Devolutions.CIEM

0.2.100

Devolutions.CIEM.psm1

                                #Requires -Version 5.1

Set-StrictMode -Version Latest

# Module root path for use by all functions

$script:ModuleRoot = $PSScriptRoot

# NOTE: Auto-installs missing required modules at import time.

# This may cause delays on first import. Consider pre-installing via:

#   Install-PSResource -Name Az.Accounts, Az.Resources, Az.Websites, Microsoft.Graph.Applications

foreach ($moduleName in @('Az.Accounts', 'Az.Resources', 'Az.Websites', 'Microsoft.Graph.Applications')) {

    if (-not (Get-Module -ListAvailable -Name $moduleName)) {

        Write-Warning "Installing required module: $moduleName"

        Install-PSResource -Name $moduleName -Scope AllUsers -TrustRepository

    }

}

# Configuration is loaded from PSU cache after functions are dot-sourced

# (see bottom of file where Get-CIEMConfig is called)

$script:Config = $null

# Initialize script-scoped service variables (populated during scan)

$script:EntraService = @{}

$script:IAMService = @{}

$script:KeyVaultService = @{}

# Initialize authentication context (populated by Connect-CIEM)

$script:AuthContext = @{}

$script:ARMAccessToken = $null

$script:GraphAccessToken = $null

$script:StorageService = @{}

# Initialize PSU environment detection (populated on first access)

$script:PSUEnvironment = $null

# Get public, private, and check function definition files

# Note: Errors during file enumeration indicate a broken module structure and should fail loudly

$privatePath = Join-Path -Path $PSScriptRoot -ChildPath 'Private'

$publicPath = Join-Path -Path $PSScriptRoot -ChildPath 'Public'

$checksPath = Join-Path -Path $PSScriptRoot -ChildPath 'Checks'

$Private = @()

$Public = @()

$Checks = @()

if (Test-Path -Path $privatePath) {

    $Private = @(Get-ChildItem -Path "$privatePath\*.ps1" -ErrorAction Stop)

}

if (Test-Path -Path $publicPath) {

    $Public = @(Get-ChildItem -Path "$publicPath\*.ps1" -ErrorAction Stop)

}

if (Test-Path -Path $checksPath) {

    $Checks = @(Get-ChildItem -Path "$checksPath\*\*.ps1" -ErrorAction Stop)

}

# Dot source the files

foreach ($import in @($Private + $Checks + $Public)) {

    try {

        Write-Verbose "Importing $($import.FullName)"

        . $import.FullName

    } catch {

        Write-Error "Failed to import function $($import.FullName): $_"

        throw

    }

}

# Export public functions

foreach ($file in $Public) {

    Export-ModuleMember -Function $file.BaseName

}

# Initialize configuration from PSU cache (or defaults if not in PSU)

# This must happen after functions are dot-sourced so Get-CIEMConfig is available

$script:Config = Get-CIEMConfig