xWinEventLog

1.0.0.0

DSCResources/MSFT_xWinEventLog/MSFT_xWinEventLog.psm1

                                function New-TerminatingError

{

    param

    (

        [Parameter(Mandatory)]

        [String]$errorId,

        [Parameter(Mandatory)]

        [String]$errorMessage,

        [Parameter(Mandatory)]

        [System.Management.Automation.ErrorCategory]$errorCategory

    )

    $exception   = New-Object System.InvalidOperationException $errorMessage 

    $errorRecord = New-Object System.Management.Automation.ErrorRecord $exception, $errorId, $errorCategory, $null

    throw $errorRecord

}

function Get-TargetResource

{

    [CmdletBinding()]

    [OutputType([System.Collections.Hashtable])]

    param

    (

        [parameter(Mandatory = $true)]

        [System.String]

        $LogName

    )

    try

    {

        $log = Get-WinEvent -ListLog $logName

        $returnValue = @{

            LogName = [System.String]$LogName

            MaximumSizeInBytes = [System.Int64]$log.MaximumSizeInBytes

            IsEnabled = [System.Boolean]$log.IsEnabled

            LogMode = [System.String]$log.LogMode

            SecurityDescriptor = [System.String]$log.SecurityDescriptor

        }

        return $returnValue

    }catch

    {

        write-Debug "ERROR: $($_|fl * -force|out-string)"

        New-TerminatingError -errorId 'GetWinEventLogFailed' -errorMessage $_.Exception -errorCategory InvalidOperation

    }

}

function Set-TargetResource

{

    [CmdletBinding()]

    param

    (

        [parameter(Mandatory = $true)]

        [System.String]

        $LogName,

        [System.Int64]

        $MaximumSizeInBytes,

        [System.Boolean]

        $IsEnabled,

        [ValidateSet("AutoBackup","Circular","Retain")]

        [System.String]

        $LogMode,

        [System.String]

        $SecurityDescriptor

    )

    try

    {

        $log = Get-WinEvent -ListLog $logName

        $update = $false

        if ($PSBoundParameters.ContainsKey('MaximumSizeInBytes') -and $MaximumSizeInBytes -ne $log.MaximumSizeInBytes) { 

            Set-MaximumSizeInBytes -LogName $LogName -MaximumSizeInBytes $MaximumSizeInBytes

        }

        if ($PSBoundParameters.ContainsKey('LogMode') -and $LogMode -ne $log.LogMode){ 

            Set-LogMode -LogName $LogName -LogMode $LogMode

        }

        if ($PSBoundParameters.ContainsKey('SecurityDescriptor') -and $SecurityDescriptor -ne $log.SecurityDescriptor) { 

            Set-SecurityDescriptor -LogName $LogName -SecurityDescriptor $SecurityDescriptor

        }

        if ($PSBoundParameters.ContainsKey("IsEnabled") -and $IsEnabled -ne $log.IsEnabled) { 

            Set-IsEnabled -LogName $LogName -IsEnabled $IsEnabled

        }

    }catch

    {

        Write-Debug "ERROR: $($_|fl * -force|out-string)"

        New-TerminatingError -errorId 'SetWinEventLogFailed' -errorMessage $_.Exception -errorCategory InvalidOperation

    }

}

function Test-TargetResource

{

    [CmdletBinding()]

    [OutputType([System.Boolean])]

    param

    (

        [parameter(Mandatory = $true)]

        [System.String]

        $LogName,

        [System.Int64]

        $MaximumSizeInBytes,

        [System.Boolean]

        $IsEnabled,

        [ValidateSet("AutoBackup","Circular","Retain")]

        [System.String]

        $LogMode,

        [System.String]

        $SecurityDescriptor

    )

    try

    {

        $log = Get-WinEvent -ListLog $logName

        if ($PSBoundParameters.ContainsKey("MaximumSizeInBytes") -and $log.MaximumSizeInBytes -ne $MaximumSizeInBytes ) { return $false}

        if ($PSBoundParameters.ContainsKey("IsEnabled")          -and $log.IsEnabled -ne $IsEnabled                   ) { return $false}

        if ($PSBoundParameters.ContainsKey("LogMode")            -and $log.LogMode -ne $LogMode                       ) { return $false}

        if ($PSBoundParameters.ContainsKey("SecurityDescriptor") -and $log.SecurityDescriptor -ne $SecurityDescriptor ) { return $false}

        return $true

    }catch

    {

        write-Debug "ERROR: $($_|fl * -force|out-string)"

        New-TerminatingError -errorId 'TestWinEventLogFailed' -errorMessage $_.Exception -errorCategory InvalidOperation

    }

}

Function Set-MaximumSizeInBytes{

    [CmdletBinding()]

    param(

        [System.String]

        $LogName,

        [System.Int64]

        $MaximumSizeInBytes

    )

    $log = Get-WinEvent -ListLog $logName

    $log.MaximumSizeInBytes = $MaximumSizeInBytes

    $log.SaveChanges()

}

Function Set-LogMode{

    [CmdletBinding()]

    param(

        [System.String]

        $LogName,

        [System.String]

        $LogMode

    )

    $log = Get-WinEvent -ListLog $LogName

    $log.LogMode = $LogMode

    $log.SaveChanges()

}

Function Set-SecurityDescriptor{

    [CmdletBinding()]

    param(

        [System.String]

        $LogName,

        [System.String]

        $SecurityDescriptor

    )

    $log = Get-WinEvent -ListLog $LogName

    $log.SecurityDescriptor = $SecurityDescriptor

    $log.SaveChanges()

}

Function Set-IsEnabled{

    [CmdletBinding()]

    param(

        [System.String]

        $LogName,

        [System.Boolean]

        $IsEnabled

    )

    $log = Get-WinEvent -ListLog $LogName

    $log.IsEnabled = $IsEnabled

    $log.SaveChanges()

}

Export-ModuleMember -Function *-TargetResource