packages/AzStackHci.DiagnosticSettings.0.6.8/Private/AzStackHci.WildcardAndSubdomain.Helpers.ps1
|
# //////////////////////////////////////////////////////////////////////////// # Strict Mode v1 (PS 5.1 safe) - surfaces reads of uninitialised variables at runtime. Set-StrictMode -Version 1.0 # Helper to perform DNS + optional TCP + Layer7 testing for a URL/port and return a result hashtable. # Used by Expand-WildcardUrlsDynamically, Test-ManuallyDefinedSubdomains, and the extracted # Invoke-Layer7EndpointTest helper (parallel fan-out) to avoid duplicated test logic. # # v0.6.7 (parallel branch): added -RequestMethod plumbing. Prior to this fix, the main # Layer-7 sweep loop in Test-AzureLocalConnectivity called this helper without -RequestMethod, # which meant Test-Layer7Connectivity always used its parameter default ('Auto' as of v0.6.7) # regardless of what the user passed to the public function. The two later loops (redirected # URLs + remaining URLs) were already plumbing -RequestMethod through directly. Adding the # parameter here closes that hole. Function Invoke-EndpointConnectivityTest { [CmdletBinding()] param( [Parameter(Mandatory)][string]$Url, [Parameter(Mandatory)][int]$Port, [switch]$IncludeTCPConnectivityTests, [Parameter(Mandatory=$false)] [ValidateSet('Get','Head','Auto')] [string]$RequestMethod = 'Auto' ) try { $DNSCheck = Get-DnsRecord -url (Get-DomainFromURL -url $Url).Domain } catch { Write-HostAzS "Error: DNS resolution failed for '$Url': $($_.Exception.Message)" -ForegroundColor Red return @{ TCPStatus = "Failed" IPAddress = "DNS Error" Layer7Status = "Failed" Layer7Response = "DNS resolution error: $($_.Exception.Message)" Layer7ResponseTime = "N/A" CertificateIssuer = "N/A" CertificateSubject = "N/A" CertificateThumbprint = "N/A" CertificateIntermediateIssuer = "N/A" CertificateIntermediateSubject = "N/A" CertificateIntermediateThumbprint= "N/A" CertificateRootIssuer = "N/A" CertificateRootSubject = "N/A" CertificateRootThumbprint = "N/A" } } if (($DNSCheck.DNSExists) -or ($script:Proxy.Enabled)) { if ($IncludeTCPConnectivityTests.IsPresent) { try { $tcpStatus, $ipAddress = Test-TCPConnectivity -url $Url -port $Port } catch { Write-HostAzS "Error: TCP connectivity test failed for '$Url': $($_.Exception.Message)" -ForegroundColor Red $tcpStatus = "Failed" $ipAddress = "TCP Error" } } else { $tcpStatus = "N/A" $ipAddress = $DNSCheck.IpAddress } try { $Layer7Results = Test-Layer7Connectivity -url $Url -port $Port -RequestMethod $RequestMethod } catch { Write-HostAzS "Error: Layer 7 connectivity test failed for '$Url': $($_.Exception.Message)" -ForegroundColor Red $Layer7Results = @{ Layer7Status = "Failed" Layer7Response = "Layer 7 test error: $($_.Exception.Message)" Layer7ResponseTime = "N/A" CertificateIssuer = "N/A" CertificateSubject = "N/A" CertificateThumbprint = "N/A" CertificateIntermediateIssuer = "N/A" CertificateIntermediateSubject = "N/A" CertificateIntermediateThumbprint = "N/A" CertificateRootIssuer = "N/A" CertificateRootSubject = "N/A" CertificateRootThumbprint = "N/A" } } return @{ TCPStatus = $tcpStatus IPAddress = $ipAddress Layer7Status = $Layer7Results.Layer7Status Layer7Response = $Layer7Results.Layer7Response Layer7ResponseTime = $Layer7Results.Layer7ResponseTime CertificateIssuer = $Layer7Results.CertificateIssuer CertificateSubject = $Layer7Results.CertificateSubject CertificateThumbprint = $Layer7Results.CertificateThumbprint CertificateIntermediateIssuer = $Layer7Results.CertificateIntermediateIssuer CertificateIntermediateSubject = $Layer7Results.CertificateIntermediateSubject CertificateIntermediateThumbprint= $Layer7Results.CertificateIntermediateThumbprint CertificateRootIssuer = $Layer7Results.CertificateRootIssuer CertificateRootSubject = $Layer7Results.CertificateRootSubject CertificateRootThumbprint = $Layer7Results.CertificateRootThumbprint } } else { # DNS name does not exist return @{ TCPStatus = if ($IncludeTCPConnectivityTests.IsPresent) { "Failed" } else { "N/A" } IPAddress = $DNSCheck.IpAddress Layer7Status = "Failed" Layer7Response = "N/A" Layer7ResponseTime = "N/A" CertificateIssuer = "N/A" CertificateSubject = "N/A" CertificateThumbprint = "N/A" CertificateIntermediateIssuer = "N/A" CertificateIntermediateSubject = "N/A" CertificateIntermediateThumbprint= "N/A" CertificateRootIssuer = "N/A" CertificateRootSubject = "N/A" CertificateRootThumbprint = "N/A" } } } # //////////////////////////////////////////////////////////////////////////// # Enhanced Function to expand wildcard URLs dynamically using pattern matching *.domain.com # # How this works: # 1. Splits $script:Results into wildcard entries (*.foo.com) and non-wildcard entries (bar.foo.com) # 2. For each wildcard, converts it to a regex (e.g. *.foo.com -> .*\.foo\.com) # 3. Finds non-wildcard URLs that match the regex pattern # 4. For each match: if already tested, adds a cross-reference Note; if new, runs connectivity tests # 5. Updates the wildcard entry's Note field to show which specific URLs were tested for it # # This enables testing of wildcard firewall rules by verifying connectivity to known specific endpoints # that fall under the wildcard pattern. Function Expand-WildcardUrlsDynamically { begin { # Write-Verbose "Starting Expand-WildcardUrlsDynamically function" } process { # Split into wildcard and non-wildcard results [array]$wildcardResults = $script:Results | Where-Object { $_.IsWildcard -eq $true } [array]$nonWildcardResults = $script:Results | Where-Object { $_.IsWildcard -eq $false } [int]$wildcardCount = 0 ForEach ($wildcard in $wildcardResults) { $wildcardCount++ Write-Progress -Id 1 -ParentId 0 -Activity "Expanding Wildcard URLs" -Status "Wildcard $wildcardCount of $($wildcardResults.Count): $($wildcard.URL)" -PercentComplete (($wildcardCount / [math]::Max($wildcardResults.Count,1)) * 100) # Create a regex pattern from the wildcard URL # Escape dots first, then replace * with .* for proper regex matching $wildcardPattern = [regex]::Escape($wildcard.URL) -replace "\\\*", ".*" # Find matching non-wildcard URLs, for each wildcard URL that exists [array]$matchingUrls = @() $matchingUrls = $nonWildcardResults | Where-Object { $_.URL -match "^$wildcardPattern$" } Write-HostAzS "`n$wildcardCount of $($wildcardResults.Count): Processing $($wildcard.Source): $($wildcard.URL)" if($matchingUrls.Count -eq 0) { Write-HostAzS "`tInfo: No match found for $($wildcard.source), $($wildcard.URL)" -ForegroundColor Yellow if($wildcard.Note -notlike "Wildcard URL,*"){ # Update the note to include the matching URL Write-Verbose "Updating Note of wildcard URL: $($wildcard.URL)" ($script:Results | Where-Object { $PSItem.URL -eq $wildcard.URL } | Select-Object -First 1).Note = "Wildcard URL, not tested (as no non-wildcard) - $($wildcard.Note)" } # Continue to the next matching URL Continue } elseif ($matchingUrls.Count -gt 0) { # Matches found, expand the wildcard entry # Incremental counter for matching URLs [int]$counter = 0 # Loop for each matching URL foreach ($match in $matchingUrls) { $counter++ Write-HostAzS "`n`tProcessing match $counter of $($matchingUrls.count): $($match.URL)" # Add URL based on test for either HTTP or HTTPS if($match.Port -is [int]){ # If the URL already exists in the results, update the note if($script:Results.URL -contains $match.URL){ # URL already exists in the results, skip Write-HostAzS "`tEndpoint matches wildcard '$($wildcard.URL)', adding cross-reference in Notes column" -ForegroundColor Green if(($match.Note -notlike "URL matches *") -and ($match.Note -notlike "Manually defined URL *")){ # Update the note to include the matching URL Write-Verbose "Updating Note of matched URL: $($match.URL)" ($script:Results | Where-Object { $PSItem.URL -eq $match.URL } | Select-Object -First 1).Note = "URL matches $($wildcard.Source), to test URL $($wildcard.URL) - $($match.Note)" } # Continue to the next matching URL Continue } elseif ($script:Results.URL -notcontains $match.URL){ # Specific URL matched to Wildcard URL does not exist in the results, unexpected, but will add it Write-HostAzS "`tEndpoint matches wildcard '$($wildcard.URL)', adding to results" -ForegroundColor Green $newEntry = $wildcard.PSObject.Copy() $newEntry.URL = $match.URL $newEntry.Port = $match.Port $newEntry.ArcGateway = $match.ArcGateway $newEntry.Source = "$($match.Source)" $newEntry.Note = "URL matches $($match.Source), to test URL $($wildcard.URL) - $($match.Note)" # Set IsWildcard to false, as this is no longer a wildcard URL, it is a specific URL to test a wildcard URL $newEntry.IsWildcard = $false if($ArcGatewayDeployment.IsPresent){ # Skip URLs with ArcGateway -eq $True if($match.ArcGateway){ # Skip URLs that support Arc Gateway Write-HostAzS "Skipped URL: '$($newEntry.URL)' as supported by Arc Gateway" -ForegroundColor Yellow $newEntry.TCPStatus = "Skipped" $newEntry.Note = "Skipped, URL is supported by Arc Gateway - $($match.Note)" $newEntry.IPAddress = "N/A" $newEntry.Layer7Status = "Skipped" $newEntry.Layer7Response = "N/A" $newEntry.Layer7ResponseTime = "N/A" $newEntry.CertificateIssuer = "N/A" $newEntry.CertificateSubject = "N/A" $newEntry.CertificateThumbprint = "N/A" $newEntry.IntermediateCertificateIssuer = "N/A" $newEntry.IntermediateCertificateSubject = "N/A" $newEntry.IntermediateCertificateThumbprint = "N/A" $newEntry.RootCertificateIssuer = "N/A" $newEntry.RootCertificateSubject = "N/A" $newEntry.RootCertificateThumbprint = "N/A" } else { # Does not support Arc Gateway - run connectivity tests # $RequestMethod resolves from the Test-AzureLocalConnectivity call frame (dynamic scope), like $IncludeTCPConnectivityTests / $ArcGatewayDeployment above. $testResult = Invoke-EndpointConnectivityTest -Url $match.URL -Port $match.Port -IncludeTCPConnectivityTests:$IncludeTCPConnectivityTests.IsPresent -RequestMethod $RequestMethod $newEntry.TCPStatus = $testResult.TCPStatus $newEntry.IPAddress = $testResult.IPAddress $newEntry.Layer7Status = $testResult.Layer7Status $newEntry.Layer7Response = $testResult.Layer7Response $newEntry.Layer7ResponseTime = $testResult.Layer7ResponseTime $newEntry.CertificateIssuer = $testResult.CertificateIssuer $newEntry.CertificateSubject = $testResult.CertificateSubject $newEntry.CertificateThumbprint = $testResult.CertificateThumbprint $newEntry.IntermediateCertificateIssuer = $testResult.CertificateIntermediateIssuer $newEntry.IntermediateCertificateSubject = $testResult.CertificateIntermediateSubject $newEntry.IntermediateCertificateThumbprint = $testResult.CertificateIntermediateThumbprint $newEntry.RootCertificateIssuer = $testResult.CertificateRootIssuer $newEntry.RootCertificateSubject = $testResult.CertificateRootSubject $newEntry.RootCertificateThumbprint = $testResult.CertificateRootThumbprint } # End of ArcGateway -eq $True check } else { # Else process URLs with ArcGateway -eq $False # $RequestMethod resolves from the Test-AzureLocalConnectivity call frame (dynamic scope), like $IncludeTCPConnectivityTests / $ArcGatewayDeployment above. $testResult = Invoke-EndpointConnectivityTest -Url $match.URL -Port $match.Port -IncludeTCPConnectivityTests:$IncludeTCPConnectivityTests.IsPresent -RequestMethod $RequestMethod $newEntry.TCPStatus = $testResult.TCPStatus $newEntry.IPAddress = $testResult.IPAddress $newEntry.Layer7Status = $testResult.Layer7Status $newEntry.Layer7Response = $testResult.Layer7Response $newEntry.Layer7ResponseTime = $testResult.Layer7ResponseTime $newEntry.CertificateIssuer = $testResult.CertificateIssuer $newEntry.CertificateSubject = $testResult.CertificateSubject $newEntry.CertificateThumbprint = $testResult.CertificateThumbprint $newEntry.IntermediateCertificateIssuer = $testResult.CertificateIntermediateIssuer $newEntry.IntermediateCertificateSubject = $testResult.CertificateIntermediateSubject $newEntry.IntermediateCertificateThumbprint = $testResult.CertificateIntermediateThumbprint $newEntry.RootCertificateIssuer = $testResult.CertificateRootIssuer $newEntry.RootCertificateSubject = $testResult.CertificateRootSubject $newEntry.RootCertificateThumbprint = $testResult.CertificateRootThumbprint } # End of DNS check # Add the new match to the expanded results $script:Results.Add($newEntry) | Out-Null Write-Verbose "Added: '$($newEntry.URL)' that matches Wildcard '$($wildcard.URL)'" } else { # Unexpected condition, should not occur, as we use the Results array for the list of Wildcards, so the URL should always exist Write-Warning "Unexpected: URL '$($match.URL)' matches Wildcard '$($wildcard.URL)', but conditions not met, skipping" Continue } # End of URL exists check } else { Write-Warning "Port not valid for url: '$($match.URL)', port: '$($match.Port)', note: '$($match.Source)' - skipping" } } # End of matching URLs loop } else { # Unexpected condition, should not occur, as we use the Results array for the list of Wildcards, so the URL should always exist Write-Warning "Unexpected: Wildcard URL $($wildcard.URL) should match either zero or more results, but matches status unknown, skipping" Continue } # End of matching URLs check } # End of wildcard loop Write-Progress -Id 1 -Activity "Expanding Wildcard URLs" -Completed } # End of process block end { # Write-Debug "Completed Expand-WildcardUrlsDynamically function" } } # End of Expand-WildcardUrlsDynamically function # //////////////////////////////////////////////////////////////////////////// # Function to manually test known subdomains for wildcard URLs Function Test-ManuallyDefinedSubdomains { Param ( ) begin { # Incremental counter for subdomains (separate from the main progress bar) [int]$urlCount = 0 # Total number of manually defined subdomains for sub-progress tracking [int]$totalSubdomains = $script:MANUAL_SUBDOMAIN_COUNT # Use the constant subdomain list $manualSubdomains = $script:MANUAL_SUBDOMAINS } process { # Test each manual subdomain for each wildcard to validate connectivity. ForEach ($entry in $manualSubdomains) { $wildcard = $entry.Wildcard $subdomains = $entry.Subdomains # Check if the wildcard URL is supported by Arc Gateway, if so, skip the wildcard URL if($ArcGatewayDeployment.IsPresent -and ($PreArcGatewayRemoval | Where-Object { ($_.URL -eq $wildcard) -and ($_.ArcGateway -eq $true) })) { # Skip wildcard URLs that have already been tested Write-Verbose "Info: Wildcard '$wildcard', supports the Arc Gateway, skipping subdomain tests." Continue } # Check if the wildcard URL exists in the results, if not, skip testing subdomains if($script:Results.URL -notcontains $wildcard) { # Skip wildcard URLs that have already been tested Write-Verbose "Info: Wildcard '$wildcard', is not present in Results array, skipping subdomain tests." Continue } Write-HostAzS "`nTesting manually defined subdomains for wildcard $wildcard" # ForEach loop to process each subdomain ForEach ($subdomain in $subdomains) { # Test each subdomain for TCP and Layer 7 connectivity $urlCount++ if ($totalSubdomains -gt 0) { Write-Progress -Id 1 -ParentId 0 -Activity "Validating Wildcard Endpoints" -Status "Subdomain $urlCount of $($totalSubdomains): $subdomain" -PercentComplete (($urlCount / $totalSubdomains) * 100) } Write-HostAzS "`nWildcard validation $urlCount of $($totalSubdomains): Subdomain: $subdomain" # Test port 80 and 443 for each subdomain ForEach ($port in @(80, 443)) { # Exceptions to some URLs, that do not support port 80 or 443 # Skip port 443 for ctldl.windowsupdate.com, download.windowsupdate.com, fe2.update.microsoft.com and 1a.au.download.windowsupdate.com if(($subdomain -in ("ctldl.windowsupdate.com","download.windowsupdate.com","fe2.update.microsoft.com","1a.au.download.windowsupdate.com")) -and ($port -eq $script:PORT_HTTPS)){ # Skip port 443 for ctldl.windowsupdate.com, download.windowsupdate.com, fe2.update.microsoft.com and 1a.au.download.windowsupdate.com Write-HostAzS "Skipping port 443 for $subdomain" -ForegroundColor Yellow Continue } # Skip port 80 for prod5.prod.hot.ingest.monitor.core.windows.net and edr-neu3.eu.endpoint.security.microsoft.com if(($subdomain -in ("prod5.prod.hot.ingest.monitor.core.windows.net","edr-neu3.eu.endpoint.security.microsoft.com")) -and ($port -eq $script:PORT_HTTP)){ # Skip port 80 for prod5.prod.hot.ingest.monitor.core.windows.net and edr-neu3.eu.endpoint.security.microsoft.com Write-HostAzS "Skipping port 80 for $subdomain" -ForegroundColor Yellow Continue } # Run connectivity tests using shared helper # $RequestMethod resolves from the Test-AzureLocalConnectivity call frame (dynamic scope), like $IncludeTCPConnectivityTests / $ArcGatewayDeployment. Write-HostAzS "Testing $subdomain on port $port" $testResult = Invoke-EndpointConnectivityTest -Url $subdomain -Port $port -IncludeTCPConnectivityTests:$IncludeTCPConnectivityTests.IsPresent -RequestMethod $RequestMethod $TCPstatus = $testResult.TCPStatus $ipAddress = $testResult.IPAddress $Layer7Status = $testResult.Layer7Status $Layer7Response = $testResult.Layer7Response $Layer7ResponseTime = $testResult.Layer7ResponseTime $CertificateIssuer = $testResult.CertificateIssuer $CertificateSubject = $testResult.CertificateSubject $CertificateThumbprint = $testResult.CertificateThumbprint $CertificateIntermediateIssuer = $testResult.CertificateIntermediateIssuer $CertificateIntermediateSubject = $testResult.CertificateIntermediateSubject $CertificateIntermediateThumbprint = $testResult.CertificateIntermediateThumbprint $CertificateRootIssuer = $testResult.CertificateRootIssuer $CertificateRootSubject = $testResult.CertificateRootSubject $CertificateRootThumbprint = $testResult.CertificateRootThumbprint # Check if the URL already exists in the "allTestedUrls" results, only add new ones if($script:Results.URL -notcontains $subdomain) { # ArcGateway = $true, as all wildcards are "microsoft.com" or "windows.net", so should support ArcGateway # MachineName (v0.6.7): identifies which node generated this row when bundles # from multiple nodes are merged via -Scope Cluster. $subdomainEntry = [PSCustomObject]@{ RowID = 0 MachineName = $env:COMPUTERNAME URL = $subdomain Port = $port ArcGateway = $true IsWildcard = $false Source = "Test for $(($script:Results | Where-Object { ($_.URL -eq $wildcard) } | Select-Object -First 1).Source)" Note = "Manually defined URL to test $Source Wildcard URL $wildcard" TCPStatus = $TCPstatus IPAddress = $ipAddress Layer7Status = $Layer7Status Layer7Response = $Layer7Response Layer7ResponseTime = $Layer7ResponseTime CertificateIssuer = $CertificateIssuer CertificateSubject = $CertificateSubject CertificateThumbprint = $CertificateThumbprint IntermediateCertificateIssuer = $CertificateIntermediateIssuer IntermediateCertificateSubject = $CertificateIntermediateSubject IntermediateCertificateThumbprint = $CertificateIntermediateThumbprint RootCertificateIssuer = $CertificateRootIssuer RootCertificateSubject = $CertificateRootSubject RootCertificateThumbprint = $CertificateRootThumbprint } # Add the subdomain entry to the results Write-Debug "Info: Added $($subdomain) to the results array" $script:Results.Add($subdomainEntry) | Out-Null $MatchedWildcardURLs = ($script:Results | Where-Object { $PSItem.URL -eq $wildcard } ) ForEach($MatchedWildcardURL in $MatchedWildcardURLs) { if($MatchedWildcardURL.Note -notlike "Wildcard URL,*"){ # Update the note to include the matching URL Write-Verbose "Updating Note of wildcard URL: $($wildcard), with cross-reference to $($subdomain)" $MatchedWildcardURL.Note = "Wildcard URL, tested by manually defined URL $($subdomain) - $($MatchedWildcardURL.Note)" } } } else { # URL already exists in the results, skip Write-Verbose "Info: Url $($subdomain) already exists in the results, skipping" $MatchedWildcardURLs = ($script:Results | Where-Object { $PSItem.URL -eq $wildcard } ) ForEach($MatchedWildcardURL in $MatchedWildcardURLs) { if($MatchedWildcardURL.Note -notlike "Wildcard URL,*"){ # Update the note to include the matching URL $MatchedWildcardURL.Note = "Wildcard URL, tested by manually defined URL $($subdomain) - $($MatchedWildcardURL.Note)" Write-Verbose "Updated Note of wildcard URL: $($wildcard), with cross-reference to $($subdomain)" } } } } } # End of ForEach per $port } # End of ForEach $subdomain } # End of Process block end { # Progress bar is managed by the caller (unified with main endpoint testing) } } # End of Test-ManuallyDefinedSubdomains function # //////////////////////////////////////////////////////////////////////////// # Function to parse endpoints from markdown lines Function Get-EndpointsFromMarkdown { <# .SYNOPSIS Parse endpoints from markdown lines. .DESCRIPTION This function parses the provided markdown lines to extract endpoint URLs. #> [CmdletBinding()] param ( [Parameter(Mandatory=$true)] [AllowEmptyCollection()] [string[]]$InputMarkdown, [Parameter(Mandatory=$true)] [ValidateNotNullOrEmpty()] [string]$Source ) begin { # Write-Debug "Get-EndpointsFromMarkdown: Beginning endpoint parsing from markdown lines" # Initialize counter to store the number of parsed endpoints [int]$parsedEndpoints = 0 # Validate input is not empty if (-not $InputMarkdown -or $InputMarkdown.Count -eq 0) { Write-Warning "No markdown content provided to parse in function: 'Get-EndpointsFromMarkdown'. Returning 0 endpoints." return $parsedEndpoints } } process { # Parse markdown table rows to extract endpoint URLs. # Expected format: | RowNum | ... | URL | Ports | Note | ArcGateway | ... # The regex matches lines starting with | followed by a number (the row ID column). # Columns are split on '|' and indexed: [3]=URL, [4]=Ports, [5]=Note, [6]=ArcGateway. ForEach ($line in $InputMarkdown) { if ($line -match "^\|\s*(\d+)\s*\|") { # $rowId = [int]($line -replace "^\|\s*(\d+)\s*\|.*", '$1') $columns = $line -split "\|" # Validate column count before accessing indices (need at least 7 columns: empty, rowId, desc, URL, Ports, Note, ArcGateway) if ($columns.Count -lt 7) { Write-Warning "Skipping malformed markdown row (expected at least 7 columns, found $($columns.Count)): $line" Continue } $url = $columns[3].Trim() # Sanitize URL: only allow FQDN characters (alphanumeric, hyphens, dots, wildcards, forward slashes, colons for port, underscores) # This prevents injection of unexpected values from crafted markdown files. if ($url -notmatch '^[a-zA-Z0-9\*\.\-\:/_]+$') { Write-Warning "Skipping invalid URL from markdown: '$url' - contains unexpected characters" Continue } $ports = $columns[4].Trim() -split ',' $note = $columns[5].Trim() $ArcGatewayText = $columns[6].Trim() if(($ArcGatewayText.Length -ge 2) -and ($ArcGatewayText.Substring(0,2) -eq "No")){ # "No" [bool]$ArcGateway = $false } elseif(($ArcGatewayText.Length -ge 3) -and ($ArcGatewayText.Substring(0,3) -eq "Yes")){ # "Yes" [bool]$ArcGateway = $true } else { # Unknown Write-Warning "Unknown ArcGateway status for url: '$url' : $ArcGatewayText" [bool]$ArcGateway = $false } # Use only the domain name from the URL, remove any absolute path from the endpoint when checking if it exists $urlcheck = (Get-DomainFromURL -url $url).Domain foreach ($port in $ports) { $isWildcard = $url.Contains("*") if($script:Results | Where-Object { ((Get-DomainFromURL -url $_.URL).Domain -eq $urlcheck) -and ($_.Port -eq $port) }) { Write-Debug "$($Source): Skipping '$url' with port '$port', as it already exists in the results array." # If the ArcGateway value is different, update it $script:Results | Where-Object { ((Get-DomainFromURL -url $_.URL).Domain -like $urlcheck) -and ($_.Port -eq $port) } | ForEach-Object { $_.ArcGateway = $ArcGateway } Continue } else { Write-Debug "$($Source): Adding '$urlcheck' with port '$port' to results array for processing." # MachineName (v0.6.7): identifies which node generated this row when bundles # from multiple nodes are merged via -Scope Cluster. This is the primary URL # ingestion path so the bulk of result rows in any run originate here. $script:Results.Add([PSCustomObject]@{ RowID = 0 MachineName = $env:COMPUTERNAME URL = $url Port = [int]$port ArcGateway = $ArcGateway IsWildcard = $isWildcard Source = if ($isWildcard) { "$Source Wildcard" } else { "$Source" } Note = $note TCPStatus = "" IPAddress = "" Layer7Status = "" Layer7Response = "" Layer7ResponseTime = "" CertificateIssuer = "" CertificateSubject = "" CertificateThumbprint = "" IntermediateCertificateIssuer = "" IntermediateCertificateSubject = "" IntermediateCertificateThumbprint = "" RootCertificateIssuer = "" RootCertificateSubject = "" RootCertificateThumbprint = "" }) | Out-Null # Increment the parsed endpoints counter $parsedEndpoints++ } } } } } # End of process block end { # Write-Debug "Get-EndpointsFromMarkdown: Endpoint parsing completed" Return $parsedEndpoints } } # End Function Get-EndpointsFromMarkdown # SIG # Begin signature block # MIInSQYJKoZIhvcNAQcCoIInOjCCJzYCAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCBSJmyb4UnCL0Km # 9PUd2YwWBNrhm/xTTP5564gjSh3SCqCCDLowggX1MIID3aADAgECAhMzAAACHU0Z # yE7XD1dIAAAAAAIdMA0GCSqGSIb3DQEBCwUAMFcxCzAJBgNVBAYTAlVTMR4wHAYD # VQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBD # b2RlIFNpZ25pbmcgUENBIDIwMjQwHhcNMjYwNDE2MTg1OTQzWhcNMjcwNDE1MTg1 # OTQzWjB0MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYD # VQQDExVNaWNyb3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IB # DwAwggEKAoIBAQDQvewXxx9gZZFC6Ys1WBay8BJ8kGA4JQnH5CMafqOASlTpK9H8 # o5ZXTXt0caVQTNMUPt445wXYD+dFtaKWTwDn1I52oUSrC9vJin1Gsqt+zyKJL5Dg # 3eQXbQNR61DmMy20GLTIO3SFed9Rfi/ophgCLGFLDR3r0KvHjwMb/jYWS0celV/4 # Lz27LfAekm8v9E5IXaeiXbAUYZKK090n4CVl3JBtbN+9DtI9SNu/yjvozW52/u7R # X/Ttpa/KDlpuokZ+Zcbvmtd9ur9gFLvZzh41o9MsE/clQtdaFWGvuo6Jua/ntpgk # ey3E5/vBFe+MJPG6phdnuo6r57ZudCudiI1bAgMBAAGjggGbMIIBlzAOBgNVHQ8B # Af8EBAMCB4AwHwYDVR0lBBgwFgYKKwYBBAGCN0wIAQYIKwYBBQUHAwMwHQYDVR0O # BBYEFH6QuMwqcPG0hQlQ6c5jCtTTLrVeMEUGA1UdEQQ+MDykOjA4MR4wHAYDVQQL # ExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xFjAUBgNVBAUTDTIzMDAxMis1MDc1NTkw # HwYDVR0jBBgwFoAUf1k/VCHarU/vBeXmo9ctBpQSCDEwYAYDVR0fBFkwVzBVoFOg # UYZPaHR0cDovL3d3dy5taWNyb3NvZnQuY29tL3BraW9wcy9jcmwvTWljcm9zb2Z0 # JTIwQ29kZSUyMFNpZ25pbmclMjBQQ0ElMjAyMDI0LmNybDBtBggrBgEFBQcBAQRh # MF8wXQYIKwYBBQUHMAKGUWh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMv # Y2VydHMvTWljcm9zb2Z0JTIwQ29kZSUyMFNpZ25pbmclMjBQQ0ElMjAyMDI0LmNy # dDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBCwUAA4ICAQBKTbYOjzwTG/DXGaz9 # s6+fQeaTtDcFmMY+5UyVFCyj7Pv+5i37qfX8lSL/tBIfYQfWsMuBQlfZurJD6r4H # VJ2CeH+1fgiq8dcHdVKoZ3Sa2qXoX3cq9iS8cVb06B7+5/XJ7I0OxHH9fDsvJ3T3 # w5V/ZtAIFmLrl+P0CtG+92uzRsn0nTbdFjOkLMLWPLAU3THohKRlSEMgFJpPkm5n # 5UAZ35xX6FWCrDLsSKb555bTifwa8mJBwdlof0bmfYidH+dxZ1FdDxvLnNl9zeKs # A4kejaaIqqIPguhwAti5Ql7BlTNoJNwxCvBmqW2MQLnCkYN/VVUsR3V2x/rcTNzo # Bf/Z/SpROvdaA2ZOOd1uioXJt3tdLQ7vHpqpib0KfWr/FWXW10q38VxfCnRQBqzb # SuztR7nEMuzX7Ck+B/XaPDXd1qh72+QYyB0Z2VzWmO9zsnb9Uq/dwu8LGeQqnyu6 # 7SDGACvnXii2fb9+US492VTnXSnFKyqwgzUyFMtZK1/sHYTv6bG4TtQUygQxTN+Z # V+aJIlKO2MqZ7bKrAnOzS9m6NgoTdWOq11bTOZwKlIEV/EhV9SWkDmdpR/hPPT2v # 6TEj4F8PT/zHjRezIU5c/DGlt/VhY/pK0XkJtEyMmmS1BMtjU/rqBZVMIm3dnxQs # /TBByr+Cf8Z1r7aifQVQ+WSqzjCCBr0wggSloAMCAQICEzMAAAA5O7Y3Gb8GHWcA # AAAAADkwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpX # YXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQg # Q29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRl # IEF1dGhvcml0eSAyMDExMB4XDTI0MDgwODIwNTQxOFoXDTM2MDMyMjIyMTMwNFow # VzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEo # MCYGA1UEAxMfTWljcm9zb2Z0IENvZGUgU2lnbmluZyBQQ0EgMjAyNDCCAiIwDQYJ # KoZIhvcNAQEBBQADggIPADCCAgoCggIBANgBnB7jOMeqlRYHNa265v4IY9fH8TKh # emHfPINe1gpLaV3dhg324WwH06LcHbpnsBukCDNitryo0dtS/EW6I/yEL/bLSY8h # KpbfQuWusBPr9qazYcDxCW/qnjb5JsI1s8bNOg3bVATvQVL4tcf03aTycsz8QeCd # M0l/yHRObJ9QqazM1r6VPEOJ7LL+uEEb73w6QCuhs89a1uv1zerOYMnsneRRwCbp # yW11IcggU0cRKDDq1pjVJzIbIF6+oiXXbReOsgeI8zu1FyQfK0fVkaya8SmVHQ/t # Of23mZ4W9k0Ri22QW9p3UgSC5OUDktKxxcCmGL6tXLfOGSWHIIV4YrTJTT6PNty5 # REojHJuZHArkF9VnHTERWoTjAzfI3kP+5b4alUdhgAZ7ttOu1bVnXfHaqPYl2rPs # 20ji03LOVWsh/radgE17es5hL+t6lV0eVHrVhsssROWJuz2MXMCt7iw7lFPG9LXK # Gjsmonn2gotGdHIuEg5JnJMJVmixd5LRlkmgYRZKzhxSCwyoGIq0PhaA7Y+VPct5 # pCHkijcIIDm0nlkK+0KyepolcqGm0T/GYQRMhHJlGOOmVQop36wUVUYklUy++vDW # eEgEo4s7hxN6mIbf2MSIQ/iIfMZgJxC69oukMUXCrOC3SkE/xIkgpfl22MM1itkZ # 35nNXkMolU1lAgMBAAGjggFOMIIBSjAOBgNVHQ8BAf8EBAMCAYYwEAYJKwYBBAGC # NxUBBAMCAQAwHQYDVR0OBBYEFH9ZP1Qh2q1P7wXl5qPXLQaUEggxMBkGCSsGAQQB # gjcUAgQMHgoAUwB1AGIAQwBBMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAU # ci06AjGQQ7kUBU7h6qfHMdEjiTQwWgYDVR0fBFMwUTBPoE2gS4ZJaHR0cDovL2Ny # bC5taWNyb3NvZnQuY29tL3BraS9jcmwvcHJvZHVjdHMvTWljUm9vQ2VyQXV0MjAx # MV8yMDExXzAzXzIyLmNybDBeBggrBgEFBQcBAQRSMFAwTgYIKwYBBQUHMAKGQmh0 # dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2kvY2VydHMvTWljUm9vQ2VyQXV0MjAx # MV8yMDExXzAzXzIyLmNydDANBgkqhkiG9w0BAQwFAAOCAgEAFJQfOChP7onn6fLI # MKrSlN1WYKwDFgAddymOUO3FrM8d7B/W/iQ6DxXsDn7D5W4wMwYeLystcEqfkjz4 # NURRgazyMu5yRzQh4LqjA4tStTcJh1opExo7nn5PuPBYnbu0+THSuVHTe0VTTPVh # ily/piFrDo3axQ9P4C+Ol5yet+2gTfekICS5xS+cYfSIvgn0JksVBVMYVI5QFu/q # hnLhsEFEUzG8fvv0hjgkO+lkpV9ty6GkN4vdnd7ya6Q6aR9y34aiM1qmxaxBi6OU # nyNl6fkuun/diTFnYDLTppOkr/mg5WSfCiDVMNCxtj4wPKC5OmHm1DQIt/MNokbb # H3UGsFP1QbzsLocuSqLCvH09Io3fDPTmscR9Y75G4qX7RTX8AdBPo0I6OEojf39z # uFZt0qOHm65YWQE69cZM2ueE1MB05dNNgHK9gTE7zKvK/fg8B2qjW88MT/WF5V5u # vZGtqa9FSL2RazArA+rDPuf6JGYz4HpgMZHB4S6szWSKYBv0VisCzfxgeU+dquXW # 9bd0auYlOB58DPcOYKdc3Se94g+xL4pcEhbB54JOgAkwYTu/9dLeH2pDqeJZAABV # DWRQCaXfO5LgyKwKCLYXpigrZYCjUSBcr+Ve8PFWMhVTQl0v4q8J/AUmQN5W4n10 # 1cY2L4A7GTQG1h32HHAvfQESWP0xghnlMIIZ4QIBATBuMFcxCzAJBgNVBAYTAlVT # MR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jv # c29mdCBDb2RlIFNpZ25pbmcgUENBIDIwMjQCEzMAAAIdTRnITtcPV0gAAAAAAh0w # DQYJYIZIAWUDBAIBBQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYK # KwYBBAGCNwIBCzEOMAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIDcXkV3h # xA49lQuvujEMnOJkpktgryBHGcT3BKjMz7aIMEIGCisGAQQBgjcCAQwxNDAyoBSA # EgBNAGkAYwByAG8AcwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20w # DQYJKoZIhvcNAQEBBQAEggEAZknV+YFWrBHZNIscNQV78LtDDI4NBLJVNzCEJfAR # 0UNSOQ8Z5kZllGqSrO/LSZSy0XvbCEL/5+8K454174w3SZuwhvyF8y0rQ57kAKAO # 3OnSCST9R+wTTe4wSQDvW+4w7Bh+JBhnVT8MG8KiZIMo61JIgZuzDU9TVQWhU6W5 # 3uSzF5eIictuI7c044XFyZfmVAss0W3ntSX8fnsXHodvxlXtqP/W89GppCeQpYfL # CvHiosIqTRToRl6JQ+wDo2LXHS9sPmJ28yTR44KD+P9gOP8wpQ2NfbbVR2awcJjR # FXDrAyx/qmQONhkQ8G+vj+2dovV9AtldzEEjMUBa7dC//6GCF5cwgheTBgorBgEE # AYI3AwMBMYIXgzCCF38GCSqGSIb3DQEHAqCCF3AwghdsAgEDMQ8wDQYJYIZIAWUD # BAIBBQAwggFSBgsqhkiG9w0BCRABBKCCAUEEggE9MIIBOQIBAQYKKwYBBAGEWQoD # ATAxMA0GCWCGSAFlAwQCAQUABCBX31G52KxZuEscpsKbv2GYXKD7HVXJ+4Ft1ltm # 1TPYPgIGajFOFjpfGBMyMDI2MDcxNjIyNTUzMy43MzRaMASAAgH0oIHRpIHOMIHL # MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVk # bW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxN # aWNyb3NvZnQgQW1lcmljYSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRT # UyBFU046QTkzNS0wM0UwLUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0 # YW1wIFNlcnZpY2WgghHtMIIHIDCCBQigAwIBAgITMwAAAifVwIPDsS5XLQABAAAC # JzANBgkqhkiG9w0BAQsFADB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGlu # Z3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBv # cmF0aW9uMSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDAe # Fw0yNjAyMTkxOTQwMDRaFw0yNzA1MTcxOTQwMDRaMIHLMQswCQYDVQQGEwJVUzET # MBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMV # TWljcm9zb2Z0IENvcnBvcmF0aW9uMSUwIwYDVQQLExxNaWNyb3NvZnQgQW1lcmlj # YSBPcGVyYXRpb25zMScwJQYDVQQLEx5uU2hpZWxkIFRTUyBFU046QTkzNS0wM0Uw # LUQ5NDcxJTAjBgNVBAMTHE1pY3Jvc29mdCBUaW1lLVN0YW1wIFNlcnZpY2UwggIi # MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDixWy1fDOSL4qj3A1pady+elID # LwnF3UuLzJIOWwGHcEgrxxwtnyviUIDmmxylTUl1u+2rBPp2zT4BwwQhvGaJpExq # vPLlDFlbfmSflKI86eFqofiZ7j8NTRO4l7wGg9Njm+muNauTcFW2qdfIjKE950Ok # rm9MnMOGYy+fibNYdxTPRPq1T4MLZK3s3vdMyMEOldcOQkSKpxD6/1Gk6gOmCu2K # gI8f0ex6vYxnKDl9W0OLSEa/6y82oIbsm+1QBifOQ47xWKTG1CmvtGr85LzA75/M # AcUmRw5/of/qET0UFV1WulMcJrI6DASAsNCNB+6WLrotuBZAj+VMlqbn5RMZ6Q4I # Y7JwaAiIXh7VjxrnwUOYZG8WEGhfrA98di+7LEn9AqvvEOyG+UQcjVhCCbMGXigJ # XSApeyeWupCsD0jgQMNCxfB5BLBDWxgdY3dJBEPgxfkgTDQLBggtVv2d5CYxHKgI # ItB4bI5eSb5jkIG2WotnFetT0legpw/Eozwf39ao6tENY21eVWIzRw/GsmvwjYQF # 6vVrxOD0pGVsfqGF8s3VPeY7hI2TxHFMqNA0IB/a2NLY7JTxYAKAP/11EJZt7xbq # DLMgD1YDdGEzGpQijm3nAPCL2CebP/jmu90abJ2W425yglGHTI/nCBrwSpfRCgwz # rfFelJaCKM6+35aFfwIDAQABo4IBSTCCAUUwHQYDVR0OBBYEFNLW58N4MGSG6ud7 # jWqgT92orfReMB8GA1UdIwQYMBaAFJ+nFV0AXmJdg/Tl0mWnG1M1GelyMF8GA1Ud # HwRYMFYwVKBSoFCGTmh0dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvY3Js # L01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0ElMjAyMDEwKDEpLmNybDBsBggr # BgEFBQcBAQRgMF4wXAYIKwYBBQUHMAKGUGh0dHA6Ly93d3cubWljcm9zb2Z0LmNv # bS9wa2lvcHMvY2VydHMvTWljcm9zb2Z0JTIwVGltZS1TdGFtcCUyMFBDQSUyMDIw # MTAoMSkuY3J0MAwGA1UdEwEB/wQCMAAwFgYDVR0lAQH/BAwwCgYIKwYBBQUHAwgw # DgYDVR0PAQH/BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4ICAQAqncud4PSC1teb2H6n # Ruy7sDiKK13FXJirVB4Tfwjdo2Mb+QL4j7wZ/k4G9P0CANHZFrDQcK0VFDTysrYu # 8Z0Aha14acDZPsyIoPvAGRRhaHEuf7NckRjkfa/ylo1KyII8jbL9N9sJAqBPL8V4 # FNBjljv+1GHDOw127rZz5ZSTPoAPb2SA0v5yDgcpUMfxglPyp6cnPPoQpTtD9OGx # 8Dwm2P+o1TPxBIy6I0T9RauulogVCvKwflfeLTcKAvnSG1rCjerSXmU1DNXOsAD/ # bsrSjgbX5mAbD7XTRMF/vawAWESFcn/BjjizxeWZb00aYSlkJA2rVtFlMM481aVW # XdAbXPP5RzUiWTlgyHf/G7lCxHYWGIZuB13T3aI6Y8mEgn/ou40aiFJo8r0+i0P5 # GdNneWtxiR0CMKUfko+5s/73cwe1Wfp8BKXa270cicVQasFf5sRV7pFm+V7fNRXw # Cu7anTOmga76zO7/2t+zOlibvphT+Q6Zd+B2qYsSn4xBaY+YzHpnycLW5cvJyhPx # BCcb1oRYfhRzCADb2utI2EtGCjc2P2ii4LyR4QMb/n8cOweL9IqVTKKzzVk+zZJx # V3vrp4LyuQXw0O30la6BcHdNAAAB9UC83zs3G9d+AlIfZLM97tMUNKWjbBpIirFx # 6LTDFXVtZQd7hqzLYByjbjH0ujCCB3EwggVZoAMCAQICEzMAAAAVxedrngKbSZkA # AAAAABUwDQYJKoZIhvcNAQELBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpX # YXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQg # Q29ycG9yYXRpb24xMjAwBgNVBAMTKU1pY3Jvc29mdCBSb290IENlcnRpZmljYXRl # IEF1dGhvcml0eSAyMDEwMB4XDTIxMDkzMDE4MjIyNVoXDTMwMDkzMDE4MzIyNVow # fDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1Jl # ZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMd # TWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIwMTAwggIiMA0GCSqGSIb3DQEBAQUA # A4ICDwAwggIKAoICAQDk4aZM57RyIQt5osvXJHm9DtWC0/3unAcH0qlsTnXIyjVX # 9gF/bErg4r25PhdgM/9cT8dm95VTcVrifkpa/rg2Z4VGIwy1jRPPdzLAEBjoYH1q # UoNEt6aORmsHFPPFdvWGUNzBRMhxXFExN6AKOG6N7dcP2CZTfDlhAnrEqv1yaa8d # q6z2Nr41JmTamDu6GnszrYBbfowQHJ1S/rboYiXcag/PXfT+jlPP1uyFVk3v3byN # pOORj7I5LFGc6XBpDco2LXCOMcg1KL3jtIckw+DJj361VI/c+gVVmG1oO5pGve2k # rnopN6zL64NF50ZuyjLVwIYwXE8s4mKyzbnijYjklqwBSru+cakXW2dg3viSkR4d # Pf0gz3N9QZpGdc3EXzTdEonW/aUgfX782Z5F37ZyL9t9X4C626p+Nuw2TPYrbqgS # Uei/BQOj0XOmTTd0lBw0gg/wEPK3Rxjtp+iZfD9M269ewvPV2HM9Q07BMzlMjgK8 # QmguEOqEUUbi0b1qGFphAXPKZ6Je1yh2AuIzGHLXpyDwwvoSCtdjbwzJNmSLW6Cm # gyFdXzB0kZSU2LlQ+QuJYfM2BjUYhEfb3BvR/bLUHMVr9lxSUV0S2yW6r1AFemzF # ER1y7435UsSFF5PAPBXbGjfHCBUYP3irRbb1Hode2o+eFnJpxq57t7c+auIurQID # AQABo4IB3TCCAdkwEgYJKwYBBAGCNxUBBAUCAwEAATAjBgkrBgEEAYI3FQIEFgQU # KqdS/mTEmr6CkTxGNSnPEP8vBO4wHQYDVR0OBBYEFJ+nFV0AXmJdg/Tl0mWnG1M1 # GelyMFwGA1UdIARVMFMwUQYMKwYBBAGCN0yDfQEBMEEwPwYIKwYBBQUHAgEWM2h0 # dHA6Ly93d3cubWljcm9zb2Z0LmNvbS9wa2lvcHMvRG9jcy9SZXBvc2l0b3J5Lmh0 # bTATBgNVHSUEDDAKBggrBgEFBQcDCDAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMA # QTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBTV9lbL # j+iiXGJo0T2UkFvXzpoYxDBWBgNVHR8ETzBNMEugSaBHhkVodHRwOi8vY3JsLm1p # Y3Jvc29mdC5jb20vcGtpL2NybC9wcm9kdWN0cy9NaWNSb29DZXJBdXRfMjAxMC0w # Ni0yMy5jcmwwWgYIKwYBBQUHAQEETjBMMEoGCCsGAQUFBzAChj5odHRwOi8vd3d3 # Lm1pY3Jvc29mdC5jb20vcGtpL2NlcnRzL01pY1Jvb0NlckF1dF8yMDEwLTA2LTIz # LmNydDANBgkqhkiG9w0BAQsFAAOCAgEAnVV9/Cqt4SwfZwExJFvhnnJL/Klv6lwU # tj5OR2R4sQaTlz0xM7U518JxNj/aZGx80HU5bbsPMeTCj/ts0aGUGCLu6WZnOlNN # 3Zi6th542DYunKmCVgADsAW+iehp4LoJ7nvfam++Kctu2D9IdQHZGN5tggz1bSNU # 5HhTdSRXud2f8449xvNo32X2pFaq95W2KFUn0CS9QKC/GbYSEhFdPSfgQJY4rPf5 # KYnDvBewVIVCs/wMnosZiefwC2qBwoEZQhlSdYo2wh3DYXMuLGt7bj8sCXgU6ZGy # qVvfSaN0DLzskYDSPeZKPmY7T7uG+jIa2Zb0j/aRAfbOxnT99kxybxCrdTDFNLB6 # 2FD+CljdQDzHVG2dY3RILLFORy3BFARxv2T5JL5zbcqOCb2zAVdJVGTZc9d/HltE # AY5aGZFrDZ+kKNxnGSgkujhLmm77IVRrakURR6nxt67I6IleT53S0Ex2tVdUCbFp # AUR+fKFhbHP+CrvsQWY9af3LwUFJfn6Tvsv4O+S3Fb+0zj6lMVGEvL8CwYKiexcd # FYmNcP7ntdAoGokLjzbaukz5m/8K6TT4JDVnK+ANuOaMmdbhIurwJ0I9JZTmdHRb # atGePu1+oDEzfbzL6Xu/OHBE0ZDxyKs6ijoIYn/ZcGNTTY3ugm2lBRDBcQZqELQd # VTNYs6FwZvKhggNQMIICOAIBATCB+aGB0aSBzjCByzELMAkGA1UEBhMCVVMxEzAR # BgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1p # Y3Jvc29mdCBDb3Jwb3JhdGlvbjElMCMGA1UECxMcTWljcm9zb2Z0IEFtZXJpY2Eg # T3BlcmF0aW9uczEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOkE5MzUtMDNFMC1E # OTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNloiMKAQEw # BwYFKw4DAhoDFQAjHzqthPwO0GDckDMA6x54lIiMKqCBgzCBgKR+MHwxCzAJBgNV # BAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4w # HAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1pY3Jvc29m # dCBUaW1lLVN0YW1wIFBDQSAyMDEwMA0GCSqGSIb3DQEBCwUAAgUA7gNVPzAiGA8y # MDI2MDcxNjEzMDM1OVoYDzIwMjYwNzE3MTMwMzU5WjB3MD0GCisGAQQBhFkKBAEx # LzAtMAoCBQDuA1U/AgEAMAoCAQACAllcAgH/MAcCAQACAhKgMAoCBQDuBKa/AgEA # MDYGCisGAQQBhFkKBAIxKDAmMAwGCisGAQQBhFkKAwKgCjAIAgEAAgMHoSChCjAI # AgEAAgMBhqAwDQYJKoZIhvcNAQELBQADggEBAEyEmaFlBUq/9OPfM1dsOSzlKRg0 # PZQj6x5DSriMNOq61WKGy/J5Oi3aicZBEgSBMZYLKz62D8LyniOI7iFp+AA8tzx1 # aASbatjA3LA9voLipJ/fp+Lt3xqL1xHMHXajrNJDpfSiRTP5hipjRPlXDoB4Fpba # 7nK7fdKWnpGRJnBLI3KOiWy6zBvyPsydd3B9owUz5b/rNJPJ5V69aRDdvoppB3xM # 9UcE8TWhJVyzBU3bti3JJOF5xyQMvSE4bVtupSgLiXe7NUyRfzFJCOR7zXG0276n # MbqC7nXsPW+K3BVEONfnUdMULIuTdB8Gvmy1vcXxbblPA2quBvHX3Ta59e8xggQN # MIIECQIBATCBkzB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQ # MA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u # MSYwJAYDVQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMAITMwAAAifV # wIPDsS5XLQABAAACJzANBglghkgBZQMEAgEFAKCCAUowGgYJKoZIhvcNAQkDMQ0G # CyqGSIb3DQEJEAEEMC8GCSqGSIb3DQEJBDEiBCBMDbulDvDLhIvoNDRMp4rtIqJv # zjZDieYolc084y1KdzCB+gYLKoZIhvcNAQkQAi8xgeowgecwgeQwgb0EIOXnARo1 # oVIcOLJKDqlE0adq/jZ9TXdlnXWRcXGThBFyMIGYMIGApH4wfDELMAkGA1UEBhMC # VVMxEzARBgNVBAgTCldhc2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNV # BAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRp # bWUtU3RhbXAgUENBIDIwMTACEzMAAAIn1cCDw7EuVy0AAQAAAicwIgQgBZAXsuFC # 4hUd5ZZRmbfWTwxVWvXId4iK/bKj34lLu3cwDQYJKoZIhvcNAQELBQAEggIAN540 # CZyFrzRo+XP02c4yxFWi50/e1Wlg5fLptyIkh8noloGD1u0hIQNmR66F2/2V1acM # 2Kv19KSNRKiEDpkBcdbUUYcvHFDE+Bf14N6VUPvTx7tjATryZWnpwoHlKjFhfmpD # er1H4cvZwviuqCEU52OD+e88vwgZbNqHIQZR38Uc6dZvkJTvu4xlYEnGxADtez7u # EPyG+tCctUfqGBpUQml3qc7G7PxWr2zkAbR7sqRI+ovbZBMfTpPM9yaPpusqRmgi # IaddpgsNOTkp3tgDtcHWr8X9pIGq6WecYkw71X31FWhqbQqXpsrp/nTSbzThi5Dd # K4FImc33vNYXhwPIhwm2kzHUoZx5wriswZmke42cFkTkO4rfEo7Hi6uz4A3bgNze # 6HakV62MeO0UmB5IwqXcBaPe2/+NOKnzGu5sQbvBaaxoWCYC5MEO3lSNAoOmr+uN # JuRl5etjYufb/IMkSiDKwuCOm7ZLhZjUmh0OuObKEi3L2YzTUtM9f+5N8OpqNDks # 5a+l3V2VCSj/XlhfNqct2Afmq00j0aD7rO/676EAjmMAyAslNS/WL1iAaAiw8kW5 # qnmsXqRgHDVE3mOQ9Tsr7ZI/og3gPBFp/9jbHTdJlHckeutrNS4TTwl05IG+lpvc # XADbSaex0R/E+lOI1R7X3x9v+x6zEIxYcOCj+Zc= # SIG # End signature block |