functions/entitlementManagement/accessPackages/Register-TmfAccessPackage.ps1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
function Register-TmfAccessPackage
{
    [CmdletBinding()]
    Param (
        [Parameter(Mandatory = $true)]
        [string] $displayName,
        [string] $description = "Access Package has been created with Tenant Management Framework",
        [bool] $isHidden = $false,
        [bool] $isRoleScopesVisible = $true,
        [Parameter(Mandatory = $true)]
        [string] $catalog,

        [object[]] $accessPackageResources,
        [object[]] $assignementPolicies,

        [bool] $present = $true,        
        [string] $sourceConfig = "<Custom>",

        [System.Management.Automation.PSCmdlet]
        $Cmdlet = $PSCmdlet
    )
    
    begin
    {
        $resourceName = "accessPackages"
        if (!$script:desiredConfiguration[$resourceName]) {
            $script:desiredConfiguration[$resourceName] = @()
        }

        if ($script:desiredConfiguration[$resourceName].displayName -contains $displayName) {            
            $alreadyLoaded = $script:desiredConfiguration[$resourceName] | Where-Object {$_.displayName -eq $displayName}
        }
    }
    process
    {
        if (Test-PSFFunctionInterrupt) { return }                

        $object = [PSCustomObject]@{
            displayName = $displayName
            description = $description
            isHidden = $isHidden
            isRoleScopesVisible = $isRoleScopesVisible
            accessPackageResourceRoleScopes = @()
            catalog = $catalog
            present = $present
            sourceConfig = $sourceConfig
        }    
        Add-Member -InputObject $object -MemberType ScriptMethod -Name Properties -Value { ($this | Get-Member -MemberType NoteProperty).Name }

        foreach ($policy in $assignementPolicies) {
            $resource = $policy | Add-Member -NotePropertyMembers @{sourceConfig = $sourceConfig; accessPackage = $displayName; catalog = $catalog; present = $present} -PassThru | ConvertTo-PSFHashtable -Include $((Get-Command Register-TmfAccessPackageAssignementPolicy).Parameters.Keys)            
            Register-TmfAccessPackageAssignementPolicy @resource -Cmdlet $PSCmdlet
        }

        foreach ($accessPackageResource in $accessPackageResources) {
            $resource = $accessPackageResource | Add-Member -NotePropertyMembers @{sourceConfig = $sourceConfig; catalog = $catalog; displayName = ("{0} - {1}" -f $catalog, $accessPackageResource.resourceIdentifier)} -PassThru -Force | ConvertTo-PSFHashtable -Include $((Get-Command Register-TmfAccessPackageResource).Parameters.Keys)
            $object.accessPackageResourceRoleScopes += Register-TmfAccessPackageResource @resource -Cmdlet $PSCmdlet -PassThru
        }

        if ($alreadyLoaded) {
            $script:desiredConfiguration[$resourceName][$script:desiredConfiguration[$resourceName].IndexOf($alreadyLoaded)] = $object
        }
        else {
            $script:desiredConfiguration[$resourceName] += $object
        }
    }
}