PowerShell – Log Out v1 – 15 Minutes – Lab Core

I created a log out script for AWS users. If they are idle for at least 60 minutes, a 15 minute countdown window comes up. I added this as a scheduled task to control when the form appears.

What the form looks like

If the user clicks the button, it closes the form, and does not log off the user.

A few clever bits:

I generate the form icon from a base64 string.
I verify the idle time using a Win32 API.
I hide the PowerShell window in the scheduled task.

Code

# MrNetTek
# eddiejackson.net/blog
# 5/19/2020
# free for public use
# free to claim as your own

# BEGIN IDLE CHECK
# Idle Input Win32 API
Add-Type @'
using System;
using System.Diagnostics;
using System.Runtime.InteropServices;

namespace PInvoke.Win32 {

    public static class UserInput {

        [DllImport("user32.dll", SetLastError=false)]
        private static extern bool GetLastInputInfo(ref LASTINPUTINFO plii);

        [StructLayout(LayoutKind.Sequential)]
        private struct LASTINPUTINFO {
            public uint cbSize;
            public int dwTime;
        }

        public static DateTime LastInput {
            get {
                DateTime bootTime = DateTime.UtcNow.AddMilliseconds(-Environment.TickCount);
                DateTime lastInput = bootTime.AddMilliseconds(LastInputTicks);
                return lastInput;
            }
        }

        public static TimeSpan IdleTime {
            get {
                return DateTime.UtcNow.Subtract(LastInput);
            }
        }

        public static int LastInputTicks {
            get {
                LASTINPUTINFO lii = new LASTINPUTINFO();
                lii.cbSize = (uint)Marshal.SizeOf(typeof(LASTINPUTINFO));
                GetLastInputInfo(ref lii);
                return lii.dwTime;
            }
        }
    }
}
'@

# Instantiate object
$Idle = [PInvoke.Win32.UserInput]::IdleTime

# Verify Idle Input
# Must be at least 1 hour to run main function
# Add your own specified hours/minutes here
if ($Idle.Hours -gt 0) {
    # continue to run function
    clear-host    
    write-host "Idle time is at least 1 hour"	
}
else
{
    # main function will not run
    clear-host
    write-host "Idle time is less than 1 hour"
    write-host "Exiting..."   

    $ProcessID = [System.Diagnostics.Process]::GetCurrentProcess()
    $ProcessID = $ProcessID.ID    
    #Add-Type -AssemblyName PresentationFramework
    #[System.Windows.MessageBox]::Show('do not run function')
    & taskkill /PID $ProcessID /t /f
}
# END IDLE CHECK


# LOAD MAIN FUNCTION

function Kill-Session {

    $ErrorActionPreference= 'silentlycontinue'	

	# play alert sound
	$sound = new-Object System.Media.SoundPlayer;
    $sound.SoundLocation="c:\WINDOWS\Media\notify.wav";
    $sound.PlayLooping();
    $flag=$false;

    1..10 | foreach {
        if($_ -gt 1){$flag=$true} else{sleep -s 1}
        if($flag) {$sound.Stop() }
    }


    # load assemblies
	Add-Type -AssemblyName System.Windows.Forms
    Add-Type -AssemblyName System.Drawing
	Add-Type -AssemblyName PresentationFramework
    [System.Windows.Forms.Application]::EnableVisualStyles()   	
	
	# instantiate objects
	$form = New-Object 'System.Windows.Forms.Form'
	$label1 = New-Object System.Windows.Forms.Label
	$label2 = New-Object System.Windows.Forms.Label
	$textbox = New-Object 'System.Windows.Forms.TextBox'
	$buttonStillWorking = New-Object 'System.Windows.Forms.Button'	
	$timer = New-Object 'System.Windows.Forms.Timer'
	$InitialFormWindowState = New-Object 'System.Windows.Forms.FormWindowState'	

	$cadence=[timespan]'0:0:0:1'
	$ticker={
		$script:ts1=$ts1.Subtract($cadence)
		$textbox.Text = $ts1.ToString('hh\:mm\:ss')
		if($ts1.Ticks -le 0){
		    $timer.Stop()
		    #force log off	            
		    (Get-WmiObject -Class Win32_OperatingSystem).Win32Shutdown(4) 
		    #[System.Windows.MessageBox]::Show('kill session')
		    $ProcessID = [System.Diagnostics.Process]::GetCurrentProcess()
		    $ProcessID = $ProcessID.ID
		    & taskkill /PID $ProcessID /t /f
		}
	}
	
	$Form_StateCorrection_Load=
	{		
		$form.WindowState = $InitialFormWindowState
	}
	
	$Form_Cleanup_FormClosed=
	{		
		try
		{
			$form.remove_Load($form_Load)
			$timer.remove_Tick($ticker)
			$form.remove_Load($Form_StateCorrection_Load)
			$form.remove_FormClosed($Form_Cleanup_FormClosed)
		}
		catch { Out-Null }
	}

	$form.SuspendLayout()
	
	
	# MAIN FORM	    
	$form.Icon = 'c:\powershell\icon.ico'
	$form.Controls.Add($textbox)
	$form.Controls.Add($buttonStillWorking)
	$form.Controls.Add($label1)
	$form.Controls.Add($label2)    
	$form.AcceptButton = $buttonStillWorking
	$form.AutoScaleDimensions = '8, 17'
	$form.AutoScaleMode = 'Font'
	$form.ClientSize = '616, 362'
	$form.FormBorderStyle = 'FixedDialog'
	$form.Margin = '5, 5, 5, 5'
	$form.MaximizeBox = $False
	$form.MinimizeBox = $False
	$form.Name = 'form1'
	$form.ShortcutsEnabled = $False
	$form.StartPosition = 'CenterScreen'
	$form.Text = 'Log Out v1.0'
	$form.TopMost = $True # force window to stay on top
	$form.add_Load($form_Load)	    
	
	# LABEL1
    $label1.Location = New-Object System.Drawing.Point(100,50)
    $label1.Font = 'Calibri, 13.25pt'
    $label1.Size = New-Object System.Drawing.Size(550,80)
    $label1.Text = 'Your AWS session has been idle for 60 min.'    
    
	
	# LABEL2	    
    $label2.Location = New-Object System.Drawing.Point(195,130)
    $label2.Font = 'Calibri, 13.25pt'
    $label2.Size = New-Object System.Drawing.Size(450,80)
    $label2.Text = 'Logging Session Out In...'    

	
	# TEXTBOX
    $textbox.Font = 'Calibri, 14.25pt, style=Bold'
	$textbox.Location = '264, 180'
	$textbox.Margin = '5, 5, 5, 5'
	$textbox.BorderStyle = "None"
	$textbox.Name = 'textbox'
	$textbox.Size = '100, 34'
	$textbox.ReadOnly = $True
	$textbox.TabIndex = 2	
	
	# BUTTONSTILLWORKING
	$buttonStillWorking.Font = 'Calibri, 12.25pt'
	$buttonStillWorking.DialogResult = 'OK'
	$buttonStillWorking.Location = '210, 265'
	$buttonStillWorking.Margin = '5, 5, 5, 5'
	$buttonStillWorking.Name = 'buttonOK'
	$buttonStillWorking.Size = '200, 50'
	$buttonStillWorking.BackColor ="LightGray"
	$buttonStillWorking.ForeColor ="black"
	$buttonStillWorking.Text = '&I''m still working'
	$buttonStillWorking.UseCompatibleTextRendering = $True
	$buttonStillWorking.UseVisualStyleBackColor = $False
	$buttonStillWorking.TabIndex = 0	
	
	# TIMER
	$timer.Interval = 1000
	$timer.add_Tick($ticker)
	$form.ResumeLayout()
	
	# FORM CONFIG
	$InitialFormWindowState = $form.WindowState
	$form.add_Load($Form_StateCorrection_Load)    
	$form.add_FormClosed($Form_Cleanup_FormClosed) 
    $this.Enabled=$false	
	
	# SET TIMER FOR 15 MINUTES
	$script:ts1 = [timespan]'0:0:15:00'    
	
	# START TIMER	
	$timer.Start()
	
    # FOCUS THIS PROCESS
	$WindowState = '[DllImport("user32.dll")] public static extern bool ShowWindow(int handle, int state);'
    add-type -name win -member $WindowState -namespace native
    [native.win]::ShowWindow(([System.Diagnostics.Process]::GetCurrentProcess() | Get-Process).MainWindowHandle, 0)    
	SetForegroundWindow(this.Handle)
	
	# SHOW FORM
    $form.ShowDialog()
} 

# LOAD ICON FUNCTION
# Create the form icon
function Generate-Icon {

    # icon stored as base64
	$Base64String = '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'
    
	# icon path and name
	$Image = 'c:\powershell\icon.ico'
    
	# convert base64 to bytes
	[byte[]]$Bytes = [convert]::FromBase64String($Base64String)
    
	# create icon from bytes
	[System.IO.File]::WriteAllBytes($Image,$Bytes)

}

# FORM ICON
# Check if form icon does not exist
if (!(Test-Path c:\powershell\icon.ico)) {
    # if not exist, run icon function
	Generate-Icon
}

# RUN MAIN FUNCTION
Kill-Session

Scheduled Task

Code I used to create the scheduled task

$action = New-ScheduledTaskAction -Execute 'mshta.exe' -Argument 'vbscript:Execute("CreateObject(""Wscript.Shell"").Run ""powershell.exe -ExecutionPolicy Bypass -NoLogo -Command """"& C:\powershell\Kill-Session.ps1"""""", 0 : window.close")'
$trigger =  New-ScheduledTaskTrigger -Daily -At 11pm
$idle = New-ScheduledTaskSettingsSet -RunOnlyIfIdle -IdleDuration 01:00:00 -IdleWaitTimeout 0

Register-ScheduledTask -Action $action -Settings $idle -Trigger $trigger -TaskName "Kill-Session" -Description "Log out of AWS Session"

Notes

if (Get-Process logonui -ComputerName $env:computername -ErrorAction SilentlyContinue)
    {
         Write-Host "machine is locked"
    }
Else 
    {
         Write-Host "machine is not locked"
    }