New-PSUEndpoint: Get identity of caller

sandro · May 19, 2021, 9:06am

Hello community,

I am trying to get the identity of the caller of a New-PSUEndpoint. Something like this

New-PSUEndpoint -Url "/resabc" -Endpoint {
    param(
        $User
    )  

    $UserName = ($User.Identity.Name)
    $UserName = $UserName.Split('\')[1]
    # do something with $UserName
}

I use this in a custom role:

param(
    $User
)

$UserName = ($User.Identity.Name)
$UserName = $UserName.Split('\')[1]
$IsMember = $false
$ADGroup = "MyADGroup"
$Users = Get-ADGroupMember -Identity $ADGroup -Recursive | Select SamAccountName
$Users | ForEach-Object {
    If($_.SamAccountName -eq $UserName) {
        $IsMember = $true
    }
}
$IsMember

The parameter $User works just fine there but has no effect/value when used in New-PSUEndpoint.

I’ve configured PSU with Windows Authentication outside of IIS (Security - PowerShell Universal).

My goal is to execute actions in the code of the endpoint based on the user identity. I do not want the users to have to somehow provide their username. It should come with a request like this

Invoke-RestMethod http://servername.xy.com:5000/resabc

I’m assuming there is a simple paramater/variable/whatever to get the caller identity? I couldn’t find anything in this forum.

Thanks for any help on that!

Product: PowerShell Universal
Version: 1.5.13

psDevUK · May 20, 2021, 4:27pm

Hello @sandro I believe you are looking for the built in variable $user this is documented here:- Building Dashboards - PowerShell Universal and I have used this to greet users, and log to a log file on who actually visits the dashboard. I hope this helps

sandro · May 25, 2021, 7:42pm

Hello @psDevUK
Thank you for the hint. Just tried, I get AD domain and user of the logged in user when I use $user in a dashboard (i.e. New-UDDashboard). Unfortunately it does not seem to work with API endpoints (i.e. New-PSUEndpopint). So I’m assuming this variable is not supported (yet) in APIs?

adam · May 25, 2021, 8:14pm

This was a miss on my part. I can get this added. I’ll open an issue for it.

adam · June 9, 2021, 3:53pm

I realized that we are passing this in but as $Identity. I’ll fix this so it’s consist and passes the same variable name as dashboards ($UserName).

sandro · June 9, 2021, 9:05pm

Great! Just successfully tested this. Having it consistent later is of course welcome too.

Topic		Replies	Views
Username within New-PSUEndpoint not work PowerShell Universal	2	242	August 5, 2021
New-PSUEndpoint - Self referencing loop detected PowerShell Universal	5	1171	April 23, 2023
New-PSUEndpoint - few issues PowerShell Universal	1	926	November 18, 2020
$User outside of New-PSURole PowerShell Universal	1	210	November 8, 2021
Help with PSU API auth PowerShell Universal	3	670	October 15, 2020

New-PSUEndpoint: Get identity of caller

Related Topics