Functions/Public/identity/Get-vRAAuthorizationRole.ps1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
function Get-vRAAuthorizationRole {
<#
    .SYNOPSIS
    Retrieve vRA Authorization Role
    
    .DESCRIPTION
    Retrieve vRA Authorization Role
    
    .PARAMETER Id
    Specify the Id of a Role

    .PARAMETER Limit
    The number of entries returned per page from the API. This has a default value of 100.

    .INPUTS
    System.String

    .OUTPUTS
    System.Management.Automation.PSObject.

    .EXAMPLE
    Get-vRAAuthorizationRole
    
    .EXAMPLE
    Get-vRAAuthorizationRole -Id CSP_TENANT_ADMIN
#>

[CmdletBinding()][OutputType('System.Management.Automation.PSObject')]

    Param (

    [parameter(Mandatory=$false)]
    [ValidateNotNullOrEmpty()]
    [String[]]$Id,    
    
    [parameter(Mandatory=$false)]
    [ValidateNotNullOrEmpty()]
    [String]$Limit = "100"
    )
                
try {
    # --- If the Id parameter is passed return only that Role Id
    if ($PSBoundParameters.ContainsKey("Id")){ 
        
        foreach ($Role in $Id){

            $URI = "/identity/api/authorization/roles/$Role"

            # --- Run vRA REST Request
            $Response = Invoke-vRARestMethod -Method GET -URI $URI
        
            [pscustomobject]@{

                Id = $Response.id
                Name = $Response.name
                Description = $Response.description
                Type = $Response.'@type'
                AssignedPermissions = $Response.assignedPermissions
            }
        }
    }
    else {

        $URI = "/identity/api/authorization/roles?limit=$($Limit)"
        
        # --- Run vRA REST Request
        $Response = Invoke-vRARestMethod -Method GET -URI $URI
        
        foreach ($Role in $Response.content) {
        
            [pscustomobject]@{

                Id = $Role.id
                Name = $Role.name
                Description = $Role.description
                Type = $Role.'@type'
                AssignedPermissions = $Role.assignedPermissions
            }
        }
    }
}
catch [Exception]{

    throw
}
}