ADLDSMF

1.0.3

functions/Group/Invoke-LdsGroup.ps1

                                function Invoke-LdsGroup {

    <#

    .SYNOPSIS

        Applies all configured groups.

    .DESCRIPTION

        Applies all configured groups, creating or updating their settings as needed.

    .PARAMETER Server

        The LDS Server to target.

    .PARAMETER Partition

        The Partition on the LDS Server to target.

    .PARAMETER Credential

        Credentials to use for the operation.

    .PARAMETER Delete

        Undo everything defined in configuration.

        Allows rolling back after deployment.

    .PARAMETER TestResult

        Result objects of the associated Test-Command.

        Allows cherry-picking which change to apply.

        If not specified, it will a test and apply all test results instead.

    .EXAMPLE

        PS C:\> Invoke-LdsGroup -Server lds1.contoso.com -Partition 'DC=fabrikam,DC=org'

        Applies all configured groups to 'DC=fabrikam,DC=org' on the server 'lds1.contoso.com'.

    #>

    [CmdletBinding()]

    Param (

        [Parameter(Mandatory = $true)]

        [string]

        $Server,

        [Parameter(Mandatory = $true)]

        [string]

        $Partition,

        [PSCredential]

        $Credential,

        [switch]

        $Delete,

        [Parameter(ValueFromPipeline = $true)]

        $TestResult

    )

    begin {

        Update-LdsConfiguration -LdsServer $Server -LdsPartition $Partition

        $ldsParam = $PSBoundParameters | ConvertTo-PSFHashtable -Include Server, Partition, Credential

        $ldsParamLight = $ldsParam | ConvertTo-PSFHashtable -Exclude Partition

        $systemProperties = 'ObjectClass', 'Path', 'Name', 'GroupScope'

    }

    process {

        if (-not $TestResult) {

            $TestResult = Test-LdsGroup @ldsParam -Delete:$Delete

        }

        foreach ($testItem in $TestResult) {

            switch ($testItem.Action) {

                'Create' {

                    $attributes = $testItem.Configuration | ConvertTo-PSFHashtable -Exclude $systemProperties

                    $newParam = @{

                        Name = $testItem.Configuration.Name

                        GroupScope = $testItem.Configuration.GroupScope

                        Path = ($testItem.Identity -replace '^.+?,')

                    }

                    if (0 -lt $attributes.Count) { $newParam.OtherAttributes = $attributes }

                    if (-not $newParam.GroupScope) { $newParam.GroupScope = 'DomainLocal' }

                    New-ADGroup @ldsParamLight @newParam

                }

                'Delete' {

                    Remove-ADGroup @ldsParam -Identity $testItem.ADObject.ObjectGUID -Recursive -Confirm:$false

                }

                'Update' {

                    $update = @{ }

                    foreach ($change in $testItem.Change) {

                        $update[$change.Property] = $change.New

                    }

                    Set-ADObject @ldsParam -Identity $testItem.ADObject.ObjectGUID -Replace $update

                }

            }

        }

    }

}