EnterprisePolicyAsCode

10.1.3

internal/functions/Out-PolicyDefinition.ps1

                                function Out-PolicyDefinition {

    [CmdletBinding()]

    param (

        $Definition,

        $Folder,

        [hashtable] $PolicyPropertiesByName,

        $InvalidChars,

        $Id,

        $FileExtension

    )

    # Fields to calculate file name

    $name = $Definition.name

    $properties = $Definition.properties

    $displayName = $properties.displayName

    if ($null -eq $displayName -or $displayName -eq "") {

        $displayName = $name

    }

    $metadata = $properties.metadata

    $subFolder = "Unknown Category"

    if ($null -ne $metadata) {

        $category = $metadata.category

        if ($null -ne $category -and $category -ne "") {

            $subFolder = $category

        }

    }

    # Build folder and path

    $fullPath = Get-DefinitionsFullPath `

        -Folder $Folder `

        -RawSubFolder $subFolder `

        -Name $name `

        -DisplayName $displayName `

        -InvalidChars $InvalidChars `

        -MaxLengthSubFolder 30 `

        -MaxLengthFileName 100 `

        -FileExtension $FileExtension

    # Detect duplicates

    if ($PolicyPropertiesByName.ContainsKey($name)) {

        $duplicateProperties = $PolicyPropertiesByName.$name

        # quietly ignore

        #

        # $exactDuplicate = Confirm-ObjectValueEqualityDeep $duplicateProperties $properties

        # if ($exactDuplicate) {

        #     # Write-Warning "'$displayName' - '$Id' is an exact duplicate" -WarningAction Continue

        #     # Quietly ignore

        #     $null = $properties

        # }

        # else {

        #     $guid = (New-Guid)

        #     $fullPath = "$Folder/Duplicates/$($guid.Guid).$FileExtension"

        #     Write-Warning "'$displayName' - '$Id' is a duplicate with different properties; writing to file $fullPath" -WarningAction Continue

        #     $Definition | Add-Member -MemberType NoteProperty -Name 'id' -Value $Id

        # }

    }

    else {

        # Unique name

        Write-Debug "'$displayName' - '$Id'"

        $null = $PolicyPropertiesByName.Add($name, $properties)

    }

    # Write the content

    Remove-NullFields $Definition

    $outDefinition = [PSCustomObject]@{'$schema' = "https://raw.githubusercontent.com/Azure/enterprise-azure-policy-as-code/main/Schemas/policy-definition-schema.json" }

    # update schema if policy set

    if ($Definition.properties.policyDefinitions) {

        $outDefinition.'$schema' = "https://raw.githubusercontent.com/Azure/enterprise-azure-policy-as-code/main/Schemas/policy-set-definition-schema.json" 

    }

    $Definition.psobject.Properties.ForEach{ ($outDefinition).psobject.Properties.Add($_, $true) }

    $json = ConvertTo-Json $outDefinition -Depth 100

    $null = New-Item $fullPath -Force -ItemType File -Value $json

}