Add: error handling to tests

2024-06-04 17:04:18 -05:00
parent 5c60f39dad
commit 2027e8b21b
54 changed files with 1545 additions and 1039 deletions
--- a/source/tests/Test-AntiPhishingPolicy.ps1
+++ b/source/tests/Test-AntiPhishingPolicy.ps1
@@ -10,66 +10,75 @@ function Test-AntiPhishingPolicy {
        #. .\source\Classes\CISAuditResult.ps1
        # Initialization code, if needed
        #$auditResults = @()
+        $recnum = "2.1.7"
    }

    process {
-        # 2.1.7 Ensure that an anti-phishing policy has been created

-        # Retrieve and validate the anti-phishing policies
-        $antiPhishPolicies = Get-AntiPhishPolicy
-        $validatedPolicies = $antiPhishPolicies | Where-Object {
-            $_.Enabled -eq $true -and
-            $_.PhishThresholdLevel -ge 2 -and
-            $_.EnableMailboxIntelligenceProtection -eq $true -and
-            $_.EnableMailboxIntelligence -eq $true -and
-            $_.EnableSpoofIntelligence -eq $true
-        }
+        try {
+            # 2.1.7 Ensure that an anti-phishing policy has been created

-        # Check if there is at least one policy that meets the requirements
-        $nonCompliantItems = $antiPhishPolicies | Where-Object {
-            $_.Enabled -ne $true -or
-            $_.PhishThresholdLevel -lt 2 -or
-            $_.EnableMailboxIntelligenceProtection -ne $true -or
-            $_.EnableMailboxIntelligence -ne $true -or
-            $_.EnableSpoofIntelligence -ne $true
-        }
-        $compliantItems = $validatedPolicies
-        $isCompliant = $compliantItems.Count -gt 0
+            # Retrieve and validate the anti-phishing policies
+            $antiPhishPolicies = Get-AntiPhishPolicy
+            $validatedPolicies = $antiPhishPolicies | Where-Object {
+                $_.Enabled -eq $true -and
+                $_.PhishThresholdLevel -ge 2 -and
+                $_.EnableMailboxIntelligenceProtection -eq $true -and
+                $_.EnableMailboxIntelligence -eq $true -and
+                $_.EnableSpoofIntelligence -eq $true
+            }

-        # Prepare failure reasons for non-compliant items
-        $nonCompliantNames = $nonCompliantItems | ForEach-Object { $_.Name }
-        $failureReasons = if ($nonCompliantNames.Count -gt 0) {
-            "Reason: Does not meet one or more compliance criteria.`nNon-compliant Policies:`n" + ($nonCompliantNames -join "`n")
-        }
-        else {
-            "N/A"
-        }
+            # Check if there is at least one policy that meets the requirements
+            $nonCompliantItems = $antiPhishPolicies | Where-Object {
+                $_.Enabled -ne $true -or
+                $_.PhishThresholdLevel -lt 2 -or
+                $_.EnableMailboxIntelligenceProtection -ne $true -or
+                $_.EnableMailboxIntelligence -ne $true -or
+                $_.EnableSpoofIntelligence -ne $true
+            }
+            $compliantItems = $validatedPolicies
+            $isCompliant = $compliantItems.Count -gt 0

-        # Prepare details for non-compliant items
-        $nonCompliantDetails = $nonCompliantItems | ForEach-Object {
-            "Policy: $($_.Name)"
-        }
-        $nonCompliantDetails = $nonCompliantDetails -join "`n"
+            # Prepare failure reasons for non-compliant items
+            $nonCompliantNames = $nonCompliantItems | ForEach-Object { $_.Name }
+            $failureReasons = if ($nonCompliantNames.Count -gt 0) {
+                "Reason: Does not meet one or more compliance criteria.`nNon-compliant Policies:`n" + ($nonCompliantNames -join "`n")
+            }
+            else {
+                "N/A"
+            }

-        # Prepare details based on compliance
-        $details = if ($nonCompliantItems) {
-            "Non-Compliant Items: $($nonCompliantItems.Count)`nDetails:`n$nonCompliantDetails"
-        }
-        else {
-            "Compliant Items: $($compliantItems.Count)"
-        }
+            # Prepare details for non-compliant items
+            $nonCompliantDetails = $nonCompliantItems | ForEach-Object {
+                "Policy: $($_.Name)"
+            }
+            $nonCompliantDetails = $nonCompliantDetails -join "`n"

-        # Parameter splat for Initialize-CISAuditResult function
-        $params = @{
-            Rec            = "2.1.7"
-            Result         = $nonCompliantItems.Count -eq 0
-            Status         = if ($isCompliant) { "Pass" } else { "Fail" }
-            Details        = $details
-            FailureReason  = $failureReasons
-        }
+            # Prepare details based on compliance
+            $details = if ($nonCompliantItems) {
+                "Non-Compliant Items: $($nonCompliantItems.Count)`nDetails:`n$nonCompliantDetails"
+            }
+            else {
+                "Compliant Items: $($compliantItems.Count)"
+            }

-        # Create and populate the CISAuditResult object
-        $auditResult = Initialize-CISAuditResult @params
+            # Parameter splat for Initialize-CISAuditResult function
+            $params = @{
+                Rec           = $recnum
+                Result        = $nonCompliantItems.Count -eq 0
+                Status        = if ($isCompliant) { "Pass" } else { "Fail" }
+                Details       = $details
+                FailureReason = $failureReasons
+            }
+
+            # Create and populate the CISAuditResult object
+            $auditResult = Initialize-CISAuditResult @params
+        }
+        catch {
+            Write-Error "An error occurred during the test: $_"
+            # Call Initialize-CISAuditResult with error parameters
+            $auditResult = Initialize-CISAuditResult -Rec $recnum -Failure
+        }
    }

    end {