Trouble with Blacklist on the web not working #947
-
|
Hi Everyone - Looking for some help here. Just trying to set this up as a scheduled task (which is working), but I can't seem to get it to call our blacklist file that is stored on sharepoint. Seems like no matter what I do in the trigger of the scheduled task, it doesn't call it. If I put the excluded_apps.txt file in the directory, that works, but we would like to have it in the cloud so we can easily edit/update it. Is there a way to set it as a variable in the winget-upgrade powershell script? |
Beta Was this translation helpful? Give feedback.
Replies: 6 comments 4 replies
-
|
I guess you've read the Docs? |
Beta Was this translation helpful? Give feedback.
-
|
I have. I am not using GPO's to control it, just putting the powershell files in a folder and calling the winget-upgrade.ps1 via a scheduled task.
…________________________________
From: Göran Axel Johannesson ***@***.***>
Sent: Tuesday, May 20, 2025 2:39 PM
To: Romanitho/Winget-AutoUpdate ***@***.***>
Cc: Garvey, Jeff ***@***.***>; Author ***@***.***>
Subject: Re: [Romanitho/Winget-AutoUpdate] Trouble with Blacklist on the web not working (Discussion #947)
I guess you've read the Docs?
https://github.com/Romanitho/Winget-AutoUpdate?tab=readme-ov-file#listpath
—
Reply to this email directly, view it on GitHub<#947 (comment)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/BIM5PIXD5Q2RZIDCBGR5XNL27NZGTAVCNFSM6AAAAAB5QWMYBSVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTGMRRGA2DOMY>.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
|
This is a MSI-install that installs all the files and creates 4 scheduled tasks by itself running in SYSTEM context: |
Beta Was this translation helpful? Give feedback.
-
|
Yep - I did all of that. I extracted the files and I have the local excluded_apps file working, but I can't figure out where I am supposed to be putting in the info for an external list. the installer says that it will only pull in one in the same folder as the installer and I can't type in where the online file is at. I must be missing something easy, but my eyes are starting to cross 🙂.
…________________________________
From: Göran Axel Johannesson ***@***.***>
Sent: Tuesday, May 20, 2025 2:55 PM
To: Romanitho/Winget-AutoUpdate ***@***.***>
Cc: Garvey, Jeff ***@***.***>; Author ***@***.***>
Subject: Re: [Romanitho/Winget-AutoUpdate] Trouble with Blacklist on the web not working (Discussion #947)
This is a MSI-install that installs all the files and creates 4 scheduled tasks by itself running in SYSTEM context:
https://github.com/Romanitho/Winget-AutoUpdate/releases/tag/v2.5.1
I recommend you start there.
—
Reply to this email directly, view it on GitHub<#947 (reply in thread)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/BIM5PIUGIBXZNCTESHJSZFD27N3ARAVCNFSM6AAAAAB5QWMYBSVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTGMRRGA3DCMA>.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
|
Install it like (this from CMD): |
Beta Was this translation helpful? Give feedback.
-
|
The paths on the web must be accessible by SYSTEM. |
Beta Was this translation helpful? Give feedback.
-
|
Claude says: Yes, you can access a file on SharePoint via a URL, but there are some important differences compared to a regular web server, especially when trying to access it as the SYSTEM account. SharePoint files typically have URLs that follow this pattern: However, there are several considerations:
If you need to access as SYSTEM, you'll typically need to use an app registration with certificate authentication or managed identity if running in Azure. |
Beta Was this translation helpful? Give feedback.
-
|
thanks - that is getting me closer...I'll keep testing and digging!
I mis-spoke a little earlier. I ran the installer and then was looking at the extracted files, not extracting from the MSI and was getting lost looking for the variables to change.
…________________________________
From: Göran Axel Johannesson ***@***.***>
Sent: Tuesday, May 20, 2025 3:19 PM
To: Romanitho/Winget-AutoUpdate ***@***.***>
Cc: Garvey, Jeff ***@***.***>; Author ***@***.***>
Subject: Re: [Romanitho/Winget-AutoUpdate] Trouble with Blacklist on the web not working (Discussion #947)
Install it like (this from CMD):
msiexec /i "%~dp0WAU.msi" USERCONTEXT=0 UPDATESATLOGON=0 UPDATESINTERVAL=Daily DONOTRUNONMETERED=0 STARTMENUSHORTCUT=1 LISTPATH=https://www.knifmelti.se/wau/lists MODSPATH=https://www.knifmelti.se/wau/mods REBOOT=R /qn replacing it with your PATHS (or for testing my private)
The term extracted is not what you should use in this context (that you shouldn't do) 😄
—
Reply to this email directly, view it on GitHub<#947 (reply in thread)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/BIM5PIQ6UP4XBZ5QC4YIUCL27N54BAVCNFSM6AAAAAB5QWMYBSVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTGMRRGA4DEMA>.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
|
I think I have enough to at least start looking at it. I might come back if I am still lost though.
Thanks for all of your help so far!
Jeff
…________________________________
From: Göran Axel Johannesson ***@***.***>
Sent: Tuesday, May 20, 2025 3:30 PM
To: Romanitho/Winget-AutoUpdate ***@***.***>
Cc: Garvey, Jeff ***@***.***>; Author ***@***.***>
Subject: Re: [Romanitho/Winget-AutoUpdate] Trouble with Blacklist on the web not working (Discussion #947)
Claude says:
Yes, you can access a file on SharePoint via a URL, but there are some important differences compared to a regular web server, especially when trying to access it as the SYSTEM account.
SharePoint files typically have URLs that follow this pattern:
https://[tenant].sharepoint.com/sites/[sitename]/[library]/excluded_apps.txt
However, there are several considerations:
1. Authentication: Unlike basic web servers, SharePoint requires authentication. The SYSTEM account doesn't have an identity in SharePoint/Microsoft 365.
2. Access methods:
* For authenticated users: Direct URL access works when signed in
* For service/scheduled tasks: You'll need an application with proper permissions
3. PowerShell options:
# Using PnP PowerShell (recommended)
Connect-PnPOnline -Url "https://contoso.sharepoint.com/sites/yoursite" -ClientId $clientId -ClientSecret $clientSecret
Get-PnPFile -Url "/sites/yoursite/Shared Documents/excluded_apps.txt" -Path "C:\temp\" -AsFile
If you need to access as SYSTEM, you'll typically need to use an app registration with certificate authentication or managed identity if running in Azure.
Would you like me to explain any specific aspect of SharePoint file access in more detail?
—
Reply to this email directly, view it on GitHub<#947 (reply in thread)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/BIM5PIUIJ45AAJY272RAKGT27N7HDAVCNFSM6AAAAAB5QWMYBSVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTGMRRGA4TIOI>.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
Beta Was this translation helpful? Give feedback.
-
|
Thanks for your help @KnifMelti - I was able to get this working with powershell option you outlined in the option #3. FWIW - I had to create an application secret, but the gui in Entra only allows you to do up to 2 years before expiring the secret. There is a way to do the secret creation through powershell that allows you to set the expiration date out further if needed. Here are a couple of links that helped me out: Setting up the sharepoint connection permissions with the Shared secret from previous step: |
Beta Was this translation helpful? Give feedback.
Claude says:
Yes, you can access a file on SharePoint via a URL, but there are some important differences compared to a regular web server, especially when trying to access it as the SYSTEM account.
SharePoint files typically have URLs that follow this pattern:
However, there are several considerations:
Authentication: Unlike basic web servers, SharePoint requires authentication. The SYSTEM account doesn't have an identity in SharePoint/Microsoft 365.
Access methods: