VpasModule

13.1.1

public/Get-VPASSafeAccountGroups.ps1

                                <#

.Synopsis

   GET SAFE ACCOUNT GROUPS

   CREATED BY: Vadim Melamed, EMAIL: vmelamed5@gmail.com

.DESCRIPTION

   USE THIS FUNCTION TO GET ACCOUNT GROUPS IN A SAFE

.PARAMETER NoSSL

   If the environment is not set up for SSL, API calls will be made via HTTP not HTTPS (Not Recommended!)

.PARAMETER token

   HashTable of data containing various pieces of login information (PVWA, LoginToken, HeaderType, etc).

   If -token is not passed, function will use last known hashtable generated by New-VPASToken

.PARAMETER safe

   Target unique safe name

.EXAMPLE

   $SafeAccountGroupsJSON = Get-VPASSafeAccountGroups -safe {SAFE VALUE}

.OUTPUTS

   JSON Object (SafeAccountGroups) if successful

   $false if failed

#>

function Get-VPASSafeAccountGroups{

    [OutputType('System.Object',[bool])]

    [CmdletBinding()]

    Param(

        [Parameter(Mandatory=$true,ValueFromPipelineByPropertyName=$true,HelpMessage="Enter target SafeName to query AccountGroups (for example: TestSafe1)",Position=0)]

        [String]$safe,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=1)]

        [hashtable]$token,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=2)]

        [Switch]$NoSSL

    )

    Begin{

        $tokenval,$sessionval,$PVWA,$Header,$ISPSS,$IdentityURL = Get-VPASSession -token $token

    }

    Process{

        Write-Verbose "SUCCESSFULLY PARSED PVWA VALUE"

        Write-Verbose "SUCCESSFULLY PARSED TOKEN VALUE"

        Write-Verbose "SUCCESSFULLY PARSED SAFE VALUE: $safe"

        try{

            if($NoSSL){

                Write-Verbose "NO SSL ENABLED, USING HTTP INSTEAD OF HTTPS"

                $uri = "http://$PVWA/PasswordVault/API/AccountGroups?Safe=$safe"

            }

            else{

                Write-Verbose "SSL ENABLED BY DEFAULT, USING HTTPS"

                $uri = "https://$PVWA/PasswordVault/API/AccountGroups?Safe=$safe"

            }

            write-verbose "MAKING API CALL TO CYBERARK"

            if($sessionval){

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method GET -ContentType "application/json" -WebSession $sessionval

            }

            else{

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method GET -ContentType "application/json"

            }

            Write-Verbose "RETURNING JSON OBJECT"

            return $response

        }catch{

            Write-Verbose "UNABLE TO GET SAFE ACCOUNT GROUPS"

            Write-VPASOutput -str $_ -type E

            return $false

        }

    }

    End{

    }

}