VpasModule

13.1.1

public/Get-VPASSafes.ps1

                                <#

.Synopsis

   GET CYBERARK SAFES

   CREATED BY: Vadim Melamed, EMAIL: vmelamed5@gmail.com

.DESCRIPTION

   USE THIS FUNCTION TO RETRIEVE SAFES BASED ON A SEARCH QUERY

.PARAMETER NoSSL

   If the environment is not set up for SSL, API calls will be made via HTTP not HTTPS (Not Recommended!)

.PARAMETER token

   HashTable of data containing various pieces of login information (PVWA, LoginToken, HeaderType, etc).

   If -token is not passed, function will use last known hashtable generated by New-VPASToken

.PARAMETER SearchQuery

   Search string to find target resource via username, address, safe, platform, etc.

   Comma separated for multiple fields, or to search all pass a blank value like so: " "

.PARAMETER limit

   Upper estimate of the amount of safes in the environment

   Round to the nearest 1,000th to confirm all safes are retrieved

.PARAMETER offset

   Skip the amount of safes that get retrieved

   -offset 25 will skip the first 25 safes that are returned

.EXAMPLE

   $SafesJSON = Get-VPASSafes -searchQuery {SEARCHQUERY VALUE}

.OUTPUTS

   JSON Object (Safes) if successful

   $false if failed

#>

function Get-VPASSafes{

    [OutputType('System.Object',[bool])]

    [CmdletBinding()]

    Param(

        [Parameter(Mandatory=$true,ValueFromPipelineByPropertyName=$true,HelpMessage="Enter wildcard search to query for Safes (for example: Win_)",Position=0)]

        [String]$searchQuery,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=1)]

        [String]$limit,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=2)]

        [String]$offset,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=3)]

        [hashtable]$token,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=4)]

        [Switch]$NoSSL

    )

    Begin{

        $tokenval,$sessionval,$PVWA,$Header,$ISPSS,$IdentityURL = Get-VPASSession -token $token

    }

    Process{

        Write-Verbose "SUCCESSFULLY PARSED PVWA VALUE"

        Write-Verbose "SUCCESSFULLY PARSED TOKEN VALUE"

        Write-Verbose "SUCCESSFULLY PARSED SEARCHQUERY VALUE"

        try{

            write-verbose "MAKING API CALL TO CYBERARK"

            if($NoSSL){

                Write-Verbose "NO SSL ENABLED, USING HTTP INSTEAD OF HTTPS"

                $uri = "http://$PVWA/PasswordVault/api/safes?search=$searchQuery"

                if(![String]::IsNullOrEmpty($limit)){

                    $uri += "&limit=$limit"

                }

                if(![String]::IsNullOrEmpty($offset)){

                    $uri += "&offset=$offset"

                }

            }

            else{

                Write-Verbose "SSL ENABLED BY DEFAULT, USING HTTPS"

                $uri = "https://$PVWA/PasswordVault/api/safes?search=$searchQuery"

                if(![String]::IsNullOrEmpty($limit)){

                    $uri += "&limit=$limit"

                }

                if(![String]::IsNullOrEmpty($offset)){

                    $uri += "&offset=$offset"

                }

            }

            if($sessionval){

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method GET -ContentType "application/json" -WebSession $sessionval

            }

            else{

                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method GET -ContentType "application/json"

            }

            Write-Verbose "PARSING DATA FROM CYBERARK"

            Write-Verbose "RETURNING JSON OBJECT"

            return $response

        }catch{

            Write-Verbose "FAILED TO RETRIEVE SAFES"

            Write-VPASOutput -str $_ -type E

            return $false

        }

    }

    End{

    }

}