-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathNew-PASConnectionComponentPackage.ps1
120 lines (104 loc) · 6.6 KB
/
New-PASConnectionComponentPackage.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
function New-PASConnectionComponentPackage {
<#
.SYNOPSIS
Creates a CyberArk Connection Component / Connector package.
.DESCRIPTION
Creates a CyberArk Connection Component / Connector package zip archive that can be deployed through the Privileged Vault Web Access or uploaded directly to the PSMUniversalConnectors safe. It will optionally create a 'package.json' (used to update AppLocker rules) and create a connection component settings XML file from an existing PVConfiguration.xml.
.EXAMPLE
PS C:\> New-PASConnectionComponentPackage -ConnectionComponentId PSM-SampleApp -Path C:\SampleAppDispatcherFiles -ConnectionComponentApplicationPaths @('C:\SampleApp\SampleApp.exe') -DestinationPath C:\ConnectionComponentPackages
Creates a connection component package zip archive for the PSM-SampleApp connection component. It includes all the files in C:\SampleAppDispatcherFiles directory and creates a 'package.json' where 'C:\SampleApp\SampleApp.exe' will be added to the AppLocker rules.
.EXAMPLE
PS C:\> New-PASConnectionComponentPackage -ConnectionComponentId PSM-SampleApp -Path C:\SampleAppDispatcherFiles -ConnectionComponentApplicationPaths @('C:\SampleApp\SampleApp.exe') -CreateConnectionComponentXmlFile $true -PVConfigurationPath 'C:\Program Files (x86)\CyberArk\PSM\Temp\PVConfiguration.xml -DestinationPath C:\ConnectionComponentPackages
Creates a connection component package zip archive for the PSM-SampleApp connection component. It includes all the files in C:\SampleAppDispatcherFiles directory and creates a 'package.json' where 'C:\SampleApp\SampleApp.exe' will be added to the AppLocker rules. It also extracts the connection component settings from the existing PVConfiguration.xml file defined and adds them as CC-PSM-SampleApp.xml to the archive.
.LINK
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/psm_Develop_universal_connector.htm
.LINK
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/PASIMP/ConfigurePSMUniversalConnector.htm
.LINK
https://docs.cyberark.com/Product-Doc/OnlineHelp/PAS/Latest/en/Content/WebServices/ImportConnComponent.htm
#>
[CmdletBinding()]
param (
# The unique ID of the connection component. This will be used to name the zip archive and used to find an extract the connection component settings from an existing PVConfiguration.xml.
[Parameter(Mandatory = $true)]
[ValidateNotNullOrEmpty()]
[string]
$ConnectionComponentId,
# A path to a folder containing all the files to be a part of the connection component package.
[Parameter(
ValueFromPipeline = $true,
Mandatory = $true
)]
[ValidateNotNullOrEmpty()]
[ValidateScript( { Test-Path -Path $_ })]
[string[]]
[Alias('PSPath')]
$Path,
# An array of paths used by the connection component application. These paths will be used to update AppLocker rules.
[Parameter(Mandatory = $false)]
[string[]]
$ConnectionComponentApplicationPaths,
# Determines whether to create an XML file with the connection component settings from an existing PVConfiguration.xml
[Parameter(
ParameterSetName = 'CreateConnectionComponentXml',
Mandatory = $false
)]
[boolean]
$CreateConnectionComponentXmlFile = $false,
# File path of the PVConfiguration.xml to extract the connection component settings from.
[Parameter(
ParameterSetName = 'CreateConnectionComponentXml',
Mandatory = $false
)]
[ValidateNotNullOrEmpty()]
[ValidateScript( { Test-Path -Path $_ -PathType Leaf })]
[string]
$PVConfigurationPath,
# Folder path where to create the package zip archive.
[Parameter(Mandatory = $false)]
$DestinationPath = $PWD
)
begin {
$FilesToArchive = @()
# We create a new temporary directory as we need to save generated files somewhere in order to add it to our archive
$TemporaryDirectory = New-TemporaryDirectory
$ConnectionComponentWorkingDirectory = Join-Path -Path $TemporaryDirectory -ChildPath $ConnectionComponentId
New-Item -Path $ConnectionComponentWorkingDirectory -ItemType Directory
if ($ConnectionComponentApplicationPaths.Count -gt 0) {
$PackageJsonContent = [PSCustomObject]@{
PackageName = $ConnectionComponentId;
ClientAppPaths = @()
}
foreach ($ApplicationPath in $ConnectionComponentApplicationPaths) {
$PackageJsonContent.ClientAppPaths += @{Path = $ApplicationPath }
}
$PackageJsonFilePath = Join-Path -Path $ConnectionComponentWorkingDirectory -ChildPath 'package.json'
# We need to UNESCAPE the slashes in the Paths before we write to file as the import scripts for the connection components package deployment
# process assumes the Paths are unescaped tries to escape it at time of import.
$PackageJsonContent | ConvertTo-Json | ForEach-Object { $_ -replace '\\\\', '\' } | Out-File -FilePath $PackageJsonFilePath -Force
$FilesToArchive += $PackageJsonFilePath
}
if ($CreateConnectionComponentXmlFile) {
[xml]$PVConfigurationXml = Get-Content $PVConfigurationPath
$ConnectionComponentXml = Select-Xml -Xml $PVConfigurationXml -XPath "//ConnectionComponent[@Id='$ConnectionComponentId']"
if ($null -ne $ConnectionComponentXml) {
$ConnectionComponentXmlFilePath = Join-Path -Path $ConnectionComponentWorkingDirectory -ChildPath "CC-$ConnectionComponentId.xml"
$ConnectionComponentXml.Node.OuterXml | Out-File -FilePath $ConnectionComponentXmlFilePath -Force
$FilesToArchive += $ConnectionComponentXmlFilePath
}
}
}
process {
$FilesToArchive += Get-ChildItem -Path $Path | ForEach-Object FullName
}
end {
Compress-Archive -Path $FilesToArchive -DestinationPath (Join-Path -Path $DestinationPath -ChildPath "$ConnectionComponentId.zip") -CompressionLevel Fastest
Remove-Item $TemporaryDirectory -Force -Recurse
}
}
# https://stackoverflow.com/a/34559554
function New-TemporaryDirectory {
$parent = [System.IO.Path]::GetTempPath()
[string] $name = [System.Guid]::NewGuid()
New-Item -ItemType Directory -Path (Join-Path $parent $name)
}