@distilled.cloud/azure 0.8.0 → 0.10.0

package/lib/services/authorization.js

@@ -468,6 +468,7 @@ export const PermissionsListForResourceGroup =
 // Input Schema
 export const ProviderOperationsMetadataGetInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
+    resourceProviderNamespace: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
     $expand: Schema.optional(Schema.String),
 }).pipe(T.Http({
@@ -480,33 +481,13 @@ export const ProviderOperationsMetadataGetOutput =
     id: Schema.optional(Schema.String),
     name: Schema.optional(Schema.String),
     type: Schema.optional(Schema.String),
-    displayName: Schema.optional(Schema.String),
-    resourceTypes: Schema.optional(Schema.Array(Schema.Struct({
-        name: Schema.optional(Schema.String),
-        displayName: Schema.optional(Schema.String),
-        operations: Schema.optional(Schema.Array(Schema.Struct({
-            name: Schema.optional(Schema.String),
-            displayName: Schema.optional(Schema.String),
-            description: Schema.optional(Schema.String),
-            origin: Schema.optional(Schema.String),
-            properties: Schema.optional(Schema.Unknown),
-            isDataAction: Schema.optional(Schema.Boolean),
-        }))),
-    }))),
-    operations: Schema.optional(Schema.Array(Schema.Struct({
-        name: Schema.optional(Schema.String),
-        displayName: Schema.optional(Schema.String),
-        description: Schema.optional(Schema.String),
-        origin: Schema.optional(Schema.String),
-        properties: Schema.optional(Schema.Unknown),
-        isDataAction: Schema.optional(Schema.Boolean),
-    }))),
 });
 // The operation
 /**
  * Gets provider operations metadata for the specified resource provider.
  *
  * @param api-version - The API version to use for this operation.
+ * @param resourceProviderNamespace - The namespace of the resource provider.
  * @param $expand - Specifies whether to expand the values.
  */
 export const ProviderOperationsMetadataGet = 
@@ -526,32 +507,11 @@ export const ProviderOperationsMetadataListInput =
 // Output Schema
 export const ProviderOperationsMetadataListOutput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    value: Schema.optional(Schema.Array(Schema.Struct({
+    value: Schema.Array(Schema.Struct({
         id: Schema.optional(Schema.String),
         name: Schema.optional(Schema.String),
         type: Schema.optional(Schema.String),
-        displayName: Schema.optional(Schema.String),
-        resourceTypes: Schema.optional(Schema.Array(Schema.Struct({
-            name: Schema.optional(Schema.String),
-            displayName: Schema.optional(Schema.String),
-            operations: Schema.optional(Schema.Array(Schema.Struct({
-                name: Schema.optional(Schema.String),
-                displayName: Schema.optional(Schema.String),
-                description: Schema.optional(Schema.String),
-                origin: Schema.optional(Schema.String),
-                properties: Schema.optional(Schema.Unknown),
-                isDataAction: Schema.optional(Schema.Boolean),
-            }))),
-        }))),
-        operations: Schema.optional(Schema.Array(Schema.Struct({
-            name: Schema.optional(Schema.String),
-            displayName: Schema.optional(Schema.String),
-            description: Schema.optional(Schema.String),
-            origin: Schema.optional(Schema.String),
-            properties: Schema.optional(Schema.Unknown),
-            isDataAction: Schema.optional(Schema.Boolean),
-        }))),
-    }))),
+    })),
     nextLink: Schema.optional(Schema.String),
 });
 // The operation
@@ -570,6 +530,7 @@ export const ProviderOperationsMetadataList =
 export const RoleAssignmentsCreateInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
     scope: Schema.String.pipe(T.PathParam()),
+    roleAssignmentName: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
 }).pipe(T.Http({
     method: "PUT",
@@ -577,37 +538,14 @@ export const RoleAssignmentsCreateInput =
 }));
 // Output Schema
 export const RoleAssignmentsCreateOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Create or update a role assignment by scope and name.
  *
- * @param scope - The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
  * @param api-version - The API version to use for this operation.
+ * @param scope - The fully qualified Azure Resource manager identifier of the resource.
+ * @param roleAssignmentName - The name of the role assignment. It can be any valid GUID.
  */
 export const RoleAssignmentsCreate = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsCreateInput,
@@ -616,40 +554,18 @@ export const RoleAssignmentsCreate = /*@__PURE__*/ /*#__PURE__*/ API.make(() =>
 // Input Schema
 export const RoleAssignmentsCreateByIdInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
+    roleAssignmentId: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
 }).pipe(T.Http({ method: "PUT", path: "/{roleAssignmentId}" }));
 // Output Schema
 export const RoleAssignmentsCreateByIdOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Create or update a role assignment by ID.
  *
  * @param api-version - The API version to use for this operation.
+ * @param roleAssignmentId - The fully qualified ID of the role assignment including scope, resource name, and resource type. Format: /{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}. Example: /subscriptions/<SUB_ID>/resourcegroups/<RESOURCE_GROUP>/providers/Microsoft.Authorization/roleAssignments/<ROLE_ASSIGNMENT_NAME>
  */
 export const RoleAssignmentsCreateById = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsCreateByIdInput,
@@ -659,44 +575,24 @@ export const RoleAssignmentsCreateById = /*@__PURE__*/ /*#__PURE__*/ API.make(()
 export const RoleAssignmentsDeleteInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
     scope: Schema.String.pipe(T.PathParam()),
+    roleAssignmentName: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "DELETE",
     path: "/{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}",
 }));
 // Output Schema
 export const RoleAssignmentsDeleteOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Delete a role assignment by scope and name.
  *
- * @param scope - The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
  * @param api-version - The API version to use for this operation.
+ * @param scope - The fully qualified Azure Resource manager identifier of the resource.
+ * @param tenantId - Tenant ID for cross-tenant request
+ * @param roleAssignmentName - The name of the role assignment. It can be any valid GUID.
  */
 export const RoleAssignmentsDelete = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsDeleteInput,
@@ -705,40 +601,20 @@ export const RoleAssignmentsDelete = /*@__PURE__*/ /*#__PURE__*/ API.make(() =>
 // Input Schema
 export const RoleAssignmentsDeleteByIdInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
+    roleAssignmentId: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({ method: "DELETE", path: "/{roleAssignmentId}" }));
 // Output Schema
 export const RoleAssignmentsDeleteByIdOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Delete a role assignment by ID.
  *
  * @param api-version - The API version to use for this operation.
+ * @param roleAssignmentId - The fully qualified ID of the role assignment including scope, resource name, and resource type. Format: /{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}. Example: /subscriptions/<SUB_ID>/resourcegroups/<RESOURCE_GROUP>/providers/Microsoft.Authorization/roleAssignments/<ROLE_ASSIGNMENT_NAME>
+ * @param tenantId - Tenant ID for cross-tenant request
  */
 export const RoleAssignmentsDeleteById = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsDeleteByIdInput,
@@ -748,44 +624,24 @@ export const RoleAssignmentsDeleteById = /*@__PURE__*/ /*#__PURE__*/ API.make(()
 export const RoleAssignmentsGetInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
     scope: Schema.String.pipe(T.PathParam()),
+    roleAssignmentName: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "GET",
     path: "/{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}",
 }));
 // Output Schema
 export const RoleAssignmentsGetOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Get a role assignment by scope and name.
  *
- * @param scope - The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
  * @param api-version - The API version to use for this operation.
+ * @param scope - The fully qualified Azure Resource manager identifier of the resource.
+ * @param tenantId - Tenant ID for cross-tenant request
+ * @param roleAssignmentName - The name of the role assignment. It can be any valid GUID.
  */
 export const RoleAssignmentsGet = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsGetInput,
@@ -794,40 +650,20 @@ export const RoleAssignmentsGet = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
 // Input Schema
 export const RoleAssignmentsGetByIdInput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
+    roleAssignmentId: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({ method: "GET", path: "/{roleAssignmentId}" }));
 // Output Schema
 export const RoleAssignmentsGetByIdOutput = 
-/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    id: Schema.optional(Schema.String),
-    name: Schema.optional(Schema.String),
-    type: Schema.optional(Schema.String),
-    properties: Schema.optional(Schema.Struct({
-        scope: Schema.optional(Schema.String),
-        roleDefinitionId: Schema.String,
-        principalId: Schema.String,
-        principalType: Schema.optional(Schema.Literals([
-            "User",
-            "Group",
-            "ServicePrincipal",
-            "ForeignGroup",
-            "Device",
-        ])),
-        description: Schema.optional(Schema.String),
-        condition: Schema.optional(Schema.String),
-        conditionVersion: Schema.optional(Schema.String),
-        createdOn: Schema.optional(Schema.String),
-        updatedOn: Schema.optional(Schema.String),
-        createdBy: Schema.optional(Schema.String),
-        updatedBy: Schema.optional(Schema.String),
-        delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-    })),
-});
+/*@__PURE__*/ /*#__PURE__*/ Schema.Struct({});
 // The operation
 /**
  * Get a role assignment by ID.
  *
  * @param api-version - The API version to use for this operation.
+ * @param roleAssignmentId - The fully qualified ID of the role assignment including scope, resource name, and resource type. Format: /{scope}/providers/Microsoft.Authorization/roleAssignments/{roleAssignmentName}. Example: /subscriptions/<SUB_ID>/resourcegroups/<RESOURCE_GROUP>/providers/Microsoft.Authorization/roleAssignments/<ROLE_ASSIGNMENT_NAME>
+ * @param tenantId - Tenant ID for cross-tenant request
  */
 export const RoleAssignmentsGetById = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsGetByIdInput,
@@ -842,6 +678,8 @@ export const RoleAssignmentsListForResourceInput =
     resourceType: Schema.String.pipe(T.PathParam()),
     resourceName: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    $filter: Schema.optional(Schema.String),
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "GET",
     path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/{resourceType}/{resourceName}/providers/Microsoft.Authorization/roleAssignments",
@@ -849,43 +687,21 @@ export const RoleAssignmentsListForResourceInput =
 // Output Schema
 export const RoleAssignmentsListForResourceOutput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    value: Schema.optional(Schema.Array(Schema.Struct({
-        id: Schema.optional(Schema.String),
-        name: Schema.optional(Schema.String),
-        type: Schema.optional(Schema.String),
-        properties: Schema.optional(Schema.Struct({
-            scope: Schema.optional(Schema.String),
-            roleDefinitionId: Schema.String,
-            principalId: Schema.String,
-            principalType: Schema.optional(Schema.Literals([
-                "User",
-                "Group",
-                "ServicePrincipal",
-                "ForeignGroup",
-                "Device",
-            ])),
-            description: Schema.optional(Schema.String),
-            condition: Schema.optional(Schema.String),
-            conditionVersion: Schema.optional(Schema.String),
-            createdOn: Schema.optional(Schema.String),
-            updatedOn: Schema.optional(Schema.String),
-            createdBy: Schema.optional(Schema.String),
-            updatedBy: Schema.optional(Schema.String),
-            delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-        })),
-    }))),
+    value: Schema.Array(Schema.Struct({})),
     nextLink: Schema.optional(Schema.String),
 });
 // The operation
 /**
  * List all role assignments that apply to a resource.
  *
+ * @param api-version - The API version to use for this operation.
  * @param subscriptionId - The ID of the target subscription.
  * @param resourceGroupName - The name of the resource group. The name is case insensitive.
  * @param resourceProviderNamespace - The namespace of the resource provider.
- * @param resourceType - The resource type name. For example the type name of a web app is 'sites' (from Microsoft.Web/sites).
- * @param resourceName - The resource name.
- * @param api-version - The API version to use for this operation.
+ * @param resourceType - The resource type of the resource.
+ * @param resourceName - The name of the resource to get role assignments for.
+ * @param $filter - The filter to apply on the operation. Use $filter=atScope() to return all role assignments at or above the scope. Use $filter=principalId eq {id} to return all role assignments at, above or below the scope for the specified principal.
+ * @param tenantId - Tenant ID for cross-tenant request
  */
 export const RoleAssignmentsListForResource = 
 /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
@@ -898,6 +714,8 @@ export const RoleAssignmentsListForResourceGroupInput =
     subscriptionId: Schema.String.pipe(T.PathParam()),
     resourceGroupName: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    $filter: Schema.optional(Schema.String),
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "GET",
     path: "/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Authorization/roleAssignments",
@@ -905,40 +723,18 @@ export const RoleAssignmentsListForResourceGroupInput =
 // Output Schema
 export const RoleAssignmentsListForResourceGroupOutput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    value: Schema.optional(Schema.Array(Schema.Struct({
-        id: Schema.optional(Schema.String),
-        name: Schema.optional(Schema.String),
-        type: Schema.optional(Schema.String),
-        properties: Schema.optional(Schema.Struct({
-            scope: Schema.optional(Schema.String),
-            roleDefinitionId: Schema.String,
-            principalId: Schema.String,
-            principalType: Schema.optional(Schema.Literals([
-                "User",
-                "Group",
-                "ServicePrincipal",
-                "ForeignGroup",
-                "Device",
-            ])),
-            description: Schema.optional(Schema.String),
-            condition: Schema.optional(Schema.String),
-            conditionVersion: Schema.optional(Schema.String),
-            createdOn: Schema.optional(Schema.String),
-            updatedOn: Schema.optional(Schema.String),
-            createdBy: Schema.optional(Schema.String),
-            updatedBy: Schema.optional(Schema.String),
-            delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-        })),
-    }))),
+    value: Schema.Array(Schema.Struct({})),
     nextLink: Schema.optional(Schema.String),
 });
 // The operation
 /**
  * List all role assignments that apply to a resource group.
  *
+ * @param api-version - The API version to use for this operation.
  * @param subscriptionId - The ID of the target subscription.
  * @param resourceGroupName - The name of the resource group. The name is case insensitive.
- * @param api-version - The API version to use for this operation.
+ * @param $filter - The filter to apply on the operation. Use $filter=atScope() to return all role assignments at or above the scope. Use $filter=principalId eq {id} to return all role assignments at, above or below the scope for the specified principal.
+ * @param tenantId - Tenant ID for cross-tenant request
  */
 export const RoleAssignmentsListForResourceGroup = 
 /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
@@ -950,6 +746,9 @@ export const RoleAssignmentsListForScopeInput =
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
     scope: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    $filter: Schema.optional(Schema.String),
+    tenantId: Schema.optional(Schema.String),
+    $skipToken: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "GET",
     path: "/{scope}/providers/Microsoft.Authorization/roleAssignments",
@@ -957,39 +756,18 @@ export const RoleAssignmentsListForScopeInput =
 // Output Schema
 export const RoleAssignmentsListForScopeOutput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    value: Schema.optional(Schema.Array(Schema.Struct({
-        id: Schema.optional(Schema.String),
-        name: Schema.optional(Schema.String),
-        type: Schema.optional(Schema.String),
-        properties: Schema.optional(Schema.Struct({
-            scope: Schema.optional(Schema.String),
-            roleDefinitionId: Schema.String,
-            principalId: Schema.String,
-            principalType: Schema.optional(Schema.Literals([
-                "User",
-                "Group",
-                "ServicePrincipal",
-                "ForeignGroup",
-                "Device",
-            ])),
-            description: Schema.optional(Schema.String),
-            condition: Schema.optional(Schema.String),
-            conditionVersion: Schema.optional(Schema.String),
-            createdOn: Schema.optional(Schema.String),
-            updatedOn: Schema.optional(Schema.String),
-            createdBy: Schema.optional(Schema.String),
-            updatedBy: Schema.optional(Schema.String),
-            delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-        })),
-    }))),
+    value: Schema.Array(Schema.Struct({})),
     nextLink: Schema.optional(Schema.String),
 });
 // The operation
 /**
  * List all role assignments that apply to a scope.
  *
- * @param scope - The scope of the operation or resource. Valid scopes are: subscription (format: '/subscriptions/{subscriptionId}'), resource group (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}', or resource (format: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{resourceProviderNamespace}/[{parentResourcePath}/]{resourceType}/{resourceName}'
  * @param api-version - The API version to use for this operation.
+ * @param scope - The fully qualified Azure Resource manager identifier of the resource.
+ * @param $filter - The filter to apply on the operation. Use $filter=atScope() to return all role assignments at or above the scope. Use $filter=principalId eq {id} to return all role assignments at, above or below the scope for the specified principal.
+ * @param tenantId - Tenant ID for cross-tenant request
+ * @param $skipToken - The skipToken to apply on the operation. Use $skipToken={skiptoken} to return paged role assignments following the skipToken passed. Only supported on provider level calls.
  */
 export const RoleAssignmentsListForScope = /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({
     inputSchema: RoleAssignmentsListForScopeInput,
@@ -1000,6 +778,8 @@ export const RoleAssignmentsListForSubscriptionInput =
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
     subscriptionId: Schema.String.pipe(T.PathParam()),
     "api-version": Schema.String,
+    $filter: Schema.optional(Schema.String),
+    tenantId: Schema.optional(Schema.String),
 }).pipe(T.Http({
     method: "GET",
     path: "/subscriptions/{subscriptionId}/providers/Microsoft.Authorization/roleAssignments",
@@ -1007,39 +787,17 @@ export const RoleAssignmentsListForSubscriptionInput =
 // Output Schema
 export const RoleAssignmentsListForSubscriptionOutput = 
 /*@__PURE__*/ /*#__PURE__*/ Schema.Struct({
-    value: Schema.optional(Schema.Array(Schema.Struct({
-        id: Schema.optional(Schema.String),
-        name: Schema.optional(Schema.String),
-        type: Schema.optional(Schema.String),
-        properties: Schema.optional(Schema.Struct({
-            scope: Schema.optional(Schema.String),
-            roleDefinitionId: Schema.String,
-            principalId: Schema.String,
-            principalType: Schema.optional(Schema.Literals([
-                "User",
-                "Group",
-                "ServicePrincipal",
-                "ForeignGroup",
-                "Device",
-            ])),
-            description: Schema.optional(Schema.String),
-            condition: Schema.optional(Schema.String),
-            conditionVersion: Schema.optional(Schema.String),
-            createdOn: Schema.optional(Schema.String),
-            updatedOn: Schema.optional(Schema.String),
-            createdBy: Schema.optional(Schema.String),
-            updatedBy: Schema.optional(Schema.String),
-            delegatedManagedIdentityResourceId: Schema.optional(Schema.String),
-        })),
-    }))),
+    value: Schema.Array(Schema.Struct({})),
     nextLink: Schema.optional(Schema.String),
 });
 // The operation
 /**
  * List all role assignments that apply to a subscription.
  *
- * @param subscriptionId - The ID of the target subscription.
  * @param api-version - The API version to use for this operation.
+ * @param subscriptionId - The ID of the target subscription.
+ * @param $filter - The filter to apply on the operation. Use $filter=atScope() to return all role assignments at or above the scope. Use $filter=principalId eq {id} to return all role assignments at, above or below the scope for the specified principal.
+ * @param tenantId - Tenant ID for cross-tenant request
  */
 export const RoleAssignmentsListForSubscription = 
 /*@__PURE__*/ /*#__PURE__*/ API.make(() => ({