UserPrivilege/Invoke-PwshAs.ps1
|
<#<#
.SYNOPSIS Run Powershell Script as a different user with simplified argument passing .DESCRIPTION Long description .EXAMPLE An example .NOTES General notes #>#> function Invoke-PwshAs { [CmdletBinding()] [Diagnostics.CodeAnalysis.SuppressMessageAttribute( <#Category#>'PSUseSingularNouns', <#CheckId#>'', Justification = 'PwshAs is singular' )] param ( [Parameter()][pscredential]$Credential, [Parameter()][switch]$NoProfile, [Parameter()][switch]$NoExit, [Parameter()][string]$Script, [Parameter(ParameterSetName = 'ArgsAsHashtable')][hashtable]$Splat, [Parameter(ParameterSetName = 'ArgsAsRemainingArgs', ValueFromRemainingArguments)][string[]]$RemainingArguments <# ## TODO consider adding a scriptblock param that uses EncodedCommand so it doesn't have trouble with nested quoting For example: $command = 'dir "c:\program files" ' $bytes = [System.Text.Encoding]::Unicode.GetBytes($command) $encodedCommand = [Convert]::ToBase64String($bytes) pwsh -encodedcommand $encodedCommand #> ) # Import-Module RunAs $pwshArgs = [System.Collections.Generic.List[String]]::new() $null = $pwshArgs.Add('-NonInteractive') if ($NoProfile) { $null = $pwshArgs.Add('-NoProfile') } if ($NoExit) { $null = $pwshArgs.Add('-NoExit') } $null = $pwshArgs.Add('-File') $null = $pwshArgs.Add($Script) if ($PSCmdlet.ParameterSetName -eq 'ArgsAsRemainingArgs') { $null = $pwshArgs.Add($RemainingArguments) } else { foreach ($item in $Splat.GetEnumerator()) { $null = $pwshArgs.Add("-$($Item.Key)") $null = $pwshArgs.Add($Item.Value) } } # RunAs -Env -User $Credential -Program pwsh -Arguments $pwshArgs Invoke-RunAs -User $Credential -Program pwsh -Arguments $pwshArgs -verbose:([bool]$PSBoundParameters['Verbose']) } |