diff --git a/openapi/beta/default.yaml b/openapi/beta/default.yaml index 62ab0bfd..56beddee 100644 --- a/openapi/beta/default.yaml +++ b/openapi/beta/default.yaml @@ -65210,6 +65210,10 @@ paths: tags: - communications.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.clearAutomaticLocation parameters: - name: presence-id @@ -65231,6 +65235,10 @@ paths: tags: - communications.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: communications.presences.presence.clearLocation parameters: - name: presence-id @@ -65313,6 +65321,10 @@ paths: tags: - communications.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.setAutomaticLocation parameters: - name: presence-id @@ -65347,6 +65359,10 @@ paths: tags: - communications.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: communications.presences.presence.setManualLocation parameters: - name: presence-id @@ -597091,6 +597107,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get accessPackage from identityGovernance + description: The access package information for the suggested package. operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.GetAccessPackage parameters: - name: accessPackageSuggestion-id @@ -597151,6 +597168,10 @@ paths: tags: - identityGovernance.entitlementManagement summary: Invoke function filterByCurrentUser + description: Retrieve suggested accessPackageSuggestion objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. The suggestions help end users discover relevant access packages they may need for their role or work context. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.filterByCurrentUser parameters: - name: on @@ -598168,7 +598189,11 @@ paths: get: tags: - identityGovernance.entitlementManagement - summary: Get resourceRoleScopes from identityGovernance + summary: List resourceRoleScopes + description: Get a list of the accessPackageResourceRoleScope objects associated with an availableAccessPackage. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/availableaccesspackage-list-resourcerolescopes?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.availableAccessPackages.ListResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -598228,6 +598253,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get resourceRoleScopes from identityGovernance + description: The resource role scopes associated with this available access package. operationId: identityGovernance.entitlementManagement.availableAccessPackages.GetResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -600257,6 +600283,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -600320,6 +600347,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -606345,6 +606373,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -606418,6 +606447,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -608670,6 +608700,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -608733,6 +608764,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -614799,6 +614831,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -614872,6 +614905,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -739927,6 +739961,10 @@ paths: tags: - me.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: me.presence.clearAutomaticLocation responses: '204': @@ -739940,6 +739978,10 @@ paths: tags: - me.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: me.presence.clearLocation responses: '204': @@ -739998,6 +740040,10 @@ paths: tags: - me.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: me.presence.setAutomaticLocation requestBody: description: Action parameters @@ -740024,6 +740070,10 @@ paths: tags: - me.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: me.presence.setManualLocation requestBody: description: Action parameters @@ -760584,7 +760634,7 @@ paths: tags: - networkAccess.reports summary: Invoke function entitiesSummaries - description: 'Get the number of users, devices, and workloads per traffic type in a specified time period.' + description: 'Get the number of users, devices, and workloads per traffic type in a specified time period as logged in Global Secure Access.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-entitiessummaries?view=graph-rest-beta @@ -760812,7 +760862,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getCrossTenantSummary - description: Get a summary of the cross-tenant access patterns. + description: Get a summary of the cross-tenant access patterns as logged in Global Secure Access. operationId: networkAccess.reports.getCrossTenantSummary parameters: - name: startDateTime @@ -760858,7 +760908,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDestinationSummaries - description: Get counts of the visits to the top destination aggregations. + description: Get counts of the visits to the top destination aggregations as logged in Global Secure Access operationId: networkAccess.reports.getDestinationSummaries parameters: - name: startDateTime @@ -760915,7 +760965,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDeviceUsageSummary - description: 'Get a summary of device onboarding and offboarding within a specified timeframe. This summary includes the total number of devices, active devices, and inactive devices.' + description: 'Get a summary of device onboarding and offboarding within a specified timeframe as logged in Global Secure Access. This summary includes the total number of devices, active devices, and inactive devices.' operationId: networkAccess.reports.getDeviceUsageSummary parameters: - name: startDateTime @@ -761081,7 +761131,7 @@ paths: tags: - networkAccess.reports summary: Invoke function transactionSummaries - description: 'Get the total number of transactions and the number of blocked transactions, grouped by traffic type.' + description: 'Get the total number of transactions and the number of blocked transactions in Global Secure Access, grouped by traffic type.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-transactionsummaries?view=graph-rest-beta @@ -788181,7 +788231,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: List b2bManagementPolicy objects + description: Get a list of the b2bManagementPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.ListB2bManagementPolicies parameters: - $ref: '#/components/parameters/top' @@ -788231,7 +788285,11 @@ paths: post: tags: - policies.b2bManagementPolicy - summary: Create new navigation property to b2bManagementPolicies for policies + summary: Create b2bManagementPolicy + description: Create a new b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.CreateB2bManagementPolicies requestBody: description: New navigation property @@ -788255,7 +788313,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: Get b2bManagementPolicy + description: Read the properties and relationships of b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-get?view=graph-rest-beta operationId: policies.GetB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -788298,7 +788360,11 @@ paths: patch: tags: - policies.b2bManagementPolicy - summary: Update the navigation property b2bManagementPolicies in policies + summary: Update b2bManagementPolicy + description: Update the properties of a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-update?view=graph-rest-beta operationId: policies.UpdateB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -788324,7 +788390,11 @@ paths: delete: tags: - policies.b2bManagementPolicy - summary: Delete navigation property b2bManagementPolicies for policies + summary: Delete b2bManagementPolicy + description: Delete a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-delete-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.DeleteB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -788350,7 +788420,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get appliesTo from policies + summary: List b2bManagementPolicy appliesTo + description: Get a list of directoryObject objects that a b2bManagementPolicy object has been applied to. The b2bManagementPolicy can only be applied to application and servicePrincipal resources. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-list-appliesto?view=graph-rest-beta operationId: policies.b2bManagementPolicies.ListAppliesTo parameters: - name: b2bManagementPolicy-id @@ -792982,7 +793056,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: List onPremAuthenticationPolicy objects + description: Get a list of the onPremAuthenticationPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.ListOnPremAuthenticationPolicies parameters: - $ref: '#/components/parameters/top' @@ -793032,7 +793110,11 @@ paths: post: tags: - policies.onPremAuthenticationPolicy - summary: Create new navigation property to onPremAuthenticationPolicies for policies + summary: Create onPremAuthenticationPolicy + description: Create a new onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.CreateOnPremAuthenticationPolicies requestBody: description: New navigation property @@ -793056,7 +793138,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: Get onPremAuthenticationPolicy + description: Read the properties and relationships of onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-get?view=graph-rest-beta operationId: policies.GetOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -793099,7 +793185,11 @@ paths: patch: tags: - policies.onPremAuthenticationPolicy - summary: Update the navigation property onPremAuthenticationPolicies in policies + summary: Update onPremAuthenticationPolicy + description: Update the properties of an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-update?view=graph-rest-beta operationId: policies.UpdateOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -793125,7 +793215,11 @@ paths: delete: tags: - policies.onPremAuthenticationPolicy - summary: Delete navigation property onPremAuthenticationPolicies for policies + summary: Delete onPremAuthenticationPolicy + description: Delete an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-delete?view=graph-rest-beta operationId: policies.DeleteOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -793151,7 +793245,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get appliesTo from policies + summary: List onPremAuthenticationPolicy appliesTo + description: List directory objects that are assigned an onPremAuthenticationPolicy. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-list-appliesto?view=graph-rest-beta operationId: policies.onPremAuthenticationPolicies.ListAppliesTo parameters: - name: onPremAuthenticationPolicy-id @@ -937130,7 +937228,11 @@ paths: post: tags: - sites.list - summary: Create new navigation property to permissions for sites + summary: Create permission on a list + description: Create a new permission object on a list. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/list-post-permissions?view=graph-rest-beta operationId: sites.lists.CreatePermissions parameters: - name: site-id @@ -1240179,6 +1240281,10 @@ paths: tags: - users.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: users.user.presence.clearAutomaticLocation parameters: - name: user-id @@ -1240200,6 +1240306,10 @@ paths: tags: - users.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: users.user.presence.clearLocation parameters: - name: user-id @@ -1240282,6 +1240392,10 @@ paths: tags: - users.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: users.user.presence.setAutomaticLocation parameters: - name: user-id @@ -1240316,6 +1240430,10 @@ paths: tags: - users.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: users.user.presence.setManualLocation parameters: - name: user-id @@ -1255603,11 +1255721,13 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageSuggestionReason' + description: A collection of reasons why this access package is being suggested to the user. accessPackage: anyOf: - $ref: '#/components/schemas/microsoft.graph.availableAccessPackage' - type: object nullable: true + description: The access package information for the suggested package. x-ms-navigationProperty: true microsoft.graph.accessReview: allOf: @@ -1264633,14 +1264753,17 @@ components: properties: description: type: string + description: The description of the access package. nullable: true displayName: type: string + description: The display name of the access package. nullable: true resourceRoleScopes: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageResourceRoleScope' + description: The resource role scopes associated with this available access package. x-ms-navigationProperty: true microsoft.graph.awsAccessKey: allOf: @@ -1265444,7 +1265567,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.pageLayoutType' - type: object nullable: true - description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: newsLink.' + description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: newsLink.' publishingState: anyOf: - $ref: '#/components/schemas/microsoft.graph.publicationFacet' @@ -1266871,7 +1266994,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.callEventType' - type: object nullable: true - description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: rosterUpdated.' + description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: rosterUpdated.' eventDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1267206,7 +1267329,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.certificateAuthority' - description: Collection of certificate authorities which creates a trusted certificate chain. + description: Collection of certificate authorities that creates a trusted certificate chain. microsoft.graph.certificateBasedAuthPki: allOf: - $ref: '#/components/schemas/microsoft.graph.directoryObject' @@ -1267339,7 +1267462,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.channelMembershipType' - type: object nullable: true - description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: shared.' + description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: shared.' moderationSettings: anyOf: - $ref: '#/components/schemas/microsoft.graph.channelModerationSettings' @@ -1269408,7 +1269531,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotType' - type: object nullable: true - description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: retention. The default value is automatic.' + description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: retention. The default value is automatic.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotStatus' @@ -1280957,7 +1281080,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' allowLateSubmissions: type: boolean description: 'Identifies whether students can submit after the due date. If this property isn''t specified during create, it defaults to true.' @@ -1281073,7 +1281196,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAssignmentStatus' - type: object nullable: true - description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: inactive.' + description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: inactive.' readOnly: true webUrl: type: string @@ -1281136,7 +1281259,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' dueTime: pattern: '^([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?$' type: string @@ -1302856,6 +1302979,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.b2bManagementPolicy' + description: The policy to manage Microsoft Entra B2B features in Microsoft Entra External ID for workforce tenants. x-ms-navigationProperty: true b2cAuthenticationMethodsPolicy: anyOf: @@ -1302958,6 +1303082,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.onPremAuthenticationPolicy' + description: The policy that controls how authentication requests from on-premises environments are managed. x-ms-navigationProperty: true permissionGrantPolicies: type: array @@ -1303247,6 +1303372,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.userWorkLocation' - type: object nullable: true + description: Represents the user’s aggregated work location state. microsoft.graph.presentation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1306216,7 +1306342,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.recommendationType' - type: object nullable: true - description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' + description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' releaseType: type: string description: 'The current release type of the recommendation. The possible values are: preview, generallyAvailable, unknownFutureValue.' @@ -1307108,7 +1307234,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.restoreSessionStatus' - type: object nullable: true - description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: failed.' + description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: failed.' microsoft.graph.restrictedAppsViolation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1307240,7 +1307366,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. The possible values are: none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection. Use the Prefer: include - unknown -enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal , m365DAdminDismissedDetection. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are adminConfirmedUserCompromised, anomalousUserActivity, anomalousToken, anonymizedIPAddress,attackerinTheMiddle,attemptedPRTAccess, generic, investigationsThreatIntelligence, investigationsThreatIntelligenceSigninLinked,leakedCredentials, maliciousIPAddress, maliciousIPAddressValidCredentialsBlockedIP, malwareInfectedIPAddress, mcasImpossibleTravel,mcasFinSuspiciousFileAccess, mcasSuspiciousInboxManipulationRules,nationStateIP, newCountry, passwordSpray, riskyIPAddress, suspiciousAPITraffic, suspiciousBrowser, suspiciousInboxForwarding, suspiciousIPAddress,suspiciousSendingPatterns, tokenIssuerAnomaly, unfamiliarFeatures, unlikelyTravel, userReportedSuspiciousActivity. For more information about each value, see Risk types and detection.' @@ -1307404,7 +1307530,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden. The possible values are: none, hidden, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1307472,7 +1307598,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1310958,7 +1311084,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are: investigationsThreatIntelligence, generic, adminConfirmedServicePrincipalCompromised, suspiciousSignins, leakedCredentials, anomalousServicePrincipalActivity, maliciousApplication, suspiciousApplication, suspiciousAPITraffic.' @@ -1312296,7 +1312422,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value or values in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' + description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskEventTypes_v2: type: array items: @@ -1331629,10 +1331755,12 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.identity' + description: A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have relatedPeopleInsightLevel set to countAndNames. This includes both the user ID and display name information. relatedPeopleAssignmentCount: maximum: 2147483647 minimum: -2147483648 type: number + description: The number of related people who have assignments to this access package. This count is always provided regardless of the relatedPeopleInsightLevel setting. format: int32 microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased: allOf: @@ -1331643,6 +1331771,7 @@ components: lastAssignmentDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: 'The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. Read-only.' format: date-time pastAssigmentCount: maximum: 2147483647 @@ -1332650,6 +1332779,7 @@ components: properties: blueprintId: type: string + description: Identifier of the parent agent blueprint that defines the identity and configuration of the agent. nullable: true microsoft.graph.aiInteractionAttachment: title: aiInteractionAttachment @@ -1332689,12 +1332819,15 @@ components: properties: identifier: type: string + description: The unique identifier of the AI entity. nullable: true name: type: string + description: The display name of the AI entity. nullable: true version: type: string + description: The version of the AI entity used. nullable: true microsoft.graph.aiInteractionLink: title: aiInteractionLink @@ -1338713,7 +1338846,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcDisasterRecoveryLicenseType' - type: object nullable: true - description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: plus.' + description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: plus.' primaryRegion: type: string description: The primary and mainly used region where the Cloud PC is located. @@ -1340866,7 +1340999,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.continuousAccessEvaluationMode' - type: object nullable: true - description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: strictLocation.' + description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: strictLocation.' microsoft.graph.controlScore: title: controlScore type: object @@ -1357884,15 +1358017,17 @@ components: items: type: string nullable: true - description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions).' + description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions). The accessedResources property is deprecated and stopped returning data on August 20, 2025. Going forward, use the accessedResources_v2 property.' accessedResources_v2: type: array items: $ref: '#/components/schemas/microsoft.graph.resourceAccessDetail' + description: 'Indicates the details about resources accessed by AI agents, including identifiers, access type, and status.' agents: type: array items: $ref: '#/components/schemas/microsoft.graph.aiAgentInfo' + description: Indicates the information about an AI agent that participated in the preparation of the message. parentMessageId: type: string description: 'Identifier of the parent message in a threaded conversation, if applicable.' @@ -1359419,20 +1359554,26 @@ components: $ref: '#/components/schemas/microsoft.graph.resourceAccessType' identifier: type: string + description: Unique identifier of the resource accessed. isCrossPromptInjectionDetected: type: boolean + description: Indicates whether cross-prompt injection was detected during the access attempt. labelId: type: string + description: 'Identifier for the sensitivity label applied to the resource, if any.' nullable: true name: type: string + description: Name of the resource accessed. status: $ref: '#/components/schemas/microsoft.graph.resourceAccessStatus' storageId: type: string + description: 'Identifier for the resource in its native storage format. For SharePoint resources, this is the unique identifier of the list item. For other resources, this is the name of the location, such as Box, Dropbox, Exchange, or Google Drive.' nullable: true url: type: string + description: URL of the resource accessed. nullable: true microsoft.graph.resourceAction: title: resourceAction @@ -1359973,7 +1360114,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden.' riskEventTypes: type: array items: @@ -1359989,7 +1360130,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue.' + description: 'For more information, see riskDetail.' eventTypes: type: array items: @@ -1362732,7 +1362873,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: approval.' + description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' stageStatus: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1362764,7 +1362905,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: approval.' + description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1366612,6 +1366753,7 @@ components: properties: placeId: type: string + description: Identifier of the place (when applicable). nullable: true source: $ref: '#/components/schemas/microsoft.graph.workLocationSource' @@ -1401643,6 +1401785,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.directoryObject' + description: The administrative units in the scope of the workflow. Optional. Supports $expand. x-ms-navigationProperty: true createdBy: anyOf: @@ -1406465,6 +1406608,7 @@ components: properties: name: type: string + description: Name of the entity microsoft.graph.networkaccess.branchConnectivityConfiguration: title: branchConnectivityConfiguration type: object @@ -1406780,16 +1406924,20 @@ components: deploymentEndDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Indicates the date and time when the deployment was completed. format: date-time nullable: true initiatedBy: type: string + description: Identifies the user or system that initiated the deployment. lastModifiedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Specifies the date and time when the deployment was last modified. format: date-time requestId: type: string + description: A unique identifier for the deployment request. Primary key. status: $ref: '#/components/schemas/microsoft.graph.networkaccess.deploymentStatus' microsoft.graph.networkaccess.deviceLink: @@ -1408077,14 +1408225,17 @@ components: properties: changeType: type: string + description: 'Specifies the type of configuration change being deployed. The possible values are: remoteNetwork, enrichedAuditLogsSetting, crossTenantAccessSettings, conditionalAccessSettings, forwardingOptions, forwardingProfile, filteringProfile, unknownFutureValue.' operationName: type: string + description: Indicates the name of the operation being performed as part of the deployment configuration. microsoft.graph.networkaccess.deploymentStatus: title: deploymentStatus type: object properties: message: type: string + description: 'Provides additional information or context about the deployment status, such as error details or progress updates.' nullable: true microsoft.graph.networkaccess.destination: title: destination @@ -1411875,7 +1412026,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.security.exportFileStructure' - type: object nullable: true - description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' + description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' outputFolderId: type: string description: 'The output folder ID. The outputFolderId property is deprecated and stopped returning data on April 30, 2023.' @@ -1413673,7 +1413824,7 @@ components: nullable: true hasProtection: type: boolean - description: Indicates whether the label has protection actions configured. + description: Indicates whether the label has protection actions (such as encryption or do not forward) configured. isActive: type: boolean description: Indicates whether the label is active or not. Active labels should be hidden or disabled in the UI. diff --git a/openapi/beta/graphexplorer.yaml b/openapi/beta/graphexplorer.yaml index 6545e4dd..d2ec3e12 100644 --- a/openapi/beta/graphexplorer.yaml +++ b/openapi/beta/graphexplorer.yaml @@ -76669,6 +76669,10 @@ paths: tags: - communications.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.clearAutomaticLocation parameters: - name: presence-id @@ -76690,6 +76694,10 @@ paths: tags: - communications.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: communications.presences.presence.clearLocation parameters: - name: presence-id @@ -76772,6 +76780,10 @@ paths: tags: - communications.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.setAutomaticLocation parameters: - name: presence-id @@ -76806,6 +76818,10 @@ paths: tags: - communications.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: communications.presences.presence.setManualLocation parameters: - name: presence-id @@ -727375,6 +727391,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get accessPackage from identityGovernance + description: The access package information for the suggested package. operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.GetAccessPackage parameters: - name: accessPackageSuggestion-id @@ -727443,6 +727460,10 @@ paths: tags: - identityGovernance.entitlementManagement summary: Invoke function filterByCurrentUser + description: Retrieve suggested accessPackageSuggestion objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. The suggestions help end users discover relevant access packages they may need for their role or work context. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.filterByCurrentUser parameters: - name: on @@ -728711,7 +728732,11 @@ paths: get: tags: - identityGovernance.entitlementManagement - summary: Get resourceRoleScopes from identityGovernance + summary: List resourceRoleScopes + description: Get a list of the accessPackageResourceRoleScope objects associated with an availableAccessPackage. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/availableaccesspackage-list-resourcerolescopes?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.availableAccessPackages.ListResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -728794,6 +728819,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get resourceRoleScopes from identityGovernance + description: The resource role scopes associated with this available access package. operationId: identityGovernance.entitlementManagement.availableAccessPackages.GetResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -731713,6 +731739,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -731786,6 +731813,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -741168,6 +741196,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -741251,6 +741280,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -744551,6 +744581,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -744624,6 +744655,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -754047,6 +754079,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -754130,6 +754163,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -915849,6 +915883,10 @@ paths: tags: - me.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: me.presence.clearAutomaticLocation responses: '204': @@ -915862,6 +915900,10 @@ paths: tags: - me.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: me.presence.clearLocation responses: '204': @@ -915920,6 +915962,10 @@ paths: tags: - me.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: me.presence.setAutomaticLocation requestBody: description: Action parameters @@ -915946,6 +915992,10 @@ paths: tags: - me.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: me.presence.setManualLocation requestBody: description: Action parameters @@ -941436,7 +941486,7 @@ paths: tags: - networkAccess.reports summary: Invoke function entitiesSummaries - description: 'Get the number of users, devices, and workloads per traffic type in a specified time period.' + description: 'Get the number of users, devices, and workloads per traffic type in a specified time period as logged in Global Secure Access.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-entitiessummaries?view=graph-rest-beta @@ -941664,7 +941714,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getCrossTenantSummary - description: Get a summary of the cross-tenant access patterns. + description: Get a summary of the cross-tenant access patterns as logged in Global Secure Access. operationId: networkAccess.reports.getCrossTenantSummary parameters: - name: startDateTime @@ -941710,7 +941760,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDestinationSummaries - description: Get counts of the visits to the top destination aggregations. + description: Get counts of the visits to the top destination aggregations as logged in Global Secure Access operationId: networkAccess.reports.getDestinationSummaries parameters: - name: startDateTime @@ -941767,7 +941817,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDeviceUsageSummary - description: 'Get a summary of device onboarding and offboarding within a specified timeframe. This summary includes the total number of devices, active devices, and inactive devices.' + description: 'Get a summary of device onboarding and offboarding within a specified timeframe as logged in Global Secure Access. This summary includes the total number of devices, active devices, and inactive devices.' operationId: networkAccess.reports.getDeviceUsageSummary parameters: - name: startDateTime @@ -941933,7 +941983,7 @@ paths: tags: - networkAccess.reports summary: Invoke function transactionSummaries - description: 'Get the total number of transactions and the number of blocked transactions, grouped by traffic type.' + description: 'Get the total number of transactions and the number of blocked transactions in Global Secure Access, grouped by traffic type.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-transactionsummaries?view=graph-rest-beta @@ -974086,7 +974136,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: List b2bManagementPolicy objects + description: Get a list of the b2bManagementPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.ListB2bManagementPolicies parameters: - $ref: '#/components/parameters/top' @@ -974160,7 +974214,11 @@ paths: post: tags: - policies.b2bManagementPolicy - summary: Create new navigation property to b2bManagementPolicies for policies + summary: Create b2bManagementPolicy + description: Create a new b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.CreateB2bManagementPolicies requestBody: description: New navigation property @@ -974184,7 +974242,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: Get b2bManagementPolicy + description: Read the properties and relationships of b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-get?view=graph-rest-beta operationId: policies.GetB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -974238,7 +974300,11 @@ paths: patch: tags: - policies.b2bManagementPolicy - summary: Update the navigation property b2bManagementPolicies in policies + summary: Update b2bManagementPolicy + description: Update the properties of a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-update?view=graph-rest-beta operationId: policies.UpdateB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -974264,7 +974330,11 @@ paths: delete: tags: - policies.b2bManagementPolicy - summary: Delete navigation property b2bManagementPolicies for policies + summary: Delete b2bManagementPolicy + description: Delete a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-delete-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.DeleteB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -974290,7 +974360,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get appliesTo from policies + summary: List b2bManagementPolicy appliesTo + description: Get a list of directoryObject objects that a b2bManagementPolicy object has been applied to. The b2bManagementPolicy can only be applied to application and servicePrincipal resources. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-list-appliesto?view=graph-rest-beta operationId: policies.b2bManagementPolicies.ListAppliesTo parameters: - name: b2bManagementPolicy-id @@ -980202,7 +980276,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: List onPremAuthenticationPolicy objects + description: Get a list of the onPremAuthenticationPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.ListOnPremAuthenticationPolicies parameters: - $ref: '#/components/parameters/top' @@ -980276,7 +980354,11 @@ paths: post: tags: - policies.onPremAuthenticationPolicy - summary: Create new navigation property to onPremAuthenticationPolicies for policies + summary: Create onPremAuthenticationPolicy + description: Create a new onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.CreateOnPremAuthenticationPolicies requestBody: description: New navigation property @@ -980300,7 +980382,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: Get onPremAuthenticationPolicy + description: Read the properties and relationships of onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-get?view=graph-rest-beta operationId: policies.GetOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -980354,7 +980440,11 @@ paths: patch: tags: - policies.onPremAuthenticationPolicy - summary: Update the navigation property onPremAuthenticationPolicies in policies + summary: Update onPremAuthenticationPolicy + description: Update the properties of an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-update?view=graph-rest-beta operationId: policies.UpdateOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -980380,7 +980470,11 @@ paths: delete: tags: - policies.onPremAuthenticationPolicy - summary: Delete navigation property onPremAuthenticationPolicies for policies + summary: Delete onPremAuthenticationPolicy + description: Delete an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-delete?view=graph-rest-beta operationId: policies.DeleteOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -980406,7 +980500,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get appliesTo from policies + summary: List onPremAuthenticationPolicy appliesTo + description: List directory objects that are assigned an onPremAuthenticationPolicy. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-list-appliesto?view=graph-rest-beta operationId: policies.onPremAuthenticationPolicies.ListAppliesTo parameters: - name: onPremAuthenticationPolicy-id @@ -1162518,7 +1162616,11 @@ paths: post: tags: - sites.list - summary: Create new navigation property to permissions for sites + summary: Create permission on a list + description: Create a new permission object on a list. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/list-post-permissions?view=graph-rest-beta operationId: sites.lists.CreatePermissions parameters: - name: site-id @@ -1541357,6 +1541459,10 @@ paths: tags: - users.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: users.user.presence.clearAutomaticLocation parameters: - name: user-id @@ -1541378,6 +1541484,10 @@ paths: tags: - users.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: users.user.presence.clearLocation parameters: - name: user-id @@ -1541460,6 +1541570,10 @@ paths: tags: - users.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: users.user.presence.setAutomaticLocation parameters: - name: user-id @@ -1541494,6 +1541608,10 @@ paths: tags: - users.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: users.user.presence.setManualLocation parameters: - name: user-id @@ -1559325,11 +1559443,13 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageSuggestionReason' + description: A collection of reasons why this access package is being suggested to the user. accessPackage: anyOf: - $ref: '#/components/schemas/microsoft.graph.availableAccessPackage' - type: object nullable: true + description: The access package information for the suggested package. x-ms-navigationProperty: true microsoft.graph.accessReview: allOf: @@ -1568355,14 +1568475,17 @@ components: properties: description: type: string + description: The description of the access package. nullable: true displayName: type: string + description: The display name of the access package. nullable: true resourceRoleScopes: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageResourceRoleScope' + description: The resource role scopes associated with this available access package. x-ms-navigationProperty: true microsoft.graph.awsAccessKey: allOf: @@ -1569166,7 +1569289,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.pageLayoutType' - type: object nullable: true - description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: newsLink.' + description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: newsLink.' publishingState: anyOf: - $ref: '#/components/schemas/microsoft.graph.publicationFacet' @@ -1570593,7 +1570716,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.callEventType' - type: object nullable: true - description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: rosterUpdated.' + description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: rosterUpdated.' eventDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1570928,7 +1571051,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.certificateAuthority' - description: Collection of certificate authorities which creates a trusted certificate chain. + description: Collection of certificate authorities that creates a trusted certificate chain. microsoft.graph.certificateBasedAuthPki: allOf: - $ref: '#/components/schemas/microsoft.graph.directoryObject' @@ -1571061,7 +1571184,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.channelMembershipType' - type: object nullable: true - description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: shared.' + description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: shared.' moderationSettings: anyOf: - $ref: '#/components/schemas/microsoft.graph.channelModerationSettings' @@ -1573130,7 +1573253,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotType' - type: object nullable: true - description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: retention. The default value is automatic.' + description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: retention. The default value is automatic.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotStatus' @@ -1584679,7 +1584802,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' allowLateSubmissions: type: boolean description: 'Identifies whether students can submit after the due date. If this property isn''t specified during create, it defaults to true.' @@ -1584795,7 +1584918,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAssignmentStatus' - type: object nullable: true - description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: inactive.' + description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: inactive.' readOnly: true webUrl: type: string @@ -1584858,7 +1584981,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' dueTime: pattern: '^([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?$' type: string @@ -1606578,6 +1606701,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.b2bManagementPolicy' + description: The policy to manage Microsoft Entra B2B features in Microsoft Entra External ID for workforce tenants. x-ms-navigationProperty: true b2cAuthenticationMethodsPolicy: anyOf: @@ -1606680,6 +1606804,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.onPremAuthenticationPolicy' + description: The policy that controls how authentication requests from on-premises environments are managed. x-ms-navigationProperty: true permissionGrantPolicies: type: array @@ -1606969,6 +1607094,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.userWorkLocation' - type: object nullable: true + description: Represents the user’s aggregated work location state. microsoft.graph.presentation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1609938,7 +1610064,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.recommendationType' - type: object nullable: true - description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' + description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' releaseType: type: string description: 'The current release type of the recommendation. The possible values are: preview, generallyAvailable, unknownFutureValue.' @@ -1610830,7 +1610956,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.restoreSessionStatus' - type: object nullable: true - description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: failed.' + description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: failed.' microsoft.graph.restrictedAppsViolation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1610962,7 +1611088,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. The possible values are: none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection. Use the Prefer: include - unknown -enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal , m365DAdminDismissedDetection. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are adminConfirmedUserCompromised, anomalousUserActivity, anomalousToken, anonymizedIPAddress,attackerinTheMiddle,attemptedPRTAccess, generic, investigationsThreatIntelligence, investigationsThreatIntelligenceSigninLinked,leakedCredentials, maliciousIPAddress, maliciousIPAddressValidCredentialsBlockedIP, malwareInfectedIPAddress, mcasImpossibleTravel,mcasFinSuspiciousFileAccess, mcasSuspiciousInboxManipulationRules,nationStateIP, newCountry, passwordSpray, riskyIPAddress, suspiciousAPITraffic, suspiciousBrowser, suspiciousInboxForwarding, suspiciousIPAddress,suspiciousSendingPatterns, tokenIssuerAnomaly, unfamiliarFeatures, unlikelyTravel, userReportedSuspiciousActivity. For more information about each value, see Risk types and detection.' @@ -1611126,7 +1611252,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden. The possible values are: none, hidden, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1611194,7 +1611320,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1614680,7 +1614806,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are: investigationsThreatIntelligence, generic, adminConfirmedServicePrincipalCompromised, suspiciousSignins, leakedCredentials, anomalousServicePrincipalActivity, maliciousApplication, suspiciousApplication, suspiciousAPITraffic.' @@ -1616018,7 +1616144,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value or values in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' + description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskEventTypes_v2: type: array items: @@ -1635351,10 +1635477,12 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.identity' + description: A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have relatedPeopleInsightLevel set to countAndNames. This includes both the user ID and display name information. relatedPeopleAssignmentCount: maximum: 2147483647 minimum: -2147483648 type: number + description: The number of related people who have assignments to this access package. This count is always provided regardless of the relatedPeopleInsightLevel setting. format: int32 microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased: allOf: @@ -1635365,6 +1635493,7 @@ components: lastAssignmentDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: 'The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. Read-only.' format: date-time pastAssigmentCount: maximum: 2147483647 @@ -1636372,6 +1636501,7 @@ components: properties: blueprintId: type: string + description: Identifier of the parent agent blueprint that defines the identity and configuration of the agent. nullable: true microsoft.graph.aiInteractionAttachment: title: aiInteractionAttachment @@ -1636411,12 +1636541,15 @@ components: properties: identifier: type: string + description: The unique identifier of the AI entity. nullable: true name: type: string + description: The display name of the AI entity. nullable: true version: type: string + description: The version of the AI entity used. nullable: true microsoft.graph.aiInteractionLink: title: aiInteractionLink @@ -1642435,7 +1642568,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcDisasterRecoveryLicenseType' - type: object nullable: true - description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: plus.' + description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: plus.' primaryRegion: type: string description: The primary and mainly used region where the Cloud PC is located. @@ -1644588,7 +1644721,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.continuousAccessEvaluationMode' - type: object nullable: true - description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: strictLocation.' + description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: strictLocation.' microsoft.graph.controlScore: title: controlScore type: object @@ -1661606,15 +1661739,17 @@ components: items: type: string nullable: true - description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions).' + description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions). The accessedResources property is deprecated and stopped returning data on August 20, 2025. Going forward, use the accessedResources_v2 property.' accessedResources_v2: type: array items: $ref: '#/components/schemas/microsoft.graph.resourceAccessDetail' + description: 'Indicates the details about resources accessed by AI agents, including identifiers, access type, and status.' agents: type: array items: $ref: '#/components/schemas/microsoft.graph.aiAgentInfo' + description: Indicates the information about an AI agent that participated in the preparation of the message. parentMessageId: type: string description: 'Identifier of the parent message in a threaded conversation, if applicable.' @@ -1663141,20 +1663276,26 @@ components: $ref: '#/components/schemas/microsoft.graph.resourceAccessType' identifier: type: string + description: Unique identifier of the resource accessed. isCrossPromptInjectionDetected: type: boolean + description: Indicates whether cross-prompt injection was detected during the access attempt. labelId: type: string + description: 'Identifier for the sensitivity label applied to the resource, if any.' nullable: true name: type: string + description: Name of the resource accessed. status: $ref: '#/components/schemas/microsoft.graph.resourceAccessStatus' storageId: type: string + description: 'Identifier for the resource in its native storage format. For SharePoint resources, this is the unique identifier of the list item. For other resources, this is the name of the location, such as Box, Dropbox, Exchange, or Google Drive.' nullable: true url: type: string + description: URL of the resource accessed. nullable: true microsoft.graph.resourceAction: title: resourceAction @@ -1663695,7 +1663836,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden.' riskEventTypes: type: array items: @@ -1663711,7 +1663852,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue.' + description: 'For more information, see riskDetail.' eventTypes: type: array items: @@ -1666454,7 +1666595,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: approval.' + description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' stageStatus: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1666486,7 +1666627,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: approval.' + description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1670334,6 +1670475,7 @@ components: properties: placeId: type: string + description: Identifier of the place (when applicable). nullable: true source: $ref: '#/components/schemas/microsoft.graph.workLocationSource' @@ -1705365,6 +1705507,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.directoryObject' + description: The administrative units in the scope of the workflow. Optional. Supports $expand. x-ms-navigationProperty: true createdBy: anyOf: @@ -1710187,6 +1710330,7 @@ components: properties: name: type: string + description: Name of the entity microsoft.graph.networkaccess.branchConnectivityConfiguration: title: branchConnectivityConfiguration type: object @@ -1710502,16 +1710646,20 @@ components: deploymentEndDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Indicates the date and time when the deployment was completed. format: date-time nullable: true initiatedBy: type: string + description: Identifies the user or system that initiated the deployment. lastModifiedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Specifies the date and time when the deployment was last modified. format: date-time requestId: type: string + description: A unique identifier for the deployment request. Primary key. status: $ref: '#/components/schemas/microsoft.graph.networkaccess.deploymentStatus' microsoft.graph.networkaccess.deviceLink: @@ -1711799,14 +1711947,17 @@ components: properties: changeType: type: string + description: 'Specifies the type of configuration change being deployed. The possible values are: remoteNetwork, enrichedAuditLogsSetting, crossTenantAccessSettings, conditionalAccessSettings, forwardingOptions, forwardingProfile, filteringProfile, unknownFutureValue.' operationName: type: string + description: Indicates the name of the operation being performed as part of the deployment configuration. microsoft.graph.networkaccess.deploymentStatus: title: deploymentStatus type: object properties: message: type: string + description: 'Provides additional information or context about the deployment status, such as error details or progress updates.' nullable: true microsoft.graph.networkaccess.destination: title: destination @@ -1715597,7 +1715748,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.security.exportFileStructure' - type: object nullable: true - description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' + description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' outputFolderId: type: string description: 'The output folder ID. The outputFolderId property is deprecated and stopped returning data on April 30, 2023.' @@ -1717395,7 +1717546,7 @@ components: nullable: true hasProtection: type: boolean - description: Indicates whether the label has protection actions configured. + description: Indicates whether the label has protection actions (such as encryption or do not forward) configured. isActive: type: boolean description: Indicates whether the label is active or not. Active labels should be hidden or disabled in the UI. diff --git a/openapi/beta/openapi.yaml b/openapi/beta/openapi.yaml index 45e859c8..26e03d61 100644 --- a/openapi/beta/openapi.yaml +++ b/openapi/beta/openapi.yaml @@ -63594,6 +63594,10 @@ paths: tags: - communications.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.clearAutomaticLocation responses: '204': @@ -63617,6 +63621,10 @@ paths: tags: - communications.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: communications.presences.presence.clearLocation responses: '204': @@ -63705,6 +63713,10 @@ paths: tags: - communications.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.setAutomaticLocation requestBody: description: Action parameters @@ -63741,6 +63753,10 @@ paths: tags: - communications.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: communications.presences.presence.setManualLocation requestBody: description: Action parameters @@ -624722,6 +624738,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get accessPackage from identityGovernance + description: The access package information for the suggested package. operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.GetAccessPackage parameters: - name: $select @@ -624787,6 +624804,10 @@ paths: tags: - identityGovernance.entitlementManagement summary: Invoke function filterByCurrentUser + description: Retrieve suggested accessPackageSuggestion objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. The suggestions help end users discover relevant access packages they may need for their role or work context. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.filterByCurrentUser parameters: - $ref: '#/components/parameters/top' @@ -625823,7 +625844,11 @@ paths: get: tags: - identityGovernance.entitlementManagement - summary: Get resourceRoleScopes from identityGovernance + summary: List resourceRoleScopes + description: Get a list of the accessPackageResourceRoleScope objects associated with an availableAccessPackage. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/availableaccesspackage-list-resourcerolescopes?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.availableAccessPackages.ListResourceRoleScopes parameters: - $ref: '#/components/parameters/top' @@ -625886,6 +625911,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get resourceRoleScopes from identityGovernance + description: The resource role scopes associated with this available access package. operationId: identityGovernance.entitlementManagement.availableAccessPackages.GetResourceRoleScopes parameters: - name: $select @@ -627974,6 +628000,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.ListAdministrationScopeTargets parameters: - $ref: '#/components/parameters/top' @@ -628040,6 +628067,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.GetAdministrationScopeTargets parameters: - name: $select @@ -634215,6 +634243,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.ListAdministrationScopeTargets parameters: - $ref: '#/components/parameters/top' @@ -634291,6 +634320,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.GetAdministrationScopeTargets parameters: - name: $select @@ -636541,6 +636571,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.ListAdministrationScopeTargets parameters: - $ref: '#/components/parameters/top' @@ -636607,6 +636638,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.GetAdministrationScopeTargets parameters: - name: $select @@ -642823,6 +642855,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.ListAdministrationScopeTargets parameters: - $ref: '#/components/parameters/top' @@ -642899,6 +642932,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.GetAdministrationScopeTargets parameters: - name: $select @@ -740101,6 +740135,10 @@ paths: tags: - me.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: me.presence.clearAutomaticLocation responses: '204': @@ -740116,6 +740154,10 @@ paths: tags: - me.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: me.presence.clearLocation responses: '204': @@ -740180,6 +740222,10 @@ paths: tags: - me.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: me.presence.setAutomaticLocation requestBody: description: Action parameters @@ -740208,6 +740254,10 @@ paths: tags: - me.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: me.presence.setManualLocation requestBody: description: Action parameters @@ -760633,7 +760683,7 @@ paths: tags: - networkAccess.reports summary: Invoke function entitiesSummaries - description: 'Get the number of users, devices, and workloads per traffic type in a specified time period.' + description: 'Get the number of users, devices, and workloads per traffic type in a specified time period as logged in Global Secure Access.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-entitiessummaries?view=graph-rest-beta @@ -760873,7 +760923,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getCrossTenantSummary - description: Get a summary of the cross-tenant access patterns. + description: Get a summary of the cross-tenant access patterns as logged in Global Secure Access. operationId: networkAccess.reports.getCrossTenantSummary responses: 2XX: @@ -760921,7 +760971,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDestinationSummaries - description: Get counts of the visits to the top destination aggregations. + description: Get counts of the visits to the top destination aggregations as logged in Global Secure Access operationId: networkAccess.reports.getDestinationSummaries parameters: - $ref: '#/components/parameters/top' @@ -760981,7 +761031,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDeviceUsageSummary - description: 'Get a summary of device onboarding and offboarding within a specified timeframe. This summary includes the total number of devices, active devices, and inactive devices.' + description: 'Get a summary of device onboarding and offboarding within a specified timeframe as logged in Global Secure Access. This summary includes the total number of devices, active devices, and inactive devices.' operationId: networkAccess.reports.getDeviceUsageSummary responses: 2XX: @@ -761155,7 +761205,7 @@ paths: tags: - networkAccess.reports summary: Invoke function transactionSummaries - description: 'Get the total number of transactions and the number of blocked transactions, grouped by traffic type.' + description: 'Get the total number of transactions and the number of blocked transactions in Global Secure Access, grouped by traffic type.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-transactionsummaries?view=graph-rest-beta @@ -786856,7 +786906,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: List b2bManagementPolicy objects + description: Get a list of the b2bManagementPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.ListB2bManagementPolicies parameters: - $ref: '#/components/parameters/top' @@ -786908,7 +786962,11 @@ paths: post: tags: - policies.b2bManagementPolicy - summary: Create new navigation property to b2bManagementPolicies for policies + summary: Create b2bManagementPolicy + description: Create a new b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.CreateB2bManagementPolicies requestBody: description: New navigation property @@ -786934,7 +786992,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: Get b2bManagementPolicy + description: Read the properties and relationships of b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-get?view=graph-rest-beta operationId: policies.GetB2bManagementPolicies parameters: - name: $select @@ -786972,7 +787034,11 @@ paths: patch: tags: - policies.b2bManagementPolicy - summary: Update the navigation property b2bManagementPolicies in policies + summary: Update b2bManagementPolicy + description: Update the properties of a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-update?view=graph-rest-beta operationId: policies.UpdateB2bManagementPolicies requestBody: description: New navigation property values @@ -786996,7 +787062,11 @@ paths: delete: tags: - policies.b2bManagementPolicy - summary: Delete navigation property b2bManagementPolicies for policies + summary: Delete b2bManagementPolicy + description: Delete a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-delete-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.DeleteB2bManagementPolicies parameters: - name: If-Match @@ -787025,7 +787095,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get appliesTo from policies + summary: List b2bManagementPolicy appliesTo + description: Get a list of directoryObject objects that a b2bManagementPolicy object has been applied to. The b2bManagementPolicy can only be applied to application and servicePrincipal resources. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-list-appliesto?view=graph-rest-beta operationId: policies.b2bManagementPolicies.ListAppliesTo parameters: - $ref: '#/components/parameters/top' @@ -791845,7 +791919,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: List onPremAuthenticationPolicy objects + description: Get a list of the onPremAuthenticationPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.ListOnPremAuthenticationPolicies parameters: - $ref: '#/components/parameters/top' @@ -791897,7 +791975,11 @@ paths: post: tags: - policies.onPremAuthenticationPolicy - summary: Create new navigation property to onPremAuthenticationPolicies for policies + summary: Create onPremAuthenticationPolicy + description: Create a new onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.CreateOnPremAuthenticationPolicies requestBody: description: New navigation property @@ -791923,7 +792005,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: Get onPremAuthenticationPolicy + description: Read the properties and relationships of onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-get?view=graph-rest-beta operationId: policies.GetOnPremAuthenticationPolicies parameters: - name: $select @@ -791961,7 +792047,11 @@ paths: patch: tags: - policies.onPremAuthenticationPolicy - summary: Update the navigation property onPremAuthenticationPolicies in policies + summary: Update onPremAuthenticationPolicy + description: Update the properties of an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-update?view=graph-rest-beta operationId: policies.UpdateOnPremAuthenticationPolicies requestBody: description: New navigation property values @@ -791985,7 +792075,11 @@ paths: delete: tags: - policies.onPremAuthenticationPolicy - summary: Delete navigation property onPremAuthenticationPolicies for policies + summary: Delete onPremAuthenticationPolicy + description: Delete an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-delete?view=graph-rest-beta operationId: policies.DeleteOnPremAuthenticationPolicies parameters: - name: If-Match @@ -792014,7 +792108,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get appliesTo from policies + summary: List onPremAuthenticationPolicy appliesTo + description: List directory objects that are assigned an onPremAuthenticationPolicy. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-list-appliesto?view=graph-rest-beta operationId: policies.onPremAuthenticationPolicies.ListAppliesTo parameters: - $ref: '#/components/parameters/top' @@ -931851,7 +931949,11 @@ paths: post: tags: - sites.list - summary: Create new navigation property to permissions for sites + summary: Create permission on a list + description: Create a new permission object on a list. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/list-post-permissions?view=graph-rest-beta operationId: sites.lists.CreatePermissions requestBody: description: New navigation property @@ -1184423,6 +1184525,10 @@ paths: tags: - users.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: users.user.presence.clearAutomaticLocation responses: '204': @@ -1184446,6 +1184552,10 @@ paths: tags: - users.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: users.user.presence.clearLocation responses: '204': @@ -1184534,6 +1184644,10 @@ paths: tags: - users.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: users.user.presence.setAutomaticLocation requestBody: description: Action parameters @@ -1184570,6 +1184684,10 @@ paths: tags: - users.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: users.user.presence.setManualLocation requestBody: description: Action parameters @@ -1199042,11 +1199160,13 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageSuggestionReason' + description: A collection of reasons why this access package is being suggested to the user. accessPackage: anyOf: - $ref: '#/components/schemas/microsoft.graph.availableAccessPackage' - type: object nullable: true + description: The access package information for the suggested package. x-ms-navigationProperty: true '@odata.type': type: string @@ -1209443,14 +1209563,17 @@ components: properties: description: type: string + description: The description of the access package. nullable: true displayName: type: string + description: The display name of the access package. nullable: true resourceRoleScopes: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageResourceRoleScope' + description: The resource role scopes associated with this available access package. x-ms-navigationProperty: true '@odata.type': type: string @@ -1210537,7 +1210660,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.pageLayoutType' - type: object nullable: true - description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: newsLink.' + description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: newsLink.' publishingState: anyOf: - $ref: '#/components/schemas/microsoft.graph.publicationFacet' @@ -1212160,7 +1212283,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.callEventType' - type: object nullable: true - description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: rosterUpdated.' + description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: rosterUpdated.' eventDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1212561,7 +1212684,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.certificateAuthority' - description: Collection of certificate authorities which creates a trusted certificate chain. + description: Collection of certificate authorities that creates a trusted certificate chain. '@odata.type': type: string x-ms-discriminator-value: '#microsoft.graph.certificateBasedAuthConfiguration' @@ -1212731,7 +1212854,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.channelMembershipType' - type: object nullable: true - description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: shared.' + description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: shared.' moderationSettings: anyOf: - $ref: '#/components/schemas/microsoft.graph.channelModerationSettings' @@ -1215111,7 +1215234,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotType' - type: object nullable: true - description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: retention. The default value is automatic.' + description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: retention. The default value is automatic.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotStatus' @@ -1228468,7 +1228591,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' allowLateSubmissions: type: boolean description: 'Identifies whether students can submit after the due date. If this property isn''t specified during create, it defaults to true.' @@ -1228584,7 +1228707,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAssignmentStatus' - type: object nullable: true - description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: inactive.' + description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: inactive.' readOnly: true webUrl: type: string @@ -1228652,7 +1228775,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' dueTime: pattern: '^([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?$' type: string @@ -1256541,6 +1256664,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.b2bManagementPolicy' + description: The policy to manage Microsoft Entra B2B features in Microsoft Entra External ID for workforce tenants. x-ms-navigationProperty: true b2cAuthenticationMethodsPolicy: anyOf: @@ -1256643,6 +1256767,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.onPremAuthenticationPolicy' + description: The policy that controls how authentication requests from on-premises environments are managed. x-ms-navigationProperty: true permissionGrantPolicies: type: array @@ -1256978,6 +1257103,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.userWorkLocation' - type: object nullable: true + description: Represents the user’s aggregated work location state. '@odata.type': type: string x-ms-discriminator-value: '#microsoft.graph.presence' @@ -1260425,7 +1260551,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.recommendationType' - type: object nullable: true - description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' + description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' releaseType: type: string description: 'The current release type of the recommendation. The possible values are: preview, generallyAvailable, unknownFutureValue.' @@ -1261465,7 +1261591,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.restoreSessionStatus' - type: object nullable: true - description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: failed.' + description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: failed.' '@odata.type': type: string discriminator: @@ -1261617,7 +1261743,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. The possible values are: none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection. Use the Prefer: include - unknown -enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal , m365DAdminDismissedDetection. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are adminConfirmedUserCompromised, anomalousUserActivity, anomalousToken, anonymizedIPAddress,attackerinTheMiddle,attemptedPRTAccess, generic, investigationsThreatIntelligence, investigationsThreatIntelligenceSigninLinked,leakedCredentials, maliciousIPAddress, maliciousIPAddressValidCredentialsBlockedIP, malwareInfectedIPAddress, mcasImpossibleTravel,mcasFinSuspiciousFileAccess, mcasSuspiciousInboxManipulationRules,nationStateIP, newCountry, passwordSpray, riskyIPAddress, suspiciousAPITraffic, suspiciousBrowser, suspiciousInboxForwarding, suspiciousIPAddress,suspiciousSendingPatterns, tokenIssuerAnomaly, unfamiliarFeatures, unlikelyTravel, userReportedSuspiciousActivity. For more information about each value, see Risk types and detection.' @@ -1261815,7 +1261941,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden. The possible values are: none, hidden, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1261896,7 +1262022,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1265802,7 +1265928,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are: investigationsThreatIntelligence, generic, adminConfirmedServicePrincipalCompromised, suspiciousSignins, leakedCredentials, anomalousServicePrincipalActivity, maliciousApplication, suspiciousApplication, suspiciousAPITraffic.' @@ -1267360,7 +1267486,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value or values in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' + description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskEventTypes_v2: type: array items: @@ -1289392,10 +1289518,12 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.identity' + description: A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have relatedPeopleInsightLevel set to countAndNames. This includes both the user ID and display name information. relatedPeopleAssignmentCount: maximum: 2147483647 minimum: -2147483648 type: number + description: The number of related people who have assignments to this access package. This count is always provided regardless of the relatedPeopleInsightLevel setting. format: int32 '@odata.type': type: string @@ -1289412,6 +1289540,7 @@ components: lastAssignmentDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: 'The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. Read-only.' format: date-time pastAssigmentCount: maximum: 2147483647 @@ -1290797,6 +1290926,7 @@ components: properties: blueprintId: type: string + description: Identifier of the parent agent blueprint that defines the identity and configuration of the agent. nullable: true '@odata.type': type: string @@ -1290849,12 +1290979,15 @@ components: properties: identifier: type: string + description: The unique identifier of the AI entity. nullable: true name: type: string + description: The display name of the AI entity. nullable: true version: type: string + description: The version of the AI entity used. nullable: true '@odata.type': type: string @@ -1298404,7 +1298537,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcDisasterRecoveryLicenseType' - type: object nullable: true - description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: plus.' + description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: plus.' primaryRegion: type: string description: The primary and mainly used region where the Cloud PC is located. @@ -1301085,7 +1301218,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.continuousAccessEvaluationMode' - type: object nullable: true - description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: strictLocation.' + description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: strictLocation.' '@odata.type': type: string microsoft.graph.controlScore: @@ -1323258,15 +1323391,17 @@ components: items: type: string nullable: true - description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions).' + description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions). The accessedResources property is deprecated and stopped returning data on August 20, 2025. Going forward, use the accessedResources_v2 property.' accessedResources_v2: type: array items: $ref: '#/components/schemas/microsoft.graph.resourceAccessDetail' + description: 'Indicates the details about resources accessed by AI agents, including identifiers, access type, and status.' agents: type: array items: $ref: '#/components/schemas/microsoft.graph.aiAgentInfo' + description: Indicates the information about an AI agent that participated in the preparation of the message. parentMessageId: type: string description: 'Identifier of the parent message in a threaded conversation, if applicable.' @@ -1325207,20 +1325342,26 @@ components: $ref: '#/components/schemas/microsoft.graph.resourceAccessType' identifier: type: string + description: Unique identifier of the resource accessed. isCrossPromptInjectionDetected: type: boolean + description: Indicates whether cross-prompt injection was detected during the access attempt. labelId: type: string + description: 'Identifier for the sensitivity label applied to the resource, if any.' nullable: true name: type: string + description: Name of the resource accessed. status: $ref: '#/components/schemas/microsoft.graph.resourceAccessStatus' storageId: type: string + description: 'Identifier for the resource in its native storage format. For SharePoint resources, this is the unique identifier of the list item. For other resources, this is the name of the location, such as Box, Dropbox, Exchange, or Google Drive.' nullable: true url: type: string + description: URL of the resource accessed. nullable: true '@odata.type': type: string @@ -1325898,7 +1326039,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden.' riskEventTypes: type: array items: @@ -1325918,7 +1326059,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue.' + description: 'For more information, see riskDetail.' eventTypes: type: array items: @@ -1329461,7 +1329602,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: approval.' + description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' stageStatus: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1329517,7 +1329658,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: approval.' + description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1334313,6 +1334454,7 @@ components: properties: placeId: type: string + description: Identifier of the place (when applicable). nullable: true source: $ref: '#/components/schemas/microsoft.graph.workLocationSource' @@ -1370904,6 +1371046,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.directoryObject' + description: The administrative units in the scope of the workflow. Optional. Supports $expand. x-ms-navigationProperty: true createdBy: anyOf: @@ -1376638,6 +1376781,7 @@ components: properties: name: type: string + description: Name of the entity '@odata.type': type: string discriminator: @@ -1377008,16 +1377152,20 @@ components: deploymentEndDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Indicates the date and time when the deployment was completed. format: date-time nullable: true initiatedBy: type: string + description: Identifies the user or system that initiated the deployment. lastModifiedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Specifies the date and time when the deployment was last modified. format: date-time requestId: type: string + description: A unique identifier for the deployment request. Primary key. status: $ref: '#/components/schemas/microsoft.graph.networkaccess.deploymentStatus' '@odata.type': @@ -1378640,8 +1378788,10 @@ components: properties: changeType: type: string + description: 'Specifies the type of configuration change being deployed. The possible values are: remoteNetwork, enrichedAuditLogsSetting, crossTenantAccessSettings, conditionalAccessSettings, forwardingOptions, forwardingProfile, filteringProfile, unknownFutureValue.' operationName: type: string + description: Indicates the name of the operation being performed as part of the deployment configuration. '@odata.type': type: string microsoft.graph.networkaccess.deploymentStatus: @@ -1378652,6 +1378802,7 @@ components: properties: message: type: string + description: 'Provides additional information or context about the deployment status, such as error details or progress updates.' nullable: true '@odata.type': type: string @@ -1383200,7 +1383351,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.security.exportFileStructure' - type: object nullable: true - description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' + description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' outputFolderId: type: string description: 'The output folder ID. The outputFolderId property is deprecated and stopped returning data on April 30, 2023.' @@ -1385350,7 +1385501,7 @@ components: nullable: true hasProtection: type: boolean - description: Indicates whether the label has protection actions configured. + description: Indicates whether the label has protection actions (such as encryption or do not forward) configured. isActive: type: boolean description: Indicates whether the label is active or not. Active labels should be hidden or disabled in the UI. diff --git a/openapi/beta/powershell_v2.yaml b/openapi/beta/powershell_v2.yaml index 6a158fcb..23800b68 100644 --- a/openapi/beta/powershell_v2.yaml +++ b/openapi/beta/powershell_v2.yaml @@ -66455,6 +66455,10 @@ paths: tags: - communications.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.clearAutomaticLocation parameters: - name: presence-id @@ -66476,6 +66480,10 @@ paths: tags: - communications.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: communications.presences.presence.clearLocation parameters: - name: presence-id @@ -66558,6 +66566,10 @@ paths: tags: - communications.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: communications.presences.presence.setAutomaticLocation parameters: - name: presence-id @@ -66592,6 +66604,10 @@ paths: tags: - communications.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: communications.presences.presence.setManualLocation parameters: - name: presence-id @@ -605667,6 +605683,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get accessPackage from identityGovernance + description: The access package information for the suggested package. operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.GetAccessPackage parameters: - name: accessPackageSuggestion-id @@ -605727,6 +605744,10 @@ paths: tags: - identityGovernance.entitlementManagement summary: Invoke function filterByCurrentUser + description: Retrieve suggested accessPackageSuggestion objects for the current end user. This operation returns access packages that are suggested based on various criteria such as related people insights and the user's assignment history. The suggestions help end users discover relevant access packages they may need for their role or work context. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/accesspackagesuggestions-filterbycurrentuser?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.accessPackageSuggestions.filterByCurrentUser parameters: - name: on @@ -606756,7 +606777,11 @@ paths: get: tags: - identityGovernance.entitlementManagement - summary: Get resourceRoleScopes from identityGovernance + summary: List resourceRoleScopes + description: Get a list of the accessPackageResourceRoleScope objects associated with an availableAccessPackage. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/availableaccesspackage-list-resourcerolescopes?view=graph-rest-beta operationId: identityGovernance.entitlementManagement.availableAccessPackages.ListResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -606816,6 +606841,7 @@ paths: tags: - identityGovernance.entitlementManagement summary: Get resourceRoleScopes from identityGovernance + description: The resource role scopes associated with this available access package. operationId: identityGovernance.entitlementManagement.availableAccessPackages.GetResourceRoleScopes parameters: - name: availableAccessPackage-id @@ -608877,6 +608903,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -608940,6 +608967,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -615005,6 +615033,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -615078,6 +615107,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.deletedItems.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -617358,6 +617388,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -617421,6 +617452,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -623527,6 +623559,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.ListAdministrationScopeTargets parameters: - name: workflow-id @@ -623600,6 +623633,7 @@ paths: tags: - identityGovernance.lifecycleWorkflowsContainer summary: Get administrationScopeTargets from identityGovernance + description: The administrative units in the scope of the workflow. Optional. Supports $expand. operationId: identityGovernance.lifecycleWorkflows.workflows.versions.GetAdministrationScopeTargets parameters: - name: workflow-id @@ -750279,6 +750313,10 @@ paths: tags: - me.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: me.presence.clearAutomaticLocation responses: '204': @@ -750292,6 +750330,10 @@ paths: tags: - me.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: me.presence.clearLocation responses: '204': @@ -750350,6 +750392,10 @@ paths: tags: - me.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: me.presence.setAutomaticLocation requestBody: description: Action parameters @@ -750376,6 +750422,10 @@ paths: tags: - me.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: me.presence.setManualLocation requestBody: description: Action parameters @@ -771310,7 +771360,7 @@ paths: tags: - networkAccess.reports summary: Invoke function entitiesSummaries - description: 'Get the number of users, devices, and workloads per traffic type in a specified time period.' + description: 'Get the number of users, devices, and workloads per traffic type in a specified time period as logged in Global Secure Access.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-entitiessummaries?view=graph-rest-beta @@ -771538,7 +771588,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getCrossTenantSummary - description: Get a summary of the cross-tenant access patterns. + description: Get a summary of the cross-tenant access patterns as logged in Global Secure Access. operationId: networkAccess.reports.getCrossTenantSummary parameters: - name: startDateTime @@ -771584,7 +771634,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDestinationSummaries - description: Get counts of the visits to the top destination aggregations. + description: Get counts of the visits to the top destination aggregations as logged in Global Secure Access operationId: networkAccess.reports.getDestinationSummaries parameters: - name: startDateTime @@ -771641,7 +771691,7 @@ paths: tags: - networkAccess.reports summary: Invoke function getDeviceUsageSummary - description: 'Get a summary of device onboarding and offboarding within a specified timeframe. This summary includes the total number of devices, active devices, and inactive devices.' + description: 'Get a summary of device onboarding and offboarding within a specified timeframe as logged in Global Secure Access. This summary includes the total number of devices, active devices, and inactive devices.' operationId: networkAccess.reports.getDeviceUsageSummary parameters: - name: startDateTime @@ -771807,7 +771857,7 @@ paths: tags: - networkAccess.reports summary: Invoke function transactionSummaries - description: 'Get the total number of transactions and the number of blocked transactions, grouped by traffic type.' + description: 'Get the total number of transactions and the number of blocked transactions in Global Secure Access, grouped by traffic type.' externalDocs: description: Find more info here url: https://learn.microsoft.com/graph/api/networkaccess-reports-transactionsummaries?view=graph-rest-beta @@ -799313,7 +799363,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: List b2bManagementPolicy objects + description: Get a list of the b2bManagementPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.ListB2bManagementPolicies parameters: - $ref: '#/components/parameters/top' @@ -799363,7 +799417,11 @@ paths: post: tags: - policies.b2bManagementPolicy - summary: Create new navigation property to b2bManagementPolicies for policies + summary: Create b2bManagementPolicy + description: Create a new b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.CreateB2bManagementPolicies requestBody: description: New navigation property @@ -799387,7 +799445,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get b2bManagementPolicies from policies + summary: Get b2bManagementPolicy + description: Read the properties and relationships of b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-get?view=graph-rest-beta operationId: policies.GetB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -799430,7 +799492,11 @@ paths: patch: tags: - policies.b2bManagementPolicy - summary: Update the navigation property b2bManagementPolicies in policies + summary: Update b2bManagementPolicy + description: Update the properties of a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-update?view=graph-rest-beta operationId: policies.UpdateB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -799460,7 +799526,11 @@ paths: delete: tags: - policies.b2bManagementPolicy - summary: Delete navigation property b2bManagementPolicies for policies + summary: Delete b2bManagementPolicy + description: Delete a b2bManagementPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-delete-b2bmanagementpolicies?view=graph-rest-beta operationId: policies.DeleteB2bManagementPolicies parameters: - name: b2bManagementPolicy-id @@ -799486,7 +799556,11 @@ paths: get: tags: - policies.b2bManagementPolicy - summary: Get appliesTo from policies + summary: List b2bManagementPolicy appliesTo + description: Get a list of directoryObject objects that a b2bManagementPolicy object has been applied to. The b2bManagementPolicy can only be applied to application and servicePrincipal resources. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/b2bmanagementpolicy-list-appliesto?view=graph-rest-beta operationId: policies.b2bManagementPolicies.ListAppliesTo parameters: - name: b2bManagementPolicy-id @@ -804210,7 +804284,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: List onPremAuthenticationPolicy objects + description: Get a list of the onPremAuthenticationPolicy objects and their properties. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-list-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.ListOnPremAuthenticationPolicies parameters: - $ref: '#/components/parameters/top' @@ -804260,7 +804338,11 @@ paths: post: tags: - policies.onPremAuthenticationPolicy - summary: Create new navigation property to onPremAuthenticationPolicies for policies + summary: Create onPremAuthenticationPolicy + description: Create a new onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/policyroot-post-onpremauthenticationpolicies?view=graph-rest-beta operationId: policies.CreateOnPremAuthenticationPolicies requestBody: description: New navigation property @@ -804284,7 +804366,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get onPremAuthenticationPolicies from policies + summary: Get onPremAuthenticationPolicy + description: Read the properties and relationships of onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-get?view=graph-rest-beta operationId: policies.GetOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -804327,7 +804413,11 @@ paths: patch: tags: - policies.onPremAuthenticationPolicy - summary: Update the navigation property onPremAuthenticationPolicies in policies + summary: Update onPremAuthenticationPolicy + description: Update the properties of an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-update?view=graph-rest-beta operationId: policies.UpdateOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -804357,7 +804447,11 @@ paths: delete: tags: - policies.onPremAuthenticationPolicy - summary: Delete navigation property onPremAuthenticationPolicies for policies + summary: Delete onPremAuthenticationPolicy + description: Delete an onPremAuthenticationPolicy object. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-delete?view=graph-rest-beta operationId: policies.DeleteOnPremAuthenticationPolicies parameters: - name: onPremAuthenticationPolicy-id @@ -804383,7 +804477,11 @@ paths: get: tags: - policies.onPremAuthenticationPolicy - summary: Get appliesTo from policies + summary: List onPremAuthenticationPolicy appliesTo + description: List directory objects that are assigned an onPremAuthenticationPolicy. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/onpremauthenticationpolicy-list-appliesto?view=graph-rest-beta operationId: policies.onPremAuthenticationPolicies.ListAppliesTo parameters: - name: onPremAuthenticationPolicy-id @@ -950365,7 +950463,11 @@ paths: post: tags: - sites.list - summary: Create new navigation property to permissions for sites + summary: Create permission on a list + description: Create a new permission object on a list. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/list-post-permissions?view=graph-rest-beta operationId: sites.lists.CreatePermissions parameters: - name: site-id @@ -1257159,6 +1257261,10 @@ paths: tags: - users.presence summary: Invoke action clearAutomaticLocation + description: 'Clear the automatic work location signal for a user. After clearing, the user’s final aggregated work location is recomputed according to the precedence rules: Use this operation when you need to remove the current autodetected signal without affecting manual or scheduled layers.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearautomaticlocation?view=graph-rest-beta operationId: users.user.presence.clearAutomaticLocation parameters: - name: user-id @@ -1257180,6 +1257286,10 @@ paths: tags: - users.presence summary: Invoke action clearLocation + description: 'Clear the work location signals for a user, including both the manual and automatic layers for the current date.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-clearlocation?view=graph-rest-beta operationId: users.user.presence.clearLocation parameters: - name: user-id @@ -1257262,6 +1257372,10 @@ paths: tags: - users.presence summary: Invoke action setAutomaticLocation + description: 'Update the automatic work location for a user. The automatic layer participates in the standard precedence model: Use this operation from clients or services that automatically detect location (for example, Teams, network/location agents, or OEM docking apps). It doesn''t clear manual or scheduled signals.' + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setautomaticlocation?view=graph-rest-beta operationId: users.user.presence.setAutomaticLocation parameters: - name: user-id @@ -1257296,6 +1257410,10 @@ paths: tags: - users.presence summary: Invoke action setManualLocation + description: Set the manual work location signal for a user. The explicit value chosen by a user (or an authorized client) overrides any automatically detected or scheduled working hours and location. + externalDocs: + description: Find more info here + url: https://learn.microsoft.com/graph/api/presence-setmanuallocation?view=graph-rest-beta operationId: users.user.presence.setManualLocation parameters: - name: user-id @@ -1272794,11 +1272912,13 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageSuggestionReason' + description: A collection of reasons why this access package is being suggested to the user. accessPackage: anyOf: - $ref: '#/components/schemas/microsoft.graph.availableAccessPackage' - type: object nullable: true + description: The access package information for the suggested package. x-ms-navigationProperty: true microsoft.graph.accessReview: allOf: @@ -1281824,14 +1281944,17 @@ components: properties: description: type: string + description: The description of the access package. nullable: true displayName: type: string + description: The display name of the access package. nullable: true resourceRoleScopes: type: array items: $ref: '#/components/schemas/microsoft.graph.accessPackageResourceRoleScope' + description: The resource role scopes associated with this available access package. x-ms-navigationProperty: true microsoft.graph.awsAccessKey: allOf: @@ -1282635,7 +1282758,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.pageLayoutType' - type: object nullable: true - description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: newsLink.' + description: 'The name of the page layout of the page. The possible values are: microsoftReserved, article, home, unknownFutureValue, newsLink. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: newsLink.' publishingState: anyOf: - $ref: '#/components/schemas/microsoft.graph.publicationFacet' @@ -1284062,7 +1284185,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.callEventType' - type: object nullable: true - description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: rosterUpdated.' + description: 'The event type of the call. Possible values are: callStarted, callEnded, unknownFutureValue, rosterUpdated. You must use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: rosterUpdated.' eventDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1284397,7 +1284520,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.certificateAuthority' - description: Collection of certificate authorities which creates a trusted certificate chain. + description: Collection of certificate authorities that creates a trusted certificate chain. microsoft.graph.certificateBasedAuthPki: allOf: - $ref: '#/components/schemas/microsoft.graph.directoryObject' @@ -1284530,7 +1284653,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.channelMembershipType' - type: object nullable: true - description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: shared.' + description: 'The type of the channel. Can be set during creation and can''t be changed. The possible values are: standard, private, unknownFutureValue, shared. The default value is standard. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: shared.' moderationSettings: anyOf: - $ref: '#/components/schemas/microsoft.graph.channelModerationSettings' @@ -1286599,7 +1286722,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotType' - type: object nullable: true - description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: retention. The default value is automatic.' + description: 'The type of snapshot that indicates how to create the snapshot. Possible values are automatic, manual, unknownFutureValue, retention. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: retention. The default value is automatic.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.cloudPcSnapshotStatus' @@ -1298148,7 +1298271,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control the assignment behavior for adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' allowLateSubmissions: type: boolean description: 'Identifies whether students can submit after the due date. If this property isn''t specified during create, it defaults to true.' @@ -1298264,7 +1298387,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAssignmentStatus' - type: object nullable: true - description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: inactive.' + description: 'Status of the assignment. You can''t PATCH this value. Possible values are: draft, scheduled, published, assigned, unknownFutureValue, inactive. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: inactive.' readOnly: true webUrl: type: string @@ -1298327,7 +1298450,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.educationAddToCalendarOptions' - type: object nullable: true - description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: studentsOnly. The default value is none.' + description: 'Optional field to control adding assignments to students'' and teachers'' calendars when the assignment is published. The possible values are: none, studentsAndPublisher, studentsAndTeamOwners, unknownFutureValue, and studentsOnly. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: studentsOnly. The default value is none.' dueTime: pattern: '^([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?$' type: string @@ -1320047,6 +1320170,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.b2bManagementPolicy' + description: The policy to manage Microsoft Entra B2B features in Microsoft Entra External ID for workforce tenants. x-ms-navigationProperty: true b2cAuthenticationMethodsPolicy: anyOf: @@ -1320149,6 +1320273,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.onPremAuthenticationPolicy' + description: The policy that controls how authentication requests from on-premises environments are managed. x-ms-navigationProperty: true permissionGrantPolicies: type: array @@ -1320438,6 +1320563,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.userWorkLocation' - type: object nullable: true + description: Represents the user’s aggregated work location state. microsoft.graph.presentation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1323407,7 +1323533,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.recommendationType' - type: object nullable: true - description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' + description: 'Friendly shortname to identify the recommendation. The possible values are: adfsAppsMigration, enableDesktopSSO, enablePHS, enableProvisioning, switchFromPerUserMFA, tenantMFA, thirdPartyApps, turnOffPerUserMFA, useAuthenticatorApp, useMyApps, staleApps, staleAppCreds, applicationCredentialExpiry, servicePrincipalKeyExpiry, adminMFAV2, blockLegacyAuthentication, integratedApps, mfaRegistrationV2, pwagePolicyNew, passwordHashSync, oneAdmin, roleOverlap, selfServicePasswordReset, signinRiskPolicy, userRiskPolicy, verifyAppPublisher, privateLinkForAAD, appRoleAssignmentsGroups, appRoleAssignmentsUsers, managedIdentity, overprivilegedApps, unknownFutureValue, longLivedCredentials, aadConnectDeprecated, adalToMsalMigration, ownerlessApps, inactiveGuests, aadGraphDeprecationApplication, aadGraphDeprecationServicePrincipal, mfaServerDeprecation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: longLivedCredentials , aadConnectDeprecated , adalToMsalMigration , ownerlessApps , inactiveGuests , aadGraphDeprecationApplication , aadGraphDeprecationServicePrincipal , mfaServerDeprecation.' releaseType: type: string description: 'The current release type of the recommendation. The possible values are: preview, generallyAvailable, unknownFutureValue.' @@ -1324299,7 +1324425,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.restoreSessionStatus' - type: object nullable: true - description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: failed.' + description: 'Status of the restore session. The value is an aggregated status of the restored artifacts. The possible values are: draft, activating, active, completedWithError, completed, unknownFutureValue, failed. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: failed.' microsoft.graph.restrictedAppsViolation: allOf: - $ref: '#/components/schemas/microsoft.graph.entity' @@ -1324431,7 +1324557,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. The possible values are: none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection. Use the Prefer: include - unknown -enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal , m365DAdminDismissedDetection. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. P1 customers will be returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are adminConfirmedUserCompromised, anomalousUserActivity, anomalousToken, anonymizedIPAddress,attackerinTheMiddle,attemptedPRTAccess, generic, investigationsThreatIntelligence, investigationsThreatIntelligenceSigninLinked,leakedCredentials, maliciousIPAddress, maliciousIPAddressValidCredentialsBlockedIP, malwareInfectedIPAddress, mcasImpossibleTravel,mcasFinSuspiciousFileAccess, mcasSuspiciousInboxManipulationRules,nationStateIP, newCountry, passwordSpray, riskyIPAddress, suspiciousAPITraffic, suspiciousBrowser, suspiciousInboxForwarding, suspiciousIPAddress,suspiciousSendingPatterns, tokenIssuerAnomaly, unfamiliarFeatures, unlikelyTravel, userReportedSuspiciousActivity. For more information about each value, see Risk types and detection.' @@ -1324595,7 +1324721,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden. The possible values are: none, hidden, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license will be returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1324663,7 +1324789,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.' + description: 'Details of the detected risk. Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskLastUpdatedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string @@ -1328149,7 +1328275,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following values in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without this license are returned hidden.' riskEventType: type: string description: 'The type of risk event detected. The possible values are: investigationsThreatIntelligence, generic, adminConfirmedServicePrincipalCompromised, suspiciousSignins, leakedCredentials, anomalousServicePrincipalActivity, maliciousApplication, suspiciousApplication, suspiciousAPITraffic.' @@ -1329487,7 +1329613,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe. Use the Prefer: include-unknown-enum-members request header to get the following value or values in this evolvable enum: adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal, m365DAdminDismissedDetection, userChangedPasswordOnPremises, adminDismissedRiskForSignIn, adminConfirmedAccountSafe.The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' + description: 'The reason behind a specific state of a risky user, sign-in, or a risk event. The value none means that Microsoft Entra risk detection hasn''t flagged the user or the sign-in as a risky event so far. Supports $filter (eq). Note: Details for this property are only available for Microsoft Entra ID P2 customers. All other customers are returned hidden.' riskEventTypes_v2: type: array items: @@ -1348820,10 +1348946,12 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.identity' + description: A collection of identities representing people related to the current user who may have access to similar resources. This property is only populated when the tenant's endUserSettings have relatedPeopleInsightLevel set to countAndNames. This includes both the user ID and display name information. relatedPeopleAssignmentCount: maximum: 2147483647 minimum: -2147483648 type: number + description: The number of related people who have assignments to this access package. This count is always provided regardless of the relatedPeopleInsightLevel setting. format: int32 microsoft.graph.accessPackageSuggestionSelfAssignmentHistoryBased: allOf: @@ -1348834,6 +1348962,7 @@ components: lastAssignmentDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: 'The date and time when the user was last assigned to this access package. The Timestamp type represents date and time information using ISO 8601 format and is always in UTC time. For example, midnight UTC on Jan 1, 2014 is 2014-01-01T00:00:00Z. Read-only.' format: date-time pastAssigmentCount: maximum: 2147483647 @@ -1349841,6 +1349970,7 @@ components: properties: blueprintId: type: string + description: Identifier of the parent agent blueprint that defines the identity and configuration of the agent. nullable: true microsoft.graph.aiInteractionAttachment: title: aiInteractionAttachment @@ -1349880,12 +1350010,15 @@ components: properties: identifier: type: string + description: The unique identifier of the AI entity. nullable: true name: type: string + description: The display name of the AI entity. nullable: true version: type: string + description: The version of the AI entity used. nullable: true microsoft.graph.aiInteractionLink: title: aiInteractionLink @@ -1355904,7 +1356037,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.cloudPcDisasterRecoveryLicenseType' - type: object nullable: true - description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: plus.' + description: 'The disaster recovery license type that provides the capability. The possible values are: none, standard, unknownFutureValue, plus. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: plus.' primaryRegion: type: string description: The primary and mainly used region where the Cloud PC is located. @@ -1358057,7 +1358190,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.continuousAccessEvaluationMode' - type: object nullable: true - description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: strictLocation.' + description: 'Specifies continuous access evaluation settings. The possible values are: strictEnforcement, disabled, unknownFutureValue, strictLocation. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: strictLocation.' microsoft.graph.controlScore: title: controlScore type: object @@ -1375075,15 +1375208,17 @@ components: items: type: string nullable: true - description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions).' + description: 'List of resources (for example, file URLs, web URLs) accessed during the generation of this message (relevant for bot interactions). The accessedResources property is deprecated and stopped returning data on August 20, 2025. Going forward, use the accessedResources_v2 property.' accessedResources_v2: type: array items: $ref: '#/components/schemas/microsoft.graph.resourceAccessDetail' + description: 'Indicates the details about resources accessed by AI agents, including identifiers, access type, and status.' agents: type: array items: $ref: '#/components/schemas/microsoft.graph.aiAgentInfo' + description: Indicates the information about an AI agent that participated in the preparation of the message. parentMessageId: type: string description: 'Identifier of the parent message in a threaded conversation, if applicable.' @@ -1376610,20 +1376745,26 @@ components: $ref: '#/components/schemas/microsoft.graph.resourceAccessType' identifier: type: string + description: Unique identifier of the resource accessed. isCrossPromptInjectionDetected: type: boolean + description: Indicates whether cross-prompt injection was detected during the access attempt. labelId: type: string + description: 'Identifier for the sensitivity label applied to the resource, if any.' nullable: true name: type: string + description: Name of the resource accessed. status: $ref: '#/components/schemas/microsoft.graph.resourceAccessStatus' storageId: type: string + description: 'Identifier for the resource in its native storage format. For SharePoint resources, this is the unique identifier of the list item. For other resources, this is the name of the location, such as Box, Dropbox, Exchange, or Google Drive.' nullable: true url: type: string + description: URL of the resource accessed. nullable: true microsoft.graph.resourceAction: title: resourceAction @@ -1377164,7 +1377305,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden. The possible values are: none, hidden, adminConfirmedServicePrincipalCompromised, adminDismissedAllRiskForServicePrincipal. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: adminConfirmedServicePrincipalCompromised , adminDismissedAllRiskForServicePrincipal.' + description: 'Details of the detected risk. Note: Details for this property are only available for Workload Identities Premium customers. Events in tenants without that license will be returned hidden.' riskEventTypes: type: array items: @@ -1377180,7 +1377321,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.riskDetail' - type: object nullable: true - description: 'The possible values are none, adminGeneratedTemporaryPassword, userPerformedSecuredPasswordChange, userPerformedSecuredPasswordReset, adminConfirmedSigninSafe, aiConfirmedSigninSafe, userPassedMFADrivenByRiskBasedPolicy, adminDismissedAllRiskForUser, adminConfirmedSigninCompromised, hidden, adminConfirmedUserCompromised, unknownFutureValue.' + description: 'For more information, see riskDetail.' eventTypes: type: array items: @@ -1379923,7 +1380064,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value(s) in this evolvable enum: approval.' + description: 'The stage when the entity was changed. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' stageStatus: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1379955,7 +1380096,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStage' - type: object nullable: true - description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following value in this evolvable enum: approval.' + description: 'The stage of the subject rights request. Possible values are: contentRetrieval, contentReview, generateReport, contentDeletion, caseResolved, unknownFutureValue, approval. Use the Prefer: include-unknown-enum-members request header to get the following members in this evolvable enum: approval.' status: anyOf: - $ref: '#/components/schemas/microsoft.graph.subjectRightsRequestStageStatus' @@ -1383803,6 +1383944,7 @@ components: properties: placeId: type: string + description: Identifier of the place (when applicable). nullable: true source: $ref: '#/components/schemas/microsoft.graph.workLocationSource' @@ -1418834,6 +1418976,7 @@ components: type: array items: $ref: '#/components/schemas/microsoft.graph.directoryObject' + description: The administrative units in the scope of the workflow. Optional. Supports $expand. x-ms-navigationProperty: true createdBy: anyOf: @@ -1423656,6 +1423799,7 @@ components: properties: name: type: string + description: Name of the entity microsoft.graph.networkaccess.branchConnectivityConfiguration: title: branchConnectivityConfiguration type: object @@ -1423971,16 +1424115,20 @@ components: deploymentEndDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Indicates the date and time when the deployment was completed. format: date-time nullable: true initiatedBy: type: string + description: Identifies the user or system that initiated the deployment. lastModifiedDateTime: pattern: '^[0-9]{4,}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])T([01][0-9]|2[0-3]):[0-5][0-9]:[0-5][0-9]([.][0-9]{1,12})?(Z|[+-][0-9][0-9]:[0-9][0-9])$' type: string + description: Specifies the date and time when the deployment was last modified. format: date-time requestId: type: string + description: A unique identifier for the deployment request. Primary key. status: $ref: '#/components/schemas/microsoft.graph.networkaccess.deploymentStatus' microsoft.graph.networkaccess.deviceLink: @@ -1425268,14 +1425416,17 @@ components: properties: changeType: type: string + description: 'Specifies the type of configuration change being deployed. The possible values are: remoteNetwork, enrichedAuditLogsSetting, crossTenantAccessSettings, conditionalAccessSettings, forwardingOptions, forwardingProfile, filteringProfile, unknownFutureValue.' operationName: type: string + description: Indicates the name of the operation being performed as part of the deployment configuration. microsoft.graph.networkaccess.deploymentStatus: title: deploymentStatus type: object properties: message: type: string + description: 'Provides additional information or context about the deployment status, such as error details or progress updates.' nullable: true microsoft.graph.networkaccess.destination: title: destination @@ -1429066,7 +1429217,7 @@ components: - $ref: '#/components/schemas/microsoft.graph.security.exportFileStructure' - type: object nullable: true - description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following value from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' + description: 'The options that specify the structure of the export. For more information, see reviewSet: export. Possible values are: none, directory (deprecated), pst, unknownFutureValue, msg. Use the Prefer: include-unknown-enum-members request header to get the following members from this evolvable enum: msg. The directory member is deprecated. It remains in beta for backward compatibility. Going forward, use either pst or msg.' outputFolderId: type: string description: 'The output folder ID. The outputFolderId property is deprecated and stopped returning data on April 30, 2023.' @@ -1430864,7 +1431015,7 @@ components: nullable: true hasProtection: type: boolean - description: Indicates whether the label has protection actions configured. + description: Indicates whether the label has protection actions (such as encryption or do not forward) configured. isActive: type: boolean description: Indicates whether the label is active or not. Active labels should be hidden or disabled in the UI.