Skip to content

Commit 954974e

Browse files
authored
Update roles-custom-available-permissions.md
1 parent 73aa9c1 commit 954974e

File tree

1 file changed

+2
-112
lines changed

1 file changed

+2
-112
lines changed

articles/active-directory/users-groups-roles/roles-custom-available-permissions.md

Lines changed: 2 additions & 112 deletions
Original file line numberDiff line numberDiff line change
@@ -79,46 +79,9 @@ Grants the ability to read owners property on single-tenant and multi-tenant app
7979

8080
![This permissions grants access to the app registration owners page](./media/roles-custom-available-permissions/app-registration-owners.png)
8181

82-
#### microsoft.directory/applications/standard/read: Grants access to all fields on the application registration branding page
82+
#### microsoft.directory/applications/standard/read
8383

84-
![This permission grants access to the app registration branding page](./media/roles-custom-available-permissions/app-registration-branding.png)
85-
86-
Grants access to the following properties on the application entity:
87-
88-
- AllowActAsForAllClients
89-
- AllowPassthroughUsers
90-
- AppAddress
91-
- AppBrandingElements
92-
- AppCategory
93-
- AppCreatedDateTime
94-
- AppData
95-
- AppId
96-
- AppInformationalUrl
97-
- ApplicationTag
98-
- AppLogoUrl
99-
- AppMetadata
100-
- AppOptions
101-
- BinaryExtensionAttribute
102-
- BooleanExtensionAttribute
103-
- CountriesBlockedForMinors
104-
- CreatedOnBehalfOf
105-
- DateTimeExtensionAttribute
106-
- DisplayName
107-
- ExtensionAttributeDefinition
108-
- IntegerExtensionAttribute
109-
- KnownClientApplications
110-
- LargeIntegerExtensionAttribute
111-
- LegalAgeGroupRule
112-
- LocalizedAppBrandingElements
113-
- MainLogo
114-
- MsaAppId
115-
- ResourceApplicationSet
116-
- ServiceDiscoveryEndpoint
117-
- StringExtensionAttribute
118-
- TrustedCertificateSubject
119-
- WebApi
120-
- WebApp
121-
- WwwHomepage
84+
Grants access to read standard application registration properties. This includes properties across application registration pages.
12285

12386
#### microsoft.directory/applications.myOrganization/standard/read
12487

@@ -140,11 +103,6 @@ Ability to update the supported account type (signInAudience) property on single
140103

141104
![This permission grants access to app registration supported account type property on authentication page](./media/roles-custom-available-permissions/supported-account-types.png)
142105

143-
Grants access to the following properties on the application resource:
144-
145-
- AvailableToOtherTenants
146-
- SignInAudience
147-
148106
#### microsoft.directory/applications.myOrganization/audience/update
149107

150108
Grants the same permissions as microsoft.directory/applications/audience/update, but only for single-tenant applications.
@@ -155,20 +113,6 @@ Ability to update the reply URL, sign-out URL, implicit flow, and publisher doma
155113

156114
![Grants access to app registration authentication but not supported account types](./media/roles-custom-available-permissions/supported-account-types.png)
157115

158-
Grants access to the following properties on the application resource:
159-
160-
- AcceptMappedClaims
161-
- AccessTokenAcceptedVersion
162-
- AddIns
163-
- GroupMembershipClaims
164-
- IsDeviceOnlyAuthSupported
165-
- OAuth2LegacyUrlPathMatching
166-
- OauthOidcResponsePolicyBitmap
167-
- OptionalClaims
168-
- OrgRestrictions
169-
- PublicClient
170-
- UseCustomTokenSigningKey
171-
172116
#### microsoft.directory/applications.myOrganization/authentication/update
173117

174118
Grants the same permissions as microsoft.directory/applications/authentication/update, but only for single-tenant applications.
@@ -179,42 +123,6 @@ Ability to update the name, logo, homepage URL, terms of service URL, and privac
179123

180124
![This permission grants access to the app registration branding page](./media/roles-custom-available-permissions/app-registration-branding.png)
181125

182-
Grants access to the following properties on the application resource:
183-
184-
- AllowActAsForAllClients
185-
- AllowPassthroughUsers
186-
- AppAddress
187-
- AppBrandingElements
188-
- AppCategory
189-
- AppData
190-
- AppId
191-
- AppInformationalUrl
192-
- ApplicationTag
193-
- AppLogoUrl
194-
- AppMetadata
195-
- AppOptions
196-
- BinaryExtensionAttribute
197-
- BooleanExtensionAttribute
198-
- CountriesBlockedForMinors
199-
- CreatedOnBehalfOf
200-
- DateTimeExtensionAttribute
201-
- DisplayName
202-
- ExtensionAttributeDefinition
203-
- IntegerExtensionAttribute
204-
- KnownClientApplications
205-
- LargeIntegerExtensionAttribute
206-
- LegalAgeGroupRule
207-
- LocalizedAppBrandingElements
208-
- MainLogo
209-
- MsaAppId
210-
- ResourceApplicationSet
211-
- ServiceDiscoveryEndpoint
212-
- StringExtensionAttribute
213-
- TrustedCertificateSubject
214-
- WebApi
215-
- WebApp
216-
- WwwHomepage
217-
218126
#### microsoft.directory/applications.myOrganization/basic/update
219127

220128
Grants the same permissions as microsoft.directory/applications/basic/update, but only for single-tenant applications.
@@ -225,13 +133,6 @@ Ability to update the certificates and client secrets properties on single-tenan
225133

226134
![This permission grants access to the app registration certificates & secrets page](./media/roles-custom-available-permissions/app-registration-secrets.png)
227135

228-
Grants access to the following properties on the application resource:
229-
- AsymmetricKey
230-
- EncryptedSecretKey
231-
- KeyDescription
232-
- SharedKeyReference
233-
- TokenEncryptionKeyId
234-
235136
#### microsoft.directory/applications.myOrganization/credentials/update
236137

237138
Grants the same permissions as microsoft.directory/applications/credentials/update, but only for single-directory applications.
@@ -242,9 +143,6 @@ Ability to update the owner property on single-tenant and multi-tenant. Grants a
242143

243144
![This permissions grants access to the app registration owners page](./media/roles-custom-available-permissions/app-registration-owners.png)
244145

245-
Grants access to the following properties on the application resource:
246-
- Owners
247-
248146
#### microsoft.directory/applications.myOrganization/owners/update
249147

250148
Grants the same permissions as microsoft.directory/applications/owners/update, but only for single-tenant applications.
@@ -257,14 +155,6 @@ Ability to update the delegated permissions, application permissions, authorized
257155

258156
![This permissions grants access to the app registration Expose an API page](./media/roles-custom-available-permissions/app-registration-expose-api.png)
259157

260-
Grants access to the following properties on the application resource:
261-
262-
- AppIdentifierUri
263-
- Entitlement
264-
- PreAuthorizedApplications
265-
- RecordConsentConditions
266-
- RequiredResourceAccess
267-
268158
#### microsoft.directory/applications.myOrganization/permissions/update
269159

270160
Grants the same permissions as microsoft.directory/applications/permissions/update, but only for single-tenant applications.

0 commit comments

Comments
 (0)