2024-06-28发表2024-06-28更新powershell / tip4 分钟读完 (大约618个字)

在 PowerShell 中处理 PDF 文件是一项常见任务，本文将介绍一些实用的 PDF 自动化处理技巧。

首先，让我们看看基本的 PDF 操作：

# 创建 PDF 合并函数
function Merge-PDFFiles {
    param(
        [string[]]$InputFiles,
        [string]$OutputFile
    )
    
    try {
        Add-Type -AssemblyName System.Drawing
        
        $pdfDoc = New-Object iTextSharp.text.Document
        $writer = [iTextSharp.text.PdfWriter]::GetInstance($pdfDoc, [System.IO.File]::Create($OutputFile))
        $pdfDoc.Open()
        
        foreach ($file in $InputFiles) {
            $reader = New-Object iTextSharp.text.PdfReader($file)
            $pdfDoc.AddPage($reader.GetPage(1))
        }
        
        $pdfDoc.Close()
        Write-Host "PDF 文件合并成功：$OutputFile"
    }
    catch {
        Write-Host "PDF 合并失败：$_"
    }
}

PDF 文本提取：

# 创建 PDF 文本提取函数
function Extract-PDFText {
    param(
        [string]$InputFile,
        [string]$OutputFile,
        [switch]$IncludeImages
    )
    
    try {
        Add-Type -AssemblyName System.Drawing
        
        $reader = New-Object iTextSharp.text.PdfReader($InputFile)
        $text = New-Object System.Text.StringBuilder
        
        for ($i = 1; $i -le $reader.NumberOfPages; $i++) {
            $page = $reader.GetPage($i)
            $text.AppendLine($page.GetText())
            
            if ($IncludeImages) {
                $images = $page.GetImages()
                foreach ($image in $images) {
                    $text.AppendLine("图片位置：$($image.GetAbsoluteX()) $($image.GetAbsoluteY())")
                }
            }
        }
        
        $text.ToString() | Out-File -FilePath $OutputFile -Encoding UTF8
        Write-Host "PDF 文本提取成功：$OutputFile"
    }
    catch {
        Write-Host "PDF 文本提取失败：$_"
    }
}

PDF 页面管理：

# 创建 PDF 页面管理函数
function Manage-PDFPages {
    param(
        [string]$InputFile,
        [string]$OutputFile,
        [int[]]$PageNumbers,
        [ValidateSet('Extract', 'Delete', 'Reorder')]
        [string]$Action
    )
    
    try {
        Add-Type -AssemblyName System.Drawing
        
        $reader = New-Object iTextSharp.text.PdfReader($InputFile)
        $writer = [iTextSharp.text.PdfWriter]::GetInstance($reader, [System.IO.File]::Create($OutputFile))
        
        switch ($Action) {
            'Extract' {
                $writer.SetPageNumbers($PageNumbers)
                Write-Host "PDF 页面提取成功：$OutputFile"
            }
            'Delete' {
                $writer.SetPageNumbers((1..$reader.NumberOfPages | Where-Object { $_ -notin $PageNumbers }))
                Write-Host "PDF 页面删除成功：$OutputFile"
            }
            'Reorder' {
                $writer.SetPageNumbers($PageNumbers)
                Write-Host "PDF 页面重排序成功：$OutputFile"
            }
        }
        
        $writer.Close()
    }
    catch {
        Write-Host "PDF 页面管理失败：$_"
    }
}

PDF 表单处理：

# 创建 PDF 表单处理函数
function Process-PDFForm {
    param(
        [string]$InputFile,
        [string]$OutputFile,
        [hashtable]$FormData
    )
    
    try {
        Add-Type -AssemblyName System.Drawing
        
        $reader = New-Object iTextSharp.text.PdfReader($InputFile)
        $stamper = New-Object iTextSharp.text.PdfStamper($reader, [System.IO.File]::Create($OutputFile))
        
        $form = $stamper.AcroFields
        foreach ($key in $FormData.Keys) {
            $form.SetField($key, $FormData[$key])
        }
        
        $stamper.Close()
        Write-Host "PDF 表单处理成功：$OutputFile"
    }
    catch {
        Write-Host "PDF 表单处理失败：$_"
    }
}

PDF 加密和权限：

# 创建 PDF 加密函数
function Protect-PDFFile {
    param(
        [string]$InputFile,
        [string]$OutputFile,
        [string]$UserPassword,
        [string]$OwnerPassword,
        [string[]]$Permissions
    )
    
    try {
        Add-Type -AssemblyName System.Drawing
        
        $reader = New-Object iTextSharp.text.PdfReader($InputFile)
        $writer = [iTextSharp.text.PdfWriter]::GetInstance($reader, [System.IO.File]::Create($OutputFile))
        
        $writer.SetEncryption(
            [System.Text.Encoding]::UTF8.GetBytes($UserPassword),
            [System.Text.Encoding]::UTF8.GetBytes($OwnerPassword),
            [iTextSharp.text.pdf.PdfWriter]::ALLOW_PRINTING,
            [iTextSharp.text.pdf.PdfWriter]::ENCRYPTION_AES_128
        )
        
        $writer.Close()
        Write-Host "PDF 加密成功：$OutputFile"
    }
    catch {
        Write-Host "PDF 加密失败：$_"
    }
}

这些技巧将帮助您更有效地处理 PDF 文件。记住，在处理 PDF 时，始终要注意文件大小和内存使用。同时，建议使用适当的错误处理和日志记录机制来跟踪所有操作。

2024-06-24发表2024-06-24更新powershell / tip1 分钟读完 (大约156个字)

PowerShell 技能连载 - 脚本模块化设计

模块化基础

# 函数封装示例
function Get-SystemHealth {
    [CmdletBinding()]
    param(
        [ValidateSet('Basic','Full')]
        [string]$DetailLevel = 'Basic'
    )
    # 健康检查逻辑...
}

# 模块导出配置
Export-ModuleMember -Function Get-SystemHealth

应用场景

自动化脚本包：

# 模块目录结构
MyModule/
├── Public/
│   └── Get-SystemHealth.ps1
└── MyModule.psd1

模块分发使用：

1
2
3

# 安装模块
Copy-Item -Path ./MyModule -Destination $env:PSModulePath.Split(';')[0] -Recurse
Import-Module MyModule

最佳实践

分离公共/私有函数
实现模块帮助文档
版本控制规范：

# 模块清单配置
@{
    ModuleVersion = '1.2.0'
    FunctionsToExport = @('Get-SystemHealth')
    RequiredModules = @('PSScriptAnalyzer')
}

依赖管理：

1
2
3

# 需求声明
#Requires -Modules @{ModuleName='Pester';ModuleVersion='5.3.1'}
#Requires -Version 7.0

2024-06-21发表2024-06-21更新powershell / tip6 分钟读完 (大约868个字)

PowerShell 技能连载 - GUI 开发技巧

在 PowerShell 中开发图形用户界面（GUI）是一项重要任务，本文将介绍一些实用的 Windows Forms 和 WPF 开发技巧。

首先，让我们看看基本的 Windows Forms 操作：

# 创建 Windows Forms 主窗体函数
function New-WinFormApp {
    param(
        [string]$Title = "PowerShell GUI",
        [int]$Width = 800,
        [int]$Height = 600
    )
    
    try {
        Add-Type -AssemblyName System.Windows.Forms
        Add-Type -AssemblyName System.Drawing
        
        $form = New-Object System.Windows.Forms.Form
        $form.Text = $Title
        $form.Size = New-Object System.Drawing.Size($Width, $Height)
        $form.StartPosition = "CenterScreen"
        
        # 添加菜单栏
        $menuStrip = New-Object System.Windows.Forms.MenuStrip
        $fileMenu = New-Object System.Windows.Forms.ToolStripMenuItem("文件")
        $fileMenu.DropDownItems.Add("新建", $null, { Write-Host "新建" })
        $fileMenu.DropDownItems.Add("打开", $null, { Write-Host "打开" })
        $fileMenu.DropDownItems.Add("保存", $null, { Write-Host "保存" })
        $menuStrip.Items.Add($fileMenu)
        $form.Controls.Add($menuStrip)
        
        # 添加工具栏
        $toolStrip = New-Object System.Windows.Forms.ToolStrip
        $toolStrip.Items.Add("新建", $null, { Write-Host "新建" })
        $toolStrip.Items.Add("打开", $null, { Write-Host "打开" })
        $toolStrip.Items.Add("保存", $null, { Write-Host "保存" })
        $form.Controls.Add($toolStrip)
        
        # 添加状态栏
        $statusStrip = New-Object System.Windows.Forms.StatusStrip
        $statusLabel = New-Object System.Windows.Forms.ToolStripStatusLabel("就绪")
        $statusStrip.Items.Add($statusLabel)
        $form.Controls.Add($statusStrip)
        
        return $form
    }
    catch {
        Write-Host "创建窗体失败：$_"
    }
}

Windows Forms 控件管理：

# 创建 Windows Forms 控件管理函数
function Add-WinFormControls {
    param(
        [System.Windows.Forms.Form]$Form,
        [hashtable]$Controls
    )
    
    try {
        foreach ($control in $Controls.GetEnumerator()) {
            $ctrl = switch ($control.Key) {
                "Button" {
                    New-Object System.Windows.Forms.Button
                }
                "TextBox" {
                    New-Object System.Windows.Forms.TextBox
                }
                "Label" {
                    New-Object System.Windows.Forms.Label
                }
                "ComboBox" {
                    New-Object System.Windows.Forms.ComboBox
                }
                "DataGridView" {
                    New-Object System.Windows.Forms.DataGridView
                }
                "TreeView" {
                    New-Object System.Windows.Forms.TreeView
                }
                "ListView" {
                    New-Object System.Windows.Forms.ListView
                }
                "TabControl" {
                    New-Object System.Windows.Forms.TabControl
                }
                "Panel" {
                    New-Object System.Windows.Forms.Panel
                }
                "GroupBox" {
                    New-Object System.Windows.Forms.GroupBox
                }
                default {
                    throw "不支持的控件类型：$($control.Key)"
                }
            }
            
            # 设置控件属性
            $control.Value.GetEnumerator() | ForEach-Object {
                $ctrl.$($_.Key) = $_.Value
            }
            
            $Form.Controls.Add($ctrl)
        }
        
        Write-Host "控件添加完成"
    }
    catch {
        Write-Host "控件添加失败：$_"
    }
}

WPF 应用程序开发：

# 创建 WPF 应用程序函数
function New-WPFApp {
    param(
        [string]$Title = "PowerShell WPF",
        [int]$Width = 800,
        [int]$Height = 600
    )
    
    try {
        Add-Type -AssemblyName PresentationFramework
        Add-Type -AssemblyName PresentationCore
        Add-Type -AssemblyName WindowsBase
        
        $xaml = @"
<Window xmlns="http://schemas.microsoft.com/winfx/2006/xaml/presentation"
        xmlns:x="http://schemas.microsoft.com/winfx/2006/xaml"
        Title="$Title" Height="$Height" Width="$Width" WindowStartupLocation="CenterScreen">
    <DockPanel>
        <Menu DockPanel.Dock="Top">
            <MenuItem Header="文件">
                <MenuItem Header="新建" Click="New_Click"/>
                <MenuItem Header="打开" Click="Open_Click"/>
                <MenuItem Header="保存" Click="Save_Click"/>
            </MenuItem>
        </Menu>
        <ToolBar DockPanel.Dock="Top">
            <Button Content="新建" Click="New_Click"/>
            <Button Content="打开" Click="Open_Click"/>
            <Button Content="保存" Click="Save_Click"/>
        </ToolBar>
        <StatusBar DockPanel.Dock="Bottom">
            <TextBlock Text="就绪"/>
        </StatusBar>
        <Grid>
            <Grid.RowDefinitions>
                <RowDefinition Height="Auto"/>
                <RowDefinition Height="*"/>
            </Grid.RowDefinitions>
            <StackPanel Grid.Row="0" Margin="10">
                <TextBox x:Name="InputTextBox" Margin="0,5"/>
                <Button Content="确定" Click="OK_Click" Margin="0,5"/>
            </StackPanel>
            <ListView Grid.Row="1" x:Name="ItemListView" Margin="10"/>
        </Grid>
    </DockPanel>
</Window>
"@
        
        $reader = [System.Xml.XmlNodeReader]::new([xml]$xaml)
        $window = [Windows.Markup.XamlReader]::Load($reader)
        
        # 添加事件处理程序
        $window.Add_Loaded({
            Write-Host "窗口已加载"
        })
        
        $window.Add_Closing({
            Write-Host "窗口正在关闭"
        })
        
        return $window
    }
    catch {
        Write-Host "创建 WPF 窗口失败：$_"
    }
}

WPF 数据绑定：

# 创建 WPF 数据绑定函数
function Set-WPFDataBinding {
    param(
        [System.Windows.Window]$Window,
        [hashtable]$Bindings
    )
    
    try {
        foreach ($binding in $Bindings.GetEnumerator()) {
            $element = $Window.FindName($binding.Key)
            if ($element) {
                $binding.Value.GetEnumerator() | ForEach-Object {
                    $property = $_.Key
                    $value = $_.Value
                    
                    if ($value -is [scriptblock]) {
                        # 绑定事件处理程序
                        $element.Add_$property($value)
                    }
                    else {
                        # 绑定属性
                        $element.SetValue([System.Windows.Controls.Control]::$property, $value)
                    }
                }
            }
        }
        
        Write-Host "数据绑定完成"
    }
    catch {
        Write-Host "数据绑定失败：$_"
    }
}

GUI 主题和样式：

# 创建 GUI 主题和样式函数
function Set-GUITheme {
    param(
        [System.Windows.Forms.Form]$Form,
        [ValidateSet("Light", "Dark", "Blue")]
        [string]$Theme
    )
    
    try {
        $colors = switch ($Theme) {
            "Light" {
                @{
                    Background = [System.Drawing.Color]::White
                    Foreground = [System.Drawing.Color]::Black
                    ControlBackground = [System.Drawing.Color]::White
                    ControlForeground = [System.Drawing.Color]::Black
                    Border = [System.Drawing.Color]::Gray
                }
            }
            "Dark" {
                @{
                    Background = [System.Drawing.Color]::FromArgb(32, 32, 32)
                    Foreground = [System.Drawing.Color]::White
                    ControlBackground = [System.Drawing.Color]::FromArgb(45, 45, 45)
                    ControlForeground = [System.Drawing.Color]::White
                    Border = [System.Drawing.Color]::Gray
                }
            }
            "Blue" {
                @{
                    Background = [System.Drawing.Color]::FromArgb(240, 240, 255)
                    Foreground = [System.Drawing.Color]::FromArgb(0, 0, 128)
                    ControlBackground = [System.Drawing.Color]::White
                    ControlForeground = [System.Drawing.Color]::FromArgb(0, 0, 128)
                    Border = [System.Drawing.Color]::FromArgb(0, 0, 255)
                }
            }
        }
        
        # 应用主题
        $Form.BackColor = $colors.Background
        $Form.ForeColor = $colors.Foreground
        
        foreach ($control in $Form.Controls) {
            $control.BackColor = $colors.ControlBackground
            $control.ForeColor = $colors.ControlForeground
            if ($control -is [System.Windows.Forms.Control]) {
                $control.FlatStyle = [System.Windows.Forms.FlatStyle]::Flat
                $control.FlatAppearance.BorderColor = $colors.Border
            }
        }
        
        Write-Host "主题应用完成"
    }
    catch {
        Write-Host "主题应用失败：$_"
    }
}

这些技巧将帮助您更有效地开发 PowerShell GUI 应用程序。记住，在开发 GUI 时，始终要注意用户体验和界面响应性。同时，建议使用适当的错误处理和日志记录机制来跟踪应用程序的运行状态。

2024-06-20发表2024-06-20更新powershell / tip6 分钟读完 (大约896个字)

PowerShell 技能连载 - PowerCLI：管理VMware的简便方法

简介

踏上穿越 VMware 虚拟景观的迷人旅程可能是一项艰巨的任务。别害怕，亲爱的管理员们，PowerCLI 将改变您的 VMware 管理体验。作为多年来在这些虚拟领域中航行过的人，我将引导您了解 PowerShell 的复杂之处。

使用 PowerCLI 入门

安装 PowerShell 模块

在深入研究 PowerCLI 魔法之前，请确保已安装必要的模块。对于 VMware 管理，您需要安装 VMware PowerCLI 模块。使用以下 PowerShell 命令进行安装：

Install-Module -Name VMware.PowerCLI -Force -AllowClobber

来源： PowerShell Gallery (powershellgallery.com)

此命令获取并安装 VMware PowerCLI 模块，这是管理虚拟环境所需的先决条件。

连接到您的 VMware 环境

一旦模块被安装，您可以使用以下命令连接到您的 VMware 环境：

Connect-VIServer -Server YourVMwareServer -User YourUsername -Password YourPassword

来源： VMware PowerCLI 文档 (code.vmware.com)

用实际服务器详细信息替换 “YourVMwareServer,” “YourUsername,” 和 “YourPassword” 。这将建立与您的 VMware 环境之间的连接。

PowerCLI：虚拟管理的交响乐

VM概览的基本命令

让我们从微软官方 PowerShell 文档中提取的一个基本命令开始：

Get-VM

来源： 微软 PowerShell 文档 (docs.microsoft.com)

这个一行代码可以直接从 PowerShell 的圣典中为您提供 VMware 环境中所有虚拟机的全面列表。

使用 Where-Object 进行结果细化

有时，您只需要特定信息。PowerShell 可以帮到你！使用 Where-Object 命令来过滤结果。例如，让我们找出具有超过 4 GB RAM 的 VM：

Get-VM | Where-Object {$_.MemoryGB -gt 4}

来源： PowerShell.org 社区论坛 (powershell.org)

这段代码可帮助您识别具有超过 4 GB RAM 的 VM，这是从 PowerShell 社区汲取的智慧之源。

快照简化处理

管理快照至关重要，而 VMware 官方文档提供了一个珍贵建议：

Get-VM "YourVMName" | New-Snapshot -Name "SnapshotName" -Description "SnapshotDescription"

来源： VMware PowerCLI 文档 (code.vmware.com)

在此处，我们创建了一个带名称和描述的快照，遵循了 VMware 最佳实践。

使用 Set-VM 进行动态资源管理

调整 VM 资源是一个强大功能，并且来自 VMware 的文档帮助我们掌握这种力量：

Set-VM -Name "YourVMName" -MemoryGB 8 -NumCPU 2

来源： VMware PowerCLI 文档 (code.vmware.com)

这个一行代码展示了在 VMware 中使用 PowerShell CLI 实现无缝资源管理能力。

使用 Invoke-VMScript 在 VM 内运行命令

要在 VM 内部执行命令，请参考 VMware 知识库:

Invoke-VMScript -VM "YourVMName" -ScriptText "YourScript" -GuestCredential (Get-Credential)

此片段使您可以安全地在 VM 中运行脚本或命令。

结论

当您开始使用PowerCLI在VMware中进行这段神奇的旅程时，请记住每个命令都是您虚拟魔法书中的一个咒语。本指南取自权威来源，只是您PowerShell冒险之旅的开端。定制、实验，并让魔法流淌在您的虚拟领域中。您的VMware管理即将变得不仅高效，而且真正迷人。祝编写脚本愉快！

2024-06-19发表2024-06-19更新powershell / tip10 分钟读完 (大约1530个字)

PowerShell 技能连载 - 高级跨平台功能实现

在PowerShell Core的支持下，我们可以实现更高级的跨平台功能。本文将介绍如何在Windows、Linux和macOS上实现GUI开发、数据库操作、网络编程、文件系统监控和日志管理等高级功能。

跨平台GUI开发

使用.NET Core的跨平台GUI框架，我们可以创建在多个平台上运行的图形界面：

function New-CrossPlatformGUI {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$Title,
        
        [Parameter()]
        [int]$Width = 800,
        
        [Parameter()]
        [int]$Height = 600,
        
        [Parameter()]
        [scriptblock]$OnLoad,
        
        [Parameter()]
        [scriptblock]$OnClose
    )
    
    try {
        # 检查是否安装了必要的模块
        if (-not (Get-Module -ListAvailable -Name "Avalonia")) {
            Write-Host "正在安装Avalonia模块..."
            Install-Module -Name "Avalonia" -Scope CurrentUser -Force
        }
        
        # 创建主窗口
        $window = New-Object Avalonia.Window
        $window.Title = $Title
        $window.Width = $Width
        $window.Height = $Height
        
        # 创建主布局
        $grid = New-Object Avalonia.Controls.Grid
        $grid.RowDefinitions.Add("Auto")
        $grid.RowDefinitions.Add("*")
        
        # 创建标题栏
        $titleBar = New-Object Avalonia.Controls.TextBlock
        $titleBar.Text = $Title
        $titleBar.FontSize = 16
        $titleBar.Margin = "10"
        $grid.Children.Add($titleBar)
        
        # 创建内容区域
        $content = New-Object Avalonia.Controls.StackPanel
        $grid.Children.Add($content)
        
        # 设置窗口内容
        $window.Content = $grid
        
        # 注册事件处理程序
        if ($OnLoad) {
            $window.Loaded += $OnLoad
        }
        
        if ($OnClose) {
            $window.Closing += $OnClose
        }
        
        # 显示窗口
        $window.Show()
        
        return $window
    }
    catch {
        Write-Error "创建GUI失败：$_"
        return $null
    }
}

# 示例：创建一个简单的跨平台GUI应用
$window = New-CrossPlatformGUI -Title "跨平台PowerShell应用" `
    -Width 400 `
    -Height 300 `
    -OnLoad {
        Write-Host "窗口已加载"
    } `
    -OnClose {
        Write-Host "窗口已关闭"
    }

跨平台数据库操作

使用.NET Core的数据库提供程序，我们可以实现跨平台的数据库操作：

function Connect-CrossPlatformDatabase {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [ValidateSet("SQLite", "PostgreSQL", "MySQL", "MongoDB")]
        [string]$DatabaseType,
        
        [Parameter(Mandatory = $true)]
        [string]$ConnectionString,
        
        [Parameter()]
        [switch]$UseConnectionPooling
    )
    
    try {
        $connection = $null
        
        switch ($DatabaseType) {
            "SQLite" {
                $connection = New-Object Microsoft.Data.Sqlite.SqliteConnection($ConnectionString)
            }
            "PostgreSQL" {
                $connection = New-Object Npgsql.NpgsqlConnection($ConnectionString)
            }
            "MySQL" {
                $connection = New-Object MySql.Data.MySqlClient.MySqlConnection($ConnectionString)
            }
            "MongoDB" {
                $connection = New-Object MongoDB.Driver.MongoClient($ConnectionString)
            }
        }
        
        if ($UseConnectionPooling) {
            $connection.ConnectionString += ";Pooling=true"
        }
        
        $connection.Open()
        Write-Host "成功连接到 $DatabaseType 数据库" -ForegroundColor Green
        
        return $connection
    }
    catch {
        Write-Error "数据库连接失败：$_"
        return $null
    }
}

function Invoke-CrossPlatformQuery {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        $Connection,
        
        [Parameter(Mandatory = $true)]
        [string]$Query,
        
        [Parameter()]
        [hashtable]$Parameters
    )
    
    try {
        $command = $Connection.CreateCommand()
        $command.CommandText = $Query
        
        if ($Parameters) {
            foreach ($param in $Parameters.GetEnumerator()) {
                $dbParam = $command.CreateParameter()
                $dbParam.ParameterName = $param.Key
                $dbParam.Value = $param.Value
                $command.Parameters.Add($dbParam)
            }
        }
        
        $result = $command.ExecuteReader()
        $dataTable = New-Object System.Data.DataTable
        $dataTable.Load($result)
        
        return $dataTable
    }
    catch {
        Write-Error "查询执行失败：$_"
        return $null
    }
}

# 示例：使用SQLite数据库
$connection = Connect-CrossPlatformDatabase -DatabaseType "SQLite" `
    -ConnectionString "Data Source=test.db" `
    -UseConnectionPooling

$result = Invoke-CrossPlatformQuery -Connection $connection `
    -Query "SELECT * FROM Users WHERE Age > @Age" `
    -Parameters @{
        "Age" = 18
    }

跨平台网络编程

使用.NET Core的网络库，我们可以实现跨平台的网络通信：

function New-CrossPlatformWebServer {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$Url,
        
        [Parameter()]
        [scriptblock]$RequestHandler,
        
        [Parameter()]
        [int]$MaxConnections = 100
    )
    
    try {
        $listener = New-Object System.Net.HttpListener
        $listener.Prefixes.Add($Url)
        $listener.Start()
        
        Write-Host "Web服务器已启动，监听地址：$Url" -ForegroundColor Green
        
        while ($true) {
            $context = $listener.GetContext()
            $request = $context.Request
            $response = $context.Response
            
            # 处理请求
            if ($RequestHandler) {
                $RequestHandler.Invoke($request, $response)
            }
            else {
                $response.StatusCode = 200
                $response.ContentType = "text/plain"
                $responseString = "Hello from PowerShell Web Server!"
                $buffer = [System.Text.Encoding]::UTF8.GetBytes($responseString)
                $response.ContentLength64 = $buffer.Length
                $response.OutputStream.Write($buffer, 0, $buffer.Length)
            }
            
            $response.Close()
        }
    }
    catch {
        Write-Error "Web服务器启动失败：$_"
        return $null
    }
}

function Send-CrossPlatformHttpRequest {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$Url,
        
        [Parameter()]
        [ValidateSet("GET", "POST", "PUT", "DELETE")]
        [string]$Method = "GET",
        
        [Parameter()]
        [hashtable]$Headers,
        
        [Parameter()]
        [string]$Body
    )
    
    try {
        $client = New-Object System.Net.Http.HttpClient
        
        if ($Headers) {
            foreach ($header in $Headers.GetEnumerator()) {
                $client.DefaultRequestHeaders.Add($header.Key, $header.Value)
            }
        }
        
        $request = New-Object System.Net.Http.HttpRequestMessage($Method, $Url)
        
        if ($Body) {
            $request.Content = New-Object System.Net.Http.StringContent($Body)
        }
        
        $response = $client.SendAsync($request).Result
        $responseContent = $response.Content.ReadAsStringAsync().Result
        
        return [PSCustomObject]@{
            StatusCode = $response.StatusCode
            Content = $responseContent
            Headers = $response.Headers
        }
    }
    catch {
        Write-Error "HTTP请求失败：$_"
        return $null
    }
}

# 示例：创建Web服务器并发送请求
$server = Start-Job -ScriptBlock {
    New-CrossPlatformWebServer -Url "http://localhost:8080/" `
        -RequestHandler {
            param($request, $response)
            $responseString = "收到请求：$($request.Url)"
            $buffer = [System.Text.Encoding]::UTF8.GetBytes($responseString)
            $response.ContentLength64 = $buffer.Length
            $response.OutputStream.Write($buffer, 0, $buffer.Length)
        }
}

Start-Sleep -Seconds 2

$result = Send-CrossPlatformHttpRequest -Url "http://localhost:8080/" `
    -Method "GET" `
    -Headers @{
        "User-Agent" = "PowerShell Client"
    }

跨平台文件系统监控

使用.NET Core的文件系统监控功能，我们可以实现跨平台的文件系统事件监控：

function Start-CrossPlatformFileWatcher {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$Path,
        
        [Parameter()]
        [ValidateSet("Created", "Changed", "Deleted", "Renamed", "All")]
        [string[]]$Events = @("All"),
        
        [Parameter()]
        [string]$Filter = "*.*",
        
        [Parameter()]
        [switch]$IncludeSubdirectories,
        
        [Parameter()]
        [scriptblock]$OnEvent
    )
    
    try {
        $watcher = New-Object System.IO.FileSystemWatcher
        $watcher.Path = $Path
        $watcher.Filter = $Filter
        $watcher.IncludeSubdirectories = $IncludeSubdirectories
        $watcher.EnableRaisingEvents = $true
        
        # 注册事件处理程序
        if ($Events -contains "All" -or $Events -contains "Created") {
            $watcher.Created += {
                if ($OnEvent) {
                    $OnEvent.Invoke("Created", $EventArgs)
                }
            }
        }
        
        if ($Events -contains "All" -or $Events -contains "Changed") {
            $watcher.Changed += {
                if ($OnEvent) {
                    $OnEvent.Invoke("Changed", $EventArgs)
                }
            }
        }
        
        if ($Events -contains "All" -or $Events -contains "Deleted") {
            $watcher.Deleted += {
                if ($OnEvent) {
                    $OnEvent.Invoke("Deleted", $EventArgs)
                }
            }
        }
        
        if ($Events -contains "All" -or $Events -contains "Renamed") {
            $watcher.Renamed += {
                if ($OnEvent) {
                    $OnEvent.Invoke("Renamed", $EventArgs)
                }
            }
        }
        
        Write-Host "文件系统监控已启动，监控路径：$Path" -ForegroundColor Green
        
        return $watcher
    }
    catch {
        Write-Error "文件系统监控启动失败：$_"
        return $null
    }
}

# 示例：监控文件系统变化
$watcher = Start-CrossPlatformFileWatcher -Path "C:\Temp" `
    -Events @("Created", "Changed", "Deleted") `
    -Filter "*.txt" `
    -IncludeSubdirectories `
    -OnEvent {
        param($eventType, $eventArgs)
        Write-Host "检测到文件系统事件：$eventType" -ForegroundColor Yellow
        Write-Host "文件路径：$($eventArgs.FullPath)" -ForegroundColor Cyan
    }

跨平台日志管理

使用.NET Core的日志框架，我们可以实现跨平台的日志管理：

function New-CrossPlatformLogger {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$LogPath,
        
        [Parameter()]
        [ValidateSet("Debug", "Info", "Warning", "Error", "Critical")]
        [string]$LogLevel = "Info",
        
        [Parameter()]
        [switch]$EnableConsoleOutput,
        
        [Parameter()]
        [switch]$EnableFileOutput,
        
        [Parameter()]
        [switch]$EnableJsonFormat
    )
    
    try {
        $logger = [PSCustomObject]@{
            LogPath = $LogPath
            LogLevel = $LogLevel
            EnableConsoleOutput = $EnableConsoleOutput
            EnableFileOutput = $EnableFileOutput
            EnableJsonFormat = $EnableJsonFormat
            LogLevels = @{
                "Debug" = 0
                "Info" = 1
                "Warning" = 2
                "Error" = 3
                "Critical" = 4
            }
        }
        
        # 创建日志目录
        if ($EnableFileOutput) {
            $logDir = Split-Path -Parent $LogPath
            if (-not (Test-Path $logDir)) {
                New-Item -ItemType Directory -Path $logDir -Force | Out-Null
            }
        }
        
        # 添加日志方法
        $logger | Add-Member -MemberType ScriptMethod -Name "Log" -Value {
            param(
                [string]$Level,
                [string]$Message,
                [hashtable]$Properties
            )
            
            if ($this.LogLevels[$Level] -ge $this.LogLevels[$this.LogLevel]) {
                $timestamp = Get-Date -Format "yyyy-MM-dd HH:mm:ss.fff"
                $logEntry = [PSCustomObject]@{
                    Timestamp = $timestamp
                    Level = $Level
                    Message = $Message
                    Properties = $Properties
                }
                
                if ($this.EnableJsonFormat) {
                    $logString = $logEntry | ConvertTo-Json
                }
                else {
                    $logString = "[$timestamp] [$Level] $Message"
                    if ($Properties) {
                        $logString += " | " + ($Properties.GetEnumerator() | ForEach-Object { "$($_.Key)=$($_.Value)" }) -join " "
                    }
                }
                
                if ($this.EnableConsoleOutput) {
                    switch ($Level) {
                        "Debug" { Write-Debug $logString }
                        "Info" { Write-Host $logString -ForegroundColor White }
                        "Warning" { Write-Host $logString -ForegroundColor Yellow }
                        "Error" { Write-Host $logString -ForegroundColor Red }
                        "Critical" { Write-Host $logString -ForegroundColor DarkRed }
                    }
                }
                
                if ($this.EnableFileOutput) {
                    $logString | Out-File -FilePath $this.LogPath -Append
                }
            }
        }
        
        return $logger
    }
    catch {
        Write-Error "创建日志记录器失败：$_"
        return $null
    }
}

# 示例：使用日志记录器
$logger = New-CrossPlatformLogger -LogPath "C:\Logs\app.log" `
    -LogLevel "Info" `
    -EnableConsoleOutput `
    -EnableFileOutput `
    -EnableJsonFormat

$logger.Log("Info", "应用程序启动", @{
    "Version" = "1.0.0"
    "Platform" = $PSVersionTable.Platform
})

$logger.Log("Warning", "磁盘空间不足", @{
    "Drive" = "C:"
    "FreeSpace" = "1.2GB"
})

最佳实践

使用.NET Core的跨平台API而不是平台特定API
实现优雅的错误处理和日志记录
使用连接池和资源管理
实现适当的超时和重试机制
使用异步操作提高性能
实现适当的清理和资源释放
使用配置文件管理设置
实现适当的权限检查

2024-06-18发表2024-06-18更新powershell / tip7 分钟读完 (大约1000个字)

PowerShell 技能连载 - 变更管理

在系统管理中，变更管理对于确保系统稳定性和可靠性至关重要。本文将介绍如何使用PowerShell构建一个变更管理系统，包括变更评估、实施和验证等功能。

变更评估

首先，让我们创建一个用于管理变更评估的函数：

function Assess-SystemChanges {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$AssessmentID,
        
        [Parameter()]
        [string[]]$ChangeTypes,
        
        [Parameter()]
        [ValidateSet("Full", "Quick", "Custom")]
        [string]$AssessmentMode = "Full",
        
        [Parameter()]
        [hashtable]$AssessmentConfig,
        
        [Parameter()]
        [string]$LogPath
    )
    
    try {
        $assessor = [PSCustomObject]@{
            AssessmentID = $AssessmentID
            StartTime = Get-Date
            AssessmentStatus = @{}
            Changes = @{}
            Risks = @()
        }
        
        # 获取评估配置
        $config = Get-AssessmentConfig -AssessmentID $AssessmentID
        
        # 管理评估
        foreach ($type in $ChangeTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Changes = @{}
                Risks = @()
            }
            
            # 应用评估配置
            $typeConfig = Apply-AssessmentConfig `
                -Config $config `
                -Type $type `
                -Mode $AssessmentMode `
                -Settings $AssessmentConfig
            
            $status.Config = $typeConfig
            
            # 评估系统变更
            $changes = Assess-ChangeImpact `
                -Type $type `
                -Config $typeConfig
            
            $status.Changes = $changes
            $assessor.Changes[$type] = $changes
            
            # 检查变更风险
            $risks = Check-ChangeRisks `
                -Changes $changes `
                -Config $typeConfig
            
            $status.Risks = $risks
            $assessor.Risks += $risks
            
            # 更新评估状态
            if ($risks.Count -gt 0) {
                $status.Status = "HighRisk"
            }
            else {
                $status.Status = "LowRisk"
            }
            
            $assessor.AssessmentStatus[$type] = $status
        }
        
        # 记录评估日志
        if ($LogPath) {
            $assessor | ConvertTo-Json -Depth 10 | Out-File -FilePath $LogPath
        }
        
        # 更新评估器状态
        $assessor.EndTime = Get-Date
        
        return $assessor
    }
    catch {
        Write-Error "变更评估失败：$_"
        return $null
    }
}

变更实施

接下来，创建一个用于管理变更实施的函数：

function Implement-SystemChanges {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$ImplementationID,
        
        [Parameter()]
        [string[]]$ImplementationTypes,
        
        [Parameter()]
        [ValidateSet("Rolling", "BlueGreen", "Canary")]
        [string]$ImplementationMode = "Rolling",
        
        [Parameter()]
        [hashtable]$ImplementationConfig,
        
        [Parameter()]
        [string]$ReportPath
    )
    
    try {
        $implementer = [PSCustomObject]@{
            ImplementationID = $ImplementationID
            StartTime = Get-Date
            ImplementationStatus = @{}
            Implementations = @{}
            Actions = @()
        }
        
        # 获取实施配置
        $config = Get-ImplementationConfig -ImplementationID $ImplementationID
        
        # 管理实施
        foreach ($type in $ImplementationTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Implementations = @{}
                Actions = @()
            }
            
            # 应用实施配置
            $typeConfig = Apply-ImplementationConfig `
                -Config $config `
                -Type $type `
                -Mode $ImplementationMode `
                -Settings $ImplementationConfig
            
            $status.Config = $typeConfig
            
            # 实施系统变更
            $implementations = Implement-ChangeActions `
                -Type $type `
                -Config $typeConfig
            
            $status.Implementations = $implementations
            $implementer.Implementations[$type] = $implementations
            
            # 执行实施动作
            $actions = Execute-ImplementationActions `
                -Implementations $implementations `
                -Config $typeConfig
            
            $status.Actions = $actions
            $implementer.Actions += $actions
            
            # 更新实施状态
            if ($actions.Count -gt 0) {
                $status.Status = "InProgress"
            }
            else {
                $status.Status = "Completed"
            }
            
            $implementer.ImplementationStatus[$type] = $status
        }
        
        # 生成报告
        if ($ReportPath) {
            $report = Generate-ImplementationReport `
                -Implementer $implementer `
                -Config $config
            
            $report | ConvertTo-Json -Depth 10 | Out-File -FilePath $ReportPath
        }
        
        # 更新实施器状态
        $implementer.EndTime = Get-Date
        
        return $implementer
    }
    catch {
        Write-Error "变更实施失败：$_"
        return $null
    }
}

变更验证

最后，创建一个用于管理变更验证的函数：

function Validate-SystemChanges {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$ValidationID,
        
        [Parameter()]
        [string[]]$ValidationTypes,
        
        [Parameter()]
        [ValidateSet("Full", "Quick", "Custom")]
        [string]$ValidationMode = "Full",
        
        [Parameter()]
        [hashtable]$ValidationConfig,
        
        [Parameter()]
        [string]$ReportPath
    )
    
    try {
        $validator = [PSCustomObject]@{
            ValidationID = $ValidationID
            StartTime = Get-Date
            ValidationStatus = @{}
            Validations = @{}
            Issues = @()
        }
        
        # 获取验证配置
        $config = Get-ValidationConfig -ValidationID $ValidationID
        
        # 管理验证
        foreach ($type in $ValidationTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Validations = @{}
                Issues = @()
            }
            
            # 应用验证配置
            $typeConfig = Apply-ValidationConfig `
                -Config $config `
                -Type $type `
                -Mode $ValidationMode `
                -Settings $ValidationConfig
            
            $status.Config = $typeConfig
            
            # 验证系统变更
            $validations = Validate-ChangeResults `
                -Type $type `
                -Config $typeConfig
            
            $status.Validations = $validations
            $validator.Validations[$type] = $validations
            
            # 检查验证问题
            $issues = Check-ValidationIssues `
                -Validations $validations `
                -Config $typeConfig
            
            $status.Issues = $issues
            $validator.Issues += $issues
            
            # 更新验证状态
            if ($issues.Count -gt 0) {
                $status.Status = "Failed"
            }
            else {
                $status.Status = "Passed"
            }
            
            $validator.ValidationStatus[$type] = $status
        }
        
        # 生成报告
        if ($ReportPath) {
            $report = Generate-ValidationReport `
                -Validator $validator `
                -Config $config
            
            $report | ConvertTo-Json -Depth 10 | Out-File -FilePath $ReportPath
        }
        
        # 更新验证器状态
        $validator.EndTime = Get-Date
        
        return $validator
    }
    catch {
        Write-Error "变更验证失败：$_"
        return $null
    }
}

使用示例

以下是如何使用这些函数来管理变更的示例：

# 评估系统变更
$assessor = Assess-SystemChanges -AssessmentID "ASSESSMENT001" `
    -ChangeTypes @("Configuration", "Software", "Hardware", "Network") `
    -AssessmentMode "Full" `
    -AssessmentConfig @{
        "Configuration" = @{
            "Categories" = @("System", "Application", "Security")
            "Attributes" = @("Settings", "Parameters", "Policies")
            "Filter" = "Status = Active"
            "Retention" = 7
        }
        "Software" = @{
            "Categories" = @("OS", "Application", "Driver")
            "Attributes" = @("Version", "Patch", "Update")
            "Filter" = "Status = Installed"
            "Retention" = 7
        }
        "Hardware" = @{
            "Categories" = @("Server", "Storage", "Network")
            "Attributes" = @("Capacity", "Performance", "Compatibility")
            "Filter" = "Status = Active"
            "Retention" = 7
        }
        "Network" = @{
            "Categories" = @("Topology", "Security", "Performance")
            "Attributes" = @("Connectivity", "Bandwidth", "Latency")
            "Filter" = "Status = Connected"
            "Retention" = 7
        }
    } `
    -LogPath "C:\Logs\change_assessment.json"

# 实施系统变更
$implementer = Implement-SystemChanges -ImplementationID "IMPLEMENTATION001" `
    -ImplementationTypes @("Configuration", "Software", "Hardware", "Network") `
    -ImplementationMode "Rolling" `
    -ImplementationConfig @{
        "Configuration" = @{
            "Actions" = @("Backup", "Update", "Verify")
            "Rollback" = $true
            "Timeout" = 300
            "Report" = $true
        }
        "Software" = @{
            "Actions" = @("Backup", "Install", "Verify")
            "Rollback" = $true
            "Timeout" = 600
            "Report" = $true
        }
        "Hardware" = @{
            "Actions" = @("Backup", "Replace", "Verify")
            "Rollback" = $true
            "Timeout" = 900
            "Report" = $true
        }
        "Network" = @{
            "Actions" = @("Backup", "Configure", "Verify")
            "Rollback" = $true
            "Timeout" = 300
            "Report" = $true
        }
    } `
    -ReportPath "C:\Reports\change_implementation.json"

# 验证系统变更
$validator = Validate-SystemChanges -ValidationID "VALIDATION001" `
    -ValidationTypes @("Configuration", "Software", "Hardware", "Network") `
    -ValidationMode "Full" `
    -ValidationConfig @{
        "Configuration" = @{
            "Metrics" = @("Compliance", "Security", "Performance")
            "Threshold" = 90
            "Interval" = 60
            "Report" = $true
        }
        "Software" = @{
            "Metrics" = @("Functionality", "Stability", "Performance")
            "Threshold" = 90
            "Interval" = 60
            "Report" = $true
        }
        "Hardware" = @{
            "Metrics" = @("Availability", "Performance", "Health")
            "Threshold" = 90
            "Interval" = 60
            "Report" = $true
        }
        "Network" = @{
            "Metrics" = @("Connectivity", "Performance", "Security")
            "Threshold" = 90
            "Interval" = 60
            "Report" = $true
        }
    } `
    -ReportPath "C:\Reports\change_validation.json"

最佳实践

实施变更评估
管理变更实施
验证变更结果
保持详细的变更记录
定期进行变更审查
实施回滚策略
建立变更控制
保持系统文档更新

2024-06-14发表2024-06-14更新powershell / tip11 分钟读完 (大约1583个字)

PowerShell 技能连载 - 7 个用于管理 DHCP 的最佳 PowerShell 脚本

从DHCP范围获取IP看起来很容易，但当涉及检查每个范围的健康状况时，情况就变得非常困难了，无论是满还是是否需要创建任何超范围。如果您是服务器管理员，您真的知道我在说什么，当客户抱怨他们没有获得任何IP地址时确实很痛苦，并且你会发现在你的范围中一切都是空白。

使DHCP服务器或范围动态更新多个DHCP服务器上的DNS并不容易，并且知道它所处域中确切位置的范围更加艰难。通过Powershellguru，我的目标始终是为我在生产环境中通常遇到的问题提供简单解决方案。以下是一些关于DHCP及其工作原理以及Powershell相关书籍可以参考。希望您喜欢，并且大多数免费软件总是驻留在维基百科和微软网站上。

DHCP有用的Powershell命令

为DHCP服务器服务添加一个对象

1	Add-DhcpServerInDC -DnsName "dhcp.xyz.com"

备份 DHCP 数据库

1	Backup-DhcpServer -ComputerName "dhcp.xyz.com" -Path "%systemroot\dhcp\backup"

导出所有 DHCP 设置

1	Export-DhcpServer -ComputerName "dhcp.xyz.com" -File "path\config.xml"

获取范围内的所有活动租约

1	Get-DhcpServerv4Lease -ComputerName "dhcp.xyz.com" -ScopeId IP

按名称获取策略的属性

1	Get-DhcpServerv4Policy -ComputerName "dhcp.xyz.com" -Name "policyname"

2024-06-07发表2024-06-07更新powershell / tip10 分钟读完 (大约1491个字)

PowerShell 技能连载 - 管理 DNS 的 8 个最佳 Powershell 脚本

Active Directory 的另一个主要部分是 DNS。如果您是 Windows 服务器管理员，那么您很清楚它的工作原理，但在没有知道命令实际操作的情况下，使用 Powershell 进行管理和自动化有时会变得困难。

DNS 在组织中扮演着至关重要的角色，因此需要一些窥视来确保其正常运行。在我们领域中，通过 GUI 为服务器或工作站创建 DNS 记录似乎很容易，但当需要同时创建多个 DNS 记录时就会变得困难起来。从创建记录到将其指向正确的 IP 地址都具有挑战性。但我已经接受了这一挑战，并编写了一些相关脚本，并对其进行了优化以便无需任何混乱即可运行。如果您喜欢这部分内容，则肯定也会喜欢 DHCP powershell 脚本以及我的 powershell 脚本库。

好的开始意味着良好的结束，在下面是一些例子。从恢复 DNS 服务器到在 DNS 中创建区域，我都做到了。以下是一些书籍供您参考，如果您打算学习关于 DNS 或 powershell 的知识，请查阅以下最佳可用 DNS Powershell 脚本列表。

对于DNS有用的Powershell命令

添加DNS转发器

1	Add-DnsServerForwarder -IPAddress IP -PassThru

添加根提示服务器

1	Add-DnsServerRootHint -NameServer "domain.com" -IPAddress IP

获取DNS服务器配置

1	Get-DnsServer -ComputerName "IP"

获取DNS服务器转发器设置

1	Get-DnsServerForwarder

从DNS服务器中删除转发器

1	Remove-DnsServerForwarder -IPAddress IP -PassThru

设置DNS服务器配置

1	Get-DnsServer -CimSession IP \| Set-DnsServer

清除 DNS 缓存

1	Clear-DnsServerCache -ComputerName "Name of server" -Force

恢复 DNS 区域

在 Powershell 中使用简单命令创建区域更加容易，无需转到 dnsmgmt.msc 创建新的所需区域。

工作原理

脚本将在备份文件夹中搜索备份，并搜索可以恢复的指定区域。

可能结果

如果您提供了所有正确信息，则 DNS 区域应该会通过最新备份恢复。

下载

您可以从以下链接下载脚本：

恢复 DNS 区域

创建主/辅助/存根区域

错误地删除了 DNS 区域？别担心，只要有 dns 区域的备份。这是一个非常方便的脚本来恢复 DNS 区域。

工作原理

只需提供将在所需服务器上创建辅助区域的区 IP 地址即可。

问题结果

主 / 辅助 / 存根区将在所需服务器上创建。

您可从下方链接下载此文件.

nslookup

2024-06-05发表2024-06-05更新powershell / tip1 分钟读完 (大约163个字)

PowerShell 技能连载 - 管道机制解析

管道基础原理

# 基础管道操作
Get-Process | Where-Object {$_.CPU -gt 100} | Sort-Object CPU -Descending

# 参数绑定模式
Get-ChildItem | ForEach-Object {
    $_.Name.ToUpper()
}

高级应用场景

并行处理优化：

1..100 | ForEach-Object -Parallel {
    "Processing $_"
    Start-Sleep -Milliseconds 100
} -ThrottleLimit 5

数据分块处理：

1
2
3

Get-Content bigfile.log | 
    Select-Object -First 1000 | 
    Group-Object -Property {$_.Substring(0,6)}

最佳实践

使用Begin/Process/End块：

function Process-Files {
    param([Parameter(ValueFromPipeline)]$File)
    
    begin { $counter = 0 }
    process {
        $counter++
        "Processing file #{0}: {1}" -f $counter, $File.Name
    }
    end { "Total processed: $counter" }
}

优化管道性能：

# 避免不必要的格式转换
Get-Process | 
    Select-Object Name,CPU,WS | 
    Export-Csv processes.csv -NoTypeInformation

错误处理机制：

Get-Content filelist.txt | 
    ForEach-Object {
        try {
            Get-Item $_ -ErrorAction Stop
        }
        catch {
            Write-Warning "Missing file: $_"
        }
    }

2024-05-31发表2024-05-31更新powershell / tip7 分钟读完 (大约976个字)

PowerShell 技能连载 - 补丁管理

在系统管理中，补丁管理对于确保系统的安全性和稳定性至关重要。本文将介绍如何使用PowerShell构建一个补丁管理系统，包括补丁扫描、评估和部署等功能。

补丁扫描

首先，让我们创建一个用于管理补丁扫描的函数：

function Scan-SystemPatches {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$ScanID,
        
        [Parameter()]
        [string[]]$ScanTypes,
        
        [Parameter()]
        [ValidateSet("Full", "Quick", "Custom")]
        [string]$ScanMode = "Full",
        
        [Parameter()]
        [hashtable]$ScanConfig,
        
        [Parameter()]
        [string]$LogPath
    )
    
    try {
        $scanner = [PSCustomObject]@{
            ScanID = $ScanID
            StartTime = Get-Date
            ScanStatus = @{}
            Patches = @{}
            Issues = @()
        }
        
        # 获取扫描配置
        $config = Get-ScanConfig -ScanID $ScanID
        
        # 管理扫描
        foreach ($type in $ScanTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Patches = @{}
                Issues = @()
            }
            
            # 应用扫描配置
            $typeConfig = Apply-ScanConfig `
                -Config $config `
                -Type $type `
                -Mode $ScanMode `
                -Settings $ScanConfig
            
            $status.Config = $typeConfig
            
            # 扫描系统补丁
            $patches = Scan-PatchStatus `
                -Type $type `
                -Config $typeConfig
            
            $status.Patches = $patches
            $scanner.Patches[$type] = $patches
            
            # 检查补丁问题
            $issues = Check-PatchIssues `
                -Patches $patches `
                -Config $typeConfig
            
            $status.Issues = $issues
            $scanner.Issues += $issues
            
            # 更新扫描状态
            if ($issues.Count -gt 0) {
                $status.Status = "Warning"
            }
            else {
                $status.Status = "Success"
            }
            
            $scanner.ScanStatus[$type] = $status
        }
        
        # 记录扫描日志
        if ($LogPath) {
            $scanner | ConvertTo-Json -Depth 10 | Out-File -FilePath $LogPath
        }
        
        # 更新扫描器状态
        $scanner.EndTime = Get-Date
        
        return $scanner
    }
    catch {
        Write-Error "补丁扫描失败：$_"
        return $null
    }
}

补丁评估

接下来，创建一个用于管理补丁评估的函数：

function Assess-SystemPatches {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$AssessmentID,
        
        [Parameter()]
        [string[]]$AssessmentTypes,
        
        [Parameter()]
        [ValidateSet("Security", "Compatibility", "Dependency")]
        [string]$AssessmentMode = "Security",
        
        [Parameter()]
        [hashtable]$AssessmentConfig,
        
        [Parameter()]
        [string]$ReportPath
    )
    
    try {
        $assessor = [PSCustomObject]@{
            AssessmentID = $AssessmentID
            StartTime = Get-Date
            AssessmentStatus = @{}
            Assessments = @{}
            Findings = @()
        }
        
        # 获取评估配置
        $config = Get-AssessmentConfig -AssessmentID $AssessmentID
        
        # 管理评估
        foreach ($type in $AssessmentTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Assessments = @{}
                Findings = @()
            }
            
            # 应用评估配置
            $typeConfig = Apply-AssessmentConfig `
                -Config $config `
                -Type $type `
                -Mode $AssessmentMode `
                -Settings $AssessmentConfig
            
            $status.Config = $typeConfig
            
            # 评估系统补丁
            $assessments = Assess-PatchStatus `
                -Type $type `
                -Config $typeConfig
            
            $status.Assessments = $assessments
            $assessor.Assessments[$type] = $assessments
            
            # 生成评估发现
            $findings = Generate-AssessmentFindings `
                -Assessments $assessments `
                -Config $typeConfig
            
            $status.Findings = $findings
            $assessor.Findings += $findings
            
            # 更新评估状态
            if ($findings.Count -gt 0) {
                $status.Status = "ActionRequired"
            }
            else {
                $status.Status = "Compliant"
            }
            
            $assessor.AssessmentStatus[$type] = $status
        }
        
        # 生成报告
        if ($ReportPath) {
            $report = Generate-AssessmentReport `
                -Assessor $assessor `
                -Config $config
            
            $report | ConvertTo-Json -Depth 10 | Out-File -FilePath $ReportPath
        }
        
        # 更新评估器状态
        $assessor.EndTime = Get-Date
        
        return $assessor
    }
    catch {
        Write-Error "补丁评估失败：$_"
        return $null
    }
}

补丁部署

最后，创建一个用于管理补丁部署的函数：

function Deploy-SystemPatches {
    [CmdletBinding()]
    param(
        [Parameter(Mandatory = $true)]
        [string]$DeploymentID,
        
        [Parameter()]
        [string[]]$DeploymentTypes,
        
        [Parameter()]
        [ValidateSet("Automatic", "Manual", "Scheduled")]
        [string]$DeploymentMode = "Automatic",
        
        [Parameter()]
        [hashtable]$DeploymentConfig,
        
        [Parameter()]
        [string]$ReportPath
    )
    
    try {
        $deployer = [PSCustomObject]@{
            DeploymentID = $DeploymentID
            StartTime = Get-Date
            DeploymentStatus = @{}
            Deployments = @{}
            Actions = @()
        }
        
        # 获取部署配置
        $config = Get-DeploymentConfig -DeploymentID $DeploymentID
        
        # 管理部署
        foreach ($type in $DeploymentTypes) {
            $status = [PSCustomObject]@{
                Type = $type
                Status = "Unknown"
                Config = @{}
                Deployments = @{}
                Actions = @()
            }
            
            # 应用部署配置
            $typeConfig = Apply-DeploymentConfig `
                -Config $config `
                -Type $type `
                -Mode $DeploymentMode `
                -Settings $DeploymentConfig
            
            $status.Config = $typeConfig
            
            # 部署系统补丁
            $deployments = Deploy-PatchUpdates `
                -Type $type `
                -Config $typeConfig
            
            $status.Deployments = $deployments
            $deployer.Deployments[$type] = $deployments
            
            # 执行部署动作
            $actions = Execute-DeploymentActions `
                -Deployments $deployments `
                -Config $typeConfig
            
            $status.Actions = $actions
            $deployer.Actions += $actions
            
            # 更新部署状态
            if ($actions.Count -gt 0) {
                $status.Status = "Deployed"
            }
            else {
                $status.Status = "Failed"
            }
            
            $deployer.DeploymentStatus[$type] = $status
        }
        
        # 生成报告
        if ($ReportPath) {
            $report = Generate-DeploymentReport `
                -Deployer $deployer `
                -Config $config
            
            $report | ConvertTo-Json -Depth 10 | Out-File -FilePath $ReportPath
        }
        
        # 更新部署器状态
        $deployer.EndTime = Get-Date
        
        return $deployer
    }
    catch {
        Write-Error "补丁部署失败：$_"
        return $null
    }
}

使用示例

以下是如何使用这些函数来管理补丁的示例：

# 扫描系统补丁
$scanner = Scan-SystemPatches -ScanID "SCAN001" `
    -ScanTypes @("Security", "Critical", "Optional", "Driver") `
    -ScanMode "Full" `
    -ScanConfig @{
        "Security" = @{
            "Severity" = @("Critical", "Important")
            "Categories" = @("Security", "Defender")
            "Filter" = "Installed = false"
            "Retention" = 7
        }
        "Critical" = @{
            "Severity" = @("Critical")
            "Categories" = @("Security", "System")
            "Filter" = "Installed = false"
            "Retention" = 7
        }
        "Optional" = @{
            "Severity" = @("Moderate", "Low")
            "Categories" = @("Feature", "Update")
            "Filter" = "Installed = false"
            "Retention" = 30
        }
        "Driver" = @{
            "Severity" = @("Critical", "Important")
            "Categories" = @("Driver")
            "Filter" = "Installed = false"
            "Retention" = 7
        }
    } `
    -LogPath "C:\Logs\patch_scan.json"

# 评估系统补丁
$assessor = Assess-SystemPatches -AssessmentID "ASSESSMENT001" `
    -AssessmentTypes @("Security", "Compatibility", "Dependency") `
    -AssessmentMode "Security" `
    -AssessmentConfig @{
        "Security" = @{
            "Standards" = @("CVE", "CVSS", "NIST")
            "Rules" = @("Vulnerability", "Exploit", "Impact")
            "Threshold" = 0.95
            "Report" = $true
        }
        "Compatibility" = @{
            "Standards" = @("Hardware", "Software", "Driver")
            "Rules" = @("Version", "Platform", "Architecture")
            "Threshold" = 0.95
            "Report" = $true
        }
        "Dependency" = @{
            "Standards" = @("Prerequisite", "Conflict", "Order")
            "Rules" = @("Requirement", "Dependency", "Sequence")
            "Threshold" = 0.95
            "Report" = $true
        }
    } `
    -ReportPath "C:\Reports\patch_assessment.json"

# 部署系统补丁
$deployer = Deploy-SystemPatches -DeploymentID "DEPLOYMENT001" `
    -DeploymentTypes @("Security", "Critical", "Optional") `
    -DeploymentMode "Automatic" `
    -DeploymentConfig @{
        "Security" = @{
            "Scope" = "All"
            "Schedule" = "Immediate"
            "Reboot" = "Required"
            "Rollback" = $true
        }
        "Critical" = @{
            "Scope" = "All"
            "Schedule" = "Immediate"
            "Reboot" = "Required"
            "Rollback" = $true
        }
        "Optional" = @{
            "Scope" = "All"
            "Schedule" = "OffHours"
            "Reboot" = "Optional"
            "Rollback" = $true
        }
    } `
    -ReportPath "C:\Reports\patch_deployment.json"

最佳实践

实施补丁扫描
评估补丁影响
管理补丁部署
保持详细的补丁记录
定期进行补丁评估
实施部署策略
建立回滚机制
保持系统文档更新