mirror of
https://github.com/benclaussen/NetboxPS.git
synced 2025-12-14 02:12:28 +00:00
Merge pull request #12 from alagoutte/enhance-connect
Enhance Connection (Support -SkipCertificateCheck, Cipher options) Indentation fixes Fixes #8
This commit is contained in:
Ben Claussen
GitHub
commit
1f66348205
13 changed files with 172 additions and 92 deletions
|
|
@ -38,15 +38,17 @@ function InvokeNetboxRequest {
|
||||||
$Headers.Authorization = "Token {0}" -f $creds.GetNetworkCredential().Password
|
$Headers.Authorization = "Token {0}" -f $creds.GetNetworkCredential().Password
|
||||||
|
|
||||||
$splat = @{
|
$splat = @{
|
||||||
'Method' = $Method
|
'Method' = $Method
|
||||||
'Uri' = $URI.Uri.AbsoluteUri # This property auto generates the scheme, hostname, path, and query
|
'Uri' = $URI.Uri.AbsoluteUri # This property auto generates the scheme, hostname, path, and query
|
||||||
'Headers' = $Headers
|
'Headers' = $Headers
|
||||||
'TimeoutSec' = $Timeout
|
'TimeoutSec' = $Timeout
|
||||||
'ContentType' = 'application/json'
|
'ContentType' = 'application/json'
|
||||||
'ErrorAction' = 'Stop'
|
'ErrorAction' = 'Stop'
|
||||||
'Verbose' = $VerbosePreference
|
'Verbose' = $VerbosePreference
|
||||||
}
|
}
|
||||||
|
|
||||||
|
$splat += Get-NetboxInvokeParams
|
||||||
|
|
||||||
if ($Body) {
|
if ($Body) {
|
||||||
Write-Verbose "BODY: $($Body | ConvertTo-Json -Compress)"
|
Write-Verbose "BODY: $($Body | ConvertTo-Json -Compress)"
|
||||||
$null = $splat.Add('Body', ($Body | ConvertTo-Json -Compress))
|
$null = $splat.Add('Body', ($Body | ConvertTo-Json -Compress))
|
||||||
|
|
@ -93,11 +95,13 @@ function InvokeNetboxRequest {
|
||||||
if ($Raw) {
|
if ($Raw) {
|
||||||
Write-Verbose "Returning raw result by choice"
|
Write-Verbose "Returning raw result by choice"
|
||||||
return $result
|
return $result
|
||||||
} else {
|
}
|
||||||
|
else {
|
||||||
if ($result.psobject.Properties.Name.Contains('results')) {
|
if ($result.psobject.Properties.Name.Contains('results')) {
|
||||||
Write-Verbose "Found Results property on data, returning results directly"
|
Write-Verbose "Found Results property on data, returning results directly"
|
||||||
return $result.Results
|
return $result.Results
|
||||||
} else {
|
}
|
||||||
|
else {
|
||||||
Write-Verbose "Did NOT find results property on data, returning raw result"
|
Write-Verbose "Did NOT find results property on data, returning raw result"
|
||||||
return $result
|
return $result
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,5 @@
|
||||||
function Connect-NetboxAPI {
|
function Connect-NetboxAPI {
|
||||||
<#
|
<#
|
||||||
.SYNOPSIS
|
.SYNOPSIS
|
||||||
Connects to the Netbox API and ensures Credential work properly
|
Connects to the Netbox API and ensures Credential work properly
|
||||||
|
|
||||||
|
|
@ -49,13 +49,17 @@
|
||||||
|
|
||||||
[Parameter(ParameterSetName = 'URI',
|
[Parameter(ParameterSetName = 'URI',
|
||||||
Mandatory = $true)]
|
Mandatory = $true)]
|
||||||
[string]$URI
|
[string]$URI,
|
||||||
|
|
||||||
|
[Parameter(Mandatory = $false)]
|
||||||
|
[switch]$SkipCertificateCheck = $false
|
||||||
)
|
)
|
||||||
|
|
||||||
if (-not $Credential) {
|
if (-not $Credential) {
|
||||||
try {
|
try {
|
||||||
$Credential = Get-NetboxCredential -ErrorAction Stop
|
$Credential = Get-NetboxCredential -ErrorAction Stop
|
||||||
} catch {
|
}
|
||||||
|
catch {
|
||||||
# Credentials are not set... Try to obtain from the user
|
# Credentials are not set... Try to obtain from the user
|
||||||
if (-not ($Credential = Get-Credential -UserName 'username-not-applicable' -Message "Enter token for Netbox")) {
|
if (-not ($Credential = Get-Credential -UserName 'username-not-applicable' -Message "Enter token for Netbox")) {
|
||||||
throw "Token is necessary to connect to a Netbox API."
|
throw "Token is necessary to connect to a Netbox API."
|
||||||
|
|
@ -63,7 +67,22 @@
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
$null = Set-NetboxCredential -Credential $Credential
|
$invokeParams = @{ SkipCertificateCheck = $SkipCertificateCheck; }
|
||||||
|
|
||||||
|
if ("Desktop" -eq $PSVersionTable.PsEdition) {
|
||||||
|
#Remove -SkipCertificateCheck from Invoke Parameter (not supported <= PS 5)
|
||||||
|
$invokeParams.remove("SkipCertificateCheck")
|
||||||
|
}
|
||||||
|
|
||||||
|
#for PowerShell (<=) 5 (Desktop), Enable TLS 1.1, 1.2 and Disable SSL chain trust
|
||||||
|
if ("Desktop" -eq $PSVersionTable.PsEdition) {
|
||||||
|
#Enable TLS 1.1 and 1.2
|
||||||
|
Set-NetboxCipherSSL
|
||||||
|
if ($SkipCertificateCheck) {
|
||||||
|
#Disable SSL chain trust...
|
||||||
|
Set-NetboxuntrustedSSL
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
switch ($PSCmdlet.ParameterSetName) {
|
switch ($PSCmdlet.ParameterSetName) {
|
||||||
'Manual' {
|
'Manual' {
|
||||||
|
|
@ -79,18 +98,22 @@
|
||||||
}
|
}
|
||||||
|
|
||||||
$null = Set-NetboxHostName -Hostname $uriBuilder.Host
|
$null = Set-NetboxHostName -Hostname $uriBuilder.Host
|
||||||
|
$null = Set-NetboxCredential -Credential $Credential
|
||||||
$null = Set-NetboxHostScheme -Scheme $uriBuilder.Scheme
|
$null = Set-NetboxHostScheme -Scheme $uriBuilder.Scheme
|
||||||
$null = Set-NetboxHostPort -Port $uriBuilder.Port
|
$null = Set-NetboxHostPort -Port $uriBuilder.Port
|
||||||
|
$null = Set-NetboxInvokeParams -invokeParams $invokeParams
|
||||||
|
|
||||||
try {
|
try {
|
||||||
Write-Verbose "Verifying API connectivity..."
|
Write-Verbose "Verifying API connectivity..."
|
||||||
$null = VerifyAPIConnectivity
|
$null = VerifyAPIConnectivity
|
||||||
} catch {
|
}
|
||||||
|
catch {
|
||||||
Write-Verbose "Failed to connect. Generating error"
|
Write-Verbose "Failed to connect. Generating error"
|
||||||
Write-Verbose $_.Exception.Message
|
Write-Verbose $_.Exception.Message
|
||||||
if (($_.Exception.Response) -and ($_.Exception.Response.StatusCode -eq 403)) {
|
if (($_.Exception.Response) -and ($_.Exception.Response.StatusCode -eq 403)) {
|
||||||
throw "Invalid token"
|
throw "Invalid token"
|
||||||
} else {
|
}
|
||||||
|
else {
|
||||||
throw $_
|
throw $_
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
11
Functions/Setup/Get-NetboxInvokeParams.ps1
Normal file
11
Functions/Setup/Get-NetboxInvokeParams.ps1
Normal file
|
|
@ -0,0 +1,11 @@
|
||||||
|
function Get-NetboxInvokeParams {
|
||||||
|
[CmdletBinding()]
|
||||||
|
param ()
|
||||||
|
|
||||||
|
Write-Verbose "Getting Netbox InvokeParams"
|
||||||
|
if ($null -eq $script:NetboxConfig.InvokeParams) {
|
||||||
|
throw "Netbox Invoke Parms is not set! You may set it with Set-NetboxInvokeParams -InvokeParams ..."
|
||||||
|
}
|
||||||
|
|
||||||
|
$script:NetboxConfig.InvokeParams
|
||||||
|
}
|
||||||
8
Functions/Setup/Set-NetboxCipherSSL.ps1
Normal file
8
Functions/Setup/Set-NetboxCipherSSL.ps1
Normal file
|
|
@ -0,0 +1,8 @@
|
||||||
|
Function Set-NetboxCipherSSL {
|
||||||
|
[Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSUseShouldProcessforStateChangingFunctions", "")]
|
||||||
|
Param( )
|
||||||
|
# Hack for allowing TLS 1.1 and TLS 1.2 (by default it is only SSL3 and TLS (1.0))
|
||||||
|
$AllProtocols = [System.Net.SecurityProtocolType]'Ssl3,Tls,Tls11,Tls12'
|
||||||
|
[System.Net.ServicePointManager]::SecurityProtocol = $AllProtocols
|
||||||
|
|
||||||
|
}
|
||||||
|
|
@ -1,16 +1,16 @@
|
||||||
function Set-NetboxCredential {
|
function Set-NetboxCredential {
|
||||||
[CmdletBinding(DefaultParameterSetName = 'CredsObject',
|
[CmdletBinding(DefaultParameterSetName = 'CredsObject',
|
||||||
ConfirmImpact = 'Low',
|
ConfirmImpact = 'Low',
|
||||||
SupportsShouldProcess = $true)]
|
SupportsShouldProcess = $true)]
|
||||||
[OutputType([pscredential])]
|
[OutputType([pscredential])]
|
||||||
param
|
param
|
||||||
(
|
(
|
||||||
[Parameter(ParameterSetName = 'CredsObject',
|
[Parameter(ParameterSetName = 'CredsObject',
|
||||||
Mandatory = $true)]
|
Mandatory = $true)]
|
||||||
[pscredential]$Credential,
|
[pscredential]$Credential,
|
||||||
|
|
||||||
[Parameter(ParameterSetName = 'UserPass',
|
[Parameter(ParameterSetName = 'UserPass',
|
||||||
Mandatory = $true)]
|
Mandatory = $true)]
|
||||||
[securestring]$Token
|
[securestring]$Token
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -1,6 +1,6 @@
|
||||||
function Set-NetboxHostName {
|
function Set-NetboxHostName {
|
||||||
[CmdletBinding(ConfirmImpact = 'Low',
|
[CmdletBinding(ConfirmImpact = 'Low',
|
||||||
SupportsShouldProcess = $true)]
|
SupportsShouldProcess = $true)]
|
||||||
[OutputType([string])]
|
[OutputType([string])]
|
||||||
param
|
param
|
||||||
(
|
(
|
||||||
|
|
|
||||||
15
Functions/Setup/Set-NetboxInvokeParams.ps1
Normal file
15
Functions/Setup/Set-NetboxInvokeParams.ps1
Normal file
|
|
@ -0,0 +1,15 @@
|
||||||
|
function Set-NetboxInvokeParams {
|
||||||
|
[CmdletBinding(ConfirmImpact = 'Low',
|
||||||
|
SupportsShouldProcess = $true)]
|
||||||
|
[OutputType([string])]
|
||||||
|
param
|
||||||
|
(
|
||||||
|
[Parameter(Mandatory = $true)]
|
||||||
|
[array]$InvokeParams
|
||||||
|
)
|
||||||
|
|
||||||
|
if ($PSCmdlet.ShouldProcess('Netbox Invoke Params', 'Set')) {
|
||||||
|
$script:NetboxConfig.InvokeParams = $InvokeParams
|
||||||
|
$script:NetboxConfig.InvokeParams
|
||||||
|
}
|
||||||
|
}
|
||||||
19
Functions/Setup/Set-NetboxUnstrustedSSL.ps1
Normal file
19
Functions/Setup/Set-NetboxUnstrustedSSL.ps1
Normal file
|
|
@ -0,0 +1,19 @@
|
||||||
|
Function Set-NetboxUntrustedSSL {
|
||||||
|
[Diagnostics.CodeAnalysis.SuppressMessageAttribute("PSUseShouldProcessforStateChangingFunctions", "")]
|
||||||
|
Param( )
|
||||||
|
# Hack for allowing untrusted SSL certs with https connections
|
||||||
|
Add-Type -TypeDefinition @"
|
||||||
|
using System.Net;
|
||||||
|
using System.Security.Cryptography.X509Certificates;
|
||||||
|
public class TrustAllCertsPolicy : ICertificatePolicy {
|
||||||
|
public bool CheckValidationResult(
|
||||||
|
ServicePoint srvPoint, X509Certificate certificate,
|
||||||
|
WebRequest request, int certificateProblem) {
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
"@
|
||||||
|
|
||||||
|
[System.Net.ServicePointManager]::CertificatePolicy = New-Object -TypeName TrustAllCertsPolicy
|
||||||
|
|
||||||
|
}
|
||||||
|
|
@ -14,16 +14,16 @@
|
||||||
|
|
||||||
|
|
||||||
function Get-NetboxAPIDefinition {
|
function Get-NetboxAPIDefinition {
|
||||||
[CmdletBinding()]
|
[CmdletBinding()]
|
||||||
param ()
|
param ()
|
||||||
|
|
||||||
#$URI = "https://netbox.neonet.org/api/docs/?format=openapi"
|
#$URI = "https://netbox.neonet.org/api/docs/?format=openapi"
|
||||||
|
|
||||||
$Segments = [System.Collections.ArrayList]::new(@('docs'))
|
$Segments = [System.Collections.ArrayList]::new(@('docs'))
|
||||||
|
|
||||||
$URIComponents = BuildURIComponents -URISegments $Segments -ParametersDictionary @{'format' = 'openapi'}
|
$URIComponents = BuildURIComponents -URISegments $Segments -ParametersDictionary @{'format' = 'openapi' }
|
||||||
|
|
||||||
$URI = BuildNewURI -Segments $URIComponents.Segments -Parameters $URIComponents.Parameters -SkipConnectedCheck
|
$URI = BuildNewURI -Segments $URIComponents.Segments -Parameters $URIComponents.Parameters -SkipConnectedCheck
|
||||||
|
|
||||||
InvokeNetboxRequest -URI $URI -Timeout 10
|
InvokeNetboxRequest -URI $URI -Timeout 10
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -9,8 +9,8 @@
|
||||||
if ((-not ($script:NetboxConfig)) -or $Overwrite) {
|
if ((-not ($script:NetboxConfig)) -or $Overwrite) {
|
||||||
Write-Verbose "Creating NetboxConfig hashtable"
|
Write-Verbose "Creating NetboxConfig hashtable"
|
||||||
$script:NetboxConfig = @{
|
$script:NetboxConfig = @{
|
||||||
'Connected' = $false
|
'Connected' = $false
|
||||||
'Choices' = @{
|
'Choices' = @{
|
||||||
}
|
}
|
||||||
'APIDefinition' = $null
|
'APIDefinition' = $null
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -4,7 +4,7 @@
|
||||||
|
|
||||||
$uriSegments = [System.Collections.ArrayList]::new(@('extras'))
|
$uriSegments = [System.Collections.ArrayList]::new(@('extras'))
|
||||||
|
|
||||||
$uri = BuildNewURI -Segments $uriSegments -Parameters @{'format' = 'json'} -SkipConnectedCheck
|
$uri = BuildNewURI -Segments $uriSegments -Parameters @{'format' = 'json' } -SkipConnectedCheck
|
||||||
|
|
||||||
InvokeNetboxRequest -URI $uri
|
InvokeNetboxRequest -URI $uri
|
||||||
}
|
}
|
||||||
Loading…
Add table
Reference in a new issue