+
+# Switch: If there are no sites, move on, if there are sites configured, prompt the user to see which one
+# they would like to create the app config and smart groups in
+case $siteCount in
+
+ "0")
+ echo "No sites configured on server $jamfProURL, moving on..." >> $logPath
+ ;;
+
+ *)
+ echo "$(date) | $siteCount site(s) configured. Prompting user to select which one they want to use..." >> $logPath
+
+ #Grab the name of each site in the server and save to an array
+ for index in $(seq 1 $siteCount); do
+ siteArray+=( "$(echo "$sites" | xmllint --xpath "/sites/site[$index]/name/text()" -)" )
+ done
+
+ #Create a temporary index to reference the containers in the array
+ siteIndex=$(($siteCount-1))
+
+ #Build out the list for the Apple Script prompt
+ for i in $(seq 0 $siteIndex); do
+ siteList=$(echo "$siteList, \"${siteArray[$i]}\"")
+ done
+
+ #Prompt user to select a site from the list
+ site=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to activate
+ tell application "System Events" to choose from list {$siteList} with prompt "It looks like your Jamf Pro server has sites configured. You can assign the Jamf Setup app and the Smart Groups that this script will create to a specific site or leave them unassigned. Which site would you like to configure these in? (If you don't want them associated with a site, just hit cancel to continue on with the script)"
+ end timeout
+EOF
+)
+ if [[ "$site" == "false" ]]; then
+ echo "$(date) User chose not to put content in a site..." >> $logPath
+ else
+ echo "$(date) User selected $site. The Jamf Setup app and smart groups will be assigned to this site..." >> $logPath
+ fi
+ ;;
+esac
+
+echo $(date) "Preliminary information gathered. Continuing on with Extension Attribute Setup...
+
+################################
+# EXTENSION ATTRIBUTE SETUP
+################################
+" >> $logPath
+
+#Prompt the user to name the Extension Attribute that will be created
+EAName=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Constructor will need to create a Mobile Device Extension Attribute in Jamf Pro to use to determine which loadout a device should get. What would you like to name this Extension Attribute? (ex. Loadout, Subdepartment, Role, etc.)" default answer "Loadout" with title "$JSCVersion" buttons {"OK"} default button 1)
+end timeout
+EOF
+)
+
+echo $(date) "User entered $EAName as the name for the extension attribute." >> $logPath
+
+#Have the user verify the name
+EANameVerification=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "You have chosen to name your Mobile Device Extension Attribute:
+
+$EAName
+
+Is this correct?" with title "$JSCVersion" buttons {"Yes", "No, Rename..."} default button 1)
+end timeout
+EOF
+)
+echo $(date) "Requesting user verify entry..." >> $logPath
+
+#Use a while loop to let them reset the EA Name if need be
+while [[ $EANameVerification != "Yes" ]]; do
+
+ #Rename the EAName variable
+ echo $(date) "User requested to re-enter the name" >> $logPath
+ EAName=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Re-enter the name for the Extension Attribute (ex. Loadout, Subdepartment, Role, etc.)" default answer "$EAName" with title "$JSCVersion" buttons {"OK"} default button 1)
+ end timeout
+EOF
+ )
+
+ #Have the user verify the name
+ echo $(date) "Requesting user verify re-entry..." >> $logPath
+ EANameVerification=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "You have chosen to name your Mobile Device Extension Attribute:
+
+$EAName
+
+Is this correct?" with title "$JSCVersion" buttons {"Yes", "No, Rename..."} default button 1)
+end timeout
+EOF
+)
+ done
+echo $(date) "Extension Attribute successfully named $EAName" >> $logPath
+
+#Explain to the user what the next step will entail for creating options for the Extension Attribute Dropdown
+osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to (display dialog "Next we will create options for your $EAName Extension Attribute. These will be the options that are displayed on the Jamf Setup screen for a user to choose from to decide what kind of loadout the device should receive.
+
+You will be prompted to add as many options as you would like and once you are finished we will proceed with the optional steps." with title "$JSCVersion" buttons {"OK"} default button 1)
+end timeout
+EOF
+
+echo $(date) "Requesting user enter options for the Extension Attribute and verify their entries..." >> $logPath
+
+while [[ $EAOptionIndex != 0 ]]; do
+
+ #Prompt the user to enter the name of the EA Option to create
+ EAOptionName=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Please enter the name for Option $EAOptionIndex of your $EAName Extension Attribute" default answer "" with title "$JSCVersion" buttons {"OK"} default button 1)
+ end timeout
+EOF
+)
+
+ #Have user verify their entry
+ EAOptionVerification=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "You entered:
+
+$EAOptionName
+
+Is this correct?" with title "$JSCVersion" buttons {"Yes", "No, try again..."} default button 1)
+end timeout
+EOF
+)
+
+ #Re-enter the name if need be
+ while [[ $EAOptionVerification != "Yes" ]]; do
+
+ #Rename the Option
+ EAOptionName=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Please enter the name for Option $EAOptionIndex of your $EAName Extension Attribute" default answer "" with title "$JSCVersion" buttons {"OK"} default button 1)
+ end timeout
+EOF
+)
+
+ #Have user verify their entry
+ EAOptionVerification=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "You entered:
+
+$EAOptionName
+
+Is this correct?" with title "$JSCVersion" buttons {"Yes", "No, try again..."} default button 1)
+end timeout
+EOF
+)
+ done
+
+ #Once verified, add the option to the EAOptions Array
+ EAOptions+=( "$(echo $EAOptionName)" )
+ echo " $EAOptionName has been added as an option for the Extension Attribute." >> $logPath
+
+ #Ask the user if they have more options to enter
+ EAOptionCreateAnother=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Option created! Would you like to create another option?" with title "$JSCVersion" buttons {"Yes", "No"} default button 1)
+ end timeout
+EOF
+)
+
+ #If they select yes to create another, continue the loop, if they select no, move on
+ if [[ $EAOptionCreateAnother == "Yes" ]]; then
+ EAOptionIndex=$(($EAOptionIndex+1))
+ else
+ EAOptionIndex=0
+ fi
+done
+
+#Create a count of the number of options and an index to reference the array
+EANumberOfOptions=$(echo "${#EAOptions[@]}")
+EAindex=$(($EANumberOfOptions-1))
+numberOfSmartGroups=$EANumberOfOptions
+
+echo $(date) "$EANumberOfOptions options created." >> $logPath
+
+#Build a message to show the user what has been created so far
+EAConfirmationMessage="A Mobile Device Extension Attribute named $EAName will be created with $EANumberOfOptions options named:
+"
+messageIndex=0
+for i in $(seq 0 $EAindex); do
+ EAConfirmationMessage="$EAConfirmationMessage
+ ${EAOptions[$i]}"
+ messageIndex=$(($messageIndex+1))
+ done
+
+#Display the message before moving on so the user can see what they've gotten set to be created so far
+osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to display dialog "Brilliant!
+
+$EAConfirmationMessage
+
+NOTE: Nothing has been created in Jamf Pro so far, please proceed to finish Construction." with title "$JSCVersion" buttons {"Proceed"} default button 1
+end timeout
+EOF
+
+echo $(date) "$EAConfirmationMessage
+" >> $logPath
+echo $(date) "Extension attribute section completed. Starting Optional Configurations
+
+################################
+# OPTIONAL CONFIGURATIONS
+################################
+" >> $logPath
+
+#Display a message to the user informing them of the options they can change and give them the option to keep the defaults or change them
+#If they select Keep Defaults, this section will be skipped and default values will be placed in the App Config for the Jamf Setup App
+#Even if options are skipped and defaults are kept, they can still change these options later in the App Config itself
+
+optionChoice=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "Next we will set up some optional configurations. All of these can be left to their defaults if you desire and later they can be changed in the App Configuration tab of the Jamf Setup mobile device app record within Jamf Pro.
+
+Here are the optional configurations and what they are currently set to:
+
+-Background Color: $backgroundColor
+-Page Text Color: $pageTextColor
+-Button Color: $buttonColor
+-Button Text Color: $buttonTextColor
+-Main Page Header Image URL: $headerLogoURL
+-Main Page Title: $mainPageTitle
+-Main Page Body: $mainPageBody
+-Button Text: $buttonText
+-Success Page Title: $successPageTitle
+-Success Page Body: $successPageBody
+
+If you want to keep these settings for now or change them at a later time, click Keep Settings.
+If you want to make changes to these now, select Change." buttons {"Keep Settings", "Change"} default button 2)
+end timeout
+EOF
+)
+if [[ "$optionChoice" == "Keep Settings" ]]; then
+ optionalVerification="Continue"
+ fi
+
+while [[ $optionalVerification != "Continue" ]]; do
+
+ echo $(date) "User selected to change the options; barrage of prompts ensuing..." >> $logPath
+#Prompt the user for each option and what they would like to change it to, verify each option they enter to make sure they enter them correctly
+
+######### BACKGROUND COLOR
+ buttonReturned=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "If you know the hexadecimal format of the BACKGROUND color you want (ex. #F8F8F8) click Enter Color Code or click Choose Color to pick a color from the color picker." with title "Background Color" buttons {"Enter Color Code", "Choose Color"} default button 2)
+ end timeout
+EOF
+ )
+ case $buttonReturned in
+ "Enter Color Code")
+ backgroundColor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Background Color" default answer "$backgroundColor" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+ )
+ ;;
+ "Choose Color")
+ defaultColor=$(getRGB "$backgroundColor")
+ RGBcolor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to activate
+ tell application "System Events" to choose color default color {$defaultColor}
+ end timeout
+EOF
+ )
+ getHex "$RGBcolor"
+ backgroundColor="$hexColor"
+ ;;
+ esac
+
+######## PAGE TEXT COLOR
+ buttonReturned=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "If you know the hexadecimal format of the PAGE TEXT color you want (ex. #F8F8F8) click Enter Color Code or click Choose Color to pick a color from the color picker." with title "Page Text Color" buttons {"Enter Color Code", "Choose Color"} default button 2)
+ end timeout
+EOF
+ )
+ case $buttonReturned in
+ "Enter Color Code")
+ pageTextColor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Page Text Color" default answer "$pageTextColor" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+ )
+ ;;
+ "Choose Color")
+ defaultColor=$(getRGB "$pageTextColor")
+ RGBcolor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to activate
+ tell application "System Events" to choose color default color {$defaultColor}
+ end timeout
+EOF
+ )
+ getHex "$RGBcolor"
+ pageTextColor="$hexColor"
+ ;;
+ esac
+
+######## BUTTON COLOR
+buttonReturned=$(osascript << EOF
+with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "If you know the hexadecimal format of the SUBMIT BUTTON color you want (ex. #F8F8F8) click Enter Color Code or click Choose Color to pick a color from the color picker." with title "Submit Button Color" buttons {"Enter Color Code", "Choose Color"} default button 2)
+ end timeout
+EOF
+ )
+ case $buttonReturned in
+ "Enter Color Code")
+ buttonColor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Button Color" default answer "$buttonColor" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+ )
+ ;;
+ "Choose Color")
+ defaultColor=$(getRGB "$buttonColor")
+ RGBcolor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to activate
+ tell application "System Events" to choose color default color {$defaultColor}
+ end timeout
+EOF
+ )
+ getHex "$RGBcolor"
+ buttonColor="$hexColor"
+ ;;
+ esac
+
+######## BUTTON TEXT COLOR
+buttonReturned=$(osascript << EOF
+with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "If you know the hexadecimal format of the SUBMIT BUTTON TEXT color you want (ex. #F8F8F8) click Enter Color Code or click Choose Color to pick a color from the color picker." with title "Submit Button Text Color" buttons {"Enter Color Code", "Choose Color"} default button 2)
+ end timeout
+EOF
+ )
+ case $buttonReturned in
+ "Enter Color Code")
+ buttonTextColor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Submit Button Text Color" default answer "$buttonTextColor" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+ )
+ ;;
+ "Choose Color")
+ defaultColor=$(getRGB "$buttonTextColor")
+ RGBcolor=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to activate
+ tell application "System Events" to choose color default color {$defaultColor}
+ end timeout
+EOF
+ )
+ getHex "$RGBcolor"
+ buttonTextColor="$hexColor"
+ ;;
+ esac
+
+######## TEXT
+ headerLogoURL=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "URL of Hosted Image to be used as logo on the main page" default answer "$headerLogoURL" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ mainPageTitle=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Main Page Title Text" default answer "$mainPageTitle" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ mainPageBody=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Main Page Body Text" default answer "$mainPageBody" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ buttonText=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Button Text" default answer "$buttonText" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ successPageTitle=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Success Page Title Text" default answer "$successPageTitle" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ successPageBody=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to text returned of (display dialog "Success Page Body Text" default answer "$successPageBody" buttons {"NEXT"} default button 1)
+ end timeout
+EOF
+)
+ optionalVerification=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Here are the options you have set, please double check!
+
+-Background Color: $backgroundColor
+-Page Text Color: $pageTextColor
+-Button Color: $buttonColor
+-Button Text Color: $buttonTextColor
+-Main Page Header Image URL: $headerLogoURL
+-Main Page Title: $mainPageTitle
+-Main Page Body: $mainPageBody
+-Button Text: $buttonText
+-Success Page Title: $successPageTitle
+-Success Page Body: $successPageBody
+
+If these look correct, hit Continue.
+If you need to make a change, hit Start Over." buttons {"Continue", "Start Over"} default button 1)
+end timeout
+EOF
+)
+ done
+
+
+#Report back to logs the details of the options chosen or the default options
+echo $(date) "Jamf Setup will be formatted with the following options:
+-Background Color: '"$backgroundColor"'
+-Page Text Color: '"$pageTextColor"'
+-Button Color: '"$buttonColor"'
+-Button Text Color: '"$buttonTextColor"'
+-Main Page Header Image URL: '"$headerLogoURL"'
+-Main Page Title: '"$mainPageTitle"'
+-Main Page Body: '"$mainPageBody"'
+-Button Text: '"$buttonText"'
+-Success Page Title: '"$successPageTitle"'
+-Success Page Body: '"$successPageBody"'
+
+################################
+# SMART GROUP SETUP
+################################
+
+Initiating Smart Group Section
+" >> $logPath
+
+#Have the user select whether or not they want an extra smart group created for Newly Assigned Devices
+smartGroupChoice=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "Smart Groups
+
+Scoping with the use of Jamf Setup requires Smart Mobile Device Groups to be created for each one of the loadout options that can be selected in your Extension Attribute. Constructor will create these smart groups for you with one of two options:
+
+OPTION 1: Include a Newly Enrolled Devices Group
+-This option allows an extra smart group to be created that can define Newly Enrolled Devices where the end user has not yet opened Jamf Setup and selected a loadout. This is helpful for new out of box deployments (or recently wiped devices) where you might want to have an empty Home Screen with just the Jamf Setup app displayed so the user can select a loadout to then receive the content provisioned for them.
+
+OPTION 2: Only include smart groups for the different options
+-This option is if you do not plan on having an out of box experience with Jamf Setup, and just want smart groups based on the extension attribute value.
+
+Which Option Would You Prefer?" with title "$JSCVersion" buttons {"Option 1", "Option 2"} default button 1)
+end timeout
+EOF
+)
+
+#If they select Option 1 to create the "Newly Enrolled Devices" group, add 1 to the number of Smart Groups and subtract 2 for the index to target the correct array container
+#If they select Option 2 then just subtract 1 to create the index to point at the correct array container
+if [[ $smartGroupChoice == "Option 1" ]]; then
+ numberOfSmartGroups=$(($numberOfSmartGroups+1))
+ smartGroupIndex=$(($numberOfSmartGroups-2))
+ echo $(date) "Option 1 selected; an extra group called JSC_Newly Enrolled Devices will be created" >> $logPath
+ else
+ smartGroupIndex=$(($numberOfSmartGroups-1))
+ echo $(date) "Option 2 selected; smart groups will only be made to correspond with the Extension Attribute Options" >> $logPath
+fi
+
+#Build Smart Group Names
+#Generate array of names based off of the options in the Extension Attribute
+for i in $(seq 0 $EAindex); do
+ #add EA name to template
+ smartGroupName="JSC_${EAOptions[$i]}"
+
+ #add to smart group name array
+ smartGroupNameArray+=( "$smartGroupName" )
+done
+
+echo $(date) "Smart group section completed.
+
+################################
+# JAMF SETUP DECONSTRUCTOR
+################################" >> $logPath
+
+#This script can build an optional script on the user's desktop that can be used to delete everything that is made after a successful run.
+#This can be handy in case the user decides they want to start over or if they're just testing or creating demo environments
+
+createDeconstructor=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "DE-Constructor Script:
+After a successful run, we can create a script on your desktop that can be used to DELETE everything that gets created today. This can be especially useful if you're only testing or creating demo enviroments that you want to nuke later and will make it easy to do so. Would you like this script to be created?" with title "$JSCVersion" buttons {"Yes", "No"} default button 1)
+end timeout
+EOF
+)
+
+echo $(date) "Create Jamf Setup DE-Constructor script? $createDeconstructor
+DeConstructor section completed.
+
+################################
+# FINAL USER CONFIRMATION
+################################
+" >> $logPath
+
+#Build a final message telling the user everything that will be built and give them one last chance to back out
+finalMessage="Alright! We have got everything we need!
+Time to confirm it all!
+
+JAMF PRO SERVER ADDRESS
+$jamfProURL
+
+ADMIN ACCOUNT
+The Jamf Pro user that this script will use to make these changes is: $adminUser
+
+SETUP ACCOUNT
+The Jamf Pro user that Jamf Setup will use is: $setupUser
+
+EXTENSION ATTRIBUTE
+$EAConfirmationMessage
+"
+#If they had sites configured and selected a site, display that now
+if [[ $siteCount > 0 ]] && [[ "$site" != "false" ]]; then
+ finalMessage="$finalMessage
+SITE
+The Jamf Setup app and Smart Groups will be put in the $site site
+"
+fi
+
+#Continue with the message
+finalMessage="$finalMessage
+SMART GROUPS
+A total of $numberOfSmartGroups smart mobile device groups will be created with the following names:
+"
+
+#Add smart group names to message
+for i in $(seq 0 $smartGroupIndex); do
+ finalMessage="$finalMessage
+ ${smartGroupNameArray[$i]}"
+ done
+
+#If they selected Option 1, add that smart group to the displayed list
+if [[ $smartGroupChoice == "Option 1" ]]; then
+ finalMessage="$finalMessage
+ JSC_Newly Enrolled Devices"
+ smartGroupNameArray+=( "JSC_Newly Enrolled Devices" )
+ fi
+
+#If they changed the default optional values, display those as well
+if [[ $optionChoice == "Change" ]]; then
+ finalMessage="$finalMessage
+
+OPTIONAL CHANGES
+You chose to change the defaults for the optional values.
+These can be changed later within the App Configuration tab of the Jamf Setup Mobile Device App record."
+ else
+ finalMessage="$finalMessage
+
+OPTIONAL CHANGES
+You chose to keep the defaults for the optional values.
+These can be changed later within the App Configuration tab of the Jamf Setup Mobile Device App record."
+fi
+
+#Finish message
+finalMessage="$finalMessage
+
+If these settings all look correct, hit Proceed to initiate construction.
+If these settings look wrong in any way, hit Cancel to cancel."
+
+#Display message to user
+finalMessageChoice=$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "$finalMessage" buttons {"Proceed", "Cancel"} with title "$JSCVersion" default button 1)
+end timeout
+EOF
+)
+
+echo $(date) "The following confirmation message was displayed to user:
+
+$finalMessage
+" >> $logPath
+
+#If they hit abort, exit 0
+if [[ $finalMessageChoice == "ABORT" ]]; then
+ echo $(date) "User chose to abort session" >> $logPath
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Session cancelled manually.
+
+ Click View Logs to view more information." with title "$JSCVersion" buttons {"Close", "View Logs"} default button 1)
+ end timeout
+EOF
+)
+
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ fi
+ exit 0
+fi
+
+echo $(date) "Information gathering done, user has selected to proceed, initiating construction of assets..
+
+################################
+# CREATION OF ASSETS IN JAMF PRO
+################################
+" >> $logPath
+
+#Launch a Jamf Helper window to let the user know it's working
+echo $(date) "Launching Jamf Helper to let the user know to wait..." >> $logPath
+"/Library/Application Support/JAMF/bin/jamfHelper.app/Contents/MacOS/jamfHelper" -windowType utility -title "Constructing..." -description "Please wait while we make some Jamf magic happen..." -alignDescription center &
+
+echo "
+################################
+# CONSTRUCT EXTENSION ATTRIBUTE AND OPTIONS
+################################
+" >> $logPath
+
+echo $(date) "Building the $EAName Extension Attribute..." >> $logPath
+#Build the XML to place the options in the extension attribute at the time of creation
+for i in $(seq 0 $EAindex); do
+ EAXML="$EAXML${EAOptions[$i]}"
+ name=${EAOptions[$i]}
+ echo "Option created: $name" >> $logPath
+done
+
+currentDateTime=$(date)
+
+echo $(date) "Sending API call to create Extension Attribute..." >> $logPath
+#Use the API to create the extension attribute with the selected choices in the popup menu
+EAid=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceextensionattributes/id/0 -H "Content-type: text/xml" -X POST -d "$EANameMade with Jamf Setup Constructor by user $adminUser on $currentDateTimeStringPop-up Menu$EAXMLGeneral")
+EAidFormatted=$(echo $EAid | xmllint --xpath '/mobile_device_extension_attribute/id/text()' -)
+
+if [[ $EAidFormatted > 0 ]] && [[ $EAidFormatted < 999999999 ]]; then
+ echo $(date) "Extension Attribute with the name $EAName has been created with ID number $EAidFormatted" >> $logPath
+ else
+ echo $(date) "Error: $EAid" >> $logPath
+ echo "Due to error, script will now exit" >> $logPath
+
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Due to an error the script has been cancelled.
+
+ Click View Logs to view more information." with title "$JSCVersion" buttons {"Close","View Logs"} default button 1)
+ end timeout
+EOF
+)
+
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ fi
+ exit 0
+fi
+
+echo $(date) "Extension Attribute construction finished, moving on to Smart Groups...
+
+################################
+# CREATION OF SMART GROUPS
+################################
+" >> $logPath
+
+#If user opted to configure sites, add that to the xml, if not, the variable should stay null and not affect the main xml
+if [[ $siteCount > 0 ]] && [[ "$site" != "false" ]]; then
+ siteXML="$site"
+ appSiteXML="$site"
else
- echo $currentUser >> /private/var/userToRemove/user
+ siteXML=
+ fi
+
+echo $(date) "Building XML..." >> $logPath
+#Build an array containing the proper XML for each Smart Group that needs to be created
+for i in $(seq 0 $EAindex); do
+ smartGroupXML+=( "${smartGroupNameArray[$i]}true$siteXML$EAName0ANDis${EAOptions[$i]}falsefalseModel1ANDnot likeTVfalsefalse" )
+done
+
+#If they selected Option 1, add the "Newly Enrolled Devices smart group to the XML array
+if [[ $smartGroupChoice == "Option 1" ]]; then
+
+ criterionIndex=$(($EAindex+1))
+ #Use a for loop to add each of the possible options as "not like" criteria in the smart group XML
+ for i in $(seq 0 $EAindex); do
+ newSmartGroupCriteria="$newSmartGroupCriteria$EAName$iANDnot like${EAOptions[$i]}falsefalse"
+ done
+
+ echo $(date) "Adding extra smart group since Option 1 was selected..." >> $logPath
+
+ #Once all of the criteria is added to the XML, add the whole thing to the end of the Smart Group XML array
+ #Create a variable to pinpoint the next open priority slot
+ lastPrioritySlot=$(($EAindex+1))
+ smartGroupXML+=( "JSC_Newly Enrolled Devicestrue$siteXML$newSmartGroupCriteriaModel$lastPrioritySlotANDnot likeTVfalsefalse" )
fi
+
+#Count the total number of smart groups to be created
+smartGroupXMLindex=$(echo "${#smartGroupXML[@]}")
+
+#Subtract 1 to be able to use the indext to target array containers
+smartGroupXMLindex=$(($smartGroupXMLindex-1))
+
+#Use a loop to create API calls to create all of the smart groups in the array
+for i in $(seq 0 $smartGroupXMLindex); do
+ SGid=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledevicegroups/id/0 -H "Content-type: text/xml" -X POST -d "${smartGroupXML[$i]}")
+ SGidFormatted=$(echo $SGid | xmllint --xpath '/mobile_device_group/id/text()' -)
+ sgIDarray+=( "$SGidFormatted" )
+
+ if [[ $SGidFormatted > 0 ]] && [[ $SGidFormatted < 999999999 ]]; then
+ echo $(date) "Smart Group with the name ${smartGroupNameArray[$i]} has been created with ID number $SGidFormatted" >> $logPath
+ else
+ echo $(date) "Error: $SGid" >> $logPath
+ echo "Due to error, script will now exit" >> $logPath
+
+ #Rolling back items that have already been created
+ rollback
+
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Due to an error the script has been cancelled. Anything that has already been created will be deleted.
+
+ Click View Logs to view more information" with title "$JSCVersion" buttons {"Close","View Logs"} default button 2)
+ end timeout
+EOF
+)
+
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ fi
+ exit 0
+ fi
+done
+echo "Smart groups successfully created, moving on to App Configuration...
+
+################################
+# CREATION OF APP CONFIGURATION IN JAMF PRO
+################################
+" >> $logPath
+
+#If sites are configured, create a duplicate app record in the site if it's not already there
+if [[ $siteCount > 0 ]] && [[ "$site" != "false" ]]; then
-##################################
-# give the user admin privileges #
-##################################
-
-/usr/sbin/dseditgroup -o edit -a $currentUser -t user admin
-
-########################################
-# write a script for the launch daemon #
-# to run to demote the user back and #
-# then pull logs of what the user did. #
-########################################
-
-cat << 'EOF' > /Library/Application\ Support/JAMF/removeAdminRights.sh
-if [[ -f /private/var/userToRemove/user ]]; then
- userToRemove=$(cat /private/var/userToRemove/user)
- echo "Removing $userToRemove's admin privileges"
- /usr/sbin/dseditgroup -o edit -d $userToRemove -t user admin
- rm -f /private/var/userToRemove/user
- launchctl unload /Library/LaunchDaemons/removeAdmin.plist
- rm /Library/LaunchDaemons/removeAdmin.plist
- log collect --last 30m --output /private/var/userToRemove/$userToRemove.logarchive
+#Figure out which site the Jamf Setup app is currently assigned to
+currentSite=$(echo "$jamfSetupApp" | xmllint --xpath '/mobile_device_application/general/site/name/text()' -)
+
+ if [[ "$currentSite" != "$site" ]]; then
+ #If the current Jamf Setup app is in a different site than what the user selected
+ #then create a new app record in the correct site so as not to throw off any workflows
+ #that the app may currently be assigned to
+ echo "$(date) Jamf Setup app is not currently in the correct site
+A new app record for Jamf Setup will be created in the correct site with no scope and no VPP license selected
+This is to prevent breaking any currently scoped workflows that may already exist." >> $logPath
+
+ #Reformat the app record XML, get rid of VPP and Scope and erase the top XML header line
+ jamfSetupAppFormatted=$(echo $jamfSetupApp | xmllint --format - | sed '/assign_vpp_device_based_licenses/,/vpp_admin_account_id/d' | sed "/scope/,/\/scope/d" | sed '1d')
+ echo "$(date) Reformatting app record XML, removing VPP and Scope..." >> $logPath
+
+ #Replace the site in the app record xml with the site the user selected
+ newSite=$(echo "$jamfSetupAppFormatted" | sed "s/$currentSite<\/name>/$site<\/name>/")
+ echo "$(date) Replacing the old site with the new site in the app record XML" >> $logPath
+
+ #create a duplicate app record in the new site and use the ID of the newly created app record going forward
+ jamfSetupID=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceapplications/id/0 -H "Content-type: text/xml" -X POST -d "$newSite" | xmllint --xpath '/mobile_device_application/id/text()' -)
+ echo "$(date) Duplicate app record created with ID $jamfSetupID..." >> $logPath
+ duplicateAppRecordCreated=1
+ fi
fi
+
+#Build out the options to put into the app config
+echo $(date) "Building out app configuration for Jamf Setup app..." >> $logPath
+
+#Count how many options there are
+totalEAOptions=${#EAOptions[@]}
+#Put first value in the variable
+appConfigOptions="<string>${EAOptions[0]}</string>
"
+
+if [[ $totalEAOptions > 1 ]]; then
+ #add additional options to array
+ for i in $(seq 1 $EAindex); do
+ appConfigOptions="$appConfigOptions
+ <string>${EAOptions[$i]}</string>
"
+ done
+fi
+
+#Build out the rest of the app config
+appConfig="<dict>
+ <key>com.jamf.config.jamfpro.url</key>
+ <string>$jamfProURL</string>
+ <key>com.jamf.config.jamfpro.username</key>
+ <string>$setupUser</string>
+ <key>com.jamf.config.jamfpro.password</key>
+ <string>$setupPass</string>
+ <key>com.jamf.config.jamfpro.device-id</key>
+ <string>"'$JSSID'"</string>
+ <key>com.jamf.config.setup.extension-attribute.name</key>
+ <string>$EAName</string>
+ <key>com.jamf.config.setup.extension-attribute.options</key>
+ <array>
+ $appConfigOptions
+ </array>
+ <key>com.jamf.config.ui.header-image.url</key>
+ <string>$headerLogoURL</string>
+ <key>com.jamf.config.ui.main-page.title</key>
+ <string>$mainPageTitle</string>
+ <key>com.jamf.config.ui.main-page.text</key>
+ <string>$mainPageBody</string>
+ <key>com.jamf.config.ui.text.color</key>
+ <string>$pageTextColor</string>
+ <key>com.jamf.config.ui.main-page.button.text</key>
+ <string>$buttonText</string>
+ <key>com.jamf.config.ui.main-page.button.color</key>
+ <string>$buttonColor</string>
+ <key>com.jamf.config.ui.main-page.button.text.color</key>
+ <string>$buttonTextColor</string>
+ <key>com.jamf.config.ui.success-page.title</key>
+ <string>$successPageTitle</string>
+ <key>com.jamf.config.ui.success-page.text</key>
+ <string>$successPageBody</string>
+ <key>com.jamf.config.ui.background.color</key>
+ <string>$backgroundColor</string>
+</dict>"
+
+#Add the app configuration to the app record
+appID=$(curl -su $adminUser:$adminPass $jamfProURL/JSSResource/mobiledeviceapplications/id/$jamfSetupID -H "Content-type: text/xml" -X PUT -d "$appConfig")
+appIDFormatted=$(echo $appID | xmllint --xpath '/mobile_device_application/id/text()' -)
+
+ if [[ $appIDFormatted > 0 ]] && [[ $appIDFormatted < 999999999 ]]; then
+ echo $(date) "App Config for Jamf Setup has been successfully updated" >> $logPath
+ else
+ echo $(date) "Error: $appID" >> $logPath
+ echo "Due to error, script will now exit" >> $logPath
+
+ #Rolling back items that have been created
+ rollback
+
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "Due to an error the script has been cancelled.
+
+ Click View Logs to view more information." with title "$JSCVersion" buttons {"Close","View Logs"} default button 1)
+ end timeout
EOF
+)
+
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ fi
+ exit 0
+ fi
+
+echo "Everything has been successfully created! Enjoy your new Jamf Setup experience!
+
+###########################################
+# SUCCESS!!! BRING IN THE DANCING LOBSTERS!
+###########################################
+" >> $logPath
+
+#Kill the jamf helper window that's telling the user to wait
+pkill jamfHelper
+
+case $createDeconstructor in
+ "Yes")
+ #First save the names of the smart groups that were created into a variable to display as a message in the
+ # deconstructor script
+ smartGroupNameSize="${#smartGroupNameArray[@]}"
+ smartGroupNameIndex=$(($smartGroupNameSize-1))
+ for i in $(seq 0 $smartGroupNameIndex); do
+ smartGroupNames="$smartGroupNames
+ ${smartGroupNameArray[$i]}"
+ done
+ #Now write the script
+cat << FOE > ~/Desktop/JamfSetupDEconstructor.sh
+#!/bin/bash
+
+logPath=$logPath
+#Prompt the user for what is about to happen
+openingSelection=\$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "Welcome to the Jamf Setup DE-Constructor!
+This script was created after successfully finishing the Jamf Setup Constructor to give you the ability to delete what was created in case you need to try again or if you were just testing or creating a demo.
+
+This script will DELETE the smart groups and the extension attribute that were created the last time you ran the Jamf Setup Constructor script. Would you like to continue?" with title "Jamf Setup DE-Constructor" buttons {"Continue","Cancel"} default button 2)
+end timeout
+EOF
+)
+if [[ \$openingSelection == "Cancel" ]]; then
+ exit 0
+ fi
+
+echo "
+########################
+# JAMF SETUP DE-CONSTRUCTOR INITIATED
+########################" >> \$logPath
+
+#Establish Starting Variables
+
+smartGroupIDArray=()
+smartGroupIDArray=( ${sgIDarray[@]} )
+EAid="$EAidFormatted"
+EAName="$EAName"
+smartGroupIDSizeIndex=
+smartGroupNameArray=()
+smartGroupNames="$smartGroupNames"
+confirmation=0
+jamfProURL="$jamfProURL"
+duplicateAppRecordCreated=$duplicateAppRecordCreated
+jamfSetupID="$jamfSetupID"
+adminUser=\$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Please enter the username of an ADMIN for your Jamf Pro server at \$jamfProURL who has the ability to DELETE Mobile Device Groups and Extension Attributes" default answer "" with title "Jamf Setup DE-Constructor" buttons {"OK"} default button 1)
+end timeout
+EOF
+)
+adminPass=\$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "Please enter the password for admin user \$adminUser for your Jamf Pro server at \$jamfProURL" default answer "" with title "Jamf Setup DE-Constructor" buttons {"OK"} default button 1 with hidden answer)
+end timeout
+EOF
+)
+
+#Final Confirmation
+while [[ "\$confirmation" != "DELETE" ]]; do
+confirmation=\$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to text returned of (display dialog "The following items will be deleted from your Jamf Pro server:
+
+EXTENSION ATTRIBUTE
+
+ \$EAName
+
+SMART GROUPS
+\$smartGroupNames
+
+Additionally, if you opted to use Sites, the duplicate Jamf Setup app record will be deleted.
+
+In order to proceed, please type the word DELETE into the box below.
+To cancel type CANCEL." default answer "" with title "Jamf Setup DE-Constructor" buttons {"Submit"} default button 1)
+end timeout
+EOF
+)
+if [[ \$confirmation == "CANCEL" ]]; then
+ echo "User canceled deconstructor session..." >> \$logpath
+ exit 0
+ fi
+done
+
+#Bring up a Jamf Helper window to let them know it's working
+"/Library/Application Support/JAMF/bin/jamfHelper.app/Contents/MacOS/jamfHelper" -windowType utility -title "DE-Constructing..." -description "Please wait while we make some Jamf magic happen..." -alignDescription center &
+
+#Initiate Rollback
+echo "\$(date) The following items will be deleted from Jamf Pro:
+
+EXTENSION ATTRIBUTE
+
+ \$EAName
+
+SMART GROUPS
+\$smartGroupNames
+" >> \$logPath
+
+echo "\$(date) Rolling back what has been created..." >> \$logPath
+#Delete smart groups if they exist
+#Calculate how smart groups have been created
+smartGroupIDSize=\$(echo "\${#smartGroupIDArray[@]}")
+
+if [[ "\$smartGroupIDSize" > 0 ]]; then
+ smartGroupIDSizeIndex=\$((\$smartGroupIDSize-1))
+ echo "\$(date) \$smartGroupIDSize group(s) will be deleted..." >> \$logPath
+
+ #Loop through and delete each smart group that was created
+ for i in \$(seq 0 \$smartGroupIDSizeIndex); do
+ curl -su \$adminUser:\$adminPass \$jamfProURL/JSSResource/mobiledevicegroups/id/\${smartGroupIDArray[\$i]} -X DELETE
+ echo "\$(date) Smart Group with ID \${smartGroupIDArray[\$i]} deleted..." >> \$logPath
+ done
+fi
+
+#Delete the extension attribute if it exists
+curl -su \$adminUser:\$adminPass \$jamfProURL/JSSResource/mobiledeviceextensionattributes/id/\$EAid -X DELETE
+echo "\$(date) Extension attribute has been deleted..." >> \$logPath
+
+#If sites are configured, delete the duplicate app record created in the new site
+ if [[ "\$duplicateAppRecordCreated" == 1 ]]; then
+ #Delete the duplicate app record
+ curl -su \$adminUser:\$adminPass \$jamfProURL/JSSResource/mobiledeviceapplications/id/\$jamfSetupID -X DELETE
+ echo "\$(date) Duplicate app record with ID \$jamfSetupID deleted..." >> \$logPath
+ fi
+
+#Kill the jamf helper window that's telling the user to wait
+pkill jamfHelper
+
+finalButtonChoice=\$(osascript << EOF
+with timeout of 60000 seconds
+tell application "System Events" to button returned of (display dialog "Your items have been successfully deleted from Jamf Pro! You can view the same logs that were used from the Jamf Setup Constructor script located at:
+\$logPath" with title "Jamf Setup DE-Constructor" buttons {"Close","View Logs"} default button 1)
+end timeout
+EOF
+)
+if [[ "\$finalButtonChoice" == "View Logs" ]]; then
+ open -a TextEdit.app "\$logPath"
+ rm -f ~/Desktop/JamfSetupDEconstructor.sh
+ exit 0
+ else
+ rm -f ~/Desktop/JamfSetupDEconstructor.sh
+ exit 0
+ fi
+FOE
+ #Make the script executable for easier use
+ chmod 755 ~/Desktop/JamfSetupDEconstructor.sh
+
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "All finished! Your Jamf Pro server should now be configured with the proper extension attribute and corresponding smart groups and app configuration!
+
+Note: You might not see everything that was created right away because of your browsers cache. If you do not see your extension attribute or smart groups, just wait a few minutes or clear your browser cache and refresh the page.
+
+Additionally, you opted to have the Jamf Setup DE-Constructor script created on your desktop. On your desktop you should now see a file called
+JamfSetupDEconstructor.sh.
+If you decide you want to delete the smart groups and extension attribute created with this script, simply drag the file into a terminal window, hit enter, and follow the prompts.
+
+For details on what all happened, you can find the logs at:
+$logPath" with title "$JSCVersion" buttons {"Close","View Logs"} default button 1)
+ end timeout
+EOF
+)
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ else
+ exit 0
+ fi
+
+ ;;
+ *)
+ closingSelection=$(osascript << EOF
+ with timeout of 60000 seconds
+ tell application "System Events" to button returned of (display dialog "All finished! Your Jamf Pro server should now be configured with the proper extension attribute and corresponding smart groups and app configuration!
+
+Note: You might not see everything that was created right away because of your browsers cache. If you do not see your extension attribute or smart groups, just wait a few minutes or clear your browser cache and refresh the page.
+
+For details on what all happened, you can find the logs at:
+$logPath" with title "$JSCVersion" buttons {"Close","View Logs"} default button 1)
+ end timeout
+EOF
+ )
+
+ if [[ $closingSelection == "View Logs" ]]; then
+ open -a TextEdit.app "$logPath"
+ exit 0
+ else
+ exit 0
+ fi
+ ;;
+esac
-exit 0