passwordstate-management

4.4.18

functions/Set-PasswordStateEnvironment.ps1

                                function Set-PasswordStateEnvironment {

    [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSAvoidUsingConvertToSecureStringWithPlainText', '', Justification = 'all passwords stored encrypted')]

    [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSAvoidUsingPlaintextForPassword', '', Justification = 'no password')]

    [CmdletBinding(DefaultParameterSetName = "Two", SupportsShouldProcess, ConfirmImpact="High")]

    param (

        [Parameter(ValueFromPipelineByPropertyName,Mandatory = $true)][Alias('Baseuri')][uri]$Uri,

        [Parameter(ValueFromPipelineByPropertyName,ParameterSetName = 'One')][string]$Apikey,

        [Parameter(ValueFromPipelineByPropertyName,ParameterSetName = 'One')][string]$PasswordGeneratorAPIkey,

        [Parameter(ValueFromPipelineByPropertyName,ParameterSetName = 'Two')][switch]$WindowsAuthOnly,

        [Parameter(ValueFromPipelineByPropertyName,ParameterSetName = 'Three')][pscredential]$customcredentials,

        [Parameter(ValueFromPipelineByPropertyName,Mandatory = $false)][string]$path = [Environment]::GetFolderPath('UserProfile'),

        [Parameter()][bool]$SetPlainTextPasswords = $False

    )

    begin {

        if ($WindowsAuthOnly -eq $true) {

            $AuthType = "WindowsIntegrated"

        }

        Elseif ($customcredentials) {

            $AuthType = "WindowsCustom"

        }

        Else {

            $AuthType = "APIKey"

        }

        if ($env:PASSWORDSTATEPROFILE){

            $path = $env:PASSWORDSTATEPROFILE

        }

        $profilepath = $path

    }

    process {

        # Build the custom object to be converted to JSON. Set APIKey as WindowsAuth if we are to use windows authentication.

        $JsonApiKey = switch ($AuthType) {

            WindowsIntegrated { "" }

            WindowsCustom {

                @{

                    "username" = $customcredentials.UserName

                    "Password" = ($customcredentials.Password | ConvertFrom-SecureString)

                }

            }

            APIKey {

                ($Apikey | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureString)

            }

        }

        $json = @{

            TimeoutSeconds = 60

            Baseuri = $Uri -replace '/$',''

            Apikey = $JsonApiKey

            AuthType = $AuthType

        }

        if ($SetPlainTextPasswords) {

            if ($PSCmdlet.ShouldProcess('Allow passwords to be returned in plain text')) {

                $json['PasswordsInPlainText'] = $SetPlainTextPasswords

            } else {

                $json['PasswordsInPlainText'] = $false

            }

        } else {

            $json['PasswordsInPlainText'] = $SetPlainTextPasswords

        }

        if ($PasswordGeneratorAPIkey){

            $json['PasswordGeneratorAPIKey'] = ($PasswordGeneratorAPIkey | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureString)

        }

        $json = $json | ConvertTo-Json

    }

    end {

        $json | Out-File "$($profilepath)\passwordstate.json"

        $Script:Preferences.Path=$profilepath

    }

}