functions/Set-PasswordStateEnvironment.ps1
function Set-PasswordStateEnvironment { [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSAvoidUsingConvertToSecureStringWithPlainText', '', Justification = 'all passwords stored encrypted')] [Diagnostics.CodeAnalysis.SuppressMessageAttribute('PSAvoidUsingPlaintextForPassword', '', Justification = 'no password')] [CmdletBinding(DefaultParameterSetName = "Two", SupportsShouldProcess, ConfirmImpact = "High")] param ( [Parameter(ValueFromPipelineByPropertyName, Mandatory = $true)][Alias('Baseuri')][uri]$Uri, [Parameter(ValueFromPipelineByPropertyName, ParameterSetName = 'One')][string]$Apikey, [Parameter(ValueFromPipelineByPropertyName, ParameterSetName = 'One')][string]$PasswordGeneratorAPIkey, [Parameter(ValueFromPipelineByPropertyName, ParameterSetName = 'Two')][switch]$WindowsAuthOnly, [Parameter(ValueFromPipelineByPropertyName, ParameterSetName = 'Three')][pscredential]$customcredentials, [Parameter(ValueFromPipelineByPropertyName, Mandatory = $false)][string]$path = [Environment]::GetFolderPath('UserProfile'), [Parameter()][bool]$SetPlainTextPasswords = $False ) begin { if ($WindowsAuthOnly -eq $true) { $AuthType = "WindowsIntegrated" } Elseif ($customcredentials) { $AuthType = "WindowsCustom" } Else { $AuthType = "APIKey" } if ($env:PASSWORDSTATEPROFILE) { $path = $env:PASSWORDSTATEPROFILE } $profilepath = $path } process { # Build the custom object to be converted to JSON. Set APIKey as WindowsAuth if we are to use windows authentication. $JsonApiKey = switch ($AuthType) { WindowsIntegrated { "" } WindowsCustom { @{ "username" = $customcredentials.UserName "Password" = ($customcredentials.Password | ConvertFrom-SecureString) } } APIKey { ($Apikey | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureString) } } $json = @{ TimeoutSeconds = 60 Baseuri = $Uri -replace '/$', '' Apikey = $JsonApiKey AuthType = $AuthType } if ($SetPlainTextPasswords) { if ($PSCmdlet.ShouldProcess('Allow passwords to be returned in plain text')) { $json['PasswordsInPlainText'] = $SetPlainTextPasswords } else { $json['PasswordsInPlainText'] = $false } } else { $json['PasswordsInPlainText'] = $SetPlainTextPasswords } if ($PasswordGeneratorAPIkey) { $json['PasswordGeneratorAPIKey'] = ($PasswordGeneratorAPIkey | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureString) } $json = $json | ConvertTo-Json } end { $json | Out-File "$($profilepath)\passwordstate.json" $Script:Preferences.Path = $profilepath } } |