VpasModule

14.3.0

public/Invoke-VPASActivePSMSessionAction.ps1

                                <#

.Synopsis

   ***FUNCTIONALITY OF THIS FUNCTION IS NOT VALIDATED AT THE MOMENT***

   ACTION ACTIVE SESSION (SUSPEND/RESUME/TERMINATE)

   CREATED BY: Vadim Melamed, EMAIL: vpasmodule@gmail.com

.DESCRIPTION

   USE THIS FUNCTION TO ACTION ON AN ACTIVE PSM SESSION SUSPEND/RESUME/TERMINATE

.LINK

   https://vpasmodule.com/commands/Invoke-VPASActivePSMSessionAction

.PARAMETER token

   HashTable of data containing various pieces of login information (PVWA, LoginToken, HeaderType, etc).

   If -token is not passed, function will use last known hashtable generated by New-VPASToken

.PARAMETER SearchQuery

   Search string to find target resource via username, address, safe, platform, etc.

   Comma separated for multiple fields, or to search all pass a blank value like so: " "

.PARAMETER Action

   Specify what action should be taken

   Possible values: Suspend, Resume, Terminate

.PARAMETER ActiveSessionID

   Unique ID for the target ActiveSessionID

   Provide this value to skip querying all ActiveSessions

.PARAMETER InputParameters

   HashTable of values containing the parameters required to make the API call

.EXAMPLE

   $ActionActiveSessionStatus = Invoke-VPASActivePSMSessionAction -SearchQuery {SEARCHQUERY VALUE} -Action {RESUME/SUSPEND/TERMINATE}

.EXAMPLE

   $ActionActiveSessionStatus = Invoke-VPASActivePSMSessionAction -ActiveSessionID {ACTIVE SESSION ID VALUE} -Action {RESUME/SUSPEND/TERMINATE}

.EXAMPLE

   $InputParameters = @{

        SearchQuery = "DomainAdmin01"

        Action = "Suspend"|"Resume"|"Terminate"

   }

   $ActionActiveSessionStatus = Invoke-VPASActivePSMSessionAction -InputParameters $InputParameters

.EXAMPLE

   $InputParameters = @{

        ActiveSessionID = "31_24"

        Action = "Suspend"|"Resume"|"Terminate"

   }

   $ActionActiveSessionStatus = Invoke-VPASActivePSMSessionAction -InputParameters $InputParameters

.OUTPUTS

   $true if successful

   ---

   $false if failed

#>

function Invoke-VPASActivePSMSessionAction{

    [OutputType([bool])]

    [CmdletBinding(DefaultParameterSetName='Set1')]

    Param(

        [Parameter(Mandatory=$true,ParameterSetName='Set1',ValueFromPipelineByPropertyName=$true,HelpMessage="Searchquery to find the target active session (for example: DomainAdmin01)")]

        [String]$SearchQuery,

        [Parameter(Mandatory=$true,ParameterSetName='Set2',ValueFromPipelineByPropertyName=$true,HelpMessage="Unique ActiveSessionID of the target active session (for example: 22_135)")]

        [String]$ActiveSessionID,

        [Parameter(Mandatory=$true,ParameterSetName='Set1',ValueFromPipelineByPropertyName=$true,HelpMessage="Enter PSMSessionAction (Suspend, Resume, Terminate)")]

        [Parameter(Mandatory=$true,ParameterSetName='Set2',ValueFromPipelineByPropertyName=$true,HelpMessage="Enter PSMSessionAction (Suspend, Resume, Terminate)")]

        [ValidateSet('Suspend','Resume','Terminate')]

        [String]$Action,

        [Parameter(Mandatory=$true,ParameterSetName='InputParameters',ValueFromPipelineByPropertyName=$true,HelpMessage="Hashtable of parameters required to make API call, refer to get-help -examples for valid inputs")]

        [hashtable]$InputParameters,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true)]

        [hashtable]$token

    )

    Begin{

        $tokenval,$sessionval,$PVWA,$Header,$ISPSS,$IdentityURL,$EnableTextRecorder,$AuditTimeStamp,$NoSSL,$VaultVersion,$HideWarnings,$AuthenticatedAs,$SubDomain,$EnableTroubleshooting = Get-VPASSession -token $token

        $CommandName = $MyInvocation.MyCommand.Name

        $log = Write-VPASTextRecorder -inputval $CommandName -token $token -LogType COMMAND

    }

    Process{

        try{

            if($PSCmdlet.ParameterSetName -eq "InputParameters"){

                $KeyHash = @{

                    set1 = @{

                        AcceptableKeys = @("SearchQuery","Action")

                        MandatoryKeys = @("SearchQuery","Action")

                    }

                    set2 = @{

                        AcceptableKeys = @("ActiveSessionID","Action")

                        MandatoryKeys = @("ActiveSessionID","Action")

                    }

                }

                $CheckSet = Test-VPASHashtableKeysHelper -InputHash $InputParameters -KeyHash $KeyHash

                if(!$CheckSet){

                    $log = Write-VPASTextRecorder -inputval "FAILED TO FIND TARGET PARAMETER SET" -token $token -LogType MISC

                    Write-Verbose "FAILED TO FIND TARGET PARAMETER SET"

                    Write-VPASOutput -str "FAILED TO FIND TARGET PARAMETER SET...VIEW EXAMPLES BELOW:" -type E

                    $examples = Write-VPASExampleHelper -CommandName $CommandName

                    return $false

                }

                else{

                    foreach($key in $InputParameters.Keys){

                        Set-Variable -Name $key -Value $InputParameters.$key

                    }

                }

            }

        }catch{

            $log = Write-VPASTextRecorder -inputval $_ -token $token -LogType ERROR

            $log = Write-VPASTextRecorder -inputval "REST API COMMAND RETURNED: FALSE" -token $token -LogType MISC

            Write-Verbose "FAILED TO INVOKE AN ACTIVE PSM SESSION ACTIVITY"

            Write-VPASOutput -str $_ -type E

            return $false

        }

        try{

            if([String]::IsNullOrEmpty($ActiveSessionID)){

                Write-Verbose "NO ACTIVESESSIONID PROVIDED...INVOKING HELPER FUNCTION TO RETRIEVE UNIQUE ACTIVE SESSION ID BASED ON SPECIFIED PARAMETERS"

                $ActiveSessionID = Get-VPASActiveSessionIDHelper -token $token -SearchQuery $SearchQuery

                Write-Verbose "RETURNING ACTIVE SESSION ID"

            }

            else{

                Write-Verbose "ACTIVE SESSION ID SUPPLIED, SKIPPING HELPER FUNCTION"

            }

            if($NoSSL){

                Write-Verbose "NO SSL ENABLED, USING HTTP INSTEAD OF HTTPS"

                $uri = "http://$PVWA/PasswordVault/API/LiveSessions/$ActiveSessionID/$Action/"

            }

            else{

                Write-Verbose "SSL ENABLED BY DEFAULT, USING HTTPS"

                $uri = "https://$PVWA/PasswordVault/API/LiveSessions/$ActiveSessionID/$Action/"

            }

            $log = Write-VPASTextRecorder -inputval $uri -token $token -LogType URI

            $log = Write-VPASTextRecorder -inputval "POST" -token $token -LogType METHOD

            write-verbose "MAKING API CALL TO CYBERARK"

            if($sessionval){

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -ContentType "application/json" -WebSession $sessionval

            }

            else{

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -ContentType "application/json"

            }

            $log = Write-VPASTextRecorder -inputval "REST API COMMAND RETURNED: TRUE" -token $token -LogType MISC

            Write-Verbose "RETURNING TRUE"

            return $response

        }catch{

            $log = Write-VPASTextRecorder -inputval $_ -token $token -LogType ERROR

            $log = Write-VPASTextRecorder -inputval "REST API COMMAND RETURNED: FALSE" -token $token -LogType MISC

            Write-Verbose "UNABLE TO ACTION ON ACTIVE SESSION"

            Write-VPASOutput -str $_ -type E

            return $false

        }

    }

    End{

        $log = Write-VPASTextRecorder -inputval $CommandName -token $token -LogType DIVIDER

    }

}