functions/roleManagement/roleDefinitions/Register-AzurePIMroleDefinition.ps1
function Register-AzurePIMroleDefinition { Param ( [bool] $present = $true, [Parameter(Mandatory = $true)] [string] $roleName, [Parameter(Mandatory = $true)] [string] $description, [Parameter(Mandatory = $true)] [string] $subscriptionReference, [Parameter(Mandatory = $true)] [string[]] $assignableScopes, [Parameter(Mandatory = $true)] [object[]] $permissions, [string] $sourceConfig = "<Custom>", [System.Management.Automation.PSCmdlet] $Cmdlet = $PSCmdlet ) begin { $resourceName = "roleDefinitions" if (!$script:desiredConfiguration[$resourceName]) { $script:desiredConfiguration[$resourceName] = @() } if ($script:desiredConfiguration[$resourceName].roleName -contains $roleName) { $alreadyLoaded = $script:desiredConfiguration[$resourceName] | Where-Object {$_.roleName -eq $roleName} } } process { if (Test-PSFFunctionInterrupt) { return } $object = [PSCustomObject] @{ present = $present roleName = $roleName description = $description subscriptionReference = $subscriptionReference assignableScopes = $assignableScopes permissions = $permissions sourceConfig = $sourceConfig } Add-Member -InputObject $object -MemberType ScriptMethod -Name Properties -Value { ($this | Get-Member -MemberType NoteProperty).Name } if ($alreadyLoaded) { $script:desiredConfiguration[$resourceName][$script:desiredConfiguration[$resourceName].IndexOf($alreadyLoaded)] = $object } else { $script:desiredConfiguration[$resourceName] += $object } } end {} } |