Currently the workflow exits if the group already exists in Azure AD, or as a GitHub team. This needs to be changed so that it's easier to add functionality later on and simply re-run the entire workflow to add / remove properties to the teams.

Currently the output only says: <team name>: Created when a team is created. The output should include the Azure AD object ID of the group as well.

Currently the regular expression requires team names to be more than 3 in length. This should be lowered to accept 3.

The API client should have methods for fetching a list of members and fetching owners of a group.

We have a teams management enterprise application that serves as a container for teams managed by this solution. Each team when created must be added to this application.

Currently the docker image published the image for all branches, and has a master release at the latest version. We should start to release based on tags instead, so workflows can target the version of the action instead of the branch name.

The Azure AD groups and the GitHub teams created by this action should be synced using the GitHub Team Sync API (https://developer.github.com/v3/teams/team_sync/). However, the API calls are currently failing.

I have an open support case with GitHub regarding this, and once that is solved this can be implemented.

We should disable adding the group to the Google Suite Provisioning applicattion for now.

Because of a change in the GitHub API (see navikt/github-api-client-php#2) we need to update the dependencies.

From time to time the Nais Deployment provisioning API fails with a message saying that the team does not exist, even though it actually does exist. This is because of Microsofts API sometimes takes too long to provide the correct data.

When creating teams the action should also generate a NAIS deploy key for the team using the hookd-API on https://deployment.prod-sbs.nais.io/api/v1/provision.

The payload to be sent using HTTP POST will include the name of the team a boolean informing hookd as to whether or not the key should be rotated, and a timestamp:

{
  "team": "<team name>",
  "rotate": <bool>,
  "timestamp": <unix timestamp>
}

The request must include a signature, which is is keyed hash of the payload, using sha256 and a pre-shared key. The signature is attached to the request in the x-nais-signature header.

Need to fetch the latest version of the AAD API client, and use the mail nickname instead of the group display name.

Ref navikt/teams#72

As the GitHub and AAD clients have been published on Packagist we can remove the local ones, and use the ones from Packagist instead.

See https://github.com/navikt/teams/issues/38

Use dependency caching in the workflow.

Each team governed by this action must have a Slack team connected.

The model does not have mail as an attribute, this should be added.

It seems that the user merging the pull request is set at the AAD-group owner, instead of the user making the initial commit.

Currently the description part of the Azure AD group is optional. This should be required.