@microsoft/teamsfx-core 1.6.0 → 1.6.1-alpha.83ce60286.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (254) hide show
  1. package/build/common/local/taskDefinition.d.ts +3 -0
  2. package/build/common/local/taskDefinition.d.ts.map +1 -1
  3. package/build/common/local/taskDefinition.js +36 -0
  4. package/build/common/local/taskDefinition.js.map +1 -1
  5. package/build/common/projectSettingsHelper.d.ts.map +1 -1
  6. package/build/common/projectSettingsHelper.js +2 -0
  7. package/build/common/projectSettingsHelper.js.map +1 -1
  8. package/build/common/telemetry.d.ts +17 -0
  9. package/build/common/telemetry.d.ts.map +1 -1
  10. package/build/common/telemetry.js +17 -0
  11. package/build/common/telemetry.js.map +1 -1
  12. package/build/common/template-utils/templatesActions.d.ts +2 -2
  13. package/build/common/template-utils/templatesActions.d.ts.map +1 -1
  14. package/build/common/template-utils/templatesActions.js +6 -6
  15. package/build/common/template-utils/templatesActions.js.map +1 -1
  16. package/build/common/templates-config.json +4 -3
  17. package/build/common/tools.d.ts +1 -0
  18. package/build/common/tools.d.ts.map +1 -1
  19. package/build/common/tools.js +15 -1
  20. package/build/common/tools.js.map +1 -1
  21. package/build/core/FxCore.d.ts.map +1 -1
  22. package/build/core/FxCore.js +25 -2
  23. package/build/core/FxCore.js.map +1 -1
  24. package/build/core/environment.d.ts +1 -0
  25. package/build/core/environment.d.ts.map +1 -1
  26. package/build/core/environment.js +9 -2
  27. package/build/core/environment.js.map +1 -1
  28. package/build/core/error.d.ts +1 -0
  29. package/build/core/error.d.ts.map +1 -1
  30. package/build/core/error.js +7 -1
  31. package/build/core/error.js.map +1 -1
  32. package/build/core/middleware/consolidateLocalRemote.d.ts +3 -0
  33. package/build/core/middleware/consolidateLocalRemote.d.ts.map +1 -0
  34. package/build/core/middleware/consolidateLocalRemote.js +203 -0
  35. package/build/core/middleware/consolidateLocalRemote.js.map +1 -0
  36. package/build/core/middleware/envInfoLoader.d.ts.map +1 -1
  37. package/build/core/middleware/envInfoLoader.js +6 -14
  38. package/build/core/middleware/envInfoLoader.js.map +1 -1
  39. package/build/core/middleware/envInfoWriter.d.ts.map +1 -1
  40. package/build/core/middleware/envInfoWriter.js +6 -0
  41. package/build/core/middleware/envInfoWriter.js.map +1 -1
  42. package/build/core/middleware/projectMigrator.d.ts +3 -0
  43. package/build/core/middleware/projectMigrator.d.ts.map +1 -1
  44. package/build/core/middleware/projectMigrator.js +3 -1
  45. package/build/core/middleware/projectMigrator.js.map +1 -1
  46. package/build/core/middleware/questionModel.d.ts.map +1 -1
  47. package/build/core/middleware/questionModel.js +55 -1
  48. package/build/core/middleware/questionModel.js.map +1 -1
  49. package/build/core/question.d.ts +9 -1
  50. package/build/core/question.d.ts.map +1 -1
  51. package/build/core/question.js +56 -4
  52. package/build/core/question.js.map +1 -1
  53. package/build/plugins/resource/aad/aadAppManifestManager.d.ts +9 -0
  54. package/build/plugins/resource/aad/aadAppManifestManager.d.ts.map +1 -0
  55. package/build/plugins/resource/aad/aadAppManifestManager.js +78 -0
  56. package/build/plugins/resource/aad/aadAppManifestManager.js.map +1 -0
  57. package/build/plugins/resource/aad/errors.d.ts +13 -0
  58. package/build/plugins/resource/aad/errors.d.ts.map +1 -1
  59. package/build/plugins/resource/aad/errors.js +15 -1
  60. package/build/plugins/resource/aad/errors.js.map +1 -1
  61. package/build/plugins/resource/aad/index.d.ts +1 -0
  62. package/build/plugins/resource/aad/index.d.ts.map +1 -1
  63. package/build/plugins/resource/aad/index.js +3 -1
  64. package/build/plugins/resource/aad/index.js.map +1 -1
  65. package/build/plugins/resource/aad/interfaces/AADApplication.d.ts +2 -3
  66. package/build/plugins/resource/aad/interfaces/AADApplication.d.ts.map +1 -1
  67. package/build/plugins/resource/aad/interfaces/AADManifest.d.ts +2 -3
  68. package/build/plugins/resource/aad/interfaces/AADManifest.d.ts.map +1 -1
  69. package/build/plugins/resource/aad/permissions/index.d.ts +1 -0
  70. package/build/plugins/resource/aad/permissions/index.d.ts.map +1 -1
  71. package/build/plugins/resource/aad/permissions/index.js +27 -1
  72. package/build/plugins/resource/aad/permissions/index.js.map +1 -1
  73. package/build/plugins/resource/aad/permissions/permissions.json +1084 -204
  74. package/build/plugins/resource/aad/plugin.d.ts +0 -1
  75. package/build/plugins/resource/aad/plugin.d.ts.map +1 -1
  76. package/build/plugins/resource/aad/plugin.js +2 -21
  77. package/build/plugins/resource/aad/plugin.js.map +1 -1
  78. package/build/plugins/resource/aad/utils/aadManifestHelper.d.ts +2 -0
  79. package/build/plugins/resource/aad/utils/aadManifestHelper.d.ts.map +1 -1
  80. package/build/plugins/resource/aad/utils/aadManifestHelper.js +74 -2
  81. package/build/plugins/resource/aad/utils/aadManifestHelper.js.map +1 -1
  82. package/build/plugins/resource/appstudio/constants.d.ts +3 -0
  83. package/build/plugins/resource/appstudio/constants.d.ts.map +1 -1
  84. package/build/plugins/resource/appstudio/constants.js +4 -1
  85. package/build/plugins/resource/appstudio/constants.js.map +1 -1
  86. package/build/plugins/resource/appstudio/index.d.ts +1 -0
  87. package/build/plugins/resource/appstudio/index.d.ts.map +1 -1
  88. package/build/plugins/resource/appstudio/index.js +37 -1
  89. package/build/plugins/resource/appstudio/index.js.map +1 -1
  90. package/build/plugins/resource/appstudio/manifestTemplate.d.ts.map +1 -1
  91. package/build/plugins/resource/appstudio/manifestTemplate.js +6 -0
  92. package/build/plugins/resource/appstudio/manifestTemplate.js.map +1 -1
  93. package/build/plugins/resource/appstudio/plugin.d.ts +3 -2
  94. package/build/plugins/resource/appstudio/plugin.d.ts.map +1 -1
  95. package/build/plugins/resource/appstudio/plugin.js +43 -14
  96. package/build/plugins/resource/appstudio/plugin.js.map +1 -1
  97. package/build/plugins/resource/appstudio/utils/telemetry.d.ts +1 -0
  98. package/build/plugins/resource/appstudio/utils/telemetry.d.ts.map +1 -1
  99. package/build/plugins/resource/appstudio/utils/telemetry.js +1 -0
  100. package/build/plugins/resource/appstudio/utils/telemetry.js.map +1 -1
  101. package/build/plugins/resource/appstudio/v2/index.d.ts +1 -0
  102. package/build/plugins/resource/appstudio/v2/index.d.ts.map +1 -1
  103. package/build/plugins/resource/appstudio/v2/index.js +3 -0
  104. package/build/plugins/resource/appstudio/v2/index.js.map +1 -1
  105. package/build/plugins/resource/bot/constants.d.ts +1 -1
  106. package/build/plugins/resource/bot/constants.d.ts.map +1 -1
  107. package/build/plugins/resource/bot/constants.js +1 -1
  108. package/build/plugins/resource/bot/constants.js.map +1 -1
  109. package/build/plugins/resource/bot/functionsHostedBot/plugin.d.ts +1 -0
  110. package/build/plugins/resource/bot/functionsHostedBot/plugin.d.ts.map +1 -1
  111. package/build/plugins/resource/bot/functionsHostedBot/plugin.js +36 -0
  112. package/build/plugins/resource/bot/functionsHostedBot/plugin.js.map +1 -1
  113. package/build/plugins/resource/bot/languageStrategy.d.ts.map +1 -1
  114. package/build/plugins/resource/bot/languageStrategy.js +0 -1
  115. package/build/plugins/resource/bot/languageStrategy.js.map +1 -1
  116. package/build/plugins/resource/bot/plugin.d.ts.map +1 -1
  117. package/build/plugins/resource/bot/plugin.js +7 -3
  118. package/build/plugins/resource/bot/plugin.js.map +1 -1
  119. package/build/plugins/resource/bot/question.d.ts.map +1 -1
  120. package/build/plugins/resource/bot/question.js +4 -3
  121. package/build/plugins/resource/bot/question.js.map +1 -1
  122. package/build/plugins/resource/bot/resources/messages.d.ts.map +1 -1
  123. package/build/plugins/resource/bot/resources/messages.js +1 -1
  124. package/build/plugins/resource/bot/resources/messages.js.map +1 -1
  125. package/build/plugins/resource/bot/v3/index.d.ts.map +1 -1
  126. package/build/plugins/resource/bot/v3/index.js +0 -1
  127. package/build/plugins/resource/bot/v3/index.js.map +1 -1
  128. package/build/plugins/resource/cicd/constants.d.ts +3 -3
  129. package/build/plugins/resource/cicd/constants.d.ts.map +1 -1
  130. package/build/plugins/resource/cicd/constants.js +4 -3
  131. package/build/plugins/resource/cicd/constants.js.map +1 -1
  132. package/build/plugins/resource/cicd/errors.d.ts.map +1 -1
  133. package/build/plugins/resource/cicd/errors.js +3 -4
  134. package/build/plugins/resource/cicd/errors.js.map +1 -1
  135. package/build/plugins/resource/cicd/index.d.ts.map +1 -1
  136. package/build/plugins/resource/cicd/index.js +6 -5
  137. package/build/plugins/resource/cicd/index.js.map +1 -1
  138. package/build/plugins/resource/cicd/plugin.d.ts.map +1 -1
  139. package/build/plugins/resource/cicd/plugin.js +7 -6
  140. package/build/plugins/resource/cicd/plugin.js.map +1 -1
  141. package/build/plugins/resource/cicd/questions.d.ts.map +1 -1
  142. package/build/plugins/resource/cicd/questions.js +5 -4
  143. package/build/plugins/resource/cicd/questions.js.map +1 -1
  144. package/build/plugins/resource/frontend/constants.d.ts +0 -1
  145. package/build/plugins/resource/frontend/constants.d.ts.map +1 -1
  146. package/build/plugins/resource/frontend/constants.js +0 -1
  147. package/build/plugins/resource/frontend/constants.js.map +1 -1
  148. package/build/plugins/resource/frontend/dotnet/constants.d.ts +0 -1
  149. package/build/plugins/resource/frontend/dotnet/constants.d.ts.map +1 -1
  150. package/build/plugins/resource/frontend/dotnet/constants.js +0 -1
  151. package/build/plugins/resource/frontend/dotnet/constants.js.map +1 -1
  152. package/build/plugins/resource/frontend/dotnet/ops/scaffold.d.ts.map +1 -1
  153. package/build/plugins/resource/frontend/dotnet/ops/scaffold.js +0 -1
  154. package/build/plugins/resource/frontend/dotnet/ops/scaffold.js.map +1 -1
  155. package/build/plugins/resource/frontend/ops/scaffold.d.ts.map +1 -1
  156. package/build/plugins/resource/frontend/ops/scaffold.js +0 -1
  157. package/build/plugins/resource/frontend/ops/scaffold.js.map +1 -1
  158. package/build/plugins/resource/frontend/resources/templateInfo.d.ts +1 -0
  159. package/build/plugins/resource/frontend/resources/templateInfo.d.ts.map +1 -1
  160. package/build/plugins/resource/frontend/resources/templateInfo.js +7 -2
  161. package/build/plugins/resource/frontend/resources/templateInfo.js.map +1 -1
  162. package/build/plugins/resource/frontend/v3/index.d.ts.map +1 -1
  163. package/build/plugins/resource/frontend/v3/index.js +0 -1
  164. package/build/plugins/resource/frontend/v3/index.js.map +1 -1
  165. package/build/plugins/resource/function/constants.d.ts +0 -1
  166. package/build/plugins/resource/function/constants.d.ts.map +1 -1
  167. package/build/plugins/resource/function/constants.js +0 -1
  168. package/build/plugins/resource/function/constants.js.map +1 -1
  169. package/build/plugins/resource/function/ops/scaffold.d.ts.map +1 -1
  170. package/build/plugins/resource/function/ops/scaffold.js +0 -1
  171. package/build/plugins/resource/function/ops/scaffold.js.map +1 -1
  172. package/build/plugins/resource/spfx/depsChecker/dependencyChecker.d.ts +7 -0
  173. package/build/plugins/resource/spfx/depsChecker/dependencyChecker.d.ts.map +1 -0
  174. package/build/plugins/resource/spfx/depsChecker/dependencyChecker.js +5 -0
  175. package/build/plugins/resource/spfx/depsChecker/dependencyChecker.js.map +1 -0
  176. package/build/plugins/resource/spfx/depsChecker/generatorChecker.d.ts +20 -0
  177. package/build/plugins/resource/spfx/depsChecker/generatorChecker.d.ts.map +1 -0
  178. package/build/plugins/resource/spfx/depsChecker/generatorChecker.js +125 -0
  179. package/build/plugins/resource/spfx/depsChecker/generatorChecker.js.map +1 -0
  180. package/build/plugins/resource/spfx/depsChecker/yoChecker.d.ts +20 -0
  181. package/build/plugins/resource/spfx/depsChecker/yoChecker.d.ts.map +1 -0
  182. package/build/plugins/resource/spfx/depsChecker/yoChecker.js +122 -0
  183. package/build/plugins/resource/spfx/depsChecker/yoChecker.js.map +1 -0
  184. package/build/plugins/resource/spfx/error.d.ts +4 -0
  185. package/build/plugins/resource/spfx/error.d.ts.map +1 -1
  186. package/build/plugins/resource/spfx/error.js +17 -1
  187. package/build/plugins/resource/spfx/error.js.map +1 -1
  188. package/build/plugins/resource/spfx/plugin.d.ts.map +1 -1
  189. package/build/plugins/resource/spfx/plugin.js +21 -4
  190. package/build/plugins/resource/spfx/plugin.js.map +1 -1
  191. package/build/plugins/resource/spfx/utils/telemetryEvents.d.ts +11 -0
  192. package/build/plugins/resource/spfx/utils/telemetryEvents.d.ts.map +1 -0
  193. package/build/plugins/resource/spfx/utils/telemetryEvents.js +18 -0
  194. package/build/plugins/resource/spfx/utils/telemetryEvents.js.map +1 -0
  195. package/build/plugins/solution/fx-solution/constants.d.ts +8 -2
  196. package/build/plugins/solution/fx-solution/constants.d.ts.map +1 -1
  197. package/build/plugins/solution/fx-solution/constants.js +6 -0
  198. package/build/plugins/solution/fx-solution/constants.js.map +1 -1
  199. package/build/plugins/solution/fx-solution/debug/constants.d.ts +15 -0
  200. package/build/plugins/solution/fx-solution/debug/constants.d.ts.map +1 -1
  201. package/build/plugins/solution/fx-solution/debug/constants.js +18 -1
  202. package/build/plugins/solution/fx-solution/debug/constants.js.map +1 -1
  203. package/build/plugins/solution/fx-solution/debug/scaffolding.d.ts.map +1 -1
  204. package/build/plugins/solution/fx-solution/debug/scaffolding.js +16 -9
  205. package/build/plugins/solution/fx-solution/debug/scaffolding.js.map +1 -1
  206. package/build/plugins/solution/fx-solution/debug/util/launchNext.d.ts +2 -0
  207. package/build/plugins/solution/fx-solution/debug/util/launchNext.d.ts.map +1 -1
  208. package/build/plugins/solution/fx-solution/debug/util/launchNext.js +145 -4
  209. package/build/plugins/solution/fx-solution/debug/util/launchNext.js.map +1 -1
  210. package/build/plugins/solution/fx-solution/debug/util/tasksNext.d.ts +1 -0
  211. package/build/plugins/solution/fx-solution/debug/util/tasksNext.d.ts.map +1 -1
  212. package/build/plugins/solution/fx-solution/debug/util/tasksNext.js +74 -1
  213. package/build/plugins/solution/fx-solution/debug/util/tasksNext.js.map +1 -1
  214. package/build/plugins/solution/fx-solution/question.d.ts +2 -0
  215. package/build/plugins/solution/fx-solution/question.d.ts.map +1 -1
  216. package/build/plugins/solution/fx-solution/question.js +14 -1
  217. package/build/plugins/solution/fx-solution/question.js.map +1 -1
  218. package/build/plugins/solution/fx-solution/v2/executeUserTask.d.ts +2 -0
  219. package/build/plugins/solution/fx-solution/v2/executeUserTask.d.ts.map +1 -1
  220. package/build/plugins/solution/fx-solution/v2/executeUserTask.js +91 -7
  221. package/build/plugins/solution/fx-solution/v2/executeUserTask.js.map +1 -1
  222. package/build/plugins/solution/fx-solution/v2/getQuestions.d.ts.map +1 -1
  223. package/build/plugins/solution/fx-solution/v2/getQuestions.js +24 -22
  224. package/build/plugins/solution/fx-solution/v2/getQuestions.js.map +1 -1
  225. package/build/plugins/solution/fx-solution/v2/scaffolding.d.ts.map +1 -1
  226. package/build/plugins/solution/fx-solution/v2/scaffolding.js +6 -4
  227. package/build/plugins/solution/fx-solution/v2/scaffolding.js.map +1 -1
  228. package/build/plugins/solution/fx-solution/v2/utils.d.ts.map +1 -1
  229. package/build/plugins/solution/fx-solution/v2/utils.js +5 -3
  230. package/build/plugins/solution/fx-solution/v2/utils.js.map +1 -1
  231. package/package.json +3 -3
  232. package/resource/package.nls.json +76 -14
  233. package/templates/{plugins/resource/dotnet → fallback}/blazor-base.csharp.default.zip +0 -0
  234. package/templates/{plugins/resource/bot → fallback}/bot.csharp.default.zip +0 -0
  235. package/templates/{plugins/resource/bot → fallback}/bot.js.default.zip +0 -0
  236. package/templates/{plugins/resource/bot → fallback}/bot.ts.default.zip +0 -0
  237. package/templates/fallback/bot.ts.notification-function-base.zip +0 -0
  238. package/templates/fallback/bot.ts.notification-trigger-http.zip +0 -0
  239. package/templates/fallback/bot.ts.notification-trigger-timer.zip +0 -0
  240. package/templates/fallback/bot.ts.notification.zip +0 -0
  241. package/templates/{plugins/resource/function → fallback}/function-base.js.default.zip +0 -0
  242. package/templates/{plugins/resource/function → fallback}/function-base.ts.default.zip +0 -0
  243. package/templates/{plugins/resource/function → fallback}/function-triggers.js.HTTPTrigger.zip +0 -0
  244. package/templates/{plugins/resource/function → fallback}/function-triggers.ts.HTTPTrigger.zip +0 -0
  245. package/templates/{plugins/resource/frontend → fallback}/tab.csharp.default.zip +0 -0
  246. package/templates/{plugins/resource/frontend → fallback}/tab.js.default.zip +0 -0
  247. package/templates/fallback/tab.js.m365.zip +0 -0
  248. package/templates/fallback/tab.js.non-sso.zip +0 -0
  249. package/templates/{plugins/resource/frontend → fallback}/tab.ts.default.zip +0 -0
  250. package/templates/fallback/tab.ts.m365.zip +0 -0
  251. package/templates/fallback/tab.ts.non-sso.zip +0 -0
  252. package/templates/plugins/resource/aad/manifest/aad.template.json +0 -5
  253. package/templates/plugins/resource/bot/bicep/botProvision.template.bicep +4 -0
  254. package/templates/plugins/resource/bot/bicep/funcHostedBotProvision.template.bicep +121 -0
package/build/plugins/resource/aad/permissions/permissions.json CHANGED
@@ -50,7 +50,9 @@
50
50
  "addIns": [],
51
51
  "appRoles": [
52
52
  {
53
- "allowedMemberTypes": ["Application"],
53
+ "allowedMemberTypes": [
54
+ "Application"
55
+ ],
54
56
  "description": "Allow the app to evaluate the inputs provided against the Data Loss Prevention policies and recommend applicable actions, without a signed-in user.",
55
57
  "displayName": "Evaluate Data Loss Prevention policy",
56
58
  "id": "ba7b8302-40ad-475c-a768-5b990aa1dba1",
@@ -59,7 +61,9 @@
59
61
  "value": "DataLossPreventionPolicy.Evaluate"
60
62
  },
61
63
  {
62
- "allowedMemberTypes": ["Application"],
64
+ "allowedMemberTypes": [
65
+ "Application"
66
+ ],
63
67
  "description": "Allow the app to determine if there is any sensitivity label to be applied automatically to the content or recommended to the user for manual application, without a signed-in user.",
64
68
  "displayName": "Evaluate sensitivity labels",
65
69
  "id": "57f0b71b-a759-45a0-9a0f-cc099fbd9a44",
@@ -68,7 +72,9 @@
68
72
  "value": "SensitivityLabel.Evaluate"
69
73
  },
70
74
  {
71
- "allowedMemberTypes": ["Application"],
75
+ "allowedMemberTypes": [
76
+ "Application"
77
+ ],
72
78
  "description": "Allow the app to scan the text in the input to detect the sensitive information types, without a signed-in user.",
73
79
  "displayName": "Detect sensitive information types",
74
80
  "id": "673cd294-c6eb-43f7-8bc9-cee7da70d759",
@@ -77,7 +83,9 @@
77
83
  "value": "SensitiveInfoType.Detect"
78
84
  },
79
85
  {
80
- "allowedMemberTypes": ["Application"],
86
+ "allowedMemberTypes": [
87
+ "Application"
88
+ ],
81
89
  "description": "Allow the app to get the list of available sensitive types, including out of box and custom configured, without a signed-in user.",
82
90
  "displayName": "Read available sensitive information types",
83
91
  "id": "107747da-618e-4e26-bcaf-6adac31d8dae",
@@ -86,7 +94,9 @@
86
94
  "value": "SensitiveInfoType.Read.All"
87
95
  },
88
96
  {
89
- "allowedMemberTypes": ["Application"],
97
+ "allowedMemberTypes": [
98
+ "Application"
99
+ ],
90
100
  "description": "Allows the app to read, create and manage the API connectors used in user authentication flows, without a signed-in user.",
91
101
  "displayName": "Read and write API connectors for authentication flows",
92
102
  "id": "1dfe531a-24a6-4f1b-80f4-7a0dc5a0a171",
@@ -95,7 +105,9 @@
95
105
  "value": "APIConnectors.ReadWrite.All"
96
106
  },
97
107
  {
98
- "allowedMemberTypes": ["Application"],
108
+ "allowedMemberTypes": [
109
+ "Application"
110
+ ],
99
111
  "description": "Allows the app to read the API connectors used in user authentication flows, without a signed-in user.",
100
112
  "displayName": "Read API connectors for authentication flows",
101
113
  "id": "b86848a7-d5b1-41eb-a9b4-54a4e6306e97",
@@ -104,7 +116,9 @@
104
116
  "value": "APIConnectors.Read.All"
105
117
  },
106
118
  {
107
- "allowedMemberTypes": ["Application"],
119
+ "allowedMemberTypes": [
120
+ "Application"
121
+ ],
108
122
  "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for any user, without a signed-in user.",
109
123
  "displayName": "Allow the app to manage all tabs for all users",
110
124
  "id": "425b4b59-d5af-45c8-832f-bb0b7402348a",
@@ -113,7 +127,9 @@
113
127
  "value": "TeamsTab.ReadWriteForUser.All"
114
128
  },
115
129
  {
116
- "allowedMemberTypes": ["Application"],
130
+ "allowedMemberTypes": [
131
+ "Application"
132
+ ],
117
133
  "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs in any team, without a signed-in user.",
118
134
  "displayName": "Allow the Teams app to manage all tabs for all teams",
119
135
  "id": "6163d4f4-fbf8-43da-a7b4-060fe85ed148",
@@ -122,7 +138,9 @@
122
138
  "value": "TeamsTab.ReadWriteForTeam.All"
123
139
  },
124
140
  {
125
- "allowedMemberTypes": ["Application"],
141
+ "allowedMemberTypes": [
142
+ "Application"
143
+ ],
126
144
  "description": "Allows a Teams app to read, install, upgrade, and uninstall all tabs for any chat, without a signed-in user.",
127
145
  "displayName": "Allow the Teams app to manage all tabs for all chats",
128
146
  "id": "fd9ce730-a250-40dc-bd44-8dc8d20f39ea",
@@ -131,7 +149,9 @@
131
149
  "value": "TeamsTab.ReadWriteForChat.All"
132
150
  },
133
151
  {
134
- "allowedMemberTypes": ["Application"],
152
+ "allowedMemberTypes": [
153
+ "Application"
154
+ ],
135
155
  "description": "Allows the app to read all one-to-one and group chats messages in Microsoft Teams, without a signed-in user.",
136
156
  "displayName": "Read all chat messages",
137
157
  "id": "b9bb2381-47a4-46cd-aafb-00cb12f68504",
@@ -140,7 +160,9 @@
140
160
  "value": "ChatMessage.Read.All"
141
161
  },
142
162
  {
143
- "allowedMemberTypes": ["Application"],
163
+ "allowedMemberTypes": [
164
+ "Application"
165
+ ],
144
166
  "description": "Allows the app to read all PSTN and direct routing call log data without a signed-in user.",
145
167
  "displayName": "Read PSTN and direct routing call log data",
146
168
  "id": "a2611786-80b3-417e-adaa-707d4261a5f0",
@@ -149,7 +171,9 @@
149
171
  "value": "CallRecord-PstnCalls.Read.All"
150
172
  },
151
173
  {
152
- "allowedMemberTypes": ["Application"],
174
+ "allowedMemberTypes": [
175
+ "Application"
176
+ ],
153
177
  "description": "Allows the app to read role-based access control (RBAC) settings for all RBAC providers without a signed-in user. This includes reading role definitions and role assignments.",
154
178
  "displayName": "Read role management data for all RBAC providers",
155
179
  "id": "c7fbd983-d9aa-4fa7-84b8-17382c103bc4",
@@ -158,7 +182,9 @@
158
182
  "value": "RoleManagement.Read.All"
159
183
  },
160
184
  {
161
- "allowedMemberTypes": ["Application"],
185
+ "allowedMemberTypes": [
186
+ "Application"
187
+ ],
162
188
  "description": "Allows the app to read your organization's conditional access policies, without a signed-in user.",
163
189
  "displayName": "Read your organization's conditional access policies",
164
190
  "id": "37730810-e9ba-4e46-b07e-8ca78d182097",
@@ -167,7 +193,9 @@
167
193
  "value": "Policy.Read.ConditionalAccess"
168
194
  },
169
195
  {
170
- "allowedMemberTypes": ["Application"],
196
+ "allowedMemberTypes": [
197
+ "Application"
198
+ ],
171
199
  "description": "Allows the app to read, create, edit, and delete all the short notes without a signed-in user.",
172
200
  "displayName": "Read, create, edit, and delete all users' short notes",
173
201
  "id": "842c284c-763d-4a97-838d-79787d129bab",
@@ -176,7 +204,9 @@
176
204
  "value": "ShortNotes.ReadWrite.All"
177
205
  },
178
206
  {
179
- "allowedMemberTypes": ["Application"],
207
+ "allowedMemberTypes": [
208
+ "Application"
209
+ ],
180
210
  "description": "Allows the app to read all the short notes without a signed-in user.",
181
211
  "displayName": "Read all users' short notes",
182
212
  "id": "0c7d31ec-31ca-4f58-b6ec-9950b6b0de69",
@@ -185,7 +215,9 @@
185
215
  "value": "ShortNotes.Read.All"
186
216
  },
187
217
  {
188
- "allowedMemberTypes": ["Application"],
218
+ "allowedMemberTypes": [
219
+ "Application"
220
+ ],
189
221
  "description": "Allows the app to read your tenant's service announcement messages, without a signed-in user. Messages may include information about new or changed features.",
190
222
  "displayName": "Read service messages",
191
223
  "id": "1b620472-6534-4fe6-9df2-4680e8aa28ec",
@@ -194,7 +226,9 @@
194
226
  "value": "ServiceMessage.Read.All"
195
227
  },
196
228
  {
197
- "allowedMemberTypes": ["Application"],
229
+ "allowedMemberTypes": [
230
+ "Application"
231
+ ],
198
232
  "description": "Allows the app to read your tenant's service health information, without a signed-in user. Health information may include service issues or service health overviews.",
199
233
  "displayName": "Read service health",
200
234
  "id": "79c261e0-fe76-4144-aad5-bdc68fbe4037",
@@ -203,7 +237,9 @@
203
237
  "value": "ServiceHealth.Read.All"
204
238
  },
205
239
  {
206
- "allowedMemberTypes": ["Application"],
240
+ "allowedMemberTypes": [
241
+ "Application"
242
+ ],
207
243
  "description": "Allows the app to read, edit or write all term store data, without a signed-in user. This includes all sets, groups and terms in the term store.",
208
244
  "displayName": "Read and write all term store data",
209
245
  "id": "f12eb8d6-28e3-46e6-b2c0-b7e4dc69fc95",
@@ -212,7 +248,9 @@
212
248
  "value": "TermStore.ReadWrite.All"
213
249
  },
214
250
  {
215
- "allowedMemberTypes": ["Application"],
251
+ "allowedMemberTypes": [
252
+ "Application"
253
+ ],
216
254
  "description": "Allows the app to read all term store data, without a signed-in user. This includes all sets, groups and terms in the term store.",
217
255
  "displayName": "Read all term store data",
218
256
  "id": "ea047cc2-df29-4f3e-83a3-205de61501ca",
@@ -221,7 +259,9 @@
221
259
  "value": "TermStore.Read.All"
222
260
  },
223
261
  {
224
- "allowedMemberTypes": ["Application"],
262
+ "allowedMemberTypes": [
263
+ "Application"
264
+ ],
225
265
  "description": "Add and remove members from all teams, without a signed-in user. Does not allow adding or removing a member with the owner role. Additionally, does not allow the app to elevate an existing member to the owner role.",
226
266
  "displayName": "Add and remove members with non-owner role for all teams",
227
267
  "id": "4437522e-9a86-4a41-a7da-e380edd4a97d",
@@ -230,7 +270,9 @@
230
270
  "value": "TeamMember.ReadWriteNonOwnerRole.All"
231
271
  },
232
272
  {
233
- "allowedMemberTypes": ["Application"],
273
+ "allowedMemberTypes": [
274
+ "Application"
275
+ ],
234
276
  "description": "Allows the app to create teams without a signed-in user. ",
235
277
  "displayName": "Create teams",
236
278
  "id": "23fc2474-f741-46ce-8465-674744c5c361",
@@ -239,7 +281,9 @@
239
281
  "value": "Team.Create"
240
282
  },
241
283
  {
242
- "allowedMemberTypes": ["Application"],
284
+ "allowedMemberTypes": [
285
+ "Application"
286
+ ],
243
287
  "description": "Allows a Teams app to read, install, upgrade, and uninstall itself to any user, without a signed-in user.",
244
288
  "displayName": "Allow the app to manage itself for all users",
245
289
  "id": "908de74d-f8b2-4d6b-a9ed-2a17b3b78179",
@@ -248,7 +292,9 @@
248
292
  "value": "TeamsAppInstallation.ReadWriteSelfForUser.All"
249
293
  },
250
294
  {
251
- "allowedMemberTypes": ["Application"],
295
+ "allowedMemberTypes": [
296
+ "Application"
297
+ ],
252
298
  "description": "Allows a Teams app to read, install, upgrade, and uninstall itself in any team, without a signed-in user.",
253
299
  "displayName": "Allow the Teams app to manage itself for all teams",
254
300
  "id": "9f67436c-5415-4e7f-8ac1-3014a7132630",
@@ -257,7 +303,9 @@
257
303
  "value": "TeamsAppInstallation.ReadWriteSelfForTeam.All"
258
304
  },
259
305
  {
260
- "allowedMemberTypes": ["Application"],
306
+ "allowedMemberTypes": [
307
+ "Application"
308
+ ],
261
309
  "description": "Allows a Teams app to read, install, upgrade, and uninstall itself for any chat, without a signed-in user.",
262
310
  "displayName": "Allow the Teams app to manage itself for all chats",
263
311
  "id": "73a45059-f39c-4baf-9182-4954ac0e55cf",
@@ -266,7 +314,9 @@
266
314
  "value": "TeamsAppInstallation.ReadWriteSelfForChat.All"
267
315
  },
268
316
  {
269
- "allowedMemberTypes": ["Application"],
317
+ "allowedMemberTypes": [
318
+ "Application"
319
+ ],
270
320
  "description": "Allows the app to read, install, upgrade, and uninstall Teams apps for any user, without a signed-in user. Does not give the ability to read application-specific settings.",
271
321
  "displayName": "Manage Teams apps for all users",
272
322
  "id": "74ef0291-ca83-4d02-8c7e-d2391e6a444f",
@@ -275,7 +325,9 @@
275
325
  "value": "TeamsAppInstallation.ReadWriteForUser.All"
276
326
  },
277
327
  {
278
- "allowedMemberTypes": ["Application"],
328
+ "allowedMemberTypes": [
329
+ "Application"
330
+ ],
279
331
  "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in any team, without a signed-in user. Does not give the ability to read application-specific settings.",
280
332
  "displayName": "Manage Teams apps for all teams",
281
333
  "id": "5dad17ba-f6cc-4954-a5a2-a0dcc95154f0",
@@ -284,7 +336,9 @@
284
336
  "value": "TeamsAppInstallation.ReadWriteForTeam.All"
285
337
  },
286
338
  {
287
- "allowedMemberTypes": ["Application"],
339
+ "allowedMemberTypes": [
340
+ "Application"
341
+ ],
288
342
  "description": "Allows the app to read, install, upgrade, and uninstall Teams apps in any chat, without a signed-in user. Does not give the ability to read application-specific settings.",
289
343
  "displayName": "Manage Teams apps for all chats",
290
344
  "id": "9e19bae1-2623-4c4f-ab6e-2664615ff9a0",
@@ -293,7 +347,9 @@
293
347
  "value": "TeamsAppInstallation.ReadWriteForChat.All"
294
348
  },
295
349
  {
296
- "allowedMemberTypes": ["Application"],
350
+ "allowedMemberTypes": [
351
+ "Application"
352
+ ],
297
353
  "description": "Allows the app to read the Teams apps that are installed for any user, without a signed-in user. Does not give the ability to read application-specific settings.",
298
354
  "displayName": "Read installed Teams apps for all users",
299
355
  "id": "9ce09611-f4f7-4abd-a629-a05450422a97",
@@ -302,7 +358,9 @@
302
358
  "value": "TeamsAppInstallation.ReadForUser.All"
303
359
  },
304
360
  {
305
- "allowedMemberTypes": ["Application"],
361
+ "allowedMemberTypes": [
362
+ "Application"
363
+ ],
306
364
  "description": "Allows the app to read the Teams apps that are installed in any team, without a signed-in user. Does not give the ability to read application-specific settings.",
307
365
  "displayName": "Read installed Teams apps for all teams",
308
366
  "id": "1f615aea-6bf9-4b05-84bd-46388e138537",
@@ -311,7 +369,9 @@
311
369
  "value": "TeamsAppInstallation.ReadForTeam.All"
312
370
  },
313
371
  {
314
- "allowedMemberTypes": ["Application"],
372
+ "allowedMemberTypes": [
373
+ "Application"
374
+ ],
315
375
  "description": "Allows the app to read the Teams apps that are installed in any chat, without a signed-in user. Does not give the ability to read application-specific settings.",
316
376
  "displayName": "Read installed Teams apps for all chats",
317
377
  "id": "cc7e7635-2586-41d6-adaa-a8d3bcad5ee5",
@@ -320,7 +380,9 @@
320
380
  "value": "TeamsAppInstallation.ReadForChat.All"
321
381
  },
322
382
  {
323
- "allowedMemberTypes": ["Application"],
383
+ "allowedMemberTypes": [
384
+ "Application"
385
+ ],
324
386
  "description": "Allows the app to create chat and channel messages, without a signed in user. The app specifies which user appears as the sender, and can backdate the message to appear as if it was sent long ago. The messages can be sent to any chat or channel in the organization.",
325
387
  "displayName": "Create chat and channel messages with anyone's identity and with any timestamp",
326
388
  "id": "dfb0dd15-61de-45b2-be36-d6a69fba3c79",
@@ -329,7 +391,9 @@
329
391
  "value": "Teamwork.Migrate.All"
330
392
  },
331
393
  {
332
- "allowedMemberTypes": ["Application"],
394
+ "allowedMemberTypes": [
395
+ "Application"
396
+ ],
333
397
  "description": "Allows the application to read and update print task definitions without a signed-in user. ",
334
398
  "displayName": "Read, write and update print task definitions",
335
399
  "id": "456b71a7-0ee0-4588-9842-c123fcc8f664",
@@ -338,7 +402,9 @@
338
402
  "value": "PrintTaskDefinition.ReadWrite.All"
339
403
  },
340
404
  {
341
- "allowedMemberTypes": ["Application"],
405
+ "allowedMemberTypes": [
406
+ "Application"
407
+ ],
342
408
  "description": "Allows the application to read and update the metadata of print jobs without a signed-in user. Does not allow access to print job document content.",
343
409
  "displayName": "Read and write basic information for print jobs",
344
410
  "id": "57878358-37f4-4d3a-8c20-4816e0d457b1",
@@ -347,7 +413,9 @@
347
413
  "value": "PrintJob.ReadWriteBasic.All"
348
414
  },
349
415
  {
350
- "allowedMemberTypes": ["Application"],
416
+ "allowedMemberTypes": [
417
+ "Application"
418
+ ],
351
419
  "description": "Allows the application to read and update the metadata and document content of print jobs without a signed-in user.",
352
420
  "displayName": "Read and write print jobs",
353
421
  "id": "5114b07b-2898-4de7-a541-53b0004e2e13",
@@ -356,7 +424,9 @@
356
424
  "value": "PrintJob.ReadWrite.All"
357
425
  },
358
426
  {
359
- "allowedMemberTypes": ["Application"],
427
+ "allowedMemberTypes": [
428
+ "Application"
429
+ ],
360
430
  "description": "Allows the application to read the metadata of print jobs without a signed-in user. Does not allow access to print job document content.",
361
431
  "displayName": "Read basic information for print jobs",
362
432
  "id": "fbf67eee-e074-4ef7-b965-ab5ce1c1f689",
@@ -365,7 +435,9 @@
365
435
  "value": "PrintJob.ReadBasic.All"
366
436
  },
367
437
  {
368
- "allowedMemberTypes": ["Application"],
438
+ "allowedMemberTypes": [
439
+ "Application"
440
+ ],
369
441
  "description": "Allows the application to read the metadata and document content of print jobs without a signed-in user. ",
370
442
  "displayName": "Read print jobs",
371
443
  "id": "ac6f956c-edea-44e4-bd06-64b1b4b9aec9",
@@ -374,7 +446,9 @@
374
446
  "value": "PrintJob.Read.All"
375
447
  },
376
448
  {
377
- "allowedMemberTypes": ["Application"],
449
+ "allowedMemberTypes": [
450
+ "Application"
451
+ ],
378
452
  "description": "Allows the application to perform advanced operations like redirecting a print job to another printer without a signed-in user. Also allows the application to read and update the metadata of print jobs.",
379
453
  "displayName": "Perform advanced operations on print jobs",
380
454
  "id": "58a52f47-9e36-4b17-9ebe-ce4ef7f3e6c8",
@@ -383,7 +457,9 @@
383
457
  "value": "PrintJob.Manage.All"
384
458
  },
385
459
  {
386
- "allowedMemberTypes": ["Application"],
460
+ "allowedMemberTypes": [
461
+ "Application"
462
+ ],
387
463
  "description": "Allows the application to read and update printers without a signed-in user. Does not allow creating (registering) or deleting (unregistering) printers.",
388
464
  "displayName": "Read and update printers",
389
465
  "id": "f5b3f73d-6247-44df-a74c-866173fddab0",
@@ -392,7 +468,9 @@
392
468
  "value": "Printer.ReadWrite.All"
393
469
  },
394
470
  {
395
- "allowedMemberTypes": ["Application"],
471
+ "allowedMemberTypes": [
472
+ "Application"
473
+ ],
396
474
  "description": "Allows the application to read printers without a signed-in user. ",
397
475
  "displayName": "Read printers",
398
476
  "id": "9709bb33-4549-49d4-8ed9-a8f65e45bb0f",
@@ -401,7 +479,9 @@
401
479
  "value": "Printer.Read.All"
402
480
  },
403
481
  {
404
- "allowedMemberTypes": ["Application"],
482
+ "allowedMemberTypes": [
483
+ "Application"
484
+ ],
405
485
  "description": "Allows the app to manage policies related to consent and permission grants for applications, without a signed-in user.",
406
486
  "displayName": "Manage consent and permission grant policies",
407
487
  "id": "a402ca1c-2696-4531-972d-6e5ee4aa11ea",
@@ -410,7 +490,9 @@
410
490
  "value": "Policy.ReadWrite.PermissionGrant"
411
491
  },
412
492
  {
413
- "allowedMemberTypes": ["Application"],
493
+ "allowedMemberTypes": [
494
+ "Application"
495
+ ],
414
496
  "description": "Allows the app to read policies related to consent and permission grants for applications, without a signed-in user.",
415
497
  "displayName": "Read consent and permission grant policies",
416
498
  "id": "9e640839-a198-48fb-8b9a-013fd6f6cbcd",
@@ -419,7 +501,9 @@
419
501
  "value": "Policy.Read.PermissionGrant"
420
502
  },
421
503
  {
422
- "allowedMemberTypes": ["Application"],
504
+ "allowedMemberTypes": [
505
+ "Application"
506
+ ],
423
507
  "description": "Read names and members of all one-to-one and group chats in Microsoft Teams, without a signed-in user.",
424
508
  "displayName": "Read names and members of all chat threads",
425
509
  "id": "b2e060da-3baf-4687-9611-f4ebc0f0cbde",
@@ -428,7 +512,9 @@
428
512
  "value": "Chat.ReadBasic.All"
429
513
  },
430
514
  {
431
- "allowedMemberTypes": ["Application"],
515
+ "allowedMemberTypes": [
516
+ "Application"
517
+ ],
432
518
  "description": "Allows the app to read and write your organization's authorization policy without a signed in user. For example, authorization policies can control some of the permissions that the out-of-the-box user role has by default.",
433
519
  "displayName": "Read and write your organization's authorization policy",
434
520
  "id": "fb221be6-99f2-473f-bd32-01c6a0e9ca3b",
@@ -437,7 +523,9 @@
437
523
  "value": "Policy.ReadWrite.Authorization"
438
524
  },
439
525
  {
440
- "allowedMemberTypes": ["Application"],
526
+ "allowedMemberTypes": [
527
+ "Application"
528
+ ],
441
529
  "description": "Allows the app to read and write all authentication method policies for the tenant, without a signed-in user. ",
442
530
  "displayName": "Read and write all authentication method policies ",
443
531
  "id": "29c18626-4985-4dcd-85c0-193eef327366",
@@ -446,7 +534,9 @@
446
534
  "value": "Policy.ReadWrite.AuthenticationMethod"
447
535
  },
448
536
  {
449
- "allowedMemberTypes": ["Application"],
537
+ "allowedMemberTypes": [
538
+ "Application"
539
+ ],
450
540
  "description": "Allows the app to read and write all authentication flow policies for the tenant, without a signed-in user.",
451
541
  "displayName": "Read and write authentication flow policies",
452
542
  "id": "25f85f3c-f66c-4205-8cd5-de92dd7f0cec",
@@ -455,7 +545,9 @@
455
545
  "value": "Policy.ReadWrite.AuthenticationFlows"
456
546
  },
457
547
  {
458
- "allowedMemberTypes": ["Application"],
548
+ "allowedMemberTypes": [
549
+ "Application"
550
+ ],
459
551
  "description": "Add and remove members from all channels, without a signed-in user. Also allows changing a member's role, for example from owner to non-owner.",
460
552
  "displayName": "Add and remove members from all channels",
461
553
  "id": "35930dcf-aceb-4bd1-b99a-8ffed403c974",
@@ -464,7 +556,9 @@
464
556
  "value": "ChannelMember.ReadWrite.All"
465
557
  },
466
558
  {
467
- "allowedMemberTypes": ["Application"],
559
+ "allowedMemberTypes": [
560
+ "Application"
561
+ ],
468
562
  "description": "Read the members of all channels, without a signed-in user.",
469
563
  "displayName": "Read the members of all channels",
470
564
  "id": "3b55498e-47ec-484f-8136-9013221c06a9",
@@ -473,7 +567,9 @@
473
567
  "value": "ChannelMember.Read.All"
474
568
  },
475
569
  {
476
- "allowedMemberTypes": ["Application"],
570
+ "allowedMemberTypes": [
571
+ "Application"
572
+ ],
477
573
  "description": "Add and remove members from all teams, without a signed-in user. Also allows changing a team member's role, for example from owner to non-owner.",
478
574
  "displayName": "Add and remove members from all teams",
479
575
  "id": "0121dc95-1b9f-4aed-8bac-58c5ac466691",
@@ -482,7 +578,9 @@
482
578
  "value": "TeamMember.ReadWrite.All"
483
579
  },
484
580
  {
485
- "allowedMemberTypes": ["Application"],
581
+ "allowedMemberTypes": [
582
+ "Application"
583
+ ],
486
584
  "description": "Read the members of all teams, without a signed-in user.",
487
585
  "displayName": "Read the members of all teams",
488
586
  "id": "660b7406-55f1-41ca-a0ed-0b035e182f3e",
@@ -491,7 +589,9 @@
491
589
  "value": "TeamMember.Read.All"
492
590
  },
493
591
  {
494
- "allowedMemberTypes": ["Application"],
592
+ "allowedMemberTypes": [
593
+ "Application"
594
+ ],
495
595
  "description": "Read all team's settings, without a signed-in user.",
496
596
  "displayName": "Read all teams' settings",
497
597
  "id": "242607bd-1d2c-432c-82eb-bdb27baa23ab",
@@ -500,7 +600,9 @@
500
600
  "value": "TeamSettings.Read.All"
501
601
  },
502
602
  {
503
- "allowedMemberTypes": ["Application"],
603
+ "allowedMemberTypes": [
604
+ "Application"
605
+ ],
504
606
  "description": "Read and change all teams' settings, without a signed-in user.",
505
607
  "displayName": "Read and change all teams' settings",
506
608
  "id": "bdd80a03-d9bc-451d-b7c4-ce7c63fe3c8f",
@@ -509,7 +611,9 @@
509
611
  "value": "TeamSettings.ReadWrite.All"
510
612
  },
511
613
  {
512
- "allowedMemberTypes": ["Application"],
614
+ "allowedMemberTypes": [
615
+ "Application"
616
+ ],
513
617
  "description": "Read all channel names and channel descriptions, without a signed-in user.",
514
618
  "displayName": "Read the names and descriptions of all channels",
515
619
  "id": "59a6b24b-4225-4393-8165-ebaec5f55d7a",
@@ -518,7 +622,9 @@
518
622
  "value": "Channel.ReadBasic.All"
519
623
  },
520
624
  {
521
- "allowedMemberTypes": ["Application"],
625
+ "allowedMemberTypes": [
626
+ "Application"
627
+ ],
522
628
  "description": "Get a list of all teams, without a signed-in user.",
523
629
  "displayName": "Get a list of all teams",
524
630
  "id": "2280dda6-0bfd-44ee-a2f4-cb867cfc4c1e",
@@ -527,7 +633,9 @@
527
633
  "value": "Team.ReadBasic.All"
528
634
  },
529
635
  {
530
- "allowedMemberTypes": ["Application"],
636
+ "allowedMemberTypes": [
637
+ "Application"
638
+ ],
531
639
  "description": "Read and write the names, descriptions, and settings of all channels, without a signed-in user.",
532
640
  "displayName": "Read and write the names, descriptions, and settings of all channels",
533
641
  "id": "243cded2-bd16-4fd6-a953-ff8177894c3d",
@@ -536,7 +644,9 @@
536
644
  "value": "ChannelSettings.ReadWrite.All"
537
645
  },
538
646
  {
539
- "allowedMemberTypes": ["Application"],
647
+ "allowedMemberTypes": [
648
+ "Application"
649
+ ],
540
650
  "description": "Read all channel names, channel descriptions, and channel settings, without a signed-in user.",
541
651
  "displayName": "Read the names, descriptions, and settings of all channels",
542
652
  "id": "c97b873f-f59f-49aa-8a0e-52b32d762124",
@@ -545,7 +655,9 @@
545
655
  "value": "ChannelSettings.Read.All"
546
656
  },
547
657
  {
548
- "allowedMemberTypes": ["Application"],
658
+ "allowedMemberTypes": [
659
+ "Application"
660
+ ],
549
661
  "description": "Delete channels in any team, without a signed-in user.",
550
662
  "displayName": "Delete channels",
551
663
  "id": "6a118a39-1227-45d4-af0c-ea7b40d210bc",
@@ -554,7 +666,9 @@
554
666
  "value": "Channel.Delete.All"
555
667
  },
556
668
  {
557
- "allowedMemberTypes": ["Application"],
669
+ "allowedMemberTypes": [
670
+ "Application"
671
+ ],
558
672
  "description": "Create channels in any team, without a signed-in user.",
559
673
  "displayName": "Create channels",
560
674
  "id": "f3a65bd4-b703-46df-8f7e-0174fea562aa",
@@ -563,7 +677,9 @@
563
677
  "value": "Channel.Create"
564
678
  },
565
679
  {
566
- "allowedMemberTypes": ["Application"],
680
+ "allowedMemberTypes": [
681
+ "Application"
682
+ ],
567
683
  "description": "Allows the app to read and write access packages and related entitlement management resources without a signed-in user.",
568
684
  "displayName": "Read and write all entitlement management resources",
569
685
  "id": "9acd699f-1e81-4958-b001-93b1d2506e19",
@@ -572,7 +688,9 @@
572
688
  "value": "EntitlementManagement.ReadWrite.All"
573
689
  },
574
690
  {
575
- "allowedMemberTypes": ["Application"],
691
+ "allowedMemberTypes": [
692
+ "Application"
693
+ ],
576
694
  "description": "Allows the app to read access packages and related entitlement management resources without a signed-in user.",
577
695
  "displayName": "Read all entitlement management resources",
578
696
  "id": "c74fd47d-ed3c-45c3-9a9e-b8676de685d2",
@@ -581,7 +699,9 @@
581
699
  "value": "EntitlementManagement.Read.All"
582
700
  },
583
701
  {
584
- "allowedMemberTypes": ["Application"],
702
+ "allowedMemberTypes": [
703
+ "Application"
704
+ ],
585
705
  "description": "Allows the app to create or delete document libraries and lists in all site collections without a signed in user.",
586
706
  "displayName": "Create, edit, and delete items and lists in all site collections",
587
707
  "id": "0c0bf378-bf22-4481-8f81-9e89a9b4960a",
@@ -590,7 +710,9 @@
590
710
  "value": "Sites.Manage.All"
591
711
  },
592
712
  {
593
- "allowedMemberTypes": ["Application"],
713
+ "allowedMemberTypes": [
714
+ "Application"
715
+ ],
594
716
  "description": "Allows the app to have full control of all site collections without a signed in user.",
595
717
  "displayName": "Have full control of all site collections",
596
718
  "id": "a82116e5-55eb-4c41-a434-62fe8a61c773",
@@ -599,7 +721,9 @@
599
721
  "value": "Sites.FullControl.All"
600
722
  },
601
723
  {
602
- "allowedMemberTypes": ["Application"],
724
+ "allowedMemberTypes": [
725
+ "Application"
726
+ ],
603
727
  "description": "Allows the app to read all the OneNote notebooks in your organization, without a signed-in user.",
604
728
  "displayName": "Read and write all OneNote notebooks",
605
729
  "id": "0c458cef-11f3-48c2-a568-c66751c238c0",
@@ -608,7 +732,9 @@
608
732
  "value": "Notes.ReadWrite.All"
609
733
  },
610
734
  {
611
- "allowedMemberTypes": ["Application"],
735
+ "allowedMemberTypes": [
736
+ "Application"
737
+ ],
612
738
  "description": "Allows the app to manage all users' shift schedule preferences without a signed-in user.",
613
739
  "displayName": "Read and write all user shift preferences",
614
740
  "id": "d1eec298-80f3-49b0-9efb-d90e224798ac",
@@ -617,7 +743,9 @@
617
743
  "value": "UserShiftPreferences.ReadWrite.All"
618
744
  },
619
745
  {
620
- "allowedMemberTypes": ["Application"],
746
+ "allowedMemberTypes": [
747
+ "Application"
748
+ ],
621
749
  "description": "Allows the app to read all users' shift schedule preferences without a signed-in user.",
622
750
  "displayName": "Read all user shift preferences",
623
751
  "id": "de023814-96df-4f53-9376-1e2891ef5a18",
@@ -626,7 +754,9 @@
626
754
  "value": "UserShiftPreferences.Read.All"
627
755
  },
628
756
  {
629
- "allowedMemberTypes": ["Application"],
757
+ "allowedMemberTypes": [
758
+ "Application"
759
+ ],
630
760
  "description": "Allows the app to read, update and delete identities that are associated with a user's account, without a signed in user. This controls the identities users can sign-in with.",
631
761
  "displayName": "Manage all users' identities",
632
762
  "id": "c529cfca-c91b-489c-af2b-d92990b66ce6",
@@ -635,7 +765,9 @@
635
765
  "value": "User.ManageIdentities.All"
636
766
  },
637
767
  {
638
- "allowedMemberTypes": ["Application"],
768
+ "allowedMemberTypes": [
769
+ "Application"
770
+ ],
639
771
  "description": "Allows the app to read your organization's devices' configuration information without a signed-in user.",
640
772
  "displayName": "Read all devices",
641
773
  "id": "7438b122-aefc-4978-80ed-43db9fcc7715",
@@ -644,7 +776,9 @@
644
776
  "value": "Device.Read.All"
645
777
  },
646
778
  {
647
- "allowedMemberTypes": ["Application"],
779
+ "allowedMemberTypes": [
780
+ "Application"
781
+ ],
648
782
  "description": "Allows the app to read and write your organization's application configuration policies, without a signed-in user. This includes policies such as activityBasedTimeoutPolicy, claimsMappingPolicy, homeRealmDiscoveryPolicy, tokenIssuancePolicy and tokenLifetimePolicy.",
649
783
  "displayName": "Read and write your organization's application configuration policies",
650
784
  "id": "be74164b-cff1-491c-8741-e671cb536e13",
@@ -653,7 +787,9 @@
653
787
  "value": "Policy.ReadWrite.ApplicationConfiguration"
654
788
  },
655
789
  {
656
- "allowedMemberTypes": ["Application"],
790
+ "allowedMemberTypes": [
791
+ "Application"
792
+ ],
657
793
  "description": "Allows the app to read all domain properties without a signed-in user.",
658
794
  "displayName": "Read domains",
659
795
  "id": "dbb9058a-0e50-45d7-ae91-66909b5d4664",
@@ -662,7 +798,9 @@
662
798
  "value": "Domain.Read.All"
663
799
  },
664
800
  {
665
- "allowedMemberTypes": ["Application"],
801
+ "allowedMemberTypes": [
802
+ "Application"
803
+ ],
666
804
  "description": "Read and write tabs in any team in Microsoft Teams, without a signed-in user. This does not give access to the content inside the tabs.",
667
805
  "displayName": "Read and write tabs in Microsoft Teams.",
668
806
  "id": "a96d855f-016b-47d7-b51c-1218a98d791c",
@@ -671,7 +809,9 @@
671
809
  "value": "TeamsTab.ReadWrite.All"
672
810
  },
673
811
  {
674
- "allowedMemberTypes": ["Application"],
812
+ "allowedMemberTypes": [
813
+ "Application"
814
+ ],
675
815
  "description": "Read the names and settings of tabs inside any team in Microsoft Teams, without a signed-in user. This does not give access to the content inside the tabs. ",
676
816
  "displayName": "Read tabs in Microsoft Teams.",
677
817
  "id": "46890524-499a-4bb2-ad64-1476b4f3e1cf",
@@ -680,7 +820,9 @@
680
820
  "value": "TeamsTab.Read.All"
681
821
  },
682
822
  {
683
- "allowedMemberTypes": ["Application"],
823
+ "allowedMemberTypes": [
824
+ "Application"
825
+ ],
684
826
  "description": "Allows the app to create tabs in any team in Microsoft Teams, without a signed-in user. This does not grant the ability to read, modify or delete tabs after they are created, or give access to the content inside the tabs.",
685
827
  "displayName": "Create tabs in Microsoft Teams.",
686
828
  "id": "49981c42-fd7b-4530-be03-e77b21aed25e",
@@ -689,7 +831,9 @@
689
831
  "value": "TeamsTab.Create"
690
832
  },
691
833
  {
692
- "allowedMemberTypes": ["Application"],
834
+ "allowedMemberTypes": [
835
+ "Application"
836
+ ],
693
837
  "description": " Allows the app to read authentication methods of all users in your organization, without a signed-in user. Authentication methods include things like a user’s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods.",
694
838
  "displayName": " Read all users' authentication methods",
695
839
  "id": "38d9df27-64da-44fd-b7c5-a6fbac20248f",
@@ -698,7 +842,9 @@
698
842
  "value": "UserAuthenticationMethod.Read.All"
699
843
  },
700
844
  {
701
- "allowedMemberTypes": ["Application"],
845
+ "allowedMemberTypes": [
846
+ "Application"
847
+ ],
702
848
  "description": "Allows the application to read and write authentication methods of all users in your organization, without a signed-in user. Authentication methods include things like a user’s phone numbers and Authenticator app settings. This does not allow the app to see secret information like passwords, or to sign-in or otherwise use the authentication methods",
703
849
  "displayName": "Read and write all users' authentication methods ",
704
850
  "id": "50483e42-d915-4231-9639-7fdb7fd190e5",
@@ -707,7 +853,9 @@
707
853
  "value": "UserAuthenticationMethod.ReadWrite.All"
708
854
  },
709
855
  {
710
- "allowedMemberTypes": ["Application"],
856
+ "allowedMemberTypes": [
857
+ "Application"
858
+ ],
711
859
  "description": "Allows the app to read and write your organization's conditional access policies, without a signed-in user.",
712
860
  "displayName": "Read and write your organization's conditional access policies",
713
861
  "id": "01c0a623-fc9b-48e9-b794-0756f8e8f067",
@@ -716,7 +864,9 @@
716
864
  "value": "Policy.ReadWrite.ConditionalAccess"
717
865
  },
718
866
  {
719
- "allowedMemberTypes": ["Application"],
867
+ "allowedMemberTypes": [
868
+ "Application"
869
+ ],
720
870
  "description": "Allows the app to read call records for all calls and online meetings without a signed-in user.",
721
871
  "displayName": "Read all call records",
722
872
  "id": "45bbb07e-7321-4fd7-a8f6-3ff27e6a81c8",
@@ -725,7 +875,9 @@
725
875
  "value": "CallRecords.Read.All"
726
876
  },
727
877
  {
728
- "allowedMemberTypes": ["Application"],
878
+ "allowedMemberTypes": [
879
+ "Application"
880
+ ],
729
881
  "description": "Allows the app to manage all schedules, schedule groups, shifts and associated entities in the Teams or Shifts application without a signed-in user.",
730
882
  "displayName": "Read and write all schedule items",
731
883
  "id": "b7760610-0545-4e8a-9ec3-cce9e63db01c",
@@ -734,7 +886,9 @@
734
886
  "value": "Schedule.ReadWrite.All"
735
887
  },
736
888
  {
737
- "allowedMemberTypes": ["Application"],
889
+ "allowedMemberTypes": [
890
+ "Application"
891
+ ],
738
892
  "description": "Allows the app to read all schedules, schedule groups, shifts and associated entities in the Teams or Shifts application without a signed-in user.",
739
893
  "displayName": "Read all schedule items",
740
894
  "id": "7b2ebf90-d836-437f-b90d-7b62722c4456",
@@ -743,7 +897,9 @@
743
897
  "value": "Schedule.Read.All"
744
898
  },
745
899
  {
746
- "allowedMemberTypes": ["Application"],
900
+ "allowedMemberTypes": [
901
+ "Application"
902
+ ],
747
903
  "description": "Allows an app to read your organization's threat assessment requests, without a signed-in user.",
748
904
  "displayName": "Read threat assessment requests",
749
905
  "id": "f8f035bb-2cce-47fb-8bf5-7baf3ecbee48",
@@ -752,7 +908,9 @@
752
908
  "value": "ThreatAssessment.Read.All"
753
909
  },
754
910
  {
755
- "allowedMemberTypes": ["Application"],
911
+ "allowedMemberTypes": [
912
+ "Application"
913
+ ],
756
914
  "description": "Allows the app to create groups without a signed-in user.",
757
915
  "displayName": "Create groups",
758
916
  "id": "bf7b1a76-6e77-406b-b258-bf5c7720e98f",
@@ -761,7 +919,9 @@
761
919
  "value": "Group.Create"
762
920
  },
763
921
  {
764
- "allowedMemberTypes": ["Application"],
922
+ "allowedMemberTypes": [
923
+ "Application"
924
+ ],
765
925
  "description": "Allows the app to list groups, read basic properties, read and update the membership of the groups this app has access to without a signed-in user. Group properties and owners cannot be updated and groups cannot be deleted.",
766
926
  "displayName": "Read and write all group memberships",
767
927
  "id": "dbaae8cf-10b5-4b86-a4a1-f871c94c6695",
@@ -770,7 +930,9 @@
770
930
  "value": "GroupMember.ReadWrite.All"
771
931
  },
772
932
  {
773
- "allowedMemberTypes": ["Application"],
933
+ "allowedMemberTypes": [
934
+ "Application"
935
+ ],
774
936
  "description": "Allows the app to read memberships and basic group properties for all groups without a signed-in user.",
775
937
  "displayName": "Read all group memberships",
776
938
  "id": "98830695-27a2-44f7-8c18-0c3ebc9698f6",
@@ -779,7 +941,9 @@
779
941
  "value": "GroupMember.Read.All"
780
942
  },
781
943
  {
782
- "allowedMemberTypes": ["Application"],
944
+ "allowedMemberTypes": [
945
+ "Application"
946
+ ],
783
947
  "description": "Allows an app to read basic BitLocker key properties for all devices, without a signed-in user. Does not allow read of the recovery key.",
784
948
  "displayName": "Read all BitLocker keys basic information",
785
949
  "id": "f690d423-6b29-4d04-98c6-694c42282419",
@@ -788,7 +952,9 @@
788
952
  "value": "BitlockerKey.ReadBasic.All"
789
953
  },
790
954
  {
791
- "allowedMemberTypes": ["Application"],
955
+ "allowedMemberTypes": [
956
+ "Application"
957
+ ],
792
958
  "description": "Allows an app to read BitLocker keys for all devices, without a signed-in user. Allows read of the recovery key.",
793
959
  "displayName": "Read all BitLocker keys",
794
960
  "id": "57f1cf28-c0c4-4ec3-9a30-19a2eaaf2f6e",
@@ -797,7 +963,9 @@
797
963
  "value": "BitlockerKey.Read.All"
798
964
  },
799
965
  {
800
- "allowedMemberTypes": ["Application"],
966
+ "allowedMemberTypes": [
967
+ "Application"
968
+ ],
801
969
  "description": "Allows the app to read all applications and service principals without a signed-in user.",
802
970
  "displayName": "Read all applications",
803
971
  "id": "9a5d68dd-52b0-4cc2-bd40-abcf44ac3a30",
@@ -806,7 +974,9 @@
806
974
  "value": "Application.Read.All"
807
975
  },
808
976
  {
809
- "allowedMemberTypes": ["Application"],
977
+ "allowedMemberTypes": [
978
+ "Application"
979
+ ],
810
980
  "description": "Allows the app to send, read, update and delete user’s notifications, without a signed-in user.",
811
981
  "displayName": "Deliver and manage all user's notifications",
812
982
  "id": "4e774092-a092-48d1-90bd-baad67c7eb47",
@@ -815,7 +985,9 @@
815
985
  "value": "UserNotification.ReadWrite.CreatedByApp"
816
986
  },
817
987
  {
818
- "allowedMemberTypes": ["Application"],
988
+ "allowedMemberTypes": [
989
+ "Application"
990
+ ],
819
991
  "description": "Allows the app to read, install, upgrade, and uninstall Teams apps for any user, without a signed-in user. Does not give the ability to read or write application-specific settings.",
820
992
  "displayName": "Manage all users' Teams apps",
821
993
  "id": "eb6b3d76-ed75-4be6-ac36-158d04c0a555",
@@ -824,7 +996,9 @@
824
996
  "value": "TeamsApp.ReadWrite.All"
825
997
  },
826
998
  {
827
- "allowedMemberTypes": ["Application"],
999
+ "allowedMemberTypes": [
1000
+ "Application"
1001
+ ],
828
1002
  "description": "Allows the app to read the Teams apps that are installed for any user, without a signed-in user. Does not give the ability to read application-specific settings.",
829
1003
  "displayName": "Read all users' installed Teams apps",
830
1004
  "id": "afdb422a-4b2a-4e07-a708-8ceed48196bf",
@@ -833,7 +1007,9 @@
833
1007
  "value": "TeamsApp.Read.All"
834
1008
  },
835
1009
  {
836
- "allowedMemberTypes": ["Application"],
1010
+ "allowedMemberTypes": [
1011
+ "Application"
1012
+ ],
837
1013
  "description": "Allows the app to read and write customer lockbox requests, business flows, and governance policy templates without a signed-in user.",
838
1014
  "displayName": "Read and write all customer lockbox approval requests",
839
1015
  "id": "5f411d27-abad-4dc3-83c6-b84a46ffa434",
@@ -842,7 +1018,9 @@
842
1018
  "value": "ApprovalRequest.ReadWrite.CustomerLockbox"
843
1019
  },
844
1020
  {
845
- "allowedMemberTypes": ["Application"],
1021
+ "allowedMemberTypes": [
1022
+ "Application"
1023
+ ],
846
1024
  "description": "Allows the app to read and write admin consent requests, business flows, and governance policy templates without a signed-in user.",
847
1025
  "displayName": "Read and write all admin consent approval requests",
848
1026
  "id": "afe5c674-a576-4b80-818c-e3d7f6afd299",
@@ -851,7 +1029,9 @@
851
1029
  "value": "ApprovalRequest.ReadWrite.AdminConsentRequest"
852
1030
  },
853
1031
  {
854
- "allowedMemberTypes": ["Application"],
1032
+ "allowedMemberTypes": [
1033
+ "Application"
1034
+ ],
855
1035
  "description": "Allows the app to read and write entitlement management requests, business flows, and governance policy templates without a signed-in user.",
856
1036
  "displayName": "Read and write all entitlement management approval requests",
857
1037
  "id": "fbfdecc9-4b78-4882-bb98-7decbddcbddf",
@@ -860,7 +1040,9 @@
860
1040
  "value": "ApprovalRequest.ReadWrite.EntitlementManagement"
861
1041
  },
862
1042
  {
863
- "allowedMemberTypes": ["Application"],
1043
+ "allowedMemberTypes": [
1044
+ "Application"
1045
+ ],
864
1046
  "description": "Allows the app to read and write privileged access requests, business flows, and governance policy templates without a signed-in user.",
865
1047
  "displayName": "Read and write all privileged access approval requests",
866
1048
  "id": "60182ac6-4565-4baa-8b04-9350fe8dbfca",
@@ -869,7 +1051,9 @@
869
1051
  "value": "ApprovalRequest.ReadWrite.PriviligedAccess"
870
1052
  },
871
1053
  {
872
- "allowedMemberTypes": ["Application"],
1054
+ "allowedMemberTypes": [
1055
+ "Application"
1056
+ ],
873
1057
  "description": "Allows the app to read customer lockbox requests, business flows, and governance policy templates without a signed-in user.",
874
1058
  "displayName": "Read all customer lockbox approval requests",
875
1059
  "id": "080ce695-a830-4d5c-a45a-375e3ab11b11",
@@ -878,7 +1062,9 @@
878
1062
  "value": "ApprovalRequest.Read.CustomerLockbox"
879
1063
  },
880
1064
  {
881
- "allowedMemberTypes": ["Application"],
1065
+ "allowedMemberTypes": [
1066
+ "Application"
1067
+ ],
882
1068
  "description": "Allows the app to read admin consent requests, business flows, and governance policy templates without a signed-in user.",
883
1069
  "displayName": "Read all admin consent approval requests",
884
1070
  "id": "0d9d2e88-e2eb-4ac7-9b1d-9b68ed9f9f4f",
@@ -887,7 +1073,9 @@
887
1073
  "value": "ApprovalRequest.Read.AdminConsentRequest"
888
1074
  },
889
1075
  {
890
- "allowedMemberTypes": ["Application"],
1076
+ "allowedMemberTypes": [
1077
+ "Application"
1078
+ ],
891
1079
  "description": "Allows the app to read entitlement management requests, business flows, and governance policy templates without a signed-in user.",
892
1080
  "displayName": "Read all entitlement management approval requests",
893
1081
  "id": "b2a3adf0-5774-4846-986c-a91c705b0141",
@@ -896,7 +1084,9 @@
896
1084
  "value": "ApprovalRequest.Read.EntitlementManagement"
897
1085
  },
898
1086
  {
899
- "allowedMemberTypes": ["Application"],
1087
+ "allowedMemberTypes": [
1088
+ "Application"
1089
+ ],
900
1090
  "description": "Allows the app to read privileged access requests, business flows, and governance policy templates without a signed-in user.",
901
1091
  "displayName": "Read all privileged access approval requests",
902
1092
  "id": "3f410ed8-2d83-4435-b2c4-c776f44e4ae1",
@@ -905,7 +1095,9 @@
905
1095
  "value": "ApprovalRequest.Read.PriviligedAccess"
906
1096
  },
907
1097
  {
908
- "allowedMemberTypes": ["Application"],
1098
+ "allowedMemberTypes": [
1099
+ "Application"
1100
+ ],
909
1101
  "description": "Allows the app to read all the indicators for your organization, without a signed-in user.",
910
1102
  "displayName": "Read all threat indicators",
911
1103
  "id": "197ee4e9-b993-4066-898f-d6aecc55125b",
@@ -914,7 +1106,9 @@
914
1106
  "value": "ThreatIndicators.Read.All"
915
1107
  },
916
1108
  {
917
- "allowedMemberTypes": ["Application"],
1109
+ "allowedMemberTypes": [
1110
+ "Application"
1111
+ ],
918
1112
  "description": "Allows the app to request and manage time-based assignment and just-in-time elevation of Azure resources (like your subscriptions, resource groups, storage, compute) in your organization, without a signed-in user.",
919
1113
  "displayName": "Read and write privileged access to Azure resources",
920
1114
  "id": "6f9d5abc-2db6-400b-a267-7de22a40fb87",
@@ -923,7 +1117,9 @@
923
1117
  "value": "PrivilegedAccess.ReadWrite.AzureResources"
924
1118
  },
925
1119
  {
926
- "allowedMemberTypes": ["Application"],
1120
+ "allowedMemberTypes": [
1121
+ "Application"
1122
+ ],
927
1123
  "description": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups in your organization, without a signed-in user.",
928
1124
  "displayName": "Read and write privileged access to Azure AD groups",
929
1125
  "id": "2f6817f8-7b12-4f0f-bc18-eeaf60705a9e",
@@ -932,7 +1128,9 @@
932
1128
  "value": "PrivilegedAccess.ReadWrite.AzureADGroup"
933
1129
  },
934
1130
  {
935
- "allowedMemberTypes": ["Application"],
1131
+ "allowedMemberTypes": [
1132
+ "Application"
1133
+ ],
936
1134
  "description": "Allows the app to request and manage time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles in your organization, without a signed-in user.",
937
1135
  "displayName": "Read and write privileged access to Azure AD roles",
938
1136
  "id": "854d9ab1-6657-4ec8-be45-823027bcd009",
@@ -941,7 +1139,9 @@
941
1139
  "value": "PrivilegedAccess.ReadWrite.AzureAD"
942
1140
  },
943
1141
  {
944
- "allowedMemberTypes": ["Application"],
1142
+ "allowedMemberTypes": [
1143
+ "Application"
1144
+ ],
945
1145
  "description": "Allows the app to read time-based assignment and just-in-time elevation of user privileges to audit Azure resources in your organization, without a signed-in user.",
946
1146
  "displayName": "Read privileged access to Azure resources",
947
1147
  "id": "5df6fe86-1be0-44eb-b916-7bd443a71236",
@@ -950,7 +1150,9 @@
950
1150
  "value": "PrivilegedAccess.Read.AzureResources"
951
1151
  },
952
1152
  {
953
- "allowedMemberTypes": ["Application"],
1153
+ "allowedMemberTypes": [
1154
+ "Application"
1155
+ ],
954
1156
  "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD groups in your organization, without a signed-in user.",
955
1157
  "displayName": "Read privileged access to Azure AD groups",
956
1158
  "id": "01e37dc9-c035-40bd-b438-b2879c4870a6",
@@ -959,7 +1161,9 @@
959
1161
  "value": "PrivilegedAccess.Read.AzureADGroup"
960
1162
  },
961
1163
  {
962
- "allowedMemberTypes": ["Application"],
1164
+ "allowedMemberTypes": [
1165
+ "Application"
1166
+ ],
963
1167
  "description": "Allows the app to read time-based assignment and just-in-time elevation (including scheduled elevation) of Azure AD built-in and custom administrative roles in your organization, without a signed-in user.",
964
1168
  "displayName": "Read privileged access to Azure AD roles",
965
1169
  "id": "4cdc2547-9148-4295-8d11-be0db1391d6b",
@@ -968,7 +1172,9 @@
968
1172
  "value": "PrivilegedAccess.Read.AzureAD"
969
1173
  },
970
1174
  {
971
- "allowedMemberTypes": ["Application"],
1175
+ "allowedMemberTypes": [
1176
+ "Application"
1177
+ ],
972
1178
  "description": "Allows the app to send new activities to any users' teamwork activity feed, without a signed-in user.",
973
1179
  "displayName": "Send a teamwork activity to any user",
974
1180
  "id": "a267235f-af13-44dc-8385-c1dc93023186",
@@ -977,7 +1183,9 @@
977
1183
  "value": "TeamsActivity.Send"
978
1184
  },
979
1185
  {
980
- "allowedMemberTypes": ["Application"],
1186
+ "allowedMemberTypes": [
1187
+ "Application"
1188
+ ],
981
1189
  "description": "Allows the app to read all users' teamwork activity feed, without a signed-in user.",
982
1190
  "displayName": "Read all users' teamwork activity feed",
983
1191
  "id": "70dec828-f620-4914-aa83-a29117306807",
@@ -986,7 +1194,9 @@
986
1194
  "value": "TeamsActivity.Read.All"
987
1195
  },
988
1196
  {
989
- "allowedMemberTypes": ["Application"],
1197
+ "allowedMemberTypes": [
1198
+ "Application"
1199
+ ],
990
1200
  "description": "Allows the app to manage permission grants for delegated permissions exposed by any API (including Microsoft Graph), without a signed-in user.",
991
1201
  "displayName": "Manage all delegated permission grants",
992
1202
  "id": "8e8e4742-1d95-4f68-9d56-6ee75648c72a",
@@ -995,7 +1205,9 @@
995
1205
  "value": "DelegatedPermissionGrant.ReadWrite.All"
996
1206
  },
997
1207
  {
998
- "allowedMemberTypes": ["Application"],
1208
+ "allowedMemberTypes": [
1209
+ "Application"
1210
+ ],
999
1211
  "description": "Allows the app to manage permission grants for application permissions to any API (including Microsoft Graph) and application assignments for any app, without a signed-in user.",
1000
1212
  "displayName": "Manage app permission grants and app role assignments",
1001
1213
  "id": "06b708a9-e830-4db3-a914-8e69da51d44f",
@@ -1004,7 +1216,9 @@
1004
1216
  "value": "AppRoleAssignment.ReadWrite.All"
1005
1217
  },
1006
1218
  {
1007
- "allowedMemberTypes": ["Application"],
1219
+ "allowedMemberTypes": [
1220
+ "Application"
1221
+ ],
1008
1222
  "description": "Allows the app to read and write Microsoft Intune service properties including device enrollment and third party service connection configuration, without a signed-in user.",
1009
1223
  "displayName": "Read and write Microsoft Intune configuration",
1010
1224
  "id": "5ac13192-7ace-4fcf-b828-1a26f28068ee",
@@ -1013,7 +1227,9 @@
1013
1227
  "value": "DeviceManagementServiceConfig.ReadWrite.All"
1014
1228
  },
1015
1229
  {
1016
- "allowedMemberTypes": ["Application"],
1230
+ "allowedMemberTypes": [
1231
+ "Application"
1232
+ ],
1017
1233
  "description": "Allows the app to read and write the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings, without a signed-in user.",
1018
1234
  "displayName": "Read and write Microsoft Intune RBAC settings",
1019
1235
  "id": "e330c4f0-4170-414e-a55a-2f022ec2b57b",
@@ -1022,7 +1238,9 @@
1022
1238
  "value": "DeviceManagementRBAC.ReadWrite.All"
1023
1239
  },
1024
1240
  {
1025
- "allowedMemberTypes": ["Application"],
1241
+ "allowedMemberTypes": [
1242
+ "Application"
1243
+ ],
1026
1244
  "description": "Allows the app to read and write the properties of devices managed by Microsoft Intune, without a signed-in user. Does not allow high impact operations such as remote wipe and password reset on the device’s owner",
1027
1245
  "displayName": "Read and write Microsoft Intune devices",
1028
1246
  "id": "243333ab-4d21-40cb-a475-36241daa0842",
@@ -1031,7 +1249,9 @@
1031
1249
  "value": "DeviceManagementManagedDevices.ReadWrite.All"
1032
1250
  },
1033
1251
  {
1034
- "allowedMemberTypes": ["Application"],
1252
+ "allowedMemberTypes": [
1253
+ "Application"
1254
+ ],
1035
1255
  "description": "Allows the app to perform remote high impact actions such as wiping the device or resetting the passcode on devices managed by Microsoft Intune, without a signed-in user.",
1036
1256
  "displayName": "Perform user-impacting remote actions on Microsoft Intune devices",
1037
1257
  "id": "5b07b0dd-2377-4e44-a38d-703f09a0dc3c",
@@ -1040,7 +1260,9 @@
1040
1260
  "value": "DeviceManagementManagedDevices.PrivilegedOperations.All"
1041
1261
  },
1042
1262
  {
1043
- "allowedMemberTypes": ["Application"],
1263
+ "allowedMemberTypes": [
1264
+ "Application"
1265
+ ],
1044
1266
  "description": "Allows the app to read and write properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups, without a signed-in user.",
1045
1267
  "displayName": "Read and write Microsoft Intune device configuration and policies",
1046
1268
  "id": "9241abd9-d0e6-425a-bd4f-47ba86e767a4",
@@ -1049,7 +1271,9 @@
1049
1271
  "value": "DeviceManagementConfiguration.ReadWrite.All"
1050
1272
  },
1051
1273
  {
1052
- "allowedMemberTypes": ["Application"],
1274
+ "allowedMemberTypes": [
1275
+ "Application"
1276
+ ],
1053
1277
  "description": "Allows the app to read and write the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune, without a signed-in user.",
1054
1278
  "displayName": "Read and write Microsoft Intune apps",
1055
1279
  "id": "78145de6-330d-4800-a6ce-494ff2d33d07",
@@ -1058,7 +1282,9 @@
1058
1282
  "value": "DeviceManagementApps.ReadWrite.All"
1059
1283
  },
1060
1284
  {
1061
- "allowedMemberTypes": ["Application"],
1285
+ "allowedMemberTypes": [
1286
+ "Application"
1287
+ ],
1062
1288
  "description": "Allows the app to read all organizational contacts without a signed-in user. These contacts are managed by the organization and are different from a user's personal contacts.",
1063
1289
  "displayName": "Read organizational contacts",
1064
1290
  "id": "e1a88a34-94c4-4418-be12-c87b00e26bea",
@@ -1067,7 +1293,9 @@
1067
1293
  "value": "OrgContact.Read.All"
1068
1294
  },
1069
1295
  {
1070
- "allowedMemberTypes": ["Application"],
1296
+ "allowedMemberTypes": [
1297
+ "Application"
1298
+ ],
1071
1299
  "description": "Allows the app to place outbound calls to a single user and transfer calls to users in your organization’s directory, without a signed-in user.",
1072
1300
  "displayName": "Initiate outgoing 1 to 1 calls from the app",
1073
1301
  "id": "284383ee-7f6e-4e40-a2a8-e85dcb029101",
@@ -1076,7 +1304,9 @@
1076
1304
  "value": "Calls.Initiate.All"
1077
1305
  },
1078
1306
  {
1079
- "allowedMemberTypes": ["Application"],
1307
+ "allowedMemberTypes": [
1308
+ "Application"
1309
+ ],
1080
1310
  "description": "Allows the app to place outbound calls to multiple users and add participants to meetings in your organization, without a signed-in user.",
1081
1311
  "displayName": "Initiate outgoing group calls from the app",
1082
1312
  "id": "4c277553-8a09-487b-8023-29ee378d8324",
@@ -1085,7 +1315,9 @@
1085
1315
  "value": "Calls.InitiateGroupCall.All"
1086
1316
  },
1087
1317
  {
1088
- "allowedMemberTypes": ["Application"],
1318
+ "allowedMemberTypes": [
1319
+ "Application"
1320
+ ],
1089
1321
  "description": "Allows the app to join group calls and scheduled meetings in your organization, without a signed-in user.  The app will be joined with the privileges of a directory user to meetings in your organization.",
1090
1322
  "displayName": "Join group calls and meetings as an app",
1091
1323
  "id": "f6b49018-60ab-4f81-83bd-22caeabfed2d",
@@ -1094,7 +1326,9 @@
1094
1326
  "value": "Calls.JoinGroupCall.All"
1095
1327
  },
1096
1328
  {
1097
- "allowedMemberTypes": ["Application"],
1329
+ "allowedMemberTypes": [
1330
+ "Application"
1331
+ ],
1098
1332
  "description": "Allows the app to anonymously join group calls and scheduled meetings in your organization, without a signed-in user.  The app will be joined as a guest to meetings in your organization.",
1099
1333
  "displayName": "Join group calls and meetings as a guest",
1100
1334
  "id": "fd7ccf6b-3d28-418b-9701-cd10f5cd2fd4",
@@ -1103,7 +1337,9 @@
1103
1337
  "value": "Calls.JoinGroupCallAsGuest.All"
1104
1338
  },
1105
1339
  {
1106
- "allowedMemberTypes": ["Application"],
1340
+ "allowedMemberTypes": [
1341
+ "Application"
1342
+ ],
1107
1343
  "description": "Allows the app to get direct access to media streams in a call, without a signed-in user.",
1108
1344
  "displayName": "Access media streams in a call as an app",
1109
1345
  "id": "a7a681dc-756e-4909-b988-f160edc6655f",
@@ -1112,7 +1348,9 @@
1112
1348
  "value": "Calls.AccessMedia.All"
1113
1349
  },
1114
1350
  {
1115
- "allowedMemberTypes": ["Application"],
1351
+ "allowedMemberTypes": [
1352
+ "Application"
1353
+ ],
1116
1354
  "description": "Allows the app to read online meeting details in your organization, without a signed-in user.",
1117
1355
  "displayName": "Read online meeting details",
1118
1356
  "id": "c1684f21-1984-47fa-9d61-2dc8c296bb70",
@@ -1121,7 +1359,9 @@
1121
1359
  "value": "OnlineMeetings.Read.All"
1122
1360
  },
1123
1361
  {
1124
- "allowedMemberTypes": ["Application"],
1362
+ "allowedMemberTypes": [
1363
+ "Application"
1364
+ ],
1125
1365
  "description": "Allows the app to read and create online meetings as an application in your organization.",
1126
1366
  "displayName": "Read and create online meetings",
1127
1367
  "id": "b8bb2037-6e08-44ac-a4ea-4674e010e2a4",
@@ -1130,7 +1370,9 @@
1130
1370
  "value": "OnlineMeetings.ReadWrite.All"
1131
1371
  },
1132
1372
  {
1133
- "allowedMemberTypes": ["Application"],
1373
+ "allowedMemberTypes": [
1374
+ "Application"
1375
+ ],
1134
1376
  "description": "Allows the app to read or write your organization's user flows, without a signed-in user.",
1135
1377
  "displayName": "Read and write all identity user flows",
1136
1378
  "id": "65319a09-a2be-469d-8782-f6b07debf789",
@@ -1139,7 +1381,9 @@
1139
1381
  "value": "IdentityUserFlow.ReadWrite.All"
1140
1382
  },
1141
1383
  {
1142
- "allowedMemberTypes": ["Application"],
1384
+ "allowedMemberTypes": [
1385
+ "Application"
1386
+ ],
1143
1387
  "description": "Allows the app to read your organization's user flows, without a signed-in user.",
1144
1388
  "displayName": "Read all identity user flows",
1145
1389
  "id": "1b0c317f-dd31-4305-9932-259a8b6e8099",
@@ -1148,7 +1392,9 @@
1148
1392
  "value": "IdentityUserFlow.Read.All"
1149
1393
  },
1150
1394
  {
1151
- "allowedMemberTypes": ["Application"],
1395
+ "allowedMemberTypes": [
1396
+ "Application"
1397
+ ],
1152
1398
  "description": "Allows the app to create, read, update, and delete events of all calendars without a signed-in user.",
1153
1399
  "displayName": "Read and write calendars in all mailboxes",
1154
1400
  "id": "ef54d2bf-783f-4e0f-bca1-3210c0444d99",
@@ -1157,7 +1403,9 @@
1157
1403
  "value": "Calendars.ReadWrite"
1158
1404
  },
1159
1405
  {
1160
- "allowedMemberTypes": ["Application"],
1406
+ "allowedMemberTypes": [
1407
+ "Application"
1408
+ ],
1161
1409
  "description": "Allows the app to read events of all calendars without a signed-in user.",
1162
1410
  "displayName": "Read calendars in all mailboxes",
1163
1411
  "id": "798ee544-9d2d-430c-a058-570e29e34338",
@@ -1166,7 +1414,9 @@
1166
1414
  "value": "Calendars.Read"
1167
1415
  },
1168
1416
  {
1169
- "allowedMemberTypes": ["Application"],
1417
+ "allowedMemberTypes": [
1418
+ "Application"
1419
+ ],
1170
1420
  "description": "Allows the app to read and write all device properties without a signed in user. Does not allow device creation, device deletion or update of device alternative security identifiers.",
1171
1421
  "displayName": "Read and write devices",
1172
1422
  "id": "1138cb37-bd11-4084-a2b7-9f71582aeddb",
@@ -1175,7 +1425,9 @@
1175
1425
  "value": "Device.ReadWrite.All"
1176
1426
  },
1177
1427
  {
1178
- "allowedMemberTypes": ["Application"],
1428
+ "allowedMemberTypes": [
1429
+ "Application"
1430
+ ],
1179
1431
  "description": "Allows the app to read and write data in your organization's directory, such as users, and groups, without a signed-in user. Does not allow user or group deletion.",
1180
1432
  "displayName": "Read and write directory data",
1181
1433
  "id": "19dbc75e-c2e2-444c-a770-ec69d8559fc7",
@@ -1184,7 +1436,9 @@
1184
1436
  "value": "Directory.ReadWrite.All"
1185
1437
  },
1186
1438
  {
1187
- "allowedMemberTypes": ["Application"],
1439
+ "allowedMemberTypes": [
1440
+ "Application"
1441
+ ],
1188
1442
  "description": "Allows the app to read data in your organization's directory, such as users, groups and apps, without a signed-in user.",
1189
1443
  "displayName": "Read directory data",
1190
1444
  "id": "7ab1d382-f21e-4acd-a863-ba3e13f7da61",
@@ -1193,7 +1447,9 @@
1193
1447
  "value": "Directory.Read.All"
1194
1448
  },
1195
1449
  {
1196
- "allowedMemberTypes": ["Application"],
1450
+ "allowedMemberTypes": [
1451
+ "Application"
1452
+ ],
1197
1453
  "description": "Allows the app to create groups, read all group properties and memberships, update group properties and memberships, and delete groups. Also allows the app to read and write group calendar and conversations. All of these operations can be performed by the app without a signed-in user.",
1198
1454
  "displayName": "Read and write all groups",
1199
1455
  "id": "62a82d76-70ea-41e2-9197-370581804d09",
@@ -1202,7 +1458,9 @@
1202
1458
  "value": "Group.ReadWrite.All"
1203
1459
  },
1204
1460
  {
1205
- "allowedMemberTypes": ["Application"],
1461
+ "allowedMemberTypes": [
1462
+ "Application"
1463
+ ],
1206
1464
  "description": "Allows the app to read group properties and memberships, and read the calendar and conversations for all groups, without a signed-in user.",
1207
1465
  "displayName": "Read all groups",
1208
1466
  "id": "5b567255-7703-4780-807c-7be8301ae99b",
@@ -1211,7 +1469,9 @@
1211
1469
  "value": "Group.Read.All"
1212
1470
  },
1213
1471
  {
1214
- "allowedMemberTypes": ["Application"],
1472
+ "allowedMemberTypes": [
1473
+ "Application"
1474
+ ],
1215
1475
  "description": "Allows the app to create, read, update, and delete all contacts in all mailboxes without a signed-in user.",
1216
1476
  "displayName": "Read and write contacts in all mailboxes",
1217
1477
  "id": "6918b873-d17a-4dc1-b314-35f528134491",
@@ -1220,7 +1480,9 @@
1220
1480
  "value": "Contacts.ReadWrite"
1221
1481
  },
1222
1482
  {
1223
- "allowedMemberTypes": ["Application"],
1483
+ "allowedMemberTypes": [
1484
+ "Application"
1485
+ ],
1224
1486
  "description": "Allows the app to read all contacts in all mailboxes without a signed-in user.",
1225
1487
  "displayName": "Read contacts in all mailboxes",
1226
1488
  "id": "089fe4d0-434a-44c5-8827-41ba8a0b17f5",
@@ -1229,7 +1491,9 @@
1229
1491
  "value": "Contacts.Read"
1230
1492
  },
1231
1493
  {
1232
- "allowedMemberTypes": ["Application"],
1494
+ "allowedMemberTypes": [
1495
+ "Application"
1496
+ ],
1233
1497
  "description": "Allows the app to send mail as any user without a signed-in user.",
1234
1498
  "displayName": "Send mail as any user",
1235
1499
  "id": "b633e1c5-b582-4048-a93e-9f11b44c7e96",
@@ -1238,7 +1502,9 @@
1238
1502
  "value": "Mail.Send"
1239
1503
  },
1240
1504
  {
1241
- "allowedMemberTypes": ["Application"],
1505
+ "allowedMemberTypes": [
1506
+ "Application"
1507
+ ],
1242
1508
  "description": "Allows the app to create, read, update, and delete mail in all mailboxes without a signed-in user. Does not include permission to send mail.",
1243
1509
  "displayName": "Read and write mail in all mailboxes",
1244
1510
  "id": "e2a3a72e-5f79-4c64-b1b1-878b674786c9",
@@ -1247,7 +1513,9 @@
1247
1513
  "value": "Mail.ReadWrite"
1248
1514
  },
1249
1515
  {
1250
- "allowedMemberTypes": ["Application"],
1516
+ "allowedMemberTypes": [
1517
+ "Application"
1518
+ ],
1251
1519
  "description": "Allows the app to read mail in all mailboxes without a signed-in user.",
1252
1520
  "displayName": "Read mail in all mailboxes",
1253
1521
  "id": "810c84a8-4a9e-49e6-bf7d-12d183f40d01",
@@ -1256,7 +1524,9 @@
1256
1524
  "value": "Mail.Read"
1257
1525
  },
1258
1526
  {
1259
- "allowedMemberTypes": ["Application"],
1527
+ "allowedMemberTypes": [
1528
+ "Application"
1529
+ ],
1260
1530
  "description": "Allows the app to read user's mailbox settings without a signed-in user. Does not include permission to send mail.",
1261
1531
  "displayName": "Read all user mailbox settings",
1262
1532
  "id": "40f97065-369a-49f4-947c-6a255697ae91",
@@ -1265,7 +1535,9 @@
1265
1535
  "value": "MailboxSettings.Read"
1266
1536
  },
1267
1537
  {
1268
- "allowedMemberTypes": ["Application"],
1538
+ "allowedMemberTypes": [
1539
+ "Application"
1540
+ ],
1269
1541
  "description": "Allows the app to read and write all domain properties without a signed in user.  Also allows the app to add,  verify and remove domains.",
1270
1542
  "displayName": "Read and write domains",
1271
1543
  "id": "7e05723c-0bb0-42da-be95-ae9f08a6e53c",
@@ -1274,7 +1546,9 @@
1274
1546
  "value": "Domain.ReadWrite.All"
1275
1547
  },
1276
1548
  {
1277
- "allowedMemberTypes": ["Application"],
1549
+ "allowedMemberTypes": [
1550
+ "Application"
1551
+ ],
1278
1552
  "description": "Allows the app to create, read, update, and delete user's mailbox settings without a signed-in user. Does not include permission to send mail.",
1279
1553
  "displayName": "Read and write all user mailbox settings",
1280
1554
  "id": "6931bccd-447a-43d1-b442-00a195474933",
@@ -1283,7 +1557,9 @@
1283
1557
  "value": "MailboxSettings.ReadWrite"
1284
1558
  },
1285
1559
  {
1286
- "allowedMemberTypes": ["Application"],
1560
+ "allowedMemberTypes": [
1561
+ "Application"
1562
+ ],
1287
1563
  "description": "Allows the app to create, read, update and delete applications and service principals without a signed-in user. Does not allow management of consent grants.",
1288
1564
  "displayName": "Read and write all applications",
1289
1565
  "id": "1bfefb4e-e0b5-418b-a88f-73c46d2cc8e9",
@@ -1292,7 +1568,9 @@
1292
1568
  "value": "Application.ReadWrite.All"
1293
1569
  },
1294
1570
  {
1295
- "allowedMemberTypes": ["Application"],
1571
+ "allowedMemberTypes": [
1572
+ "Application"
1573
+ ],
1296
1574
  "description": "Allows the app to update Microsoft Teams channel messages by patching a set of Data Loss Prevention (DLP) policy violation properties to handle the output of DLP processing.",
1297
1575
  "displayName": "Flag channel messages for violating policy",
1298
1576
  "id": "4d02b0cc-d90b-441f-8d82-4fb55c34d6bb",
@@ -1301,7 +1579,9 @@
1301
1579
  "value": "ChannelMessage.UpdatePolicyViolation.All"
1302
1580
  },
1303
1581
  {
1304
- "allowedMemberTypes": ["Application"],
1582
+ "allowedMemberTypes": [
1583
+ "Application"
1584
+ ],
1305
1585
  "description": "Allows the app to read all channel messages in Microsoft Teams",
1306
1586
  "displayName": "Read all channel messages",
1307
1587
  "id": "7b2449af-6ccd-4f4d-9f78-e550c193f0d1",
@@ -1310,7 +1590,9 @@
1310
1590
  "value": "ChannelMessage.Read.All"
1311
1591
  },
1312
1592
  {
1313
- "allowedMemberTypes": ["Application"],
1593
+ "allowedMemberTypes": [
1594
+ "Application"
1595
+ ],
1314
1596
  "description": "Allows the app to read all 1-to-1 or group chat messages in Microsoft Teams.",
1315
1597
  "displayName": "Read all chat messages",
1316
1598
  "id": "6b7d71aa-70aa-4810-a8d9-5d9fb2830017",
@@ -1319,7 +1601,9 @@
1319
1601
  "value": "Chat.Read.All"
1320
1602
  },
1321
1603
  {
1322
- "allowedMemberTypes": ["Application"],
1604
+ "allowedMemberTypes": [
1605
+ "Application"
1606
+ ],
1323
1607
  "description": "Allows the app to update Microsoft Teams 1-to-1 or group chat messages by patching a set of Data Loss Prevention (DLP) policy violation properties to handle the output of DLP processing.",
1324
1608
  "displayName": "Flag chat messages for violating policy",
1325
1609
  "id": "7e847308-e030-4183-9899-5235d7270f58",
@@ -1328,7 +1612,9 @@
1328
1612
  "value": "Chat.UpdatePolicyViolation.All"
1329
1613
  },
1330
1614
  {
1331
- "allowedMemberTypes": ["Application"],
1615
+ "allowedMemberTypes": [
1616
+ "Application"
1617
+ ],
1332
1618
  "description": "Allows the app to read any user's scored list of relevant people, without a signed-in user. The list can include local contacts, contacts from social networking, your organization's directory, and people from recent communications (such as email and Skype).",
1333
1619
  "displayName": "Read all users' relevant people lists",
1334
1620
  "id": "b528084d-ad10-4598-8b93-929746b4d7d6",
@@ -1337,7 +1623,9 @@
1337
1623
  "value": "People.Read.All"
1338
1624
  },
1339
1625
  {
1340
- "allowedMemberTypes": ["Application"],
1626
+ "allowedMemberTypes": [
1627
+ "Application"
1628
+ ],
1341
1629
  "description": "Allows an app to read all service usage reports without a signed-in user. Services that provide usage reports include Office 365 and Azure Active Directory.",
1342
1630
  "displayName": "Read all usage reports",
1343
1631
  "id": "230c1aed-a721-4c5d-9cb4-a90514e508ef",
@@ -1346,7 +1634,9 @@
1346
1634
  "value": "Reports.Read.All"
1347
1635
  },
1348
1636
  {
1349
- "allowedMemberTypes": ["Application"],
1637
+ "allowedMemberTypes": [
1638
+ "Application"
1639
+ ],
1350
1640
  "description": "Allows the app to read access reviews, reviewers, decisions and settings in the organization, without a signed-in user.",
1351
1641
  "displayName": "Read all access reviews",
1352
1642
  "id": "d07a8cc0-3d51-4b77-b3b0-32704d1f69fa",
@@ -1355,7 +1645,9 @@
1355
1645
  "value": "AccessReview.Read.All"
1356
1646
  },
1357
1647
  {
1358
- "allowedMemberTypes": ["Application"],
1648
+ "allowedMemberTypes": [
1649
+ "Application"
1650
+ ],
1359
1651
  "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings in the organization, without a signed-in user.",
1360
1652
  "displayName": "Manage all access reviews",
1361
1653
  "id": "ef5f7d5c-338f-44b0-86c3-351f46c8bb5f",
@@ -1364,7 +1656,9 @@
1364
1656
  "value": "AccessReview.ReadWrite.All"
1365
1657
  },
1366
1658
  {
1367
- "allowedMemberTypes": ["Application"],
1659
+ "allowedMemberTypes": [
1660
+ "Application"
1661
+ ],
1368
1662
  "description": "Allows the app to read programs and program controls in the organization, without a signed-in user.",
1369
1663
  "displayName": "Read all programs",
1370
1664
  "id": "eedb7fdd-7539-4345-a38b-4839e4a84cbd",
@@ -1373,7 +1667,9 @@
1373
1667
  "value": "ProgramControl.Read.All"
1374
1668
  },
1375
1669
  {
1376
- "allowedMemberTypes": ["Application"],
1670
+ "allowedMemberTypes": [
1671
+ "Application"
1672
+ ],
1377
1673
  "description": "Allows the app to read, update, delete and perform actions on programs and program controls in the organization, without a signed-in user.",
1378
1674
  "displayName": "Manage all programs",
1379
1675
  "id": "60a901ed-09f7-4aa5-a16e-7dd3d6f9de36",
@@ -1382,7 +1678,9 @@
1382
1678
  "value": "ProgramControl.ReadWrite.All"
1383
1679
  },
1384
1680
  {
1385
- "allowedMemberTypes": ["Application"],
1681
+ "allowedMemberTypes": [
1682
+ "Application"
1683
+ ],
1386
1684
  "description": "Allows the app to export data (e.g. customer content or system-generated logs), associated with any user in your company, when the app is used by a privileged user (e.g. a Company Administrator).",
1387
1685
  "displayName": "Export user's data",
1388
1686
  "id": "405a51b5-8d8d-430b-9842-8be4b0e9f324",
@@ -1391,7 +1689,9 @@
1391
1689
  "value": "User.Export.All"
1392
1690
  },
1393
1691
  {
1394
- "allowedMemberTypes": ["Application"],
1692
+ "allowedMemberTypes": [
1693
+ "Application"
1694
+ ],
1395
1695
  "description": "Allows the app to create other applications, and fully manage those applications (read, update, update application secrets and delete), without a signed-in user.  It cannot update any apps that it is not an owner of.",
1396
1696
  "displayName": "Manage apps that this app creates or owns",
1397
1697
  "id": "18a4783c-866b-4cc7-a460-3d5e5662c884",
@@ -1400,7 +1700,9 @@
1400
1700
  "value": "Application.ReadWrite.OwnedBy"
1401
1701
  },
1402
1702
  {
1403
- "allowedMemberTypes": ["Application"],
1703
+ "allowedMemberTypes": [
1704
+ "Application"
1705
+ ],
1404
1706
  "description": "Allows the app to read and query your audit log activities, without a signed-in user.",
1405
1707
  "displayName": "Read all audit log data",
1406
1708
  "id": "b0afded3-3588-46d8-8b3d-9842eff778da",
@@ -1409,7 +1711,9 @@
1409
1711
  "value": "AuditLog.Read.All"
1410
1712
  },
1411
1713
  {
1412
- "allowedMemberTypes": ["Application"],
1714
+ "allowedMemberTypes": [
1715
+ "Application"
1716
+ ],
1413
1717
  "description": "Allows the app to read user profiles without a signed in user.",
1414
1718
  "displayName": "Read all users' full profiles",
1415
1719
  "id": "df021288-bdef-4463-88db-98f22de89214",
@@ -1418,7 +1722,9 @@
1418
1722
  "value": "User.Read.All"
1419
1723
  },
1420
1724
  {
1421
- "allowedMemberTypes": ["Application"],
1725
+ "allowedMemberTypes": [
1726
+ "Application"
1727
+ ],
1422
1728
  "description": "Allows the app to read and update user profiles without a signed in user.",
1423
1729
  "displayName": "Read and write all users' full profiles",
1424
1730
  "id": "741f803b-c850-494e-b5df-cde7c675a1ca",
@@ -1427,7 +1733,9 @@
1427
1733
  "value": "User.ReadWrite.All"
1428
1734
  },
1429
1735
  {
1430
- "allowedMemberTypes": ["Application"],
1736
+ "allowedMemberTypes": [
1737
+ "Application"
1738
+ ],
1431
1739
  "description": "Allows the app to read the identity risky user information for your organization without a signed in user.",
1432
1740
  "displayName": "Read all identity risky user information",
1433
1741
  "id": "dc5007c0-2d7d-4c42-879c-2dab87571379",
@@ -1436,7 +1744,9 @@
1436
1744
  "value": "IdentityRiskyUser.Read.All"
1437
1745
  },
1438
1746
  {
1439
- "allowedMemberTypes": ["Application"],
1747
+ "allowedMemberTypes": [
1748
+ "Application"
1749
+ ],
1440
1750
  "description": "Manage the state and settings of all Microsoft education apps.",
1441
1751
  "displayName": "Manage education app settings",
1442
1752
  "id": "9bc431c3-b8bc-4a8d-a219-40f10f92eff6",
@@ -1445,7 +1755,9 @@
1445
1755
  "value": "EduAdministration.ReadWrite.All"
1446
1756
  },
1447
1757
  {
1448
- "allowedMemberTypes": ["Application"],
1758
+ "allowedMemberTypes": [
1759
+ "Application"
1760
+ ],
1449
1761
  "description": "Read the state and settings of all Microsoft education apps.",
1450
1762
  "displayName": "Read Education app settings",
1451
1763
  "id": "7c9db06a-ec2d-4e7b-a592-5a1e30992566",
@@ -1454,7 +1766,9 @@
1454
1766
  "value": "EduAdministration.Read.All"
1455
1767
  },
1456
1768
  {
1457
- "allowedMemberTypes": ["Application"],
1769
+ "allowedMemberTypes": [
1770
+ "Application"
1771
+ ],
1458
1772
  "description": "Allows the app to read and write assignments and their grades for all users.",
1459
1773
  "displayName": "Read and write class assignments with grades",
1460
1774
  "id": "0d22204b-6cad-4dd0-8362-3e3f2ae699d9",
@@ -1463,7 +1777,9 @@
1463
1777
  "value": "EduAssignments.ReadWrite.All"
1464
1778
  },
1465
1779
  {
1466
- "allowedMemberTypes": ["Application"],
1780
+ "allowedMemberTypes": [
1781
+ "Application"
1782
+ ],
1467
1783
  "description": "Allows the app to read assignments and their grades for all users.",
1468
1784
  "displayName": "Read class assignments with grades",
1469
1785
  "id": "4c37e1b6-35a1-43bf-926a-6f30f2cdf585",
@@ -1472,7 +1788,9 @@
1472
1788
  "value": "EduAssignments.Read.All"
1473
1789
  },
1474
1790
  {
1475
- "allowedMemberTypes": ["Application"],
1791
+ "allowedMemberTypes": [
1792
+ "Application"
1793
+ ],
1476
1794
  "description": "Allows the app to read and write assignments without grades for all users.",
1477
1795
  "displayName": "Read and write class assignments without grades",
1478
1796
  "id": "f431cc63-a2de-48c4-8054-a34bc093af84",
@@ -1481,7 +1799,9 @@
1481
1799
  "value": "EduAssignments.ReadWriteBasic.All"
1482
1800
  },
1483
1801
  {
1484
- "allowedMemberTypes": ["Application"],
1802
+ "allowedMemberTypes": [
1803
+ "Application"
1804
+ ],
1485
1805
  "description": "Allows the app to read assignments without grades for all users.",
1486
1806
  "displayName": "Read class assignments without grades",
1487
1807
  "id": "6e0a958b-b7fc-4348-b7c4-a6ab9fd3dd0e",
@@ -1490,7 +1810,9 @@
1490
1810
  "value": "EduAssignments.ReadBasic.All"
1491
1811
  },
1492
1812
  {
1493
- "allowedMemberTypes": ["Application"],
1813
+ "allowedMemberTypes": [
1814
+ "Application"
1815
+ ],
1494
1816
  "description": "Allows the app to read and write the structure of schools and classes in the organization's roster and education-specific information about all users to be read and written.",
1495
1817
  "displayName": "Read and write the organization's roster",
1496
1818
  "id": "d1808e82-ce13-47af-ae0d-f9b254e6d58a",
@@ -1499,7 +1821,9 @@
1499
1821
  "value": "EduRoster.ReadWrite.All"
1500
1822
  },
1501
1823
  {
1502
- "allowedMemberTypes": ["Application"],
1824
+ "allowedMemberTypes": [
1825
+ "Application"
1826
+ ],
1503
1827
  "description": "Allows the app to read the structure of schools and classes in the organization's roster and education-specific information about all users to be read.",
1504
1828
  "displayName": "Read the organization's roster",
1505
1829
  "id": "e0ac9e1b-cb65-4fc5-87c5-1a8bc181f648",
@@ -1508,7 +1832,9 @@
1508
1832
  "value": "EduRoster.Read.All"
1509
1833
  },
1510
1834
  {
1511
- "allowedMemberTypes": ["Application"],
1835
+ "allowedMemberTypes": [
1836
+ "Application"
1837
+ ],
1512
1838
  "description": "Allows the app to read a limited subset of properties from both the structure of schools and classes in the organization's roster and education-specific information about all users. Includes name, status, role, email address and photo.",
1513
1839
  "displayName": "Read a limited subset of the organization's roster",
1514
1840
  "id": "0d412a8c-a06c-439f-b3ec-8abcf54d2f96",
@@ -1517,7 +1843,9 @@
1517
1843
  "value": "EduRoster.ReadBasic.All"
1518
1844
  },
1519
1845
  {
1520
- "allowedMemberTypes": ["Application"],
1846
+ "allowedMemberTypes": [
1847
+ "Application"
1848
+ ],
1521
1849
  "description": "Allows the app to read the identity risk event information for your organization without a signed in user.",
1522
1850
  "displayName": "Read all identity risk event information",
1523
1851
  "id": "6e472fd1-ad78-48da-a0f0-97ab2c6b769e",
@@ -1526,7 +1854,9 @@
1526
1854
  "value": "IdentityRiskEvent.Read.All"
1527
1855
  },
1528
1856
  {
1529
- "allowedMemberTypes": ["Application"],
1857
+ "allowedMemberTypes": [
1858
+ "Application"
1859
+ ],
1530
1860
  "description": "Allows the app to read all files in all site collections without a signed in user.",
1531
1861
  "displayName": "Read files in all site collections",
1532
1862
  "id": "01d4889c-1287-42c6-ac1f-5d1e02578ef6",
@@ -1535,7 +1865,9 @@
1535
1865
  "value": "Files.Read.All"
1536
1866
  },
1537
1867
  {
1538
- "allowedMemberTypes": ["Application"],
1868
+ "allowedMemberTypes": [
1869
+ "Application"
1870
+ ],
1539
1871
  "description": "Allows the app to read and update identity risky user information for your organization without a signed-in user.  Update operations include dismissing risky users.",
1540
1872
  "displayName": "Read and write all risky user information",
1541
1873
  "id": "656f6061-f9fe-4807-9708-6a2e0934df76",
@@ -1544,7 +1876,9 @@
1544
1876
  "value": "IdentityRiskyUser.ReadWrite.All"
1545
1877
  },
1546
1878
  {
1547
- "allowedMemberTypes": ["Application"],
1879
+ "allowedMemberTypes": [
1880
+ "Application"
1881
+ ],
1548
1882
  "description": "Allows the app to read and update identity risk detection information for your organization without a signed-in user. Update operations include confirming risk event detections. ",
1549
1883
  "displayName": "Read and write all risk detection information",
1550
1884
  "id": "db06fb33-1953-4b7b-a2ac-f1e2c854f7ae",
@@ -1553,7 +1887,9 @@
1553
1887
  "value": "IdentityRiskEvent.ReadWrite.All"
1554
1888
  },
1555
1889
  {
1556
- "allowedMemberTypes": ["Application"],
1890
+ "allowedMemberTypes": [
1891
+ "Application"
1892
+ ],
1557
1893
  "description": "Allows an app to read and write all chat messages in Microsoft Teams, without a signed-in user.",
1558
1894
  "displayName": "Read and write all chat messages",
1559
1895
  "id": "294ce7c9-31ba-490a-ad7d-97a7d075e4ed",
@@ -1562,7 +1898,9 @@
1562
1898
  "value": "Chat.ReadWrite.All"
1563
1899
  },
1564
1900
  {
1565
- "allowedMemberTypes": ["Application"],
1901
+ "allowedMemberTypes": [
1902
+ "Application"
1903
+ ],
1566
1904
  "description": "Allows the app to read your organization’s security events without a signed-in user.",
1567
1905
  "displayName": "Read your organization’s security events",
1568
1906
  "id": "bf394140-e372-4bf9-a898-299cfc7564e5",
@@ -1571,7 +1909,9 @@
1571
1909
  "value": "SecurityEvents.Read.All"
1572
1910
  },
1573
1911
  {
1574
- "allowedMemberTypes": ["Application"],
1912
+ "allowedMemberTypes": [
1913
+ "Application"
1914
+ ],
1575
1915
  "description": "Allows the app to read your organization’s security events without a signed-in user. Also allows the app to update editable properties in security events.",
1576
1916
  "displayName": "Read and update your organization’s security events",
1577
1917
  "id": "d903a879-88e0-4c09-b0c9-82f6a1333f84",
@@ -1580,7 +1920,9 @@
1580
1920
  "value": "SecurityEvents.ReadWrite.All"
1581
1921
  },
1582
1922
  {
1583
- "allowedMemberTypes": ["Application"],
1923
+ "allowedMemberTypes": [
1924
+ "Application"
1925
+ ],
1584
1926
  "description": "Allows the app to read documents and list items in all site collections without a signed in user.",
1585
1927
  "displayName": "Read items in all site collections (preview)",
1586
1928
  "id": "332a536c-c7ef-4017-ab91-336970924f0d",
@@ -1589,7 +1931,9 @@
1589
1931
  "value": "Sites.Read.All"
1590
1932
  },
1591
1933
  {
1592
- "allowedMemberTypes": ["Application"],
1934
+ "allowedMemberTypes": [
1935
+ "Application"
1936
+ ],
1593
1937
  "description": "Allows the app to read security actions, without a signed-in user.",
1594
1938
  "displayName": "Read your organization's security actions",
1595
1939
  "id": "5e0edab9-c148-49d0-b423-ac253e121825",
@@ -1598,7 +1942,9 @@
1598
1942
  "value": "SecurityActions.Read.All"
1599
1943
  },
1600
1944
  {
1601
- "allowedMemberTypes": ["Application"],
1945
+ "allowedMemberTypes": [
1946
+ "Application"
1947
+ ],
1602
1948
  "description": "Allows the app to read or update security actions, without a signed-in user.",
1603
1949
  "displayName": "Read and update your organization's security actions",
1604
1950
  "id": "f2bf083f-0179-402a-bedb-b2784de8a49b",
@@ -1607,7 +1953,9 @@
1607
1953
  "value": "SecurityActions.ReadWrite.All"
1608
1954
  },
1609
1955
  {
1610
- "allowedMemberTypes": ["Application"],
1956
+ "allowedMemberTypes": [
1957
+ "Application"
1958
+ ],
1611
1959
  "description": "Allows the app to create threat indicators, and fully manage those threat indicators (read, update and delete), without a signed-in user.  It cannot update any threat indicators it does not own.",
1612
1960
  "displayName": "Manage threat indicators this app creates or owns",
1613
1961
  "id": "21792b6c-c986-4ffc-85de-df9da54b52fa",
@@ -1616,7 +1964,9 @@
1616
1964
  "value": "ThreatIndicators.ReadWrite.OwnedBy"
1617
1965
  },
1618
1966
  {
1619
- "allowedMemberTypes": ["Application"],
1967
+ "allowedMemberTypes": [
1968
+ "Application"
1969
+ ],
1620
1970
  "description": "Allows the app to read, create, update and delete all files in all site collections without a signed in user. ",
1621
1971
  "displayName": "Read and write files in all site collections",
1622
1972
  "id": "75359482-378d-4052-8f01-80520e7db3cd",
@@ -1625,7 +1975,9 @@
1625
1975
  "value": "Files.ReadWrite.All"
1626
1976
  },
1627
1977
  {
1628
- "allowedMemberTypes": ["Application"],
1978
+ "allowedMemberTypes": [
1979
+ "Application"
1980
+ ],
1629
1981
  "description": "Allows the app to invite guest users to the organization, without a signed-in user.",
1630
1982
  "displayName": "Invite guest users to the organization",
1631
1983
  "id": "09850681-111b-4a89-9bed-3f2cae46d706",
@@ -1634,7 +1986,9 @@
1634
1986
  "value": "User.Invite.All"
1635
1987
  },
1636
1988
  {
1637
- "allowedMemberTypes": ["Application"],
1989
+ "allowedMemberTypes": [
1990
+ "Application"
1991
+ ],
1638
1992
  "description": "Allows the app to read all the OneNote notebooks in your organization, without a signed-in user.",
1639
1993
  "displayName": "Read all OneNote notebooks",
1640
1994
  "id": "3aeca27b-ee3a-4c2b-8ded-80376e2134a4",
@@ -1643,7 +1997,9 @@
1643
1997
  "value": "Notes.Read.All"
1644
1998
  },
1645
1999
  {
1646
- "allowedMemberTypes": ["Application"],
2000
+ "allowedMemberTypes": [
2001
+ "Application"
2002
+ ],
1647
2003
  "description": "Allows an app to read published sensitivity labels and label policy settings for the entire organization or a specific user, without a signed in user.",
1648
2004
  "displayName": "Read all published labels and label policies for an organization.",
1649
2005
  "id": "19da66cb-0fb0-4390-b071-ebc76a349482",
@@ -1652,7 +2008,9 @@
1652
2008
  "value": "InformationProtectionPolicy.Read.All"
1653
2009
  },
1654
2010
  {
1655
- "allowedMemberTypes": ["Application"],
2011
+ "allowedMemberTypes": [
2012
+ "Application"
2013
+ ],
1656
2014
  "description": "Allows the app to read administrative units and administrative unit membership without a signed-in user.",
1657
2015
  "displayName": "Read all administrative units",
1658
2016
  "id": "134fd756-38ce-4afd-ba33-e9623dbe66c2",
@@ -1661,7 +2019,9 @@
1661
2019
  "value": "AdministrativeUnit.Read.All"
1662
2020
  },
1663
2021
  {
1664
- "allowedMemberTypes": ["Application"],
2022
+ "allowedMemberTypes": [
2023
+ "Application"
2024
+ ],
1665
2025
  "description": "Allows the app to create, read, update, and delete administrative units and manage administrative unit membership without a signed-in user.",
1666
2026
  "displayName": "Read and write all administrative units",
1667
2027
  "id": "5eb59dd3-1da2-4329-8733-9dabdc435916",
@@ -1670,7 +2030,9 @@
1670
2030
  "value": "AdministrativeUnit.ReadWrite.All"
1671
2031
  },
1672
2032
  {
1673
- "allowedMemberTypes": ["Application"],
2033
+ "allowedMemberTypes": [
2034
+ "Application"
2035
+ ],
1674
2036
  "description": "Allows the app to read your organization’s identity (authentication) providers’ properties without a signed in user.",
1675
2037
  "displayName": "Read identity providers",
1676
2038
  "id": "e321f0bb-e7f7-481e-bb28-e3b0b32d4bd0",
@@ -1679,7 +2041,9 @@
1679
2041
  "value": "IdentityProvider.Read.All"
1680
2042
  },
1681
2043
  {
1682
- "allowedMemberTypes": ["Application"],
2044
+ "allowedMemberTypes": [
2045
+ "Application"
2046
+ ],
1683
2047
  "description": "Allows the app to read and write your organization’s identity (authentication) providers’ properties without a signed in user.",
1684
2048
  "displayName": "Read and write identity providers",
1685
2049
  "id": "90db2b9a-d928-4d33-a4dd-8442ae3d41e4",
@@ -1688,7 +2052,9 @@
1688
2052
  "value": "IdentityProvider.ReadWrite.All"
1689
2053
  },
1690
2054
  {
1691
- "allowedMemberTypes": ["Application"],
2055
+ "allowedMemberTypes": [
2056
+ "Application"
2057
+ ],
1692
2058
  "description": "Allows the app to read all your organization's policies without a signed in user.",
1693
2059
  "displayName": "Read your organization's policies",
1694
2060
  "id": "246dd0d5-5bd0-4def-940b-0421030a5b68",
@@ -1697,7 +2063,9 @@
1697
2063
  "value": "Policy.Read.All"
1698
2064
  },
1699
2065
  {
1700
- "allowedMemberTypes": ["Application"],
2066
+ "allowedMemberTypes": [
2067
+ "Application"
2068
+ ],
1701
2069
  "description": "Allows the app to read and write your organization's trust framework policies without a signed in user.",
1702
2070
  "displayName": "Read and write your organization's trust framework policies",
1703
2071
  "id": "79a677f7-b79d-40d0-a36a-3e6f8688dd7a",
@@ -1706,7 +2074,9 @@
1706
2074
  "value": "Policy.ReadWrite.TrustFramework"
1707
2075
  },
1708
2076
  {
1709
- "allowedMemberTypes": ["Application"],
2077
+ "allowedMemberTypes": [
2078
+ "Application"
2079
+ ],
1710
2080
  "description": "Allows the app to read trust framework key set properties without a signed-in user.",
1711
2081
  "displayName": "Read trust framework key sets",
1712
2082
  "id": "fff194f1-7dce-4428-8301-1badb5518201",
@@ -1715,7 +2085,9 @@
1715
2085
  "value": "TrustFrameworkKeySet.Read.All"
1716
2086
  },
1717
2087
  {
1718
- "allowedMemberTypes": ["Application"],
2088
+ "allowedMemberTypes": [
2089
+ "Application"
2090
+ ],
1719
2091
  "description": "Allows the app to read and write trust framework key set properties without a signed-in user.",
1720
2092
  "displayName": "Read and write trust framework key sets",
1721
2093
  "id": "4a771c9a-1cf2-4609-b88e-3d3e02d539cd",
@@ -1724,7 +2096,9 @@
1724
2096
  "value": "TrustFrameworkKeySet.ReadWrite.All"
1725
2097
  },
1726
2098
  {
1727
- "allowedMemberTypes": ["Application"],
2099
+ "allowedMemberTypes": [
2100
+ "Application"
2101
+ ],
1728
2102
  "description": "Allows the app to create, view, update and delete on-premises published resources, on-premises agents and agent groups, as part of a hybrid identity configuration, without a signed in user.",
1729
2103
  "displayName": "Manage on-premises published resources",
1730
2104
  "id": "0b57845e-aa49-4e6f-8109-ce654fffa618",
@@ -1733,7 +2107,9 @@
1733
2107
  "value": "OnPremisesPublishingProfiles.ReadWrite.All"
1734
2108
  },
1735
2109
  {
1736
- "allowedMemberTypes": ["Application"],
2110
+ "allowedMemberTypes": [
2111
+ "Application"
2112
+ ],
1737
2113
  "description": "Allows the app to read Microsoft Intune service properties including device enrollment and third party service connection configuration, without a signed-in user.",
1738
2114
  "displayName": "Read Microsoft Intune configuration",
1739
2115
  "id": "06a5fe6d-c49d-46a7-b082-56b1b14103c7",
@@ -1742,7 +2118,9 @@
1742
2118
  "value": "DeviceManagementServiceConfig.Read.All"
1743
2119
  },
1744
2120
  {
1745
- "allowedMemberTypes": ["Application"],
2121
+ "allowedMemberTypes": [
2122
+ "Application"
2123
+ ],
1746
2124
  "description": "Allows the app to read the properties relating to the Microsoft Intune Role-Based Access Control (RBAC) settings, without a signed-in user.",
1747
2125
  "displayName": "Read Microsoft Intune RBAC settings",
1748
2126
  "id": "58ca0d9a-1575-47e1-a3cb-007ef2e4583b",
@@ -1751,7 +2129,9 @@
1751
2129
  "value": "DeviceManagementRBAC.Read.All"
1752
2130
  },
1753
2131
  {
1754
- "allowedMemberTypes": ["Application"],
2132
+ "allowedMemberTypes": [
2133
+ "Application"
2134
+ ],
1755
2135
  "description": "Allows the app to read the properties of devices managed by Microsoft Intune, without a signed-in user.",
1756
2136
  "displayName": "Read Microsoft Intune devices",
1757
2137
  "id": "2f51be20-0bb4-4fed-bf7b-db946066c75e",
@@ -1760,7 +2140,9 @@
1760
2140
  "value": "DeviceManagementManagedDevices.Read.All"
1761
2141
  },
1762
2142
  {
1763
- "allowedMemberTypes": ["Application"],
2143
+ "allowedMemberTypes": [
2144
+ "Application"
2145
+ ],
1764
2146
  "description": "Allows the app to read the properties, group assignments and status of apps, app configurations and app protection policies managed by Microsoft Intune, without a signed-in user.",
1765
2147
  "displayName": "Read Microsoft Intune apps",
1766
2148
  "id": "7a6ee1e7-141e-4cec-ae74-d9db155731ff",
@@ -1769,7 +2151,9 @@
1769
2151
  "value": "DeviceManagementApps.Read.All"
1770
2152
  },
1771
2153
  {
1772
- "allowedMemberTypes": ["Application"],
2154
+ "allowedMemberTypes": [
2155
+ "Application"
2156
+ ],
1773
2157
  "description": "Allows the app to read properties of Microsoft Intune-managed device configuration and device compliance policies and their assignment to groups, without a signed-in user.",
1774
2158
  "displayName": "Read Microsoft Intune device configuration and policies",
1775
2159
  "id": "dc377aa6-52d8-4e23-b271-2a7ae04cedf3",
@@ -1778,7 +2162,9 @@
1778
2162
  "value": "DeviceManagementConfiguration.Read.All"
1779
2163
  },
1780
2164
  {
1781
- "allowedMemberTypes": ["Application"],
2165
+ "allowedMemberTypes": [
2166
+ "Application"
2167
+ ],
1782
2168
  "description": "Allows the app to read, update, delete and perform actions on access reviews, reviewers, decisions and settings in the organization for group and app memberships, without a signed-in user.",
1783
2169
  "displayName": "Manage access reviews for group and app memberships",
1784
2170
  "id": "18228521-a591-40f1-b215-5fad4488c117",
@@ -1787,7 +2173,9 @@
1787
2173
  "value": "AccessReview.ReadWrite.Membership"
1788
2174
  },
1789
2175
  {
1790
- "allowedMemberTypes": ["Application"],
2176
+ "allowedMemberTypes": [
2177
+ "Application"
2178
+ ],
1791
2179
  "description": "Allow the app to read or write items in all external datasets that the app is authorized to access",
1792
2180
  "displayName": "Read and write items in external datasets",
1793
2181
  "id": "38c3d6ee-69ee-422f-b954-e17819665354",
@@ -1796,7 +2184,9 @@
1796
2184
  "value": "ExternalItem.ReadWrite.All"
1797
2185
  },
1798
2186
  {
1799
- "allowedMemberTypes": ["Application"],
2187
+ "allowedMemberTypes": [
2188
+ "Application"
2189
+ ],
1800
2190
  "description": "Allows the app to read the memberships of hidden groups and administrative units without a signed-in user.",
1801
2191
  "displayName": "Read all hidden memberships",
1802
2192
  "id": "658aa5d8-239f-45c4-aa12-864f4fc7e490",
@@ -1805,7 +2195,9 @@
1805
2195
  "value": "Member.Read.Hidden"
1806
2196
  },
1807
2197
  {
1808
- "allowedMemberTypes": ["Application"],
2198
+ "allowedMemberTypes": [
2199
+ "Application"
2200
+ ],
1809
2201
  "description": "Allows the app to read company places (conference rooms and room lists) for calendar events and other applications, without a signed-in user.",
1810
2202
  "displayName": "Read all company places",
1811
2203
  "id": "913b9306-0ce1-42b8-9137-6a7df690a760",
@@ -1814,7 +2206,9 @@
1814
2206
  "value": "Place.Read.All"
1815
2207
  },
1816
2208
  {
1817
- "allowedMemberTypes": ["Application"],
2209
+ "allowedMemberTypes": [
2210
+ "Application"
2211
+ ],
1818
2212
  "description": "Allows the app to read the organization and related resources, without a signed-in user. Related resources include things like subscribed skus and tenant branding information.",
1819
2213
  "displayName": "Read organization information",
1820
2214
  "id": "498476ce-e0fe-48b0-b801-37ba7e2685c6",
@@ -1823,7 +2217,9 @@
1823
2217
  "value": "Organization.Read.All"
1824
2218
  },
1825
2219
  {
1826
- "allowedMemberTypes": ["Application"],
2220
+ "allowedMemberTypes": [
2221
+ "Application"
2222
+ ],
1827
2223
  "description": "Allows the app to read and write the organization and related resources, without a signed-in user. Related resources include things like subscribed skus and tenant branding information.",
1828
2224
  "displayName": "Read and write organization information",
1829
2225
  "id": "292d869f-3427-49a8-9dab-8c70152b74e9",
@@ -1832,7 +2228,9 @@
1832
2228
  "value": "Organization.ReadWrite.All"
1833
2229
  },
1834
2230
  {
1835
- "allowedMemberTypes": ["Application"],
2231
+ "allowedMemberTypes": [
2232
+ "Application"
2233
+ ],
1836
2234
  "description": "Allows the app to read the role-based access control (RBAC) settings for your company's directory, without a signed-in user. This includes reading directory role templates, directory roles and memberships.",
1837
2235
  "displayName": "Read all directory RBAC settings",
1838
2236
  "id": "483bed4a-2ad3-4361-a73b-c83ccdbdc53c",
@@ -1841,7 +2239,9 @@
1841
2239
  "value": "RoleManagement.Read.Directory"
1842
2240
  },
1843
2241
  {
1844
- "allowedMemberTypes": ["Application"],
2242
+ "allowedMemberTypes": [
2243
+ "Application"
2244
+ ],
1845
2245
  "description": "Allows the app to read and manage the role-based access control (RBAC) settings for your company's directory, without a signed-in user. This includes instantiating directory roles and managing directory role membership, and reading directory role templates, directory roles and memberships.",
1846
2246
  "displayName": "Read and write all directory RBAC settings",
1847
2247
  "id": "9e3f62cf-ca93-4989-b6ce-bf83c28f9fe8",
@@ -1850,7 +2250,9 @@
1850
2250
  "value": "RoleManagement.ReadWrite.Directory"
1851
2251
  },
1852
2252
  {
1853
- "allowedMemberTypes": ["Application"],
2253
+ "allowedMemberTypes": [
2254
+ "Application"
2255
+ ],
1854
2256
  "description": "Allows the app to create, read, update, and delete documents and list items in all site collections without a signed in user.",
1855
2257
  "displayName": "Read and write items in all site collections (preview)",
1856
2258
  "id": "9492366f-7969-46a4-8d15-ed1a20078fff",
@@ -1859,7 +2261,9 @@
1859
2261
  "value": "Sites.ReadWrite.All"
1860
2262
  },
1861
2263
  {
1862
- "allowedMemberTypes": ["Application"],
2264
+ "allowedMemberTypes": [
2265
+ "Application"
2266
+ ],
1863
2267
  "description": "Allows the app to read and write feature rollout policies without a signed-in user. Includes abilities to assign and remove users and groups to rollout of a specific feature.",
1864
2268
  "displayName": "Read and write feature rollout policies",
1865
2269
  "id": "2044e4f1-e56c-435b-925c-44cd8f6ba89a",
@@ -1868,7 +2272,9 @@
1868
2272
  "value": "Policy.ReadWrite.FeatureRollout"
1869
2273
  },
1870
2274
  {
1871
- "allowedMemberTypes": ["Application"],
2275
+ "allowedMemberTypes": [
2276
+ "Application"
2277
+ ],
1872
2278
  "description": "Allows the app to read basic mail properties in all mailboxes without a signed-in user. Includes all properties except body, previewBody, attachments and any extended properties.",
1873
2279
  "displayName": "Read basic mail in all mailboxes",
1874
2280
  "id": "6be147d2-ea4f-4b5a-a3fa-3eab6f3c140a",
@@ -1877,7 +2283,9 @@
1877
2283
  "value": "Mail.ReadBasic"
1878
2284
  },
1879
2285
  {
1880
- "allowedMemberTypes": ["Application"],
2286
+ "allowedMemberTypes": [
2287
+ "Application"
2288
+ ],
1881
2289
  "description": "Allows the app to read basic mail properties in all mailboxes without a signed-in user. Includes all properties except body, previewBody, attachments and any extended properties.",
1882
2290
  "displayName": "Read basic mail in all mailboxes",
1883
2291
  "id": "693c5e45-0940-467d-9b8a-1022fb9d42ef",
@@ -4617,6 +5025,478 @@
4617
5025
  }
4618
5026
  ],
4619
5027
  "passwordCredentials": []
5028
+ },
5029
+ {
5030
+ "id": "96104b9b-9aec-45a9-b53f-3b9610a32a6d",
5031
+ "deletedDateTime": null,
5032
+ "accountEnabled": true,
5033
+ "alternativeNames": [],
5034
+ "appDisplayName": "Office 365 SharePoint Online",
5035
+ "appDescription": null,
5036
+ "appId": "00000003-0000-0ff1-ce00-000000000000",
5037
+ "applicationTemplateId": null,
5038
+ "appOwnerOrganizationId": "f8cdef31-a31e-4b4a-93e4-5f571e91255a",
5039
+ "appRoleAssignmentRequired": false,
5040
+ "createdDateTime": null,
5041
+ "description": null,
5042
+ "disabledByMicrosoftStatus": null,
5043
+ "displayName": "Office 365 SharePoint Online",
5044
+ "homepage": null,
5045
+ "loginUrl": null,
5046
+ "logoutUrl": "https://signout.sharepoint.com/_layouts/15/expirecookies.aspx",
5047
+ "notes": null,
5048
+ "notificationEmailAddresses": [],
5049
+ "preferredSingleSignOnMode": null,
5050
+ "preferredTokenSigningKeyThumbprint": null,
5051
+ "replyUrls": [
5052
+ "https://microsoft-portal.sharepoint-df.com",
5053
+ "https://www180015.066dapp.com/_layouts/15/spolanding.aspx",
5054
+ "https://www167017.080dapp.com/_layouts/15/spolanding.aspx",
5055
+ "https://www174015.019dapp.com/_layouts/15/spolanding.aspx",
5056
+ "https://www162015.079dapp.com/_layouts/15/spolanding.aspx",
5057
+ "https://www156015.077dapp.com/_layouts/15/spolanding.aspx",
5058
+ "https://www158015.075dapp.com/_layouts/15/spolanding.aspx",
5059
+ "https://www145007.074dapp.com/_layouts/15/spolanding.aspx",
5060
+ "https://www148015.030dapp.com/_layouts/15/spolanding.aspx",
5061
+ "https://www141017.028dapp.com/_layouts/15/spolanding.aspx",
5062
+ "https://www143020.025dapp.com/_layouts/15/spolanding.aspx",
5063
+ "https://www138015.076dapp.com/_layouts/15/spolanding.aspx",
5064
+ "https://www136028.062dapp.com/_layouts/15/spolanding.aspx",
5065
+ "https://www129017.072dapp.com/_layouts/15/spolanding.aspx",
5066
+ "https://www127017.005dapp.com/_layouts/15/spolanding.aspx",
5067
+ "https://www124016.032dapp.com/_layouts/15/spolanding.aspx",
5068
+ "https://www117017.063dapp.com/_layouts/15/spolanding.aspx",
5069
+ "https://www115014.071dapp.com/_layouts/15/spolanding.aspx",
5070
+ "https://www111031.045dapp.com/_layouts/15/spolanding.aspx",
5071
+ "https://www113025.044dapp.com/_layouts/15/spolanding.aspx",
5072
+ "https://www105021.059dapp.com/_layouts/15/spolanding.aspx",
5073
+ "https://www92050.065dapp.com/_layouts/15/spolanding.aspx",
5074
+ "https://www32058.050dapp.com/_layouts/15/spolanding.aspx",
5075
+ "https://www29079.048dapp.com/_layouts/15/spolanding.aspx",
5076
+ "https://www39085.034dapp.com/_layouts/15/spolanding.aspx",
5077
+ "https://www38024.068dapp.com/_layouts/15/spolanding.aspx",
5078
+ "https://www37045.007dapp.com/_layouts/15/spolanding.aspx",
5079
+ "https://www30090.054dapp.com/_layouts/15/spolanding.aspx",
5080
+ "https://www95027.027dapp.com/_layouts/15/spolanding.aspx",
5081
+ "https://www75007.023dapp.com/_layouts/15/spolanding.aspx",
5082
+ "https://www70030.035dapp.com/_layouts/15/spolanding.aspx",
5083
+ "https://www60140.098dspoapp.com/_layouts/15/spolanding.aspx",
5084
+ "https://www160015.078dapp.com/_layouts/15/spolanding.aspx",
5085
+ "https://www154017.003dapp.com/_layouts/15/spolanding.aspx",
5086
+ "https://www102027.067dapp.com/_layouts/15/spolanding.aspx",
5087
+ "https://www100039.017dapp.com/_layouts/15/spolanding.aspx",
5088
+ "https://www87072.042dapp.com/_layouts/15/spolanding.aspx",
5089
+ "https://www90082.053dapp.com/_layouts/15/spolanding.aspx",
5090
+ "https://www80033.011dapp.com/_layouts/15/spolanding.aspx",
5091
+ "https://www65158.013dspoapp.com/_layouts/15/spolanding.aspx",
5092
+ "https://www139017.073dapp.com/_layouts/15/spolanding.aspx",
5093
+ "https://www133018.046dapp.com/_layouts/15/spolanding.aspx",
5094
+ "https://www97058.085dspoapp.com/_layouts/15/spolanding.aspx",
5095
+ "https://microsoft-my.sharepoint-df.com/_forms/default.aspx",
5096
+ "https://microsoft.sharepoint-df.com/_forms/default.aspx?loginasanotheruser=true",
5097
+ "https://microsoft-my.sharepoint-df.com/_forms/default.aspx?loginasanotheruser=true",
5098
+ "https://microsoft.sharepoint-df.com/_forms/default.aspx",
5099
+ "https://microsoft-admin.sharepoint-df.com/_forms/default.aspx",
5100
+ "https://microsoft-admin.sharepoint-df.com/_forms/default.aspx?loginasanotheruser=true"
5101
+ ],
5102
+ "servicePrincipalNames": [
5103
+ "https://microsoft.sharepoint-df.com",
5104
+ "00000003-0000-0ff1-ce00-000000000000/spo-mysitehost",
5105
+ "https://microsoft.sharepoint-df.com/",
5106
+ "00000003-0000-0ff1-ce00-000000000000/microsoft.sharepoint-df.com",
5107
+ "https://o365spo-signout.sharepoint-df.com/",
5108
+ "00000003-0000-0ff1-ce00-000000000000/o365spo-signout.sharepoint-df.com",
5109
+ "https://microsoft-portal.sharepoint-df.com/",
5110
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-portal.sharepoint-df.com",
5111
+ "https://microsoft-admin.sharepoint-df.com/",
5112
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-admin.sharepoint-df.com",
5113
+ "https://microsoft-my.sharepoint-df.com/",
5114
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-my.sharepoint-df.com",
5115
+ "https://microsoft-signout.sharepointeu.com/",
5116
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-signout.sharepointeu.com",
5117
+ "https://microsoft-test.sharepointeu.com/",
5118
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-test.sharepointeu.com",
5119
+ "https://microsoft-admin.sharepointeu.com/",
5120
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-admin.sharepointeu.com",
5121
+ "https://microsoft-my.sharepointeu.com/",
5122
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-my.sharepointeu.com",
5123
+ "https://microsoft-portal.sharepointeu.com/",
5124
+ "00000003-0000-0ff1-ce00-000000000000/microsoft-portal.sharepointeu.com",
5125
+ "https://microsoft.sharepointeu.com/",
5126
+ "00000003-0000-0ff1-ce00-000000000000/microsoft.sharepointeu.com",
5127
+ "https://*.sharepointeu.com/",
5128
+ "00000003-0000-0ff1-ce00-000000000000/*.sharepointeu.com",
5129
+ "https://*.100dapp.com/",
5130
+ "00000003-0000-0ff1-ce00-000000000000/*.100dapp.com",
5131
+ "00000003-0000-0ff1-ce00-000000000000/sharepoint",
5132
+ "00000003-0000-0ff1-ce00-000000000000/998c-dm2-put01",
5133
+ "00000003-0000-0ff1-ce00-000000000000/*.sharepoint.com",
5134
+ "00000003-0000-0ff1-ce00-000000000000",
5135
+ "Microsoft.SharePoint",
5136
+ "00000003-0000-0ff1-ce00-000000000000/msitsearch.partners.extranet.microsoft.com",
5137
+ "https://*.sposites.com/",
5138
+ "https://*.001dspoapp.com/",
5139
+ "00000003-0000-0ff1-ce00-000000000000/*.sposites.com",
5140
+ "00000003-0000-0ff1-ce00-000000000000/*.001dspoapp.com",
5141
+ "00000003-0000-0ff1-ce00-000000000000/infopediatest2013",
5142
+ "00000003-0000-0ff1-ce00-000000000000/dev.sp.com",
5143
+ "00000003-0000-0ff1-ce00-000000000000/edvxsolappcd01:4000",
5144
+ "https://portal.sposites.com/",
5145
+ "https://portal.sposites.com",
5146
+ "00000003-0000-0ff1-ce00-000000000000/*.partners.extranet.microsoft.com",
5147
+ "00000003-0000-0ff1-ce00-000000000000/edvxsolappcd02.redmond.corp.microsoft.com",
5148
+ "00000003-0000-0ff1-ce00-000000000000/scspite.partners.extranet.microsoft.com",
5149
+ "00000003-0000-0ff1-ce00-000000000000/spsmslibuatpublishing",
5150
+ "Office 365 SharePoint Online",
5151
+ "00000003-0000-0ff1-ce00-000000000000/lcareportsuat"
5152
+ ],
5153
+ "servicePrincipalType": "Application",
5154
+ "signInAudience": "AzureADMultipleOrgs",
5155
+ "tags": [
5156
+ "MicrosoftFirstParty"
5157
+ ],
5158
+ "tokenEncryptionKeyId": null,
5159
+ "samlSingleSignOnSettings": null,
5160
+ "verifiedPublisher": {
5161
+ "displayName": null,
5162
+ "verifiedPublisherId": null,
5163
+ "addedDateTime": null
5164
+ },
5165
+ "addIns": [],
5166
+ "appRoles": [
5167
+ {
5168
+ "allowedMemberTypes": [
5169
+ "Application"
5170
+ ],
5171
+ "description": "Allow the application to access a subset of site collections without a signed in user. The specific site collections and the permissions granted will be configured in SharePoint Online.",
5172
+ "displayName": "Access selected site collections",
5173
+ "id": "20d37865-089c-4dee-8c41-6967602d4ac8",
5174
+ "isEnabled": true,
5175
+ "origin": "Application",
5176
+ "value": "Sites.Selected"
5177
+ },
5178
+ {
5179
+ "allowedMemberTypes": [
5180
+ "Application"
5181
+ ],
5182
+ "description": "Allows the app to read user profiles without a signed in user.",
5183
+ "displayName": "Read user profiles",
5184
+ "id": "df021288-bdef-4463-88db-98f22de89214",
5185
+ "isEnabled": true,
5186
+ "origin": "Application",
5187
+ "value": "User.Read.All"
5188
+ },
5189
+ {
5190
+ "allowedMemberTypes": [
5191
+ "Application"
5192
+ ],
5193
+ "description": "Allows the app to read and update user profiles and to read basic site info without a signed in user.",
5194
+ "displayName": "Read and write user profiles",
5195
+ "id": "741f803b-c850-494e-b5df-cde7c675a1ca",
5196
+ "isEnabled": true,
5197
+ "origin": "Application",
5198
+ "value": "User.ReadWrite.All"
5199
+ },
5200
+ {
5201
+ "allowedMemberTypes": [
5202
+ "Application"
5203
+ ],
5204
+ "description": "Allows the app to write enterprise managed metadata and to read basic site info without a signed in user.",
5205
+ "displayName": "Read and write managed metadata",
5206
+ "id": "c8e3537c-ec53-43b9-bed3-b2bd3617ae97",
5207
+ "isEnabled": true,
5208
+ "origin": "Application",
5209
+ "value": "TermStore.ReadWrite.All"
5210
+ },
5211
+ {
5212
+ "allowedMemberTypes": [
5213
+ "Application"
5214
+ ],
5215
+ "description": "Allows the app to read enterprise managed metadata and to read basic site info without a signed in user.",
5216
+ "displayName": "Read managed metadata",
5217
+ "id": "2a8d57a5-4090-4a41-bf1c-3c621d2ccad3",
5218
+ "isEnabled": true,
5219
+ "origin": "Application",
5220
+ "value": "TermStore.Read.All"
5221
+ },
5222
+ {
5223
+ "allowedMemberTypes": [
5224
+ "Application"
5225
+ ],
5226
+ "description": "Allows the app to read, create, update, and delete document libraries and lists in all site collections without a signed in user.",
5227
+ "displayName": "Read and write items and lists in all site collections",
5228
+ "id": "9bff6588-13f2-4c48-bbf2-ddab62256b36",
5229
+ "isEnabled": true,
5230
+ "origin": "Application",
5231
+ "value": "Sites.Manage.All"
5232
+ },
5233
+ {
5234
+ "allowedMemberTypes": [
5235
+ "Application"
5236
+ ],
5237
+ "description": "Allows the app to have full control of all site collections without a signed in user.",
5238
+ "displayName": "Have full control of all site collections",
5239
+ "id": "678536fe-1083-478a-9c59-b99265e6b0d3",
5240
+ "isEnabled": true,
5241
+ "origin": "Application",
5242
+ "value": "Sites.FullControl.All"
5243
+ },
5244
+ {
5245
+ "allowedMemberTypes": [
5246
+ "Application"
5247
+ ],
5248
+ "description": "Allows the app to read documents and list items in all site collections without a signed in user.",
5249
+ "displayName": "Read items in all site collections",
5250
+ "id": "d13f72ca-a275-4b96-b789-48ebcc4da984",
5251
+ "isEnabled": true,
5252
+ "origin": "Application",
5253
+ "value": "Sites.Read.All"
5254
+ },
5255
+ {
5256
+ "allowedMemberTypes": [
5257
+ "Application"
5258
+ ],
5259
+ "description": "Allows the app to create, read, update, and delete documents and list items in all site collections without a signed in user.",
5260
+ "displayName": "Read and write items in all site collections",
5261
+ "id": "fbcd29d2-fcca-4405-aded-518d457caae4",
5262
+ "isEnabled": true,
5263
+ "origin": "Application",
5264
+ "value": "Sites.ReadWrite.All"
5265
+ }
5266
+ ],
5267
+ "info": {
5268
+ "logoUrl": null,
5269
+ "marketingUrl": null,
5270
+ "privacyStatementUrl": null,
5271
+ "supportUrl": null,
5272
+ "termsOfServiceUrl": null
5273
+ },
5274
+ "keyCredentials": [
5275
+ {
5276
+ "customKeyIdentifier": "7B9D1F9F1EE86002446C3E38064CAB4267F0100B",
5277
+ "displayName": "CN=SharePoint Security Token Service, OU=SharePoint, O=Microsoft, C=US",
5278
+ "endDateTime": "9999-01-01T00:00:00Z",
5279
+ "key": null,
5280
+ "keyId": "d9d8c1cb-0e5f-41bb-92f8-62f28f770fe8",
5281
+ "startDateTime": "2019-07-10T10:32:20Z",
5282
+ "type": "AsymmetricX509Cert",
5283
+ "usage": "Verify"
5284
+ },
5285
+ {
5286
+ "customKeyIdentifier": null,
5287
+ "displayName": null,
5288
+ "endDateTime": "2018-03-10T21:12:48Z",
5289
+ "key": null,
5290
+ "keyId": "5c86ce0a-621b-48c6-9928-7ff2d52c2566",
5291
+ "startDateTime": "2017-01-10T21:12:48Z",
5292
+ "type": "AsymmetricX509Cert",
5293
+ "usage": "Verify"
5294
+ },
5295
+ {
5296
+ "customKeyIdentifier": null,
5297
+ "displayName": null,
5298
+ "endDateTime": "2017-04-12T19:10:57Z",
5299
+ "key": null,
5300
+ "keyId": "fdcb5410-a2df-4f14-8dcc-01897c286d0b",
5301
+ "startDateTime": "2015-04-13T19:10:57Z",
5302
+ "type": "AsymmetricX509Cert",
5303
+ "usage": "Verify"
5304
+ },
5305
+ {
5306
+ "customKeyIdentifier": null,
5307
+ "displayName": null,
5308
+ "endDateTime": "2018-01-07T17:31:08Z",
5309
+ "key": null,
5310
+ "keyId": "24fa3c87-55f9-4eac-98e9-1879d2cc3567",
5311
+ "startDateTime": "2016-01-08T17:31:08Z",
5312
+ "type": "AsymmetricX509Cert",
5313
+ "usage": "Verify"
5314
+ }
5315
+ ],
5316
+ "oauth2PermissionScopes": [
5317
+ {
5318
+ "adminConsentDescription": "Allows the app to read user profiles and to read basic site info on behalf of the signed-in user.",
5319
+ "adminConsentDisplayName": "Read user profiles",
5320
+ "id": "0cea5a30-f6f8-42b5-87a0-84cc26822e02",
5321
+ "isEnabled": true,
5322
+ "type": "Admin",
5323
+ "userConsentDescription": "Allows the app to read user profiles and basic site info on your behalf.",
5324
+ "userConsentDisplayName": "Read user profiles",
5325
+ "value": "User.Read.All"
5326
+ },
5327
+ {
5328
+ "adminConsentDescription": "Allows the app to read and update user profiles and to read basic site info on behalf of the signed-in user.",
5329
+ "adminConsentDisplayName": "Read and write user profiles",
5330
+ "id": "82866913-39a9-4be7-8091-f4fa781088ae",
5331
+ "isEnabled": true,
5332
+ "type": "Admin",
5333
+ "userConsentDescription": "Allows the app to read and update user profiles and to read basic site info on your behalf.",
5334
+ "userConsentDisplayName": "Read and write user profiles",
5335
+ "value": "User.ReadWrite.All"
5336
+ },
5337
+ {
5338
+ "adminConsentDescription": "Allows the app to read, create, update, and delete the current user's files.",
5339
+ "adminConsentDisplayName": "Read and write user files",
5340
+ "id": "2cfdc887-d7b4-4798-9b33-3d98d6b95dd2",
5341
+ "isEnabled": true,
5342
+ "type": "User",
5343
+ "userConsentDescription": "Allows the app to read, create, update, and delete your files.",
5344
+ "userConsentDisplayName": "Read and write your files",
5345
+ "value": "MyFiles.Write"
5346
+ },
5347
+ {
5348
+ "adminConsentDescription": "Allows the app to read the current user's files.",
5349
+ "adminConsentDisplayName": "Read user files",
5350
+ "id": "dd2c8d78-58e1-46d7-82dd-34d411282686",
5351
+ "isEnabled": true,
5352
+ "type": "User",
5353
+ "userConsentDescription": "Allows the app to read your files.",
5354
+ "userConsentDisplayName": "Read your files",
5355
+ "value": "MyFiles.Read"
5356
+ },
5357
+ {
5358
+ "adminConsentDescription": "Allows the app to have full control of all site collections on behalf of the signed-in user.",
5359
+ "adminConsentDisplayName": "Have full control of all site collections",
5360
+ "id": "56680e0d-d2a3-4ae1-80d8-3c4f2100e3d0",
5361
+ "isEnabled": true,
5362
+ "type": "Admin",
5363
+ "userConsentDescription": "Allows the app to have full control of all site collections on your behalf.",
5364
+ "userConsentDisplayName": "Have full control of all site collections",
5365
+ "value": "AllSites.FullControl"
5366
+ },
5367
+ {
5368
+ "adminConsentDescription": "Allows the app to read, create, update, and delete document libraries and lists in all site collections on behalf of the signed-in user.",
5369
+ "adminConsentDisplayName": "Read and write items and lists in all site collections",
5370
+ "id": "b3f70a70-8a4b-4f95-9573-d71c496a53f4",
5371
+ "isEnabled": true,
5372
+ "type": "User",
5373
+ "userConsentDescription": "Allows the app to read, create, update, and delete document libraries and lists in all site collections on your behalf.",
5374
+ "userConsentDisplayName": "Read and write items and lists in all site collections",
5375
+ "value": "AllSites.Manage"
5376
+ },
5377
+ {
5378
+ "adminConsentDescription": "Allows the app to create, read, update, and delete documents and list items in all site collections on behalf of the signed-in user.",
5379
+ "adminConsentDisplayName": "Read and write items in all site collections",
5380
+ "id": "640ddd16-e5b7-4d71-9690-3f4022699ee7",
5381
+ "isEnabled": true,
5382
+ "type": "User",
5383
+ "userConsentDescription": "Allows the app to create, read, update, and delete documents and list items in all site collections on your behalf.",
5384
+ "userConsentDisplayName": "Read and write items in all site collections",
5385
+ "value": "AllSites.Write"
5386
+ },
5387
+ {
5388
+ "adminConsentDescription": "Allows the app to read documents and list items in all site collections on behalf of the signed-in user.",
5389
+ "adminConsentDisplayName": "Read items in all site collections",
5390
+ "id": "4e0d77b0-96ba-4398-af14-3baa780278f4",
5391
+ "isEnabled": true,
5392
+ "type": "User",
5393
+ "userConsentDescription": "Allows the app to read documents and list items in all site collections on your behalf.",
5394
+ "userConsentDisplayName": "Read items in all site collections",
5395
+ "value": "AllSites.Read"
5396
+ },
5397
+ {
5398
+ "adminConsentDescription": "Allows the app to run search queries and to read basic site info on behalf of the current signed-in user. Search results are based on the user's permissions instead of the app's permissions.",
5399
+ "adminConsentDisplayName": "Run search queries as a user",
5400
+ "id": "1002502a-9a71-4426-8551-69ab83452fab",
5401
+ "isEnabled": true,
5402
+ "type": "Admin",
5403
+ "userConsentDescription": "Allows the app to run search queries and to read basic site info on your behalf. Search results are based on your permissions.",
5404
+ "userConsentDisplayName": "Run search queries ",
5405
+ "value": "Sites.Search.All"
5406
+ },
5407
+ {
5408
+ "adminConsentDescription": "Allows the app to read, create, update, and delete managed metadata and to read basic site info on behalf of the signed-in user.",
5409
+ "adminConsentDisplayName": "Read and write managed metadata",
5410
+ "id": "59a198b5-0420-45a8-ae59-6da1cb640505",
5411
+ "isEnabled": true,
5412
+ "type": "Admin",
5413
+ "userConsentDescription": "Allows the app to read, create, update, and delete managed metadata and to read basic site info on your behalf.",
5414
+ "userConsentDisplayName": "Read and write managed metadata",
5415
+ "value": "TermStore.ReadWrite.All"
5416
+ },
5417
+ {
5418
+ "adminConsentDescription": "Allows the app to read managed metadata and to read basic site info on behalf of the signed-in user.",
5419
+ "adminConsentDisplayName": "Read managed metadata",
5420
+ "id": "a468ea40-458c-4cc2-80c4-51781af71e41",
5421
+ "isEnabled": true,
5422
+ "type": "Admin",
5423
+ "userConsentDescription": "Allows the app to read managed metadata and to read basic site info on your behalf.",
5424
+ "userConsentDisplayName": "Read managed metadata",
5425
+ "value": "TermStore.Read.All"
5426
+ },
5427
+ {
5428
+ "adminConsentDescription": "Allows the app to have full control of all ProjectWebApp site collections the signed-in user.",
5429
+ "adminConsentDisplayName": "Have full control of all ProjectWebApp site collections",
5430
+ "id": "e7e732bd-932b-45c4-8ce5-40d60a7daad9",
5431
+ "isEnabled": true,
5432
+ "type": "Admin",
5433
+ "userConsentDescription": "Allows the app to have full control of all ProjectWebApp site collections the signed-in user.",
5434
+ "userConsentDisplayName": "Have full control of all ProjectWebApp site collections",
5435
+ "value": "ProjectWebApp.FullControl"
5436
+ },
5437
+ {
5438
+ "adminConsentDescription": "Allows the app to read the current user's projects.",
5439
+ "adminConsentDisplayName": "Read user projects",
5440
+ "id": "2beb830c-70d1-4f5b-a983-79cbdb0c6c6a",
5441
+ "isEnabled": true,
5442
+ "type": "User",
5443
+ "userConsentDescription": "Allows the app to read the current user's projects.",
5444
+ "userConsentDisplayName": "Read user projects",
5445
+ "value": "Project.Read"
5446
+ },
5447
+ {
5448
+ "adminConsentDescription": "Allows the app to read, create, update, and delete the current users’ projects.",
5449
+ "adminConsentDisplayName": "Read and write user projects",
5450
+ "id": "d75a7b17-f04e-40d9-8e35-79b949bdb891",
5451
+ "isEnabled": true,
5452
+ "type": "User",
5453
+ "userConsentDescription": "Allows the app to read, create, update, and delete the current users’ projects.",
5454
+ "userConsentDisplayName": "Read and write user projects",
5455
+ "value": "Project.Write"
5456
+ },
5457
+ {
5458
+ "adminConsentDescription": "Allows the app to read the current user's enterprise resources.",
5459
+ "adminConsentDisplayName": "Read user project enterprise resources",
5460
+ "id": "b8341dab-4143-49da-8eb9-3d8c073f9e77",
5461
+ "isEnabled": true,
5462
+ "type": "User",
5463
+ "userConsentDescription": "Allows the app to read the current user's enterprise resources.",
5464
+ "userConsentDisplayName": "Read user project enterprise resources",
5465
+ "value": "EnterpriseResource.Read"
5466
+ },
5467
+ {
5468
+ "adminConsentDescription": "Allows the app to read, create, update, and delete the current user’s enterprise resources.",
5469
+ "adminConsentDisplayName": "Read and write user project enterprise resources",
5470
+ "id": "2511a087-5795-4cae-9123-d5b7d6ec4844",
5471
+ "isEnabled": true,
5472
+ "type": "User",
5473
+ "userConsentDescription": "Allows the app to read, create, update, and delete the current user’s enterprise resources.",
5474
+ "userConsentDisplayName": "Read and write user project enterprise resources",
5475
+ "value": "EnterpriseResource.Write"
5476
+ },
5477
+ {
5478
+ "adminConsentDescription": "Allows the app to submit project task status updates the signed-in user.",
5479
+ "adminConsentDisplayName": "Submit project task status updates",
5480
+ "id": "c4258712-0efb-41f1-b6bc-be58e4e32f3f",
5481
+ "isEnabled": true,
5482
+ "type": "User",
5483
+ "userConsentDescription": "Allows the app to submit project task status updates the signed-in user.",
5484
+ "userConsentDisplayName": "Submit project task status updates",
5485
+ "value": "TaskStatus.Submit"
5486
+ },
5487
+ {
5488
+ "adminConsentDescription": "Allows the app to read all OData reporting data from all ProjectWebApp site collections for the signed-in user.",
5489
+ "adminConsentDisplayName": "Read ProjectWebApp OData reporting data",
5490
+ "id": "a4c14cd7-8bd6-4337-8e87-78623dfc023b",
5491
+ "isEnabled": true,
5492
+ "type": "User",
5493
+ "userConsentDescription": "Allows the app to read all OData reporting data from all ProjectWebApp site collections for the signed-in user.",
5494
+ "userConsentDisplayName": "Read ProjectWebApp OData reporting data",
5495
+ "value": "ProjectWebAppReporting.Read"
5496
+ }
5497
+ ],
5498
+ "passwordCredentials": [],
5499
+ "resourceSpecificApplicationPermissions": []
4620
5500
  }
4621
5501
  ]
4622
5502
  }