forked from Badgerati/Pode
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathWeb-SecretsLocal.ps1
More file actions
90 lines (67 loc) · 3.13 KB
/
Web-SecretsLocal.ps1
File metadata and controls
90 lines (67 loc) · 3.13 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
<#
.SYNOPSIS
A sample PowerShell script to set up a Pode server with secret management using Microsoft.PowerShell.SecretStore.
.DESCRIPTION
This script sets up a Pode server listening on port 8081 with secret management capabilities.
It demonstrates how to register a secret vault, set and get secrets, and manage secrets using Pode routes.
Make sure to install the Microsoft.PowerShell.SecretManagement and Microsoft.PowerShell.SecretStore modules.
.EXAMPLE
To run the sample: ./Web-SecretsLocal.ps1
Invoke-RestMethod -Uri http://localhost:8081/module/ -Method Get
Invoke-RestMethod -Uri http://localhost:8081/module/ -Method Post -body (@{value = 'my value'}| ConvertTo-Json)
Invoke-RestMethod -Uri http://localhost:8081/adhoc/mykey -Method Post -body (@{value = 'my value'}| ConvertTo-Json)
Invoke-RestMethod -Uri http://localhost:8081/adhoc/mykey -Method Get
Invoke-RestMethod -Uri http://localhost:8081/adhoc/mykey -Method Delete
.LINK
https://github.com/Badgerati/Pode/blob/develop/examples/Web-SecretsLocal.ps1
.NOTES
Author: Pode Team
License: MIT License
#>
try {
# Determine the script path and Pode module path
$ScriptPath = (Split-Path -Parent -Path $MyInvocation.MyCommand.Path)
$podePath = Split-Path -Parent -Path $ScriptPath
# Import the Pode module from the source path if it exists, otherwise from installed modules
if (Test-Path -Path "$($podePath)/src/Pode.psm1" -PathType Leaf) {
Import-Module "$($podePath)/src/Pode.psm1" -Force -ErrorAction Stop
}
else {
Import-Module -Name 'Pode' -MaximumVersion 2.99 -ErrorAction Stop
}
}
catch { throw }
# or just:
# Import-Module Pode
Start-PodeServer -Threads 2 {
# listen
Add-PodeEndpoint -Address localhost -Port 8081 -Protocol Http
# logging
New-PodeLoggingMethod -Terminal | Enable-PodeErrorLogging
# secret manage local vault
$params = @{
Name = 'PodeTest_LocalVault'
ModuleName = 'Microsoft.PowerShell.SecretStore'
UnlockSecret = 'Sup3rSecur3Pa$$word!'
}
Register-PodeSecretVault @params
# set a secret in the local vault
Set-PodeSecret -Key 'hello' -Vault 'PodeTest_LocalVault' -InputObject 'world'
# mount a secret from local vault
Mount-PodeSecret -Name 'hello' -Vault 'PodeTest_LocalVault' -Key 'hello'
# routes to get/update secret in local vault
Add-PodeRoute -Method Get -Path '/module' -ScriptBlock {
Write-PodeJsonResponse @{ Value = $secret:hello }
}
Add-PodeRoute -Method Post -Path '/module' -ScriptBlock {
$secret:hello = $WebEvent.Data.Value
}
Add-PodeRoute -Method Post -Path '/adhoc/:key' -ScriptBlock {
Set-PodeSecret -Key $WebEvent.Parameters['key'] -Vault 'PodeTest_LocalVault' -InputObject $WebEvent.Data['value']
Mount-PodeSecret -Name $WebEvent.Data['name'] -Vault 'PodeTest_LocalVault' -Key $WebEvent.Parameters['key']
}
Add-PodeRoute -Method Delete -Path '/adhoc/:key' -ScriptBlock {
Remove-PodeSecret -Key $WebEvent.Parameters['key'] -Vault 'PodeTest_LocalVault'
Dismount-PodeSecret -Name $WebEvent.Parameters['key']
}
}