POSHOrigin

1.8.1

Functions/Get-POSHOriginSecret.ps1

                                function Get-POSHOriginSecret {

    <#

        .SYNOPSIS

            Returns a PowerShell credential object using a given resolver name and options.

        .DESCRIPTION

            Returns a PowerShell credential object using a given resolver name and options.

        .PARAMETER Resolver

            The name of the credential resolver to use

        .PARAMETER Options

            Hashtable of options that the resolver will use to translate into a credential object

        .PARAMETER Force

            Force POSHOrigin to resolve the credential and store it again in the cache.

        .EXAMPLE

            Read the configuration contained in vm_config.ps1 into a variable.

            resource 'POSHOrigin_vSphere:VM' 'VM01' @{

                defaults = '.\defaults.psd1'

                ###

                # Other options omitted for brevity

                ###

                vcenterCredentials = Get-POSHOriginSecret 'pscredential' @{

                    username = 'svcvcenter'

                    password = 'password123!'

                }

            }

    #>

    [cmdletbinding(HelpUri='https://github.com/devblackops/POSHOrigin/wiki/Get-POSHOriginSecret')]

    param(

        [parameter(Mandatory, Position=0)]

        [string]$Resolver,

        [parameter(Mandatory, Position=1)]

        [hashtable]$Options,

        [switch]$Force

    )

    # Let's avoid repeatadly calling the resolver if we're getting the same credential

    # Instead, we'll compute a checksum of the options and store the credential in a cache

    # We'll lookup the credential by the checksum in the cache first before we go out to the resolver

    $resolverPath = "$moduleRoot\Resolvers\$resolver"

    if (Test-Path -Path $resolverPath) {

        $json = ConvertTo-Json -InputObject $options

        $hash = _getHash -Text $json

        if ($script:credentialCache.ContainsKey($hash)) {

            if ($PSBoundParameters.ContainsKey('Force')) {

                $cred = & "$resolverPath\Resolve.ps1" -Options $options

            } else {

                $cred = $script:credentialCache.$hash

                Write-Verbose -Message ($msgs.gpos_cache_hit -f $hash)

            }

        } else {

            $cred = & "$resolverPath\Resolve.ps1" -Options $options

            # Only cache credential if it's valid

            if ($cred) {

                $script:credentialCache.Add($hash, $cred)

            }

        }

        return $cred

    } else {

        $knownResolvers = Get-ChildItem -Path "$moduleRoot\Resolvers\" -Directory | Select-Object -ExpandProperty Name

        $knownResolversTxt = $knownResolvers -join ', '

        throw ($msgs.gpos_unknown_resolver -f $resolver, $knownResolvers)

    }

}