SecretManagement.NetwrixPasswordSecure

2.0.1

SecretManagement.NetwrixPasswordSecure.Extension/internal/functions/Get-NetwrixContainer.ps1

                                function Get-NetwrixContainer {

    <#

    .SYNOPSIS

    Query a password container from the server.

    .DESCRIPTION

    Query a password container from the server.

    .PARAMETER Filter

    Filter for the search

    .PARAMETER VaultName

    The name of the secret vault.

    .PARAMETER AdditionalParameters

    Additional parameters which where configured while creating the vault.

    .PARAMETER ReturnType

    What type should be returned?

    'SecretInformation' returns an array of SecretInformation objects

    'NonModifiedContainer' returns the unmodified .NET object from the query.

    'Credential' returns only the Credential-Object

    'MetaHash' returns a HashTable with the scrubbed info.

    .EXAMPLE

    Get-NetwrixContainer -Filter foo -VaultName $VaultName -AdditionalParameters $AdditionalParameters -ReturnType SecretInformation

    Query the infos of all 'foo' entries.

    .NOTES

    General notes

    #>

    [CmdletBinding()]

    [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSUseOutputTypeCorrectly', '')]

    param (

        [string] $Filter,

        [string] $VaultName,

        [hashtable] $AdditionalParameters,

        [ValidateSet('SecretInformation', 'NonModifiedContainer', 'Secret', 'MetaHash')]

        [string]$ReturnType

    )

    $AdditionalParameters = @{} + $AdditionalParameters

    Write-PSFMessage "Get-NetwrixContainer, Filter=$Filter, $VaultName, AdditionalParameters=$($AdditionalParameters|ConvertTo-Json -Compress), ReturnType=$ReturnType"

    if (-not (Test-SecretVault -VaultName $vaultName -AdditionalParameters $AdditionalParameters)) {

        Write-PSFMessage -Level Error "${vaultName}: Failed to unlock the vault"

        return $false

    }

    $psrApi = (Get-Variable -Name "Vault_$VaultName" -Scope Script -ErrorAction Stop).Value

    $conMan = $psrApi.ContainerManager

    if ($filter -match ("^(\{){0,1}[0-9a-fA-F]{8}\-[0-9a-fA-F]{4}\-[0-9a-fA-F]{4}\-[0-9a-fA-F]{4}\-[0-9a-fA-F]{12}(\}){0,1}$")) {

        Write-PSFMessage "Query specific container GUID"

        $containers = $conMan.GetContainer($Filter) | Wait-Task

        Write-PSFMessage "Type: $($containers.GetType()), correct one: $($containers -is [PsrApi.Data.PsrContainer])"

    }

    else {

        # Get a new filter

        $passwordListFilter = $conMan.GetContainerListFilter([PsrApi.Data.Enums.PsrContainerType]::Password, $true) | Wait-Task

        # Nach Inhalt filtern

        $contentFilter = $passwordListFilter.FilterGroups | Where-Object __type -eq 'ListFilterGroupContent'

        if ($contentFilter ) {

            $contentFilter.SearchList[0].Search = $filter

            $contentFilter.SearchList[0].FilterActive = $true

        }

        $containers = $conMan.GetContainerList([PsrApi.Data.Enums.PsrContainerType]::Password, $passwordListFilter, $null) | Wait-Task | Where-Object { $_.Info.ContainerName -like $filter }

        # Write-PSFMessage -Level Host "Container: $($containers|ConvertTo-Json -Compress -Depth 5)"

    }

    Write-PSFMessage "Found $($containers.Count) Password containers for filter $filter"

    switch ($ReturnType) {

        'SecretInformation' {

            Write-PSFMessage "Converting results to type SecretInformation"

            $results = $containers | ConvertFrom-NetwrixContainer -ExistingConnection $psrApi -AsSecretInformation -Verbose

            Write-PSFMessage "`$results= $($results), Type $($results.GetType())"

            return $results

        }

        'NonModifiedContainer' { $containers }

        'Secret' { $containers | ConvertFrom-NetwrixContainer -ExistingConnection $psrApi -BuildSecret | Select-Object -ExpandProperty Secret }

        'MetaHash' { $containers | ConvertFrom-NetwrixContainer -ExistingConnection $psrApi }

    }

}