
Set-StrictMode -Version Latest

. $PSScriptRoot\Framework\Framework.ps1

@("$PSScriptRoot\SVT") |
    ForEach-Object {
    (Get-ChildItem -Path $_ -Recurse -File -Include "*.ps1") |
        ForEach-Object {
        . $_.FullName

function Set-AzSKAADPolicySettings {
    This command would help to set online policy store URL.
    This command would help to set online policy store URL.
    .PARAMETER ScannerToolPath
        Provide the credential scanner tool path
    .PARAMETER ScannerToolName
        Provide the credential scanner tool name.

        [Parameter(Mandatory = $false, HelpMessage = "Provide scanner tool path")]

        [Parameter(Mandatory = $false, HelpMessage = "Provide scanner tool name")]

    Begin {
    Process {
        try {

            $azskSettings = [ConfigurationManager]::GetLocalAzSKSettings();
            if($ScannerToolPath -and $ScannerToolName)
                $azskSettings.ScanToolPath = $ScannerToolPath
                $azskSettings.ScanToolName = $ScannerToolName
            [EventBase]::PublishGenericCustomMessage("Successfully configured policy settings. `nStart a fresh PS console/session to ensure any policy updates are (re-)loaded.", [MessageType]::Warning);
        catch {
    End {

function Set-AzSKLocalAIOrgTelemetrySettings {
    This command would help to set local control telemetry settings.
    This command would help to set local control telemetry settings.
    .PARAMETER LocalAIOrgTelemetryKey
        Provide local telemetry key.
    .PARAMETER EnableLocalAIOrgTelemetry
        Enables local control telemetry.

        [Parameter(Mandatory = $true, HelpMessage = "Provide the local control telemetry key")]

        [Parameter(Mandatory = $true, HelpMessage = "Provide the flag to enable local control telemetry")]
    Begin {
    Process {
        try { 
            #TODO: This should support both params as optional (we can always throw an error if neither is provided)
            #TODO: That is, if a key is provided, assume bEnable=$true...else look for bEnabled and toggle telemetry.
            $azskSettings = [ConfigurationManager]::GetLocalAzSKSettings();
            $azskSettings.LocalControlTelemetryKey = $LocalAIOrgTelemetryKey
            $azskSettings.LocalEnableControlTelemetry = $EnableLocalAIOrgTelemetry
            [EventBase]::PublishGenericCustomMessage("Successfully set control telemetry settings");
        catch {
    End {

function Set-AzSKUsageTelemetryLevel {
    This command would help to set telemetry level.
    This command would help to set telemetry level.
    .PARAMETER Level
        Provide the telemetry level

        [Parameter(Mandatory = $true, HelpMessage = "Provide the telemetry level")]
        [ValidateSet("None", "Anonymous")]
    Begin {
    Process {
        try {
            $azskSettings = [ConfigurationManager]::GetLocalAzSKSettings();
            $azskSettings.UsageTelemetryLevel = $Level
            [EventBase]::PublishGenericCustomMessage("Successfully set usage telemetry level");
        catch {
    End {

function Set-AzSKMonitoringSettings
    This command would help in updating the Log Analytics configuration settings under the current powershell session.
    This command will update the Log Analytics settings under the current powershell session. This also remembers the current settings and use them in the subsequent sessions.
        Workspace ID of your Log Analytics instance. Control scan results get pushed to this instance.
        Shared key of your Log Analytics instance.
    .PARAMETER AltOMSWorkspaceID
        Workspace ID of your alternate Log Analytics instance. Control scan results get pushed to this instance.
    .PARAMETER AltOMSSharedKey
        Workspace shared key of your alternate Log Analytics instance.
    .PARAMETER Source
        Provide the source of Log Analytics Events. (e. g. CA,CICD,SDL)
    .PARAMETER Disable
        Use -Disable option to clean the Log Analytics setting under the current instance.

        [Parameter(Mandatory = $false, HelpMessage="Workspace ID of your Log Analytics instance. Control scan results get pushed to this instance.", ParameterSetName = "Setup")]

        [Parameter(Mandatory = $false, HelpMessage="Shared key of your Log Analytics instance.", ParameterSetName = "Setup")]

        [Parameter(Mandatory = $false, HelpMessage="Workspace ID of your alternate Log Analytics instance. Control scan results get pushed to this instance.", ParameterSetName = "Setup")]

        [Parameter(Mandatory = $false, HelpMessage="Shared key of your alternate Log Analytics instance.", ParameterSetName = "Setup")]

        [Parameter(Mandatory = $false, HelpMessage="Provide the source of Log Analytics Events.(e.g. CC,CICD,SDL)", ParameterSetName = "Setup")]

        [Parameter(Mandatory = $true, HelpMessage="Use -Disable option to clean the Log Analytics setting under the current instance.", ParameterSetName = "Disable")]

            $appSettings = [ConfigurationManager]::GetLocalAzSKSettings();
            if(-not $Disable) 
                if(-not [string]::IsNullOrWhiteSpace($OMSWorkspaceID) -and -not [string]::IsNullOrWhiteSpace($OMSSharedKey))
                    $appSettings.LAWSId = $OMSWorkspaceID
                    $appSettings.LAWSSharedKey = $OMSSharedKey
                elseif(([string]::IsNullOrWhiteSpace($OMSWorkspaceID) -and -not [string]::IsNullOrWhiteSpace($OMSSharedKey)) `
                        -and (-not [string]::IsNullOrWhiteSpace($OMSWorkspaceID) -and [string]::IsNullOrWhiteSpace($OMSSharedKey)))
                    [EventBase]::PublishGenericCustomMessage("You need to send both the OMSWorkspaceId and OMSSharedKey", [MessageType]::Error);
                if(-not [string]::IsNullOrWhiteSpace($AltOMSWorkspaceID) -and -not [string]::IsNullOrWhiteSpace($AltOMSSharedKey))
                    $appSettings.AltLAWSId = $AltOMSWorkspaceID
                    $appSettings.AltLAWSSharedKey = $AltOMSSharedKey
                elseif(([string]::IsNullOrWhiteSpace($AltOMSWorkspaceID) -and -not [string]::IsNullOrWhiteSpace($AltOMSSharedKey)) `
                        -and (-not [string]::IsNullOrWhiteSpace($AltOMSWorkspaceID) -and [string]::IsNullOrWhiteSpace($AltOMSSharedKey)))
                    [EventBase]::PublishGenericCustomMessage("You need to send both the AltOMSWorkspaceId and AltOMSSharedKey", [MessageType]::Error);
            else {
                $appSettings.LAWSId = ""
                $appSettings.LAWSSharedKey = ""
                $appSettings.AltLAWSId = ""
                $appSettings.AltLAWSSharedKey = ""
            if(-not [string]::IsNullOrWhiteSpace($Source))
                $appSettings.LASource = $Source
                $appSettings.LASource = "SDL"
            $appSettings.LAType = [LogAnalyticsHelper]::DefaultLAType
            [EventBase]::PublishGenericCustomMessage([Constants]::SingleDashLine + "`r`nWe have added new queries for the Monitoring solution. These will help reflect the aggregate control pass/fail status more accurately. Please go here to get them: `r`n",[MessageType]::Warning);
            [EventBase]::PublishGenericCustomMessage("Successfully changed policy settings");

function Set-AzSKPrivacyNoticeResponse {
    This command would help to set user preferences for EULA and Privacy.
    This command would help to set user preferences for EULA and Privacy.
    .PARAMETER AcceptPrivacyNotice
        Provide the flag to suppress the Privacy notice prompt and submit the acceptance. (Yes/No)

        [Parameter(Mandatory = $true, HelpMessage = "Provide the flag to suppress the Privacy notice prompt and submit the acceptance. (Yes/No)")]
        [ValidateSet("Yes", "No")]
    Begin {
    Process {
        try {
            $azskSettings = [ConfigurationManager]::GetLocalAzSKSettings();

            if ($AcceptPrivacyNotice -eq "yes") {
                $azskSettings.PrivacyNoticeAccepted = $true
                $azskSettings.UsageTelemetryLevel = "Anonymous"

            if ($AcceptPrivacyNotice -eq "no") {
                $azskSettings.PrivacyNoticeAccepted = $false
                $azskSettings.UsageTelemetryLevel = "None"
            [EventBase]::PublishGenericCustomMessage("Successfully updated privacy settings.");
        catch {

    End {

function Clear-AzSKSessionState {

    Write-Host "Clearing AzSK session state..." -ForegroundColor Yellow
    Write-Host "Session state cleared." -ForegroundColor Yellow


. $FrameworkPath\Helpers\AliasHelper.ps1