@@ -79,46 +79,9 @@ Grants the ability to read owners property on single-tenant and multi-tenant app
79
79
80
80
![ This permissions grants access to the app registration owners page] ( ./media/roles-custom-available-permissions/app-registration-owners.png )
81
81
82
- #### microsoft.directory/applications/standard/read: Grants access to all fields on the application registration branding page
82
+ #### microsoft.directory/applications/standard/read
83
83
84
- ![ This permission grants access to the app registration branding page] ( ./media/roles-custom-available-permissions/app-registration-branding.png )
85
-
86
- Grants access to the following properties on the application entity:
87
-
88
- - AllowActAsForAllClients
89
- - AllowPassthroughUsers
90
- - AppAddress
91
- - AppBrandingElements
92
- - AppCategory
93
- - AppCreatedDateTime
94
- - AppData
95
- - AppId
96
- - AppInformationalUrl
97
- - ApplicationTag
98
- - AppLogoUrl
99
- - AppMetadata
100
- - AppOptions
101
- - BinaryExtensionAttribute
102
- - BooleanExtensionAttribute
103
- - CountriesBlockedForMinors
104
- - CreatedOnBehalfOf
105
- - DateTimeExtensionAttribute
106
- - DisplayName
107
- - ExtensionAttributeDefinition
108
- - IntegerExtensionAttribute
109
- - KnownClientApplications
110
- - LargeIntegerExtensionAttribute
111
- - LegalAgeGroupRule
112
- - LocalizedAppBrandingElements
113
- - MainLogo
114
- - MsaAppId
115
- - ResourceApplicationSet
116
- - ServiceDiscoveryEndpoint
117
- - StringExtensionAttribute
118
- - TrustedCertificateSubject
119
- - WebApi
120
- - WebApp
121
- - WwwHomepage
84
+ Grants access to read standard application registration properties. This includes properties across application registration pages.
122
85
123
86
#### microsoft.directory/applications.myOrganization/standard/read
124
87
@@ -140,11 +103,6 @@ Ability to update the supported account type (signInAudience) property on single
140
103
141
104
![ This permission grants access to app registration supported account type property on authentication page] ( ./media/roles-custom-available-permissions/supported-account-types.png )
142
105
143
- Grants access to the following properties on the application resource:
144
-
145
- - AvailableToOtherTenants
146
- - SignInAudience
147
-
148
106
#### microsoft.directory/applications.myOrganization/audience/update
149
107
150
108
Grants the same permissions as microsoft.directory/applications/audience/update, but only for single-tenant applications.
@@ -155,20 +113,6 @@ Ability to update the reply URL, sign-out URL, implicit flow, and publisher doma
155
113
156
114
![ Grants access to app registration authentication but not supported account types] ( ./media/roles-custom-available-permissions/supported-account-types.png )
157
115
158
- Grants access to the following properties on the application resource:
159
-
160
- - AcceptMappedClaims
161
- - AccessTokenAcceptedVersion
162
- - AddIns
163
- - GroupMembershipClaims
164
- - IsDeviceOnlyAuthSupported
165
- - OAuth2LegacyUrlPathMatching
166
- - OauthOidcResponsePolicyBitmap
167
- - OptionalClaims
168
- - OrgRestrictions
169
- - PublicClient
170
- - UseCustomTokenSigningKey
171
-
172
116
#### microsoft.directory/applications.myOrganization/authentication/update
173
117
174
118
Grants the same permissions as microsoft.directory/applications/authentication/update, but only for single-tenant applications.
@@ -179,42 +123,6 @@ Ability to update the name, logo, homepage URL, terms of service URL, and privac
179
123
180
124
![ This permission grants access to the app registration branding page] ( ./media/roles-custom-available-permissions/app-registration-branding.png )
181
125
182
- Grants access to the following properties on the application resource:
183
-
184
- - AllowActAsForAllClients
185
- - AllowPassthroughUsers
186
- - AppAddress
187
- - AppBrandingElements
188
- - AppCategory
189
- - AppData
190
- - AppId
191
- - AppInformationalUrl
192
- - ApplicationTag
193
- - AppLogoUrl
194
- - AppMetadata
195
- - AppOptions
196
- - BinaryExtensionAttribute
197
- - BooleanExtensionAttribute
198
- - CountriesBlockedForMinors
199
- - CreatedOnBehalfOf
200
- - DateTimeExtensionAttribute
201
- - DisplayName
202
- - ExtensionAttributeDefinition
203
- - IntegerExtensionAttribute
204
- - KnownClientApplications
205
- - LargeIntegerExtensionAttribute
206
- - LegalAgeGroupRule
207
- - LocalizedAppBrandingElements
208
- - MainLogo
209
- - MsaAppId
210
- - ResourceApplicationSet
211
- - ServiceDiscoveryEndpoint
212
- - StringExtensionAttribute
213
- - TrustedCertificateSubject
214
- - WebApi
215
- - WebApp
216
- - WwwHomepage
217
-
218
126
#### microsoft.directory/applications.myOrganization/basic/update
219
127
220
128
Grants the same permissions as microsoft.directory/applications/basic/update, but only for single-tenant applications.
@@ -225,13 +133,6 @@ Ability to update the certificates and client secrets properties on single-tenan
225
133
226
134
![ This permission grants access to the app registration certificates & secrets page] ( ./media/roles-custom-available-permissions/app-registration-secrets.png )
227
135
228
- Grants access to the following properties on the application resource:
229
- - AsymmetricKey
230
- - EncryptedSecretKey
231
- - KeyDescription
232
- - SharedKeyReference
233
- - TokenEncryptionKeyId
234
-
235
136
#### microsoft.directory/applications.myOrganization/credentials/update
236
137
237
138
Grants the same permissions as microsoft.directory/applications/credentials/update, but only for single-directory applications.
@@ -242,9 +143,6 @@ Ability to update the owner property on single-tenant and multi-tenant. Grants a
242
143
243
144
![ This permissions grants access to the app registration owners page] ( ./media/roles-custom-available-permissions/app-registration-owners.png )
244
145
245
- Grants access to the following properties on the application resource:
246
- - Owners
247
-
248
146
#### microsoft.directory/applications.myOrganization/owners/update
249
147
250
148
Grants the same permissions as microsoft.directory/applications/owners/update, but only for single-tenant applications.
@@ -257,14 +155,6 @@ Ability to update the delegated permissions, application permissions, authorized
257
155
258
156
![ This permissions grants access to the app registration Expose an API page] ( ./media/roles-custom-available-permissions/app-registration-expose-api.png )
259
157
260
- Grants access to the following properties on the application resource:
261
-
262
- - AppIdentifierUri
263
- - Entitlement
264
- - PreAuthorizedApplications
265
- - RecordConsentConditions
266
- - RequiredResourceAccess
267
-
268
158
#### microsoft.directory/applications.myOrganization/permissions/update
269
159
270
160
Grants the same permissions as microsoft.directory/applications/permissions/update, but only for single-tenant applications.
0 commit comments