hsdp-iam

0.1.32

Public/Group/Add-Group.ps1

                                <#

    .SYNOPSIS

    Create a new group

    .DESCRIPTION

    Creates a new group within an organization. A user with GROUP.WRITE permission within the organization will be allowed to create a group

    in that organization. If a group with same name already exists in the organization, then the request will fail.

    .INPUTS

    The managing organization resource object

    .OUTPUTS

    The new group resource object

    .PARAMETER Org

    The managing organization resource object where the group will be created

    .PARAMETER Name

    The name of the group

    .PARAMETER Description

    The description of the group

    .EXAMPLE

    $group = $org | Add-Group -Name "My Group"

    .LINK

    https://www.hsdp.io/documentation/identity-and-access-management-iam/api-documents/resource-reference-api/user-api/group-api#/Group%20Management/post_authorize_identity_Group

    .NOTES

    POST: /authorize/identity/Group v1

#>

function Add-Group {

    [CmdletBinding()]

    [OutputType([PSObject])]

    param(

        [Parameter(Mandatory, Position = 0, ValueFromPipeline)]

        [ValidateNotNullOrEmpty()]

        [PSObject]$Org,

        [Parameter(Mandatory, Position = 1)]

        [ValidateNotNullOrEmpty()]

        [String]$Name,

        [Parameter(Position = 2)]

        [String]$Description = ""

    )

    begin {

        Write-Verbose "[$($MyInvocation.MyCommand.Name)] Function started"

    }

    process {

        Write-Debug "[$($MyInvocation.MyCommand.Name)] PSBoundParameters: $($PSBoundParameters | Out-String)"

        $Group = @{

            "name"                 = $Name;

            "managingOrganization" = $Org.id

            "description"          = $Description

        }

        $response = (Invoke-ApiRequest -Path "/authorize/identity/Group" -Version 1 -Method Post -Body $Group)

        Write-Debug ($response | ConvertTo-Json)

        $response | Add-Member -MemberType ScriptMethod -Name "Setdentity" -Value { param($Ids) $this | Set-GroupIdentity -Ids $Ids }

        $response | Add-Member -MemberType ScriptMethod -Name "RemoveIdentity" -Value { param($Ids) $this | Remove-GroupIdentity -Ids $Ids }

        $response | Add-Member -MemberType ScriptMethod -Name "SetRole" -Value { param($Role) $this | Set-GroupRole -Roles @($Role) }

        $response | Add-Member -MemberType ScriptMethod -Name "RemoveRole" -Value { param($Role) $this | Remove-GroupRole -Role $Role }

        $response | Add-Member -MemberType ScriptMethod -Name "SetMember" -Value { param($User) $this | Set-GroupMember -User $User }

        $response | Add-Member -MemberType ScriptMethod -Name "RemoveMember" -Value { param($User) $this | Remove-GroupMember -User $User }

        Write-Output @($response)

    }

    end {

        Write-Verbose "[$($MyInvocation.MyCommand.Name)] Complete"

    }

}