DSCResources/DSC_CMPxeDistributionPoint/DSC_CMPxeDistributionPoint.psm1

$script:dscResourceCommonPath = Join-Path -Path $PSScriptRoot -ChildPath '..\..\Modules\DscResource.Common'
$script:configMgrResourcehelper = Join-Path -Path $PSScriptRoot -ChildPath '..\..\Modules\ConfigMgrCBDsc.ResourceHelper'

Import-Module -Name $script:dscResourceCommonPath
Import-Module -Name $script:configMgrResourcehelper

$script:localizedData = Get-LocalizedData -DefaultUICulture 'en-US'

<#
    .SYNOPSIS
        This will return a hashtable of results.
 
    .PARAMETER SiteCode
        Specifies the site code for Configuration Manager site.
 
    .PARAMETER SiteServerName
        Specifies the SiteServer to configure the Distribution Point for PXE.
 
    .Notes
        This must be ran on the Primary site server to configure the Distribution Point for PXE.
#>

function Get-TargetResource
{
    [CmdletBinding()]
    [OutputType([System.Collections.Hashtable])]
    param
    (
        [Parameter(Mandatory = $true)]
        [String]
        $SiteCode,

        [Parameter(Mandatory = $true)]
        [String]
        $SiteServerName
    )

    Write-Verbose -Message $script:localizedData.RetrieveSettingValue
    Import-ConfigMgrPowerShellModule -SiteCode $SiteCode
    Set-Location -Path "$($SiteCode):\"

    $dpInfo = Get-CMDistributionPointInfo -SiteSystemServerName $SiteServerName -SiteCode $SiteCode

    if ($dpInfo)
    {
        $uda = $dpInfo.UdaSetting
        $udaSetting = @('DoNotUse', 'AllowWithManualApproval','AllowWithAutomaticApproval')[$uda]

        $dpInstall = 'Present'
    }
    else
    {
        $dpInstall = 'Absent'
    }

    return @{
        SiteCode                     = $SiteCode
        SiteServerName               = $SiteServerName
        EnablePxe                    = $dpInfo.IsPxe
        EnableNonWdsPxe              = $dpInfo.SccmPxe
        EnableUnknownComputerSupport = $dpInfo.SupportUnknownMachines
        PxePassword                  = $dpInfo.PxePassword
        AllowPxeResponse             = $dpInfo.IsActive
        PxeServerResponseDelaySec    = [UInt16]$dpInfo.ResponseDelay
        UserDeviceAffinity           = $udaSetting
        IsMulticast                  = $dpInfo.IsMulticast
        DPStatus                     = $dpInstall
    }
}

<#
    .SYNOPSIS
        This will set the desired state.
 
    .PARAMETER SiteCode
        Specifies the site code for Configuration Manager site.
 
    .PARAMETER SiteServerName
        Specifies the SiteServer to configure the Distribution Point for PXE.
 
    .PARAMETER EnablePxe
        Indicates whether PXE is enabled on the distribution point.
        When you enable PXE, Configuration Manager installs Windows Deployment Services on the server, if required.
        Windows Deployment Services is the service that performs the PXE boot to install operating systems.
        After you create the distribution point, Configuration Manager installs a provider in
        Windows Deployment Services that uses the PXE boot functions.
 
    .PARAMETER EnableNonWdsPxe
        Specifies whether to enable PXE responder without Windows Deployment Services.
 
    .PARAMETER EnableUnknownComputerSupport
        Indicates whether support for unknown computers is enabled.
        Unknown computers are computers that are not managed by Configuration Manager.
 
    .PARAMETER AllowPxeResponse
        Indicates whether the distribution point can respond to PXE requests.
 
    .PARAMETER PxeServerResponseDelaySec
        Specifies, in seconds, how long the distribution point delays before it responds to computer requests when
        you are using multiple PXE-enabled distribution points. By default, the Configuration Manager
        PXE service point responds first to network PXE requests.
 
    .PARAMETER UserDeviceAffinity
        Specifies how you want the distribution point to associate users with their devices for PXE deployments.
 
    .PARAMETER PxePassword
        Specifies, as a secure string, the PXE password.
#>

function Set-TargetResource
{
    [CmdletBinding()]
    param
    (
        [Parameter(Mandatory = $true)]
        [String]
        $SiteCode,

        [Parameter(Mandatory = $true)]
        [String]
        $SiteServerName,

        [Parameter()]
        [Boolean]
        $EnablePxe,

        [Parameter()]
        [Boolean]
        $EnableNonWdsPxe,

        [Parameter()]
        [Boolean]
        $EnableUnknownComputerSupport,

        [Parameter()]
        [Boolean]
        $AllowPxeResponse,

        [Parameter()]
        [ValidateRange(0,32)]
        [UInt16]
        $PxeServerResponseDelaySec,

        [Parameter()]
        [ValidateSet('DoNotUse','AllowWithManualApproval','AllowWithAutomaticApproval')]
        [String]
        $UserDeviceAffinity,

        [Parameter()]
        [PSCredential]
        $PxePassword
    )

    Import-ConfigMgrPowerShellModule -SiteCode $SiteCode
    Set-Location -Path "$($SiteCode):\"
    $state = Get-TargetResource -SiteCode $SiteCode -SiteServerName $SiteServerName

    try
    {
        if ($state.DPStatus -eq 'Absent')
        {
            throw ($script:localizedData.DistroPointInstall -f $SiteServerName)
        }

        if ((($PSBoundParameters.EnablePxe -eq $false) -or ([string]::IsNullOrEmpty($PSBoundParameters.EnablePxe) -and
            $state.EnablePxe -eq $false)) -and (($PSBoundParameters.EnableNonWdsPxe) -or
            ($PSBoundParameters.EnableUnknownComputerSupport) -or ($PSBoundParameters.AllowPxeResponse) -or
            ($PSBoundParameters.PxeServerResponseDelaySec) -or ($PSBoundParameters.UserDeviceAffinity) -or
            ($PSBoundParameters.PxePassword)))
        {
            throw $script:localizedData.PxeThrow
        }

        if ($EnableNonWdsPxe -eq $true -and $state.IsMulticast -eq $true)
        {
            throw $script:localizedData.NonWdsThrow
        }

        $eval = @('EnablePxe','EnableNonWdsPxe','EnableUnknownComputerSupport','AllowPxeResponse',
                    'PxeServerResponseDelaySec','UserDeviceAffinity')

        foreach ($param in $PSBoundParameters.GetEnumerator())
        {
            if ($eval -contains $param.key)
            {
                if ($param.Value -ne $state[$param.key])
                {
                    Write-Verbose -Message ($script:localizedData.SettingValue -f $param.key, $param.Value)

                    $buildingParams += @{
                        $param.key = $param.Value
                    }
                }
            }
        }

        if ((-not [string]::IsNullOrEmpty($PxePassword)) -and ([string]::IsNullOrEmpty($state.PxePassword)))
        {
            Write-Verbose -Message $script:localizedData.SetPxePassword
            $buildingParams += @{
                PxePassword = $PxePassword.Password
            }
        }

        if ($buildingParams)
        {
            Set-CMDistributionPoint -SiteSystemServerName $SiteServerName -SiteCode $SiteCode @buildingParams
        }
    }
    catch
    {
        throw $_
    }
    finally
    {
        Set-Location -Path $env:windir
    }
}

<#
    .SYNOPSIS
        This will set the desired state.
 
    .PARAMETER SiteCode
        Specifies the site code for Configuration Manager site.
 
    .PARAMETER SiteServerName
        Specifies the SiteServer to configure the Distribution Point for PXE.
 
    .PARAMETER EnablePxe
        Indicates whether PXE is enabled on the distribution point.
        When you enable PXE, Configuration Manager installs Windows Deployment Services on the server, if required.
        Windows Deployment Services is the service that performs the PXE boot to install operating systems.
        After you create the distribution point, Configuration Manager installs a provider in
        Windows Deployment Services that uses the PXE boot functions.
 
    .PARAMETER EnableNonWdsPxe
        Specifies whether to enable PXE responder without Windows Deployment Services.
 
    .PARAMETER EnableUnknownComputerSupport
        Indicates whether support for unknown computers is enabled.
        Unknown computers are computers that are not managed by Configuration Manager.
 
    .PARAMETER AllowPxeResponse
        Indicates whether the distribution point can respond to PXE requests.
 
    .PARAMETER PxeServerResponseDelaySec
        Specifies, in seconds, how long the distribution point delays before it responds to computer requests when
        you are using multiple PXE-enabled distribution points. By default, the Configuration Manager
        PXE service point responds first to network PXE requests.
 
    .PARAMETER UserDeviceAffinity
        Specifies how you want the distribution point to associate users with their devices for PXE deployments.
 
    .PARAMETER PxePassword
        Specifies, as a secure string, the PXE password.
#>

function Test-TargetResource
{
    [CmdletBinding()]
    [OutputType([System.Boolean])]
    param
    (
        [Parameter(Mandatory = $true)]
        [String]
        $SiteCode,

        [Parameter(Mandatory = $true)]
        [String]
        $SiteServerName,

        [Parameter()]
        [Boolean]
        $EnablePxe,

        [Parameter()]
        [Boolean]
        $EnableNonWdsPxe,

        [Parameter()]
        [Boolean]
        $EnableUnknownComputerSupport,

        [Parameter()]
        [Boolean]
        $AllowPxeResponse,

        [Parameter()]
        [ValidateRange(0,32)]
        [UInt16]
        $PxeServerResponseDelaySec,

        [Parameter()]
        [ValidateSet('DoNotUse','AllowWithManualApproval','AllowWithAutomaticApproval')]
        [String]
        $UserDeviceAffinity,

        [Parameter()]
        [PSCredential]
        $PxePassword
    )

    Import-ConfigMgrPowerShellModule -SiteCode $SiteCode
    Set-Location -Path "$($SiteCode):\"
    $returnValue = $true
    $state = Get-TargetResource -SiteCode $SiteCode -SiteServerName $SiteServerName

    if ($state.DPStatus -eq 'Absent')
    {
        Write-Verbose -Message ($script:localizedData.DistroPointInstall -f $SiteServerName)
        $returnValue = $false
    }
    else
    {
        if ((($PSBoundParameters.EnablePxe -eq $false) -or ([string]::IsNullOrEmpty($PSBoundParameters.EnablePxe) -and
            $state.EnablePxe -eq $false)) -and (($PSBoundParameters.EnableNonWdsPxe) -or
            ($PSBoundParameters.EnableUnknownComputerSupport) -or ($PSBoundParameters.AllowPxeResponse) -or
            ($PSBoundParameters.PxeServerResponseDelaySec) -or ($PSBoundParameters.UserDeviceAffinity) -or
            ($PSBoundParameters.PxePassword)))
        {
            Write-Warning $script:localizedData.PxeThrow
        }

        if ($EnableNonWdsPxe -eq $true -and $state.IsMulticast -eq $true)
        {
            Write-Warning $script:localizedData.NonWdsThrow
        }

        $testParams = @{
            CurrentValues = $state
            DesiredValues = $PSBoundParameters
            ValuesToCheck = @('EnablePxe','EnableNonWdsPxe','EnableUnknownComputerSupport','AllowPxeResponse',
                'PxeServerResponseDelaySec','UserDeviceAffinity')
        }

        $returnValue = Test-DscParameterState @testParams -Verbose

        if ((-not [string]::IsNullOrEmpty($PxePassword)) -and ([string]::IsNullOrEmpty($state.PxePassword)))
        {
            Write-Verbose -Message $script:localizedData.PXEPassword
            $returnValue = $false
        }
    }

    Write-Verbose -Message ($script:localizedData.TestState -f $result)
    Set-Location -Path $env:windir
    return $returnValue
}

Export-ModuleMember -Function *-TargetResource