public/Add-VPASApplication.ps1

<#
.Synopsis
   ADD APPLICATION ID
   CREATED BY: Vadim Melamed, EMAIL: vmelamed5@gmail.com
.DESCRIPTION
   USE THIS FUNCTION TO ADD A NEW APPLICATION ID TO CYBERARK
.PARAMETER token
   HashTable of data containing various pieces of login information (PVWA, LoginToken, HeaderType, etc).
   If -token is not passed, function will use last known hashtable generated by New-VPASToken
.PARAMETER Description
   An explanation/details of the target resource
   Best practice states to leave informative descriptions to help identify the resource purpose
.PARAMETER AppID
   Unique ApplicationID (or Application Name) that will be used by the credential provider(s) to retrieve credentials
.PARAMETER Location
   Where the ApplicationID will reside in terms of the directory structure within CyberArk
.PARAMETER AccessPermittedFrom
   Limiting when an ApplicationID can be used starting time
.PARAMETER AccessPermittedTo
   Limiting when an ApplicationID can be used end time
.PARAMETER ExpirationDate
   Limiting when an ApplicationID can be used expiration date
.PARAMETER Disabled
   Create the new ApplicationID in a disabled state
.PARAMETER BusinessOwnerFName
   ApplicationID owner FirstName
.PARAMETER BusinessOwnerLName
   ApplicationID owner LastName
.PARAMETER BusinessOwnerEmail
   ApplicationID onwer Email
.PARAMETER BusinessOwnerPhone
   ApplicationID owner Phone
.EXAMPLE
   $AddApplicationStatus = Add-VPASApplication -AppID {APPID VALUE} -Description {DESCRIPTION VALUE}
.OUTPUTS
   $true if successful
   ---
   $false if failed
#>

function Add-VPASApplication{
    [OutputType([bool])]
    [CmdletBinding()]
    Param(

        [Parameter(Mandatory=$true,ValueFromPipelineByPropertyName=$true,HelpMessage="Enter name for new ApplicationID (for example: NewApp1)",Position=0)]
        [String]$AppID,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=1)]
        [String]$Description,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=2)]
        [String]$Location,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=3)]
        [String]$AccessPermittedFrom,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=4)]
        [String]$AccessPermittedTo,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=5)]
        [String]$ExpirationDate,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=6)]
        [Switch]$Disabled,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=7)]
        [String]$BusinessOwnerFName,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=8)]
        [String]$BusinessOwnerLName,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=9)]
        [String]$BusinessOwnerEmail,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=10)]
        [String]$BusinessOwnerPhone,

        [Parameter(Mandatory=$false,ValueFromPipelineByPropertyName=$true,Position=11)]
        [hashtable]$token
    )

    Begin{
        $tokenval,$sessionval,$PVWA,$Header,$ISPSS,$IdentityURL,$EnableTextRecorder,$AuditTimeStamp,$NoSSL,$VaultVersion,$HideWarnings,$AuthenticatedAs,$SubDomain = Get-VPASSession -token $token
        $CommandName = $MyInvocation.MyCommand.Name
        $log = Write-VPASTextRecorder -inputval $CommandName -token $token -LogType COMMAND
    }
    Process{
        Write-Verbose "SUCCESSFULLY PARSED PVWA VALUE"
        Write-Verbose "SUCCESSFULLY PARSED TOKEN VALUE"
        Write-Verbose "SUCCESSFULLY PARSED APPID VALUE"

        #MISC SECTION
        $permissions = @{}

        $targetVal = @{"AppID"=$AppID}

        if([String]::IsNullOrEmpty($Description)){
            Write-VPASOutput -str "NO DESCRIPTION FIELD SET, SKIPPING" -type M
            Write-Verbose "NO DESCRIPTION FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"Description"=$Description}
        }

        if([String]::IsNullOrEmpty($Location)){
            Write-VPASOutput -str "NO LOCATION FIELD SET, USING DEFAULT" -type M
            $Location = "\"
            $targetVal += @{"Location"=$Location}
            Write-Verbose "NO LOCATION FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"Location"=$Location}
        }

        if([String]::IsNullOrEmpty($AccessPermittedFrom)){
            Write-VPASOutput -str "NO ACCESSPERMITTEDFROM FIELD SET, SKIPPING" -type M
            Write-Verbose "NO ACCESS PERMITTED FROM FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"AccessPermittedFrom"=$AccessPermittedFrom}
        }

        if([String]::IsNullOrEmpty($AccessPermittedTo)){
            Write-VPASOutput -str "NO ACCESSPERMITTEDTO FIELD SET, SKIPPING" -type M
            Write-Verbose "NO ACCESS PERMITTED TO FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"AccessPermittedTo"=$AccessPermittedTo}
        }

        if([String]::IsNullOrEmpty($ExpirationDate)){
            Write-VPASOutput -str "NO EXPIRATIONDATE FIELD SET, SKIPPING" -type M
            Write-Verbose "NO EXPIRATION DATE FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"ExpirationDate"=$ExpirationDate}
        }

        if($Disabled){
            $targetVal += @{"Disabled"=$true}
        }
        else{
            $targetVal += @{"Disabled"=$false}
        }

        if([String]::IsNullOrEmpty($BusinessOwnerFName)){
            Write-VPASOutput -str "NO BUSINESSOWNERFNAME FIELD SET, SKIPPING" -type M
            Write-Verbose "NO BUSINESS OWNER FIRST NAME FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"BusinessOwnerFName"=$BusinessOwnerFName}
        }

        if([String]::IsNullOrEmpty($BusinessOwnerLName)){
            Write-VPASOutput -str "NO BUSINESSOWNERLNAME FIELD SET, SKIPPING" -type M
            Write-Verbose "NO BUSINESS OWNER LAST NAME FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"BusinessOwnerLName"=$BusinessOwnerLName}
        }

        if([String]::IsNullOrEmpty($BusinessOwnerEmail)){
            Write-VPASOutput -str "NO BUSINESSOWNEREMAIL FIELD SET, SKIPPING" -type M
            Write-Verbose "NO BUSINESS OWNER EMAIL FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"BusinessOwnerEmail"=$BusinessOwnerEmail}
        }

        if([String]::IsNullOrEmpty($BusinessOwnerPhone)){
            Write-VPASOutput -str "NO BUSINESSOWNERPHONE FIELD SET, SKIPPING" -type M
            Write-Verbose "NO BUSINESS OWNER PHONE FIELD SET, LEAVING FIELD BLANK"
        }
        else{
            $targetVal += @{"BusinessOwnerPhone"=$BusinessOwnerPhone}
        }

        try{

            Write-Verbose "MAKING API CALL TO CYBERARK"
            $params = @{
                application = $targetVal
            }
            $log = Write-VPASTextRecorder -inputval $params -token $token -LogType PARAMS
            $params = $params | ConvertTo-Json

            if($NoSSL){
                Write-Verbose "NO SSL ENABLED, USING HTTP INSTEAD OF HTTPS"
                $uri = "http://$PVWA/PasswordVault/WebServices/PIMServices.svc/Applications/"
            }
            else{
                Write-Verbose "SSL ENABLED BY DEFAULT, USING HTTPS"
                $uri = "https://$PVWA/PasswordVault/WebServices/PIMServices.svc/Applications/"
            }

            if($sessionval){
                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -Body $params -ContentType "application/json" -WebSession $sessionval
            }
            else{
                $response = Invoke-RestMethod -Headers @{"Authorization"=$Header} -Uri $uri -Method POST -Body $params -ContentType "application/json"
            }
            Write-Verbose "PARSING DATA FROM CYBERARK"
            Write-Verbose "RETURNING TRUE"
            $log = Write-VPASTextRecorder -inputval "REST API COMMAND RETURNED: TRUE" -token $token -LogType MISC
            return $true
        }catch{
            $log = Write-VPASTextRecorder -inputval $_ -token $token -LogType ERROR
            $log = Write-VPASTextRecorder -inputval "REST API COMMAND RETURNED: FALSE" -token $token -LogType MISC
            Write-Verbose "FAILED TO ADD APPLICATION TO CYBERARK"
            Write-VPASOutput -str $_ -type E
            return $false
        }
    }
    End{
        $log = Write-VPASTextRecorder -inputval $CommandName -token $token -LogType DIVIDER
    }
}