Release 0.10.0

.github/workflows/release.yml

@@ -9,7 +9,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
       - name: Publish
         shell: pwsh
         run: |

PowerFGT/PowerFGT.psd1

@@ -9,31 +9,31 @@
 @{
 
     # Script module or binary module file associated with this manifest.
-    RootModule        = 'PowerFGT.psm1'
+    RootModule           = 'PowerFGT.psm1'
 
     # Version number of this module.
-    ModuleVersion     = '0.9.1'
+    ModuleVersion        = '0.10.0'
 
     # Supported PSEditions
-    # CompatiblePSEditions = @()
+    CompatiblePSEditions = @('Desktop', 'Core')
 
     # ID used to uniquely identify this module
-    GUID              = '608e2723-7ce4-4f86-a3c8-ac1acb4f1f66'
+    GUID                 = '608e2723-7ce4-4f86-a3c8-ac1acb4f1f66'
 
     # Author of this module
-    Author            = 'Alexis La Goutte'
+    Author               = 'Alexis La Goutte'
 
     # Company or vendor of this module
     #CompanyName = 'Unknown'
 
     # Copyright statement for this module
-    Copyright         = '(c) Alexis La Goutte. All rights reserved.'
+    Copyright            = '(c) Alexis La Goutte. All rights reserved.'
 
     # Description of the functionality provided by this module
-    Description       = 'PowerShell module to query the Fortigate API'
+    Description          = 'PowerShell module to query the Fortigate API'
 
     # Minimum version of the PowerShell engine required by this module
-    PowerShellVersion = '3.0'
+    PowerShellVersion    = '3.0'
 
     # Name of the PowerShell host required by this module
     # PowerShellHostName = ''
@@ -69,16 +69,16 @@
     # NestedModules = @()
 
     # Functions to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no functions to export.
-    FunctionsToExport = '*'
+    FunctionsToExport    = '*'
 
     # Cmdlets to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no cmdlets to export.
-    CmdletsToExport   = @()
+    CmdletsToExport      = @()
 
     # Variables to export from this module
-    VariablesToExport = '*'
+    VariablesToExport    = '*'
 
     # Aliases to export from this module, for best performance, do not use wildcards and do not delete the entry, use an empty array if there are no aliases to export.
-    AliasesToExport   = @()
+    AliasesToExport      = @()
 
     # DSC resources to export from this module
     # DscResourcesToExport = @()
@@ -90,24 +90,24 @@
     # FileList = @()
 
     # Private data to pass to the module specified in RootModule/ModuleToProcess. This may also contain a PSData hashtable with additional module metadata used by PowerShell.
-    PrivateData       = @{
+    PrivateData          = @{
 
         PSData = @{
 
             # Tags applied to this module. These help with module discovery in online galleries.
-            Tags       = @('Fortinet', 'FortiGate', 'API', 'PSEdition_Core', 'PSEdition_Desktop')
+            Tags         = @('Fortinet', 'FortiGate', 'API')
 
             # A URL to the license for this module.
-            LicenseUri = 'https://github.com/FortiPower/PowerFGT/blob/master/LICENSE'
+            LicenseUri   = 'https://github.com/FortiPower/PowerFGT/blob/master/LICENSE'
 
             # A URL to the main website for this project.
-            ProjectUri = 'https://fortipower.github.io/PowerFGT'
+            ProjectUri   = 'https://fortipower.github.io/PowerFGT'
 
             # A URL to an icon representing this module.
             # IconUri = ''
 
             # ReleaseNotes of this module
-            # ReleaseNotes = ''
+            ReleaseNotes = 'See https://github.com/FortiPower/PowerFGT/releases for full changelog'
 
         } # End of PSData hashtable
 

README.md

@@ -23,7 +23,7 @@
 
 This is a Powershell module for configure a FortiGate (Fortinet) Firewall.
 
-With this module (version 0.9.1) you can manage:
+With this module (version 0.10.0) you can manage:
 
 - [Address](#address) (Add/Get/Copy/Set/Remove object type ipmask/subnet, FQDN, iprange, geo, mac and dynamic (SDN))
 - [AddressGroup](#address-group) (Add/Get/Copy/Set/Remove and Add/Remove Member)
@@ -42,7 +42,7 @@ With this module (version 0.9.1) you can manage:
 - RoutePolicy (Get)
 - [SDN Connector](#sdn-connector) (Get)
 - [Service Custom](#service-custom) (Add/Get/Set/Remove)
-- Service Group (Get)
+- [Service Group](#service-group) (Add/Get/Copy/Set/Remove and Add/Remove Member)
 - [Static Route](#static-route) (Add/Get/Remove)
 - [Switch(-controller)](#switch) (Get)
 - [System Admin](#system-admin) (Add/Get/Set/Remove)
@@ -74,7 +74,7 @@ There is some extra feature
 More functionality will be added later.
 
 Connection can use HTTPS (default) or HTTP  
-Tested with FortiGate (using 5.6.x, 6.x and 7.x firmware but it will be also work with 5.4.x)  
+Tested with FortiGate (using 5.6.x, 6.x, 7.x and 8.x (beta) firmware but it will be also work with 5.4.x)  
 Add (Experimental) support of [VDOM](#vdom) is available using -vdom parameter for each cmdlet  
 
 # Usage
@@ -1765,7 +1765,9 @@ or delete it `Remove-FGTSystemSDNConnector`.
     [Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): y
 ```
 
-### Service Custom
+### Service
+
+#### Service Custom
 
 You can create a new Service Custom `Add-FGTFirewallServiceCustom`,
 retrieve its information `Get-FGTFirewallServiceCustom`, modify its properties `Set-FGTFirewallServiceCustom`
@@ -1829,6 +1831,101 @@ or delete it `Remove-FGTFirewallServiceCustom`.
     [Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): y
 ```
 
+#### Service Group
+
+You can create a new Service Group `Add-FGTFirewallServiceGroup`, retrieve its information `Get-FGTFirewallServiceGroup`,
+modify its properties `Set-FGTFirewallServiceGroup`, copy/clone its properties `Copy-FGTFirewallServiceGroup`,
+Add member to Address Group `Add-FGTFirewallServiceGroup` and remove member `Remove-FGTFirewallServiceGroup`,
+or delete it `Remove-FGTFirewallServiceGroup`.  
+
+
+```powershell
+
+# Get information about ALL Service Group (using Format Table)
+    Get-FGTFirewallServiceGroup | Format-Table
+
+    name            q_origin_key    uuid                                 uuid-idx proxy   member
+    ----            ------------    ----                                 -------- -----   ------
+    Email Access    Email Access    93335026-dfc4-51ef-c42b-629ab4282816    15893 disable {@{name=DNS; 
+    Exchange Server Exchange Server 9333715a-dfc4-51ef-6183-f0a310646069    15896 disable {@{name=DCE-RPC
+    Web Access      Web Access      933360b6-dfc4-51ef-0736-afa8ac22a85d    15894 disable {@{name=DNS
+    Windows AD      Windows AD      93336746-dfc4-51ef-2780-4461a70290e0    15895 disable {@{name=DCE-RPC
+
+
+# Add a Service Group with HTTP and HTTPS
+    Add-FGTFirewallServiceGroup -name "My Service Group" -member HTTP, HTTPS
+
+    name          : My Service Group
+    q_origin_key  : My Service Group
+    uuid          : b618b7a8-e03a-51f0-d9ee-34d958d1c624
+    uuid-idx      : 42622
+    proxy         : disable
+    member        : {@{name=HTTP; q_origin_key=HTTP}, @{name=HTTPS; q_origin_key=HTTPS}}
+    comment       :
+    color         : 0
+    fabric-object : disable
+
+# Add DNS member to existing User Group
+    Get-FGTFirewallServiceGroup -name "My Service Group" | Add-FGTFirewallServiceGroupMember -member DNS
+
+    name          : My Service Group
+    q_origin_key  : My Service Group
+    uuid          : b618b7a8-e03a-51f0-d9ee-34d958d1c624
+    uuid-idx      : 42622
+    proxy         : disable
+    member        : {@{name=HTTP; q_origin_key=HTTP}, @{name=HTTPS; q_origin_key=HTTPS}, @{name=DNS; q_origin_key=DNS}}
+    comment       :
+    color         : 0
+    fabric-object : disable
+
+# Remove HTTP member to existing User Group
+    Get-FGTFirewallServiceGroup -name "My Service Group" | Remove-FGTFirewallServiceGroupMember -member HTTP
+
+    name          : My Service Group
+    q_origin_key  : My Service Group
+    uuid          : b618b7a8-e03a-51f0-d9ee-34d958d1c624
+    uuid-idx      : 42622
+    proxy         : disable
+    member        : {@{name=HTTPS; q_origin_key=HTTPS}, @{name=DNS; q_origin_key=DNS}}
+    comment       :
+    color         : 0
+    fabric-object : disable
+
+# Modify a Service Group (set member...)
+    Get-FGTFirewallServiceGroup -name "My Service Group" | Set-FGTFirewallServiceGroup -member DNS
+
+    name          : My Service Group
+    q_origin_key  : My Service Group
+    uuid          : b618b7a8-e03a-51f0-d9ee-34d958d1c624
+    uuid-idx      : 42622
+    proxy         : disable
+    member        : {@{name=DNS; q_origin_key=DNS}}
+    comment       :
+    color         : 0
+    fabric-object : disable
+
+# Copy/Clone a Service Group
+    Get-FGTFirewallServiceGroup -name "My Service Group" | Copy-FGTFirewallServiceGroup -name "My Service User Group"
+
+    name          : My Service User Group
+    q_origin_key  : My Service User Group
+    uuid          : 654866b0-e03b-51f0-37cd-775ca4fbef17
+    uuid-idx      : 43059
+    proxy         : disable
+    member        : {@{name=DNS; q_origin_key=DNS}}
+    comment       :
+    color         : 0
+    fabric-object : disable
+
+# Remove a Service Group
+    Get-FGTFirewallServiceGroup -name "My Service Group" | Remove-FGTFirewallServiceGroup
+
+    Confirm
+    Are you sure you want to perform this action?
+    Performing the operation "Remove Firewall Service Group" on target "My Service Group".
+    [Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): Y
+```
+
 ### VPN IPsec
 
 #### VPN IPsec Interface Phase 1
@@ -2376,6 +2473,8 @@ Add-FGTFirewallProxyAddressGroup
 Add-FGTFirewallProxyAddressGroupMember
 Add-FGTFirewallProxyPolicy
 Add-FGTFirewallServiceCustom
+Add-FGTFirewallServiceGroup
+Add-FGTFirewallServiceGroupMember
 Add-FGTFirewallVip
 Add-FGTFirewallVipGroup
 Add-FGTFirewallVipGroupMember
@@ -2406,6 +2505,7 @@ Confirm-FGTRouterStatic
 Confirm-FGTSDNConnector
 Confirm-FGTServiceCustom
 Confirm-FGTServiceGroup
+Confirm-FGTSystemAdmin
 Confirm-FGTUserGroup
 Confirm-FGTUserLDAP
 Confirm-FGTUserLocal
@@ -2421,6 +2521,7 @@ Copy-FGTFirewallAddress
 Copy-FGTFirewallAddressGroup
 Copy-FGTFirewallProxyAddress
 Copy-FGTFirewallProxyAddressGroup
+Copy-FGTFirewallServiceGroup
 Copy-FGTFirewallVipGroup
 Copy-FGTUserGroup
 Deploy-FGTVm
@@ -2444,6 +2545,7 @@ Get-FGTFirewallSSLSSHProfile
 Get-FGTFirewallVip
 Get-FGTFirewallVipGroup
 Get-FGTIpsSensor
+Get-FGTLogEvent
 Get-FGTLogSetting
 Get-FGTLogTraffic
 Get-FGTMonitorFirewallAddressDynamic
@@ -2534,6 +2636,8 @@ Remove-FGTFirewallProxyAddressGroup
 Remove-FGTFirewallProxyAddressGroupMember
 Remove-FGTFirewallProxyPolicy
 Remove-FGTFirewallServiceCustom
+Remove-FGTFirewallServiceGroup
+Remove-FGTFirewallServiceGroupMember
 Remove-FGTFirewallVip
 Remove-FGTFirewallVipGroup
 Remove-FGTFirewallVipGroupMember
@@ -2560,6 +2664,7 @@ Set-FGTFirewallLocalInPolicy
 Set-FGTFirewallPolicy
 Set-FGTFirewallProxyAddressGroup
 Set-FGTFirewallServiceCustom
+Set-FGTFirewallServiceGroup
 Set-FGTFirewallVipGroup
 Set-FGTMonitorUserLocalChangePassword
 Set-FGTRouterBGP