private/export/Export-Database.ps1
|
<# .SYNOPSIS Creates a database with the data files found in the specified folder. #> function Export-Database { [CmdletBinding()] param ( # The path to the folder where all the files were exported. [Parameter(Mandatory = $true)] [string]$ExportPath ) $activity = "Creating database" Write-ZtProgress -Activity $activity -Status "Starting" Write-PSFMessage "Importing data from $ExportPath" -Tag Import $dbFolderName = 'db' $dbFolder = Join-Path $ExportPath $dbFolderName $absExportPath = $ExportPath | Resolve-Path $dbPath = Join-Path $absExportPath $dbFolderName "zt.db" if (Test-Path $dbFolder) { Write-PSFMessage "Clearing previous db $dbFolder" -Tag Import $db = Connect-Database -Path $dbPath $sqlTemp = "FORCE CHECKPOINT;" Invoke-DatabaseQuery -Database $db -Sql $sqlTemp -NonQuery Disconnect-Database -Database $db Remove-Item $dbFolder -Recurse -Force | Out-Null # Remove the existing database } New-Item -ItemType Directory -Path $dbFolder -Force -ErrorAction Stop | Out-Null $db = Connect-Database -Path $dbPath Import-Table -db $db -absExportPath $absExportPath -tableName 'User' Import-Table -db $db -absExportPath $absExportPath -tableName 'Application' Import-Table -db $db -absExportPath $absExportPath -tableName 'ServicePrincipal' Import-Table -db $db -absExportPath $absExportPath -tableName 'ServicePrincipalSignIn' Import-Table -db $db -absExportPath $absExportPath -tableName 'SignIn' Import-Table -db $db -absExportPath $absExportPath -tableName 'RoleDefinition' Import-Table -db $db -absExportPath $absExportPath -tableName 'RoleAssignment' Import-Table -db $db -absExportPath $absExportPath -tableName 'RoleAssignmentGroup' Import-Table -db $db -absExportPath $absExportPath -tableName 'RoleEligibilityScheduleRequest' Import-Table -db $db -absExportPath $absExportPath -tableName 'RoleEligibilityScheduleRequestGroup' Import-Table -db $db -absExportPath $absExportPath -tableName 'UserRegistrationDetails' New-ViewRole -db $db return $db } function Import-Table($db, $absExportPath, $tableName) { Write-PSFMessage "Importing table $tableName" -Tag Import $folderPath = Join-Path $absExportPath $tableName # Copy the model file if it exists (needed to create table schema to avoid sql errors when there is no data) $modelFilePath = Join-Path -Path $PSScriptRoot -ChildPath "model/$tableName-model.json" if(Test-Path $modelFilePath) { Copy-Item -Path $modelFilePath -Destination $folderPath -Force } $filePath = Join-Path $folderPath "$tableName*.json" New-EntraTable -Connection $db -TableName $tableName -FilePath $filePath } function Get-DbConnection ($DbPath) { $db = [DuckDB.NET.Data.DuckDBConnection]::new("Data Source=$DbPath") $db.Open() return $db } function Close-DbConnection ($db) { $db.Close() $db.Dispose() } function New-ViewRole($db){ $sql = @" create view vwRole as select cast(ra."roleDefinitionId" as varchar) roleDefinitionId, ra.principal.displayName as principalDisplayName, rd.displayName as roleDisplayName, cast(ra.principal.userPrincipalName as varchar) userPrincipalName, rd.isPrivileged, cast(ra.principal."@odata.type" as varchar) "@odata.type", cast(ra.principalId as varchar) principalId, ra.principalOrganizationId, ra.principal.servicePrincipalType, 'Permanent' as privilegeType from main."RoleAssignment" ra left join main."RoleDefinition" rd on ra."roleDefinitionId" = rd.id UNION ALL select cast(re."roleDefinitionId" as varchar), cast(re.principal.displayName as varchar) as principalDisplayName, rd.displayName as roleDisplayName, cast(re.principal.userPrincipalName as varchar), rd.isPrivileged, cast(re.principal."@odata.type" as varchar), cast(re.principalId as varchar) principalId, null as principalOrganizationId, null as servicePrincipalType, 'Eligible' as privilegeType from main."RoleEligibilityScheduleRequest" re left join main."RoleDefinition" rd on re."roleDefinitionId" = rd.id where re."roleDefinitionId" is not null "@ Invoke-DatabaseQuery -Database $db -Sql $sql -NonQuery } |