Update Show-UserSID

theFest · theFest · commit 8d7a161fe5fb · 2024-01-17T10:18:27.000+01:00
additional params, output format types and extension features, added blocks, etc.
diff --git a/ps-win-groups-users/Show-UserSID.ps1 b/ps-win-groups-users/Show-UserSID.ps1
@@ -1,28 +1,32 @@
+#Requires -Version 3.0
 Function Show-UserSID {
     <#
     .SYNOPSIS
-    Gets the Security Identifier (SID) for specified users.
+    Gets the Security Identifier (SID) of one or more user accounts.
 
     .DESCRIPTION
-    Retrieves the Security Identifier (SID) for users by translating their account names.
+    This function retrieves the Security Identifier (SID) for specified user accounts, providing flexibility in output format, domain filtering, SID verification, and logging options.
 
     .PARAMETER UserName
-    Specifies the user names for which to retrieve the SID, accepts an array of user names.
+    Specifies the user names for which to retrieve the SID. You can provide a single username or an array of usernames.
     .PARAMETER OutputFormat
-    Specifies the format for displaying the output, options: 'Table' (default), 'List', 'JSON'.
+    Specifies the output format for displaying the SID information, values are "Table" (default), "List", "JSON", "CSV", "HTML", "XML".
+    .PARAMETER OutputPath
+    Specifies the path where the file will be created. If provided, output will be saved to a file with the appropriate extension.
     .PARAMETER Domain
-    Domain to filter users, if specified, only users from this domain will be processed.
-    .PARAMETER LogToFile
-    File path to log verbose information.
+    Specifies the domain(s) to filter user accounts. If provided, only user accounts from the specified domain(s) will be processed.
+    .PARAMETER SIDCheck
+    Specifies a SID to check if it belongs to the specified user(s). If provided, only users with a matching SID will be processed.
     .PARAMETER IncludeFullName
-    Indicates whether to include the user's full name in the output.
+    Includes the user's full name in output. If specified, the output will include the full name; otherwise, it will display "n/a".
 
     .EXAMPLE
-    "user" | Get-UserSID
-    Get-UserSID -UserName "user1", "user2" -OutputFormat JSON
+    "user0" | Show-UserSID
+    Show-UserSID -UserName "user1", "user2" -OutputFormat JSON -Domain "domain" -IncludeFullName
+    Show-UserSID -UserName "user1", "user2" -OutputFormat CSV -SIDCheck "S-1-5-21-123456789-1234567890-1234567890-1001" -OutputPath "$env:USERPROFILE\Desktop\uSID.csv"
 
     .NOTES
-    v0.0.5
+    v0.3.2
     #>
     [CmdletBinding()]
     param (
@@ -32,57 +36,127 @@ Function Show-UserSID {
         [string[]]$UserName,
 
         [Parameter(Mandatory = $false, Position = 1, HelpMessage = "Specify the output format")]
-        [ValidateSet("Table", "List", "JSON")]
+        [ValidateSet("Table", "List", "JSON", "CSV", "HTML", "XML")]
         [Alias("o")]
         [string]$OutputFormat = "Table",
 
-        [Parameter(Mandatory = $false, Position = 2, HelpMessage = "Specify the domain to filter users")]
+        [Parameter(Mandatory = $false, HelpMessage = "Specify a path where the file will be created")]
+        [Alias("l")]
+        [string]$OutputPath,
+
+        [Parameter(Mandatory = $false, Position = 2, HelpMessage = "Specify the domain(s) to filter users")]
         [Alias("d")]
-        [string]$Domain,
+        [string[]]$Domain,
 
-        [Parameter(Mandatory = $false, HelpMessage = "Specify a file path to log verbose information.")]
-        [Alias("l")]
-        [string]$LogToFile,
+        [Parameter(Mandatory = $false, HelpMessage = "Check if SID belongs to the declared user(s)")]
+        [Alias("s")]
+        [string]$SIDCheck,
 
-        [Parameter(Mandatory = $false, HelpMessage = "User's full name in output")]
+        [Parameter(Mandatory = $false, HelpMessage = "Include user's full name in output")]
         [Alias("if")]
         [switch]$IncludeFullName
     )
+    BEGIN {
+        if ($OutputPath -and -not $OutputFormat) {
+            Write-Error "If OutputPath is specified, OutputFormat must also be specified."
+            return
+        }
+        if ($OutputFormat -and $OutputFormat -notin ("Table", "List", "JSON", "CSV", "HTML", "XML")) {
+            Write-Error "Invalid OutputFormat. Please specify a valid format: Table, List, JSON, CSV, HTML, XML."
+            return
+        }
+    }
     PROCESS {
         foreach ($User in $UserName) {
             try {
-                if ($Domain -and $User -notmatch "@$Domain") {
-                    Write-Warning -Message "Skipping user '$User' as it does not belong to the specified domain '$Domain'"
+                if ($Domain -and $User -notmatch "@($Domain -join '|')") {
+                    Write-Warning -Message "Skipping user '$User' as it does not belong to the specified domain(s) '$($Domain -join ', ')'"
                     continue
                 }
                 $NTAccount = New-Object System.Security.Principal.NTAccount($User)
                 $UserSID = $NTAccount.Translate([System.Security.Principal.SecurityIdentifier]).Value
                 $FullName = if ($IncludeFullName) {
                     $NTAccount.Translate([System.Security.Principal.NTAccount]).Value
                 }
+                if ($SIDCheck -and $UserSID -ne $SIDCheck) {
+                    Write-Warning -Message "Skipping user '$User' as it does not match the specified SID '$SIDCheck'"
+                    continue
+                }
                 $Result = [PSCustomObject]@{
                     UserName = $User
                     SID      = $UserSID
-                    FullName = if ($FullName) { $FullName } else { 'n/a' }
+                    FullName = if ($FullName) { $FullName } else { "n/a" }
+                }
+                $OutputFileExtension = @{
+                    "List"  = '';
+                    "JSON"  = '.json';
+                    "CSV"   = '.csv';
+                    "HTML"  = '.html';
+                    "XML"   = '.xml';
+                    default = '.txt';
+                }[$OutputFormat]
+                $OutputFile = if ($OutputPath -match '\.\w+$') {
+                    $OutputPath
+                }
+                else {
+                    Join-Path $OutputPath "$($User)_SID$OutputFileExtension"
                 }
                 switch ($OutputFormat) {
-                    "List" {
-                        Write-Output $Result.PSObject.Properties | ForEach-Object { "$($_.Name): $($_.Value)" }
+                    "List" { 
+                        if ($OutputPath) {
+                            $Result.PSObject.Properties | ForEach-Object { "$($_.Name): $($_.Value)" } | Set-Content -Path $OutputFile -Encoding UTF8
+                        }
+                        else {
+                            $Result.PSObject.Properties | ForEach-Object { "$($_.Name): $($_.Value)" }
+                        }
                     }
-                    "JSON" {
-                        $Result | ConvertTo-Json
+                    "JSON" { 
+                        if ($OutputPath) {
+                            $Result | ConvertTo-Json | Set-Content -Path $OutputFile -Encoding UTF8
+                        }
+                        else {
+                            $Result | ConvertTo-Json
+                        }
                     }
-                    default {
-                        Write-Output $Result | Format-Table -AutoSize
+                    "CSV" { 
+                        if ($OutputPath) {
+                            $Result | Export-Csv -Path $OutputFile -NoTypeInformation -Append
+                        }
+                        else {
+                            $Result | Export-Csv -NoTypeInformation -Append
+                        }
                     }
-                }
-                if ($LogToFile) {
-                    Add-Content -Path $LogToFile -Value "$($Result.UserName): $($Result.SID) $($Result.FullName)"
+                    "HTML" { 
+                        if ($OutputPath) {
+                            $Result | ConvertTo-Html | Set-Content -Path $OutputFile -Encoding UTF8
+                        }
+                        else {
+                            $Result | ConvertTo-Html
+                        }
+                    }
+                    "XML" { 
+                        if ($OutputPath) {
+                            $Result | Export-Clixml -Path $OutputFile
+                        }
+                        else {
+                            $Result | Export-Clixml
+                        }
+                    }
+                    default { $Result | Format-Table -AutoSize }
                 }
             }
             catch {
-                Write-Error -Message "Failed to get SID for user '$User'. $_"
+                Write-Error -Message "Failed to get SID for user '$User'! $_"
+            }
+            finally {
+                Write-Verbose -Message "SID information: $Result"
             }
         }
     }
+    END {
+        if ($OutputPath) {
+            Write-Host "SID information exported to $OutputPath" -ForegroundColor DarkCyan
+        }
+        Write-Output -InputObject $Result
+    }
 }
