PowervRA

2.2.0

Functions/Public/identity/Get-vRAAuthorizationRole.ps1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85

                                function Get-vRAAuthorizationRole {

<#

    .SYNOPSIS

    Retrieve vRA Authorization Role

    .DESCRIPTION

    Retrieve vRA Authorization Role

    .PARAMETER Id

    Specify the Id of a Role

    .PARAMETER Limit

    The number of entries returned per page from the API. This has a default value of 100.

    .INPUTS

    System.String

    .OUTPUTS

    System.Management.Automation.PSObject.

    .EXAMPLE

    Get-vRAAuthorizationRole

    .EXAMPLE

    Get-vRAAuthorizationRole -Id CSP_TENANT_ADMIN

#>

[CmdletBinding()][OutputType('System.Management.Automation.PSObject')]

    Param (

    [parameter(Mandatory=$false)]

    [ValidateNotNullOrEmpty()]

    [String[]]$Id,    

    [parameter(Mandatory=$false)]

    [ValidateNotNullOrEmpty()]

    [String]$Limit = "100"

    )

try {

    # --- If the Id parameter is passed return only that Role Id

    if ($PSBoundParameters.ContainsKey("Id")){ 

        foreach ($Role in $Id){

            $URI = "/identity/api/authorization/roles/$Role"

            # --- Run vRA REST Request

            $Response = Invoke-vRARestMethod -Method GET -URI $URI

            [pscustomobject]@{

                Id = $Response.id

                Name = $Response.name

                Description = $Response.description

                Type = $Response.'@type'

                AssignedPermissions = $Response.assignedPermissions

            }

        }

    }

    else {

        $URI = "/identity/api/authorization/roles?limit=$($Limit)"

        # --- Run vRA REST Request

        $Response = Invoke-vRARestMethod -Method GET -URI $URI

        foreach ($Role in $Response.content) {

            [pscustomobject]@{

                Id = $Role.id

                Name = $Role.name

                Description = $Role.description

                Type = $Role.'@type'

                AssignedPermissions = $Role.assignedPermissions

            }

        }

    }

}

catch [Exception]{

    throw

}

}