internal/functions/Build-AssignmentDefinitionEntry.ps1
|
function Build-AssignmentDefinitionEntry { [CmdletBinding()] param( $NodeName, $PolicyDefinitionsScopes, [hashtable] $DefinitionEntry, [hashtable] $CombinedPolicyDetails, [switch] $MustDefineAssignment ) $policyName = $DefinitionEntry.policyName $policyId = $DefinitionEntry.policyId $policySetName = $DefinitionEntry.policySetName $policySetId = $DefinitionEntry.policySetId $initiativeName = $DefinitionEntry.initiativeName $initiativeId = $DefinitionEntry.initiativeId $assignment = $DefinitionEntry.assignment $definitionVersion = $DefinitionEntry.definitionVersion $isValid = $true $normalizedEntry = $null $count = ($null -ne $policyName ? 1 : 0) + ($null -ne $policyId ? 1 : 0) + ($null -ne $policySetName ? 1 : 0) + ($null -ne $policySetId ? 1 : 0) + ($null -ne $initiativeName ? 1 : 0) + ($null -ne $initiativeId ? 1 : 0) if ($count -ne 1) { Write-Error " Node $($NodeName): each definitionEntry must contain exactly one field defined from set [policyName, policyId, policySetName, policySetId, initiativeName, initiativeId]." $isValid = $false } else { if ($null -ne $policyName -or $null -ne $policyId) { $policyId = Confirm-PolicyDefinitionUsedExists ` -Id $policyId ` -Name $policyName ` -PolicyDefinitionsScopes $PolicyDefinitionsScopes ` -AllDefinitions $CombinedPolicyDetails.policies if ($null -eq $policyId) { $isValid = $false } else { $normalizedEntry = @{ policyDefinitionId = $policyId isPolicySet = $false } } } elseif ($null -ne $policySetName -or $null -ne $policySetId) { $policySetId = Confirm-PolicySetDefinitionUsedExists ` -Id $policySetId ` -Name $policySetName ` -PolicyDefinitionsScopes $PolicyDefinitionsScopes ` -AllPolicySetDefinitions $CombinedPolicyDetails.policySets if ($null -eq $policySetId) { $isValid = $false } else { $normalizedEntry = @{ policyDefinitionId = $policySetId isPolicySet = $true } } } elseif ($null -ne $initiativeName -or $null -ne $initiativeId) { $policySetId = Confirm-PolicySetDefinitionUsedExists ` -Id $initiativeId ` -Name $initiativeName ` -PolicyDefinitionsScopes $PolicyDefinitionsScopes ` -AllPolicySetDefinitions $CombinedPolicyDetails.policySets if ($null -eq $policySetId) { $isValid = $false } else { $normalizedEntry = @{ policyDefinitionId = $policySetId isPolicySet = $true } } } if ($definitionVersion) { $normalizedEntry.definitionVersion = $definitionVersion } if ($null -ne $displayName) { $normalizedEntry.displayName = $DefinitionEntry.displayName } elseif ($null -ne $DefinitionEntry.friendlyNameToDocumentIfGuid) { $normalizedEntry.displayName = $DefinitionEntry.friendlyNameToDocumentIfGuid } if ($null -ne $DefinitionEntry.nonComplianceMessages) { $normalizedEntry.nonComplianceMessages = $DefinitionEntry.nonComplianceMessages } # if ($null -ne $shortName) { # $normalizedEntry.displayName = $shortName # } if ($null -ne $assignment) { if ($null -ne $assignment.name -and ($assignment.name).Length -gt 0 -and $null -ne $assignment.displayName -and ($assignment.displayName).Length -gt 0) { $normalizedAssignment = ConvertTo-HashTable $assignment if (!$normalizedAssignment.ContainsKey("description")) { $normalizedAssignment.description = "" } if (!$normalizedAssignment.ContainsKey("append")) { $normalizedAssignment.append = $false } $normalizedEntry.assignment = $normalizedAssignment } else { Write-Error " Node $($NodeName): each assignment in a definitionEntry must define an assignment name and displayName." $isValid = $false } } elseif ($MustDefineAssignment) { Write-Error " Node $($NodeName): each definitionEntry in a definitionEntryList with more than one element must define an assignment field." $isValid = $false } else { $normalizedEntry.assignment = @{ append = $false name = "" displayName = "" description = "" } } } return $isValid, $normalizedEntry } |