maxali · October 18, 2022 16:07
diff --git a/InstallZeroTier.ps1 b/InstallZeroTier.ps1
 <#
  .SYNOPSIS
    Installs ZeroTier
  .DESCRIPTION
    Install ZeroTier and join/configure ZeroTier network
  .EXAMPLE
    ./InstallZeroTier.ps1 -NetworkID [Network ID]
    ./InstallZeroTier.ps1 -NetworkID [Network ID] -Token [API Token] -Headless
  .NOTES
    Requires PowerShell 7 or higher (installed if missing) when using the $Token parameter.
    A UAC prompt will appear during install if -Headless is not used.
 #>

 param (
  [Parameter(Mandatory = $true)]
  [string]$NetworkID,     # ZeroTier Network ID
  [string]$Token,         # ZeroTier API Token
  [switch]$Headless,      # Run msi in headless mode
  [Alias('AllowDNS')]
  [switch]$ManageDNS,     # Allows ZeroTier to manage DNS
  [Alias('AllowGlobal')]
  [switch]$GlobalRoutes,  # Allows ZeroTier managed routes to overlap public IP space
  [Alias('AllowDefault')]
  [switch]$DefaultRoute   # Allows ZeroTier to override system default route (full tunnel)
 )

 $DownloadURL = 'https://download.zerotier.com/dist/ZeroTier%20One.msi'
 $Installer = "$env:temp\ZeroTierOne.msi"
 $ZTCLI = 'C:\Program Files (x86)\ZeroTier\One\zerotier-cli.bat'

 # Set PowerShell to TLS 1.2
 [Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

 if ($Token) {
  # Check for required PowerShell version (7+)
  if (!($PSVersionTable.PSVersion.Major -ge 7)) {
    try {
    
      # Install PowerShell 7 if missing
      if (!(Test-Path "$env:SystemDrive\Program Files\PowerShell\7")) {
        Write-Output 'Installing PowerShell version 7...'
        Invoke-Expression "& { $(Invoke-RestMethod https://aka.ms/install-powershell.ps1) } -UseMSI -Quiet"
      }

      # Refresh PATH
      $env:Path = [System.Environment]::GetEnvironmentVariable('Path', 'Machine') + ';' + [System.Environment]::GetEnvironmentVariable('Path', 'User')
    
      # Restart script in PowerShell 7
      pwsh -File "`"$PSCommandPath`"" @PSBoundParameters
    
    }
    catch {
      Write-Output 'PowerShell 7 was not installed. Update PowerShell and try again.'
      throw $Error
    }
    finally { exit $LASTEXITCODE }
  }
  else { $PSStyle.OutputRendering = 'PlainText' }
 }

 try {
  Write-Output 'Downloading ZeroTier...'
  Invoke-WebRequest -Uri $DownloadURL -OutFile $Installer
  
  Write-Output 'Installing ZeroTier...'
  if ($Headless) {
    # Install & unhide from installed programs list
    cmd /c msiexec /i $Installer /qn /norestart 'ZTHEADLESS=Yes'
    $Paths = 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall', 'HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall'
    $RegKey = Get-ChildItem -Path $Paths | Get-ItemProperty | Where-Object { $_.DisplayName -like 'ZeroTier One' } | Select-Object
    Remove-ItemProperty -Path $RegKey.PSPath -Name 'SystemComponent' -ErrorAction Ignore
  }
  else {
    # Install & close ui
    cmd /c msiexec /i $Installer /qn /norestart
    Stop-Process -Name 'zerotier_desktop_ui' -Force -ErrorAction Ignore
  }

  # Get Node ID
  $NodeID = (cmd /c $ZTCLI info).split(' ')[2]
 
  # API Member object properties
  $Member = @{
    name = $env:COMPUTERNAME
    description = ''
    config = @{ authorized = $True }
  } | ConvertTo-Json

  # Prepare API request
  $Params = @{
    Method = 'Post'
    Uri = "https://my.zerotier.com/api/network/$NetworkID/member/$NodeID"
    Body = $Member
    Authentication = 'Bearer'
    Token = ConvertTo-SecureString $Token -AsPlainText -Force
    MaximumRetryCount = 3
    RetryIntervalSec = 5
  }

  # Join network
  Write-Output "Configuring ZeroTier network $NetworkID as $NodeID..."
  if ($Token) { Invoke-RestMethod @Params } else { cmd /c $ZTCLI join $NetworkID }
    
  # Configure ZeroTier client
  if ($ManageDNS) { cmd /c $ZTCLI set $NetworkID allowDNS=1 | Out-Null }
  if ($GlobalRoutes) { cmd /c $ZTCLI set $NetworkID allowGlobal=1 | Out-Null }
  if ($DefaultRoute) { cmd /c $ZTCLI set $NetworkID allowDefault=1 | Out-Null }
 }
 catch { throw $Error }
 finally { Remove-Item $Installer -Force -ErrorAction Ignore }
	<#
	.SYNOPSIS
	Installs ZeroTier
	.DESCRIPTION
	Install ZeroTier and join/configure ZeroTier network
	.EXAMPLE
	./InstallZeroTier.ps1 -NetworkID [Network ID]
	./InstallZeroTier.ps1 -NetworkID [Network ID] -Token [API Token] -Headless
	.NOTES
	Requires PowerShell 7 or higher (installed if missing) when using the $Token parameter.
	A UAC prompt will appear during install if -Headless is not used.
	#>

	param (
	[Parameter(Mandatory = $true)]
	[string]$NetworkID, # ZeroTier Network ID
	[string]$Token, # ZeroTier API Token
	[switch]$Headless, # Run msi in headless mode
	[Alias('AllowDNS')]
	[switch]$ManageDNS, # Allows ZeroTier to manage DNS
	[Alias('AllowGlobal')]
	[switch]$GlobalRoutes, # Allows ZeroTier managed routes to overlap public IP space
	[Alias('AllowDefault')]
	[switch]$DefaultRoute # Allows ZeroTier to override system default route (full tunnel)
	)

	$DownloadURL = 'https://download.zerotier.com/dist/ZeroTier%20One.msi'
	$Installer = "$env:temp\ZeroTierOne.msi"
	$ZTCLI = 'C:\Program Files (x86)\ZeroTier\One\zerotier-cli.bat'

	# Set PowerShell to TLS 1.2
	[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

	if ($Token) {
	# Check for required PowerShell version (7+)
	if (!($PSVersionTable.PSVersion.Major -ge 7)) {
	try {

	# Install PowerShell 7 if missing
	if (!(Test-Path "$env:SystemDrive\Program Files\PowerShell\7")) {
	Write-Output 'Installing PowerShell version 7...'
	Invoke-Expression "& { $(Invoke-RestMethod https://aka.ms/install-powershell.ps1) } -UseMSI -Quiet"
	}

	# Refresh PATH
	$env:Path = [System.Environment]::GetEnvironmentVariable('Path', 'Machine') + ';' + [System.Environment]::GetEnvironmentVariable('Path', 'User')

	# Restart script in PowerShell 7
	pwsh -File "`"$PSCommandPath`"" @PSBoundParameters

	}
	catch {
	Write-Output 'PowerShell 7 was not installed. Update PowerShell and try again.'
	throw $Error
	}
	finally { exit $LASTEXITCODE }
	}
	else { $PSStyle.OutputRendering = 'PlainText' }
	}

	try {
	Write-Output 'Downloading ZeroTier...'
	Invoke-WebRequest -Uri $DownloadURL -OutFile $Installer

	Write-Output 'Installing ZeroTier...'
	if ($Headless) {
	# Install & unhide from installed programs list
	cmd /c msiexec /i $Installer /qn /norestart 'ZTHEADLESS=Yes'
	$Paths = 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall', 'HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall'
	$RegKey = Get-ChildItem -Path $Paths \| Get-ItemProperty \| Where-Object { $_.DisplayName -like 'ZeroTier One' } \| Select-Object
	Remove-ItemProperty -Path $RegKey.PSPath -Name 'SystemComponent' -ErrorAction Ignore
	}
	else {
	# Install & close ui
	cmd /c msiexec /i $Installer /qn /norestart
	Stop-Process -Name 'zerotier_desktop_ui' -Force -ErrorAction Ignore
	}

	# Get Node ID
	$NodeID = (cmd /c $ZTCLI info).split(' ')[2]

	# API Member object properties
	$Member = @{
	name = $env:COMPUTERNAME
	description = ''
	config = @{ authorized = $True }
	} \| ConvertTo-Json

	# Prepare API request
	$Params = @{
	Method = 'Post'
	Uri = "https://my.zerotier.com/api/network/$NetworkID/member/$NodeID"
	Body = $Member
	Authentication = 'Bearer'
	Token = ConvertTo-SecureString $Token -AsPlainText -Force
	MaximumRetryCount = 3
	RetryIntervalSec = 5
	}

	# Join network
	Write-Output "Configuring ZeroTier network $NetworkID as $NodeID..."
	if ($Token) { Invoke-RestMethod @Params } else { cmd /c $ZTCLI join $NetworkID }

	# Configure ZeroTier client
	if ($ManageDNS) { cmd /c $ZTCLI set $NetworkID allowDNS=1 \| Out-Null }
	if ($GlobalRoutes) { cmd /c $ZTCLI set $NetworkID allowGlobal=1 \| Out-Null }
	if ($DefaultRoute) { cmd /c $ZTCLI set $NetworkID allowDefault=1 \| Out-Null }
	}
	catch { throw $Error }
	finally { Remove-Item $Installer -Force -ErrorAction Ignore }