Publish preview version (#42)

* adds certificate store location * add additional certificate store tests * add cert store tests for New-CredentialStoreItem * fix test * add error handling for credential store path * add Import-CSCertificate helper function * Import new certificate if param is given * fix extension filter * add linux error message * fix pester test for linux * update cert helper functions * export helper functions * fix cs cert import * simplify cs cret lookup * remove obsolete functions * fix pester test for linux * fix error type for linux * fix var name * fix pester test * disable travis artifact upload * update cert lookup for item functions * debug build error * use cert instance constructor for linux * disable debug output * remove obsolete exports
2019-04-04 17:02:17 +02:00
parent 5a68527061
commit d92d963979
12 changed files with 422 additions and 166 deletions
--- a/src/Store/New-CredentialStore.ps1
+++ b/src/Store/New-CredentialStore.ps1
@ -59,19 +59,23 @@ function New-CredentialStore {

        [Parameter(Mandatory = $false, ParameterSetName = "Shared")]
        [ValidateNotNullOrEmpty()]
-        [string]$Path,
+        [System.IO.FileInfo]$Path,

        [Parameter(Mandatory = $false, ParameterSetName = "Private")]
        [Parameter(Mandatory = $false, ParameterSetName = "Shared")]
-        [switch]$Force,
+        [Switch]$Force,

        [Parameter(Mandatory = $false, ParameterSetName = "Private")]
        [Parameter(Mandatory = $false, ParameterSetName = "Shared")]
-        [switch]$PassThru,
+        [Switch]$PassThru,

        [Parameter(Mandatory = $false, ParameterSetName = "Private")]
        [Parameter(Mandatory = $false, ParameterSetName = "Shared")]
-        [Switch]$SkipPFXCertCreation
+        [Switch]$SkipPFXCertCreation,
+
+        [Parameter(Mandatory = $false, ParameterSetName = "Private")]
+        [Parameter(Mandatory = $false, ParameterSetName = "Shared")]
+        [Switch]$UseCertStore
    )

    begin {
@ -80,6 +84,28 @@ function New-CredentialStore {

        # Set latest Credential Store version
        # Set-Variable -Name "CSVersion" -Value "2.0.0" -Option Constant -Scope
+
+        # test if the path input is a valid file path
+        if ($PSCmdlet.MyInvocation.BoundParameters.ContainsKey('Path')) {
+            if ($Path.Attributes -contains 'Directory') {
+                $ErrorParams = @{
+                    ErrorAction = 'Stop'
+                    Exception   = [System.IO.InvalidDataException]::new(
+                        'Please provide a full path containing the credential store file name with the .json extension!'
+                    )
+                }
+                Write-Error @ErrorParams
+            }
+            elseif ( ($null -eq $Path.Extension) -or ($Path.Extension -ne '.json')) {
+                $ErrorParams = @{
+                    ErrorAction = 'Stop'
+                    Exception   = [System.IO.InvalidDataException]::new(
+                        'Your provided path does not conain the required file extension .json !'
+                    )
+                }
+                Write-Error @ErrorParams
+            }
+        }
    }

    process {
@ -112,8 +138,8 @@ function New-CredentialStore {
                State                  = 'PSCredentialStore'
                City                   = 'PSCredentialStore'
                Organization           = 'PSCredentialStore'
-                OrganizationalUnitName = ' '
-                CommonName             = 'PrivateStore'
+                OrganizationalUnitName = $PSCmdlet.ParameterSetName
+                CommonName             = 'PSCredentialStore'
            }
            $CRTAttribute = New-CRTAttribute @CRTParams

@ -133,6 +159,7 @@ function New-CredentialStore {
                Confirm      = $false
            }

+            # test if there is already a cert
            if ((Test-Path $PfxParams.CertName) -and (! $Force.IsPresent)) {
                $ErrorParams = @{
                    Exception   = [System.IO.InvalidDataException]::new(
@ -176,8 +203,15 @@ function New-CredentialStore {
            Type           = $null
        }
        if (! $SkipPFXCertCreation.IsPresent) {
-            $ObjProperties.PfXCertificate = $PfxParams.CertName
            $ObjProperties.Thumbprint = $FreshCert.Thumbprint
+
+            if (!$UseCertStore.IsPresent) {
+                $ObjProperties.PfxCertificate = $PfxParams.CertName
+            }
+            else {
+                Write-Verbose 'Importing new PFX certificate file...'
+                Import-CSCertificate -Path $PfxParams.CertName -StoreName My -StoreLocation CurrentUser
+            }
        }

        if ($PSCmdlet.ParameterSetName -eq "Shared") {
--- a/src/Store/Update-CredentialStore.ps1
+++ b/src/Store/Update-CredentialStore.ps1
@ -1,140 +0,0 @@
-function Update-CredentialStore {
-    <#
-    .SYNOPSIS
-        A brief description of the function or script.
-
-    .DESCRIPTION
-        Describe the function of the script using a single sentence or more.
-
-    .PARAMETER One
-        Description of the Parameter (what it does)
-
-    .INPUTS
-        Describe the script input parameters (if any), otherwise it may also list the word "[None]".
-
-    .OUTPUTS
-        Describe the script output parameters (if any), otherwise it may also list the word "[None]".
-
-    .EXAMPLE
-        .\Remove-Some-Script.ps1 -One content
-
-    .NOTES
-        File Name   : Update-CredentialStore.ps1
-        Author      : Marco Blessing - marco.blessing@googlemail.com
-        Requires    :
-
-    .LINK
-        https://github.com/OCram85/PSCredentialStore
-    #>
-    [CmdletBinding()]
-    [OutputType()]
-    param(
-        [Parameter(Mandatory = $false)]
-        [ValidateNotNullOrEmpty()]
-        [Version]$From = '1.2.0',
-
-        [Parameter(Mandatory = $false)]
-        [ValidateNotNullOrEmpty()]
-        [Version]$To = '2.0.0',
-
-        [Parameter(Mandatory = $true)]
-        [ValidateNotNullOrEmpty()]
-        [string]$Path,
-
-        [Parameter(Mandatory = $true)]
-        [ValidateNotNullOrEmpty()]
-        [string]$PfxCertificate
-
-    )
-    begin {
-    }
-    process {
-        if (Test-Path -Path $Path) {
-            $CSOld = Get-CredentialStore -Shared -Path $Path -ErrorAction Stop
-            if ($CSOld.Version -ne $From) {
-                $ErrorParams = @{
-                    Message     = 'Can not migrate CredentialStore from version {0} to {1}' -f $From, $To
-                    ErrorAction = 'Stop'
-                    Exception   = [System.Exception]::new()
-                }
-                Write-Error @ErrorParams
-            }
-
-            $CSNew = [PSCustomObject]@{
-                PSTypeName     = 'PSCredentialStore.Store'
-                Version        = $To
-                Created        = $CurrentDate
-                PfxCertificate = $null
-                Thumbprint     = $null
-                Type           = $null
-            }
-
-            if ($PWD -eq (Get-DefaultCredentialStorePath)) {
-                $CSNew.Type = 'Private'
-            }
-            elseif ($PWD -eq (Get-DefaultCredentialStorePath -Shared)) {
-                $CSNew.Type = 'Shared'
-            }
-            else {
-                $ErrorParams = @{
-                    Message     = 'Can not determine a valid CredentialStore Type!'
-                    ErrorAction = 'Stop'
-                    Exception   = [System.Exception]::new()
-                }
-                Write-Error @ErrorParams
-            }
-            $Cert = Get-PfxCertificate -FilePath $PfxCertificate -ErrorAction Stop
-
-            $CSNew.PfxCertificate = Join-Path -Path $PfxCertificate
-            $CSNew.Thumbprint = $Cert.Thumbprint
-
-
-            $CredentialItems = $CSOld | Get-Member -MemberType NoteProperty | Where-Object {
-                $_.Definition -like "*.PSCustomObject*"
-            } | Select-Object -ExpandProperty Name
-
-            # iterate through all existing items
-            foreach ($Item in $CredentialItems) {
-
-                $CurrentDate = Get-Date -UFormat "%Y-%m-%d %H:%M:%S"
-                $RSAKey = Get-RandomAESKey
-
-                $CredentialObj = [PSCustomObject]@{
-                    User         = $Item.UserName
-                    Password     = $null
-                    Created      = $CurrentDate
-                    LastChange   = $null
-                    EncryptedKey = [Convert]::ToBase64String(
-                        $Cert.PublicKey.Key.Encrypt(
-                            $RSAKey,
-                            [System.Security.Cryptography.RSAEncryptionPadding]::Pkcs1
-                        )
-                    )
-                }
-                if ($CSOld.Type -eq 'Private') {
-                    $CredentialObject.Password = ConvertTo-SecureString -SecureString $Item.Password | ConvertFrom-SecureString -Key $RSAKey
-                }
-                elseif ($CSNew.Type -eq 'Shared') {
-                    $ChallengeKey = [io.file]::ReadAllBytes((Join-Path -Path $PWD -ChildPath '/Challenge.bin'))
-                    $CredentialObject.Password = ConvertTo-SecureString -SecureString $Item.Password -Key $ChallengeKey | ConvertFrom-SecureString -Key $RSAKey
-                }
-                Add-Member -InputObject $CSNew -Name (
-                    ($Item | Get-Variable).Name
-                ) -MemberType NoteProperty -Value $CredentialObj
-            }
-            $CSNew | ConvertTo-Json -Depth 5 | Out-File -LiteralPath (
-                Join-Path -Path $PWD -ChildPath './CredentialStore.json'
-            ) -Encoding utf8 -Confirm:$true
-        }
-        else {
-            $ErrorParams = @{
-                Message     = 'Could not find the given CredentialStore path!'
-                ErrorAction = 'Stop'
-                Exception   = [System.IO.FileNotFoundException]::new()
-            }
-            Write-Error @ErrorParams
-        }
-    }
-    end {
-    }
-}