BruhArmy

1.3.0

BruhArmy.psm1

                                function Invoke-WebClone {

    param(

        [Parameter(Mandatory)]

        [String] $SourceResourcePool,

        [Parameter(Mandatory)]

        [String] $Target,

        [Parameter(Mandatory)]

        [int] $PortGroup,

        [Boolean] $CompetitionSetup=$True,

        [String] $Domain='sdc.cpp',

        [String] $WanPortGroup='0010_DefaultNetwork',

        [String] $Username

    )

    # Creating the Tag

    $Tag = -join ($PortGroup, "_", $SourceResourcePool.ToLower(), "_lab_$Username")

    try {

        Get-Tag -Name $Tag -ErrorAction Stop | Out-Null

    }

    catch {

        New-Tag -Name $Tag -Category (Get-TagCategory -Name CloneOnDemand) | Out-Null

    }

    # Creating the Port Group

    New-VDPortgroup -VDSwitch Main_DSW -Name ( -join ($PortGroup, '_PodNetwork')) -VlanId $PortGroup | New-TagAssignment -Tag (Get-Tag -Name $Tag) | Out-Null

    New-VApp -Name $Tag -Location (Get-ResourcePool -Name $Target -ErrorAction Stop) -InventoryLocation (Get-Inventory -Name "07-Kamino") -ErrorAction Stop | New-TagAssignment -Tag $Tag

    # Creating the Roles Assignments on vSphere

    New-VIPermission -Role (Get-VIRole -Name '07_KaminoUsers' -ErrorAction Stop) -Entity (Get-VApp -Name $Tag) -Principal ($Domain.Split(".")[0] + '\' + $Username) | Out-Null

    # Creating the Router

    New-PodRouter -Target $SourceResourcePool -PFSenseTemplate '1:1NAT_PodRouter'

    # Cloning the VMs

    $VMsToClone = Get-ResourcePool -Name $SourceResourcePool | Get-VM

    Set-Snapshots -VMsToClone $VMsToClone

    $Tasks = foreach ($VM in $VMsToClone) {

        New-VM -VM $VM -Name ( -join ($PortGroup, "_", $VM.name)) -ResourcePool (Get-VApp -Name $Tag).Name -LinkedClone -ReferenceSnapshot "SnapshotForCloning" -RunAsync -Location (Get-Inventory -Name "07-Kamino")

    }

    Wait-Task -Task $Tasks -ErrorAction Stop

    $hidden = $VMsToClone | Get-TagAssignment -Tag 'hidden' | Select-Object -ExpandProperty Entity | Select-Object -ExpandProperty Name

    $hidden | ForEach-Object {

        New-VIPermission -Role (Get-VIRole -Name 'NoAccess' -ErrorAction Stop) -Entity (Get-VM -Name (-join ($PortGroup, '_', $_))) -Principal ($Domain.Split(".")[0] + '\' + $Username) | Out-Null

    }

    # Configuring the VMs

    Configure-VMs -Target $Tag -WanPortGroup $WanPortGroup

    Snapshot-NewVMs -Target $Tag

    # Revert to Base snapshot to fix drive inconsistency

    Get-VApp -Name $Tag | Get-VM | ForEach-Object {Set-VM -VM $_ -Snapshot 'Base' -Confirm:$false}

}

function Snapshot-NewVMs {

    param(

        [Parameter(Mandatory)]

        [String] $Target

    )

    $task = Get-VApp -Name $Target | Get-VM | ForEach-Object { New-Snapshot -VM $_ -Name 'Base' -Confirm:$false -RunAsync }

    Wait-Task -task $task

}

function Configure-VMs {

    param(

        [Parameter(Mandatory)]

        [String] $Target,

        [Parameter(Mandatory)]

        [String] $WanPortGroup

    )

    #Set Variables

    $Routers = Get-VApp -Name $Target -ErrorAction Stop | Get-VM | Where-Object -Property Name -Like '*PodRouter*'

    $VMs = Get-VApp -Name $Target -ErrorAction Stop | Get-VM | Where-Object -Property Name -NotLike '*PodRouter*'

    #Set VM Port Groups

    if ($VMs) {

        $VMs | 

            ForEach-Object { 

                Get-NetworkAdapter -VM $_ -Name "Network adapter 1" -ErrorAction Stop | 

                    Set-NetworkAdapter -Portgroup (Get-VDPortGroup -name ( -join ($_.Name.Split("_")[0], '_PodNetwork'))) -Confirm:$false -RunAsync | Out-Null

            }

    }

    #Configure Routers

    if ($Routers) {

    $Routers | 

        ForEach-Object {

        #Set Port Groups

        Get-NetworkAdapter -VM $_ -Name "Network adapter 1" -ErrorAction Stop | 

            Set-NetworkAdapter -Portgroup (Get-VDPortgroup -Name $WanPortGroup) -Confirm:$false | Out-Null

        Get-NetworkAdapter -VM $_ -Name "Network adapter 2" -ErrorAction Stop | 

            Set-NetworkAdapter -Portgroup (Get-VDPortGroup -name ( -join ($_.Name.Split("_")[0], '_PodNetwork'))) -Confirm:$false | Out-Null

        }

        $tasks = Get-VApp -Name $Target | Get-VM -Name *PodRouter | Start-VM -RunAsync

        Wait-Task -Task $tasks -ErrorAction Stop | Out-Null

        $credpath = $env:ProgramFiles + "\Kamino\lib\creds\pfsense_cred.xml"

        Get-VApp -Name $Target | 

            Get-VM -Name *PodRouter |

                Select-Object -ExpandProperty name | 

                    ForEach-Object { 

                        $oct = $_.split("_")[0].substring(2)

                        $oct = $oct -replace '^0+', ''

                        Invoke-VMScript -VM $_ -ScriptText "sed 's/172.16.254/172.16.$Oct/g' /cf/conf/config.xml > tempconf.xml; cp tempconf.xml /cf/conf/config.xml; rm /tmp/config.cache; /etc/rc.reload_all start" -GuestCredential (Import-CliXML -Path $credpath) -ScriptType Bash -ToolsWaitSecs 100 -RunAsync | Out-Null

                    }

    }

}

function Set-Snapshots {

    param(

        [Parameter(Mandatory)]

        [String[]] $VMsToClone

    )

    $VMsToClone | ForEach-Object {

        if (Get-Snapshot -VM $_ | Where-Object name -eq SnapshotForCloning) {

            return

        }

        New-Snapshot -VM $_ -Name SnapshotForCloning

    }

}

# Creates a pfSense Router for the vApp 

function New-PodRouter {

    param (

        [Parameter(Mandatory = $true)]

        [String] $Target,

        [Parameter(Mandatory = $true)]

        [String] $PFSenseTemplate

    )

    # Creating the Router

    if (!(Get-ResourcePool -Name $Target | Get-VM -Name *PodRouter)) {

        $name = $Target + "_PodRouter"

        $task = New-VM -Name $name `

            -ResourcePool $Target `

            -Datastore Ursula `

            -Template (Get-Template -Name $PFSenseTemplate) -RunAsync

        Wait-Task -Task $task | Out-Null

    }

} 

function New-PodUser {

    param(

        [Parameter(Mandatory = $true)]

        [String] $Username,

        [Parameter(Mandatory = $true)]

        [String] $Password

    )

    $Domain='sdc.cpp'

    # Creating the User Accounts

    $SecurePassword = ConvertTo-SecureString -AsPlainText $Password -Force

    New-ADUser -Name $Username -ChangePasswordAtLogon $false -AccountPassword $SecurePassword -Enabled $true -Description "Registered Kamino User" -UserPrincipalName (-join ($Username, '@', $Domain))

    Add-AdGroupMember -Identity 'Kamino Users' -Members $Username

}

function Invoke-OrderSixtySix {

    param (

        [String] $Username,

        [String] $Tag

    )

    if (!$Tag) {

        if ($Username) {

            #$Tag = "*lab_$Username"

            $task = Get-VApp -Tag $Tag | Get-VM | Stop-VM -Confirm:$false -RunAsync -ErrorAction Ignore

            Wait-Task -Task $task -ErrorAction Ignore

            $task = Get-VApp -Tag $Tag | Remove-VApp -DeletePermanently -Confirm:$false

            Wait-Task -Task $task

            Get-VDPortgroup -Name $Tag | Remove-VDPortgroup -Confirm:$false

        }

    }   

    if ($Tag) {

        #$Tag = -join ($Target, "_lab_$Username")

        $task = Get-VApp -Tag $Tag | Get-VM | Stop-VM -Confirm:$false -RunAsync

        Wait-Task -Task $task -ErrorAction Ignore

        $task = Get-VApp -Tag $Tag | Remove-VApp -DeletePermanently -Confirm:$false

        Wait-Task -Task $task -ErrorAction Ignore

        $task = Get-VDPortgroup -Tag $Tag | Remove-VDPortgroup -Confirm:$false

        Wait-Task -Task $task -ErrorAction Ignore

        Get-Tag -Name $Tag | Remove-Tag -Confirm:$false

    }

}