Show allowed by policy on PSResourceRepositoryInfo

adityapatwardhan · adityapatwardhan · commit c5845b382aa4 · 2024-10-20T14:00:18.000-07:00
diff --git a/src/PSGet.Format.ps1xml b/src/PSGet.Format.ps1xml
@@ -94,6 +94,7 @@
                     <TableColumnHeader><Label>Uri</Label></TableColumnHeader>
                     <TableColumnHeader><Label>Trusted</Label></TableColumnHeader>
                     <TableColumnHeader><Label>Priority</Label></TableColumnHeader>
+                    <TableColumnHeader><Label>IsAllowedByPolicy</Label></TableColumnHeader>
                 </TableHeaders>
                 <TableRowEntries>
                     <TableRowEntry>
@@ -102,6 +103,7 @@
                             <TableColumnItem><PropertyName>Uri</PropertyName></TableColumnItem>
                             <TableColumnItem><PropertyName>Trusted</PropertyName></TableColumnItem>
                             <TableColumnItem><PropertyName>Priority</PropertyName></TableColumnItem>
+                            <TableColumnItem><PropertyName>IsAllowedByPolicy</PropertyName></TableColumnItem>
                         </TableColumnItems>
                     </TableRowEntry>
                 </TableRowEntries>
diff --git a/src/code/GroupPolicyRepositoryEnforcement.cs b/src/code/GroupPolicyRepositoryEnforcement.cs
@@ -37,7 +37,7 @@ public static bool IsGroupPolicyEnabled()
 
             var values = ReadGPFromRegistry();
 
-            if (values is not null)
+            if (values is not null && values.Count > 0)
             {
                 return true;
             }
@@ -79,7 +79,7 @@ public static bool IsGroupPolicyEnabled()
             }
         }
 
-        internal static bool IsRepositoryAllowed(string repositoryUri)
+        internal static bool IsRepositoryAllowed(Uri repositoryUri)
         {
             bool isAllowed = false;
 
@@ -89,7 +89,7 @@ internal static bool IsRepositoryAllowed(string repositoryUri)
 
                 if (allowedList != null && allowedList.Length > 0)
                 {
-                    isAllowed = allowedList.Any(uri => uri.Equals(new Uri(repositoryUri)));
+                    isAllowed = allowedList.Any(uri => uri.Equals(repositoryUri));
                 }
             }
             else
diff --git a/src/code/PSRepositoryInfo.cs b/src/code/PSRepositoryInfo.cs
@@ -27,14 +27,15 @@ public enum APIVersion
 
         #region Constructor
 
-        public PSRepositoryInfo(string name, Uri uri, int priority, bool trusted, PSCredentialInfo credentialInfo, APIVersion apiVersion)
+        public PSRepositoryInfo(string name, Uri uri, int priority, bool trusted, PSCredentialInfo credentialInfo, APIVersion apiVersion, bool allowed)
         {
             Name = name;
             Uri = uri;
             Priority = priority;
             Trusted = trusted;
             CredentialInfo = credentialInfo;
             ApiVersion = apiVersion;
+            IsAllowedByPolicy = allowed;
         }
 
         #endregion
@@ -88,6 +89,11 @@ public enum RepositoryProviderType
         /// </summary>
         public APIVersion ApiVersion { get; }
 
+        // <summary>
+        /// is it allowed by policy
+        /// </summary>
+        public bool IsAllowedByPolicy { get; set; }
+
         #endregion
     }
 }
diff --git a/src/code/RepositorySettings.cs b/src/code/RepositorySettings.cs
@@ -9,6 +9,7 @@
 using System.Management.Automation;
 using System.Xml;
 using System.Xml.Linq;
+using Microsoft.PowerShell.PSResourceGet.Cmdlets;
 using static Microsoft.PowerShell.PSResourceGet.UtilClasses.PSRepositoryInfo;
 
 namespace Microsoft.PowerShell.PSResourceGet.UtilClasses
@@ -279,7 +280,9 @@ public static PSRepositoryInfo Add(string repoName, Uri repoUri, int repoPriorit
                 throw new PSInvalidOperationException(String.Format("Adding to repository store failed: {0}", e.Message));
             }
 
-            return new PSRepositoryInfo(repoName, repoUri, repoPriority, repoTrusted, repoCredentialInfo, apiVersion);
+            bool isAllowed = GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled() ? GroupPolicyRepositoryEnforcement.IsRepositoryAllowed(repoUri) : true;
+
+            return new PSRepositoryInfo(repoName, repoUri, repoPriority, repoTrusted, repoCredentialInfo, apiVersion, isAllowed);
         }
 
         /// <summary>
@@ -436,13 +439,22 @@ public static PSRepositoryInfo Update(string repoName, Uri repoUri, int repoPrio
                         node.Attribute(PSCredentialInfo.SecretNameAttribute).Value);
                 }
 
+                if (GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled())
+                {
+                    var allowedList = GroupPolicyRepositoryEnforcement.GetAllowedRepositoryURIs();
+
+                }
+
+                bool isAllowed = GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled() ? GroupPolicyRepositoryEnforcement.IsRepositoryAllowed(thisUrl) : true;
+
                 RepositoryProviderType repositoryProvider= GetRepositoryProviderType(thisUrl);
                 updatedRepo = new PSRepositoryInfo(repoName,
                     thisUrl,
                     Int32.Parse(node.Attribute("Priority").Value),
                     Boolean.Parse(node.Attribute("Trusted").Value),
                     thisCredentialInfo,
-                    resolvedAPIVersion);
+                    resolvedAPIVersion,
+                    isAllowed);
 
                 // Close the file
                 root.Save(FullRepositoryPath);
@@ -522,14 +534,18 @@ public static List<PSRepositoryInfo> Remove(string[] repoNames, out string[] err
 
                 string attributeUrlUriName = urlAttributeExists ? "Url" : "Uri";
                 Uri repoUri = new Uri(node.Attribute(attributeUrlUriName).Value);
+
+                bool isAllowed = GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled() ? GroupPolicyRepositoryEnforcement.IsRepositoryAllowed(repoUri) : true;
+
                 RepositoryProviderType repositoryProvider= GetRepositoryProviderType(repoUri);
                 removedRepos.Add(
                     new PSRepositoryInfo(repo,
                         new Uri(node.Attribute(attributeUrlUriName).Value),
                         Int32.Parse(node.Attribute("Priority").Value),
                         Boolean.Parse(node.Attribute("Trusted").Value),
                         repoCredentialInfo,
-                        (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), node.Attribute("APIVersion").Value, ignoreCase: true)));
+                        (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), node.Attribute("APIVersion").Value, ignoreCase: true),
+                        isAllowed));
 
                 // Remove item from file
                 node.Remove();
@@ -654,12 +670,16 @@ public static List<PSRepositoryInfo> Read(string[] repoNames, out string[] error
                     }
 
                     RepositoryProviderType repositoryProvider= GetRepositoryProviderType(thisUrl);
+
+                    bool isAllowed = GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled() ? GroupPolicyRepositoryEnforcement.IsRepositoryAllowed(thisUrl) : true;
+
                     PSRepositoryInfo currentRepoItem = new PSRepositoryInfo(repo.Attribute("Name").Value,
                         thisUrl,
                         Int32.Parse(repo.Attribute("Priority").Value),
                         Boolean.Parse(repo.Attribute("Trusted").Value),
                         thisCredentialInfo,
-                        (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), repo.Attribute("APIVersion").Value, ignoreCase: true));
+                        (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), repo.Attribute("APIVersion").Value, ignoreCase: true),
+                        isAllowed);
 
                     foundRepos.Add(currentRepoItem);
                 }
@@ -758,12 +778,16 @@ public static List<PSRepositoryInfo> Read(string[] repoNames, out string[] error
                         }
 
                         RepositoryProviderType repositoryProvider= GetRepositoryProviderType(thisUrl);
+
+                        bool isAllowed = GroupPolicyRepositoryEnforcement.IsGroupPolicyEnabled() ? GroupPolicyRepositoryEnforcement.IsRepositoryAllowed(thisUrl) : true;
+
                         PSRepositoryInfo currentRepoItem = new PSRepositoryInfo(node.Attribute("Name").Value,
                             thisUrl,
                             Int32.Parse(node.Attribute("Priority").Value),
                             Boolean.Parse(node.Attribute("Trusted").Value),
                             thisCredentialInfo,
-                            (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), node.Attribute("APIVersion").Value, ignoreCase: true));
+                            (PSRepositoryInfo.APIVersion)Enum.Parse(typeof(PSRepositoryInfo.APIVersion), node.Attribute("APIVersion").Value, ignoreCase: true),
+                            isAllowed);
 
                         foundRepos.Add(currentRepoItem);
                     }

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ public static bool IsGroupPolicyEnabled()`
`37`	`37`
`38`	`38`	`var values = ReadGPFromRegistry();`
`39`	`39`
`40`		`- if (values is not null)`
	`40`	`+ if (values is not null && values.Count > 0)`
`41`	`41`	`{`
`42`	`42`	`return true;`
`43`	`43`	`}`
`@@ -79,7 +79,7 @@ public static bool IsGroupPolicyEnabled()`
`79`	`79`	`}`
`80`	`80`	`}`
`81`	`81`
`82`		`- internal static bool IsRepositoryAllowed(string repositoryUri)`
	`82`	`+ internal static bool IsRepositoryAllowed(Uri repositoryUri)`
`83`	`83`	`{`
`84`	`84`	`bool isAllowed = false;`
`85`	`85`
`@@ -89,7 +89,7 @@ internal static bool IsRepositoryAllowed(string repositoryUri)`
`89`	`89`
`90`	`90`	`if (allowedList != null && allowedList.Length > 0)`
`91`	`91`	`{`
`92`		`- isAllowed = allowedList.Any(uri => uri.Equals(new Uri(repositoryUri)));`
	`92`	`+ isAllowed = allowedList.Any(uri => uri.Equals(repositoryUri));`
`93`	`93`	`}`
`94`	`94`	`}`
`95`	`95`	`else`
Original file line number	Diff line number	Diff line change
`@@ -27,14 +27,15 @@ public enum APIVersion`
`27`	`27`
`28`	`28`	`#region Constructor`
`29`	`29`
`30`		`- public PSRepositoryInfo(string name, Uri uri, int priority, bool trusted, PSCredentialInfo credentialInfo, APIVersion apiVersion)`
	`30`	`+ public PSRepositoryInfo(string name, Uri uri, int priority, bool trusted, PSCredentialInfo credentialInfo, APIVersion apiVersion, bool allowed)`
`31`	`31`	`{`
`32`	`32`	`Name = name;`
`33`	`33`	`Uri = uri;`
`34`	`34`	`Priority = priority;`
`35`	`35`	`Trusted = trusted;`
`36`	`36`	`CredentialInfo = credentialInfo;`
`37`	`37`	`ApiVersion = apiVersion;`
	`38`	`+ IsAllowedByPolicy = allowed;`
`38`	`39`	`}`
`39`	`40`
`40`	`41`	`#endregion`
`@@ -88,6 +89,11 @@ public enum RepositoryProviderType`
`88`	`89`	`/// </summary>`
`89`	`90`	`public APIVersion ApiVersion { get; }`
`90`	`91`
	`92`	`+ // <summary>`
	`93`	`+ /// is it allowed by policy`
	`94`	`+ /// </summary>`
	`95`	`+ public bool IsAllowedByPolicy { get; set; }`
	`96`	`+`
`91`	`97`	`#endregion`
`92`	`98`	`}`
`93`	`99`	`}`