Invoke-IdracSessionManagementREDFISH

1.0.0

Invoke-IdracSessionManagementREDFISH.psm1

                                <#

_author_ = Texas Roemer <Texas_Roemer@Dell.com>

_version_ = 1.0

Copyright (c) 2024, Dell, Inc.

This software is licensed to you under the GNU General Public License,

version 2 (GPLv2). There is NO WARRANTY for this software, express or

implied, including the implied warranties of MERCHANTABILITY or FITNESS

FOR A PARTICULAR PURPOSE. You should have received a copy of GPLv2

along with this software; if not, see

http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt

#>

<#

.Synopsis

   Cmdlet using iDRAC with Redfish API to either get current active iDRAC sessions or delete an active session. 

.DESCRIPTION

   Cmdlet using iDRAC with Redfish API to either get current active iDRAC sessions or delete an active session. 

   - idrac_ip: Pass in iDRAC IP address

   - idrac_username: Pass in iDRAC username

   - idrac_password: Pass in iDRAC username password

   - x_auth_token: Pass in iDRAC X-Auth token session to execute cmdlet instead of username / password (recommended)

   - get_idrac_sessions: Get current active iDRAC sessions

   - delete_idrac_session: Delete iDRAC session pass in the session ID. 

.EXAMPLE

   Invoke-IdracSessionManagementREDFISH -idrac_ip 100.65.214.120 -idrac_username root -idrac_password calvin -get_idrac_sessions 

   This example will return all current active iDRAC sessions. 

.EXAMPLE

   Invoke-IdracSessionManagementREDFISH -idrac_ip 192.168.0.120 -idrac_username root -idrac_password calvin -delete_idrac_session 519d94a-f9d3-4bc4-bab5-b6841b32762a 

   This example shows deleting an iDRAC session. 

#>

function Invoke-IdracSessionManagementREDFISH {

param(

    [Parameter(Mandatory=$True)]

    [string]$idrac_ip,

    [Parameter(Mandatory=$False)]

    [string]$idrac_username,

    [Parameter(Mandatory=$False)]

    [string]$idrac_password,

    [Parameter(Mandatory=$False)]

    [string]$x_auth_token,

    [Parameter(Mandatory=$False)]

    [switch]$get_idrac_sessions,

    [Parameter(Mandatory=$False)]

    [string]$delete_idrac_session

    )

# Function to ignore SSL certs

function Ignore-SSLCertificates

{

    $Provider = New-Object Microsoft.CSharp.CSharpCodeProvider

    $Compiler = $Provider.CreateCompiler()

    $Params = New-Object System.CodeDom.Compiler.CompilerParameters

    $Params.GenerateExecutable = $false

    $Params.GenerateInMemory = $true

    $Params.IncludeDebugInformation = $false

    $Params.ReferencedAssemblies.Add("System.DLL") > $null

    $TASource=@'

        namespace Local.ToolkitExtensions.Net.CertificatePolicy

        {

            public class TrustAll : System.Net.ICertificatePolicy

            {

                public bool CheckValidationResult(System.Net.ServicePoint sp,System.Security.Cryptography.X509Certificates.X509Certificate cert, System.Net.WebRequest req, int problem)

                {

                    return true;

                }

            }

        }

'@ 

    $TAResults=$Provider.CompileAssemblyFromSource($Params,$TASource)

    $TAAssembly=$TAResults.CompiledAssembly

    $TrustAll = $TAAssembly.CreateInstance("Local.ToolkitExtensions.Net.CertificatePolicy.TrustAll")

    [System.Net.ServicePointManager]::CertificatePolicy = $TrustAll

}

# Function get Powershell version 

$global:get_powershell_version = $null

function get_powershell_version 

{

$get_host_info = Get-Host

$major_number = $get_host_info.Version.Major

$global:get_powershell_version = $major_number

}

function check_supported_idrac_version

{

$uri = "https://$idrac_ip/redfish/v1/SessionService/Sessions"

if ($x_auth_token)

{

 try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result = Invoke-WebRequest -SkipCertificateCheck -SkipHeaderValidation -Uri $uri -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept" = "application/json"; "X-Auth-Token" = $x_auth_token}

    }

    else

    {

    Ignore-SSLCertificates

    $result = Invoke-WebRequest -Uri $uri -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"; "X-Auth-Token" = $x_auth_token}

    }

    }

    catch

    {

    $RespErr

    return

    }

}

else

{

    try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result = Invoke-WebRequest -SkipCertificateCheck -SkipHeaderValidation -Uri $uri -Credential $credential -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"}

    }

    else

    {

    Ignore-SSLCertificates

    $result = Invoke-WebRequest -Uri $uri -Credential $credential -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"}

    }

    }

    catch

    {

    $RespErr

    return

    }

}

        if ($result.StatusCode -ne 200)

        {

        Write-Host "`n- WARNING, iDRAC version detected does not support this feature using Redfish API"

        return

        }

        elseif ($result.StatusCode -eq 401)

        {

        Write-Host "`n- WARNING, invalid iDRAC username or password detected, status code 401 returned."

        return

        }

        else

        {

        }

}

function setup_idrac_creds

{

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::TLS12

if ($x_auth_token)

{

$global:x_auth_token = $x_auth_token

}

elseif ($idrac_username -and $idrac_password)

{

$user = $idrac_username

$pass= $idrac_password

$secpasswd = ConvertTo-SecureString $pass -AsPlainText -Force

$global:credential = New-Object System.Management.Automation.PSCredential($user, $secpasswd)

}

else

{

$get_creds = Get-Credential

$global:credential = New-Object System.Management.Automation.PSCredential($get_creds.UserName, $get_creds.Password)

}

}

setup_idrac_creds

get_powershell_version

check_supported_idrac_version

if ($get_idrac_sessions)

{

$uri = "https://$idrac_ip/redfish/v1/SessionService/Sessions?`$expand=*(`$levels=1)"

if ($x_auth_token)

{

try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result = Invoke-WebRequest -SkipCertificateCheck -SkipHeaderValidation -Uri $uri -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"; "X-Auth-Token" = $x_auth_token}

    }

    else

    {

    Ignore-SSLCertificates

    $result = Invoke-WebRequest -Uri $uri -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"; "X-Auth-Token" = $x_auth_token}

    }

    }

    catch

    {

    Write-Host

    $RespErr

    return

    }

}

else

{

try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result = Invoke-WebRequest -SkipCertificateCheck -SkipHeaderValidation -Uri $uri -Credential $credential -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"}

    }

    else

    {

    Ignore-SSLCertificates

    $result = Invoke-WebRequest -Uri $uri -Credential $credential -Method Get -UseBasicParsing -ErrorVariable RespErr -Headers @{"Accept"="application/json"}

    }

    }

    catch

    {

    Write-Host

    $RespErr

    return

    }

}

if ($result.StatusCode -eq 200)

{

}

else

{

    [String]::Format("`n- FAIL, statuscode {0} returned",$result.StatusCode)

    return

}

$get_result = $result.Content | ConvertFrom-Json

if ($get_result.Members.count -eq 0)

{

Write-Host "`n- INFO, no current active iDRAC sessions detected`n"

return

}

Write-Host "`n- INFO, current active iDRAC session(s) detected"

$get_result.Members

}

##################################################################################################################################

if ($delete_idrac_session)

{

$uri = "https://$idrac_ip/redfish/v1/SessionService/Sessions/$delete_idrac_session"

if ($x_auth_token)

{

try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result1 = Invoke-WebRequest -UseBasicParsing -SkipHeaderValidation -SkipCertificateCheck -Uri $uri -Method Delete -ContentType 'application/json' -Headers @{"Accept" = "application/json"; "X-Auth-Token" = $x_auth_token} -ErrorVariable RespErr

    }

    else

    {

    Ignore-SSLCertificates

    $result1 = Invoke-WebRequest -UseBasicParsing -Uri $uri -Method Delete -ContentType 'application/json' -Headers @{"Accept" = "application/json"; "X-Auth-Token" = $x_auth_token} -ErrorVariable RespErr

    }

    }

    catch

    {

    Write-Host

    $RespErr

    return

    } 

}

else

{

try

    {

    if ($global:get_powershell_version -gt 5)

    {

    $result1 = Invoke-WebRequest -UseBasicParsing -SkipHeaderValidation -SkipCertificateCheck -Uri $uri -Credential $credential -Method Delete -ContentType 'application/json' -Headers @{"Accept"="application/json"} -ErrorVariable RespErr

    }

    else

    {

    Ignore-SSLCertificates

    $result1 = Invoke-WebRequest -UseBasicParsing -Uri $uri -Credential $credential -Method Delete -ContentType 'application/json' -Headers @{"Accept"="application/json"} -ErrorVariable RespErr

    }

    }

    catch

    {

    Write-Host

    $RespErr

    return

    } 

}  

if ($result1.StatusCode -eq 200 -or $result1.StatusCode -eq 202)

{

Write-Host "`n- PASS, DELETE command passed to delete iDRAC session $delete_idrac_session"

}

else

{

[String]::Format("`n- FAIL, DELETE command failed statuscode {0} returned",$result1.StatusCode)

$raw_content

return

}

}

}