Azure Security. (#76)

Graph/Azure.Security/.universal/roles.ps1

@@ -0,0 +1,6 @@
+if ($PSUAzureSecurityTenantId) {
+    Connect-MgGraph -TenantId $PSUAzureSecurityTenantId -ClientSecretCredential $Secret:PSUAzureSecurityCredential -NoWelcome
+    Get-MgGroup | ForEach-Object {
+        New-PSURole -Name $_.DisplayName -ClaimType 'groups' -ClaimValue $_.Id -Description $_.Description
+    }
+}

Graph/Azure.Security/Azure.Security.psd1

@@ -0,0 +1,17 @@
+@{
+    ModuleVersion = '1.0.0'
+    GUID          = '8c0637ef-efa0-4ccb-a9b6-f81b94b6b807'
+    Author        = 'Ironman Software'
+    CompanyName   = 'Ironman Software'
+    Copyright     = '(c) Ironman Software. All rights reserved.'
+    Description   = 'Azure Security integration for PowerShell Universal.'
+    PrivateData   = @{
+        PSData = @{
+            Tags       = @('app', 'weather')
+            LicenseUri = 'https://github.com/ironmansoftware/scripts/blob/main/LICENSE'
+            ProjectUri = 'https://github.com/ironmansoftware/scripts/tree/main/Graph/Azure.Security'
+            IconUri    = 'https://raw.githubusercontent.com/ironmansoftware/scripts/main/images/script.png'
+        } 
+    } 
+}
+

Graph/Azure.Security/README.md

@@ -0,0 +1,12 @@
+# Azure Security
+
+Creates PowerShell Universal roles based on Entra ID groups in Azure. In conjunction with OpenID Connect, the roles will automatically be assigned to users based on their group membership. You can then assign resources to these roles in PowerShell Universal.
+
+## Requirements
+
+- `Microsoft.Graph` module
+
+## Configuration
+
+- `$PSUAzureSecurityTenantId` - The Azure AD tenant ID. Required.
+- `$Secret:PSUAzureSecurityCredential` - The Azure AD application client ID (user name) and client secret (password). Required.