snazy2000
diff --git a/‎CHANGELOG.md‎
Lines changed: 18 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 16 additions & 2 deletions b/‎README.md‎
Lines changed: 16 additions & 2 deletions
diff --git a/‎SnipeitPS/Private/Invoke-SnipeitMethod.ps1‎
Lines changed: 55 additions & 35 deletions b/‎SnipeitPS/Private/Invoke-SnipeitMethod.ps1‎
Lines changed: 55 additions & 35 deletions
diff --git a/‎SnipeitPS/Private/Reset-SnipeitPSLegacyApi.ps1‎
Lines changed: 16 additions & 0 deletions b/‎SnipeitPS/Private/Reset-SnipeitPSLegacyApi.ps1‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎SnipeitPS/Private/Set-SnipeitPSLegacyApiKey.ps1‎
Lines changed: 14 additions & 0 deletions b/‎SnipeitPS/Private/Set-SnipeitPSLegacyApiKey.ps1‎
Lines changed: 14 additions & 0 deletions
diff --git a/‎SnipeitPS/Private/Set-SnipeitPSLegacyUrl.ps1‎
Lines changed: 14 additions & 0 deletions b/‎SnipeitPS/Private/Set-SnipeitPSLegacyUrl.ps1‎
Lines changed: 14 additions & 0 deletions
diff --git a/‎SnipeitPS/Private/Test-SnipeitPSConnection.ps1‎
Lines changed: 18 additions & 0 deletions b/‎SnipeitPS/Private/Test-SnipeitPSConnection.ps1‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎SnipeitPS/Public/Connect-SnipeitPS.ps1‎
Lines changed: 93 additions & 0 deletions b/‎SnipeitPS/Public/Connect-SnipeitPS.ps1‎
Lines changed: 93 additions & 0 deletions
@@ -5,6 +5,24 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](http://keepachangelog.com/),
 and this project adheres to [Semantic Versioning](http://semver.org/).
 
+# [v.1.10.x] - 2021-09-03
+
+## New secure ways to connect Snipe it
+
+### -secureApiKey allow pass apiKey as SecureString
+Connect-SnipeitPS -URL 'https://asset.example.com' -secureApiKey 'tokenKey'
+
+### Set connection with safely saved credentials, first save credentials
+$SnipeCred= Get-Credential -message "Use url as username and apikey as password"
+$SnipeCred | Export-CliXml snipecred.xml
+
+### ..then use your saved credentials like
+Connect-SnipeitPS -siteCred (Import-CliXml snipecred.xml)
+
+## Fix for content encoding in invoke-snipeitmethod
+Version 1.9 introduced bug that converted non ascii characters to ascii
+during request.
+
 # [v.1.9.x] - 2021-07-14
 
 ## Image uploads
 
@@ -19,9 +19,23 @@ Install-Module SnipeitPS
 # Check for updates occasionally:
 Update-Module SnipeitPS
 
-# To use each session:
+# import module to session:
 Import-Module SnipeitPS
-Set-SnipeitInfo -URL 'https://asset.example.com' -apiKey 'tokenKey'
+
+# Set connection
+Connect-SnipeitPS -URL 'https://asset.example.com' -apiKey 'tokenKey'
+
+# Or set connection with safely saved credentials, first save credentials
+$SnipeCred =Get-Credential -message "Use url as username and apikey as password"
+$SnipeCred | Export-CliXml snipecred.xml
+
+# ..then use your saved credentials like
+Connect-SnipeitPS -siteCred (Import-CliXml snipecred.xml)
+
+# OR use -secureApiKey that allow pass apiKey as SecureString
+# if you are usin Microsoft.PowerShell.SecretManagement or like
+Connect-SnipeitPS -URL 'https://asset.example.com' -secureApiKey 'tokenKey'
+
 ```
 
 ### Usage
 
@@ -1,67 +1,91 @@
-function Invoke-SnipeitMethod {
-    <#
+<#
     .SYNOPSIS
-    Extracted invokation of the REST method to own function.
-    #>
+    Make api request to Snipe it
+
+    .PARAMETER Api
+    Api part of url. prefix with slash ie. "/api/v1/hardware"
+
+    .PARAMETER Method
+    Method of the invokation, one of following "GET", "POST", "PUT", "PATCH" or "DELETE"
+
+    .PARAMETER Body
+    Request body as hashtable. Needed for post, put and patch
+
+    .PARAMETER GetParameters
+    Get-Parameters as hastable.
+#>
+
+function Invoke-SnipeitMethod {
     [OutputType(
         [PSObject]
     )]
+
     param (
-        # REST API to invoke
+
         [Parameter(Mandatory = $true)]
-        [Uri]$URi,
+        [string]$Api,
 
-        # Method of the invokation
         [ValidateSet("GET", "POST", "PUT", "PATCH", "DELETE")]
         [string]$Method = "GET",
 
-        # Body of the request
         [Hashtable]$Body,
 
-        [string] $Token,
-
-        # GET Parameters
         [Hashtable]$GetParameters
-
     )
 
     BEGIN {
+        #use legacy per command based url and apikey
+        if ( $null -ne $SnipeitPSSession.legacyUrl -and $null -ne $SnipeitPSSession.legacyApiKey ) {
+            [string]$Url = $SnipeitPSSession.legacyUrl
+            Write-Debug "Invoke-SnipeitMethod url: $Url"
+            $Token =  ConvertFrom-SecureString -AsPlainText -SecureString $SnipeitPSSession.legacyApiKey
+
+        } elseif ($null -ne $SnipeitPSSession.url -and $null -ne $SnipeitPSSession.apiKey) {
+            [string]$Url = $SnipeitPSSession.url
+            Write-Debug "Invoke-SnipeitMethod url: $Url"
+            $Token =  ConvertFrom-SecureString -AsPlainText -SecureString $SnipeitPSSession.apiKey
+
+        } else {
+            throw "Please use Connect-SnipeitPS to setup connection before any other commands."
+        }
+
         # Validation of parameters
         if (($Method -in ("POST", "PUT", "PATCH")) -and (!($Body))) {
             $message = "The following parameters are required when using the ${Method} parameter: Body."
             $exception = New-Object -TypeName System.ArgumentException -ArgumentList $message
             Throw $exception
         }
 
+        #Build request uri
+        $apiUri = "$Url$Api"
         #To support images "image" property have be handled before this
 
         $_headers = @{
-            "Authorization" = "Bearer $($token)"
+            "Authorization" = "Bearer $($Token)"
             'Content-Type'  = 'application/json; charset=utf-8'
             "Accept" = "application/json"
         }
     }
 
     Process {
-        if ($GetParameters -and ($URi -notlike "*\?*"))
-        {
+        # This can be done using $Body, maybe some day - PetriAsi
+        if ($GetParameters -and ($apiUri -notlike "*\?*")){
             Write-Debug "Using `$GetParameters: $($GetParameters | Out-String)"
-            [string]$URI += (ConvertTo-GetParameter $GetParameters)
+            [string]$apiUri = $apiUri + (ConvertTo-GetParameter $GetParameters)
             # Prevent recursive appends
             $GetParameters = $null
         }
 
         # set mandatory parameters
         $splatParameters = @{
-            Uri             = $URi
+            Uri             = $apiUri
             Method          = $Method
             Headers         = $_headers
             UseBasicParsing = $true
             ErrorAction     = 'SilentlyContinue'
         }
 
-        # Place holder for intended image manipulation
-        # if and when snipe it API gets support for images
+        # Send image requests as multipart/form-data if supported
         if($null -ne $body -and $Body.Keys -contains 'image' ){
             if($PSVersionTable.PSVersion -ge '7.0'){
                 $Body['image'] = get-item $body['image']
@@ -71,15 +95,15 @@
                 $splatParameters["Method"] = 'POST'
                 $splatParameters["Form"] = $Body
             } else {
-                    # use base64 encoded images for powershell  version < 7
-                    Add-Type -AssemblyName "System.Web"
-                    $mimetype = [System.Web.MimeMapping]::GetMimeMapping($body['image'])
-                    $Body['image'] = 'data:@'+$mimetype+';base64,'+[Convert]::ToBase64String([IO.File]::ReadAllBytes($Body['image']))
+                # use base64 encoded images for powershell  version < 7
+                Add-Type -AssemblyName "System.Web"
+                $mimetype = [System.Web.MimeMapping]::GetMimeMapping($body['image'])
+                $Body['image'] = 'data:@'+$mimetype+';base64,'+[Convert]::ToBase64String([IO.File]::ReadAllBytes($Body['image']))
             }
         }
 
         if ($Body -and $splatParameters.Keys -notcontains 'Form') {
-            $splatParameters["Body"] = $Body | Convertto-Json
+            $splatParameters["Body"] =  [System.Text.Encoding]::UTF8.GetBytes(($Body | Convertto-Json))
         }
 
         $script:PSDefaultParameterValues = $global:PSDefaultParameterValues
@@ -105,26 +129,24 @@
             if ($webResponse) {
                  Write-Verbose $webResponse
 
-                # API returned a Content: lets work wit it
+                # API returned a Content: lets work with it
                 try{
-
                     if ($webResponse.status -eq "error") {
-                        Write-Verbose "[$($MyInvocation.MyCommand.Name)] An error response was received from; resolving"
+                        Write-Verbose "[$($MyInvocation.MyCommand.Name)] An error response was received ... resolving"
                         # This could be handled nicely in an function such as:
                         # ResolveError $response -WriteError
                         Write-Error $($webResponse.messages | Out-String)
-                    }
-                    else {
+                    } else {
                         #update operations return payload
-                        if ($webResponse.payload){
+                        if ($webResponse.payload) {
                             $result = $webResponse.payload
                         }
                         #Search operations return rows
                         elseif ($webResponse.rows) {
                             $result = $webResponse.rows
                         }
                         #Remove operations returns status and message
-                        elseif ($webResponse.status -eq 'success'){
+                        elseif ($webResponse.status -eq 'success') {
                             $result = $webResponse.payload
                         }
                         #Search and query result with no results
@@ -140,9 +162,6 @@
                         Write-Verbose "Messages: $($webResponse.messages)"
 
                         $result
-
-
-
                     }
                 }
                 catch {
@@ -151,7 +170,7 @@
 
             }
             elseif ($webResponse.StatusCode -eq "Unauthorized") {
-                Write-Error "[$($MyInvocation.MyCommand.Name)] You are not Authorized to access the resource, check your token is correct"
+                Write-Error "[$($MyInvocation.MyCommand.Name)] You are not Authorized to access the resource, check your apiKey is correct"
             }
             else {
                 # No content, although statusCode < 400
@@ -169,3 +188,4 @@
         Write-Verbose "[$($MyInvocation.MyCommand.Name)] Function ended"
     }
 }
+
@@ -0,0 +1,16 @@
+function Reset-SnipeitPSLegacyApi {
+    [CmdletBinding(
+        SupportsShouldProcess = $true,
+        ConfirmImpact = "Low"
+    )]
+    param(
+    )
+    process {
+        Write-Verbose 'Reset-SnipeitPSLegacyApi'
+        if ($PSCmdlet.ShouldProcess("ShouldProcess?")) {
+            $SnipeitPSSession.legacyUrl = $null
+            $SnipeitPSSession.legacyApiKey = $null
+
+        }
+    }
+}
@@ -0,0 +1,14 @@
+function Set-SnipeitPSLegacyApiKey {
+    [CmdletBinding(
+        SupportsShouldProcess = $true,
+        ConfirmImpact = "Low"
+    )]
+    param(
+        [string]$apiKey
+    )
+    process {
+        if ($PSCmdlet.ShouldProcess("ShouldProcess?")) {
+            $SnipeitPSSession.legacyApiKey = ConvertTo-SecureString -AsPlainText -String $apiKey
+        }
+    }
+}
@@ -0,0 +1,14 @@
+function Set-SnipeitPSLegacyUrl {
+    [CmdletBinding(
+        SupportsShouldProcess = $true,
+        ConfirmImpact = "Low"
+    )]
+    param(
+        $url
+    )
+    process {
+        if ($PSCmdlet.ShouldProcess("ShouldProcess?")) {
+            $SnipeitPSSession.legacyUrl = $url.TrimEnd('/')
+        }
+    }
+}
@@ -0,0 +1,18 @@
+function Test-SnipeitPSConnection {
+    #test api connection
+    $Parameters = @{
+        Api           = '/api/v1/statuslabels'
+        Method        = 'Get'
+        GetParameters = @{'limit'=1}
+    }
+    Write-Verbose "Testing connection to $($SnipeitPSSession.url)."
+
+    $contest = Invoke-SnipeitMethod @Parameters
+
+    if ( $contest) {
+        Write-Verbose "Connection to $($SnipeitPSSession.url) tested succesfully."
+        return $true
+    } else {
+        return $false
+    }
+}
@@ -0,0 +1,93 @@
+<#
+    .SYNOPSIS
+    Sets authetication information
+
+    .DESCRIPTION
+    Sets apikey and url to connect Snipe-It system.
+    Based on Set-SnipeitInfo command, what is now just compatibility wrapper
+    and calls Connect-SnipeitPS
+
+    .PARAMETER url
+    URL of Snipeit system.
+
+    .PARAMETER apiKey
+    User's API Key for Snipeit.
+
+    .PARAMETER secureApiKey
+    Snipe it Api key as securestring
+
+    .PARAMETER siteCred
+    PSCredential where username shoul be snipe it url and password should be
+    snipe it apikey.
+
+    .EXAMPLE
+    Connect-SnipeitPS -Url $url -apiKey $myapikey
+    Connect to  Snipe it  api.
+
+    .EXAMPLE
+    Connect-SnipeitPS -Url $url -SecureApiKey $myapikey
+    Connects to Snipe it api with apikey stored to securestring
+
+    .EXAMPLE
+    Connect-SnipeitPS -siteCred (Get-Credential -message "Use site url as username and apikey as password")
+    Connect to Snipe It with PSCredential object.
+    To use saved creadentials yu can use export-clixml and import-clixml commandlets.
+
+    .EXAMPLE
+    Build credential with apikey value from secret vault (Microsoft.PowerShell.SecretManagement)
+    $siteurl = "https://mysnipeitsite.url"
+    $apikey = Get-SecretInfo -Name SnipeItApiKey
+    $siteCred = New-Object -Type PSCredential -Argumentlist $siteurl,$spikey
+    Connect-SnipeitPS -siteCred $siteCred
+
+
+
+#>
+function Connect-SnipeitPS {
+    [CmdletBinding(
+        DefaultParameterSetName = 'Connect with url and apikey'
+    )]
+    [System.Diagnostics.CodeAnalysis.SuppressMessage('PSUseShouldProcessForStateChangingFunctions', '')]
+
+    param (
+        [Parameter(ParameterSetName='Connect with url and apikey',Mandatory=$true)]
+        [Parameter(ParameterSetName='Connect with url and secure apikey',Mandatory=$true)]
+        [Uri]$url,
+
+        [Parameter(ParameterSetName='Connect with url and apikey',Mandatory=$true)]
+        [String]$apiKey,
+
+        [Parameter(ParameterSetName='Connect with url and secure apikey',Mandatory=$true)]
+        [SecureString]$secureApiKey,
+
+        [Parameter(ParameterSetName='Connect with credential',Mandatory=$true)]
+        [PSCredential]$siteCred
+    )
+
+
+    PROCESS {
+        switch ($PsCmdlet.ParameterSetName) {
+            'Connect with url and apikey' {
+                $SnipeitPSSession.url = $url.AbsoluteUri.TrimEnd('/')
+                $SnipeitPSSession.apiKey = ConvertTo-SecureString -AsPlainText -String $apiKey
+            }
+
+            'Connect with url and secure apikey' {
+                $SnipeitPSSession.url = $url.AbsoluteUri.TrimEnd('/')
+                $SnipeitPSSession.apiKey = $secureApiKey
+            }
+
+            'Connect with credential' {
+                $SnipeitPSSession.url = ($siteCred.GetNetworkCredential().UserName).TrimEnd('/')
+                $SnipeitPSSession.apiKey = $siteCred.GetNetworkCredential().SecurePassword
+            }
+        }
+
+        Write-Debug "Site-url $($SnipeitPSSession.url)"
+        Write-Debug "Site apikey: $($SnipeitPSSession.apiKey)"
+
+        if (-not (Test-SnipeitPSConnection)) {
+            throw "Cannot verify connection to snipe it. For the start try to check url and provided apikey or credential parameters"
+        }
+    }
+}